ci2 starts bisection 2023-08-30 04:33:10.226546761 +0000 UTC m=+39879.287805547 bisecting cause commit starting from 1ae78a14516b9372e4c90a89ac21b259339a3a3a building syzkaller on 62df2017e3b1edd786a4c737bd4ccba2b4581d88 ensuring issue is reproducible on original commit 1ae78a14516b9372e4c90a89ac21b259339a3a3a testing commit 1ae78a14516b9372e4c90a89ac21b259339a3a3a gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: f0ac124b7a2e2292fa25a30e450fee761bac697943429c7ecc780a5b0955a8ec all runs: crashed: general protection fault in btrfs_orphan_cleanup representative crash: general protection fault in btrfs_orphan_cleanup, types: [UNKNOWN] check whether we can drop unnecessary instrumentation disabling configs for [ATOMIC_SLEEP HANG LEAK UBSAN BUG KASAN LOCKDEP], they are not needed testing commit 1ae78a14516b9372e4c90a89ac21b259339a3a3a gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ab48ee250dc9b01aa054322c03326273b345866839424ed40b9e524b909780d8 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in btrfs_orphan_cleanup run #1: crashed: VFS: Busy inodes after unmount (use-after-free) run #2: crashed: invalid opcode in corrupted run #3: crashed: VFS: Busy inodes after unmount (use-after-free) run #4: crashed: VFS: Busy inodes after unmount (use-after-free) run #5: crashed: VFS: Busy inodes after unmount (use-after-free) run #6: crashed: VFS: Busy inodes after unmount (use-after-free) run #7: crashed: invalid opcode in corrupted run #8: crashed: VFS: Busy inodes after unmount (use-after-free) run #9: crashed: VFS: Busy inodes after unmount (use-after-free) representative crash: BUG: unable to handle kernel NULL pointer dereference in btrfs_orphan_cleanup, types: [UNKNOWN] the bug reproduces without the instrumentation disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP HANG], they are not needed kconfig minimization: base=3876 full=7602 leaves diff=2000 split chunks (needed=false): <2000> split chunk #0 of len 2000 into 5 parts testing without sub-chunk 1/5 disabling configs for [KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN BUG], they are not needed testing commit 1ae78a14516b9372e4c90a89ac21b259339a3a3a gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 77f8f30c41b0412baf0a272f2fc39ebd0028099df15118343e144c4faa647553 all runs: OK false negative chance: 0.000 testing without sub-chunk 2/5 disabling configs for [UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK], they are not needed testing commit 1ae78a14516b9372e4c90a89ac21b259339a3a3a gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ed72efd04510ef95ddc31fc7c9ac279152ed5e9171288ce4c67c81fa2b935107 run #0: crashed: VFS: Busy inodes after unmount (use-after-free) run #1: crashed: invalid opcode in corrupted run #2: crashed: VFS: Busy inodes after unmount (use-after-free) run #3: crashed: invalid opcode in corrupted run #4: crashed: invalid opcode in corrupted run #5: crashed: invalid opcode in corrupted run #6: crashed: VFS: Busy inodes after unmount (use-after-free) run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: invalid opcode in corrupted representative crash: VFS: Busy inodes after unmount (use-after-free), types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 3/5 disabling configs for [HANG LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP], they are not needed testing commit 1ae78a14516b9372e4c90a89ac21b259339a3a3a gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 231da8c4c84ab3630f20ec2ca3857f392af78c1cda8df9bc5eb2bff7943e038d run #0: crashed: VFS: Busy inodes after unmount (use-after-free) run #1: crashed: invalid opcode in corrupted run #2: crashed: VFS: Busy inodes after unmount (use-after-free) run #3: crashed: invalid opcode in corrupted run #4: crashed: invalid opcode in corrupted run #5: crashed: VFS: Busy inodes after unmount (use-after-free) run #6: crashed: invalid opcode in corrupted run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: invalid opcode in corrupted representative crash: VFS: Busy inodes after unmount (use-after-free), types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 4/5 disabling configs for [UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK], they are not needed testing commit 1ae78a14516b9372e4c90a89ac21b259339a3a3a gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ebc5d197152dcf4d27442392d30b1443a3ddea223c2aee365a463efac3836f15 all runs: OK false negative chance: 0.000 testing without sub-chunk 5/5 disabling configs for [BUG KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN], they are not needed testing commit 1ae78a14516b9372e4c90a89ac21b259339a3a3a gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 134532574b7fa461994b977ce093e05b9a792f1e1b0d533d886c86e428a4a0d7 run #0: crashed: VFS: Busy inodes after unmount (use-after-free) run #1: crashed: VFS: Busy inodes after unmount (use-after-free) run #2: crashed: invalid opcode in corrupted run #3: crashed: invalid opcode in corrupted run #4: crashed: invalid opcode in corrupted run #5: crashed: invalid opcode in corrupted run #6: crashed: VFS: Busy inodes after unmount (use-after-free) run #7: crashed: invalid opcode in corrupted run #8: crashed: VFS: Busy inodes after unmount (use-after-free) run #9: crashed: invalid opcode in corrupted representative crash: VFS: Busy inodes