bisecting cause commit starting from ddef1e8e3f6eb26034833b7255e3fa584d54a230 building syzkaller on 5ea87a6638e52a94361b26b8576a1605585815fb testing commit ddef1e8e3f6eb26034833b7255e3fa584d54a230 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.150 testing commit b98aebd298246df37b472c52a2ee1023256d02e3 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.149 testing commit e132c8d7b58d8dc2c1888f5768454550d1f3ea7b with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.148 testing commit 42327896f194f256e5a361e0069985bc8d209b42 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: KASAN: global-out-of-bounds Read in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.147 testing commit db1892238c55c5138801f131a837ccd0056f002e with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.146 testing commit f6e27dbb1afabcba436e346d6aa88a592a1436bb with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.145 testing commit b10ab5e2c476b69689bc0c46d309471b597c880c with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.144 testing commit 968722f5371ad5deee23fc20269fdc44c23014b1 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.143 testing commit e2cd24b629389b52a31d96d226ed150dacab9cdd with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.142 testing commit 414510bc00a5fc954d8340c170083f518d09aa55 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.141 testing commit 01fd1694b93c92ad54fa684dac9c8068ecda8288 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.140 testing commit b5260801526c77496dd8be7d750c20939ec64189 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.139 testing commit 45f092f9e9cb31486db546e39bfe7cc0b3f57099 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: KASAN: slab-out-of-bounds Read in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.138 testing commit 3ffe1e79c174b2093f7ee3df589a7705572c9620 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.137 testing commit b19ffe6e7205c0b0d26b750673873f3f9f61da35 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.136 testing commit 7d80e1218adf6d1aa5270587192789e218fef706 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.135 testing commit 10d6aa565d0593fe4e152e49ab58f47a2952f902 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: kernel BUG at ./include/linux/mm.h:LINE! run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.134 testing commit ff33472c282e209da54cbc0c7c1c06ddfcc93d33 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.133 testing commit aea8526edf59da3ff5306ca408e13d8f6ab89b34 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.132 testing commit e3c1b27308ae0472f27e07903181d6abfe0cb1d7 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: kernel BUG at ./include/linux/mm.h:LINE! run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.131 testing commit f4cc0ed9b2c72687303b035379c5824a02224354 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.130 testing commit bc2bccef19ee4353d759a12950088b968b5c6618 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.129 testing commit a5758c5311775625be7f6dd54757ed356dbf2977 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.128 testing commit bb263a2a2d4380a56edab6dce5a2c064769676fb with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.127 testing commit e861d0673eb8dc9b616269f70bf8a07d7524877e with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.126 testing commit a74d0e937a3acaea08ec0a7bfa047b8e0a6b6303 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.125 testing commit 2bf3258a12af6508d9c0cf17bfa895c5650d2dbb with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.124 testing commit e6a95d8851f1e993269b2172595107061f9371ae with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.123 testing commit 8cb1239889087368a792c655de99529eec219bfc with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.122 testing commit 44a05cd896d97a3cd4f0c2ddb29a221ab2fdf43d with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.121 testing commit bbcb3c09eae4cc8d33415c29816debbec20a08df with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: KASAN: global-out-of-bounds Read in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.120 testing commit e6fedb8802c7543852cc6b06d8c009f89b3af3d8 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.119 testing commit 2af67d29b6fec54b86bcdb3e0a616640eeea5302 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: KASAN: global-out-of-bounds Read in do_blockdev_direct_IO run #3: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: kernel BUG at ./include/linux/mm.h:LINE! run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.118 testing commit d929572d7da91169d3a22dfb75ede8bdced541c2 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: kernel BUG at ./include/linux/mm.h:LINE! testing release v4.14.117 testing commit b4677bbb658d54ad29c8122d61bdcc0f878030b1 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.116 testing commit 6d1510d86ef67e5fadb8038671e2ec43416daf7f with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.115 testing commit 1c046f37313210e0c41b036fcd14c4bdb1581d47 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.114 testing commit fa5941f45d7ed070118b7c209b7f2c3a034293bd with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: KASAN: use-after-free Read in hex_dump_to_buffer run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.113 testing commit 68d7a45eec101bc1550294c0e675a490c047b2e5 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.112 testing commit 58b454ebf81e5ae9391957d99cf89566d9eec1b1 with gcc (GCC) 8.1.0 run #0: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.111 testing commit 1ec8f1f0bffe34ebdf95dbe0fd4a6635a84612a8 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.110 testing commit 80bf6c64d5cca26b4d2a94e38cbd89c2615a25c3 