ci starts bisection 2023-06-11 15:41:08.946931344 +0000 UTC m=+368181.235358225
bisecting cause commit starting from 64569520920a3ca5d456ddd9f4f95fc6ea9b8b45
building syzkaller on 7086cdb95114c57c35cee9db87b80d4225d8795d
ensuring issue is reproducible on original commit 64569520920a3ca5d456ddd9f4f95fc6ea9b8b45

testing commit 64569520920a3ca5d456ddd9f4f95fc6ea9b8b45 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 24f1ae8c7168088a25a4ebda698720ee441fa3623eb3fc432fe3aaea2f1fa2d1
all runs: crashed: general protection fault in ni_readpage_cmpr
testing release v6.3
testing commit 457391b0380335d5e9a5babdec90ac53928b23b4 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: d82caaa4741874564b984b396171aa8a98b50bbc2da4ec175ee0e2d63b9e6291
all runs: crashed: general protection fault in ni_readpage_cmpr
testing release v6.2
testing commit c9c3395d5e3dcc6daee66c6908354d47bf98cb0c gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: d0616f6c42323a251db5432504ed2d3a05b833884e08f8854087341217181fa0
all runs: crashed: general protection fault in ni_readpage_cmpr
testing release v6.1
testing commit 830b3c68c1fb1e9176028d02ef86f3cf76aa2476 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 43901b618146d59f8af4abe5f6d87c42f19125f217b18784badfed9ef4ec3775
all runs: crashed: general protection fault in ni_readpage_cmpr
testing release v6.0
testing commit 4fe89d07dcc2804c8b562f6c7896a45643d34b2f gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 906d37a948721a9b2db25a6cd60db8586dc2c6e5e09c1fd282069ad6777e72a1
all runs: crashed: general protection fault in ni_readpage_cmpr
testing release v5.19
testing commit 3d7cb6b04c3f3115719235cc6866b10326de34cd gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 2418636e112945807249cd944f72f1e99976435a2d3a7196bc9fbb76dacae74c
all runs: crashed: general protection fault in ni_readpage_cmpr
testing release v5.18
testing commit 4b0986a3613c92f4ec1bdc7f60ec66fea135991f gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 104194ffdbaa15f0a74245c052fea8abdb2022d979fc04d031eb70cb54f83e40
all runs: crashed: general protection fault in ni_readpage_cmpr
testing release v5.17
testing commit f443e374ae131c168a065ea1748feac6b2e76613 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: c15eb9877d9c1149ed9e5f12dce65b3b515bf93cac63ccfa454eda81c8d9cd22
all runs: OK
# git bisect start 4b0986a3613c92f4ec1bdc7f60ec66fea135991f f443e374ae131c168a065ea1748feac6b2e76613
Bisecting: 8498 revisions left to test after this (roughly 13 steps)
[25fd2d41b505d0640bdfe67aa77c549de2d3c18a] selftests: kselftest framework: provide "finished" helper

testing commit 25fd2d41b505d0640bdfe67aa77c549de2d3c18a gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 5a67f60d00dc42ea345686780c48ed063c3a409931f046ba7f8d8e725bc65244
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad 25fd2d41b505d0640bdfe67aa77c549de2d3c18a
Bisecting: 3943 revisions left to test after this (roughly 12 steps)
[b4bc93bd76d4da32600795cd323c971f00a2e788] Merge tag 'arm-drivers-5.18' of git://git.kernel.org/pub/scm/linux/kernel/git/soc/soc

testing commit b4bc93bd76d4da32600795cd323c971f00a2e788 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 0e58d835b206377abe6a4fb9ca8c08ca1d001188b1864f6e3966a3800e83492a
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad b4bc93bd76d4da32600795cd323c971f00a2e788
Bisecting: 1986 revisions left to test after this (roughly 11 steps)
[3fe2f7446f1e029b220f7f650df6d138f91651f2] Merge tag 'sched-core-2022-03-22' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip

testing commit 3fe2f7446f1e029b220f7f650df6d138f91651f2 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 6a05b30a55c71007c091bf52915bf57ed3e07bb7cfe417295df77041402b3b0a
all runs: OK
# git bisect good 3fe2f7446f1e029b220f7f650df6d138f91651f2
Bisecting: 898 revisions left to test after this (roughly 10 steps)
[182966e1cd74ec0e326cd376de241803ee79741b] Merge tag 'media/v5.18-1' of git://git.kernel.org/pub/scm/linux/kernel/git/mchehab/linux-media

