ci starts bisection 2024-08-07 21:30:21.118580818 +0000 UTC m=+37073.197905501 bisecting fixing commit since fbafc3e621c3f4ded43720fdb1d6ce1728ec664e building syzkaller on fb427a0782000106c62de76d251e5a02de5406a9 ensuring issue is reproducible on original commit fbafc3e621c3f4ded43720fdb1d6ce1728ec664e testing commit fbafc3e621c3f4ded43720fdb1d6ce1728ec664e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 66c8dd518f7e249d1674fe97b021b82193ba53dfc0838901d7b097a6f6a37b71 all runs: crashed: general protection fault in do_pagemap_cmd representative crash: general protection fault in do_pagemap_cmd, types: [UNKNOWN] check whether we can drop unnecessary instrumentation disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP HANG], they are not needed testing commit fbafc3e621c3f4ded43720fdb1d6ce1728ec664e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 27b6eabdc718c417e44539959b4839ef9f9c666b374aa12c3e77d93bc80703c2 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] the bug reproduces without the instrumentation disabling configs for [BUG KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN], they are not needed kconfig minimization: base=4001 full=7658 leaves diff=2017 split chunks (needed=false): <2017> split chunk #0 of len 2017 into 5 parts testing without sub-chunk 1/5 disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP HANG], they are not needed testing commit fbafc3e621c3f4ded43720fdb1d6ce1728ec664e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: cb1103bf0d261f1b61c76855cfe05d761dbf3c11e63961c708e3839b935dd2cc all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 2/5 disabling configs for [ATOMIC_SLEEP HANG LEAK UBSAN BUG KASAN LOCKDEP], they are not needed testing commit fbafc3e621c3f4ded43720fdb1d6ce1728ec664e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 1d2bd7d282b5b0b9616eceebf9db373ff3660c2fca6f1e555a8b630b83acf92e all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 3/5 disabling configs for [UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK], they are not needed testing commit fbafc3e621c3f4ded43720fdb1d6ce1728ec664e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 650634259845612ac31fa532a1518d3f6bbfc11caf6eee618943e353f91a74dd all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 4/5 disabling configs for [HANG LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP], they are not needed testing commit