ci starts bisection 2023-07-08 17:58:25.905076793 +0000 UTC m=+69873.093963335 bisecting cause commit starting from a452483508d7b70b0f6c69e249ec0b3ea2330b5c building syzkaller on 22ae5830af1ab04e8042e534dd9baf750bc0d0ac ensuring issue is reproducible on original commit a452483508d7b70b0f6c69e249ec0b3ea2330b5c testing commit a452483508d7b70b0f6c69e249ec0b3ea2330b5c gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8fbca8c5a51579353b7bdb6fc774f9d6cd4126d7440538cead5e171302c00941 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] check whether we can drop unnecessary instrumentation disabling configs for [LOCKDEP ATOMIC_SLEEP HANG LEAK BUG KASAN], they are not needed testing commit a452483508d7b70b0f6c69e249ec0b3ea2330b5c gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 failed building a452483508d7b70b0f6c69e249ec0b3ea2330b5c: ./include/linux/thread_info.h:244:4: error: call to '__bad_copy_from' declared with attribute error: copy source size is too small testing release v6.4 testing commit 6995e2de6891c724bfeb2db33d7b87775f913ad1 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 6e120d6184fdc0c6995069a569a39fbd7a96114bc3319c6eac92849597c34d8a run #0: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #1: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #2: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #3: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #4: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #5: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #6: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #7: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #8: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #9: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #10: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #11: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #12: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #13: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #14: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #15: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #16: OK run #17: OK representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] testing release v6.3 testing commit 457391b0380335d5e9a5babdec90ac53928b23b4 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e381b8776ea5492aa7faad87ed20e5f0b19c2d4f3923616d6e53596907f630d5 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] testing release v6.2 testing commit c9c3395d5e3dcc6daee66c6908354d47bf98cb0c gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: b8b354886a376ed443083e75c5c60f9d607d851667dbb2dbb8ce64b8f6050d56 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] testing release v6.1 testing commit 830b3c68c1fb1e9176028d02ef86f3cf76aa2476 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 59542613a579f6af17df528ca12234143345c7ad59eba196e294f08713259787 run #0: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #1: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #2: crashed: possible deadlock in virtual_nci_close run #3: crashed: possible deadlock in virtual_nci_close run #4: crashed: possible deadlock in virtual_nci_close run #5: crashed: possible deadlock in virtual_nci_close run #6: crashed: possible deadlock in virtual_nci_close run #7: crashed: possible deadlock in virtual_nci_close run #8: crashed: possible deadlock in virtual_nci_close run #9: crashed: possible deadlock in virtual_nci_close run #10: crashed: possible deadlock in virtual_nci_close run #11: crashed: possible deadlock in virtual_nci_close run #12: crashed: possible deadlock in virtual_nci_close run #13: crashed: possible deadlock in virtual_nci_close run #14: crashed: possible deadlock in virtual_nci_close run #15: crashed: possible deadlock in virtual_nci_close run #16: crashed: possible deadlock in virtual_nci_close run #17: crashed: possible deadlock in virtual_nci_close run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v6.0 testing commit 4fe89d07dcc2804c8b562f6c7896a45643d34b2f gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: b971326eb83ce231258c03b852bb68203c458bbd5874f11557d8dcfe735f3e83 