ci2 starts bisection 2025-02-11 08:40:14.014088375 +0000 UTC m=+69342.175558778
bisecting cause commit starting from a64dcfb451e254085a7daee5fe51bf22959d52d3
building syzkaller on 43f51a00700e5960fc890e6c3d596846757bf29d
ensuring issue is reproducible on original commit a64dcfb451e254085a7daee5fe51bf22959d52d3
testing commit a64dcfb451e254085a7daee5fe51bf22959d52d3 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: f070535fb2db4544ae593657b2fc70d02b9215f5408ce74e3cafda416c5bc61c
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
check whether we can drop unnecessary instrumentation
disabling configs for [UBSAN KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK], they are not needed
testing commit a64dcfb451e254085a7daee5fe51bf22959d52d3 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 68f9aa80aaa22faaae970cd2126ddad8b985a66df0f45f47ad68ee4f06a7ddad
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
the bug reproduces without the instrumentation
disabling configs for [LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN KASAN], they are not needed
kconfig minimization: base=4055 full=8256 leaves diff=2116
split chunks (needed=false): <2116>
split chunk #0 of len 2116 into 5 parts
testing without sub-chunk 1/5
disabling configs for [HANG LEAK UBSAN KASAN LOCKDEP ATOMIC_SLEEP], they are not needed
testing commit a64dcfb451e254085a7daee5fe51bf22959d52d3 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 234815387c739916c3520a81611f192e604a9b6fbd8e6570d19138bf1a4369e1
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
the chunk can be dropped
testing without sub-chunk 2/5
disabling configs for [ATOMIC_SLEEP HANG LEAK UBSAN KASAN LOCKDEP], they are not needed
testing commit a64dcfb451e254085a7daee5fe51bf22959d52d3 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
failed building a64dcfb451e254085a7daee5fe51bf22959d52d3: drivers/gpu/drm/bridge/aux-bridge.c:116: undefined reference to `devm_drm_of_get_bridge'
testing without sub-chunk 3/5
disabling configs for [KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN], they are not needed
testing commit a64dcfb451e254085a7daee5fe51bf22959d52d3 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 6edcc0ecb34bc93e2317f60616f8abc390c0cc73311b2af05a5259682764e2a2
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
the chunk can be dropped
testing without sub-chunk 4/5
disabling configs for [HANG LEAK UBSAN KASAN LOCKDEP ATOMIC_SLEEP], they are not needed
testing commit a64dcfb451e254085a7daee5fe51bf22959d52d3 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 096fb44b3071be65006a917c361130e7dde8abc856655f21549ff876d9bfac34
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
the chunk can be dropped
testing without sub-chunk 5/5
disabling configs for [KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN], they are not needed
