bisecting cause commit starting from 5287773dba0d5228c9714827b7ba9153b863e2b3
building syzkaller on e2d91b1d0dd8c8b4760986ec8114469246022bb8
testing commit 5287773dba0d5228c9714827b7ba9153b863e2b3
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: d70341e14eab2d260d1eb29c1ac9c20fc8219e49ec4f25b8d4e74dfd2ffc9262
all runs: crashed: BUG: stack guard page was hit in file_open
testing release v5.10.106
testing commit 327f1e7d813c77eceadafbdc498f5eb680fd9fb2
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: c98e710b5006ab04463339df90dbc16919b8d9ad988612c536df4d0d05404730
all runs: OK
# git bisect start 5287773dba0d5228c9714827b7ba9153b863e2b3 327f1e7d813c77eceadafbdc498f5eb680fd9fb2
Bisecting: 2820 revisions left to test after this (roughly 12 steps)
[9346eaec14ab233535b3025ebcd6c78e96aa65e4] FROMGIT: kasan: add a test for kmem_cache_alloc/free_bulk

testing commit 9346eaec14ab233535b3025ebcd6c78e96aa65e4
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 681431ebbc4e01a8a9631277900f3b17d1cf56c9b62db21846c8aed763cc9250
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 9346eaec14ab233535b3025ebcd6c78e96aa65e4
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[13aefe4bf83adbb2e00d7c716541ad51dcb1200d] BACKPORT: kasan: remove redundant config option

testing commit 13aefe4bf83adbb2e00d7c716541ad51dcb1200d
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 128f74dde8c25ee0615ee9b3a8b88c190f5d5933e08237ce9313f3a85dd29a3c
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 13aefe4bf83adbb2e00d7c716541ad51dcb1200d
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[5cf9a844f6f9ca929b6a513345db4ac521da68f9] ANDROID: dts: hi3660-hikey960: Add usb mux hub for hikey960

testing commit 5cf9a844f6f9ca929b6a513345db4ac521da68f9
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 1285149f8ed2257d147a9493af3b23a469b3e9d29910da21769fd7fbf293f4ad
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 5cf9a844f6f9ca929b6a513345db4ac521da68f9
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[852e4c4f82715aee7829b3958ae44172e69c1662] ANDROID: Revert "drm/virtio: Call the right shmem helpers"

testing commit 852e4c4f82715aee7829b3958ae44172e69c1662
compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: b9cec4554927e33b2e390825f5a2ddbca8f5e438ac114f93ceb2b61a69558708
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 852e4c4f82715aee7829b3958ae44172e69c1662
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[5ea1ff037ee9a0dfacd8a5424cf146cddc9bc596] FROMGIT: arm64: cpufeatures: Allow disabling of Pointer Auth from the command-line

testing commit 5ea1ff037ee9a0dfacd8a5424cf146cddc9bc596
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
mm/memory.c:4800:10: error: assignment of member 'vma' in read-only object
mm/memory.c:4942:12: error: assignment of member 'pgoff' in read-only object
mm/memory.c:4943:15: error: assignment of member 'gfp_mask' in read-only object
# git bisect skip 5ea1ff037ee9a0dfacd8a5424cf146cddc9bc596
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[900900ef8988b195e8c1d7c8296ae3c7dce5e3c5] ANDROID: Incremental fs: Remove attributes from file

testing commit 900900ef8988b195e8c1d7c8296ae3c7dce5e3c5
compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 60bbd60f44d08eea00be6cee4b77db34932c8bada967eaf432c98f55fde84316
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 900900ef8988b195e8c1d7c8296ae3c7dce5e3c5
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[5fe4f2978dca799e7dc41c6273e1a992f8f1f984] UPSTREAM: soc: meson: enable building drivers as modules

testing commit 5fe4f2978dca799e7dc41c6273e1a992f8f1f984
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
mm/memory.c:4800:10: error: assignment of member 'vma' in read-only object
mm/memory.c:4942:12: error: assignment of member 'pgoff' in read-only object
mm/memory.c:4943:15: error: assignment of member 'gfp_mask' in read-only object
# git bisect skip 5fe4f2978dca799e7dc41c6273e1a992f8f1f984
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[3a11b451ab1975b305aa704bc2b31ff217a729bf] Revert "ANDROID: include: uapi: drm: add additional QCOM modifiers"