all runs: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v5.19 testing commit 3d7cb6b04c3f3115719235cc6866b10326de34cd gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8353aea0bef7dfcf50abcacac7a0b9a64e87984a0f04d59606265ab06bec5bc0 run #0: crashed: possible deadlock in virtual_nci_close run #1: crashed: possible deadlock in virtual_nci_close run #2: crashed: possible deadlock in virtual_nci_close run #3: crashed: possible deadlock in virtual_nci_close run #4: crashed: possible deadlock in virtual_nci_close run #5: crashed: possible deadlock in virtual_nci_close run #6: crashed: possible deadlock in nci_start_poll run #7: crashed: possible deadlock in nci_start_poll run #8: crashed: possible deadlock in virtual_nci_close run #9: crashed: possible deadlock in virtual_nci_close run #10: crashed: possible deadlock in nci_start_poll run #11: crashed: possible deadlock in nci_start_poll run #12: crashed: possible deadlock in virtual_nci_close run #13: crashed: possible deadlock in virtual_nci_close run #14: crashed: possible deadlock in virtual_nci_close run #15: crashed: possible deadlock in virtual_nci_close run #16: crashed: possible deadlock in virtual_nci_close run #17: crashed: possible deadlock in virtual_nci_close run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v5.18 testing commit 4b0986a3613c92f4ec1bdc7f60ec66fea135991f gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 199bca0a498247625bfce2c4c95ff0611f6af206e60d2209ff79b357de8733ad run #0: crashed: possible deadlock in virtual_nci_close run #1: crashed: possible deadlock in virtual_nci_close run #2: crashed: possible deadlock in virtual_nci_close run #3: crashed: possible deadlock in virtual_nci_close run #4: crashed: possible deadlock in virtual_nci_close run #5: crashed: possible deadlock in virtual_nci_close run #6: crashed: possible deadlock in virtual_nci_close run #7: crashed: possible deadlock in virtual_nci_close run #8: crashed: possible deadlock in virtual_nci_close run #9: crashed: possible deadlock in virtual_nci_close run #10: crashed: possible deadlock in virtual_nci_close run #11: crashed: possible deadlock in virtual_nci_close run #12: crashed: possible deadlock in nci_start_poll run #13: crashed: possible deadlock in nci_start_poll run #14: crashed: possible deadlock in virtual_nci_close run #15: crashed: possible deadlock in virtual_nci_close run #16: crashed: possible deadlock in virtual_nci_close run #17: crashed: possible deadlock in virtual_nci_close run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v5.17 testing commit f443e374ae131c168a065ea1748feac6b2e76613 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 53c247df57dbad270270b79b8e4b05f080df69acaa9584bc0c8474cc6bc3f47c run #0: crashed: possible deadlock in virtual_nci_close run #1: crashed: possible deadlock in virtual_nci_close run #2: crashed: possible deadlock in nci_start_poll run #3: crashed: possible deadlock in nci_start_poll run #4: crashed: possible deadlock in virtual_nci_close run #5: crashed: possible deadlock in virtual_nci_close run #6: crashed: possible deadlock in virtual_nci_close run #7: crashed: possible deadlock in virtual_nci_close run #8: crashed: possible deadlock in virtual_nci_close run #9: crashed: possible deadlock in virtual_nci_close run #10: crashed: possible deadlock in virtual_nci_close run #11: crashed: possible deadlock in virtual_nci_close run #12: crashed: possible deadlock in virtual_nci_close run #13: crashed: possible deadlock in virtual_nci_close run #14: crashed: possible deadlock in virtual_nci_close run #15: crashed: possible deadlock in virtual_nci_close run #16: crashed: possible deadlock in nci_start_poll run #17: crashed: possible deadlock in nci_start_poll run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v5.16 testing commit df0cc57e057f18e44dac8e6c18aba47ab53202f9 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 856ad657bdc32fd443db92596de300c3a4ced74dd295e824e26a3d130181168b run #0: crashed: possible deadlock in virtual_nci_close run #1: crashed: possible deadlock in virtual_nci_close run #2: crashed: possible deadlock