bisecting cause commit starting from fa7f6a5f56d909d4d321b28a3e23ca0175825042 building syzkaller on b5765a153856746a5e7b74ea11751342337b0370 testing commit fa7f6a5f56d909d4d321b28a3e23ca0175825042 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 4ed58b94ac4df786dd1ba7f3e5a88ca3ccfd440cb0dcf13f65a89e2ddb403ce5 all runs: crashed: general protection fault in del_gendisk testing release v5.10.118 testing commit c204ee3350ebbc4e2ab108cbce7afc0cac1c407d compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 5dea968843e7af4f6d5ddb34b3b5e3b14888f8bab6057662e84be2dd36e044a0 all runs: OK # git bisect start fa7f6a5f56d909d4d321b28a3e23ca0175825042 c204ee3350ebbc4e2ab108cbce7afc0cac1c407d Bisecting: 2986 revisions left to test after this (roughly 12 steps) [369de3780428a17e9afece2f5747f03619d589b6] ANDROID: mm: Add vendor hook in rmqueue() testing commit 369de3780428a17e9afece2f5747f03619d589b6 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 7c03b5cbc4914cad54c8467dfce6e1b69551a1cfef93eaaebfe7fef39d6e10c9 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 369de3780428a17e9afece2f5747f03619d589b6 Bisecting: 2984 revisions left to test after this (roughly 12 steps) [ee8d2c7884a001cddc6c2a6baa070c3b3c6c389b] ANDROID: mm: add get_each_object_track function testing commit ee8d2c7884a001cddc6c2a6baa070c3b3c6c389b compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 65e129e52d2f2cb0bf29aeb33d69ea795fc59c18bb87cf8896edb166fd2f2491 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip ee8d2c7884a001cddc6c2a6baa070c3b3c6c389b Bisecting: 2984 revisions left to test after this (roughly 12 steps) [db490c7269d200fc3f254c9d3bed6d19a672f91e] ANDROID: Update the exynos symbol list testing commit db490c7269d200fc3f254c9d3bed6d19a672f91e compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 9e8befddb2a77fc48e82a4e0b5d791e2791dbae930884b213261fbd239c77d79 all runs: crashed: general protection fault in del_gendisk # git bisect bad db490c7269d200fc3f254c9d3bed6d19a672f91e Bisecting: 2476 revisions left to test after this (roughly 11 steps) [6ee117d8c111098c4e6d69bc3bd518ce6b62b035] Revert "FROMLIST: fuse: Use daemon creds in passthrough mode" testing commit 6ee117d8c111098c4e6d69bc3bd518ce6b62b035 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: bffc47657552d88e3039c1f855ebbd53a6e03407135851cdba02cbcab1fd9212 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 6ee117d8c111098c4e6d69bc3bd518ce6b62b035 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [4e35a81bd8d4616fe032cc796544c4a118708c2a] UPSTREAM: kasan, mm: check kasan_enabled in annotations testing commit 4e35a81bd8d4616fe032cc796544c4a118708c2a compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 4fe222f47efa18725b06a2d0edb9a71f3c0ccc133a29ef96b06a82bb966720e8 all runs: basic kernel testing failed: BUG: unable to handle kernel paging request in task_active_pid_ns # git bisect skip 4e35a81bd8d4616fe032cc796544c4a118708c2a Bisecting: 2476 revisions left to test after this (roughly 11 steps) [122a2dad2285a1a2d63a545731e9fa14dfd5fa3e] ANDROID: gki_defconfig: Enable CONFIG_WQ_WATCHDOG testing commit 122a2dad2285a1a2d63a545731e9fa14dfd5fa3e compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e14901f29bad24b7a1dc3e1bbd4db515260d5ed5d88fc4f9b375b676bf253223 all runs: basic kernel testing failed: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks # git bisect skip 122a2dad2285a1a2d63a545731e9fa14dfd5fa3e Bisecting: 2476 revisions left to test after this (roughly 11 steps) [258b9fad021664cec72c9a6a170942e0c377fbfa] UPSTREAM: KVM: arm64: Create nVHE copy of cpu_logical_map testing commit 258b9fad021664cec72c9a6a170942e0c377fbfa compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: da33cbe0d90fa149886306cb866f6868e9eeb690ce20e2ea4ac5859559b70b57 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 258b9fad021664cec72c9a6a170942e0c377fbfa Bisecting: 2476 revisions left to test after this (roughly 11 steps) [3fc5e942554eb435a2afd5113778eefd2a97f19b] ANDROID: binder: Add vendor hook to the binder testing commit 3fc5e942554eb435a2afd5113778eefd2a97f19b compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: cb17b8c5e502975a7eae4d7c495d8b53953bce0df112d9de89f333abc2e2524e all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 3fc5e942554eb435a2afd5113778eefd2a97f19b Bisecting: 2476 revisions left to test after this (roughly 11 steps) [6f919feeb1cf47cc902fa2dc4092f41dffcc5853] UPSTREAM: KVM: arm64: Inject UNDEF on PMU access when no PMU configured testing commit 6f919feeb1cf47cc902fa2dc4092f41dffcc5853 