testing commit 3a11b451ab1975b305aa704bc2b31ff217a729bf
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: d7afa5c7c6dea0b7730410bdd6a73990ed75e6409429878efa45f5804265a2bf
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 3a11b451ab1975b305aa704bc2b31ff217a729bf
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[b3aad324675d1d4c02cdd096e57e212825869799] ANDROID: gki_defconfig: enable CONFIG_KASAN_HW_TAGS

testing commit b3aad324675d1d4c02cdd096e57e212825869799
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 3869f2d0782cd7a7b5e67f0c91270cd098f616dda65f4ef098ba8961e70ed0da
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip b3aad324675d1d4c02cdd096e57e212825869799
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[67668f721bbc07989519795db4ad0b8bfe62da59] ANDROID: mm: page_pinner: use put_user_page at dump_user_range

testing commit 67668f721bbc07989519795db4ad0b8bfe62da59
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 01b97383f8a8db5f07e1c888ce92e8ed40a8273ddc127e9bb30acff56d049c41
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 67668f721bbc07989519795db4ad0b8bfe62da59
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[25b284fcf26eb1b7cf9ec1d0ebe46cb5dbb40477] Revert "FROMLIST: dt-bindings: reserved-memory: Make DMA-BUF CMA heap DT-configurable"

testing commit 25b284fcf26eb1b7cf9ec1d0ebe46cb5dbb40477
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: a86242542255d054997d828b36564cc5ba7f15c261994e090f559f7dc980eae4
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 25b284fcf26eb1b7cf9ec1d0ebe46cb5dbb40477
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[7a2a316228bcd80821a15fed6cd70c80a5daa182] ANDROID: sched: gki: add padding to some structs to support WALT

testing commit 7a2a316228bcd80821a15fed6cd70c80a5daa182
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: a1a683da7a4b73de1253ea190117f9d47ae01dcd1504437feaccd2df27e1689f
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 7a2a316228bcd80821a15fed6cd70c80a5daa182
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[bdf2f9bb6a9450ad797ffe1eb547ce25dc4dbb36] FROMGIT: kasan: don't run tests when KASAN is not enabled

testing commit bdf2f9bb6a9450ad797ffe1eb547ce25dc4dbb36
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: f62c1ffe9016fe6c93ee05df53048d71b33fa6a2820bb0f86396ca1732d15beb
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip bdf2f9bb6a9450ad797ffe1eb547ce25dc4dbb36
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[34eebce472a6088386eb10f0d645cadd888e604c] Merge 3d5e28bff7ad ("Merge branch 'stable/for-linus-5.10-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/konrad/swiotlb") into android-mainline

testing commit 34eebce472a6088386eb10f0d645cadd888e604c
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 6ed0d8a911c5fc3087e6793f7fd64fc50189749bf0097e32fa7a89ef16bae66d
all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns
# git bisect skip 34eebce472a6088386eb10f0d645cadd888e604c
Bisecting: 2818 revisions left to test after this (roughly 12 steps)
[c6672561bc64854cdb87f2518f62b5c0c7bdf7d4] UPSTREAM: net: add and use skb_unclone_keeptruesize() helper

testing commit c6672561bc64854cdb87f2518f62b5c0c7bdf7d4
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: d62539478bcac738d09357dd247dabb0514fda883b93a2d6a8c58ced4f2a8dfe
all runs: OK
# git bisect good c6672561bc64854cdb87f2518f62b5c0c7bdf7d4
Bisecting: 32 revisions left to test after this (roughly 5 steps)
[add227a8d80c6e523ad3b43aac4b586b510bd1eb] Merge branch 'android12-5.10' into `android12-5.10-lts`