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.109 testing commit 1848c32fad1666bdc04d40f857284ffcb55f694a with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.108 testing commit dee55b062e6b7d802f7549e8542ca245ea57c003 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #8: crashed: KASAN: global-out-of-bounds Read in do_blockdev_direct_IO run #9: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO testing release v4.14.107 testing commit 5726a8d0f1958af80ad8e514bc2c18d213e739b7 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.106 testing commit d9896164529697fade02aafc65a06722f7191d68 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.105 testing commit 99403097be0cbe12042775d9ca3a66f2018adc3e with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.104 testing commit 30921fc1e5fcf904f9afddeece1288f5b16ba017 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.103 testing commit c793fa334c7b5b685957720ef0842e7cddab62a6 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.102 testing commit 5461ace2e2f7b0ebdeca502c743ea819106ecc52 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.101 testing commit d6bf9dcebdd11967b2b6c73d7c8f4863624f69c7 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.100 testing commit 557ac4e2077364ff58c69fc524a8fc79c83870bf with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.99 testing commit 383e9b61f85cc8e5f1fcb1493d95f826a2fa736e with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.98 testing commit 0d7866d54a2c2d708807930c3bfd38ab3ce0550d with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.97 testing commit e1e364bf09d92018d35f20a004ffcfd4cbeffa34 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.96 testing commit e6608e1f2fbd5827df9fa0da9ab1ad64f68be8d7 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: kernel BUG at ./include/linux/mm.h:LINE! run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.95 testing commit 3b68e5cf57f08ad1a9dd7f8ca48ae1326ac98824 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.94 testing commit 8979da2558a4993989542e1d2db23b426b148ae9 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.93 testing commit 9c07fc259396fb5a26713755f92f60eb477ed567 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: KASAN: use-after-free Read in do_blockdev_direct_IO testing release v4.14.92 testing commit 24737fa6bcf1d7ffb71ceb78d7a7c275cb7e1d13 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.91 testing commit d2dd9f1593dc4d5ceb5cf4a973ed2c6e3a49d799 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.90 testing commit 592f5569e18471c07208f74540f4e0f646b226f7 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.89 testing commit 3beeb2615681fe87f4e6291ade669d50c27ce59a with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: basic kernel testing failed: general protection fault in vhost_vsock_dev_release testing release v4.14.88 testing commit 1bb538a39cf959009d4e424ea4e590a1f58b2ed6 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.87 testing commit ca48e5e30b75a28c12c43c7428c95735e4885e6b with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: boot failed: can't ssh into the instance testing release v4.14.86 testing commit 7152401aeedd9685fcf1cb58138c868890d9164f with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.85 testing commit 5ff1ad556aad473952c1caca6092aac4517ac1ae with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.84 testing commit 4201a586f1fa63de5a965a1ebc3b99e0e1a4912c with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.83 testing commit 1d4bd2e4e1d26c5384d52ca4a1953cb0cfc934f1 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.82 testing commit a21f3c11b41beb0b3b7d5de28d3d5a0692c5b22b with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.81 testing commit 2e390c487815669fb9bb35d7ea11883cc10a9b50 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.80 testing commit 0b047cbc44ae7d0cea41a99cd7ec1f009360a605 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.79 testing commit 50961e4888a1d53544ac4ea6f185fc27ee4fee4f with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.78 testing commit e7405910ca5553eae8744af4e5c03e64ee048cb1 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.77 testing commit 8263087bf62739362d50ec965c8c34fe3ee7a7cd with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.76 testing commit 0b46ce3e3423aee80d28d296e1806176cdcec7ad with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.75 testing commit 8e6a9240b1918c31a90e5d0a02c467ca68b160c6 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.74 testing commit e6abbe80c8838e9c0bdb51835e6218008fa49386 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.73 testing commit 3b65f403d7d0e98484e8f2c9471808f2785a8235 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.72 testing commit 2cc4d365363b1fb681b8231adcf4a8f80082506c with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.71 testing commit 1244bbb3e92135d247e2dddfa6fe5e3e171a9635 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.70 testing commit 5dfe87ac34e2326ae2957fc68b63212d84f78701 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.69 testing commit 7fe7a0f4c5cf9e7f5b7cb67c1341cdbf62ed4c30 with gcc (GCC) 8.1.0 run #0: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/syzkaller/jobs/linux/workdir/image/key" "/syzkaller/jobs/linux/workdir/repro.prog" "root@10.128.15.208:./repro.prog"]: exit status 1 Warning: Permanently added '10.128.15.208' (ECDSA) to the list of known hosts. /syzkaller/jobs/linux/workdir/repro.prog: Broken pipe run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.68 testing commit ee13f7edca5838436feefde90ed1b2ebb07c4184 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.67 testing commit f4c88459f7c9320f587b839c3d24a2a9dc18a8a0 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: KASAN: global-out-of-bounds Read in do_blockdev_direct_IO testing release v4.14.66 testing commit c5f7d3c4daf14ba3717fcc1497854d8c365bd742 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.65 testing commit 4cea13b66144903ae7310331b43e08f7b2d6aadb with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.64 testing commit 7251bd56d92540ab75d660e96d4fb1b7131b38da with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.63 testing commit 9d5cd9f2a4d7eb445963cafd9872186a9a262077 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.62 testing commit 1aa1166efaceef8972045b4aa25e6e0ab96d8a30 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: KASAN: global-out-of-bounds Read in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.61 testing commit 2ae6c0413b4768f9d8fc6f718a732f9dae014b67 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.60 testing commit deaacd62c2175c624a41c1b3c721e23c660031e1 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.59 testing commit 53208e12faa5b8c6eac4eb1d23d6e3fae450fc5a with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.58 testing commit f952480a8fc14ea24a4de9582e425924f98c92d3 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.57 testing commit ecc160ece609498c946e73710e5c7c54c62b966a with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.56 testing commit cff26c95b24c7b7147db17b623dee946bd25ec95 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.55 testing commit 1e92e813554a93741666e9f378a83d70405b9076 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.54 testing commit 5893f4c3fb784f48c020d2637c129a45da7be39e with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.53 testing commit fa745a1bd983b601c3f9c081ebf07dad9e0e3cb9 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.52 testing commit a26899e0baa4de07caf97f5e4d7298240e98fd0e with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.51 testing commit 33445c07cd45541410fb4cabd08b10827764c07f with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.50 testing commit cda6fd4d9382205bb792255cd56a91062d404bc0 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.49 testing commit 70d7bbd9b504c1dde0dc44a469a513695d9cbdd6 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.48 testing commit 2c6025ebc7fd8e0a8ca785d778dc6ae25225744b with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.47 testing commit 57a3ca7835962109d94533465a75e8c716b26845 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.46 testing commit bf4367d790c514490896f29085d9fa3defa28513 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.45 testing commit 2c2b15bb0e8872fe2914785ccb276c304417911d with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.44 testing commit 102b97d6241d938ac153193504a5936fc0be27ed with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.43 testing commit 1dff08485b9e835d00bfb34a435bc6f07dadb6fd with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.42 testing commit d88700f79448fc8f03617d4f1929c39676f8d1e4 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.41 testing commit 3f07ecbec1518b1638f8227a5e1d0154c3b4826f with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.40 testing commit fc72a4171174dd6b7ddefe5eeaa12cec9a162704 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.39 testing commit 7d6240f0fb85430ae4f490824fdf8d0a078dfcd2 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.38 testing commit a87463f7420cd33c8cb3ece420468023c16f27b4 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.37 testing commit 753be7e83bb80128b4a2aa24214c98466905827c with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.36 testing commit d6949f48093c2d862d9bc39a7a89f2825c55edc4 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.35 testing commit 672f07d8274ba5978be693710efd55f230777193 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.34 testing commit ffebeb0d7c37716ef2732646001522a6a764e284 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.33 testing commit b867b7a7e5904064e76eea88396bfcd50428bdb5 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.32 testing commit 9a2e216d9e892249b63d10603c75495749202df9 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.31 testing commit 9861e6647c856ccf87188fce6d3ff12454de1415 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.30 testing commit de8cdc5572311b0742eccf3c0cfd34af1e105904 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.29 testing commit 8096079403628e532af7152ce7a6aebf46900f62 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.28 testing commit 42b96e19dddd6fa35aba5f57f8bcc284a4c3049d with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.27 testing commit 9b1fb9cc922dbf27959287ad75009bb388d115fe with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.26 testing commit 96427a5164f3eff6ee6eb924dbb53adb6eaa082d with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.25 testing commit 8773f9bfa9e82c9311a58e82dcfc4f3470946a12 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.24 testing commit 6e4548ea58e6a5ed2dd3a417d991742e2dec0246 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.23 testing commit 267ef1d332845c1d361ff3fd1d346613a12db773 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.22 testing commit 55b195735142c1a8ffccb21a4af0b1bd8bd4d1eb with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.21 testing commit 58056a531e440061142a4481358ebb365193df5e with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.20 testing commit 7e83b2ff485cacbf73d27f821e07a8c78ad8cc68 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.19 testing commit 1722fe3727845178e5d7fe3fdf35b8a5de230fdf with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.18 testing commit 81d0cc85caabe062991ea45ddada814835d47fb0 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.17 