testing commit a64dcfb451e254085a7daee5fe51bf22959d52d3 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: b56b23fdc9ccfe492ae0f55809fce9bd6d4f8b5252aba5cbe1fde3b305246d06
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
the chunk can be dropped
minimized to 424 configs; suspects: [6LOWPAN ARCH_ENABLE_MEMORY_HOTREMOVE ASUS_WMI CHARGER_BQ24190 CMA COMMON_CLK DAX DLM DRM DRM_BRIDGE DRM_I915 DRM_I915_CAPTURE_ERROR DRM_I915_COMPRESS_ERROR DRM_I915_USERPTR DRM_KMS_HELPER DRM_MIPI_DSI DRM_PANEL DRM_PANEL_BRIDGE DRM_PANEL_EDP DRM_PANEL_ORIENTATION_QUIRKS DRM_SIMPLEDRM DRM_TTM DRM_TTM_HELPER DRM_UDL DRM_VGEM DRM_VIRTIO_GPU DRM_VIRTIO_GPU_KMS DRM_VKMS DRM_VMWGFX DUMMY DVB_AF9013 DVB_AF9033 DVB_AS102 DVB_AS102_FE DVB_B2C2_FLEXCOP DVB_B2C2_FLEXCOP_USB DVB_CORE DVB_DIB3000MB DVB_DIB3000MC DVB_EC100 DVB_GP8PSK_FE DVB_RTL2830 DVB_RTL2832 DVB_RTL2832_SDR DVB_TEST_DRIVERS DVB_TTUSB_BUDGET DVB_TTUSB_DEC DVB_USB DVB_USB_A800 DVB_USB_AF9005 DVB_USB_AF9005_REMOTE DVB_USB_AF9015 DVB_USB_AF9035 DVB_USB_ANYSEE DVB_USB_AU6610 DVB_USB_AZ6007 DVB_USB_AZ6027 DVB_USB_CE6230 DVB_USB_CINERGY_T2 DVB_USB_CXUSB DVB_USB_CXUSB_ANALOG DVB_USB_DIB0700 DVB_USB_DIB3000MC DVB_USB_DIBUSB_MB DVB_USB_DIBUSB_MC DVB_USB_DIGITV DVB_USB_DTT200U DVB_USB_DTV5100 DVB_USB_DVBSKY DVB_USB_DW2102 DVB_USB_EC168 DVB_USB_GL861 DVB_USB_GP8PSK DVB_USB_LME2510 DVB_USB_M920X DVB_USB_MXL111SF DVB_USB_NOVA_T_USB2 DVB_USB_OPERA1 DVB_USB_PCTV452E DVB_USB_RTL28XXU DVB_USB_TECHNISAT_USB2 DVB_USB_TTUSB2 DVB_USB_UMT_010 DVB_USB_V2 DVB_USB_VP702X DVB_USB_VP7045 DVB_USB_ZD1301 DVB_VIDTV DVB_ZL10353 ECRYPT_FS ECRYPT_FS_MESSAGING EDAC EFS_FS ENCRYPTED_KEYS EQUALIZER EROFS_FS EROFS_FS_POSIX_ACL EROFS_FS_SECURITY EROFS_FS_XATTR EROFS_FS_ZIP EVM EVM_ADD_XATTRS EVM_ATTR_FSUUID EVM_EXTRA_SMACK_XATTRS EXFAT_FS EXPORTFS_BLOCK_OPS EXT3_FS EXT3_FS_POSIX_ACL EXT3_FS_SECURITY EXTCON EXTCON_INTEL_CHT_WC EXTCON_PTN5150 EXTCON_USBC_TUSB320 F2FS_CHECK_FS F2FS_FAULT_INJECTION F2FS_FS F2FS_FS_COMPRESSION F2FS_FS_LZ4 F2FS_FS_LZ4HC F2FS_FS_LZO F2FS_FS_LZORLE F2FS_FS_POSIX_ACL F2FS_FS_SECURITY F2FS_FS_XATTR F2FS_FS_ZSTD F2FS_STAT_FS FANOTIFY FANOTIFY_ACCESS_PERMISSIONS FB FB_CFB_COPYAREA FB_CFB_FILLRECT FB_CFB_IMAGEBLIT FB_CORE FB_DEFERRED_IO FB_DEVICE FB_IOMEM_FOPS FB_IOMEM_HELPERS FB_NOTIFY FB_SYSMEM_FOPS FB_SYSMEM_HELPERS FB_SYSMEM_HELPERS_DEFERRED FB_SYS_COPYAREA FB_SYS_FILLRECT FB_SYS_IMAGEBLIT FB_TILEBLITTING FB_VESA FB_VGA16 FB_VIRTUAL FDDI FIREWIRE FIREWIRE_NET FIREWIRE_OHCI FIREWIRE_SBP2 FONT_8x16 FONT_8x8 FONT_SUPPORT FRAMEBUFFER_CONSOLE FRAMEBUFFER_CONSOLE_DETECT_PRIMARY FRAMEBUFFER_CONSOLE_ROTATION FS_DAX FS_DAX_PMD FS_ENCRYPTION FS_ENCRYPTION_ALGS FS_STACK FS_VERITY FS_VERITY_BUILTIN_SIGNATURES FTL FUSE_DAX FUSE_FS FW_LOADER_COMPRESS FW_LOADER_PAGED_BUF FW_LOADER_SYSFS FW_LOADER_USER_HELPER FW_LOADER_USER_HELPER_FALLBACK GACT_PROB GARP GENDWARFKSYMS GENERIC_PHY GET_FREE_REGION