bisecting cause commit starting from 2c523b344dfa65a3738e7039832044aa133c75fb
building syzkaller on 2e9971bbbfb4df6ba0118353163a7703f3dbd6ec
testing commit 2c523b344dfa65a3738e7039832044aa133c75fb with gcc (GCC) 8.1.0
kernel signature: fe3caac6ded3640db82cc77ba4d8c9148e85579a7c3bb8e81d9a0ddc7dc3a08a
all runs: crashed: INFO: trying to register non-static key in uhid_dev_destroy
testing release v5.5
testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0
kernel signature: 364ce7f6ceac533c80d782177f6976c94e96d310fe512b231396095ea466a0b2
all runs: OK
# git bisect start 2c523b344dfa65a3738e7039832044aa133c75fb d5226fa6dbae0569ee43ecfc08bdcd6770fc4755
Bisecting: 7336 revisions left to test after this (roughly 13 steps)
[4cadc60d6bcfee9c626d4b55e9dc1475d21ad3bb] Merge tag 'for-v5.6' of git://git.kernel.org/pub/scm/linux/kernel/git/sre/linux-power-supply
testing commit 4cadc60d6bcfee9c626d4b55e9dc1475d21ad3bb with gcc (GCC) 8.1.0
kernel signature: b4c18cc2245bae7833669ff30ad29ab12598cf60db6c5ecd3cd8c7c0701c2046
all runs: OK
# git bisect good 4cadc60d6bcfee9c626d4b55e9dc1475d21ad3bb
Bisecting: 3694 revisions left to test after this (roughly 12 steps)
[153b5c566d30fb984827acb12fd93c3aa6c147d3] Merge tag 'microblaze-v5.6-rc1' of git://git.monstr.eu/linux-2.6-microblaze
testing commit 153b5c566d30fb984827acb12fd93c3aa6c147d3 with gcc (GCC) 8.1.0
kernel signature: f9706c79f6c62267513cdc5afed3a3030a5ead35926055c9217ba6628500e20b
all runs: OK
# git bisect good 153b5c566d30fb984827acb12fd93c3aa6c147d3
Bisecting: 1877 revisions left to test after this (roughly 11 steps)
[1afa9c3b7c9bdcb562e2afe9f58cc99d0b071cdc] Merge tag 'armsoc-dt' of git://git.kernel.org/pub/scm/linux/kernel/git/soc/soc
testing commit 1afa9c3b7c9bdcb562e2afe9f58cc99d0b071cdc with gcc (GCC) 8.1.0
kernel signature: b2480b173e04918a439d0f21c9d704be351b7525134cecc34c0e633911948274
all runs: OK
# git bisect good 1afa9c3b7c9bdcb562e2afe9f58cc99d0b071cdc
Bisecting: 948 revisions left to test after this (roughly 10 steps)
[b0dd1eb220c06892e0a4098378c4296650f3f8db] Merge branch 'akpm' (patches from Andrew)
testing commit b0dd1eb220c06892e0a4098378c4296650f3f8db with gcc (GCC) 8.1.0
kernel signature: 5256f2a4d7b0915cfeac861097d85f947c7d307eb0bc05f1420d84504c9d15c9
run #0: boot failed: can't ssh into the instance
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect good b0dd1eb220c06892e0a4098378c4296650f3f8db
Bisecting: 505 revisions left to test after this (roughly 9 steps)
[a2f0b878c3ca531a1706cb2a8b079cea3b17bafc] Merge tag 'kbuild-fixes-v5.6-2' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild
testing commit a2f0b878c3ca531a1706cb2a8b079cea3b17bafc with gcc (GCC) 8.1.0
kernel signature: 37b6fa25d3aca7b986e7dd19d3da866cebd666730b66f67cfd9eccef6c2aaa89
all runs: crashed: INFO: trying to register non-static key in uhid_dev_destroy
# git bisect bad a2f0b878c3ca531a1706cb2a8b079cea3b17bafc
Bisecting: 224 revisions left to test after this (roughly 8 steps)
[e5553ac71e584c3aa443e211ca2afded6071b5b6] Merge tag 'staging-5.6-rc3' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/staging
testing commit e5553ac71e584c3aa443e211ca2afded6071b5b6 with gcc (GCC) 8.1.0
kernel signature: 4b35d3405300d82901ee9bf4bf2783f869b5da25edd682aacd82f9a82c966f67
all runs: OK
# git bisect good e5553ac71e584c3aa443e211ca2afded6071b5b6
Bisecting: 115 revisions left to test after this (roughly 7 steps)
[c6188dff33fba320826e87e387ae6efffab0525d] Merge tag 'csky-for-linus-5.6-rc3' of git://github.com/c-sky/csky-linux
testing commit c6188dff33fba320826e87e387ae6efffab0525d with gcc (GCC) 8.1.0
kernel signature: c53e826d1ea8d09ceeaf8451f28e98e53ef36bf0a2c31d0f18cbec30609a9b6a
all runs: OK
# git bisect good c6188dff33fba320826e87e387ae6efffab0525d
Bisecting: 60 revisions left to test after this (roughly 6 steps)
[d67f250e96344f006e3a6be148def4c6537d05a0] Merge branch 'mips-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/mips/linux
testing commit d67f250e96344f006e3a6be148def4c6537d05a0 with gcc (GCC) 8.1.0
