ci2 starts bisection 2024-03-24 09:47:14.357201617 +0000 UTC m=+104793.472753462
bisecting fixing commit since 993bed180178156a70afdafe8aaf23a117107352
building syzkaller on 8d446f1521b580230a60c9ae228bf0c26312c80b
ensuring issue is reproducible on original commit 993bed180178156a70afdafe8aaf23a117107352

testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 67ea3850db85d3aecbff9ce24440c843d972c749e78dfc77b4e75e28d8835641
run #0: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #1: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #2: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #3: crashed: BUG: scheduling while atomic in do_epoll_wait
run #4: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #5: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #6: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #7: crashed: BUG: scheduling while atomic in do_nanosleep
run #8: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #9: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #10: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #11: crashed: BUG: scheduling while atomic in do_nanosleep
run #12: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #13: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #14: crashed: BUG: scheduling while atomic in do_nanosleep
run #15: crashed: BUG: scheduling while atomic in do_nanosleep
run #16: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #17: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #18: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #19: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
representative crash: BUG: scheduling while atomic in exit_to_user_mode_prepare, types: [ATOMIC_SLEEP]
check whether we can drop unnecessary instrumentation
disabling configs for [BUG KASAN LOCKDEP HANG LEAK UBSAN], they are not needed
testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: d57e5cdeb18d07d62d79ec6ee1582a75cc94e618311b59bff27bc0430aef232d
run #0: crashed: BUG: scheduling while atomic in do_nanosleep
run #1: crashed: BUG: scheduling while atomic in do_nanosleep
run #2: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #3: crashed: BUG: scheduling while atomic in do_nanosleep
run #4: crashed: BUG: scheduling while atomic in do_nanosleep
run #5: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #6: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #7: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #8: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #9: crashed: BUG: scheduling while atomic in do_nanosleep
representative crash: BUG: scheduling while atomic in do_nanosleep, types: [ATOMIC_SLEEP]
the bug reproduces without the instrumentation
disabling configs for [LOCKDEP HANG LEAK UBSAN BUG KASAN], they are not needed
kconfig minimization: base=4920 full=6159 leaves diff=242
split chunks (needed=false): <242>
split chunk #0 of len 242 into 5 parts
testing without sub-chunk 1/5
disabling configs for [BUG KASAN LOCKDEP HANG LEAK UBSAN], they are not needed
testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 91891e1fc8c4c8fb38cc56f7c0538d477efbbc058ae74cffea51d0ab95d5fedc
run #0: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #1: crashed: BUG: scheduling while atomic in do_nanosleep
run #2: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #3: crashed: BUG: scheduling while atomic in do_nanosleep
run #4: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #5: crashed: BUG: scheduling while atomic in do_nanosleep
run #6: crashed: BUG: scheduling while atomic in do_nanosleep
run #7: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #8: crashed: BUG: scheduling while atomic in do_nanosleep
run #9: crashed: BUG: scheduling while atomic in do_nanosleep
representative crash: BUG: scheduling while atomic in exit_to_user_mode_prepare, types: [ATOMIC_SLEEP]
the chunk can be dropped
testing without sub-chunk 2/5
disabling configs for [HANG LEAK UBSAN BUG KASAN LOCKDEP], they are not needed
testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 540d19a9d219fb50a13f4dc9916bd0375ce7dd46ae1ee7142195f55776e6d973
run #0: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #1: crashed: BUG: scheduling while atomic in do_nanosleep