GFS2_FS GFS2_FS_LOCKING_DLM GNSS GNSS_USB GOOGLE_COREBOOT_TABLE GOOGLE_FIRMWARE GOOGLE_MEMCONSOLE GOOGLE_MEMCONSOLE_COREBOOT GOOGLE_VPD GPIOLIB GPIOLIB_IRQCHIP GPIO_ACPI GPIO_DLN2 GPIO_LJCA GPIO_VIPERBOARD GREENASIA_FF GREYBUS GREYBUS_BRIDGED_PHY GREYBUS_ES2 GREYBUS_HID GREYBUS_USB GTP GUEST_PERF_EVENTS GVE HAVE_ARCH_NODE_DEV_GROUP HAVE_ARCH_USERFAULTFD_MINOR HAVE_ARCH_USERFAULTFD_WP HAVE_BOOTMEM_INFO_NODE HAVE_CLK_PREPARE HAVE_KVM_CPU_RELAX_INTERCEPT HAVE_KVM_DIRTY_RING HAVE_KVM_DIRTY_RING_ACQ_REL HAVE_KVM_DIRTY_RING_TSO HAVE_KVM_IRQCHIP HAVE_KVM_IRQ_BYPASS HAVE_KVM_IRQ_ROUTING HAVE_KVM_MSI HAVE_KVM_NO_POLL HAVE_KVM_PFNCACHE HAVE_KVM_PM_NOTIFIER HAVE_KVM_READONLY_MEM HAVE_SCHED_AVG_IRQ HDLC HDLC_CISCO HDLC_FR HDLC_PPP HDLC_RAW HDLC_RAW_ETH HDLC_X25 HDMI HFSPLUS_FS HFS_FS HID_ACCUTOUCH HID_ACRUX HID_ACRUX_FF HID_ALPS HID_APPLEIR HID_ASUS HID_AUREAL HID_BATTERY_STRENGTH HID_BETOP_FF HID_BIGBEN_FF HID_CMEDIA HID_CORSAIR HID_COUGAR HID_CP2112 HID_CREATIVE_SB0540 HID_ELAN HID_ELECOM HID_ELO HID_EMS_FF HID_EVISION HID_FT260 HID_GEMBIRD HID_GFRM HID_GLORIOUS HID_GOOGLE_STADIA_FF HID_GREENASIA HID_GT683R HID_HOLTEK HID_ICADE HID_JABRA HID_KEYTOUCH HID_KYE HID_LCPOWER HID_LED HID_LENOVO HID_LETSKETCH HID_LOGITECH_DJ HID_LOGITECH_HIDPP HID_MACALLY HID_MAGICMOUSE HID_MALTRON HID_MAYFLASH HID_MCP2200 HID_MCP2221 HID_MEGAWORLD_FF HID_MULTITOUCH HID_NTI HID_ORTEK HID_PENMOUNT HID_PICOLCD HID_PICOLCD_BACKLIGHT HID_PICOLCD_CIR HID_PICOLCD_FB HID_PICOLCD_LCD HID_PICOLCD_LEDS HID_PLANTRONICS HID_PRIMAX HID_PRODIKEYS HID_PXRC HID_RAZER HID_RETRODE HID_RMI HID_ROCCAT HID_SAITEK HID_SEMITEK HID_SENSOR_ACCEL_3D HID_SENSOR_ALS HID_SENSOR_CUSTOM_INTEL_HINGE HID_SENSOR_CUSTOM_SENSOR HID_SENSOR_DEVICE_ROTATION HID_SENSOR_GYRO_3D HID_SENSOR_HUB HID_SENSOR_HUMIDITY HID_SENSOR_IIO_COMMON HID_SENSOR_IIO_TRIGGER HID_SENSOR_INCLINOMETER_3D HID_SENSOR_MAGNETOMETER_3D HID_SENSOR_PRESS HID_SENSOR_PROX HID_SENSOR_TEMP HID_SIGMAMICRO HID_SPEEDLINK HID_STEELSERIES HID_THINGM HID_TIVO HID_TOPRE HID_TWINHAN HID_U2FZERO HID_UCLOGIC HID_UDRAW_PS3 HID_VIEWSONIC HID_VIVALDI HID_VIVALDI_COMMON HID_VRC2 HID_WACOM HID_WALTOP HID_WIIMOTE HID_XIAOMI HID_XINMO HID_ZYDACRON HMM_MIRROR HOLTEK_FF HOTPLUG_PCI_PCIE HPET_MMAP HPET_MMAP_DEFAULT HPFS_FS I2C_ALGOBIT I2C_CHARDEV I2C_CP2615 I2C_DESIGNWARE_CORE I2C_DESIGNWARE_PLATFORM I2C_DIOLAN_U2C I2C_DLN2 I2C_HID_ACPI I2C_HID_CORE I2C_HID_OF I2C_LJCA I2C_MUX I2C_MUX_REG I2C_ROBOTFUZZ_OSIF I2C_SI4713 I2C_SLAVE I2C_SLAVE_EEPROM I2C_TINY_USB I2C_VIPERBOARD IEEE802154 IEEE802154_6LOWPAN IEEE802154_ATUSB IEEE802154_DRIVERS IEEE802154_HWSIM IEEE802154_NL802154_EXPERIMENTAL IEEE802154_SOCKET IFB IIO IIO_BUFFER IIO_KFIFO_BUF IIO_TRIGGER IIO_TRIGGERED_BUFFER IKCONFIG IKCONFIG_PROC IMA IMA_APPRAISE IMA_APPRAISE_MODSIG IMA_DEFAULT_HASH_SHA256 IMA_LSM_RULES IMA_MEASURE_ASYMMETRIC_KEYS IMA_NG_TEMPLATE IMA_QUEUE_EARLY_BOOT_KEYS