after unmount (use-after-free), types: [UNKNOWN] the chunk can be dropped minimized to 800 configs; suspects: [6LOWPAN 6LOWPAN_GHC_EXT_HDR_DEST 6LOWPAN_GHC_EXT_HDR_FRAG 6LOWPAN_GHC_EXT_HDR_HOP 6LOWPAN_GHC_EXT_HDR_ROUTE 6LOWPAN_GHC_ICMPV6 6LOWPAN_GHC_UDP 6LOWPAN_NHC 6LOWPAN_NHC_DEST 6LOWPAN_NHC_FRAGMENT 6LOWPAN_NHC_HOP 6LOWPAN_NHC_IPV6 6LOWPAN_NHC_MOBILITY 6LOWPAN_NHC_ROUTING 6LOWPAN_NHC_UDP 6PACK 842_COMPRESS 842_DECOMPRESS 9P_FSCACHE 9P_FS_POSIX_ACL 9P_FS_SECURITY ACORN_PARTITION ACORN_PARTITION_ADFS ACORN_PARTITION_CUMANA ACORN_PARTITION_EESOX ACORN_PARTITION_ICS ACORN_PARTITION_POWERTEC ACORN_PARTITION_RISCIX ACPI_NFIT ACPI_PLATFORM_PROFILE ADDRESS_MASKING ADFS_FS AFFS_FS AFS_FS AFS_FSCACHE AF_KCM AF_RXRPC AF_RXRPC_IPV6 AIX_PARTITION AMIGA_PARTITION ANDROID_BINDERFS ANDROID_BINDER_IPC ANON_VMA_NAME APERTURE_HELPERS AR5523 ARCH_ENABLE_MEMORY_HOTREMOVE ARCH_ENABLE_THP_MIGRATION ASM_MODVERSIONS ASYNC_CORE ASYNC_MEMCPY ASYNC_PQ ASYNC_RAID6_RECOV ASYNC_TX_DMA ASYNC_XOR ATARI_PARTITION ATA_GENERIC ATA_OVER_ETH ATH10K ATH10K_CE ATH10K_PCI ATH10K_USB ATH11K ATH6KL ATH6KL_USB ATH9K ATH9K_AHB ATH9K_BTCOEX_SUPPORT ATH9K_CHANNEL_CONTEXT ATH9K_COMMON ATH9K_COMMON_DEBUG ATH9K_DEBUGFS ATH9K_DYNACK ATH9K_HTC ATH9K_HTC_DEBUGFS ATH9K_HW ATH9K_PCI ATH9K_PCOEM ATH9K_RFKILL ATH_COMMON ATM ATM_BR2684 ATM_CLIP ATM_DRIVERS ATM_LANE ATM_MPOA ATM_TCP AUXILIARY_BUS AX25 AX25_DAMA_SLAVE AX88796B_PHY BAREUDP BATMAN_ADV BATMAN_ADV_BATMAN_V BATMAN_ADV_BLA BATMAN_ADV_DAT BATMAN_ADV_MCAST BATMAN_ADV_NC BCACHE BCMA BCMA_HOST_PCI_POSSIBLE BEFS_FS BFQ_CGROUP_DEBUG BFQ_GROUP_IOSCHED BFS_FS BIG_KEYS BLK_CGROUP_PUNT_BIO BLK_CGROUP_RWSTAT BLK_DEBUG_FS_ZONED BLK_DEV_BSGLIB BLK_DEV_FD BLK_DEV_INTEGRITY BLK_DEV_INTEGRITY_T10 BLK_DEV_NBD BLK_DEV_NULL_BLK BLK_DEV_NULL_BLK_FAULT_INJECTION BLK_DEV_NVME BLK_DEV_PMEM BLK_DEV_RAM BLK_DEV_RNBD BLK_DEV_RNBD_CLIENT BLK_DEV_THROTTLING BLK_DEV_ZONED BLK_ICQ BLK_INLINE_ENCRYPTION BLK_INLINE_ENCRYPTION_FALLBACK BLK_WBT BLK_WBT_MQ BONDING BOOT_VESA_SUPPORT BPF_EVENTS BPF_JIT BPF_JIT_ALWAYS_ON BPF_JIT_DEFAULT_ON BPF_LSM BPF_PRELOAD BPF_PRELOAD_UMD BPF_STREAM_PARSER BPF_SYSCALL BPQETHER BRIDGE BRIDGE_CFM BRIDGE_EBT_802_3 BRIDGE_EBT_AMONG BRIDGE_EBT_ARP BRIDGE_EBT_ARPREPLY BRIDGE_EBT_BROUTE BRIDGE_EBT_DNAT BRIDGE_EBT_IP BRIDGE_EBT_IP6 BRIDGE_EBT_LIMIT BRIDGE_EBT_LOG BRIDGE_EBT_MARK BRIDGE_EBT_MARK_T BRIDGE_EBT_NFLOG BRIDGE_EBT_PKTTYPE BRIDGE_EBT_REDIRECT BRIDGE_EBT_SNAT BRIDGE_EBT_STP BRIDGE_EBT_T_FILTER BRIDGE_EBT_T_NAT BRIDGE_EBT_VLAN BRIDGE_IGMP_SNOOPING BRIDGE_MRP BRIDGE_NF_EBTABLES BRIDGE_VLAN_FILTERING BSD_DISKLABEL BSD_PROCESS_ACCT_V3 BT BTRFS_ASSERT BTRFS_FS BTRFS_FS_POSIX_ACL BTRFS_FS_REF_VERIFY BTT BT_6LOWPAN BT_ATH3K BT_BCM BT_BNEP BT_BNEP_MC_FILTER BT_BNEP_PROTO_FILTER BT_BREDR BT_CMTP BT_HCIBCM203X BT_HCIBFUSB BT_HCIBPA10X BT_HCIBTUSB BT_HCIBTUSB_BCM BT_HCIBTUSB_MTK BT_HCIBTUSB_POLL_SYNC BT_HCIBTUSB_RTL BT_HCIUART BT_HCIUART_3WIRE BT_HCIUART_AG6XX BT_HCIUART_BCSP BT_HCIUART_H4 BT_HCIUART_LL BT_HCIUART_MRVL BT_HCIUART_QCA BT_HCIUART_SERDEV BT_HCIVHCI BT_HIDP BT_HS BT_INTEL BT_LE BT_LEDS BT_LE_L2CAP_ECRED BT_MSFTEXT BT_MTK BT_QCA BT_RFCOMM BT_RFCOMM_TTY BT_RTL CACHEFILES CAIF CAIF_DEBUG CAIF_DRIVERS CAIF_NETDEV CAIF_TTY CAIF_USB CAIF_VIRTIO CAN CAN_8DEV_USB CAN_BCM CAN_CALC_BITTIMING CAN_DEV CAN_EMS_USB CAN_GS_USB CAN_GW CAN_IFI_CANFD CAN_ISOTP CAN_J1939 CAN_KVASER_USB CAN_MCBA_USB CAN_NETLINK CAN_PEAK_USB CAN_RAW CAN_SLCAN CAN_VCAN CAN_VXCAN CAPI_TRACE CARL9170 CARL9170_HWRNG CARL9170_LEDS CARL9170_WPC CC_HAS_UBSAN_BOUNDS CC_HAS_ZERO_CALL_USED_REGS CEC_CORE CEPH_FS CEPH_FSCACHE CEPH_FS_POSIX_ACL CEPH_LIB CEPH_LIB_USE_DNS_RESOLVER CFG80211 CFG80211_CRDA_SUPPORT CFG80211_DEBUGFS CFG80211_DEFAULT_PS CFG80211_REQUIRE_SIGNED_REGDB CFG80211_USE_KERNEL_REGDB_KEYS CFG80211_WEXT CFS_BANDWIDTH CGROUP_BPF CHARGER_BQ24190 CHARGER_ISP1704 CHR_DEV_ST CIFS CIFS_ALLOW_INSECURE_LEGACY CIFS_DEBUG CIFS_DFS_UPCALL CIFS_FSCACHE CIFS_POSIX CIFS_SMB_DIRECT CIFS_SWN_UPCALL CIFS_UPCALL CIFS_XATTR CLS_U32_MARK CLS_U32_PERF CMA CMA_SIZE_SEL_MBYTES CMDLINE_PARTITION COMEDI COMEDI_DT9812 COMEDI_NI_USB6501 COMEDI_USBDUX COMEDI_USBDUXFAST COMEDI_USBDUXSIGMA COMEDI_USB_DRIVERS COMEDI_VMK80XX COMPAT_NETLINK_MESSAGES COUNTER CRAMFS CRAMFS_BLOCKDEV CRAMFS_MTD CRC4 CRC64 CRC64_ROCKSOFT CRC7 CRC8 CRC_ITU_T CRC_T10DIF CRYPTO_ADIANTUM CRYPTO_AEGIS128 CRYPTO_AEGIS128_AESNI_SSE2 CRYPTO_AES_NI_INTEL CRYPTO_AES_TI CRYPTO_ANSI_CPRNG CRYPTO_ANUBIS CRYPTO_ARC4 CRYPTO_ARCH_HAVE_LIB_BLAKE2S CRYPTO_ARCH_HAVE_LIB_CHACHA CRYPTO_ARCH_HAVE_LIB_CURVE25519 CRYPTO_ARCH_HAVE_LIB_POLY1305 CRYPTO_ARIA CRYPTO_ARIA_AESNI_AVX_X86_64 CRYPTO_BLAKE2B CRYPTO_BLAKE2S_X86 CRYPTO_BLOWFISH CRYPTO_BLOWFISH_COMMON CRYPTO_BLOWFISH_X86_64 CRYPTO_CAMELLIA CRYPTO_CAMELLIA_AESNI_AVX2_X86_64 CRYPTO_CAMELLIA_AESNI_AVX_X86_64 CRYPTO_CAMELLIA_X86_64 CRYPTO_CAST5 CRYPTO_CAST5_AVX_X86_64 CRYPTO_CAST6 CRYPTO_CAST6_AVX_X86_64 CRYPTO_CAST_COMMON CRYPTO_CFB CRYPTO_CHACHA20 CRYPTO_CHACHA20POLY1305 CRYPTO_CHACHA20_X86_64 CRYPTO_CRC32 CRYPTO_CRC32C_INTEL CRYPTO_CRC32_PCLMUL CRYPTO_CRC64_ROCKSOFT CRYPTO_CRCT10DIF CRYPTO_CRCT10DIF_PCLMUL CRYPTO_CRYPTD CRYPTO_CTS CRYPTO_CURVE25519 CRYPTO_CURVE25519_X86 CRYPTO_DEFLATE CRYPTO_DES CRYPTO_DES3_EDE_X86_64 CRYPTO_DEV_CCP CRYPTO_DEV_CCP_DD CRYPTO_DEV_PADLOCK CRYPTO_DEV_PADLOCK_AES CRYPTO_DEV_PADLOCK_SHA CRYPTO_DEV_QAT CRYPTO_DEV_QAT_C3XXX CRYPTO_DEV_QAT_C3XXXVF