ci starts bisection 2023-06-10 18:44:55.255491789 +0000 UTC m=+292807.543918672 bisecting cause commit starting from ded5c1a16ec69bb815f2b7d9ea4028913ebffca4 building syzkaller on 7086cdb95114c57c35cee9db87b80d4225d8795d ensuring issue is reproducible on original commit ded5c1a16ec69bb815f2b7d9ea4028913ebffca4 testing commit ded5c1a16ec69bb815f2b7d9ea4028913ebffca4 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: eba5a8b4a7bbd8c24cd6fe15e2bf96e1bba0f61beb02a4606cff020e6c1b864b all runs: crashed: general protection fault in cryptd_hash_export testing release v6.3 testing commit 457391b0380335d5e9a5babdec90ac53928b23b4 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: d48053f1df8dc05fd50e538ce23d69495e5fc18596b78cbcf074b8d58771adf0 all runs: OK # git bisect start ded5c1a16ec69bb815f2b7d9ea4028913ebffca4 457391b0380335d5e9a5babdec90ac53928b23b4 Bisecting: 8073 revisions left to test after this (roughly 13 steps) [cb6fe2ceb667eb78f252d473b03deb23999ab1cf] Merge tag 'devicetree-for-6.4-2' of git://git.kernel.org/pub/scm/linux/kernel/git/robh/linux testing commit cb6fe2ceb667eb78f252d473b03deb23999ab1cf gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: cf414e252f4f39709f2a8845b4b410944d1d3d5172bb866623f06cca8913082b all runs: OK # git bisect good cb6fe2ceb667eb78f252d473b03deb23999ab1cf Bisecting: 4038 revisions left to test after this (roughly 12 steps) [06936aaf490ff55dd5787375a83d6e486bccc397] Merge tag 'ext4_for_linus_stable' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4 testing commit 06936aaf490ff55dd5787375a83d6e486bccc397 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 0a77d2fc6ccf5da0d597f9f6f1c4a332eb60a0bd3a86e4c525e130414526021b all runs: OK # git bisect good 06936aaf490ff55dd5787375a83d6e486bccc397 Bisecting: 2019 revisions left to test after this (roughly 11 steps) [1b66c114d161a457897d269420c74620c032135c] Merge tag 'nfsd-6.4-1' of git://git.kernel.org/pub/scm/linux/kernel/git/cel/linux testing commit 1b66c114d161a457897d269420c74620c032135c gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 failed building 1b66c114d161a457897d269420c74620c032135c: failed to run ["make" "-j" "64" "ARCH=x86_64" "bzImage"]: exit status 2 # git bisect skip 1b66c114d161a457897d269420c74620c032135c Bisecting: 2019 revisions left to test after this (roughly 11 steps) [afed6271f5b0d78ca1a3739c1da4aa3629b26bba] pipe: set FMODE_NOWAIT on pipes testing commit afed6271f5b0d78ca1a3739c1da4aa3629b26bba gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 01d34446cf8db4925bd99c62cb10822f0078385e64255489c5bac82ebda8b53f all runs: OK # git bisect good afed6271f5b0d78ca1a3739c1da4aa3629b26bba Bisecting: 2018 revisions left to test after this (roughly 11 steps) [3367eeab975145e65136c2d091fe6e0c6cb29636] KVM: VMX: Fix header file dependency of asm/vmx.h testing commit 3367eeab975145e65136c2d091fe6e0c6cb29636 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 6e0a158c83dc98852453513de8eba0f78a6f25f9aa16f1ed707e8c1b1548f73f all runs: OK # git bisect good 3367eeab975145e65136c2d091fe6e0c6cb29636 Bisecting: 999 revisions left to test after this (roughly 10 steps) [b066935bf83371c34ab8ba3b15f4232536e2786f] Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm testing commit b066935bf83371c34ab8ba3b15f4232536e2786f gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 32daa60775cd1fe83c5565b32c359d037bc1fbdaebec01322743f25681cde848 all runs: OK # git bisect good b066935bf83371c34ab8ba3b15f4232536e2786f Bisecting: 499 revisions left to test after this (roughly 9 steps) [ae1ad12e9da4de8f0540258b197131f96cc24c6f] net: dsa: microchip: ksz8: Prepare ksz8863_smi for regmap register access validation testing commit ae1ad12e9da4de8f0540258b197131f96cc24c6f gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 9fad81522092c43890e899b1ad6c88379bac2c29ebe50bfe92d409186aad38ab all runs: OK # git bisect good ae1ad12e9da4de8f0540258b197131f96cc24c6f Bisecting: 287 revisions left to test after this (roughly 8 steps) [bfd019d10fdabf70f9b01264aea6d6c7595f9226] Merge branch 'crypto-splice-net-make-af_alg-handle-sendmsg-msg_splice_pages' testing commit bfd019d10fdabf70f9b01264aea6d6c7595f9226 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: d1d3f7aabdb89a4fa89bc1ed8f54816859558821e12c15f8523ca184a8030421 all runs: crashed: general protection fault in cryptd_hash_export # git bisect bad bfd019d10fdabf70f9b01264aea6d6c7595f9226 Bisecting: 105 revisions left to test after this (roughly 7 steps) [0af3613ddc915d136e9c56f645f80c4b1cb828ff] net/mlx5e: en_tc, re-factor query route port testing commit 0af3613ddc915d136e9c56f645f80c4b1cb828ff gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: b588a6146adb7dc3cd583aa1f299ba8c9dd402f24a176bb4b436859941755dee all runs: OK # git bisect good 0af3613ddc915d136e9c56f645f80c4b1cb828ff Bisecting: 52 revisions left to test after this (roughly 6 steps) [ae91f7e436f8b631c47e244b892ecac62a4d9430] net/pppoe: fix a typo for the PPPOE_HASH_BITS_1 definition testing commit ae91f7e436f8b631c47e244b892ecac62a4d9430 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 0065872065123f0e300482c75c02ca688e865131e045960c3d994ee4014e3d63 all runs: OK # git bisect good ae91f7e436f8b631c47e244b892ecac62a4d9430 Bisecting: 25 revisions left to test after this (roughly 5 steps) [2d830f7a41343302ab19e73d4f44f5ccb6940a25] net: altera-tse: Initialize local structs before using it testing commit 2d830f7a41343302ab19e73d4f44f5ccb6940a25 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 28f531ce0971fa021c6b49a6b4980695fe0deb66dfd14b119bdcb69fb38dff77 all runs: OK # git bisect good 2d830f7a41343302ab19e73d4f44f5ccb6940a25 Bisecting: 12 revisions left to test after this (roughly 4 steps) [854cace61387b6f60734d9ec254443a6894c480d] net: txgbe: Implement phylink pcs testing commit 854cace61387b6f60734d9ec254443a6894c480d gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 6452e0e308768f95f014cbe718ee4765f7a992968a0b3f2c6a39ff1303da9dc7 all runs: OK # git bisect good 854cace61387b6f60734d9ec254443a6894c480d Bisecting: 6 revisions left to test after this (roughly 3 steps) [f5f82cd18732d828bcd1ec308c4e8c55012e84b0] Move netfs_extract_iter_to_sg() to lib/scatterlist.c testing commit f5f82cd18732d828bcd1ec308c4e8c55012e84b0 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e5fdc6d5282e6af385a7f8ce6a36c2ca7713765125e5367627f5f042f79fb87a all runs: OK # git bisect good f5f82cd18732d828bcd1ec308c4e8c55012e84b0 Bisecting: 3 revisions left to test after this (roughly 2 steps) [73d7409cfdad7fd08a9203eb2912c1c77e527776] crypto: af_alg: Indent the loop in af_alg_sendmsg() testing commit 73d7409cfdad7fd08a9203eb2912c1c77e527776 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8cb6f93ead87d8356dee6f9031041d152c5e1edc27dfdbc920c19f5e2c55c0a5 all runs: OK # git bisect good 73d7409cfdad7fd08a9203eb2912c1c77e527776 Bisecting: 1 revision left to test after this (roughly 1 step) [fb800fa4c1f5aee1238267252e88a7837e645c02] crypto: af_alg: Convert af_alg_sendpage() to use MSG_SPLICE_PAGES testing commit fb800fa4c1f5aee1238267252e88a7837e645c02 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 3c81d4083d14bcf4fe56a2b65250fd94036bb98451c7fec7217aa22d4db7cfb3 all runs: OK # git bisect good fb800fa4c1f5aee1238267252e88a7837e645c02 Bisecting: 0 revisions left to test after this (roughly 0 steps) [c662b043cdca89bf0f03fc37251000ac69a3a548] crypto: af_alg/hash: Support MSG_SPLICE_PAGES testing commit c662b043cdca89bf0f03fc37251000ac69a3a548 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 13f416942de0b5f3bc2e3ea07b67aa393157317841061ac30666f2f786fc90ac all runs: crashed: general protection fault in cryptd_hash_export # git bisect bad c662b043cdca89bf0f03fc37251000ac69a3a548 c662b043cdca89bf0f03fc37251000ac69a3a548 is the first bad commit commit c662b043cdca89bf0f03fc37251000ac69a3a548 Author: David Howells Date: Tue Jun 6 14:08:56 2023 +0100 crypto: af_alg/hash: Support MSG_SPLICE_PAGES Make AF_ALG sendmsg() support MSG_SPLICE_PAGES in the hashing code. This causes pages to be spliced from the source iterator if possible. This allows ->sendpage() to be replaced by something that can handle multiple multipage folios in a single transaction. Signed-off-by: David Howells cc: Herbert Xu cc: "David S. Miller" cc: Eric Dumazet cc: Jakub Kicinski cc: Paolo Abeni cc: Jens Axboe cc: Matthew Wilcox cc: linux-crypto@vger.kernel.org cc: netdev@vger.kernel.org Acked-by: Herbert Xu Signed-off-by: Paolo Abeni crypto/af_alg.c | 11 ++++-- crypto/algif_hash.c | 100 ++++++++++++++++++++++++++++++++-------------------- 2 files changed, 70 insertions(+), 41 deletions(-) culprit signature: 13f416942de0b5f3bc2e3ea07b67aa393157317841061ac30666f2f786fc90ac parent signature: 3c81d4083d14bcf4fe56a2b65250fd94036bb98451c7fec7217aa22d4db7cfb3 revisions tested: 17, total time: 6h11m17.88428186s (build: 3h50m8.404524858s, test: 2h17m45.362198619s) first bad commit: c662b043cdca89bf0f03fc37251000ac69a3a548 crypto: af_alg/hash: Support MSG_SPLICE_PAGES recipients (to): ["dhowells@redhat.com" "herbert@gondor.apana.org.au" "pabeni@redhat.com"] recipients (cc): [] crash: general protection fault in cryptd_hash_export general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] PREEMPT SMP KASAN KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027] CPU: 1 PID: 5428 Comm: syz-executor.0 Not tainted 6.4.0-rc4-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 RIP: 0010:crypto_shash_alg include/crypto/hash.h:827 [inline] RIP: 0010:crypto_shash_export include/crypto/hash.h:956 [inline] RIP: 0010:cryptd_hash_export+0x41/0xb0 crypto/cryptd.c:636 Code: 48 89 ea 48 83 ec 08 48 c1 ea 03 80 3c 02 00 75 4d 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 60 48 8d 7b 20 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 4f 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 20 48 8d RSP: 0018:ffffc9000451fd40 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffffffff208bd1e RDX: 0000000000000004 RSI: ffff888013ea7de8 RDI: 0000000000000020 RBP: ffff888021826308 R08: 0000000000000001 R09: ffffffff903f1e27 R10: 0000000000000001 R11: ffffffff81bef4f5 R12: ffff888013ea7de8 R13: 0000000000000000 R14: ffff8880745dc800 R15: ffff88802a0b8148 FS: 00007f4b962b0700(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020004e80 CR3: 0000000070a2a000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: crypto_ahash_export include/crypto/hash.h:523 [inline] hash_accept+0x1f1/0x5b0 crypto/algif_hash.c:286 do_accept+0x34c/0x4e0 net/socket.c:1883 __sys_accept4_file net/socket.c:1924 [inline] __sys_accept4+0x57/0xb0 net/socket.c:1954 __do_sys_accept4 net/socket.c:1965 [inline] __se_sys_accept4 net/socket.c:1962 [inline] __x64_sys_accept4+0x92/0xf0 net/socket.c:1962 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f4b9548c169 Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f4b962b0168 EFLAGS: 00000246 ORIG_RAX: 0000000000000120 RAX: ffffffffffffffda RBX: 00007f4b955abf80 RCX: 00007f4b9548c169 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 RBP: 00007f4b954e7ca1 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd429dd75f R14: 00007f4b962b0300 R15: 0000000000022000 Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:crypto_shash_alg include/crypto/hash.h:827 [inline] RIP: 0010:crypto_shash_export include/crypto/hash.h:956 [inline] RIP: 0010:cryptd_hash_export+0x41/0xb0 crypto/cryptd.c:636 Code: 48 89 ea 48 83 ec 08 48 c1 ea 03 80 3c 02 00 75 4d 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 60 48 8d 7b 20 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 4f 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 20 48 8d RSP: 0018:ffffc9000451fd40 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffffffff208bd1e RDX: 0000000000000004 RSI: ffff888013ea7de8 RDI: 0000000000000020 RBP: ffff888021826308 R08: 0000000000000001 R09: ffffffff903f1e27 R10: 0000000000000001 R11: ffffffff81bef4f5 R12: ffff888013ea7de8 R13: 0000000000000000 R14: ffff8880745dc800 R15: ffff88802a0b8148 FS: 00007f4b962b0700(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000561707b33950 CR3: 0000000070a2a000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: 48 89 ea mov %rbp,%rdx 3: 48 83 ec 08 sub $0x8,%rsp 7: 48 c1 ea 03 shr $0x3,%rdx b: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) f: 75 4d jne 0x5e 11: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 18: fc ff df 1b: 48 8b 5b 60 mov 0x60(%rbx),%rbx 1f: 48 8d 7b 20 lea 0x20(%rbx),%rdi 23: 48 89 fa mov %rdi,%rdx 26: 48 c1 ea 03 shr $0x3,%rdx * 2a: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) <-- trapping instruction 2e: 75 4f jne 0x7f 30: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 37: fc ff df 3a: 48 8b 5b 20 mov 0x20(%rbx),%rbx 3e: 48 rex.W 3f: 8d .byte 0x8d