IMA_READ_POLICY IMA_WRITE_POLICY INET6_ESPINTCP INET6_ESP_OFFLOAD INET6_IPCOMP INET6_TUNNEL INET6_XFRM_TUNNEL INET_AH INET_DCCP_DIAG INET_DIAG INET_DIAG_DESTROY INET_ESP INET_ESPINTCP INET_ESP_OFFLOAD INET_IPCOMP INET_MPTCP_DIAG INET_RAW_DIAG INET_SCTP_DIAG INET_TCP_DIAG INET_UDP_DIAG INET_XFRM_TUNNEL INFINIBAND INFINIBAND_ADDR_TRANS INFINIBAND_ADDR_TRANS_CONFIGFS INFINIBAND_IPOIB INFINIBAND_IPOIB_CM INFINIBAND_IPOIB_DEBUG INFINIBAND_ISER INFINIBAND_ON_DEMAND_PAGING INFINIBAND_RTRS INFINIBAND_SRP INFINIBAND_USER_ACCESS INFINIBAND_USER_MAD INFINIBAND_USER_MEM INPUT_ATI_REMOTE2 INPUT_CM109 INPUT_IMS_PCU INPUT_JOYDEV INPUT_KEYSPAN_REMOTE INPUT_LEDS INPUT_MOUSEDEV INPUT_MOUSEDEV_PSAUX INPUT_POWERMATE INPUT_UINPUT INPUT_YEALINK INTEGRITY INTEGRITY_ASYMMETRIC_KEYS INTEGRITY_AUDIT INTEGRITY_SIGNATURE INTEGRITY_TRUSTED_KEYRING INTEL_CHTWC_INT33FE INTEL_IDMA64 INTEL_IOATDMA INTEL_IOMMU_DEFAULT_ON INTEL_IOMMU_SVM INTEL_ISHTP_ECLITE INTEL_ISH_FIRMWARE_DOWNLOADER INTEL_ISH_HID INTEL_SOC_PMIC_CHTWC INTERVAL_TREE_SPAN_ITER IOMMUFD IOMMUFD_DRIVER IOMMUFD_DRIVER_CORE IOMMUFD_TEST IP6_NF_MATCH_AH IP6_NF_MATCH_EUI64 IP6_NF_MATCH_FRAG IP6_NF_MATCH_HL IP6_NF_MATCH_MH IP6_NF_MATCH_OPTS IP6_NF_MATCH_RPFILTER IP6_NF_MATCH_RT IP6_NF_MATCH_SRH IP6_NF_NAT IP6_NF_RAW IP6_NF_SECURITY IP6_NF_TARGET_HL IP6_NF_TARGET_MASQUERADE IP6_NF_TARGET_NPT IP6_NF_TARGET_SYNPROXY IPV6_FOU IPV6_FOU_TUNNEL IPV6_GRE IPV6_ILA IPV6_MIP6 IPV6_MROUTE IPV6_MROUTE_MULTIPLE_TABLES IPV6_MULTIPLE_TABLES IPV6_OPTIMISTIC_DAD IPV6_PIMSM_V2 IPV6_ROUTER_PREF IPV6_ROUTE_INFO IPV6_RPL_LWTUNNEL IPV6_SEG6_BPF IPV6_SEG6_HMAC IPV6_SEG6_LWTUNNEL IPV6_SIT_6RD IPV6_SUBTREES IPV6_TUNNEL IPV6_VTI IPVLAN IPVLAN_L3S IPVTAP IP_DCCP IP_DCCP_CCID3 IP_DCCP_TFRC_LIB IP_FIB_TRIE_STATS IP_MROUTE_MULTIPLE_TABLES IP_NF_ARPFILTER IP_NF_ARPTABLES IP_NF_ARP_MANGLE IP_NF_MATCH_AH IP_NF_MATCH_ECN IP_NF_MATCH_RPFILTER IP_NF_MATCH_TTL IP_NF_RAW IP_NF_SECURITY IP_NF_TARGET_ECN IP_NF_TARGET_NETMAP IP_NF_TARGET_REDIRECT IP_NF_TARGET_SYNPROXY IP_NF_TARGET_TTL IP_ROUTE_CLASSID IP_SCTP IP_SET IP_SET_BITMAP_IP IP_SET_BITMAP_IPMAC IP_SET_BITMAP_PORT IP_SET_HASH_IP IP_SET_HASH_IPMAC IP_SET_HASH_IPMARK IP_SET_HASH_IPPORT IP_SET_HASH_IPPORTIP IP_SET_HASH_IPPORTNET IP_SET_HASH_MAC IP_SET_HASH_NET IP_SET_HASH_NETIFACE IP_SET_HASH_NETNET IP_SET_HASH_NETPORT IP_SET_HASH_NETPORTNET IP_SET_LIST_SET IP_VS IP_VS_DH IP_VS_FO IRQ_TIME_ACCOUNTING LAPB LCD_CLASS_DEVICE MAC802154 MEDIA_DIGITAL_TV_SUPPORT MEDIA_RADIO_SUPPORT MEDIA_SDR_SUPPORT MEDIA_SUPPORT MEDIA_TEST_SUPPORT MEDIA_USB_SUPPORT MEMORY_HOTPLUG MEMORY_HOTREMOVE MFD_DLN2 MFD_VIPERBOARD MODVERSIONS MPTCP MTD NETFILTER_ADVANCED NET_ACT_GACT NET_ACT_MIRRED NET_IPGRE_DEMUX NFT_COMPAT NFT_COMPAT_ARP NFT_FWD_NETDEV NF_TABLES NF_TABLES_ARP NF_TABLES_NETDEV RADIO_ADAPTERS RADIO_SI4713 RAS RC_CORE REGULATOR RFKILL SND SOUND STAGING TRANSPARENT_HUGEPAGE TYPEC TYPEC_MUX_PI3USB30532 USB_LJCA USB_ROLES_INTEL_XHCI USB_ROLE_SWITCH VIDEO_DEV VIRTIO_FS WAN ZONE_DEVICE]