in virtual_nci_close run #3: crashed: possible deadlock in virtual_nci_close run #4: crashed: possible deadlock in virtual_nci_close run #5: crashed: possible deadlock in virtual_nci_close run #6: crashed: possible deadlock in virtual_nci_close run #7: crashed: possible deadlock in virtual_nci_close run #8: crashed: possible deadlock in nci_start_poll run #9: crashed: possible deadlock in nci_start_poll run #10: crashed: possible deadlock in virtual_nci_close run #11: crashed: possible deadlock in virtual_nci_close run #12: crashed: possible deadlock in virtual_nci_close run #13: crashed: possible deadlock in virtual_nci_close run #14: crashed: possible deadlock in virtual_nci_close run #15: crashed: possible deadlock in virtual_nci_close run #16: crashed: possible deadlock in virtual_nci_close run #17: crashed: possible deadlock in virtual_nci_close run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v5.15 testing commit 8bb7eca972ad531c9b149c0a51ab43a417385813 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: d063b5306881d6a69469ab7bcf49ab4b34173e2dba69cb8d841c6e1674fa387e run #0: crashed: possible deadlock in virtual_nci_close run #1: crashed: possible deadlock in virtual_nci_close run #2: crashed: possible deadlock in virtual_nci_close run #3: crashed: possible deadlock in virtual_nci_close run #4: crashed: possible deadlock in virtual_nci_close run #5: crashed: possible deadlock in virtual_nci_close run #6: crashed: possible deadlock in virtual_nci_close run #7: crashed: possible deadlock in virtual_nci_close run #8: crashed: possible deadlock in virtual_nci_close run #9: crashed: possible deadlock in virtual_nci_close run #10: crashed: possible deadlock in virtual_nci_close run #11: crashed: possible deadlock in virtual_nci_close run #12: crashed: possible deadlock in nci_start_poll run #13: crashed: possible deadlock in nci_start_poll run #14: crashed: possible deadlock in nci_start_poll run #15: crashed: possible deadlock in nci_start_poll run #16: crashed: possible deadlock in virtual_nci_close run #17: crashed: possible deadlock in virtual_nci_close run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v5.14 testing commit 7d2a07b769330c34b4deabeed939325c77a7ec2f gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 17af3de9eb05a053586f8267133186154bb6b064287ff97ffac61d4dd2c1867e run #0: crashed: possible deadlock in virtual_nci_close run #1: crashed: possible deadlock in virtual_nci_close run #2: crashed: possible deadlock in virtual_nci_close run #3: crashed: possible deadlock in virtual_nci_close run #4: crashed: possible deadlock in virtual_nci_close run #5: crashed: possible deadlock in virtual_nci_close run #6: crashed: possible deadlock in virtual_nci_close run #7: crashed: possible deadlock in virtual_nci_close run #8: crashed: possible deadlock in nci_start_poll run #9: crashed: possible deadlock in nci_start_poll run #10: crashed: possible deadlock in virtual_nci_close run #11: crashed: possible deadlock in virtual_nci_close run #12: crashed: possible deadlock in nci_start_poll run #13: crashed: possible deadlock in nci_start_poll run #14: crashed: possible deadlock in virtual_nci_close run #15: crashed: possible deadlock in virtual_nci_close run #16: crashed: possible deadlock in virtual_nci_close run #17: crashed: possible deadlock in virtual_nci_close run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v5.13 testing commit 62fb9874f5da54fdb243003b386128037319b219 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8d86f59cf06642ec00df08eaede9f4d1c8ecc1e4c7adcb1cb734c1f2e972dfdf run #0: crashed: possible deadlock in virtual_nci_close run #1: crashed: possible deadlock in virtual_nci_close run #2: crashed: possible deadlock in nci_start_poll run #3: crashed: possible deadlock in nci_start_poll run #4: crashed: possible deadlock in virtual_nci_close run #5: crashed: possible deadlock in virtual_nci_close run #6: crashed: possible deadlock in virtual_nci_close run #7: crashed: possible deadlock in virtual_nci_close run #8: crashed: possible deadlock in nci_start_poll run #9: crashed: possible deadlock