testing commit add227a8d80c6e523ad3b43aac4b586b510bd1eb
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 461e8b166eb27ba182c77d39ac6463c9f0774382de39a4bda799106119a669e7
all runs: OK
# git bisect good add227a8d80c6e523ad3b43aac4b586b510bd1eb
Bisecting: 15 revisions left to test after this (roughly 4 steps)
[74562af5949e9555bf7b32d72d8ee72d85e2acbf] UPSTREAM: ARM: Spectre-BHB: provide empty stub for non-config

testing commit 74562af5949e9555bf7b32d72d8ee72d85e2acbf
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 77c495f5647f788d02a3605533639f463d10a211a33eec7fb0c9365b22916916
all runs: crashed: BUG: stack guard page was hit in file_open
# git bisect bad 74562af5949e9555bf7b32d72d8ee72d85e2acbf
Bisecting: 7 revisions left to test after this (roughly 3 steps)
[56d625a4ce5428dd2b7e0f215618c5f8050cf5ed] ANDROID: fix up rndis ABI breakage

testing commit 56d625a4ce5428dd2b7e0f215618c5f8050cf5ed
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: b3d6572d9668fad07f658fce317fb45e1875a47dec62984536f66c1ebced70fd
all runs: crashed: BUG: stack guard page was hit in file_open
# git bisect bad 56d625a4ce5428dd2b7e0f215618c5f8050cf5ed
Bisecting: 4 revisions left to test after this (roughly 2 steps)
[b9b8fd203dba3f17f85a0f7ea3b6bf490e6e53f5] UPSTREAM: lib/iov_iter: initialize "flags" in new pipe_buffer

testing commit b9b8fd203dba3f17f85a0f7ea3b6bf490e6e53f5
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 5af6f85ca09e40a03ccdba68c3313a1a4372d949bd8d999acc59bb75819dcd52
all runs: crashed: BUG: stack guard page was hit in file_open
# git bisect bad b9b8fd203dba3f17f85a0f7ea3b6bf490e6e53f5
Bisecting: 1 revision left to test after this (roughly 1 step)
[07630c80731a93d066b6365b53a033841baebd54] Revert "ANDROID: incremental-fs: fix mount_fs issue"

testing commit 07630c80731a93d066b6365b53a033841baebd54
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 2bd0eb59fbfdcda680937a59fed54408c3d44cf6cd6911d356891b706a1fac61
run #0: crashed: BUG: stack guard page was hit in file_open
run #1: crashed: BUG: stack guard page was hit in corrupted
run #2: crashed: BUG: stack guard page was hit in file_open
run #3: crashed: BUG: stack guard page was hit in file_open
run #4: crashed: BUG: stack guard page was hit in file_open
run #5: crashed: BUG: stack guard page was hit in file_open
run #6: crashed: BUG: stack guard page was hit in file_open
run #7: crashed: BUG: stack guard page was hit in file_open
run #8: crashed: BUG: stack guard page was hit in file_open
run #9: crashed: BUG: stack guard page was hit in file_open
# git bisect bad 07630c80731a93d066b6365b53a033841baebd54
Bisecting: 0 revisions left to test after this (roughly 0 steps)
[e4d293dc33b5fa97b7965447fe6c3f6796af01c9] Revert "ANDROID: vendor_hooks: Add hooks for binder proc transaction"

testing commit e4d293dc33b5fa97b7965447fe6c3f6796af01c9
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 3d7f34cd070082b51872a567607c1d0b09413b934249b8907b13f75cdc9a39ec
all runs: OK
# git bisect good e4d293dc33b5fa97b7965447fe6c3f6796af01c9
07630c80731a93d066b6365b53a033841baebd54 is the first bad commit
commit 07630c80731a93d066b6365b53a033841baebd54
Author: Paul Lawrence <paullawrence@google.com>
Date:   Fri Feb 4 15:20:46 2022 +0000

    Revert "ANDROID: incremental-fs: fix mount_fs issue"
    
    This reverts commit 93717b608dd30f9d41b15a72e809238807c68026.
    