disabling configs for [UBSAN KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK], they are not needed
picked [v6.13 v6.12 v6.11 v6.9 v6.7 v6.5 v6.3 v6.1 v5.18 v5.15 v5.12 v5.9 v5.6 v5.3 v5.0 v4.19] out of 36 release tags
testing release v6.13
testing commit ffd294d346d185b70e28b1a28abe367bbfe53c04 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 52a899671f2c436341fb0d22a9a2b09ebe44d8fcdd7f3bc5f5d6a73edba3e2c0
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
testing release v6.12
testing commit adc218676eef25575469234709c2d87185ca223a gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 0348d489b788fb52734fcb821937d4953a983dc97e8ec99cbcf3f0277df64b72
all runs: OK
false negative chance: 0.000
# git bisect start ffd294d346d185b70e28b1a28abe367bbfe53c04 adc218676eef25575469234709c2d87185ca223a
Bisecting: 6418 revisions left to test after this (roughly 13 steps)
[28eb75e178d389d325f1666e422bc13bbbb9804c] Merge tag 'drm-next-2024-11-21' of https://gitlab.freedesktop.org/drm/kernel
testing commit 28eb75e178d389d325f1666e422bc13bbbb9804c gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 7f21a1185694acce845479b2d225547bd83a49302955d4c390fc188ecb546a7c
all runs: OK
false negative chance: 0.000
# git bisect good 28eb75e178d389d325f1666e422bc13bbbb9804c
Bisecting: 3250 revisions left to test after this (roughly 12 steps)
[e33a6d83e1786d5e310ae746c67f5f4e2f93ba35] Merge tag 'usb-6.13-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb
testing commit e33a6d83e1786d5e310ae746c67f5f4e2f93ba35 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: ddcf7ec933aaafe2a0733d5cf47a9b9431781c19d33edd40dc133038dee14de0
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
# git bisect bad e33a6d83e1786d5e310ae746c67f5f4e2f93ba35
Bisecting: 1610 revisions left to test after this (roughly 11 steps)
[70dbb12e95ec7585c68cb3ceae971688915021e3] Merge tag 'i2c-for-6.13-part2' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
testing commit 70dbb12e95ec7585c68cb3ceae971688915021e3 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 9fea3e0b1f442dc9525171e2e2423087c12342146c7680054214b4b64bba927f
all runs: OK
false negative chance: 0.000
# git bisect good 70dbb12e95ec7585c68cb3ceae971688915021e3
Bisecting: 838 revisions left to test after this (roughly 10 steps)
[1dc707e647bc919834eff9636c8d00b78c782545] rust: fix up formatting after merge
testing commit 1dc707e647bc919834eff9636c8d00b78c782545 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 8cc3e730448d41423d7291b188f34e9c26a96b4bbff207ca720aea7d13916c10
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
# git bisect bad 1dc707e647bc919834eff9636c8d00b78c782545
Bisecting: 416 revisions left to test after this (roughly 9 steps)
