bisecting cause commit starting from ac935d22736659be734251247dcc6f444fb98972 building syzkaller on 37bccd4ed9e71025cd84e857f9ffca4ec8451c6b testing commit ac935d22736659be734251247dcc6f444fb98972 with gcc (GCC) 8.1.0 kernel signature: f44155a7045248188bf2bb9b4b7298587383666dbb2d5211a399af76357a2e2b all runs: crashed: BUG: Bad rss-counter state testing release v5.6 testing commit 7111951b8d4973bda27ff663f2cf18b663d15b48 with gcc (GCC) 8.1.0 kernel signature: 4250b65d039b3e83c8aadcc376dd8b302695c4cdf413f85e2276eaef43b036ee all runs: crashed: BUG: Bad rss-counter state testing release v5.5 testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0 kernel signature: 6647424ce3de5451083a8531d09367d3ec07ae7424fadff23713131379545ab0 all runs: crashed: BUG: Bad rss-counter state testing release v5.4 testing commit 219d54332a09e8d8741c1e1982f5eae56099de85 with gcc (GCC) 8.1.0 kernel signature: e7121c4e21411006a5b78e04f811d54ca777b86bfcce2b236e3691c957b9edb5 all runs: crashed: BUG: Bad rss-counter state testing release v5.3 testing commit 4d856f72c10ecb060868ed10ff1b1453943fc6c8 with gcc (GCC) 8.1.0 kernel signature: a08c209dc7f59a41e92abcc3f49c1dfc35c5ee42f2e656875a473be74ec4cee1 all runs: crashed: BUG: Bad rss-counter state testing release v5.2 testing commit 0ecfebd2b52404ae0c54a878c872bb93363ada36 with gcc (GCC) 8.1.0 kernel signature: bbae2160ccbe85d3d3f2dc527b8ec3ddff4cdf783e1df0555822956866020fc1 all runs: crashed: BUG: Bad rss-counter state testing release v5.1 testing commit e93c9c99a629c61837d5a7fc2120cd2b6c70dbdd with gcc (GCC) 8.1.0 kernel signature: 11d8c35a01cb1ae08e26593e8ae555c5e775720c4391ead5dcd3918300a55c88 all runs: crashed: BUG: Bad rss-counter state testing release v5.0 testing commit 1c163f4c7b3f621efff9b28a47abb36f7378d783 with gcc (GCC) 8.1.0 kernel signature: 4ce7606c630d04b459182bf95cc997ebf65cab9b77a6d1a3bc3b1929f1206708 all runs: crashed: BUG: Bad rss-counter state testing release v4.20 testing commit 8fe28cb58bcb235034b64cbbb7550a8a43fd88be with gcc (GCC) 8.1.0 kernel signature: 3d0e310dcb8db6c1ef7c19510481a7a3519f6f49d0e33686b10cf584764512d6 all runs: crashed: BUG: Bad rss-counter state testing release v4.19 testing commit 84df9525b0c27f3ebc2ebb1864fa62a97fdedb7d with gcc (GCC) 8.1.0 kernel signature: 223fe4f263ce9826b10f7dc9e9a1351b0f2cf86cd23e1b9631429d41f8ff7c77 all runs: crashed: BUG: Bad rss-counter state testing release v4.18 testing commit 94710cac0ef4ee177a63b5227664b38c95bbf703 with gcc (GCC) 8.1.0 kernel signature: 7b9d6d86a208510e4e83f9091153ddc75c7291f8af41fd7721e7574baa89eacd all runs: crashed: BUG: Bad rss-counter state testing release v4.17 testing commit 29dcea88779c856c7dc92040a0c01233263101d4 with gcc (GCC) 8.1.0 kernel signature: 62ff7711dd38dc47a6ccb5392f83665e371d9224b9d7c89d64f97903ee094041 all runs: crashed: BUG: Bad rss-counter state testing release v4.16 testing commit 0adb32858b0bddf4ada5f364a84ed60b196dbcda with gcc (GCC) 8.1.0 kernel signature: bafb122f8d9a16be46307c523632bc8f45c56c794b0b39eeec73858c8257662b