testing commit 0146985addc322ca518d27fecfe98ae5acda7c1e with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.16 testing commit 6c70076667f246dc200c7a3e9aeabd2f8f388416 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.15 testing commit a16134b082346b7e7c34f594a0763eafacdcea92 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.14 testing commit 9c0bf9847171edd597a13adf3ddc879e96d947cd with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.13 testing commit b8447222eb207d5a5ec20a0f357065963dabdcd0 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.12 testing commit 8d577afdee3540808302d9dc7a0a7be96c91178f with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.11 testing commit 0d59679df5b53755c00ea0292df696f97bfc950d with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.10 testing commit b8ce8232fcc37fe7a97db79ea0a5f32098c25e72 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.9 testing commit dad5c1402c570cd07a80113784bc20a7f930c8ae with gcc (GCC) 8.1.0 run #0: basic kernel testing failed: BUG: using smp_processor_id() in preemptible [ADDR] code: sshd/6800 run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.8 testing commit 7b3775017f4e6b87dfd2c7f63d1eaf057948f31d with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: kernel BUG at ./include/linux/mm.h:LINE! run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.7 testing commit 3afae8437c3cbc22966762e80e81818f5a90eb06 with gcc (GCC) 8.1.0 run #0: crashed: general protection fault in do_blockdev_direct_IO run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: KASAN: global-out-of-bounds Read in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: KASAN: slab-out-of-bounds Read in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.6 testing commit 5fd159e1ee6a87a72626139813034f24f047d0e6 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.5 testing commit 64138f0adb25ca8f34baa57af33260b05efe2874 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.4 testing commit 51a2a68fde2035887c0d74aee1c9569c691dfd61 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.3 testing commit 191314edb326764c4481b09ccf7d00159abe4679 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.2 testing commit f9f0b03dedc19a6363a305d119efcb48667a3027 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14.1 testing commit 780a781dd6f1af9dfac15b8eeba1cb678c9fc380 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.14 testing commit bebc6082da0a9f5d47a1ea2edc099bf671058bd4 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.13 testing commit 569dbb88e80deb68974ef6fdd6a13edb9d686261 with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.12 testing commit 6f7da290413ba713f0cdd9ff1a2a9bb129ef4f6c with gcc (GCC) 8.1.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.11 testing commit a351e9b9fc24e982ec2f0e76379a49826036da12 with gcc (GCC) 7.3.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.10 testing commit c470abd4fde40ea6a0846a2beab642a578c0b8cd with gcc (GCC) 5.5.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.9 testing commit 69973b830859bc6529a7a0468ba0d80ee5117826 with gcc (GCC) 5.5.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.8 testing commit c8d2bc9bc39ebea8437fd974fdbc21847bb897a3 with gcc (GCC) 5.5.0 run #0: crashed: kernel BUG at ./include/linux/mm.h:LINE! run #1: crashed: general protection fault in do_blockdev_direct_IO run #2: crashed: general protection fault in do_blockdev_direct_IO run #3: crashed: general protection fault in do_blockdev_direct_IO run #4: crashed: general protection fault in do_blockdev_direct_IO run #5: crashed: general protection fault in do_blockdev_direct_IO run #6: crashed: general protection fault in do_blockdev_direct_IO run #7: crashed: general protection fault in do_blockdev_direct_IO run #8: crashed: general protection fault in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.7 testing commit 523d939ef98fd712632d93a5a2b588e477a7565e with gcc (GCC) 5.5.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.6 testing commit 2dcd0af568b0cf583645c8a317dd12e344b1c72a with gcc (GCC) 5.5.0 all runs: crashed: general protection fault in do_blockdev_direct_IO testing release v4.5 testing commit b562e44f507e863c6792946e4e1b1449fbbac85d with gcc (GCC) 5.5.0 run #0: crashed: BUG: unable to handle kernel run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #2: crashed: BUG: unable to handle kernel run #3: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #4: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #6: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #7: crashed: BUG: unable to handle kernel run #8: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #9: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO testing release v4.4 testing commit afd2ff9b7e1b367172f18ba7f693dfb62bdcb2dc with gcc (GCC) 5.5.0 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #3: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #4: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #6: crashed: BUG: unable to handle kernel run #7: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #8: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #9: crashed: general protection fault in do_blockdev_direct_IO testing release v4.3 testing commit 6a13feb9c82803e2b815eca72fa7a9f5561d7861 with gcc (GCC) 5.5.0 all runs: OK # git bisect start afd2ff9b7e1b367172f18ba7f693dfb62bdcb2dc 6a13feb9c82803e2b815eca72fa7a9f5561d7861 Bisecting: 6963 revisions left to test after this (roughly 13 steps) [f66477a0aeb77f97a7de5f791700dadc42f3f792] Merge tag 'clk-for-linus-20151104' of git://git.kernel.org/pub/scm/linux/kernel/git/clk/linux testing commit f66477a0aeb77f97a7de5f791700dadc42f3f792 with gcc (GCC) 5.5.0 all runs: OK # git bisect good f66477a0aeb77f97a7de5f791700dadc42f3f792 Bisecting: 3481 