testing commit 182966e1cd74ec0e326cd376de241803ee79741b gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 5d04a35ca19721502024547218aa1c2c15972c234f4b6700f3bec5bb03113124
run #0: crashed: general protection fault in ni_readpage_cmpr
run #1: crashed: general protection fault in ni_readpage_cmpr
run #2: crashed: general protection fault in ni_readpage_cmpr
run #3: crashed: general protection fault in ni_readpage_cmpr
run #4: crashed: general protection fault in ni_readpage_cmpr
run #5: crashed: general protection fault in ni_readpage_cmpr
run #6: crashed: general protection fault in ni_readpage_cmpr
run #7: crashed: general protection fault in ni_readpage_cmpr
run #8: crashed: general protection fault in ni_readpage_cmpr
run #9: boot failed: WARNING in blk_release_queue
# git bisect bad 182966e1cd74ec0e326cd376de241803ee79741b
Bisecting: 561 revisions left to test after this (roughly 9 steps)
[d51b1b33c51d147b757f042b4d336603b699f362] Merge tag 'linux-kselftest-kunit-5.18-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/shuah/linux-kselftest

testing commit d51b1b33c51d147b757f042b4d336603b699f362 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 2681f1b85e0eb58e4047b841818aa22efc2cd160259b0f6436388e3dac951937
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad d51b1b33c51d147b757f042b4d336603b699f362
Bisecting: 297 revisions left to test after this (roughly 8 steps)
[3bf03b9a0839c9fb06927ae53ebd0f960b19d408] Merge branch 'akpm' (patches from Andrew)

testing commit 3bf03b9a0839c9fb06927ae53ebd0f960b19d408 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 4765c651df23adaa0b6423d01a908278e751d2c3c8eebf5d3c4088b3aa494e87
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad 3bf03b9a0839c9fb06927ae53ebd0f960b19d408
Bisecting: 113 revisions left to test after this (roughly 7 steps)
[49775047cf52a92e41444d41a0584180ec2c256b] mm/memory-failure.c: rework the signaling logic in kill_proc

testing commit 49775047cf52a92e41444d41a0584180ec2c256b gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 5a6e5ba7b490301ea7c193349929a3c299435ee2768f86d8961b081acf913169
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad 49775047cf52a92e41444d41a0584180ec2c256b
Bisecting: 56 revisions left to test after this (roughly 6 steps)
[bbca91cca9a902de2e9907370e9c1e0a3d1aab0f] mm: list_lru: replace linear array with xarray

testing commit bbca91cca9a902de2e9907370e9c1e0a3d1aab0f gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: bb3b62df244c8b5acf487d4d9490ade40594d547f58bba0900ef429639677631
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad bbca91cca9a902de2e9907370e9c1e0a3d1aab0f
Bisecting: 28 revisions left to test after this (roughly 5 steps)
[f7cd16a55837f37b4c3835a2c646023e4d0f0e04] tmpfs: support for file creation time

testing commit f7cd16a55837f37b4c3835a2c646023e4d0f0e04 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: ca58c192ebe7c3ceb77587d433f3163982f1b6d3f3391a3710c24844658b05bc
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad f7cd16a55837f37b4c3835a2c646023e4d0f0e04
Bisecting: 13 revisions left to test after this (roughly 4 steps)
[a64239d0ef345208d8c15d7841a028a43a34c068] f2fs: replace congestion_wait() calls with io_schedule_timeout()

testing commit a64239d0ef345208d8c15d7841a028a43a34c068 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 5c57a1df2e06aae0aa4fdb84357c0a173c0b73f8b7363072b48d4f9355d56a6d
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad a64239d0ef345208d8c15d7841a028a43a34c068
Bisecting: 6 revisions left to test after this (roughly 3 steps)
[84dacdbd5352bfef82423760fa2e8bffaeef9e05] mm: document and polish read-ahead code

testing commit 84dacdbd5352bfef82423760fa2e8bffaeef9e05 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 410ee8a726a30fb7dd2fb57d0a10fd1217043a6d2d722edd0e3ec74712d4a74c
all runs: OK
# git bisect good 84dacdbd5352bfef82423760fa2e8bffaeef9e05
Bisecting: 3 revisions left to test after this (roughly 2 steps)
[6df25e58532be7a4cd6fb15bcd85805947402d91] nfs: remove reliance on bdi congestion