in nci_start_poll run #10: crashed: possible deadlock in nci_start_poll run #11: crashed: possible deadlock in nci_start_poll run #12: crashed: possible deadlock in virtual_nci_close run #13: crashed: possible deadlock in virtual_nci_close run #14: crashed: possible deadlock in nci_start_poll run #15: crashed: possible deadlock in nci_start_poll run #16: crashed: possible deadlock in virtual_nci_close run #17: crashed: possible deadlock in virtual_nci_close run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in virtual_nci_close, types: [LOCKDEP] testing release v5.12 testing commit 9f4ad9e425a1d3b6a34617b8ea226d56a119a717 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 42363968113118cfbb34e5cbac5d7758aa555ea2811e31aee83d3a5aaf396762 run #0: crashed: possible deadlock in nci_start_poll run #1: crashed: possible deadlock in nci_start_poll run #2: crashed: possible deadlock in nci_start_poll run #3: crashed: possible deadlock in nci_start_poll run #4: crashed: possible deadlock in nci_start_poll run #5: crashed: possible deadlock in nci_start_poll run #6: crashed: possible deadlock in virtual_nci_close run #7: crashed: possible deadlock in virtual_nci_close run #8: crashed: possible deadlock in nci_start_poll run #9: crashed: possible deadlock in nci_start_poll run #10: crashed: possible deadlock in nci_start_poll run #11: crashed: possible deadlock in nci_start_poll run #12: crashed: possible deadlock in virtual_nci_close run #13: crashed: possible deadlock in virtual_nci_close run #14: crashed: possible deadlock in virtual_nci_close run #15: crashed: possible deadlock in virtual_nci_close run #16: crashed: possible deadlock in virtual_nci_close run #17: crashed: possible deadlock in virtual_nci_close run #18: crashed: possible deadlock in virtual_nci_close run #19: crashed: possible deadlock in virtual_nci_close representative crash: possible deadlock in nci_start_poll, types: [LOCKDEP] testing release v5.11 testing commit f40ddce88593482919761f74910f42f4b84c004b gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 0f0f03f0fd6e725dcb7ebc47eac45ae69389f38352b77e246704f80938dcef43 all runs: OK # git bisect start 9f4ad9e425a1d3b6a34617b8ea226d56a119a717 f40ddce88593482919761f74910f42f4b84c004b Bisecting: 6798 revisions left to test after this (roughly 13 steps) [d99676af540c2dc829999928fb81c58c80a1dce4] Merge tag 'drm-next-2021-02-19' of git://anongit.freedesktop.org/drm/drm testing commit d99676af540c2dc829999928fb81c58c80a1dce4 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 7c83943679a7a152b75364ec338ba5d84add800078fcf2121dbef5affb57ee73 run #0: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #1: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #2: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #3: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #4: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #5: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #6: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #7: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #8: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #9: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #10: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #11: crashed: UBSAN: shift-out-of-bounds in nci_activate_target run #12: boot failed: WARNING in kvm_wait run #13: boot failed: WARNING in kvm_wait run #14: boot failed: WARNING in kvm_wait run #15: boot failed: WARNING in kvm_wait representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad d99676af540c2dc829999928fb81c58c80a1dce4 Bisecting: 3717 revisions left to test after this (roughly 12 steps) [f9d58de23152f2c16f326d7e014cfa2933b00304] Merge tag 'affs-for-5.12-tag' of git://git.kernel.org/pub/scm/linux/kernel/git/kdave/linux testing commit f9d58de23152f2c16f326d7e014cfa2933b00304 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 97a6fbb7bc5b53e1bdb2b506edf73c12f584ead68cc7ef593a0e42dd9dd85ec2 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad f9d58de23152f2c16f326d7e014cfa2933b00304 Bisecting: 1819 revisions left to test after this (roughly 11 