revisions left to test after this (roughly 12 steps) [56e0464980febfa50432a070261579415c72664e] Merge tag 'armsoc-soc' of git://git.kernel.org/pub/scm/linux/kernel/git/arm/arm-soc testing commit 56e0464980febfa50432a070261579415c72664e with gcc (GCC) 5.5.0 all runs: OK # git bisect good 56e0464980febfa50432a070261579415c72664e Bisecting: 1737 revisions left to test after this (roughly 11 steps) [34258a32d9a9fc9e38fb549efe1692301cc31f85] Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/s390/linux testing commit 34258a32d9a9fc9e38fb549efe1692301cc31f85 with gcc (GCC) 5.5.0 all runs: OK # git bisect good 34258a32d9a9fc9e38fb549efe1692301cc31f85 Bisecting: 867 revisions left to test after this (roughly 10 steps) [fb7b26e47ef932a21f0cac4cf04e8f51105d77d7] Merge branch 'sched-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip testing commit fb7b26e47ef932a21f0cac4cf04e8f51105d77d7 with gcc (GCC) 5.5.0 run #0: crashed: BUG: unable to handle kernel run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #3: crashed: BUG: unable to handle kernel run #4: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #6: crashed: BUG: unable to handle kernel run #7: crashed: BUG: unable to handle kernel run #8: crashed: BUG: unable to handle kernel run #9: crashed: BUG: unable to handle kernel # git bisect bad fb7b26e47ef932a21f0cac4cf04e8f51105d77d7 Bisecting: 432 revisions left to test after this (roughly 9 steps) [c64410f3eca037f831e9db7cf880e600acc841af] Merge tag 'fixes-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/arm/arm-soc testing commit c64410f3eca037f831e9db7cf880e600acc841af with gcc (GCC) 5.5.0 all runs: OK # git bisect good c64410f3eca037f831e9db7cf880e600acc841af Bisecting: 274 revisions left to test after this (roughly 8 steps) [2873d32ff493ecbfb7d2c7f56812ab941dda42f4] Merge branch 'for-linus' of git://git.kernel.dk/linux-block testing commit 2873d32ff493ecbfb7d2c7f56812ab941dda42f4 with gcc (GCC) 5.5.0 all runs: OK # git bisect good 2873d32ff493ecbfb7d2c7f56812ab941dda42f4 Bisecting: 141 revisions left to test after this (roughly 7 steps) [b1007e73aefb4729404495084ede9e346286310c] Merge tag 'pm+acpi-4.4-rc4' of git://git.kernel.org/pub/scm/linux/kernel/git/rafael/linux-pm testing commit b1007e73aefb4729404495084ede9e346286310c with gcc (GCC) 5.5.0 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #3: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #4: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #6: crashed: BUG: unable to handle kernel run #7: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #8: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #9: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO # git bisect bad b1007e73aefb4729404495084ede9e346286310c Bisecting: 66 revisions left to test after this (roughly 6 steps) [ae26c1c6cb9bd5ad6fa1dbfdf1fe430ac09b0d28] stmmac: fix PHY reset during resume testing commit ae26c1c6cb9bd5ad6fa1dbfdf1fe430ac09b0d28 with gcc (GCC) 5.5.0 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO # git bisect bad ae26c1c6cb9bd5ad6fa1dbfdf1fe430ac09b0d28 Bisecting: 28 revisions left to test after this (roughly 5 steps) [f96c9285487f28a90b301718aad86f047d2abb94] Merge tag 'wireless-drivers-for-davem-2015-11-20' of git://git.kernel.org/pub/scm/linux/kernel/git/kvalo/wireless-drivers testing commit f96c9285487f28a90b301718aad86f047d2abb94 with gcc (GCC) 5.5.0 run #0: crashed: BUG: unable to handle kernel run #1: crashed: BUG: unable to handle kernel run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #3: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #4: crashed: BUG: unable to handle kernel run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #6: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #7: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #8: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #9: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO # git bisect bad f96c9285487f28a90b301718aad86f047d2abb94 Bisecting: 18 revisions left to test after this (roughly 4 steps) [52dfc8301248f5008d64a680e832e2f99c55ec9a] net: ethernet: add driver for Aurora VLSI NB8800 Ethernet controller testing commit 52dfc8301248f5008d64a680e832e2f99c55ec9a with gcc (GCC) 5.5.0 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #2: crashed: BUG: unable to handle kernel run #3: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #4: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #6: crashed: BUG: unable to handle kernel run #7: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #8: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #9: crashed: BUG: unable to handle kernel paging request in do_blockdev_direct_IO # git bisect bad 52dfc8301248f5008d64a680e832e2f99c55ec9a Bisecting: 8 revisions left to test after this (roughly 3 steps) [f4b16fce7a5a1ec8069b1f577476bdc1d2688cd1] arm64: bpf: fix buffer pointer testing commit f4b16fce7a5a1ec8069b1f577476bdc1d2688cd1 with gcc (GCC) 5.5.0 all runs: OK # git bisect good f4b16fce7a5a1ec8069b1f577476bdc1d2688cd1 Bisecting: 4 revisions left to test after this (roughly 2 steps) [0e45f4da5981895e885dd72fe912a3f8e32bae73] tcp: disable Fast Open on timeouts after handshake testing commit 0e45f4da5981895e885dd72fe912a3f8e32bae73 with gcc (GCC) 5.5.0 all runs: OK # git bisect good 0e45f4da5981895e885dd72fe912a3f8e32bae73 Bisecting: 2 revisions left to test after this (roughly 1 step) [5d4c9bfbabdb1d497f21afd81501e5c54b0c85d9] tcp: fix potential huge kmalloc() calls in TCP_REPAIR testing commit 5d4c9bfbabdb1d497f21afd81501e5c54b0c85d9 with gcc (GCC) 5.5.0 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #3: crashed: BUG: unable to handle kernel run #4: crashed: BUG: unable to handle kernel run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #6: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #7: crashed: BUG: unable to handle kernel NULL pointer dereference in do_blockdev_direct_IO run #8: crashed: BUG: unable to handle kernel run #9: crashed: BUG: unable to handle kernel # git bisect bad 5d4c9bfbabdb1d497f21afd81501e5c54b0c85d9 Bisecting: 0 revisions left to test after this (roughly 0 steps) [dd52bc2b4ed16db66f9347aa263d8f1dc889b4b6] tcp: fix Fast Open snmp over-counting bug testing commit dd52bc2b4ed16db66f9347aa263d8f1dc889b4b6 with gcc (GCC) 5.5.0 all runs: OK # git bisect good dd52bc2b4ed16db66f9347aa263d8f1dc889b4b6 5d4c9bfbabdb1d497f21afd81501e5c54b0c85d9 is the first bad commit commit 5d4c9bfbabdb1d497f21afd81501e5c54b0c85d9 Author: Eric Dumazet Date: Wed Nov 18 21:03:33 2015 -0800 tcp: fix potential huge kmalloc() calls in TCP_REPAIR tcp_send_rcvq() is used for re-injecting data into tcp receive queue. Problems : - No check against size is performed, allowed user to fool kernel in attempting very large memory allocations, eventually triggering OOM when memory is fragmented. - In case of fault during the copy we do not return correct errno. Lets use alloc_skb_with_frags() to cook optimal skbs. Fixes: 292e8d8c8538 ("tcp: Move rcvq sending to tcp_input.c") Fixes: c0e88ff0f256 ("tcp: Repair socket queues") Signed-off-by: Eric Dumazet Cc: Pavel Emelyanov Acked-by: Pavel Emelyanov Signed-off-by: David S. Miller net/ipv4/tcp_input.c | 22 +++++++++++++++++++--- 1 file changed, 19 insertions(+), 3 deletions(-) revisions tested: 177, total time: 33h46m22.375823568s (build: 22h11m27.331324696s, test: 10h53m1.157278737s) first bad commit: 5d4c9bfbabdb1d497f21afd81501e5c54b0c85d9 tcp: fix potential huge kmalloc() calls in TCP_REPAIR cc: ["davem@davemloft.net" "edumazet@google.com" "jmorris@namei.org" "kaber@trash.net" "kuznet@ms2.inr.ac.ru" "linux-kernel@vger.kernel.org" "netdev@vger.kernel.org" "xemul@parallels.com" "yoshfuji@linux-ipv6.org"] crash: BUG: unable to handle kernel bridge0: port 2(bridge_slave_1) entered forwarding state IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready chnl_net:caif_netlink_parms(): no params data found device bridge_slave_0 entered promiscuous mode BUG: unable to handle kernel [ 42.145784] kobject: 'brport' (ffff8800aebc5d40): kobject_uevent_env kobject: 'brport' (ffff8800aebc5d40): kobject_uevent_env: filter function caused the event to drop! kobject: 'brport' (ffff8800b7ecd940): kobject_add_internal: parent: 'bridge_slave_1', set: '' device bridge_slave_1 entered promiscuous mode kobject: 'brport' (ffff8800b7ecd940): kobject_uevent_env kobject: 'brport' (ffff8800b7ecd940): kobject_uevent_env: filter function caused the event to drop! kobject: 'veth0_to_bond' (ffff8800b1a37538): kobject_add_internal: parent: 'net', set: 'devices' kobject: 'veth0_to_bond' (ffff8800b1a37538): kobject_uevent_env kobject: 'veth0_to_bond' (ffff8800b1a37538): fill_kobj_path: path = '/devices/virtual/net/veth0_to_bond' kobject: 'queues' (ffff8800af2da8c8): kobject_add_internal: parent: 'veth0_to_bond', set: '' kobject: 'queues' (ffff8800af2da8c8): kobject_uevent_env kobject: 'queues' (ffff8800af2da8c8): kobject_uevent_env: filter function caused the event to drop! kobject: 'rx-0' (ffff88012aa82d10): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'rx-0' (ffff88012aa82d10): kobject_uevent_env kobject: 'rx-0' (ffff88012aa82d10): fill_kobj_path: path = '/devices/virtual/net/veth0_to_bond/queues/rx-0' kobject: 'tx-0' (ffff8800aeb22418): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'tx-0' (ffff8800aeb22418): kobject_uevent_env kobject: 'tx-0' (ffff8800aeb22418): fill_kobj_path: path = '/devices/virtual/net/veth0_to_bond/queues/tx-0' kobject: 'bond_slave_0' (ffff880127857538): kobject_add_internal: parent: 'net', set: 'devices' kobject: 'bond_slave_0' (ffff880127857538): kobject_uevent_env kobject: 'bond_slave_0' (ffff880127857538): fill_kobj_path: path = '/devices/virtual/net/bond_slave_0' kobject: 'queues' (ffff8800af08b5c8): kobject_add_internal: parent: 'bond_slave_0', set: '' kobject: 'queues' (ffff8800af08b5c8): kobject_uevent_env kobject: 'queues' (ffff8800af08b5c8): kobject_uevent_env: filter function caused the event to drop! kobject: 'rx-0' (ffff88012aa82d90): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'rx-0' (ffff88012aa82d90): kobject_uevent_env kobject: 'rx-0' (ffff88012aa82d90): fill_kobj_path: path = '/devices/virtual/net/bond_slave_0/queues/rx-0' kobject: 'tx-0' (ffff8800b8f2e018): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'tx-0' (ffff8800b8f2e018): kobject_uevent_env kobject: 'tx-0' (ffff8800b8f2e018): fill_kobj_path: path = '/devices/virtual/net/bond_slave_0/queues/tx-0' kobject: 'veth1_to_bond' (ffff880127839538): kobject_add_internal: parent: 'net', set: 'devices' kobject: 'veth1_to_bond' (ffff880127839538): kobject_uevent_env kobject: 'veth1_to_bond' (ffff880127839538): fill_kobj_path: path = '/devices/virtual/net/veth1_to_bond' kobject: 'queues' (ffff8800b18fba48): kobject_add_internal: parent: 'veth1_to_bond', set: '' kobject: 'queues' (ffff8800b18fba48): kobject_uevent_env kobject: 'queues' (ffff8800b18fba48): kobject_uevent_env: filter function caused the event to drop! kobject: 'rx-0' (ffff88012aa82a10): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'rx-0' (ffff88012aa82a10): kobject_uevent_env kobject: 'rx-0' (ffff88012aa82a10): fill_kobj_path: path = '/devices/virtual/net/veth1_to_bond/queues/rx-0' kobject: 'tx-0' (ffff88012a34bc18): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'tx-0' (ffff88012a34bc18): kobject_uevent_env kobject: 'tx-0' (ffff88012a34bc18): fill_kobj_path: path = '/devices/virtual/net/veth1_to_bond/queues/tx-0' kobject: 'bond_slave_1' (ffff880127838538): kobject_add_internal: parent: 'net', set: 'devices' kobject: 'bond_slave_1' (ffff880127838538): kobject_uevent_env kobject: 