bisecting fixing commit since e109a984cf380b4b80418b7477c970bfeb428325 building syzkaller on bfb4a51e30c8c04658a2675333b9b89a9d327c4a testing commit e109a984cf380b4b80418b7477c970bfeb428325 with gcc (GCC) 8.1.0 kernel signature: 9cb0bc68a45c2a51ca61efefda526c40e647c77815073b98e3bc83cbefb2e49b all runs: crashed: KASAN: use-after-free Read in tls_write_space testing current HEAD c4ff839de17f38b0ae0f8983b5c5186f8a389238 testing commit c4ff839de17f38b0ae0f8983b5c5186f8a389238 with gcc (GCC) 8.1.0 kernel signature: c9ce62b4fcfc6d6180434588f63cccc39b967c1fdd4bc83c9112752beefe7909 all runs: OK # git bisect start c4ff839de17f38b0ae0f8983b5c5186f8a389238 e109a984cf380b4b80418b7477c970bfeb428325 Bisecting: 6080 revisions left to test after this (roughly 13 steps) [2d4979582b015baaf8e94e1458525efdb81c3509] afs: Fix double inc of vnode->cb_break testing commit 2d4979582b015baaf8e94e1458525efdb81c3509 with gcc (GCC) 8.1.0 kernel signature: a61254fdfc84ae352c6aca4128ecfcc03b9c0129055164f48e11e799a2462ddf run #0: crashed: WARNING in __static_key_slow_dec_cpuslocked run #1: crashed: WARNING in corrupted run #2: crashed: WARNING in corrupted run #3: crashed: WARNING in corrupted run #4: crashed: WARNING in corrupted run #5: crashed: WARNING in __static_key_slow_dec_cpuslocked run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 2d4979582b015baaf8e94e1458525efdb81c3509 Bisecting: 3040 revisions left to test after this (roughly 12 steps) [cf6a8b2071802ad8786598667fcc650e6f46ade1] KVM: nVMX: Plumb L2 GPA through to PML emulation testing commit cf6a8b2071802ad8786598667fcc650e6f46ade1 with gcc (GCC) 8.1.0 kernel signature: 480d4d309ea9910229056f8d1d6179594c78e6d9c8bd968037e5ff5da4cd9d0d run #0: crashed: WARNING in __static_key_slow_dec_cpuslocked run #1: crashed: WARNING in __static_key_slow_dec_cpuslocked run #2: crashed: WARNING in static_key_slow_dec run #3: crashed: WARNING in static_key_slow_dec run #4: crashed: WARNING in __static_key_slow_dec_cpuslocked run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good cf6a8b2071802ad8786598667fcc650e6f46ade1 Bisecting: 1520 revisions left to test after this (roughly 11 steps) [d71f3fb99620532fee0d163bfb30f0cc7bcdbaee] net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails testing commit d71f3fb99620532fee0d163bfb30f0cc7bcdbaee with gcc (GCC) 8.1.0 kernel signature: 76b08bba78da2ea0a73be2f2013c312c5d78a59c6bf2463aecad31971f190d12 all runs: OK # git bisect bad d71f3fb99620532fee0d163bfb30f0cc7bcdbaee Bisecting: 759 revisions left to test after this (roughly 10 steps) [c90652abae15465210207418ac8c1ecb230e3b1e] xfs: Fix UBSAN null-ptr-deref in xfs_sysfs_init testing commit c90652abae15465210207418ac8c1ecb230e3b1e with gcc (GCC) 8.1.0 kernel signature: 0e436bf32024fe87d044bec5cfdff7c36cf7fc6b5454704b268e4ea68b081ca2 run #0: crashed: WARNING in corrupted run #1: crashed: WARNING in __static_key_slow_dec_cpuslocked run #2: crashed: WARNING in corrupted run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK reproducer seems to be flaky # git bisect good c90652abae15465210207418ac8c1ecb230e3b1e Bisecting: 379 revisions left to test after this (roughly 9 steps) [cb0978891ba6c7be05b4d0d71004a50f57cc1530] Revert "ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO" testing commit cb0978891ba6c7be05b4d0d71004a50f57cc1530 with gcc (GCC) 8.1.0 kernel signature: 6cfdedbb846272048ec979be995f831590614734f4118c137d09a70067ddba9b run #0: crashed: WARNING in static_key_slow_dec run #1: crashed: WARNING in __static_key_slow_dec_cpuslocked