CRYPTO_DEV_QAT_C62X CRYPTO_DEV_QAT_C62XVF CRYPTO_DEV_QAT_DH895xCC CRYPTO_DEV_QAT_DH895xCCVF CRYPTO_DEV_VIRTIO CRYPTO_DH CRYPTO_DRBG_CTR CRYPTO_DRBG_HASH CRYPTO_ECB CRYPTO_ECC CRYPTO_ECDH CRYPTO_ECRDSA CRYPTO_ENGINE CRYPTO_ESSIV CRYPTO_FCRYPT CRYPTO_GHASH_CLMUL_NI_INTEL CRYPTO_HCTR2 CRYPTO_KDF800108_CTR CRYPTO_KEYWRAP CRYPTO_KHAZAD CRYPTO_KPP CRYPTO_LIB_ARC4 CRYPTO_LIB_CHACHA CRYPTO_LIB_CHACHA20POLY1305 CRYPTO_LIB_CHACHA_GENERIC CRYPTO_LIB_CURVE25519 CRYPTO_LIB_CURVE25519_GENERIC CRYPTO_LIB_DES CRYPTO_LIB_POLY1305 CRYPTO_LIB_POLY1305_GENERIC CRYPTO_LRW CRYPTO_MICHAEL_MIC CRYPTO_NHPOLY1305 CRYPTO_NHPOLY1305_AVX2 CRYPTO_NHPOLY1305_SSE2 CRYPTO_OFB CRYPTO_PCBC CRYPTO_PCRYPT CRYPTO_POLY1305 CRYPTO_POLY1305_X86_64 CRYPTO_POLYVAL CRYPTO_POLYVAL_CLMUL_NI CRYPTO_RMD160 CRYPTO_SEED CRYPTO_SERPENT CRYPTO_SERPENT_AVX2_X86_64 CRYPTO_SERPENT_AVX_X86_64 CRYPTO_SERPENT_SSE2_X86_64 CRYPTO_SHA1_SSSE3 CRYPTO_SHA256_SSSE3 CRYPTO_SHA512_SSSE3 CRYPTO_SIMD CRYPTO_SM2 CRYPTO_SM3 CRYPTO_SM3_AVX_X86_64 CRYPTO_SM4 CRYPTO_SM4_AESNI_AVX2_X86_64 CRYPTO_SM4_AESNI_AVX_X86_64 CRYPTO_SM4_GENERIC CRYPTO_STREEBOG CRYPTO_TEA CRYPTO_TWOFISH CRYPTO_TWOFISH_AVX_X86_64 CRYPTO_TWOFISH_COMMON CRYPTO_TWOFISH_X86_64 CRYPTO_TWOFISH_X86_64_3WAY CRYPTO_USER CRYPTO_USER_API CRYPTO_USER_API_AEAD CRYPTO_USER_API_ENABLE_OBSOLETE CRYPTO_USER_API_HASH CRYPTO_USER_API_RNG CRYPTO_USER_API_SKCIPHER CRYPTO_VMAC CRYPTO_WP512 CRYPTO_XCBC CRYPTO_XCTR CRYPTO_XTS CRYPTO_XXHASH CUSE CYPRESS_FIRMWARE DAMON DAMON_DBGFS DAMON_PADDR DAMON_RECLAIM DAMON_VADDR DAX DCA DCB DEFAULT_PFIFO_FAST DEVICE_MIGRATION DEVICE_PRIVATE DEV_COREDUMP DEV_DAX DIMLIB DLM DLN2_ADC DMABUF_HEAPS DMABUF_HEAPS_CMA DMABUF_HEAPS_SYSTEM DMABUF_MOVE_NOTIFY DMA_CMA DMA_ENGINE_RAID DM_AUDIT DM_BIO_PRISON DM_BUFIO DM_CACHE DM_CACHE_SMQ DM_CLONE DM_CRYPT DM_FLAKEY DM_INTEGRITY DM_MULTIPATH DM_MULTIPATH_QL DM_MULTIPATH_ST DM_PERSISTENT_DATA DM_RAID DM_SNAPSHOT DM_THIN_PROVISIONING DM_UEVENT DM_VERITY DM_VERITY_FEC DM_WRITECACHE DM_ZONED DRAGONRISE_FF DRM DRM_BOCHS DRM_BUDDY DVB_CORE ENCRYPTED_KEYS EXTCON FSCACHE FUSE_FS GENEVE GPIOLIB HAMRADIO HAVE_CLK HID_DRAGONRISE HID_SENSOR_HUB HID_SMARTJOYPLUS HID_THRUSTMASTER IIO INFINIBAND INFINIBAND_ADDR_TRANS INFINIBAND_IPOIB INFINIBAND_RTRS_CLIENT INFINIBAND_USER_ACCESS INFINIBAND_VIRT_DMA INPUT_TABLET INPUT_TOUCHSCREEN IOSCHED_BFQ IP_SCTP ISDN ISDN_CAPI L2TP LIBNVDIMM MAC80211 MAC80211_LEDS MEDIA_COMMON_OPTIONS MEDIA_DIGITAL_TV_SUPPORT MEDIA_RADIO_SUPPORT MEDIA_SDR_SUPPORT MEDIA_SUPPORT MEDIA_USB_SUPPORT MEMORY_HOTPLUG MEMORY_HOTREMOVE MFD_DLN2 MFD_RETU MMC MTD MTD_UBI NETFILTER_CONNCOUNT NET_CLS_U32 NET_IPGRE NET_IPGRE_DEMUX NET_SCH_DEFAULT NFS_V4_1 NF_SOCKET_IPV6 NF_TABLES NF_TABLES_ARP NF_TPROXY_IPV4 NF_TPROXY_IPV6 NILFS2_FS NLMON NLS_CODEPAGE_1250 NLS_CODEPAGE_1251 NLS_CODEPAGE_737 NLS_CODEPAGE_775 NLS_CODEPAGE_850 NLS_CODEPAGE_852 NLS_CODEPAGE_855 NLS_CODEPAGE_857 NLS_CODEPAGE_860 NLS_CODEPAGE_861 NLS_CODEPAGE_862 NLS_CODEPAGE_863 NLS_CODEPAGE_864 NLS_CODEPAGE_865 NLS_CODEPAGE_866 NLS_CODEPAGE_869 NLS_CODEPAGE_874 NLS_CODEPAGE_932 NLS_CODEPAGE_936 NLS_CODEPAGE_949 NLS_CODEPAGE_950 NLS_ISO8859_13 NLS_ISO8859_14 NLS_ISO8859_15 NLS_ISO8859_2 NLS_ISO8859_3 NLS_ISO8859_4 NLS_ISO8859_5 NLS_ISO8859_6 NLS_ISO8859_7 NLS_ISO8859_8 NLS_ISO8859_9 NLS_KOI8_R NLS_KOI8_U NLS_MAC_CELTIC NLS_MAC_CENTEURO NLS_MAC_CROATIAN NLS_MAC_CYRILLIC NLS_MAC_GAELIC NLS_MAC_GREEK NLS_MAC_ICELAND NLS_MAC_INUIT NLS_MAC_ROMAN NLS_MAC_ROMANIAN NLS_MAC_TURKISH NOP_USB_XCEIV NOZOMI NTFS3_FS NTFS3_FS_POSIX_ACL NTFS3_LZX_XPRESS NTFS_FS NTFS_RW NULL_TTY NUMA_BALANCING NUMA_BALANCING_DEFAULT_ENABLED NUMA_EMU NUMA_KEEP_MEMINFO NVDIMM_DAX NVDIMM_KEYS NVDIMM_PFN NVME_CORE NVME_FABRICS NVME_FC NVME_MULTIPATH NVME_RDMA NVME_TARGET NVME_TARGET_FC NVME_TARGET_FCLOOP NVME_TARGET_LOOP NVME_TARGET_RDMA NVME_TARGET_TCP NVME_TCP N_GSM N_HDLC OCFS2_DEBUG_FS OCFS2_FS OCFS2_FS_O2CB OCFS2_FS_STATS OCFS2_FS_USERSPACE_CLUSTER OF_GPIO OF_PMEM OMFS_FS OPENVSWITCH OPENVSWITCH_GENEVE OPENVSWITCH_GRE OPENVSWITCH_VXLAN ORANGEFS_FS OSF_PARTITION OVERLAY_FS OVERLAY_FS_INDEX OVERLAY_FS_REDIRECT_ALWAYS_FOLLOW OVERLAY_FS_REDIRECT_DIR PACKET_DIAG PADATA PAGE_IDLE_FLAG PAGE_POOL PAGE_POOL_STATS PAGE_REPORTING PAHOLE_HAS_SPLIT_BTF PARPORT PARPORT_NOT_PC PARTITION_ADVANCED PCCARD PCCARD_NONSTATIC PCIEAER PCI_ENDPOINT PCI_IOV PCMCIA PCMCIA_LOAD_CIS PERCPU_STATS PERSISTENT_KEYRINGS PER_VMA_LOCK_STATS PHONET PHYLINK PHY_CPCAP_USB PHY_QCOM_USB_HS PHY_QCOM_USB_HSIC PHY_SAMSUNG_USB2 PHY_TUSB1210 PKCS7_TEST_KEY PKCS8_PRIVATE_KEY_PARSER PM_CLK PNFS_BLOCK PNFS_FILE_LAYOUT PNFS_FLEXFILE_LAYOUT PPP PPPOATM PPPOE PPPOL2TP PPP_ASYNC PPP_BSDCOMP PPP_DEFLATE PPP_FILTER PPP_MPPE PPP_MULTILINK PPP_SYNC_TTY PPTP PREEMPT PREEMPT_NOTIFIERS PRISM2_USB PROC_CHILDREN PSI PSTORE PSTORE_842_COMPRESS PSTORE_COMPRESS PSTORE_DEFLATE_COMPRESS PSTORE_DEFLATE_COMPRESS_DEFAULT PSTORE_LZ4HC_COMPRESS PSTORE_LZ4_COMPRESS PSTORE_LZO_COMPRESS PSTORE_ZSTD_COMPRESS QCOM_QMI_HELPERS QNX4FS_FS QNX6FS_FS QRTR QRTR_TUN R8712U RADIO_ADAPTERS RADIO_SHARK RADIO_SHARK2 RADIO_TEA575X RAID6_PQ RAID_ATTRS RC_ATI_REMOTE RC_CORE RC_DEVICES RDMA_RXE RDMA_SIW RDS RDS_RDMA RDS_TCP READ_ONLY_THP_FOR_FS REALTEK_AUTOPM REED_SOLOMON REED_SOLOMON_DEC8 REGMAP REGMAP_I2C REGMAP_IRQ REGMAP_MMIO REGULATOR REGULATOR_TWL4030 REISERFS_FS REISERFS_FS_POSIX_ACL REISERFS_FS_SECURITY