'bond_slave_1' (ffff880127838538): fill_kobj_path: path = '/devices/virtual/net/bond_slave_1' kobject: 'queues' (ffff8800b6b79f88): kobject_add_internal: parent: 'bond_slave_1', set: '' kobject: 'queues' (ffff8800b6b79f88): kobject_uevent_env kobject: 'queues' (ffff8800b6b79f88): kobject_uevent_env: filter function caused the event to drop! kobject: 'rx-0' (ffff88012aa82a90): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'rx-0' (ffff88012aa82a90): kobject_uevent_env kobject: 'rx-0' (ffff88012aa82a90): fill_kobj_path: path = '/devices/virtual/net/bond_slave_1/queues/rx-0' kobject: 'tx-0' (ffff8800aeb22618): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'tx-0' (ffff8800aeb22618): kobject_uevent_env kobject: 'tx-0' (ffff8800aeb22618): fill_kobj_path: path = '/devices/virtual/net/bond_slave_1/queues/tx-0' IPv6: ADDRCONF(NETDEV_UP): bond_slave_0: link is not ready kobject: 'bonding_slave' (ffff88012a34bed8): kobject_add_internal: parent: 'bond_slave_0', set: '' bond0: Enslaving bond_slave_0 as an active interface with an up link IPv6: ADDRCONF(NETDEV_UP): bond_slave_1: link is not ready kobject: 'bonding_slave' (ffff88012a34b6d8): kobject_add_internal: parent: 'bond_slave_1', set: '' bond0: Enslaving bond_slave_1 as an active interface with an up link kobject: 'veth0_to_team' (ffff88012a288538): kobject_add_internal: parent: 'net', set: 'devices' kobject: 'veth0_to_team' (ffff88012a288538): kobject_uevent_env kobject: 'veth0_to_team' (ffff88012a288538): fill_kobj_path: path = '/devices/virtual/net/veth0_to_team' kobject: 'queues' (ffff8800b6b79e08): kobject_add_internal: parent: 'veth0_to_team', set: '' kobject: 'queues' (ffff8800b6b79e08): kobject_uevent_env kobject: 'queues' (ffff8800b6b79e08): kobject_uevent_env: filter function caused the event to drop! kobject: 'rx-0' (ffff88012aa82610): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'rx-0' (ffff88012aa82610): kobject_uevent_env kobject: 'rx-0' (ffff88012aa82610): fill_kobj_path: path = '/devices/virtual/net/veth0_to_team/queues/rx-0' kobject: 'tx-0' (ffff88012a333c18): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'tx-0' (ffff88012a333c18): kobject_uevent_env kobject: 'tx-0' (ffff88012a333c18): fill_kobj_path: path = '/devices/virtual/net/veth0_to_team/queues/tx-0' kobject: 'team_slave_0' (ffff88012a330538): kobject_add_internal: parent: 'net', set: 'devices' kobject: 'team_slave_0' (ffff88012a330538): kobject_uevent_env kobject: 'team_slave_0' (ffff88012a330538): fill_kobj_path: path = '/devices/virtual/net/team_slave_0' kobject: 'queues' (ffff8800b6b79808): kobject_add_internal: parent: 'team_slave_0', set: '' kobject: 'queues' (ffff8800b6b79808): kobject_uevent_env kobject: 'queues' (ffff8800b6b79808): kobject_uevent_env: filter function caused the event to drop! kobject: 'rx-0' (ffff88012aa82690): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'rx-0' (ffff88012aa82690): kobject_uevent_env kobject: 'rx-0' (ffff88012aa82690): fill_kobj_path: path = '/devices/virtual/net/team_slave_0/queues/rx-0' kobject: 'tx-0' (ffff88012a34b218): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'tx-0' (ffff88012a34b218): kobject_uevent_env kobject: 'tx-0' (ffff88012a34b218): fill_kobj_path: path = '/devices/virtual/net/team_slave_0/queues/tx-0' kobject: 'veth1_to_team' (ffff8800afbf0538): kobject_add_internal: parent: 'net', set: 'devices' kobject: 'veth1_to_team' (ffff8800afbf0538): kobject_uevent_env kobject: 'veth1_to_team' (ffff8800afbf0538): fill_kobj_path: path = '/devices/virtual/net/veth1_to_team' kobject: 'queues' (ffff8800b7e16d48): kobject_add_internal: parent: 'veth1_to_team', set: '' kobject: 'queues' (ffff8800b7e16d48): kobject_uevent_env kobject: 'queues' (ffff8800b7e16d48): kobject_uevent_env: filter function caused the event to drop! kobject: 'rx-0' (ffff88012aa82310): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'rx-0' (ffff88012aa82310): kobject_uevent_env kobject: 'rx-0' (ffff88012aa82310): fill_kobj_path: path = '/devices/virtual/net/veth1_to_team/queues/rx-0' kobject: 'tx-0' (ffff88012a333418): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'tx-0' (ffff88012a333418): kobject_uevent_env kobject: 'tx-0' (ffff88012a333418): fill_kobj_path: path = '/devices/virtual/net/veth1_to_team/queues/tx-0' kobject: 'team_slave_1' (ffff8800af283538): kobject_add_internal: parent: 'net', set: 'devices' kobject: 'team_slave_1' (ffff8800af283538): kobject_uevent_env kobject: 'team_slave_1' (ffff8800af283538): fill_kobj_path: path = '/devices/virtual/net/team_slave_1' kobject: 'queues' (ffff8800b7e16b08): kobject_add_internal: parent: 'team_slave_1', set: '' kobject: 'queues' (ffff8800b7e16b08): kobject_uevent_env kobject: 'queues' (ffff8800b7e16b08): kobject_uevent_env: filter function caused the event to drop! kobject: 'rx-0' (ffff88012aa82390): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'rx-0' (ffff88012aa82390): kobject_uevent_env kobject: 'rx-0' (ffff88012aa82390): fill_kobj_path: path = '/devices/virtual/net/team_slave_1/queues/rx-0' kobject: 'tx-0' (ffff88012a333e18): kobject_add_internal: parent: 'queues', set: 'queues' kobject: 'tx-0' (ffff88012a333e18): kobject_uevent_env kobject: 'tx-0' (ffff88012a333e18): fill_kobj_path: path = '/devices/virtual/net/team_slave_1/queues/tx-0' NULL pointer dereference at 0000000000000020 IP: [] __read_once_size include/linux/compiler.h:218 [inline] IP: [] PageTail include/linux/page-flags.h:400 [inline] IP: [] get_page include/linux/mm.h:489 [inline] IP: [] submit_page_section fs/direct-io.c:813 [inline] IP: [] do_direct_IO fs/direct-io.c:1032 [inline] IP: [] do_blockdev_direct_IO+0x11a9/0x2ff0 fs/direct-io.c:1246 PGD b7ff6067 PUD af120067 PMD 0 Oops: 0000 [#1] PREEMPT SMP Modules linked in: CPU: 1 PID: 6054 Comm: syz-executor.0 Not tainted 