kernel signature: d5f90024237471682ea3e4a7695130c0f6fe46915291b717f1e7804f82b464d3
all runs: OK
# git bisect good d67f250e96344f006e3a6be148def4c6537d05a0
Bisecting: 27 revisions left to test after this (roughly 5 steps)
[91ad64a84e9e63e2906ae714dfa3933dd3f64c64] Merge tag 'trace-v5.6-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/rostedt/linux-trace
testing commit 91ad64a84e9e63e2906ae714dfa3933dd3f64c64 with gcc (GCC) 8.1.0
kernel signature: dc97b61388cebf090821af0c22e5fc97ba5c7b62a12e70a662ee4079ba9059ad
all runs: OK
# git bisect good 91ad64a84e9e63e2906ae714dfa3933dd3f64c64
Bisecting: 16 revisions left to test after this (roughly 4 steps)
[4eb1b01de5b9d8596d6c103efcf1a15cfc1bedf7] HID: hid-bigbenff: fix race condition for scheduled work during removal
testing commit 4eb1b01de5b9d8596d6c103efcf1a15cfc1bedf7 with gcc (GCC) 8.1.0
kernel signature: 9751466469e78c384b05a69f367e725c207a0708126ba6bd67c3e22419a4a753
all runs: crashed: INFO: trying to register non-static key in uhid_dev_destroy
# git bisect bad 4eb1b01de5b9d8596d6c103efcf1a15cfc1bedf7
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[84a4062632462c4320704fcdf8e99e89e94c0aba] HID: core: increase HID report buffer size to 8KiB
testing commit 84a4062632462c4320704fcdf8e99e89e94c0aba with gcc (GCC) 8.1.0
kernel signature: 26afc18f901237b74713811af0e26176a99cfeb16efc7f45c2e72f0453fbdc40
all runs: crashed: INFO: trying to register non-static key in uhid_dev_destroy
# git bisect bad 84a4062632462c4320704fcdf8e99e89e94c0aba
Bisecting: 2 revisions left to test after this (roughly 1 step)
[beae56192a2570578ae45050e73c5ff9254f63e6] HID: ite: Only bind to keyboard USB interface on Acer SW5-012 keyboard dock
testing commit beae56192a2570578ae45050e73c5ff9254f63e6 with gcc (GCC) 8.1.0
kernel signature: 33ea9aa9b53d2b0b7d2c0197dcc4bd2d5d544e8cf28f731b8366b5b53d73c377
all runs: OK
# git bisect good beae56192a2570578ae45050e73c5ff9254f63e6
Bisecting: 0 revisions left to test after this (roughly 1 step)
[5ebdffd25098898aff1249ae2f7dbfddd76d8f8f] HID: core: fix off-by-one memset in hid_report_raw_event()
testing commit 5ebdffd25098898aff1249ae2f7dbfddd76d8f8f with gcc (GCC) 8.1.0
kernel signature: 8f153a7095533d8a6800484d7fd1b641716535f336de640b4c09681cc44d4b02
all runs: OK
# git bisect good 5ebdffd25098898aff1249ae2f7dbfddd76d8f8f
84a4062632462c4320704fcdf8e99e89e94c0aba is the first bad commit
commit 84a4062632462c4320704fcdf8e99e89e94c0aba
Author: Johan Korsnes <jkorsnes@cisco.com>
Date:   Fri Jan 17 13:08:36 2020 +0100

    HID: core: increase HID report buffer size to 8KiB
    
    We have a HID touch device that reports its opens and shorts test
    results in HID buffers of size 8184 bytes. The maximum size of the HID
    buffer is currently set to 4096 bytes, causing probe of this device to
    fail. With this patch we increase the maximum size of the HID buffer to
    8192 bytes, making device probe and acquisition of said buffers succeed.
    
    Signed-off-by: Johan Korsnes <jkorsnes@cisco.com>
    Cc: Alan Stern <stern@rowland.harvard.edu>
    Cc: Armando Visconti <armando.visconti@st.com>
    Cc: Jiri Kosina <jkosina@suse.cz>
    Signed-off-by: Jiri Kosina <jkosina@suse.cz>

 include/linux/hid.h | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
culprit signature: 26afc18f901237b74713811af0e26176a99cfeb16efc7f45c2e72f0453fbdc40
parent  signature: 8f153a7095533d8a6800484d7fd1b641716535f336de640b4c09681cc44d4b02
revisions tested: 15, total time: 4h19m25.21461661s (build: 1h39m39.399227323s, test: 2h38m41.265326558s)
first bad commit: 84a4062632462c4320704fcdf8e99e89e94c0aba HID: core: increase HID report buffer size to 8KiB
cc: ["benjamin.tissoires@redhat.com" "jikos@kernel.org" "jkorsnes@cisco.com" "jkosina@suse.cz" "linux-input@vger.kernel.org" "linux-kernel@vger.kernel.org"]
crash: INFO: trying to register non-static key in uhid_dev_destroy
INFO: trying to register non-static key.
the code is fine but needs lockdep annotation.
turning off the locking correctness validator.