    Test: Can now install the same apk twice, and repeated installs are
    stable
    Bug: 217661925
    Signed-off-by: Paul Lawrence <paullawrence@google.com>
    Change-Id: I86871c364c17a0d1107b3891a574b72edcf04ea2
    (cherry picked from commit d107cd06f26b4d45b1079c7eb857815905198076)
    Signed-off-by: Steve Muckle <smuckle@google.com>

 fs/incfs/vfs.c | 58 +++++++++++++++-------------------------------------------
 fs/incfs/vfs.h |  1 +
 2 files changed, 16 insertions(+), 43 deletions(-)

culprit signature: 2bd0eb59fbfdcda680937a59fed54408c3d44cf6cd6911d356891b706a1fac61
parent  signature: 3d7f34cd070082b51872a567607c1d0b09413b934249b8907b13f75cdc9a39ec
revisions tested: 21, total time: 2h38m0.025685664s (build: 1h37m11.16400143s, test: 58m14.707263025s)
first bad commit: 07630c80731a93d066b6365b53a033841baebd54 Revert "ANDROID: incremental-fs: fix mount_fs issue"
recipients (to): ["linux-kernel@vger.kernel.org" "paullawrence@google.com" "smuckle@google.com"]
recipients (cc): []
crash: BUG: stack guard page was hit in file_open
BUG: stack guard page was hit at ffffc90000dcfff8 (stack is ffffc90000dd0000..ffffc90000dd7fff)
kernel stack overflow (double-fault): 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 560 Comm: syz-executor414 Not tainted 5.10.81-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:memset+0xd/0x50 mm/kasan/shadow.c:43
Code: eb a6 48 8b 35 d4 09 d6 03 e9 47 ff ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 41 56 41 89 f6 48 8b 4d 08 <41> 55 49 89 d5 ba 01 00 00 00 41 54 4c 89 ee 49 89 fc e8 dc f5 ff
RSP: 0018:ffffc90000dd0000 EFLAGS: 00010296
RAX: ffff888118202700 RBX: ffffc90000dd00f0 RCX: ffffffff8129b2c9
RDX: 0000000000000060 RSI: 0000000000000000 RDI: ffffc90000dd0068
RBP: ffffc90000dd0008 R08: 0000000000000001 R09: ffffed10220fe000
R10: fffff94000883f86 R11: 0000000000000002 R12: 0000000000000000
R13: ffff888118202700 R14: 0000000000000000 R15: ffffc90000dd0068
FS:  00005555574033c0(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc90000dcfff8 CR3: 000000011ef2a000 CR4: 00000000003506a0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 __unwind_start+0x29/0x3b0 arch/x86/kernel/unwind_frame.c:368
 unwind_start arch/x86/include/asm/unwind.h:60 [inline]
 arch_stack_walk+0x5c/0xe0 arch/x86/kernel/stacktrace.c:24
 stack_trace_save+0x8f/0xc0 kernel/stacktrace.c:121
 save_stack+0x84/0x150 mm/page_owner.c:146
 __set_page_owner+0x30/0x250 mm/page_owner.c:219
 set_page_owner include/linux/page_owner.h:35 [inline]
 post_alloc_hook mm/page_alloc.c:2385 [inline]
 prep_new_page mm/page_alloc.c:2391 [inline]
 get_page_from_freelist+0x1b89/0x2ab0 mm/page_alloc.c:4063
 __alloc_pages_nodemask+0x28a/0x1e70 mm/page_alloc.c:5105
 __alloc_pages include/linux/gfp.h:529 [inline]
 __alloc_pages_node include/linux/gfp.h:542 [inline]
 alloc_pages_node include/linux/gfp.h:556 [inline]
 alloc_pages include/linux/gfp.h:575 [inline]
 alloc_slab_page mm/slub.c:1672 [inline]
 allocate_slab+0x30f/0x460 mm/slub.c:1815
 new_slab mm/slub.c:1876 [inline]
 new_slab_objects mm/slub.c:2635 [inline]
 ___slab_alloc.constprop.0+0x339/0x750 mm/slub.c:2798
 __slab_alloc mm/slub.c:2838 [inline]
 slab_alloc_node mm/slub.c:2920 [inline]