run #2: crashed: BUG: scheduling while atomic in do_nanosleep
run #3: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #4: crashed: BUG: scheduling while atomic in do_nanosleep
run #5: crashed: BUG: scheduling while atomic in do_nanosleep
run #6: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #7: crashed: BUG: scheduling while atomic in do_nanosleep
run #8: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #9: crashed: BUG: scheduling while atomic in do_nanosleep
representative crash: BUG: scheduling while atomic in exit_to_user_mode_prepare, types: [ATOMIC_SLEEP]
the chunk can be dropped
testing without sub-chunk 3/5
disabling configs for [UBSAN BUG KASAN LOCKDEP HANG LEAK], they are not needed
testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: e2e1c0b49221a0b4cd141842e34f3e63c894af9c17768be0a8e1d2cd3eb4c319
run #0: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #1: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #2: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #3: crashed: BUG: scheduling while atomic in do_nanosleep
run #4: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #5: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #6: crashed: BUG: scheduling while atomic in do_nanosleep
run #7: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #8: crashed: BUG: scheduling while atomic in do_nanosleep
run #9: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
representative crash: BUG: scheduling while atomic in exit_to_user_mode_prepare, types: [ATOMIC_SLEEP]
the chunk can be dropped
testing without sub-chunk 4/5
disabling configs for [LOCKDEP HANG LEAK UBSAN BUG KASAN], they are not needed
testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: b683bbc4c9a3d329e57d3beb029fa070b1fe60fde89324062610b575c2bf0c93
run #0: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #1: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #2: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #3: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #4: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #5: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #6: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #7: crashed: BUG: scheduling while atomic in do_nanosleep
run #8: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #9: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
representative crash: BUG: scheduling while atomic in exit_to_user_mode_prepare, types: [ATOMIC_SLEEP]
the chunk can be dropped
testing without sub-chunk 5/5
disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP HANG], they are not needed
testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
failed building 993bed180178156a70afdafe8aaf23a117107352: net/socket.c:1191: undefined reference to `wext_handle_ioctl'
net/socket.c:3385: undefined reference to `compat_wext_handle_ioctl'
net/core/net-procfs.c:343: undefined reference to `wext_proc_exit'
net/core/net-procfs.c:327: undefined reference to `wext_proc_init'
minimized to 46 configs; suspects: [HID_ZEROPLUS USB_NET_GL620A USB_NET_MCS7830 USB_NET_NET1080 USB_NET_PLUSB USB_NET_RNDIS_HOST USB_NET_SMSC75XX USB_NET_SMSC95XX USB_NET_SR9700 USB_NET_SR9800 USB_NET_ZAURUS USB_OHCI_HCD USB_OHCI_HCD_PCI USB_OHCI_HCD_PLATFORM USB_OTG USB_OTG_FSM USB_PRINTER USB_SERIAL USB_SERIAL_FTDI_SIO USB_SERIAL_GENERIC USB_SERIAL_PL2303 USB_STORAGE_ALAUDA USB_STORAGE_CYPRESS_ATACB USB_STORAGE_DATAFAB USB_STORAGE_FREECOM USB_STORAGE_ISD200 USB_STORAGE_JUMPSHOT USB_STORAGE_KARMA USB_STORAGE_ONETOUCH USB_STORAGE_SDDR09 USB_STORAGE_SDDR55 USB_STORAGE_USBAT USB_TRANCEVIBRATOR USB_U_AUDIO USB_U_ETHER USB_U_SERIAL USB_WDM WLAN WLAN_VENDOR_ATH WLAN_VENDOR_ATMEL WLAN_VENDOR_BROADCOM WLAN_VENDOR_INTERSIL WLAN_VENDOR_MARVELL WLAN_VENDOR_MEDIATEK WLAN_VENDOR_MICROCHIP WLAN_VENDOR_RALINK WLAN_VENDOR_REALTEK WLAN_VENDOR_RSI WLAN_VENDOR_ZYDAS X86_X32 ZEROPLUS_FF]
disabling configs for [UBSAN BUG KASAN LOCKDEP HANG LEAK], they are not needed
testing current HEAD 993bed180178156a70afdafe8aaf23a117107352
testing commit 993bed180178156a70afdafe8aaf23a117107352 gcc
compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40
kernel signature: 39ccfff9477757d70b5279b605d4118408412e41afd0b18a5462d535d80a91a4