REISERFS_FS_XATTR REISERFS_PROC_INFO RESET_CONTROLLER RFKILL RFKILL_INPUT RFKILL_LEDS RMI4_2D_SENSOR RMI4_CORE RMI4_F03 RMI4_F03_SERIO RMI4_F11 RMI4_F12 RMI4_F30 ROMFS_BACKED_BY_BOTH ROMFS_FS ROMFS_ON_BLOCK ROMFS_ON_MTD ROSE RTC_DRV_HID_SENSOR_TIME RXKAD SCHED_CORE SCSI_FC_ATTRS SCSI_HPSA SCSI_ISCSI_ATTRS SCSI_LOGGING SCSI_NETLINK SCSI_SAS_ATA SCSI_SAS_ATTRS SCSI_SAS_LIBSAS SCSI_SCAN_ASYNC SCSI_SRP_ATTRS SCTP_COOKIE_HMAC_MD5 SCTP_COOKIE_HMAC_SHA1 SCTP_DEFAULT_COOKIE_HMAC_MD5 SECONDARY_TRUSTED_KEYRING SECURITY_INFINIBAND SECURITY_NETWORK_XFRM SECURITY_SMACK_NETFILTER SERIAL_DEV_BUS SERIAL_DEV_CTRL_TTYPORT SERIAL_MCTRL_GPIO SGI_PARTITION SIGNATURE SIGNED_PE_FILE_VERIFICATION SLHC SLIP SLIP_COMPRESSED SLIP_MODE_SLIP6 SLIP_SMART SMARTJOYPLUS_FF SMBFS_COMMON SMC SMC_DIAG SMSC_PHY SMS_SIANO_MDTV SMS_SIANO_RC SMS_USB_DRV SND SND_ALOOP SND_BCD2000 SND_CTL_FAST_LOOKUP SND_CTL_LED SND_DEBUG SND_DMA_SGBUF SND_DRIVERS SND_DUMMY SND_DYNAMIC_MINORS SND_HDA SND_HDA_CODEC_ANALOG SND_HDA_CODEC_CA0110 SND_HDA_CODEC_CA0132 SND_HDA_CODEC_CIRRUS SND_HDA_CODEC_CMEDIA SND_HDA_CODEC_CONEXANT SND_HDA_CODEC_HDMI SND_HDA_CODEC_REALTEK SND_HDA_CODEC_SI3054 SND_HDA_CODEC_SIGMATEL SND_HDA_CODEC_VIA SND_HDA_COMPONENT SND_HDA_CORE SND_HDA_GENERIC SND_HDA_GENERIC_LEDS SND_HDA_HWDEP SND_HDA_I915 SND_HDA_INPUT_BEEP SND_HDA_INTEL SND_HDA_PATCH_LOADER SND_HDA_RECONFIG SND_HRTIMER SND_HWDEP SND_INTEL_DSP_CONFIG SND_INTEL_NHLT SND_INTEL_SOUNDWIRE_ACPI SND_JACK SND_JACK_INPUT_DEV SND_MIXER_OSS SND_OSSEMUL SND_PCI SND_PCM SND_PCMCIA SND_PCM_OSS SND_PCM_OSS_PLUGINS SND_PCM_TIMER SND_PCM_XRUN_DEBUG SND_PROC_FS SND_RAWMIDI SND_SEQUENCER SND_SEQUENCER_OSS SND_SEQ_DEVICE SND_SEQ_DUMMY SND_SEQ_HRTIMER_DEFAULT SND_SEQ_MIDI SND_SEQ_MIDI_EVENT SND_SEQ_VIRMIDI SND_SUPPORT_OLD_API SND_TIMER SND_USB SND_USB_6FIRE SND_USB_AUDIO SND_USB_AUDIO_USE_MEDIA_CONTROLLER SND_USB_CAIAQ SND_USB_CAIAQ_INPUT SND_USB_HIFACE SND_USB_LINE6 SND_USB_POD SND_USB_PODHD SND_USB_TONEPORT SND_USB_UA101 SND_USB_US122L SND_USB_USX2Y SND_USB_VARIAX SND_VERBOSE_PROCFS SND_VIRMIDI SND_VIRTIO SND_VMASTER SND_X86 SOCK_VALIDATE_XMIT SOLARIS_X86_PARTITION SONY_FF SOUND SOUND_OSS_CORE SOUND_OSS_CORE_PRECLAIM SPI SPI_DLN2 SPI_DYNAMIC SPI_MASTER SQUASHFS SQUASHFS_4K_DEVBLK_SIZE SQUASHFS_COMPILE_DECOMP_SINGLE SQUASHFS_DECOMP_SINGLE SQUASHFS_FILE_DIRECT SQUASHFS_LZ4 SQUASHFS_LZO SQUASHFS_XATTR SQUASHFS_XZ SQUASHFS_ZLIB SQUASHFS_ZSTD SSB SSB_PCIHOST_POSSIBLE SSB_PCMCIAHOST_POSSIBLE SSB_SDIOHOST_POSSIBLE STAGING STP STREAM_PARSER SUNRPC_BACKCHANNEL SUN_PARTITION SW_SYNC SYSFB SYSV68_PARTITION SYSV_FS TABLET_USB_ACECAD TABLET_USB_AIPTEK TABLET_USB_HANWANG TABLET_USB_KBTAB TABLET_USB_PEGASUS TAHVO_USB TAHVO_USB_HOST_BY_DEFAULT TASKS_TRACE_RCU TCG_CRB TCG_TIS TCG_TIS_CORE TCG_TPM TCP_CONG_BBR TCP_CONG_BIC TCP_CONG_CDG TCP_CONG_DCTCP TCP_CONG_HSTCP TCP_CONG_HTCP TCP_CONG_HYBLA TCP_CONG_ILLINOIS TCP_CONG_LP TCP_CONG_NV TCP_CONG_SCALABLE TCP_CONG_VEGAS TCP_CONG_VENO TCP_CONG_WESTWOOD TCP_CONG_YEAH TEXTSEARCH TEXTSEARCH_BM TEXTSEARCH_FSM TEXTSEARCH_KMP THERMAL_NETLINK THP_SWAP THRUSTMASTER_FF TIPC TIPC_CRYPTO TIPC_DIAG TIPC_MEDIA_IB TIPC_MEDIA_UDP TLS TLS_DEVICE TLS_TOE TOUCHSCREEN_SUR40 TOUCHSCREEN_USB_3M TOUCHSCREEN_USB_COMPOSITE TOUCHSCREEN_USB_DMC_TSC10 TOUCHSCREEN_USB_E2I TOUCHSCREEN_USB_EASYTOUCH TOUCHSCREEN_USB_EGALAX TOUCHSCREEN_USB_ELO TOUCHSCREEN_USB_ETT_TC45USB TOUCHSCREEN_USB_ETURBO TOUCHSCREEN_USB_GENERAL_TOUCH TOUCHSCREEN_USB_GOTOP TOUCHSCREEN_USB_GUNZE TOUCHSCREEN_USB_IDEALTEK TOUCHSCREEN_USB_IRTOUCH TOUCHSCREEN_USB_ITM TOUCHSCREEN_USB_JASTEC TOUCHSCREEN_USB_NEXIO TOUCHSCREEN_USB_PANJIT TOUCHSCREEN_USB_ZYTRONIC TRANSPARENT_HUGEPAGE TRANSPARENT_HUGEPAGE_MADVISE TRUSTED_KEYS TTPCI_EEPROM TTY_PRINTK TUN_VNET_CROSS_LE TWL4030_CORE TYPEC TYPEC_FUSB302 TYPEC_TCPCI TYPEC_TCPM TYPEC_TPS6598X TYPEC_UCSI UBIFS_ATIME_SUPPORT UBIFS_FS UBIFS_FS_ADVANCED_COMPR UBIFS_FS_LZO UBIFS_FS_SECURITY UBIFS_FS_XATTR UBIFS_FS_ZLIB UBIFS_FS_ZSTD UCSI_ACPI UDF_FS UDMABUF UFS_FS UFS_FS_WRITE UHID ULTRIX_PARTITION UNICODE UNIXWARE_DISKLABEL UNIX_DIAG USB4 USB4_NET USBIP_CORE USBIP_HOST USBIP_VHCI_HCD USBIP_VUDC USBPCWATCHDOG USB_ACM USB_ADUTUX USB_AIRSPY USB_ALI_M5632 USB_AN2720 USB_APPLEDISPLAY USB_ARMLINUX USB_BDC_UDC USB_BELKIN USB_C67X00_HCD USB_CATC USB_CDC_PHONET USB_CHAOSKEY USB_CHIPIDEA USB_CHIPIDEA_HOST USB_CHIPIDEA_PCI USB_CHIPIDEA_UDC USB_CONFIGFS USB_CONFIGFS_ACM USB_CONFIGFS_ECM USB_CONFIGFS_ECM_SUBSET USB_CONFIGFS_EEM USB_CONFIGFS_F_FS USB_CONFIGFS_F_HID USB_DWC2 USB_GADGET USB_MUSB_HDRC USB_NET_CDC_SUBSET USB_PHY USB_ROLE_SWITCH USB_STORAGE_REALTEK USB_ULPI_BUS USB_USBNET VIDEO_DEV VLAN_8021Q VXLAN WANT_COMPAT_NETLINK_MESSAGES WEXT_CORE WIRELESS WIRELESS_EXT WLAN WLAN_VENDOR_ATH X86_X32_ABI ZONE_DEVICE] disabling configs for [BUG KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN], they are not needed picked [%!d(string=v6.3) %!d(string=v6.2) %!d(string=v6.1) %!d(string=v5.19) %!d(string=v5.17) %!d(string=v5.15) %!d(string=v5.13) %!d(string=v5.11) %!d(string=v5.8) %!d(string=v5.5) %!d(string=v5.2) %!d(string=v4.20) %!d(string=v4.19)] out of %!d(MISSING) release tags testing release v6.3 testing commit 457391b0380335d5e9a5babdec90ac53928b23b4 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 24fa692b8f54a1ba1734cb4550d0d81e3e928336499ffcfec213ae0e147dca95 run #0: crashed: invalid opcode in corrupted run #1: crashed: VFS: Busy inodes after unmount (use-after-free) run #2: crashed: invalid opcode in corrupted run #3: crashed: VFS: Busy inodes after unmount (use-after-free) run #4: crashed: invalid opcode in corrupted run #5: crashed: invalid opcode in corrupted run #6: crashed: VFS: Busy inodes after unmount (use-after-free) run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: invalid opcode in corrupted representative crash: invalid opcode in corrupted, types: [UNKNOWN] testing release v6.2 testing commit c9c3395d5e3dcc6daee66c6908354d47bf98cb0c gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 50409111e38c4da1c0c25d18cddd897108533f10426015234339052d6822ab4f run #0: crashed: VFS: Busy inodes after unmount (use-after-free) run #1: crashed: invalid opcode in corrupted run #2: crashed: invalid opcode in corrupted run #3: crashed: invalid opcode in corrupted run #4: crashed: invalid opcode in corrupted run #5: crashed: invalid opcode in corrupted run #6: crashed: invalid opcode in corrupted run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: VFS: Busy inodes after unmount (use-after-free) representative crash: VFS: Busy inodes after unmount (use-after-free), types: [UNKNOWN] testing release v6.1 testing commit 830b3c68c1fb1e9176028d02ef86f3cf76aa2476 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: a8fe74c9ab93e985fd03da1f26a7a4af0b80a32bf55d96d5a2e3cb913fe8543c run #0: crashed: invalid opcode in corrupted run #1: crashed: VFS: Busy inodes after unmount (use-after-free) run #2: crashed: invalid opcode in corrupted run #3: crashed: invalid opcode in corrupted run #4: crashed: invalid opcode in corrupted run #5: crashed: VFS: Busy inodes after unmount (use-after-free) run #6: crashed: invalid opcode in corrupted run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: invalid opcode in corrupted representative crash: invalid opcode in corrupted, types: [UNKNOWN] testing release v5.19 testing commit 3d7cb6b04c3f3115719235cc6866b10326de34cd gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 3b5f94542fb1edcb000a96579f0475ccbed81efc0e16b761ff00099198645b3b run #0: crashed: invalid opcode in corrupted run #1: crashed: invalid opcode in corrupted run #2: crashed: VFS: Busy inodes after unmount (use-after-free) run #3: crashed: VFS: Busy inodes after unmount (use-after-free) run #4: crashed: invalid opcode in corrupted run #5: crashed: invalid opcode in corrupted run #6: crashed: invalid opcode in corrupted run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: VFS: Busy inodes after unmount (use-after-free) representative crash: invalid opcode in corrupted, types: [UNKNOWN] testing release v5.17 testing commit f443e374ae131c168a065ea1748feac6b2e76613 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: f95463beb931b6d55e64acebe27e80b76d52c1cafcb4d6cc051716f24005c551 run #0: crashed: invalid opcode in corrupted run #1: crashed: VFS: Busy inodes after unmount (use-after-free) run #2: crashed: invalid opcode in corrupted run #3: crashed: VFS: Busy inodes after unmount (use-after-free) run #4: crashed: invalid opcode in corrupted run #5: crashed: VFS: Busy inodes after unmount (use-after-free) run #6: crashed: VFS: Busy inodes after unmount (use-after-free) run #7: crashed: invalid opcode in corrupted run #8: crashed: VFS: Busy inodes after unmount (use-after-free) run #9: crashed: VFS: Busy inodes after unmount (use-after-free) representative crash: invalid opcode in corrupted, types: [UNKNOWN] testing release v5.15 testing commit 8bb7eca972ad531c9b149c0a51ab43a417385813 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 584d7af1658c241d554d0ce0cbbfeca260a660ce54886e409d16684583af910c run #0: crashed: invalid opcode in corrupted run #1: crashed: invalid opcode in corrupted run #2: crashed: VFS: Busy inodes after unmount (use-after-free) run #3: crashed: VFS: Busy inodes after unmount (use-after-free) run #4: crashed: invalid opcode in corrupted run #5: crashed: invalid opcode in corrupted run #6: crashed: VFS: Busy inodes after unmount (use-after-free) run #7: crashed: VFS: Busy inodes after unmount (use-after-free) run #8: crashed: invalid opcode in corrupted run #9: crashed: invalid opcode in corrupted representative crash: invalid opcode in corrupted, types: [UNKNOWN] testing release v5.13 testing commit 62fb9874f5da54fdb243003b386128037319b219 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: e21768c7dd4ba08eac1ca8844c4d7e9b35c61fb7312cb8db84bb6856a6c48018 run #0: crashed: VFS: Busy inodes after unmount (use-after-free) run #1: crashed: invalid opcode in corrupted run #2: crashed: VFS: Busy inodes after unmount (use-after-free) run #3: crashed: VFS: Busy inodes after unmount (use-after-free) run #4: crashed: VFS: Busy inodes after unmount (use-after-free) run #5: crashed: invalid opcode in corrupted run #6: crashed: VFS: Busy inodes after unmount (use-after-free) run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: VFS: Busy inodes after unmount (use-after-free) representative crash: VFS: Busy inodes after unmount (use-after-free), types: [UNKNOWN] testing release v5.11 testing commit f40ddce88593482919761f74910f42f4b84c004b gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 7776dca9c63a18030d08df3261c4ac006e2da5f9ec26f4adad5a7009783c2252 run #0: crashed: VFS: Busy