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: bffcbe0ddf4a8ab8bce97b135f60c17e70b91c91aed8d90e7dc0f76421403b2d all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 6f919feeb1cf47cc902fa2dc4092f41dffcc5853 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [29298d156e951f03fdbb3f82079a142fb4b6f8d3] Revert "exec: move S_ISREG() check earlier" testing commit 29298d156e951f03fdbb3f82079a142fb4b6f8d3 compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: bfaaf9d9cbb4c4f4d9051a84236df362b1762aa60679040b891e7b289ee6e428 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 29298d156e951f03fdbb3f82079a142fb4b6f8d3 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [6d8fc36d9e6927567f2e0206e8914247b5cf1421] FROMLIST: mm: protect mm_rb tree with a rwlock testing commit 6d8fc36d9e6927567f2e0206e8914247b5cf1421 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: a848b482f56d3534ded756125d5d2e3db931cb5d1e2c63440041bbd31d23c39d all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 6d8fc36d9e6927567f2e0206e8914247b5cf1421 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [2bd29a1007c6aa0fd7604c4ed21319fc8a75839e] ANDROID: GKI: enable ALLOW_DEV_COREDUMP testing commit 2bd29a1007c6aa0fd7604c4ed21319fc8a75839e compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e07534a1fdf21c5e3b542571646c15372b794e7773405e48f712b836927e7fd4 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 2bd29a1007c6aa0fd7604c4ed21319fc8a75839e Bisecting: 2476 revisions left to test after this (roughly 11 steps) [f7d52eda9f27dff180a165dc3ab7000538943384] ANDROID: cpu/hotplug: create vendor hook for cpu_up/cpu_down testing commit f7d52eda9f27dff180a165dc3ab7000538943384 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 9dff3c25e0adc1e95fbc535c70b7a540f9bfe1644a8a25c2008a24f75f8b5ac5 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip f7d52eda9f27dff180a165dc3ab7000538943384 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [a1180dd384d425badd9cfddb311499f6c14778a4] FROMLIST: KVM: arm64: Provide __flush_dcache_area at EL2 testing commit a1180dd384d425badd9cfddb311499f6c14778a4 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 394ed55f41048321eced00361fc080e02e1cac0413827d411743cdc94734bbb5 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip a1180dd384d425badd9cfddb311499f6c14778a4 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [b9eef19ad3b161e39665465b8e9800fd7645b1fc] Revert "FROMLIST: fuse: Handle asynchronous read and write in passthrough" testing commit b9eef19ad3b161e39665465b8e9800fd7645b1fc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: dfc5df95d21cc9f94b309321521b50bf5e2d05e88b6b5600b7c38eb202840dc8 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip b9eef19ad3b161e39665465b8e9800fd7645b1fc Bisecting: 2476 revisions left to test after this (roughly 11 steps) [a1c0ce2b1ba6e33566781a2371e4397e1c222b59] FROMGIT: KVM: arm64: Ensure I-cache isolation between vcpus of a same VM testing commit a1c0ce2b1ba6e33566781a2371e4397e1c222b59 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 3676ff143b956e7c509c1b905d352237f33a692538f9352c8c593ea2a148a73e all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip a1c0ce2b1ba6e33566781a2371e4397e1c222b59 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [864b400f493aedbe7769b171267b6f0ff69c7c54] ANDROID: proc: Add /proc/uid directory testing commit 864b400f493aedbe7769b171267b6f0ff69c7c54 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 7fece30a9d6e1405f4a3c61aef2c922b33216f91b4e4f18d52737b21213b5029 run #0: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.120:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.120' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #1: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.109:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.109' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #2: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.0.81:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.0.81' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #3: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.76:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.76' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #4: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.126:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.126' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #5: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.96:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.96' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #6: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.10.0:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.10.0' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #7: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.116:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.116' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #8: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.10.1:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.10.1' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #9: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.121:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.121' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system # git bisect skip 864b400f493aedbe7769b171267b6f0ff69c7c54 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [0567ea33cfb8908ae9ce00589920e9a75c389094] BACKPORT: mm: cma: print region name on failure testing commit 0567ea33cfb8908ae9ce00589920e9a75c389094 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 860f7e4443de277dec171d3aea8fb232234d58329d0f1953dcd339313c81906b all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 0567ea33cfb8908ae9ce00589920e9a75c389094 Bisecting: 2476 revisions left to test after this (roughly 11 steps) [b41e0f1228c15d61ea4f3aa90ee43b15d4894ace] ANDROID: update abi_gki_aarch64.xml for 5.2-rc5 testing commit b41e0f1228c15d61ea4f3aa90ee43b15d4894ace compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: a9fcd0f01503af4a316eb7af0a2d352fe646fd8c7ebf942bd806aa6e7a784720 run #0: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.0.166:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.0.166' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #1: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.0.255:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.0.255' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #2: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.28:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.28' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #3: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.35:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.35' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #4: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.55:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.55' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #5: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.34:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.34' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #6: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.84:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.84' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #7: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.90:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.90' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #8: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.115:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.115' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system run #9: basic kernel testing failed: failed to copy test binary to VM: failed to run ["scp" "-P" "22" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/bin/linux_amd64/syz-fuzzer" "root@10.128.1.123:./syz-fuzzer"]: exit status 1 Warning: Permanently added '10.128.1.123' (ECDSA) to the list of known hosts. scp: ./syz-fuzzer: Read-only file system # git bisect skip b41e0f1228c15d61ea4f3aa90ee43b15d4894ace Bisecting: 2476 revisions left to test after this (roughly 11 steps) [3dd622bc4ad299194fc79ad8802c1eda09528f9e] Revert "Revert "x86: remove address space overrides using set_fs()"" testing commit 3dd622bc4ad299194fc79ad8802c1eda09528f9e compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 5c2bf46290f3fcfc64af2ade0fe928fae44a4ae3f45123634d8e041342c3cac4 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 3dd622bc4ad299194fc79ad8802c1eda09528f9e Bisecting: 2476 revisions left to test after this (roughly 11 steps) [5ded961aa2678530dbde87438af6095f3a2a048c] Revert "FROMLIST: BACKPORT: procfs/dmabuf: Add inode number to /..." testing commit 5ded961aa2678530dbde87438af6095f3a2a048c compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 4dec2e4962c19ccd0c22a9bb6005d376f7dd5bb5aae163cdb68ebce2cc05df49 all runs: OK # git bisect good 5ded961aa2678530dbde87438af6095f3a2a048c Bisecting: 97 revisions left to test after this (roughly 7 steps) [0f27e1d31707e09cf7bac781a08e5a46a9b6cfd1] FROMLIST: kfence: skip all