testing commit 6df25e58532be7a4cd6fb15bcd85805947402d91 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: a97b0ca3e034c042b16c1d27fd1a19fcf4e300fdadaf0c39eda679247950985e
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad 6df25e58532be7a4cd6fb15bcd85805947402d91
Bisecting: 0 revisions left to test after this (roughly 1 step)
[670d21c6e17f67535fcf16e14c772209220da9ae] fuse: remove reliance on bdi congestion

testing commit 670d21c6e17f67535fcf16e14c772209220da9ae gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: d23bc158bbf2d1697b053a8117af60a4e88e7cb8122800bc3a530f75fb495227
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad 670d21c6e17f67535fcf16e14c772209220da9ae
Bisecting: 0 revisions left to test after this (roughly 0 steps)
[9fd472af84abd6da15376353c2283b3df9497646] mm: improve cleanup when ->readpages doesn't process all pages

testing commit 9fd472af84abd6da15376353c2283b3df9497646 gcc
compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: f8d14702a1c18325e05eec1c426b0bf25fd806973090f635d9df0e17924e868a
all runs: crashed: general protection fault in ni_readpage_cmpr
# git bisect bad 9fd472af84abd6da15376353c2283b3df9497646
9fd472af84abd6da15376353c2283b3df9497646 is the first bad commit
commit 9fd472af84abd6da15376353c2283b3df9497646
Author: NeilBrown <neilb@suse.de>
Date:   Tue Mar 22 14:38:54 2022 -0700

    mm: improve cleanup when ->readpages doesn't process all pages
    
    If ->readpages doesn't process all the pages, then it is best to act as
    though they weren't requested so that a subsequent readahead can try
    again.
    
    So:
    
      - remove any 'ahead' pages from the page cache so they can be loaded
        with ->readahead() rather then multiple ->read()s
    
      - update the file_ra_state to reflect the reads that were actually
        submitted.
    
    This allows ->readpages() to abort early due e.g.  to congestion, which
    will then allow us to remove the inode_read_congested() test from
    page_Cache_async_ra().
    
    Link: https://lkml.kernel.org/r/164549983736.9187.16755913785880819183.stgit@noble.brown
    Signed-off-by: NeilBrown <neilb@suse.de>
    Cc: Anna Schumaker <Anna.Schumaker@Netapp.com>
    Cc: Chao Yu <chao@kernel.org>
    Cc: Darrick J. Wong <djwong@kernel.org>
    Cc: Ilya Dryomov <idryomov@gmail.com>
    Cc: Jaegeuk Kim <jaegeuk@kernel.org>
    Cc: Jan Kara <jack@suse.cz>
    Cc: Jeff Layton <jlayton@kernel.org>
    Cc: Jens Axboe <axboe@kernel.dk>
    Cc: Lars Ellenberg <lars.ellenberg@linbit.com>
    Cc: Miklos Szeredi <miklos@szeredi.hu>
    Cc: Paolo Valente <paolo.valente@linaro.org>
    Cc: Philipp Reisner <philipp.reisner@linbit.com>
    Cc: Ryusuke Konishi <konishi.ryusuke@gmail.com>
    Cc: Trond Myklebust <trond.myklebust@hammerspace.com>
    Cc: Wu Fengguang <fengguang.wu@intel.com>
    Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
    Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