steps) [b8af417e4d93caeefb89bbfbd56ec95dedd8dab5] Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next testing commit b8af417e4d93caeefb89bbfbd56ec95dedd8dab5 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 9bff35d4ad69d9ad5fa21271aef19f427a95542e766e472e731f60e5c01a71b3 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad b8af417e4d93caeefb89bbfbd56ec95dedd8dab5 Bisecting: 911 revisions left to test after this (roughly 10 steps) [4d469ec8ec05e1fa4792415de1a95b28871ff2fa] Merge branch '1GbE' of git://git.kernel.org/pub/scm/linux/kernel/git/tnguy/next-queue testing commit 4d469ec8ec05e1fa4792415de1a95b28871ff2fa gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 9c3f4a95d4d59d41bb87bcd5390f26ac917049693b459d51624b5ab7099f0177 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad 4d469ec8ec05e1fa4792415de1a95b28871ff2fa Bisecting: 458 revisions left to test after this (roughly 9 steps) [05fcc25662a3bbfc5daa9247132b2d8535053883] cxgb4: remove bogus CHELSIO_VPD_UNIQUE_ID constant testing commit 05fcc25662a3bbfc5daa9247132b2d8535053883 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: c7b537d3f9e9174f71217d5b9233176f8966f8b949202d836ebbd72b4df648ef all runs: OK # git bisect good 05fcc25662a3bbfc5daa9247132b2d8535053883 Bisecting: 229 revisions left to test after this (roughly 8 steps) [a6fbbaa64c3b0e744e7e421a13658a7441f5a9f3] nexthop: Strongly-type context of rtm_dump_nexthop() testing commit a6fbbaa64c3b0e744e7e421a13658a7441f5a9f3 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8eb7a54739bdee5a08fef8c8be93d02d15c37119f11232dfd2b833835f445209 all runs: OK # git bisect good a6fbbaa64c3b0e744e7e421a13658a7441f5a9f3 Bisecting: 114 revisions left to test after this (roughly 7 steps) [6208fd822a2c656461d2f2dc29a309d379ab5850] selftests: mptcp: add testcases for newly added addresses testing commit 6208fd822a2c656461d2f2dc29a309d379ab5850 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 5f42e7c69a963c0fe495908c1406edf7cd69bbe0e3d336aa4c1a85ffd0ecfd6a all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad 6208fd822a2c656461d2f2dc29a309d379ab5850 Bisecting: 57 revisions left to test after this (roughly 6 steps) [4e146def5855bea30ab14d2a27c13be90b7cd2d1] Merge branch 'net-bridge-drop-hosts-limit-sysfs-and-add-a-comment' testing commit 4e146def5855bea30ab14d2a27c13be90b7cd2d1 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 4a144f1b2f30153270ec85afc36a3271fca4b1fe45b8ee361df8f1b9a3087912 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad 4e146def5855bea30ab14d2a27c13be90b7cd2d1 Bisecting: 24 revisions left to test after this (roughly 5 steps) [fd3d37551cec11fc69f8909d2a591754b2752db9] Merge tag 'linux-can-next-for-5.12-20210129' of git://git.kernel.org/pub/scm/linux/kernel/git/mkl/linux-can-next testing commit fd3d37551cec11fc69f8909d2a591754b2752db9 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 3d8a73df8f44d5c7c7a07bcbdc3e141e76b719ee5c7f4e587201715d241c42b8 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad fd3d37551cec11fc69f8909d2a591754b2752db9 Bisecting: 15 revisions left to test after this (roughly 4 steps) [a5b88632fc967906a86e16513bae9cc49070934c] net: atm: pppoatm: use tasklet_init to initialize wakeup tasklet testing commit a5b88632fc967906a86e16513bae9cc49070934c gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8f45e7376d00bdd51096c1389cf35a83c9bc70779a88683e06a8b2e48ca1401f all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad a5b88632fc967906a86e16513bae9cc49070934c Bisecting: 7 revisions left to test after this (roughly 3 steps) [8c22475148a8d3222be712bd02a74d7279d50daf] net: packet: make pkt_sk() inline testing commit 8c22475148a8d3222be712bd02a74d7279d50daf gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: f1372cfd832e27b1d3bb7b9a98eaee23d6ff9b9ca329d877c8aea5df44608b07 all runs: OK # git bisect good 8c22475148a8d3222be712bd02a74d7279d50daf Bisecting: 3 revisions left to test after this (roughly 2 steps) [8c85d18ce647ac2517a1a1bb01b02648e23700e6] net/sched: cls_flower: Add match on the ct_state reply flag testing commit 8c85d18ce647ac2517a1a1bb01b02648e23700e6 