run #0: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #1: crashed: BUG: scheduling while atomic in do_nanosleep
run #2: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #3: crashed: BUG: scheduling while atomic in do_nanosleep
run #4: crashed: BUG: scheduling while atomic in do_nanosleep
run #5: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #6: crashed: BUG: scheduling while atomic in do_nanosleep
run #7: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #8: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
run #9: crashed: BUG: scheduling while atomic in exit_to_user_mode_prepare
representative crash: BUG: scheduling while atomic in exit_to_user_mode_prepare, types: [ATOMIC_SLEEP]
crash still not fixed/happens on the oldest tested release
revisions tested: 7, total time: 34m8.466097696s (build: 12m46.922751296s, test: 19m38.267247816s)
crash still not fixed or there were kernel test errors
commit msg: Merge "Merge branch 'android13-5.15' into branch 'android13-5.15-lts'" into android13-5.15-lts
crash: BUG: scheduling while atomic in exit_to_user_mode_prepare
BUG: scheduling while atomic: syz-executor.0/357/0x00000002
Modules linked in:
Preemption disabled at:
[<ffffffff81e1bf79>] schedule+0x59/0xf0 kernel/sched/core.c:6594
CPU: 0 PID: 357 Comm: syz-executor.0 Not tainted 5.15.148-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x38/0x49 lib/dump_stack.c:106
 dump_stack+0x10/0x12 lib/dump_stack.c:113
 __schedule_bug.cold+0x80/0xab kernel/sched/core.c:5707
 schedule_debug kernel/sched/core.c:5734 [inline]
 __schedule+0x65d/0x730 kernel/sched/core.c:6402
 schedule+0x60/0xf0 kernel/sched/core.c:6595
 exit_to_user_mode_loop kernel/entry/common.c:163 [inline]
 exit_to_user_mode_prepare+0xd0/0x150 kernel/entry/common.c:208
 __syscall_exit_to_user_mode_work kernel/entry/common.c:290 [inline]
 syscall_exit_to_user_mode+0x21/0x40 kernel/entry/common.c:301
 do_syscall_64+0x42/0xb0 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x61/0xcb
RIP: 0033:0x7f45b84b0793
Code: 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 80 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5d c3 0f 1f 40 00 48 83 ec 28 89 54 24 14 48
RSP: 002b:00007fff261697f8 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
RAX: 0000000000000000 RBX: 000000000000001a RCX: 00007f45b84b0793
RDX: 0000000040000001 RSI: 00007fff2616985c RDI: 00000000ffffffff
RBP: 00007fff2616985c R08: 000000000000002b R09: 00007fff26174080
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
R13: 000000000000aa33 R14: 000000000000a9ef R15: 0000000000000006
 </TASK>
BUG: scheduling while atomic: syz-executor.0/357/0x00000002
Modules linked in:
Preemption disabled at:
[<ffffffff81e1bf79>] schedule+0x59/0xf0 kernel/sched/core.c:6594
CPU: 1 PID: 357 Comm: syz-executor.0 Tainted: G        W         5.15.148-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x38/0x49 lib/dump_stack.c:106
 dump_stack+0x10/0x12 lib/dump_stack.c:113
 __schedule_bug.cold+0x80/0xab kernel/sched/core.c:5707
 schedule_debug kernel/sched/core.c:5734 [inline]
 __schedule+0x65d/0x730 kernel/sched/core.c:6402
 schedule+0x60/0xf0 kernel/sched/core.c:6595
 freezable_schedule include/linux/freezer.h:197 [inline]
 do_nanosleep+0x85/0x150 kernel/time/hrtimer.c:2044
 hrtimer_nanosleep+0xca/0x1c0 kernel/time/hrtimer.c:2097
 common_nsleep+0x3f/0x50 kernel/time/posix-timers.c:1267
 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1308 [inline]
 __se_sys_clock_nanosleep kernel/time/posix-timers.c:1285 [inline]
 __x64_sys_clock_nanosleep+0xc7/0x130 kernel/time/posix-timers.c:1285
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x61/0xcb
RIP: 0033:0x7f45b84df173
Code: 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 8e 6d 0d 00 00 74 14 b8 e6 00 00 00 0f 05 <f7> d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10
RSP: 002b:00007fff261697b8 EFLAGS: 00000202 ORIG_RAX: 00000000000000e6
RAX: ffffffffffffffda RBX: 000000000000007e RCX: 00007f45b84df173
RDX: 00007fff261697d0 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007fff2616985c R08: 0000000000000030 R09: 00007fff26174080
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
R13: 000000000000bdf7 R14: 000000000000bda7 R15: 0000000000000005
 </TASK>