all runs: OK # git bisect start 29dcea88779c856c7dc92040a0c01233263101d4 0adb32858b0bddf4ada5f364a84ed60b196dbcda Bisecting: 7380 revisions left to test after this (roughly 13 steps) [97b1255cb27c551d7c3c5c496d787da40772da99] mm,oom_reaper: check for MMF_OOM_SKIP before complaining testing commit 97b1255cb27c551d7c3c5c496d787da40772da99 with gcc (GCC) 8.1.0 kernel signature: 3f101b6a401f70d7820051ce4f7901fd6bea16153c4c2e33070e0f4238b70dcd all runs: crashed: BUG: Bad rss-counter state # git bisect bad 97b1255cb27c551d7c3c5c496d787da40772da99 Bisecting: 4372 revisions left to test after this (roughly 12 steps) [bb2407a7219760926760f0448fddf00d625e5aec] Merge tag 'docs-4.17' of git://git.lwn.net/linux testing commit bb2407a7219760926760f0448fddf00d625e5aec with gcc (GCC) 8.1.0 kernel signature: 7cef57e451cb62570dcd14b20644c9b79159bd1d04415611e12b9d28523ad4e9 all runs: crashed: BUG: Bad rss-counter state # git bisect bad bb2407a7219760926760f0448fddf00d625e5aec Bisecting: 1469 revisions left to test after this (roughly 11 steps) [1c7095d2836baafd84e596dd34ba1a1293a4faa9] Merge airlied/drm-next into drm-misc-next testing commit 1c7095d2836baafd84e596dd34ba1a1293a4faa9 with gcc (GCC) 8.1.0 kernel signature: 6f69d92b7cf957f1cbcc663121b29998066b0552a249fad1566ace448d6ac234 all runs: OK # git bisect good 1c7095d2836baafd84e596dd34ba1a1293a4faa9 Bisecting: 728 revisions left to test after this (roughly 10 steps) [2fcd2b306aa80771e053275ed74b2dfe7e3d1434] Merge branch 'x86-dma-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip testing commit 2fcd2b306aa80771e053275ed74b2dfe7e3d1434 with gcc (GCC) 8.1.0 kernel signature: ecfc1bbca5bcff273048a269bec143afca3b26ae69e44b3d71dd4ec05e86c0fd all runs: crashed: BUG: Bad rss-counter state # git bisect bad 2fcd2b306aa80771e053275ed74b2dfe7e3d1434 Bisecting: 464 revisions left to test after this (roughly 9 steps) [1159e09476536250c2a0173d4298d15114df7a89] perf/x86/intel: Enable C-state residency events for Cannon Lake testing commit 1159e09476536250c2a0173d4298d15114df7a89 with gcc (GCC) 8.1.0 kernel signature: bcf0a7495dc0ed00b2980e09ee134936af0a25d838f69223bf745041c8431cd4 all runs: crashed: BUG: Bad rss-counter state # git bisect bad 1159e09476536250c2a0173d4298d15114df7a89 Bisecting: 137 revisions left to test after this (roughly 7 steps) [2427b432e63b4b911100f717c48289195b7a7d62] perf tools: Update quipper information testing commit 2427b432e63b4b911100f717c48289195b7a7d62 with gcc (GCC) 8.1.0 kernel signature: 58b12ab1f2f8986d303c20451d6fac16061065283ccf76ad545055545df397c4 all runs: crashed: BUG: Bad rss-counter state # git bisect bad 2427b432e63b4b911100f717c48289195b7a7d62 Bisecting: 68 revisions left to test after this (roughly 6 steps) [d7f55c62e63461c4071afe8730851e406935d960] perf trace: Switch to new perf_mmap__read_event() interface testing commit d7f55c62e63461c4071afe8730851e406935d960 with gcc (GCC) 8.1.0 kernel signature: 0efdfbb7411e749b2dd50d8b5e8980be7d1e41975af5f179d0d7fcd631a4dc8a