CPU: 0 PID: 1245 Comm: syz-executor.4 Not tainted 5.5.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x128/0x182 lib/dump_stack.c:118
 assign_lock_key kernel/locking/lockdep.c:880 [inline]
 register_lock_class+0x18a5/0x1a50 kernel/locking/lockdep.c:1189
 __lock_acquire+0x101/0x4370 kernel/locking/lockdep.c:3836
 lock_acquire+0x19b/0x420 kernel/locking/lockdep.c:4484
 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]
 _raw_spin_lock_irqsave+0x95/0xc0 kernel/locking/spinlock.c:159
 __wake_up_common_lock+0xa8/0x120 kernel/sched/wait.c:122
 uhid_dev_destroy+0x53/0xe0 drivers/hid/uhid.c:563
 uhid_char_release+0x48/0xa0 drivers/hid/uhid.c:642
 __fput+0x256/0x780 fs/file_table.c:280
 task_work_run+0x103/0x180 kernel/task_work.c:113
 tracehook_notify_resume include/linux/tracehook.h:188 [inline]
 exit_to_usermode_loop+0x23d/0x2d0 arch/x86/entry/common.c:164
 prepare_exit_to_usermode arch/x86/entry/common.c:195 [inline]
 syscall_return_slowpath arch/x86/entry/common.c:278 [inline]
 do_syscall_64+0x4f8/0x5e0 arch/x86/entry/common.c:304
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x416041
Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
RSP: 002b:00007ffd069950b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000416041
RDX: 0000001b31520000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: 0000000000000001 R08: 00ffffffffffffff R09: 00ffffffffffffff
R10: 00007ffd06995190 R11: 0000000000000293 R12: 000000000076bf20
R13: 0000000000771538 R14: 000000000003a700 R15: 000000000076bf2c
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 1245 Comm: syz-executor.4 Not tainted 5.5.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:__wake_up_common+0xd6/0x610 kernel/sched/wait.c:86
Code: 14 05 00 00 4c 8b 43 38 49 83 e8 18 49 8d 78 18 48 39 fd 0f 84 50 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 <80> 3c 01 00 0f 85 0b 05 00 00 49 8b 40 18 89 54 24 10 31 db 49 bd
RSP: 0018:ffffc90002bafcd0 EFLAGS: 00010046
RAX: dffffc0000000000 RBX: ffff88807bd513c8 RCX: 0000000000000000
RDX: 0000000000000001 RSI: 0000000000000001 RDI: 0000000000000000
RBP: ffff88807bd51400 R08: ffffffffffffffe8 R09: ffffc90002bafd58
R10: fffff52000575f94 R11: 0000000000000003 R12: ffffc90002bafd58
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
FS:  00000000026fb940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000004d8190 CR3: 0000000095d27000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 __wake_up_common_lock+0xc3/0x120 kernel/sched/wait.c:123
 uhid_dev_destroy+0x53/0xe0 drivers/hid/uhid.c:563
 uhid_char_release+0x48/0xa0 drivers/hid/uhid.c:642
 __fput+0x256/0x780 fs/file_table.c:280
 task_work_run+0x103/0x180 kernel/task_work.c:113
 tracehook_notify_resume include/linux/tracehook.h:188 [inline]
 exit_to_usermode_loop+0x23d/0x2d0 arch/x86/entry/common.c:164
 prepare_exit_to_usermode arch/x86/entry/common.c:195 [inline]
 syscall_return_slowpath arch/x86/entry/common.c:278 [inline]
 do_syscall_64+0x4f8/0x5e0 arch/x86/entry/common.c:304
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x416041
Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
RSP: 002b:00007ffd069950b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000416041
RDX: 0000001b31520000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: 0000000000000001 R08: 00ffffffffffffff R09: 00ffffffffffffff
R10: 00007ffd06995190 R11: 0000000000000293 R12: 000000000076bf20
R13: 0000000000771538 R14: 000000000003a700 R15: 000000000076bf2c
Modules linked in:
---[ end trace 611a3cb2bb4d4629 ]---
RIP: 0010:__wake_up_common+0xd6/0x610 kernel/sched/wait.c:86
Code: 14 05 00 00 4c 8b 43 38 49 83 e8 18 49 8d 78 18 48 39 fd 0f 84 50 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 <80> 3c 01 00 0f 85 0b 05 00 00 49 8b 40 18 89 54 24 10 31 db 49 bd
RSP: 0018:ffffc90002bafcd0 EFLAGS: 00010046
RAX: dffffc0000000000 RBX: ffff88807bd513c8 RCX: 0000000000000000
RDX: 0000000000000001 RSI: 0000000000000001 RDI: 0000000000000000
RBP: ffff88807bd51400 R08: ffffffffffffffe8 R09: ffffc90002bafd58
R10: fffff52000575f94 R11: 0000000000000003 R12: ffffc90002bafd58
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
FS:  00000000026fb940(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000004d8190 CR3: 0000000095d27000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400