[44b4d13b70f682a86fee356786cc3e17987fae4d] Merge tag 'f2fs-for-6.13-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/jaegeuk/f2fs
testing commit 44b4d13b70f682a86fee356786cc3e17987fae4d gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: d2a7676bdb6950cad29016027be99f7ff3881ac2eac9329cd965612f58e761b8
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
# git bisect bad 44b4d13b70f682a86fee356786cc3e17987fae4d
Bisecting: 219 revisions left to test after this (roughly 8 steps)
[222974c6ec9d901f7ad13bbe6e505ec1f1d822d4] iommu: remove stale declaration left over by a merge conflict
testing commit 222974c6ec9d901f7ad13bbe6e505ec1f1d822d4 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: e64fde4daf7269563fd4de8ccaf4b39478a9ae5b0027537418faf3b845a2732b
all runs: OK
false negative chance: 0.000
# git bisect good 222974c6ec9d901f7ad13bbe6e505ec1f1d822d4
Bisecting: 113 revisions left to test after this (roughly 7 steps)
[0637a68b9c6c1dfffcc1fca003cb7cd3257c3c03] Merge tag 'scsi-misc' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi
testing commit 0637a68b9c6c1dfffcc1fca003cb7cd3257c3c03 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 01190b125fa7461382c48f0c07df3cd844cf106f1cbf443139aa220e8b2c13da
all runs: OK
false negative chance: 0.000
# git bisect good 0637a68b9c6c1dfffcc1fca003cb7cd3257c3c03
Bisecting: 71 revisions left to test after this (roughly 6 steps)
[ff2a7a064a69069554564f52b6a84fc8a8c7d688] Merge tag 'gfs2-for-6.13' of git://git.kernel.org/pub/scm/linux/kernel/git/gfs2/linux-gfs2
testing commit ff2a7a064a69069554564f52b6a84fc8a8c7d688 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 8d53415d56d83c0f3082e722aa0e5902d4395f9cf26db707edddd363df6c85c6
all runs: OK
false negative chance: 0.000
# git bisect good ff2a7a064a69069554564f52b6a84fc8a8c7d688
Bisecting: 35 revisions left to test after this (roughly 5 steps)
[f88c7904b5c7e35ab8037e2a59e10d80adf6fd7e] f2fs: clear SBI_POR_DOING before initing inmem curseg
testing commit f88c7904b5c7e35ab8037e2a59e10d80adf6fd7e gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 0710fb2881a7e46b7a720acc4fa6d5f8e95ea576c3cf40fc3bc65bfde73b00b4
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
# git bisect bad f88c7904b5c7e35ab8037e2a59e10d80adf6fd7e
Bisecting: 17 revisions left to test after this (roughly 4 steps)
[9395fb09e897dcd96f601715e63018fc5c69cf03] f2fs: fix to parse temperature correctly in f2fs_get_segment_temp()
testing commit 9395fb09e897dcd96f601715e63018fc5c69cf03 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: bbd0963dcdc7d078ac362476e8f24d3637fe414021d819c42436b837671f9ae7
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
# git bisect bad 9395fb09e897dcd96f601715e63018fc5c69cf03
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[fa08972bcb7baaf5f1f4fdf251dc08bdd3ab1cf0] f2fs: decrease spare area for pinned files for zoned devices