all runs: crashed: BUG: Bad rss-counter state # git bisect bad d7f55c62e63461c4071afe8730851e406935d960 Bisecting: 34 revisions left to test after this (roughly 5 steps) [8e2ff72aa35e1a8a53894ae46751a83543338e14] perf powerpc: Generate system call table from asm/unistd.h testing commit 8e2ff72aa35e1a8a53894ae46751a83543338e14 with gcc (GCC) 8.1.0 kernel signature: f9e085780fadd5250309d264bfa040c08ce0ba314ce2dd87d47d47a51287ba38 all runs: OK # git bisect good 8e2ff72aa35e1a8a53894ae46751a83543338e14 Bisecting: 17 revisions left to test after this (roughly 4 steps) [d2ed5d2bdc5cd30b44dc52c44c63f08c0a31b845] perf python: Make twatch.py work with both python2 and python3 testing commit d2ed5d2bdc5cd30b44dc52c44c63f08c0a31b845 with gcc (GCC) 8.1.0 kernel signature: 70b34b6c1e9b1537219dccaffdc5497bd37046653df55d2a7a47b40d828d4e96 all runs: crashed: BUG: Bad rss-counter state # git bisect bad d2ed5d2bdc5cd30b44dc52c44c63f08c0a31b845 Bisecting: 9 revisions left to test after this (roughly 3 steps) [21316ac6803d4a1aadd74b896db8d60a92cd1140] perf tests shell lib: Use a wildcard to remove the vfs_getname probe testing commit 21316ac6803d4a1aadd74b896db8d60a92cd1140 with gcc (GCC) 8.1.0 kernel signature: d9c505e534a560a8b98e45fb3e6a08b9fa29a923eac771856c1cd6cfcc072f42 all runs: OK # git bisect good 21316ac6803d4a1aadd74b896db8d60a92cd1140 Bisecting: 4 revisions left to test after this (roughly 2 steps) [7057bb975dab827997e0ca9dd92cafef0856b0cc] Merge branch 'perf/urgent' into perf/core, to pick up fixes testing commit 7057bb975dab827997e0ca9dd92cafef0856b0cc with gcc (GCC) 8.1.0 kernel signature: b6ca3bce0d26d70242ad59f61661bf0cf41f2a3ee03acc8c0a9a8749647ed05c all runs: crashed: BUG: Bad rss-counter state # git bisect bad 7057bb975dab827997e0ca9dd92cafef0856b0cc Bisecting: 2 revisions left to test after this (roughly 1 step) [0d8dd67be013727ae57645ecd3ea2c36365d7da8] perf/headers: Sync new perf_event.h with the tools/include/uapi version testing commit 0d8dd67be013727ae57645ecd3ea2c36365d7da8 with gcc (GCC) 8.1.0 kernel signature: 13dbf05969d23da27d49d57648e8bc49b8bf229f905d90202e9f2255fa6530f8 run #0: crashed: general protection fault in batadv_iv_ogm_queue_add run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad 0d8dd67be013727ae57645ecd3ea2c36365d7da8 Bisecting: 0 revisions left to test after this (roughly 0 steps) [65074d43fc77bcae32776724b7fa2696923c78e4] perf/core: Prepare perf_event.h for new types: 'perf_kprobe' and 'perf_uprobe' testing commit 65074d43fc77bcae32776724b7fa2696923c78e4 with gcc (GCC) 8.1.0 kernel signature: d68e74dc04773a6c472119aa5da003c424113f62bd4494116505b78fd0b698fd all runs: OK # git bisect good 65074d43fc77bcae32776724b7fa2696923c78e4 0d8dd67be013727ae57645ecd3ea2c36365d7da8 is the first bad commit commit 0d8dd67be013727ae57645ecd3ea2c36365d7da8 Author: Song Liu Date: Wed Dec 6 14:45:14 2017 -0800 perf/headers: Sync new perf_event.h with the tools/include/uapi version perf_event.h is