run #2: crashed: WARNING in static_key_slow_dec run #3: crashed: WARNING in static_key_slow_dec run #4: crashed: WARNING in static_key_slow_dec run #5: crashed: WARNING in static_key_slow_dec run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good cb0978891ba6c7be05b4d0d71004a50f57cc1530 Bisecting: 189 revisions left to test after this (roughly 8 steps) [b860a828153a69e9d0993a163131e283ecc61fb8] scsi: qedi: Fix termination timeouts in session logout testing commit b860a828153a69e9d0993a163131e283ecc61fb8 with gcc (GCC) 8.1.0 kernel signature: d517c5051587ce3ab6a3fa0e7bc7747b6ec1cdf1be825dd9007db0b5ff2845cb run #0: crashed: WARNING in corrupted run #1: crashed: WARNING in corrupted run #2: crashed: WARNING in corrupted run #3: boot failed: can't ssh into the instance run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good b860a828153a69e9d0993a163131e283ecc61fb8 Bisecting: 94 revisions left to test after this (roughly 7 steps) [f3e8ed3d33fa963f1b6827977696235852cdd8d9] mm, THP, swap: fix allocating cluster for swapfile by mistake testing commit f3e8ed3d33fa963f1b6827977696235852cdd8d9 with gcc (GCC) 8.1.0 kernel signature: 7cdf3a28788406da70a9d0bcc925225353175074e63fb46f82a6c8899fd6278c run #0: crashed: WARNING in corrupted run #1: crashed: WARNING in corrupted run #2: crashed: WARNING in static_key_slow_dec run #3: crashed: WARNING in corrupted run #4: crashed: WARNING in __static_key_slow_dec_cpuslocked run #5: crashed: WARNING in __static_key_slow_dec_cpuslocked run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good f3e8ed3d33fa963f1b6827977696235852cdd8d9 Bisecting: 47 revisions left to test after this (roughly 6 steps) [7b9eaa7241ea2cfa580b854d461be72107a4b35c] fbdev, newport_con: Move FONT_EXTRA_WORDS macros into linux/font.h testing commit 7b9eaa7241ea2cfa580b854d461be72107a4b35c with gcc (GCC) 8.1.0 kernel signature: ca3d0ccfda35fcbdde681d2f5cc65624fd3160212d97f00c5306331e88ffeaef run #0: crashed: WARNING in corrupted run #1: crashed: WARNING in __static_key_slow_dec_cpuslocked run #2: crashed: WARNING in static_key_slow_dec run #3: crashed: WARNING in static_key_slow_dec run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 7b9eaa7241ea2cfa580b854d461be72107a4b35c Bisecting: 23 revisions left to test after this (roughly 5 steps) [a813aaee68809b5fc3935ec5ccf7cdba75a9c792] sctp: fix sctp_auth_init_hmacs() error path testing commit a813aaee68809b5fc3935ec5ccf7cdba75a9c792 with gcc (GCC) 8.1.0 kernel signature: 5aec25b7cbf0c6c48083af5f4e1f2d9d0d56c07fa5406263baed179b7e5a084c run #0: crashed: WARNING in static_key_slow_dec run #1: crashed: WARNING in corrupted run #2: crashed: WARNING in corrupted run #3: crashed: WARNING in corrupted run #4: crashed: WARNING in corrupted run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good a813aaee68809b5fc3935ec5ccf7cdba75a9c792 Bisecting: 11 revisions left to test after this (roughly 4 steps) [3f396a6be34ab71d1d6bd935ad1b787800781849] bonding: set dev->needed_headroom in bond_setup_by_slave() testing commit 3f396a6be34ab71d1d6bd935ad1b787800781849 with gcc (GCC) 8.1.0 kernel signature: 0c100c5bf85fd5376f6ea54413bbf6a6a754837bded03a0417373c3ff6c45264 run #0: crashed: WARNING in __static_key_slow_dec_cpuslocked run #1: crashed: WARNING in corrupted run #2: crashed: WARNING in static_key_slow_dec run #3: OK run #4: OK run #5: crashed: WARNING in corrupted run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 3f396a6be34ab71d1d6bd935ad1b787800781849 Bisecting: 5 revisions left to test