GFP_ZONEMASK allocations testing commit 0f27e1d31707e09cf7bac781a08e5a46a9b6cfd1 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 7e60f071ed36d21ed407e4ff80571e98794db715e215952a2211cafc304db0c5 all runs: OK # git bisect good 0f27e1d31707e09cf7bac781a08e5a46a9b6cfd1 Bisecting: 48 revisions left to test after this (roughly 6 steps) [43223c8e15a124421b9a8b82ea3f40c6951b0705] ANDROID: GKI: update .xml file after xhci bugfix testing commit 43223c8e15a124421b9a8b82ea3f40c6951b0705 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 85ef798afbac13efe58b6d6034f901c566113e8618d8240c02d644a24777eede all runs: OK # git bisect good 43223c8e15a124421b9a8b82ea3f40c6951b0705 Bisecting: 23 revisions left to test after this (roughly 5 steps) [8b76fc436bfd62b92a44440dece50321dd1d61ab] ANDROID: ABI: update generic symbol list testing commit 8b76fc436bfd62b92a44440dece50321dd1d61ab compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: bba537d7b2303f8a8eccbc96bebe502abb5d734a286b6ed1e1567b193bfbef18 all runs: crashed: general protection fault in del_gendisk # git bisect bad 8b76fc436bfd62b92a44440dece50321dd1d61ab Bisecting: 12 revisions left to test after this (roughly 4 steps) [1efc36b815769cb8c7dae1d53373b190c017f5d1] ANDROID: sched: add a helper function to change PELT half-life testing commit 1efc36b815769cb8c7dae1d53373b190c017f5d1 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: afddb4715a18db4f145ea8a7b653012d216bcde58a34eca0c4d2362c41d0e83a all runs: crashed: general protection fault in del_gendisk # git bisect bad 1efc36b815769cb8c7dae1d53373b190c017f5d1 Bisecting: 5 revisions left to test after this (roughly 3 steps) [58f1839adc9a6011266049cb2ff98b1e26325fa0] FROMGIT: arm64/cpufeature: Optionally disable MTE via command-line testing commit 58f1839adc9a6011266049cb2ff98b1e26325fa0 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: db9710559180880df73bcf6ec335822de951c5a5daec4f7e8f0292857bc713eb all runs: OK # git bisect good 58f1839adc9a6011266049cb2ff98b1e26325fa0 Bisecting: 2 revisions left to test after this (roughly 2 steps) [8914725a582861666a2a298efbcb5ae7613a47b7] FROMGIT: usb: typec: tcpm: Keep other events when receiving FRS and Sourcing_vbus events testing commit 8914725a582861666a2a298efbcb5ae7613a47b7 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: a1138ee5d2b4ea9c04d09213b735e0940341ab7ced6248c5eb2cc9ae10543394 all runs: OK # git bisect good 8914725a582861666a2a298efbcb5ae7613a47b7 Bisecting: 0 revisions left to test after this (roughly 1 step) [bda49ad0602e5250a9d3dd61deda19d3e5615c54] FROMGIT: loop: Select I/O scheduler 'none' from inside add_disk() testing commit bda49ad0602e5250a9d3dd61deda19d3e5615c54 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: a395204a17641751c5e794ae63b15ab0addef0570724328cfbc4268f6d7d14c3 all runs: crashed: general protection fault in del_gendisk # git bisect bad bda49ad0602e5250a9d3dd61deda19d3e5615c54 Bisecting: 0 revisions left to test after this (roughly 0 steps) [d8b946254effbe36780f0b855da509a07470b8d2] FROMGIT: blk-mq: Introduce the BLK_MQ_F_NO_SCHED_BY_DEFAULT flag testing commit d8b946254effbe36780f0b855da509a07470b8d2 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 06cf753d56ecafc36c9e60afb59466934f6de38f6a237e297fc41f0cde3447ed all runs: OK # git bisect good d8b946254effbe36780f0b855da509a07470b8d2 bda49ad0602e5250a9d3dd61deda19d3e5615c54 is the first bad commit commit bda49ad0602e5250a9d3dd61deda19d3e5615c54 Author: Bart Van Assche Date: Mon Aug 2 10:05:29 2021 -0700 FROMGIT: loop: Select I/O scheduler 'none' from inside add_disk() We noticed that the user interface of Android devices becomes very slow under memory pressure. This is because Android uses the zram driver on top of the loop driver for swapping, because under memory pressure the swap code alternates reads and writes quickly, because mq-deadline is the default scheduler for loop devices and because mq-deadline delays writes by five seconds for such a workload with default settings. Fix this by making the kernel select I/O scheduler 'none' from inside add_disk() for loop devices. This default can be overridden at any time from user space, e.g. via a udev rule. This approach has an advantage compared to changing the I/O scheduler from userspace from 'mq-deadline' into 'none', namely that synchronize_rcu() does not get called. Additionally, this patch reduces the Android boot time on my test setup with 0.5 seconds compared to configuring the loop I/O scheduler from user space. Signed-off-by: Bart Van Assche Bug: 194450129 (cherry picked from commit 2112f5c1330a671fa852051d85cb9eadc05d7eb7 git://git.kernel.dk/linux-block/ for-5.15/block) Change-Id: I6f9579b4cd2cb22fcb5c858d4f292f1870336fdd Signed-off-by: Bart Van Assche drivers/block/loop.