fbafc3e621c3f4ded43720fdb1d6ce1728ec664e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 92bc6ae9c4dfa293f416867a2a4ec2a88627b6587144c4b9f180802eac388c56 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 5/5 disabling configs for [HANG LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP], they are not needed testing commit fbafc3e621c3f4ded43720fdb1d6ce1728ec664e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: b0368fd44623b9629b6802ab448e15a0245be55dbbddea41ad5472b67794e886 all runs: OK false negative chance: 0.000 minimized to 401 configs; suspects: [ARCH_ENABLE_MEMORY_HOTREMOVE ATM BCMA BLK_DEV_ZONED BPF_SYSCALL CARDBUS CFG80211 CFG80211_WEXT CMA COMMON_CLK CONTIG_ALLOC CRYPTO_842 CRYPTO_LZ4 CRYPTO_LZ4HC CRYPTO_ZSTD DVB_CORE EXTCON FB GPIOLIB HAVE_KVM HID_ZEROPLUS HW_CONSOLE I2C_MUX IIO IOMMUFD IRQ_REMAP KVM KVM_INTEL LIBNVDIMM MEDIA_ANALOG_TV_SUPPORT MEDIA_CAMERA_SUPPORT MEDIA_CEC_SUPPORT MEDIA_CONTROLLER MEDIA_DIGITAL_TV_SUPPORT MEDIA_RADIO_SUPPORT MEDIA_SDR_SUPPORT MEDIA_SUPPORT MEDIA_TEST_SUPPORT MEDIA_USB_SUPPORT MEMORY_HOTPLUG MEMORY_HOTREMOVE MFD_VIPERBOARD PARPORT PCCARD PCMCIA PHONET RADIO_ADAPTERS RADIO_SI470X RADIO_SI4713 RC_CORE RFKILL SND SOUND SPI SSB TAP TARGET_CORE TUN USB_AMD5536UDC USB_ATM USB_CONFIGFS USB_CONFIGFS_EEM USB_CONFIGFS_F_FS USB_CONFIGFS_F_HID USB_CONFIGFS_F_LB_SS USB_CONFIGFS_F_MIDI USB_CONFIGFS_F_PRINTER USB_CONFIGFS_F_TCM USB_CONFIGFS_F_UAC1 USB_CONFIGFS_F_UAC1_LEGACY USB_CONFIGFS_F_UAC2 USB_CONFIGFS_F_UVC USB_CONFIGFS_MASS_STORAGE USB_CONFIGFS_NCM USB_CONFIGFS_OBEX USB_CONFIGFS_PHONET USB_CONFIGFS_RNDIS USB_CONFIGFS_SERIAL USB_CXACRU USB_CYPRESS_CY7C63 USB_CYTHERM USB_DSBR USB_DUMMY_HCD USB_DWC2 USB_DWC2_HOST USB_DWC2_PCI USB_DWC3 USB_DWC3_GADGET USB_DWC3_OF_SIMPLE USB_DWC3_PCI USB_DWC3_ULPI USB_DYNAMIC_MINORS USB_EG20T USB_EHCI_HCD_PLATFORM USB_EHCI_ROOT_HUB_TT USB_EHSET_TEST_FIXTURE USB_EMI26 USB_EMI62 USB_EPSON2888 USB_EZUSB_FX2 USB_FEW_INIT_RETRIES USB_F_ACM USB_F_ECM USB_F_EEM USB_F_FS USB_F_HID USB_F_MASS_STORAGE USB_F_MIDI USB_F_NCM USB_F_OBEX USB_F_PHONET USB_F_PRINTER USB_F_RNDIS USB_F_SERIAL USB_F_SS_LB USB_F_SUBSET USB_F_TCM USB_F_UAC1 USB_F_UAC1_LEGACY USB_F_UAC2 USB_F_UVC USB_GADGET USB_GADGETFS USB_GADGET_DEBUG_FILES USB_GADGET_DEBUG_FS USB_GL860 USB_GOKU USB_GPIO_VBUS USB_GR_UDC USB_GSPCA USB_GSPCA_BENQ USB_GSPCA_CONEX USB_GSPCA_CPIA1 USB_GSPCA_DTCS033 USB_GSPCA_ETOMS USB_GSPCA_FINEPIX USB_GSPCA_JEILINJ USB_GSPCA_JL2005BCD USB_GSPCA_KINECT USB_GSPCA_KONICA USB_GSPCA_MARS USB_GSPCA_MR97310A USB_GSPCA_NW80X USB_GSPCA_OV519 USB_GSPCA_OV534 USB_GSPCA_OV534_9 USB_GSPCA_PAC207 USB_GSPCA_PAC7302 USB_GSPCA_PAC7311 USB_GSPCA_SE401 USB_GSPCA_SN9C2028 USB_GSPCA_SN9C20X USB_GSPCA_SONIXB USB_GSPCA_SONIXJ USB_GSPCA_SPCA1528 USB_GSPCA_SPCA500 USB_GSPCA_SPCA501 USB_GSPCA_SPCA505 USB_GSPCA_SPCA506 USB_GSPCA_SPCA508 USB_GSPCA_SPCA561 USB_GSPCA_SQ905 USB_GSPCA_SQ905C USB_GSPCA_SQ930X USB_GSPCA_STK014 USB_GSPCA_STK1135 USB_GSPCA_STV0680 USB_GSPCA_SUNPLUS USB_GSPCA_T613 USB_GSPCA_TOPRO USB_GSPCA_TOUPTEK USB_GSPCA_TV8532 USB_GSPCA_VC032X USB_GSPCA_VICAM USB_GSPCA_XIRLINK_CIT USB_GSPCA_ZC3XX USB_HACKRF USB_HCD_BCMA USB_HCD_SSB USB_HSIC_USB3503 USB_HSIC_USB4604 USB_HSO USB_HUB_USB251XB USB_IDMOUSE USB_IOWARRIOR USB_IPHETH USB_ISIGHTFW USB_ISP116X_HCD USB_ISP1301 USB_ISP1760 USB_ISP1760_DUAL_ROLE USB_ISP1760_HCD USB_ISP1761_UDC USB_KAWETH USB_KC2190 USB_KEENE USB_LAN78XX USB_LCD USB_LD USB_LEDS_TRIGGER_USBPORT USB_LED_TRIG USB_LEGOTOWER USB_LIBCOMPOSITE USB_LINK_LAYER_TEST USB_M5602 USB_MA901 USB_MAX3421_HCD USB_MDC800 USB_MICROTEK USB_MR800 USB_MSI2500 USB_MUSB_DUAL_ROLE USB_MUSB_HDRC USB_MV_U3D USB_MV_UDC USB_NET2272 USB_NET2272_DMA USB_NET2280 USB_NET_AX88179_178A USB_NET_AX8817X USB_NET_CDCETHER USB_NET_CDC_EEM USB_NET_CDC_MBIM USB_NET_CDC_NCM USB_NET_CDC_SUBSET USB_NET_CDC_SUBSET_ENABLE USB_NET_CH9200 USB_NET_CX82310_ETH USB_NET_DM9601 USB_NET_GL620A USB_NET_HUAWEI_CDC_NCM USB_NET_INT51X1 USB_NET_KALMIA USB_NET_MCS7830 USB_NET_NET1080 USB_NET_PLUSB USB_NET_QMI_WWAN USB_NET_RNDIS_HOST USB_NET_RNDIS_WLAN USB_NET_SMSC75XX USB_NET_SMSC95XX USB_NET_SR9700 USB_NET_SR9800 USB_NET_ZAURUS USB_OHCI_HCD_PLATFORM USB_OTG USB_OTG_FSM USB_OXU210HP_HCD USB_PEGASUS USB_PULSE8_CEC USB_PWC USB_PWC_INPUT_EVDEV USB_PXA27X USB_R8A66597 USB_R8A66597_HCD USB_RAINSHADOW_CEC USB_RAREMONO USB_RAW_GADGET USB_RTL8150 USB_RTL8152 USB_RTL8153_ECM USB_S2255 USB_SERIAL USB_SERIAL_AIRCABLE USB_SERIAL_ARK3116 USB_SERIAL_BELKIN USB_SERIAL_CH341 USB_SERIAL_CONSOLE USB_SERIAL_CP210X USB_SERIAL_CYBERJACK USB_SERIAL_CYPRESS_M8 USB_SERIAL_DEBUG USB_SERIAL_DIGI_ACCELEPORT USB_SERIAL_EDGEPORT USB_SERIAL_EDGEPORT_TI USB_SERIAL_EMPEG USB_SERIAL_F81232 USB_SERIAL_F8153X USB_SERIAL_FTDI_SIO USB_SERIAL_GARMIN USB_SERIAL_GENERIC USB_SERIAL_IPAQ USB_SERIAL_IPW USB_SERIAL_IR USB_SERIAL_IUU USB_SERIAL_KEYSPAN USB_SERIAL_KEYSPAN_PDA USB_SERIAL_KLSI