bisecting fixing commit since a1b977b49b66c75e6c51a515f6700371ae720217 building syzkaller on 638690213ad14c862fe8eca5c0629eaca46749f8 testing commit a1b977b49b66c75e6c51a515f6700371ae720217 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 1d7402d58787248ba4dbbca2c9d4b6ad012ff5f2857d24e22014168e325f8ee4 all runs: crashed: BUG: unable to handle kernel paging request in diFree testing current HEAD 59456c9cc40c8f75b5a7efa0fe1f211d9c6fcaf1 testing commit 59456c9cc40c8f75b5a7efa0fe1f211d9c6fcaf1 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 954be00ed3cc6fa24873db188839549cfd83eb341d73b2c81d6cb8af7e21809a all runs: OK # git bisect start 59456c9cc40c8f75b5a7efa0fe1f211d9c6fcaf1 a1b977b49b66c75e6c51a515f6700371ae720217 Bisecting: 2061 revisions left to test after this (roughly 11 steps) [cb1f69d53ac8a417fc42df013526b54735194c14] sysfs: Add sysfs_emit and sysfs_emit_at to format sysfs output testing commit cb1f69d53ac8a417fc42df013526b54735194c14 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 1b9a5e28a5bd93e667989317a50d64bc1d8a6586848fe66ebe76eedf30df2121 all runs: crashed: BUG: unable to handle kernel paging request in diFree # git bisect good cb1f69d53ac8a417fc42df013526b54735194c14 Bisecting: 1030 revisions left to test after this (roughly 10 steps) [e95ba554ec505bca2fcafff9f90a22c2b916435a] iio: adc: ad7793: Add missing error code in ad7793_setup() testing commit e95ba554ec505bca2fcafff9f90a22c2b916435a compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 3c7e50b6d6de8257f10617a177db2bad4fe345eb259a7fa4565b183626096c0a all runs: crashed: BUG: unable to handle kernel paging request in diFree # git bisect good e95ba554ec505bca2fcafff9f90a22c2b916435a Bisecting: 515 revisions left to test after this (roughly 9 steps) [4194876ced7c141d03791a0a1b57e575cf218c3b] ibmvnic: free tx_pool if tso_pool alloc fails testing commit 4194876ced7c141d03791a0a1b57e575cf218c3b compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: c56a74c8d9a4d7162cf5e2cea201f7ad551e2de3315bcb8c2208fbe738bfb147 all runs: crashed: BUG: unable to handle kernel paging request in diFree # git bisect good 4194876ced7c141d03791a0a1b57e575cf218c3b Bisecting: 257 revisions left to test after this (roughly 8 steps) [7c5bc66b33f6ab5f8792920beb821e1041586b44] mips: always link byteswap helpers into decompressor testing commit 7c5bc66b33f6ab5f8792920beb821e1041586b44 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: bdb7c50a2f9b45b885dc6b38a342cbb96c583e95e41b507f0827ec061e62abc1 all runs: OK # git bisect bad 7c5bc66b33f6ab5f8792920beb821e1041586b44 Bisecting: 128 revisions left to test after this (roughly 7 steps) [bde0f98f32bee955c4f83ae6683459244abff7e6] drm/radeon: Add the missed drm_gem_object_put() in radeon_user_framebuffer_create() testing commit bde0f98f32bee955c4f83ae6683459244abff7e6 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 9ac814ddf0a57ded608845bc6932c89d823006fff91d85b838640442a683e797 all runs: crashed: BUG: unable to handle kernel paging request in diFree # git bisect good bde0f98f32bee955c4f83ae6683459244abff7e6 Bisecting: 64 revisions left to test after this (roughly 6 steps) [141fff551c2c0d8f98270d2e3e1c8730e00c24a1] usb: gadget: f_hid: fix endianness issue with descriptors testing commit 141fff551c2c0d8f98270d2e3e1c8730e00c24a1 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 9913f980c5795fa649e8ca9173c8bda5b208ec9e376da52a5932fdc5086d9bc8 all runs: OK # git bisect bad 141fff551c2c0d8f98270d2e3e1c8730e00c24a1 Bisecting: 31 revisions left to test after this (roughly 5 steps) [3e6d27d667571831fdb88cfc09b277951f06aa37] KVM: X86: Disable hardware breakpoints unconditionally before kvm_x86->run() testing commit 3e6d27d667571831fdb88cfc09b277951f06aa37 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 3f3aa38f7d9b7660f529b229cef50ee1451f04a8fdc3e0d944737dc5e37f0b7a