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) culprit signature: a395204a17641751c5e794ae63b15ab0addef0570724328cfbc4268f6d7d14c3 parent signature: 06cf753d56ecafc36c9e60afb59466934f6de38f6a237e297fc41f0cde3447ed revisions tested: 31, total time: 4h20m13.871449344s (build: 2h8m37.628948169s, test: 2h7m19.410560631s) first bad commit: bda49ad0602e5250a9d3dd61deda19d3e5615c54 FROMGIT: loop: Select I/O scheduler 'none' from inside add_disk() recipients (to): ["axboe@kernel.dk" "bvanassche@acm.org" "bvanassche@google.com" "linux-block@vger.kernel.org"] recipients (cc): ["linux-kernel@vger.kernel.org"] crash: general protection fault in del_gendisk RBP: 00007f8bf0f9605d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffe131ced0f R14: 00007f8bf0eb2300 R15: 0000000000022000 ---[ end trace a2b1401a8d77dc74 ]--- general protection fault, probably for non-canonical address 0xdffffc000000001a: 0000 [#1] PREEMPT SMP KASAN KASAN: null-ptr-deref in range [0x00000000000000d0-0x00000000000000d7] CPU: 1 PID: 422 Comm: syz-executor.0 Tainted: G W 5.10.43-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022 RIP: 0010:kill_device drivers/base/core.c:3354 [inline] RIP: 0010:device_del+0xe3/0xd00 drivers/base/core.c:3382 Code: c1 ea 03 80 3c 02 00 0f 85 c5 0a 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 63 68 49 8d bc 24 d0 00 00 00 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 06 0f 8e a6 09 00 00 41 0f b6 84 24 d0 00 00 RSP: 0018:ffffc900008d7ca0 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: ffff88810d681068 RCX: ffffffff84262aa9 RDX: 000000000000001a RSI: 0000000000000008 RDI: 00000000000000d0 RBP: ffffc900008d7d58 R08: 0000000000000001 R09: ffffc900008d7c3f R10: fffff5200011af87 R11: 0000000000000000 R12: 0000000000000000 R13: ffff88810d681108 R14: fffffbfff0cdf1c8 R15: 0000000000000008 FS: 00007f8bf0eb2700(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007ff5e5b856a8 CR3: 000000010d259000 CR4: 00000000003506a0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: del_gendisk+0x611/0xa60 block/genhd.c:953 loop_remove drivers/block/loop.c:2194 [inline] loop_control_ioctl drivers/block/loop.c:2293 [inline] loop_control_ioctl+0x30d/0x3d0 drivers/block/loop.c:2259 vfs_ioctl fs/ioctl.c:48 [inline] __do_sys_ioctl fs/ioctl.c:753 [inline] __se_sys_ioctl fs/ioctl.c:739 [inline] __x64_sys_ioctl+0x129/0x1a0 fs/ioctl.c:739 do_syscall_64+0x32/0x80 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x7f8bf0f3c109 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f8bf0eb2168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f8bf104ef60 RCX: 00007f8bf0f3c109 RDX: 000000000000000c RSI: 0000000000004c81 RDI: 0000000000000004 RBP: 00007f8bf0f9605d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffe131ced0f R14: 00007f8bf0eb2300 R15: 0000000000022000 Modules linked in: ---[ end trace a2b1401a8d77dc75 ]--- RIP: 0010:kill_device drivers/base/core.c:3354 [inline] RIP: 0010:device_del+0xe3/0xd00 drivers/base/core.c:3382 Code: c1 ea 03 80 3c 02 00 0f 85 c5 0a 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 63 68 49 8d bc 24 d0 00 00 00 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 06 0f 8e a6 09 00 00 41 0f b6 84 24 d0 00 00 RSP: 0018:ffffc900008d7ca0 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: ffff88810d681068 RCX: ffffffff84262aa9 RDX: 000000000000001a RSI: 0000000000000008 RDI: 00000000000000d0 RBP: ffffc900008d7d58 R08: 0000000000000001 R09: ffffc900008d7c3f R10: fffff5200011af87 R11: 0000000000000000 R12: 0000000000000000 R13: ffff88810d681108 R14: fffffbfff0cdf1c8 R15: 0000000000000008 FS: 00007f8bf0eb2700(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007ff5e5b856a8 CR3: 000000010d259000 CR4: 00000000003506a0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: c1 ea 03 shr $0x3,%edx 3: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 7: 0f 85 c5 0a 00 00 jne 0xad2 d: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 14: fc ff df 17: 4c 8b 63 68 mov 0x68(%rbx),%r12 1b: 49 8d bc 24 d0 00 00 lea 0xd0(%r12),%rdi 22: 00 23: 48 89 fa mov %rdi,%rdx 26: 48 c1 ea 03 shr $0x3,%rdx * 2a: 0f b6 04 02 movzbl (%rdx,%rax,1),%eax <-- trapping instruction 2e: 84 c0 test %al,%al 30: 74 06 je 0x38 32: 0f 8e a6 09 00 00 jle 0x9de 38: 41 rex.B 39: 0f .byte 0xf 3a: b6 84 mov $0x84,%dh 3c: 24 d0 and $0xd0,%al