testing commit fa08972bcb7baaf5f1f4fdf251dc08bdd3ab1cf0 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 71eb9a78bdf23c98913f48c7796b56da7125231bfc6287d68e274618adf04ffe
all runs: OK
false negative chance: 0.000
# git bisect good fa08972bcb7baaf5f1f4fdf251dc08bdd3ab1cf0
Bisecting: 4 revisions left to test after this (roughly 2 steps)
[43563069e1c1df417d2eed6eca8a22fc6b04691d] f2fs: check curseg->inited before write_sum_page in change_curseg
testing commit 43563069e1c1df417d2eed6eca8a22fc6b04691d gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 25d5b7cc7b7a68928e16dfbf3c42fd7caffe08041182653fd939f184bf0dfd54
all runs: OK
false negative chance: 0.000
# git bisect good 43563069e1c1df417d2eed6eca8a22fc6b04691d
Bisecting: 2 revisions left to test after this (roughly 1 step)
[e63ce120b41ac5a904758a0231d43c6b328cd8fa] f2fs: fix typos
testing commit e63ce120b41ac5a904758a0231d43c6b328cd8fa gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 595fdbb78565b5eef7545b811fcc33f2ebc9cf2372fea73c61947bbec8bada8e
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
# git bisect bad e63ce120b41ac5a904758a0231d43c6b328cd8fa
Bisecting: 0 revisions left to test after this (roughly 0 steps)
[84b5bb8bf0f6a78c232a20c2eecdbb8112ac2703] f2fs: modify f2fs_is_checkpoint_ready logic to allow more data to be written with the CP disable
testing commit 84b5bb8bf0f6a78c232a20c2eecdbb8112ac2703 gcc
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 947343b116558787826c7342194e38e215f5ecd980e1693072956a782770c3f3
all runs: crashed: kernel BUG in new_curseg
representative crash: kernel BUG in new_curseg, types: [BUG]
# git bisect bad 84b5bb8bf0f6a78c232a20c2eecdbb8112ac2703
84b5bb8bf0f6a78c232a20c2eecdbb8112ac2703 is the first bad commit
commit 84b5bb8bf0f6a78c232a20c2eecdbb8112ac2703
Author: Qi Han <hanqi@vivo.com>
Date: Fri Oct 25 03:18:23 2024 -0600
f2fs: modify f2fs_is_checkpoint_ready logic to allow more data to be written with the CP disable
When the free segment is used up during CP disable, many write or
ioctl operations will get ENOSPC error codes, even if there are
still many blocks available. We can reproduce it in the following
steps:
dd if=/dev/zero of=f2fs.img bs=1M count=65
mkfs.f2fs -f f2fs.img
mount f2fs.img f2fs_dir -o checkpoint=disable:10%
cd f2fs_dir
i=1 ; while [[ $i -lt 50 ]] ; do (file_name=./2M_file$i ; dd \
if=/dev/random of=$file_name bs=1M count=2); i=$((i+1)); done
sync
i=1 ; while [[ $i -lt 50 ]] ; do (file_name=./2M_file$i ; truncate \
-s 1K $file_name); i=$((i+1)); done
sync
dd if=/dev/zero of=./file bs=1M count=20
In f2fs_need_SSR() function, it is allowed to use SSR to allocate
blocks when CP is disabled, so in f2fs_is_checkpoint_ready function,
can we judge the number of invalid blocks when free segment is not
enough, and return ENOSPC only if the number of invalid blocks is
also not enough.