all runs: OK # git bisect bad 3e6d27d667571831fdb88cfc09b277951f06aa37 Bisecting: 15 revisions left to test after this (roughly 4 steps) [e1105c6465e3a8f1616139caac6f299ae0a8082e] tracing: Resize tgid_map to pid_max, not PID_MAX_DEFAULT testing commit e1105c6465e3a8f1616139caac6f299ae0a8082e compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 4df448c564fecf57cfd75ed3482e5ebb91ce725cd7c6f632f7850b224e4907c5 all runs: crashed: BUG: unable to handle kernel paging request in diFree # git bisect good e1105c6465e3a8f1616139caac6f299ae0a8082e Bisecting: 7 revisions left to test after this (roughly 3 steps) [021c294dff030f3ba38eb81e400ba123db32ecbc] media: zr364xx: fix memory leak in zr364xx_start_readpipe testing commit 021c294dff030f3ba38eb81e400ba123db32ecbc compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: e292c4e0f6ba85d99615583f1dc5979f144fc8f6f23d8ceaaa8ae163bd896afc all runs: crashed: BUG: unable to handle kernel paging request in diFree # git bisect good 021c294dff030f3ba38eb81e400ba123db32ecbc Bisecting: 3 revisions left to test after this (roughly 2 steps) [c592ce0bced05b54c088da30dd0d50b6598eb86f] pinctrl: mcp23s08: Fix missing unlock on error in mcp23s08_irq() testing commit c592ce0bced05b54c088da30dd0d50b6598eb86f compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 065fe61667e51241fb911880c6e7d183b152225fbfc9dd0cefcfeedbdfc1850e all runs: crashed: BUG: unable to handle kernel paging request in diFree # git bisect good c592ce0bced05b54c088da30dd0d50b6598eb86f Bisecting: 1 revision left to test after this (roughly 1 step) [cbd87ba6a13891acf6180783f8234a8b7a3e3d4d] smackfs: restrict bytes count in smk_set_cipso() testing commit cbd87ba6a13891acf6180783f8234a8b7a3e3d4d compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 092008f252b3e7a3daff29c5c97c5fb7f2a88c136cee89256c395175d3502df8 all runs: OK # git bisect bad cbd87ba6a13891acf6180783f8234a8b7a3e3d4d Bisecting: 0 revisions left to test after this (roughly 0 steps) [aff8d95b69051d0cf4acc3d91f22299fdbb9dfb3] jfs: fix GPF in diFree testing commit aff8d95b69051d0cf4acc3d91f22299fdbb9dfb3 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 1e726ecae1c42aa1e193edbdcbfb07e11a4ec1631fe96fa3e57129852285c50a all runs: OK # git bisect bad aff8d95b69051d0cf4acc3d91f22299fdbb9dfb3 aff8d95b69051d0cf4acc3d91f22299fdbb9dfb3 is the first bad commit commit aff8d95b69051d0cf4acc3d91f22299fdbb9dfb3 Author: Pavel Skripkin Date: Sun Jun 6 17:24:05 2021 +0300 jfs: fix GPF in diFree commit 9d574f985fe33efd6911f4d752de6f485a1ea732 upstream. Avoid passing inode with JFS_SBI(inode->i_sb)->ipimap == NULL to diFree()[1]. GFP will appear: struct inode *ipimap = JFS_SBI(ip->i_sb)->ipimap; struct inomap *imap = JFS_IP(ipimap)->i_imap; JFS_IP() will return invalid pointer when ipimap == NULL Call Trace: diFree+0x13d/0x2dc0 fs/jfs/jfs_imap.c:853 [1] jfs_evict_inode+0x2c9/0x370 fs/jfs/inode.c:154 evict+0x2ed/0x750 fs/inode.c:578 iput_final fs/inode.c:1654 [inline] iput.part.0+0x3fe/0x820 fs/inode.c:1680 iput+0x58/0x70 fs/inode.c:1670 Reported-and-tested-by: syzbot+0a89a7b56db04c21a656@syzkaller.appspotmail.com Signed-off-by: Pavel Skripkin Signed-off-by: Dave Kleikamp Signed-off-by: Greg Kroah-Hartman fs/jfs/inode.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) culprit signature: 1e726ecae1c42aa1e193edbdcbfb07e11a4ec1631fe96fa3e57129852285c50a parent signature: 065fe61667e51241fb911880c6e7d183b152225fbfc9dd0cefcfeedbdfc1850e revisions tested: 14, total time: 3h55m17.850376476s (build: 2h35m46.73458348s, test: 1h17m56.571436533s) first good commit: aff8d95b69051d0cf4acc3d91f22299fdbb9dfb3 jfs: fix GPF in diFree recipients (to): ["dave.kleikamp@oracle.com" "gregkh@linuxfoundation.org" "paskripkin@gmail.com" "syzbot+0a89a7b56db04c21a656@syzkaller.appspotmail.com"] recipients (cc): []