inodes after unmount (use-after-free) run #1: crashed: VFS: Busy inodes after unmount (use-after-free) run #2: crashed: invalid opcode in corrupted run #3: crashed: invalid opcode in corrupted run #4: crashed: VFS: Busy inodes after unmount (use-after-free) run #5: crashed: VFS: Busy inodes after unmount (use-after-free) run #6: crashed: invalid opcode in corrupted run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: invalid opcode in corrupted representative crash: VFS: Busy inodes after unmount (use-after-free), types: [UNKNOWN] testing release v5.8 testing commit bcf876870b95592b52519ed4aafcf9d95999bc9c gcc compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 3b4fbd1829b636949e4799617c4a86c0d6a5c5daa7dee249a86e1a9bc9e794cd run #0: crashed: invalid opcode in corrupted run #1: crashed: invalid opcode in corrupted run #2: crashed: VFS: Busy inodes after unmount (use-after-free) run #3: crashed: VFS: Busy inodes after unmount (use-after-free) run #4: crashed: VFS: Busy inodes after unmount (use-after-free) run #5: crashed: VFS: Busy inodes after unmount (use-after-free) run #6: crashed: invalid opcode in corrupted run #7: crashed: invalid opcode in corrupted run #8: crashed: invalid opcode in corrupted run #9: crashed: invalid opcode in corrupted representative crash: invalid opcode in corrupted, types: [UNKNOWN] testing release v5.5 testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 6ac07c0a03a5ca9f35a51615eaba26a13ab13b854c42ec80952e6393a5961d38 run #0: crashed: invalid opcode in assfail run #1: crashed: VFS: Busy inodes after unmount (use-after-free) run #2: crashed: VFS: Busy inodes after unmount (use-after-free) run #3: crashed: invalid opcode in assfail run #4: crashed: invalid opcode in assfail run #5: crashed: invalid opcode in assfail run #6: crashed: VFS: Busy inodes after unmount (use-after-free) run #7: crashed: invalid opcode in assfail run #8: basic kernel testing failed: lost connection to test machine run #9: crashed: invalid opcode in assfail representative crash: invalid opcode in assfail, types: [UNKNOWN] testing release v5.2 testing commit 0ecfebd2b52404ae0c54a878c872bb93363ada36 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: bf9105bf5fd207d56c59aca1772e00619aea2ec18c4e88cae5f8bc73c4bbc564 run #0: crashed: BUG: Bad page state run #1: crashed: BUG: Bad page state run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages run #3: crashed: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages run #4: crashed: BUG: Bad page state run #5: crashed: BUG: Bad page state run #6: crashed: no output from test machine run #7: OK run #8: OK run #9: OK representative crash: BUG: Bad page state, types: [UNKNOWN] testing release v4.20 testing commit 8fe28cb58bcb235034b64cbbb7550a8a43fd88be gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 21fcb4d9755f4fa536e999cb1d8eec232fa530ecd98d5241b15e56431ad76669 all runs: OK false negative chance: 0.000 # git bisect start 0ecfebd2b52404ae0c54a878c872bb93363ada36 8fe28cb58bcb235034b64cbbb7550a8a43fd88be Bisecting: 22163 revisions left to test after this (roughly 14 steps) [b5dd0c658c31b469ccff1b637e5124851e7a4a1c] Merge branch 'akpm' (patches from Andrew) testing commit b5dd0c658c31b469ccff1b637e5124851e7a4a1c gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 7073f9ecba79bf204151d39278de22961cab72f22f124a428596c0ef86b725bf run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in caching_kthread run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages run #3: crashed: BUG: Bad page state run #4: crashed: BUG: unable to handle kernel NULL pointer dereference in caching_kthread run #5: crashed: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages run #6: crashed: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio run #7: crashed: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio run #8: crashed: BUG: Bad page state run #9: OK representative crash: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio, types: [UNKNOWN] # git bisect bad b5dd0c658c31b469ccff1b637e5124851e7a4a1c Bisecting: 10490 revisions left to test after this (roughly 13 steps) [78e8696c234ab637c4dd516cabeac344d84ec10b] Merge tag 'dmaengine-4.21-rc1' of git://git.infradead.org/users/vkoul/slave-dma testing commit 78e8696c234ab637c4dd516cabeac344d84ec10b gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: c002d6b41ed9ad07493a72cf3364edcf78685259aad6ea8c1c838dc2f75f5ea1 run #0: crashed: BUG: Bad page state run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio run #2: crashed: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio run #3: crashed: BUG: Bad page state run #4: crashed: general protection fault in end_workqueue_bio run #5: crashed: BUG: Bad page state run #6: crashed: BUG: Bad page state run #7: OK run #8: OK run #9: OK representative crash: BUG: Bad page state, types: [UNKNOWN] # git bisect bad 78e8696c234ab637c4dd516cabeac344d84ec10b Bisecting: 4441 revisions left to test after this (roughly 12 steps) [e0c38a4d1f196a4b17d2eba36afff8f656a4f1de] Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next testing commit e0c38a4d1f196a4b17d2eba36afff8f656a4f1de gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 54b0cc58fc6d2ce25796561c8aeb8485fc53894e65b62936dc1088f4feaec298 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK representative crash: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages, types: [UNKNOWN] # git bisect bad e0c38a4d1f196a4b17d2eba36afff8f656a4f1de Bisecting: 3061 revisions left to test after this (roughly 12 steps) [c2f1f3e0e17d94ab0c66d83e669492cb9e9a3698] Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/sparc-next testing commit c2f1f3e0e17d94ab0c66d83e669492cb9e9a3698 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: c1d5fe64606f1a216ba7f66c1e55c9638d6eb576ed0c9907c6ad68209dde6b80 all runs: OK false negative chance: 0.000 # git bisect good c2f1f3e0e17d94ab0c66d83e669492cb9e9a3698 Bisecting: 1530 revisions left to test after this (roughly 11 steps) [33f18c96afdf4da20014f834874e2820ee880cde] net: ethernet: don't set phylib state CHANGELINK in drivers testing commit 33f18c96afdf4da20014f834874e2820ee880cde gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 5de874690f5e02d5b609138b49d03fea7d9db4d881afb95d9b17123c696140d1 all runs: OK false negative chance: 0.000 # git bisect good 33f18c96afdf4da20014f834874e2820ee880cde Bisecting: 777 revisions left to test after this (roughly 10 steps) [6d101ba6be2a26a3e1f513b5e293f0fd2b79ec5c] sched/fair: Fix warning on non-SMP build testing commit 6d101ba6be2a26a3e1f513b5e293f0fd2b79ec5c gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 9fb4774808162ba05056be6c1e666908dbb28b84f8f8f6048472e53d2f781b74 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages run #1: crashed: BUG: unable to handle kernel paging request in end_workqueue_bio run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages, types: [UNKNOWN] # git bisect bad 6d101ba6be2a26a3e1f513b5e293f0fd2b79ec5c Bisecting: 418 revisions left to test after this (roughly 9 steps) [eed9688f8513189295887e5a27ec7f576754b60e] Merge branch 'ras-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip testing commit eed9688f8513189295887e5a27ec7f576754b60e gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 1b8cc7da97ce0237aee0648eff86fedd0bf4966eaef57dedc8994b2e54dbd206 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio, types: [UNKNOWN] # git bisect bad eed9688f8513189295887e5a27ec7f576754b60e Bisecting: 168 revisions left to test after this (roughly 7 steps) [e81434995081fd7efb755fd75576b35dbb0850b1] KVM: x86: Use jmp to invoke kvm_spurious_fault() from .fixup testing commit e81434995081fd7efb755fd75576b35dbb0850b1 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 67155aead952f9d1b5b829ea8a4d47af50023d754452792b6636edf0b16396f5 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: unable to handle kernel NULL pointer dereference in end_workqueue_bio, types: [UNKNOWN] # git bisect bad e81434995081fd7efb755fd75576b35dbb0850b1 Bisecting: 90 revisions left to test after this (roughly 6 steps) [5132411985e14b8dda69173abee8ea9ba942698f] kvm: selftests: ucall: improve ucall placement in memory, fix unsigned comparison testing commit 5132411985e14b8dda69173abee8ea9ba942698f gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 3bae49d1e7961267fcc456872ba903515d1b8e868778645429556510b0348bed run #0: OK run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK representative crash: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages, types: [UNKNOWN] # git bisect bad 5132411985e14b8dda69173abee8ea9ba942698f Bisecting: 36 revisions left to test after this (roughly 5 steps) [97b7ead392637247569818b6603e54b0a6277dd0] KVM: VMX: Expose various getters and setters to nested VMX testing commit 97b7ead392637247569818b6603e54b0a6277dd0 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 91b0d018f2e84382961324c9cbd35eb865cfb8111f63eebf364704c154eec01c all runs: OK false negative chance: 0.193 # git bisect good 97b7ead392637247569818b6603e54b0a6277dd0 Bisecting: 18 revisions left to test after this (roughly 4 steps) [0aa67255f54df192d29aec7ac6abb1249d45bda7] x86/hyper-v: move synic/stimer control structures definitions to hyperv-tlfs.h testing commit 0aa67255f54df192d29aec7ac6abb1249d45bda7 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 3bae49d1e7961267fcc456872ba903515d1b8e868778645429556510b0348bed all runs: OK false negative chance: 0.193 # git bisect good 0aa67255f54df192d29aec7ac6abb1249d45bda7 Bisecting: 9 revisions left to test after this (roughly 3 steps) [53963a70ac268c8e813e6d5cd24cbd1b03f56059] KVM/VMX: Check ept_pointer before flushing ept tlb testing commit 53963a70ac268c8e813e6d5cd24cbd1b03f56059 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 3bae49d1e7961267fcc456872ba903515d1b8e868778645429556510b0348bed all runs: OK false negative chance: 0.193 # git bisect good 53963a70ac268c8e813e6d5cd24cbd1b03f56059 Bisecting: 4 revisions left to test after this (roughly 2 steps) [5fbf963400a39919e53d20fe43bd3be072622944] KVM: nVMX: Move the checks for VM-Entry Control Fields to a separate helper function testing commit 5fbf963400a39919e53d20fe43bd3be072622944 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 3bae49d1e7961267fcc456872ba903515d1b8e868778645429556510b0348bed all runs: OK false negative chance: 0.193 # git bisect good 5fbf963400a39919e53d20fe43bd3be072622944 Bisecting: 2 revisions left to test after this (roughly 1 step) [4e445aee9654dc4aee61919d4f1d379b77cf3435] KVM: nVMX: Move the checks for Guest Non-Register States to a separate helper function testing