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 26a587278c43477ffc15a373d799282ed0889a4fded2cfb9ea7c64a39bf5a97e all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad 8c85d18ce647ac2517a1a1bb01b02648e23700e6 Bisecting: 1 revision left to test after this (roughly 1 step) [f595cf1242f3d64d78f9c96fa56bb5e22146d0ca] selftests: Add nci suite testing commit f595cf1242f3d64d78f9c96fa56bb5e22146d0ca gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8652d8faa8fcbaa0f562460d48818e4874166ea48fc0458b7162ecdd5cc59026 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad f595cf1242f3d64d78f9c96fa56bb5e22146d0ca Bisecting: 0 revisions left to test after this (roughly 0 steps) [e624e6c3e777fb3dfed036b9da4d433aee3608a5] nfc: Add a virtual nci device driver testing commit e624e6c3e777fb3dfed036b9da4d433aee3608a5 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8652d8faa8fcbaa0f562460d48818e4874166ea48fc0458b7162ecdd5cc59026 all runs: crashed: UBSAN: shift-out-of-bounds in nci_activate_target representative crash: UBSAN: shift-out-of-bounds in nci_activate_target, types: [UBSAN] # git bisect bad e624e6c3e777fb3dfed036b9da4d433aee3608a5 e624e6c3e777fb3dfed036b9da4d433aee3608a5 is the first bad commit commit e624e6c3e777fb3dfed036b9da4d433aee3608a5 Author: Bongsu Jeon Date: Wed Jan 27 22:08:28 2021 +0900 nfc: Add a virtual nci device driver NCI virtual device simulates a NCI device to the user. It can be used to validate the NCI module and applications. This driver supports communication between the virtual NCI device and NCI module. Signed-off-by: Bongsu Jeon Signed-off-by: Jakub Kicinski drivers/nfc/Kconfig | 11 +++ drivers/nfc/Makefile | 1 + drivers/nfc/virtual_ncidev.c | 215 +++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 227 insertions(+) create mode 100644 drivers/nfc/virtual_ncidev.c culprit signature: 8652d8faa8fcbaa0f562460d48818e4874166ea48fc0458b7162ecdd5cc59026 parent signature: f1372cfd832e27b1d3bb7b9a98eaee23d6ff9b9ca329d877c8aea5df44608b07 revisions tested: 29, total time: 8h49m40.781465134s (build: 5h28m55.092018777s, test: 3h11m12.310341091s) first bad commit: e624e6c3e777fb3dfed036b9da4d433aee3608a5 nfc: Add a virtual nci device driver recipients (to): ["bongsu.jeon@samsung.com" "kuba@kernel.org"] recipients (cc): [] crash: UBSAN: shift-out-of-bounds in nci_activate_target ================================================================================ UBSAN: shift-out-of-bounds in net/nfc/nci/core.c:895:45 shift exponent 268435489 is too large for 32-bit type 'int' CPU: 0 PID: 6140 Comm: syz-executor.0 Not tainted 5.11.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x9a/0xcc lib/dump_stack.c:120 ubsan_epilogue+0x5/0x40 lib/ubsan.c:148 __ubsan_handle_shift_out_of_bounds.cold+0x61/0xe9 lib/ubsan.c:395 nci_activate_target.cold+0x71/0x76 net/nfc/nci/core.c:895 nfc_activate_target+0x196/0x450 net/nfc/core.c:420 nfc_genl_activate_target+0x1d6/0x270 net/nfc/netlink.c:898 genl_family_rcv_msg_doit+0x1e4/0x2f0 net/netlink/genetlink.c:739 genl_family_rcv_msg net/netlink/genetlink.c:783 [inline] genl_rcv_msg+0x27d/0x490 net/netlink/genetlink.c:800 netlink_rcv_skb+0x118/0x370 net/netlink/af_netlink.c:2494 genl_rcv+0x1f/0x30 net/netlink/genetlink.c:811 netlink_unicast_kernel net/netlink/af_netlink.c:1304 [inline] netlink_unicast+0x42e/0x700 net/netlink/af_netlink.c:1330 netlink_sendmsg+0x70e/0xbe0 net/netlink/af_netlink.c:1919 sock_sendmsg_nosec net/socket.c:652 [inline] sock_sendmsg+0xab/0xe0 net/socket.c:672 ____sys_sendmsg+0x5bf/0x7a0 net/socket.c:2345 ___sys_sendmsg+0xd3/0x150 net/socket.c:2399 __sys_sendmsg+0xb2/0x140 net/socket.c:2432 do_syscall_64+0x2d/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x7f71d3da4389 Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f71d3116168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f71d3ec3f80 RCX: 00007f71d3da4389 RDX: 0000000000000000 RSI: 0000000020000780 RDI: 0000000000000005 RBP: 00007f71d3def493 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffd1b5d65ff R14: 00007f71d3116300 R15: 0000000000022000 ================================================================================