4.4.0-rc1-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 task: ffff8800ae95a200 ti: ffff8800b1a4c000 task.ti: ffff8800b1a4c000 RIP: 0010:[] [] __read_once_size include/linux/compiler.h:218 [inline] RIP: 0010:[] [] PageTail include/linux/page-flags.h:400 [inline] RIP: 0010:[] [] get_page include/linux/mm.h:489 [inline] RIP: 0010:[] [] submit_page_section fs/direct-io.c:813 [inline] RIP: 0010:[] [] do_direct_IO fs/direct-io.c:1032 [inline] RIP: 0010:[] [] do_blockdev_direct_IO+0x11a9/0x2ff0 fs/direct-io.c:1246 RSP: 0018:ffff8800b1a4f910 EFLAGS: 00010202 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000000000000c RDX: 0000000000001000 RSI: ffffea0002b84a00 RDI: ffffea0002b84a00 RBP: ffff8800b1a4fb28 R08: ffff8800b3dbd788 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: ffff8800b3dbd700 R13: ffffea0002b84a00 R14: ffff8800baf6a040 R15: ffff8800baf6a078 FS: 00007f054d7d6700(0000) GS:ffff88012c100000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000000020 CR3: 00000000b7ff5000 CR4: 00000000001406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Stack: ffff8800bb246580 ffff8800ae95a200 0000000000022a60 0005080000000000 0000000000001000 ffff8800ae95a200 0000000000022a61 ffff8800ae95a200 ffffffff00000000 0000000000001000 ffff8800ae95a200 00001000b1a4f9b8 Call Trace: [] __blockdev_direct_IO+0x3e/0x40 fs/direct-io.c:1332 [] blockdev_direct_IO include/linux/fs.h:2697 [inline] [] ext4_ind_direct_IO+0xf1/0x420 fs/ext4/indirect.c:709 [] ext4_ext_direct_IO fs/ext4/inode.c:3131 [inline] [] ext4_direct_IO+0x363/0x6e0 fs/ext4/inode.c:3281 [] generic_file_direct_write+0xab/0x160 mm/filemap.c:2437 [] __generic_file_write_iter+0xbd/0x1e0 mm/filemap.c:2617 [] ext4_file_write_iter+0x17d/0x440 fs/ext4/file.c:171 [] vfs_iter_write+0x5e/0x90 fs/read_write.c:364 [] iter_file_splice_write+0x245/0x390 fs/splice.c:1012 [] do_splice_from fs/splice.c:1116 [inline] [] do_splice fs/splice.c:1392 [inline] [] SYSC_splice fs/splice.c:1695 [inline] [] SyS_splice+0x2ff/0x770 fs/splice.c:1678 [] entry_SYSCALL_64_fastpath+0x16/0x76 Code: d3 e8 48 03 84 24 c0 01 00 00 48 89 84 24 a0 01 00 00 e8 3b c0 f4 ff 48 c7 84 24 b0 01 00 00 00 00 00 00 48 8b 84 24 a8 00 00 00 <48> 8b 40 20 a8 01 0f 85 21 0e 00 00 48 8b 84 24 a8 00 00 00 8b RIP [] __read_once_size include/linux/compiler.h:218 [inline] RIP [] PageTail include/linux/page-flags.h:400 [inline] RIP [] get_page include/linux/mm.h:489 [inline] RIP [] submit_page_section fs/direct-io.c:813 [inline] RIP [] do_direct_IO fs/direct-io.c:1032 [inline] RIP [] do_blockdev_direct_IO+0x11a9/0x2ff0 fs/direct-io.c:1246 RSP CR2: 0000000000000020 BUG: unable to handle kernel paging request at 0000000000001a1f IP: [] __read_once_size include/linux/compiler.h:218 [inline] IP: [] PageTail include/linux/page-flags.h:400 [inline] IP: [] get_page include/linux/mm.h:489 [inline] IP: [] submit_page_section fs/direct-io.c:813 [inline] IP: [] do_direct_IO fs/direct-io.c:1032 [inline] IP: [] do_blockdev_direct_IO+0x11a9/0x2ff0 fs/direct-io.c:1246 PGD af167067 PUD aeb8c067 PMD 0 Oops: 0000 [#2] PREEMPT SMP Modules linked in: CPU: 0 PID: 6056 Comm: syz-executor.4 Tainted: G D 4.4.0-rc1-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 task: ffff8800af20a640 ti: ffff8801278c4000 task.ti: ffff8801278c4000 RIP: 0010:[] [] __read_once_size include/linux/compiler.h:218 [inline] RIP: 0010:[] [] PageTail include/linux/page-flags.h:400 [inline] RIP: 0010:[] [] get_page include/linux/mm.h:489 [inline] RIP: 0010:[] [] submit_page_section fs/direct-io.c:813 [inline] RIP: 0010:[] [] do_direct_IO fs/direct-io.c:1032 [inline] RIP: 0010:[] [] do_blockdev_direct_IO+0x11a9/0x2ff0 fs/direct-io.c:1246 RSP: 0018:ffff8801278c7910 EFLAGS: 00010202 RAX: 00000000000019ff RBX: 0000000000000000 RCX: 000000000000000c RDX: 0000000000001000 RSI: ffffea0004ac6a00 RDI: ffffea0004ac6a00 RBP: ffff8801278c7b28 R08: ffff8800af9b2888 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000010 R12: ffff8800af9b2800 R13: ffffea0004ac6a00 R14: ffff88012a213c00 R15: ffff88012a213c38 FS: 00007fe1d7a70700(0000) GS:ffff88012c000000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000001a1f CR3: 00000000af166000 CR4: 00000000001406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Stack: ffff8800bb246580 ffff8800af20a640 0000000000022a80 0005080000067000 0000000000001000 ffff8800af20a640 0000000000022a81 ffff8800af20a640 ffff880100000000 0000000000001000 ffff8800af20a640 000010008205cded Call Trace: [] __blockdev_direct_IO+0x3e/0x40 fs/direct-io.c:1332 [] blockdev_direct_IO include/linux/fs.h:2697 [inline] [] ext4_ind_direct_IO+0xf1/0x420 fs/ext4/indirect.c:709 [] ext4_ext_direct_IO fs/ext4/inode.c:3131 [inline] [] ext4_direct_IO+0x363/0x6e0 fs/ext4/inode.c:3281 [] generic_file_direct_write+0xab/0x160 mm/filemap.c:2437 [] __generic_file_write_iter+0xbd/0x1e0 mm/filemap.c:2617 [] ext4_file_write_iter+0x17d/0x440 fs/ext4/file.c:171 [] vfs_iter_write+0x5e/0x90 fs/read_write.c:364 [] iter_file_splice_write+0x245/0x390 fs/splice.c:1012 [] do_splice_from fs/splice.c:1116 [inline] [] do_splice fs/splice.c:1392 [inline] [] SYSC_splice fs/splice.c:1695 [inline] [] SyS_splice+0x2ff/0x770 fs/splice.c:1678 [] entry_SYSCALL_64_fastpath+0x16/0x76 Code: d3 e8 48 03 84 24 c0 01 00 00 48 89 84 24 a0 01 00 00 e8 3b c0 f4 ff 48 c7 84 24 b0 01 00 00 00 00 00 00 48 8b 84 24 a8 00 00 00 <48> 8b 40 20 a8 01 0f 85 21 0e 00 00 48 8b 84 24 a8 00 00 00 8b RIP [] __read_once_size include/linux/compiler.h:218 [inline] RIP [] PageTail include/linux/page-flags.h:400 [inline] RIP [] get_page include/linux/mm.h:489 [inline] RIP [] submit_page_section fs/direct-io.c:813 [inline] RIP [] do_direct_IO fs/direct-io.c:1032 [inline] RIP [] do_blockdev_direct_IO+0x11a9/0x2ff0 fs/direct-io.c:1246 RSP CR2: 0000000000001a1f BUG: unable to handle kernel [ 43.694890] ---[ end trace 2f2a37ed5c62feba ]---