commit 4e445aee9654dc4aee61919d4f1d379b77cf3435 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 3bae49d1e7961267fcc456872ba903515d1b8e868778645429556510b0348bed all runs: OK false negative chance: 0.193 # git bisect good 4e445aee9654dc4aee61919d4f1d379b77cf3435 Bisecting: 0 revisions left to test after this (roughly 1 step) [b666a4b697397f8492dc11a2a1877557d3e0af56] kvm: x86: Dynamically allocate guest_fpu testing commit b666a4b697397f8492dc11a2a1877557d3e0af56 gcc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 3bae49d1e7961267fcc456872ba903515d1b8e868778645429556510b0348bed all runs: OK false negative chance: 0.193 # git bisect good b666a4b697397f8492dc11a2a1877557d3e0af56 5132411985e14b8dda69173abee8ea9ba942698f is the first bad commit commit 5132411985e14b8dda69173abee8ea9ba942698f Author: Paolo Bonzini Date: Fri Dec 14 12:29:43 2018 +0100 kvm: selftests: ucall: improve ucall placement in memory, fix unsigned comparison Based on a patch by Andrew Jones. Reported-by: Dan Carpenter Signed-off-by: Paolo Bonzini tools/testing/selftests/kvm/lib/ucall.c | 14 ++++++-------- 1 file changed, 6 insertions(+), 8 deletions(-) accumulated error probability: 0.72 culprit signature: 3bae49d1e7961267fcc456872ba903515d1b8e868778645429556510b0348bed parent signature: 3bae49d1e7961267fcc456872ba903515d1b8e868778645429556510b0348bed reproducer is flaky (0.08 repro chance estimate) revisions tested: 34, total time: 6h52m34.437407118s (build: 1h55m2.028690922s, test: 4h50m3.229773633s) first bad commit: 5132411985e14b8dda69173abee8ea9ba942698f kvm: selftests: ucall: improve ucall placement in memory, fix unsigned comparison recipients (to): ["pbonzini@redhat.com"] recipients (cc): [] crash: BUG: unable to handle kernel NULL pointer dereference in btrfs_release_extent_buffer_pages BTRFS info (device loop5): using free space tree BTRFS info (device loop5): has skinny extents BTRFS critical (device loop5): unable to find logical 5263360 length 4096 BTRFS critical (device loop5): unable to find logical 5271552 length 4096 BTRFS critical (device loop5): unable to find logical 5271552 length 4096 BUG: unable to handle kernel NULL pointer dereference at 0000000000000138 PGD 0 P4D 0 Oops: 0000 [#1] PREEMPT SMP CPU: 1 PID: 30445 Comm: btrfs-ino-cache Not tainted 4.20.0-rc6-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 RIP: 0010:__lock_acquire.isra.11+0x305/0x650 kernel/locking/lockdep.c:3222 Code: c7 c7 a0 ce 21 83 e8 b3 1f 01 00 65 48 8b 3c 25 00 4f 01 00 e8 4d 10 00 00 e8 da 13 00 00 e8 28 cf 4c 01 45 31 e4 eb a8 89 f0 <48> 8b 44 c7 08 48 85 c0 0f 85 48 fd ff ff e9 22 fd ff ff 44 89 4d RSP: 0018:ffffc9000100fbe0 EFLAGS: 00010097 RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000130 RBP: ffffc9000100fc10 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: ffff88813a7f0870 R12: 0000000000000000 R13: 0000000000000000 R14: ffff88813a7f0000 R15: 0000000000000130 FS: 0000000000000000(0000) GS:ffff88813bb00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000000138 CR3: 000000012bd48000 CR4: 00000000003406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: lock_acquire+0xaf/0x150 kernel/locking/lockdep.c:3844 __raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline] _raw_spin_lock+0x2d/0x40 kernel/locking/spinlock.c:144 spin_lock include/linux/spinlock.h:329 [inline] btrfs_release_extent_buffer_pages+0xf2/0x2a0 fs/btrfs/extent_io.c:4655 release_extent_buffer fs/btrfs/extent_io.c:5081 [inline] release_extent_buffer+0x42/0xc0 fs/btrfs/extent_io.c:5061 free_extent_buffer fs/btrfs/extent_io.c:5127 [inline] free_extent_buffer+0x46/0x90 fs/btrfs/extent_io.c:5096 btrfs_release_path+0x2c/0x80 fs/btrfs/ctree.c:82 read_block_for_search.isra.12+0x1c7/0x360 fs/btrfs/ctree.c:2430 btrfs_search_slot+0x529/0xa70 fs/btrfs/ctree.c:2838 caching_kthread+0xce/0x330 fs/btrfs/inode-map.c:46 kthread+0x119/0x130 kernel/kthread.c:246 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:352 Modules linked in: CR2: 0000000000000138 ---[ end trace f152c9d1e57c84dd ]--- RIP: 0010:__lock_acquire.isra.11+0x305/0x650 kernel/locking/lockdep.c:3222 Code: c7 c7 a0 ce 21 83 e8 b3 1f 01 00 65 48 8b 3c 25 00 4f 01 00 e8 4d 10 00 00 e8 da 13 00 00 e8 28 cf 4c 01 45 31 e4 eb a8 89 f0 <48> 8b 44 c7 08 48 85 c0 0f 85 48 fd ff ff e9 22 fd ff ff 44 89 4d RSP: 0018:ffffc9000100fbe0 EFLAGS: 00010097 RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000130 RBP: ffffc9000100fc10 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: ffff88813a7f0870 R12: 0000000000000000 R13: 0000000000000000 R14: ffff88813a7f0000 R15: 0000000000000130 FS: 0000000000000000(0000) GS:ffff88813bb00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000000138 CR3: 000000012bd48000 CR4: 00000000003406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: c7 c7 a0 ce 21 83 mov $0x8321cea0,%edi 6: e8 b3 1f 01 00 call 0x11fbe b: 65 48 8b 3c 25 00 4f mov %gs:0x14f00,%rdi 12: 01 00 14: e8 4d 10 00 00 call 0x1066 19: e8 da 13 00 00 call 0x13f8 1e: e8 28 cf 4c 01 call 0x14ccf4b 23: 45 31 e4 xor %r12d,%r12d 26: eb a8 jmp 0xffffffd0 28: 89 f0 mov %esi,%eax * 2a: 48 8b 44 c7 08 mov 0x8(%rdi,%rax,8),%rax <-- trapping instruction 2f: 48 85 c0 test %rax,%rax 32: 0f 85 48 fd ff ff jne 0xfffffd80 38: e9 22 fd ff ff jmp 0xfffffd5f 3d: 44 rex.R 3e: 89 .byte 0x89 3f: 4d rex.WRB