 mm/readahead.c | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

culprit signature: f8d14702a1c18325e05eec1c426b0bf25fd806973090f635d9df0e17924e868a
parent  signature: 410ee8a726a30fb7dd2fb57d0a10fd1217043a6d2d722edd0e3ec74712d4a74c
revisions tested: 22, total time: 6h34m23.931239074s (build: 4h53m35.552523194s, test: 1h36m58.605922702s)
first bad commit: 9fd472af84abd6da15376353c2283b3df9497646 mm: improve cleanup when ->readpages doesn't process all pages
recipients (to): ["akpm@linux-foundation.org" "neilb@suse.de" "torvalds@linux-foundation.org"]
recipients (cc): []
crash: general protection fault in ni_readpage_cmpr
RBP: 00007f2a892891d0 R08: 0000000000000000 R09: 0000000000000000
R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000002
R13: 00007ffd538ec90f R14: 00007f2a89289300 R15: 0000000000022000
 </TASK>
general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN
KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
CPU: 0 PID: 4158 Comm: syz-executor.0 Not tainted 5.17.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
RIP: 0010:_compound_head include/linux/page-flags.h:195 [inline]
RIP: 0010:unlock_page+0x19/0x40 mm/folio-compat.c:19
Code: ef 5d e9 7a 24 05 00 e8 b5 9f 19 00 eb e2 0f 1f 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 fd 48 83 c7 08 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 17 48 8b 45 08 48 8d 50 ff a8 01 48 0f 45 ea 48 89
RSP: 0018:ffffc900025af6b8 EFLAGS: 00010212
RAX: dffffc0000000000 RBX: 0000000000000008 RCX: dffffc0000000000
RDX: 0000000000000001 RSI: 0000000000000008 RDI: 0000000000000008
RBP: 0000000000000000 R08: 0000000000000001 R09: ffffea0001ae7a07
R10: fffff9400035cf40 R11: 0000000000000001 R12: ffff88801b718488
R13: 0000000000000000 R14: ffffea0001ae7a00 R15: 0000000000000000
FS:  00007f2a89289700(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055d52633b131 CR3: 00000000229dc000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 ni_readpage_cmpr+0x2fe/0x660 fs/ntfs3/frecord.c:2086
 ntfs_readpage+0xcd/0x180 fs/ntfs3/inode.c:698
 filemap_read_folio+0x7f/0x1a0 mm/filemap.c:2419
 filemap_create_folio mm/filemap.c:2544 [inline]
 filemap_get_pages+0x3da/0x13d0 mm/filemap.c:2596
 filemap_read+0x291/0x960 mm/filemap.c:2676
 call_read_iter include/linux/fs.h:2073 [inline]
 generic_file_splice_read+0x362/0x570 fs/splice.c:311
 splice_direct_to_actor+0x27a/0x7c0 fs/splice.c:870
 do_splice_direct+0x154/0x260 fs/splice.c:979
 do_sendfile+0x91e/0x1110 fs/read_write.c:1245
 __do_sys_sendfile64 fs/read_write.c:1310 [inline]
 __se_sys_sendfile64 fs/read_write.c:1296 [inline]
 __x64_sys_sendfile64+0x186/0x1d0 fs/read_write.c:1296
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0x80 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f2a89f17169
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f2a89289168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00007f2a8a036f80 RCX: 00007f2a89f17169
RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
RBP: 00007f2a892891d0 R08: 0000000000000000 R09: 0000000000000000
R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000002
R13: 00007ffd538ec90f R14: 00007f2a89289300 R15: 0000000000022000
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:_compound_head include/linux/page-flags.h:195 [inline]
RIP: 0010:unlock_page+0x19/0x40 mm/folio-compat.c:19
Code: ef 5d e9 7a 24 05 00 e8 b5 9f 19 00 eb e2 0f 1f 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 fd 48 83 c7 08 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 17 48 8b 45 08 48 8d 50 ff a8 01 48 0f 45 ea 48 89
RSP: 0018:ffffc900025af6b8 EFLAGS: 00010212
RAX: dffffc0000000000 RBX: 0000000000000008 RCX: dffffc0000000000
RDX: 0000000000000001 RSI: 0000000000000008 RDI: 0000000000000008
RBP: 0000000000000000 R08: 0000000000000001 R09: ffffea0001ae7a07
R10: fffff9400035cf40 R11: 0000000000000001 R12: ffff88801b718488
R13: 0000000000000000 R14: ffffea0001ae7a00 R15: 0000000000000000
FS:  00007f2a89289700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055d52632f950 CR3: 00000000229dc000 CR4: 0000000000350ee0
----------------
Code disassembly (best guess):
   0:	ef                   	out    %eax,(%dx)
   1:	5d                   	pop    %rbp
   2:	e9 7a 24 05 00       	jmpq   0x52481
   7:	e8 b5 9f 19 00       	callq  0x199fc1
   c:	eb e2                	jmp    0xfffffff0
   e:	0f 1f 00             	nopl   (%rax)
  11:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  18:	fc ff df
  1b:	55                   	push   %rbp
  1c:	48 89 fd             	mov    %rdi,%rbp
  1f:	48 83 c7 08          	add    $0x8,%rdi
  23:	48 89 fa             	mov    %rdi,%rdx
  26:	48 c1 ea 03          	shr    $0x3,%rdx
* 2a:	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1) <-- trapping instruction
  2e:	75 17                	jne    0x47
  30:	48 8b 45 08          	mov    0x8(%rbp),%rax
  34:	48 8d 50 ff          	lea    -0x1(%rax),%rdx
  38:	a8 01                	test   $0x1,%al
  3a:	48 0f 45 ea          	cmovne %rdx,%rbp
  3e:	48                   	rex.W
  3f:	89                   	.byte 0x89