 slab_alloc mm/slub.c:2962 [inline]
 kmem_cache_alloc+0x499/0x510 mm/slub.c:2967
 kmem_cache_zalloc include/linux/slab.h:654 [inline]
 __alloc_file+0x26/0x380 fs/file_table.c:101
 alloc_empty_file+0x41/0xf0 fs/file_table.c:151
 dentry_open+0x41/0x150 fs/open.c:956
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open fs/open.c:942 [inline]
 dentry_open+0xe5/0x150 fs/open.c:958
 file_open+0x252/0x620 fs/incfs/vfs.c:1427
 do_dentry_open+0x417/0x1020 fs/open.c:819
 vfs_open+0x9a/0xc0 fs/open.c:942
 do_open fs/namei.c:3327 [inline]
 path_openat+0x1dc6/0x38e0 fs/namei.c:3444
 do_filp_open+0x17d/0x3b0 fs/namei.c:3471
 do_sys_openat2+0x120/0x3c0 fs/open.c:1211
 do_sys_open fs/open.c:1227 [inline]
 __do_sys_openat fs/open.c:1243 [inline]
 __se_sys_openat fs/open.c:1238 [inline]
 __x64_sys_openat+0x124/0x200 fs/open.c:1238
 do_syscall_64+0x32/0x80 arch/x86/entry/common.c:46
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x7efe0b55a969
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fff3a44f0b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe0b55a969
RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 00000000ffffff9c
RBP: 0000000000000000 R08: 000000000000c4f6 R09: 000000000000c4f6
R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff3a44f0f0
R13: 00007fff3a44f0dc R14: 431bde82d7b634db R15: 0000000000000000
Modules linked in:
---[ end trace 82909b90facc0078 ]---
RIP: 0010:memset+0xd/0x50 mm/kasan/shadow.c:43
Code: eb a6 48 8b 35 d4 09 d6 03 e9 47 ff ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 41 56 41 89 f6 48 8b 4d 08 <41> 55 49 89 d5 ba 01 00 00 00 41 54 4c 89 ee 49 89 fc e8 dc f5 ff
RSP: 0018:ffffc90000dd0000 EFLAGS: 00010296
RAX: ffff888118202700 RBX: ffffc90000dd00f0 RCX: ffffffff8129b2c9
RDX: 0000000000000060 RSI: 0000000000000000 RDI: ffffc90000dd0068
RBP: ffffc90000dd0008 R08: 0000000000000001 R09: ffffed10220fe000
R10: fffff94000883f86 R11: 0000000000000002 R12: 0000000000000000
R13: ffff888118202700 R14: 0000000000000000 R15: ffffc90000dd0068
FS:  00005555574033c0(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc90000dcfff8 CR3: 000000011ef2a000 CR4: 00000000003506a0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
   0:	eb a6                	jmp    0xffffffa8
   2:	48 8b 35 d4 09 d6 03 	mov    0x3d609d4(%rip),%rsi        # 0x3d609dd
   9:	e9 47 ff ff ff       	jmpq   0xffffff55
   e:	66 66 2e 0f 1f 84 00 	data16 nopw %cs:0x0(%rax,%rax,1)
  15:	00 00 00 00
  19:	0f 1f 40 00          	nopl   0x0(%rax)
  1d:	55                   	push   %rbp
  1e:	48 89 e5             	mov    %rsp,%rbp
  21:	41 56                	push   %r14
  23:	41 89 f6             	mov    %esi,%r14d
  26:	48 8b 4d 08          	mov    0x8(%rbp),%rcx
* 2a:	41 55                	push   %r13 <-- trapping instruction
  2c:	49 89 d5             	mov    %rdx,%r13
  2f:	ba 01 00 00 00       	mov    $0x1,%edx
  34:	41 54                	push   %r12
  36:	4c 89 ee             	mov    %r13,%rsi
  39:	49 89 fc             	mov    %rdi,%r12
  3c:	e8                   	.byte 0xe8
  3d:	dc f5                	fdiv   %st,%st(5)
  3f:	ff                   	.byte 0xff