updated in previous patch, this patch applies the same changes to the tools/ version. This is part is put in a separate patch in case the two files are back ported separately. Signed-off-by: Song Liu Signed-off-by: Peter Zijlstra (Intel) Reviewed-by: Yonghong Song Reviewed-by: Josef Bacik Acked-by: Alexei Starovoitov Cc: Cc: Cc: Cc: Cc: Arnaldo Carvalho de Melo Cc: Jiri Olsa Cc: Linus Torvalds Cc: Namhyung Kim Cc: Peter Zijlstra Cc: Thomas Gleixner Link: http://lkml.kernel.org/r/20171206224518.3598254-5-songliubraving@fb.com Signed-off-by: Ingo Molnar tools/include/uapi/linux/perf_event.h | 4 ++++ 1 file changed, 4 insertions(+) culprit signature: 13dbf05969d23da27d49d57648e8bc49b8bf229f905d90202e9f2255fa6530f8 parent signature: d68e74dc04773a6c472119aa5da003c424113f62bd4494116505b78fd0b698fd revisions tested: 26, total time: 4h38m24.190730174s (build: 2h30m0.024329066s, test: 2h6m5.551661698s) first bad commit: 0d8dd67be013727ae57645ecd3ea2c36365d7da8 perf/headers: Sync new perf_event.h with the tools/include/uapi version cc: ["ast@kernel.org" "jbacik@fb.com" "mingo@kernel.org" "peterz@infradead.org" "songliubraving@fb.com" "yhs@fb.com"] crash: general protection fault in batadv_iv_ogm_queue_add batman_adv: batadv0: Removing interface: batadv_slave_0 batman_adv: batadv0: Interface deactivated: batadv_slave_1 batman_adv: batadv0: Removing interface: batadv_slave_1 kasan: CONFIG_KASAN_INLINE enabled kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] PREEMPT SMP KASAN Modules linked in: CPU: 0 PID: 23762 Comm: kworker/u4:3 Not tainted 4.15.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet RIP: 0010:batadv_iv_ogm_queue_add+0xdf/0x10d0 net/batman-adv/bat_iv_ogm.c:772 RSP: 0018:ffff880075626f80 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffff8800756271a8 RCX: ffff88008e4c55c0 RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000003 RBP: ffff8800756271d0 R08: ffff88008e4c55c0 R09: 0000000000000001 R10: ffff880075627310 R11: ffff88008e4c5628 R12: 000000000000003c R13: ffff88008ee81200 R14: ffffed000eac4e7a R15: ffff88008e4c55c0 FS: 0000000000000000(0000) GS:ffff8800aea00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f377cc4c000 CR3: 00000000998a8000 CR4: 00000000001406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: batadv_iv_ogm_schedule+0xd4c/0x1290 net/batman-adv/bat_iv_ogm.c:976 batadv_iv_send_outstanding_bat_ogm_packet+0x576/0xa30 net/batman-adv/bat_iv_ogm.c:1803 process_one_work+0x9a1/0x18f0 kernel/workqueue.c:2113 worker_thread+0x212/0x18f0 kernel/workqueue.c:2247 kthread+0x316/0x3d0 kernel/kthread.c:238 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:542 Code: f2 c7 40 20 f2 f2 f2 f2 c7 40 24 00 f2 f2 f2 c7 40 28 f2 f2 f2 f2 c7 40 2c 00 f2 f2 f2 c7 40 30 f3 f3 f3 f3 48 89 f8 48 c1 e8 03 <0f> b6 04 10 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 9e 0c 00 RIP: batadv_iv_ogm_queue_add+0xdf/0x10d0 net/batman-adv/bat_iv_ogm.c:772 RSP: ffff880075626f80 ---[ end trace 51997f193bd59e67 ]---