Signed-off-by: Qi Han <hanqi@vivo.com>
Reviewed-by: Chao Yu <chao@kernel.org>
Signed-off-by: Jaegeuk Kim <jaegeuk@kernel.org>
fs/f2fs/segment.h | 18 ++++++++++++++++++
1 file changed, 18 insertions(+)
accumulated error probability: 0.00
culprit signature: 947343b116558787826c7342194e38e215f5ecd980e1693072956a782770c3f3
parent signature: 25d5b7cc7b7a68928e16dfbf3c42fd7caffe08041182653fd939f184bf0dfd54
revisions tested: 22, total time: 4h33m20.675327255s (build: 2h5m35.509764601s, test: 2h15m55.326080267s)
first bad commit: 84b5bb8bf0f6a78c232a20c2eecdbb8112ac2703 f2fs: modify f2fs_is_checkpoint_ready logic to allow more data to be written with the CP disable
recipients (to): ["chao@kernel.org" "hanqi@vivo.com" "jaegeuk@kernel.org"]
recipients (cc): []
crash: kernel BUG in new_curseg
F2FS-fs (loop3): invalid crc value
F2FS-fs (loop3): Found nat_bits in checkpoint
F2FS-fs (loop3): Start checkpoint disabled!
F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
------------[ cut here ]------------
kernel BUG at fs/f2fs/segment.c:2744!
Oops: invalid opcode: 0000 [#1] PREEMPT SMP PTI
CPU: 0 UID: 0 PID: 3518 Comm: syz.3.16 Not tainted 6.12.0-rc3-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
RIP: 0010:get_new_segment fs/f2fs/segment.c:2744 [inline]
RIP: 0010:new_curseg+0x529/0x530 fs/f2fs/segment.c:2874
Code: bb 94 11 00 00 01 0f 84 57 fc ff ff 42 8b ac 28 3c 01 00 00 e9 9b fc ff ff 0f af cd 89 cd e9 54 fe ff ff 90 0f 0b 90 0f 0b 90 <0f> 0b 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
RSP: 0018:ffffc900001cbc08 EFLAGS: 00010246
RAX: 0000000000000018 RBX: ffff88810a702000 RCX: 0000000000000040
RDX: 0000000000000040 RSI: 0000000000000018 RDI: ffff88810b6eeb08
RBP: 0000000000000018 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000810 R14: ffff88810a702f18 R15: ffff888104f21240
FS: 00007fb086f746c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fb086170220 CR3: 0000000106b40000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<TASK>
__allocate_new_segment+0x79/0x1e0 fs/f2fs/segment.c:3208
f2fs_allocate_new_section fs/f2fs/segment.c:3222 [inline]
f2fs_allocate_pinning_section+0xad/0x160 fs/f2fs/segment.c:3236
f2fs_expand_inode_data+0x224/0x330 fs/f2fs/file.c:1826
f2fs_fallocate+0x15d/0x310 fs/f2fs/file.c:1936
vfs_fallocate+0x182/0x1c0 fs/open.c:333
do_vfs_ioctl+0xd82/0xdb0 fs/ioctl.c:886
__do_sys_ioctl fs/ioctl.c:905 [inline]
__se_sys_ioctl+0x49/0xb0 fs/ioctl.c:893
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xe0/0x1f0 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fb08618cde9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fb086f74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007fb0863a5fa0 RCX: 00007fb08618cde9
RDX: 00004000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
RBP: 00007fb08620e2a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007fb0863a5fa0 R15: 00007ffefe50b5b8
</TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:get_new_segment fs/f2fs/segment.c:2744 [inline]
RIP: 0010:new_curseg+0x529/0x530 fs/f2fs/segment.c:2874
Code: bb 94 11 00 00 01 0f 84 57 fc ff ff 42 8b ac 28 3c 01 00 00 e9 9b fc ff ff 0f af cd 89 cd e9 54 fe ff ff 90 0f 0b 90 0f 0b 90 <0f> 0b 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
RSP: 0018:ffffc900001cbc08 EFLAGS: 00010246
RAX: 0000000000000018 RBX: ffff88810a702000 RCX: 0000000000000040
RDX: 0000000000000040 RSI: 0000000000000018 RDI: ffff88810b6eeb08
RBP: 0000000000000018 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000810 R14: ffff88810a702f18 R15: ffff888104f21240
FS: 00007fb086f746c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fb086170220 CR3: 0000000106b40000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400