after this (roughly 3 steps) [4a0b2759c739422af74d0ebbeb77595e79806aad] rxrpc: Downgrade the BUG() for unsupported token type in rxrpc_read() testing commit 4a0b2759c739422af74d0ebbeb77595e79806aad with gcc (GCC) 8.1.0 kernel signature: 8565e57370d1b8065a200425f312324b6a1088a60a847b9226e3b96f9618644e run #0: crashed: WARNING in __static_key_slow_dec_cpuslocked run #1: OK run #2: OK run #3: OK run #4: crashed: WARNING in corrupted run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 4a0b2759c739422af74d0ebbeb77595e79806aad Bisecting: 2 revisions left to test after this (roughly 2 steps) [80e745b6729ed41248442a687943cc7a48e5e66a] perf: Fix task_function_call() error handling testing commit 80e745b6729ed41248442a687943cc7a48e5e66a with gcc (GCC) 8.1.0 kernel signature: d68b3aba6ed0a6f4c307ca1ff93c75eda57a0e8c86e31e3ef0209ed4fbbe2657 run #0: crashed: WARNING in corrupted run #1: crashed: WARNING in static_key_slow_dec run #2: crashed: WARNING in corrupted run #3: crashed: WARNING in __static_key_slow_dec_cpuslocked run #4: crashed: WARNING in corrupted run #5: crashed: WARNING in __static_key_slow_dec_cpuslocked run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 80e745b6729ed41248442a687943cc7a48e5e66a Bisecting: 0 revisions left to test after this (roughly 1 step) [94c51675811267a1ccaa7f6dc336714a02e20246] mm: khugepaged: recalculate min_free_kbytes after memory hotplug as expected by khugepaged testing commit 94c51675811267a1ccaa7f6dc336714a02e20246 with gcc (GCC) 8.1.0 kernel signature: c597fc1664d3cbe6a11c49d8f582c8b6a0f16dffceb4209d40f8710638fa54b2 run #0: crashed: WARNING in corrupted run #1: crashed: WARNING in static_key_slow_dec run #2: crashed: WARNING in static_key_slow_dec run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect good 94c51675811267a1ccaa7f6dc336714a02e20246 d71f3fb99620532fee0d163bfb30f0cc7bcdbaee is the first bad commit commit d71f3fb99620532fee0d163bfb30f0cc7bcdbaee Author: Anant Thazhemadam Date: Mon Oct 5 18:59:58 2020 +0530 net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails commit f45a4248ea4cc13ed50618ff066849f9587226b2 upstream. When get_registers() fails in set_ethernet_addr(),the uninitialized value of node_id gets copied over as the address. So, check the return value of get_registers(). If get_registers() executed successfully (i.e., it returns sizeof(node_id)), copy over the MAC address using ether_addr_copy() (instead of using memcpy()). Else, if get_registers() failed instead, a randomly generated MAC address is set as the MAC address instead. Reported-by: syzbot+abbc768b560c84d92fd3@syzkaller.appspotmail.com Tested-by: syzbot+abbc768b560c84d92fd3@syzkaller.appspotmail.com Acked-by: Petko Manolov Signed-off-by: Anant Thazhemadam Signed-off-by: David S. Miller Signed-off-by: Greg Kroah-Hartman drivers/net/usb/rtl8150.c | 16 ++++++++++++---- 1 file changed, 12 insertions(+), 4 deletions(-) culprit signature: 76b08bba78da2ea0a73be2f2013c312c5d78a59c6bf2463aecad31971f190d12 parent signature: c597fc1664d3cbe6a11c49d8f582c8b6a0f16dffceb4209d40f8710638fa54b2 Reproducer flagged being flaky revisions tested: 15, total time: 5h4m17.144444184s (build: 2h54m39.589261849s, test: 2h7m3.070431882s) first good commit: d71f3fb99620532fee0d163bfb30f0cc7bcdbaee net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails recipients (to): ["anant.thazhemadam@gmail.com" "davem@davemloft.net" "gregkh@linuxfoundation.org" "petkan@nucleusys.com" "syzbot+abbc768b560c84d92fd3@syzkaller.appspotmail.com"] recipients (cc): []