USB_SERIAL_KOBIL_SCT USB_SERIAL_MCT_U232 USB_SERIAL_METRO USB_SERIAL_MOS7715_PARPORT USB_SERIAL_MOS7720 USB_SERIAL_MOS7840 USB_SERIAL_MXUPORT USB_SERIAL_NAVMAN USB_SERIAL_OMNINET USB_SERIAL_OPTICON USB_SERIAL_OPTION USB_SERIAL_OTI6858 USB_SERIAL_PL2303 USB_SERIAL_QCAUX USB_SERIAL_QT2 USB_SERIAL_QUALCOMM USB_SERIAL_SAFE USB_SERIAL_SIERRAWIRELESS USB_SERIAL_SIMPLE USB_SERIAL_SPCP8X5 USB_SERIAL_SSU100 USB_SERIAL_SYMBOL USB_SERIAL_TI USB_SERIAL_UPD78F0730 USB_SERIAL_VISOR USB_SERIAL_WHITEHEAT USB_SERIAL_WISHBONE USB_SERIAL_WWAN USB_SERIAL_XR USB_SERIAL_XSENS_MT USB_SEVSEG USB_SI470X USB_SI4713 USB_SIERRA_NET USB_SISUSBVGA USB_SL811_CS USB_SL811_HCD USB_SL811_HCD_ISO USB_SNP_CORE USB_SPEEDTOUCH USB_STORAGE_ALAUDA USB_STORAGE_CYPRESS_ATACB USB_STORAGE_DATAFAB USB_STORAGE_ENE_UB6250 USB_STORAGE_FREECOM USB_STORAGE_ISD200 USB_STORAGE_JUMPSHOT USB_STORAGE_KARMA USB_STORAGE_ONETOUCH USB_STORAGE_SDDR09 USB_STORAGE_SDDR55 USB_STORAGE_USBAT USB_STV06XX USB_TEST USB_TMC USB_TRANCEVIBRATOR USB_UAS USB_UEAGLEATM USB_ULPI_BUS USB_USBNET USB_USS720 USB_U_AUDIO USB_U_ETHER USB_U_SERIAL USB_VIDEO_CLASS USB_VIDEO_CLASS_INPUT_EVDEV USB_VL600 USB_WDM USB_XHCI_DBGCAP USB_XHCI_PLATFORM USB_XUSBATM USB_YUREX USERFAULTFD USERIO USERMODE_DRIVER USER_RETURN_NOTIFIER UVC_COMMON U_SERIAL_CONSOLE V4L2_MEM2MEM_DEV V4L_TEST_DRIVERS VALIDATE_FS_PARSER VDPA VDPA_SIM VDPA_SIM_BLOCK VDPA_SIM_NET VDPA_USER VETH VFIO VFIO_DEVICE_CDEV VFIO_PCI VFIO_PCI_CORE VFIO_PCI_INTX VFIO_PCI_MMAP VFIO_VIRQFD VGASTATE VHOST VHOST_CROSS_ENDIAN_LEGACY VHOST_IOTLB VHOST_NET VHOST_RING VHOST_TASK VHOST_VDPA VHOST_VSOCK VIDEOBUF2_CORE VIDEOBUF2_DMA_CONTIG VIDEOBUF2_DMA_SG VIDEOBUF2_MEMOPS VIDEOBUF2_V4L2 VIDEOBUF2_VMALLOC VIDEOMODE_HELPERS VIDEO_AU0828 VIDEO_AU0828_RC VIDEO_AU0828_V4L2 VIDEO_CMDLINE VIDEO_CS53L32A VIDEO_CX231XX VIDEO_CX231XX_ALSA VIDEO_CX231XX_DVB VIDEO_CX231XX_RC VIDEO_CX2341X VIDEO_CX25840 VIDEO_DEV VIDEO_EM28XX VIDEO_EM28XX_ALSA VIDEO_EM28XX_DVB VIDEO_EM28XX_RC VIDEO_EM28XX_V4L2 VIDEO_GO7007 VIDEO_GO7007_LOADER VIDEO_GO7007_USB VIDEO_GO7007_USB_S2250_BOARD VIDEO_HDPVR VIDEO_MSP3400 VIDEO_NOMODESET VIDEO_PVRUSB2 VIDEO_PVRUSB2_DVB VIDEO_PVRUSB2_SYSFS VIDEO_SAA711X VIDEO_STK1160 VIDEO_TUNER VIDEO_TVEEPROM VIDEO_USBTV VIDEO_V4L2_I2C VIDEO_V4L2_SUBDEV_API VIDEO_V4L2_TPG VIDEO_VICODEC VIDEO_VIM2M VIDEO_VIMC VIDEO_VIVID VIDEO_VIVID_CEC VIDEO_WM8775 VIPERBOARD_ADC VIRTIO_BALLOON VIRTIO_DMA_SHARED_BUFFER VIRTIO_MEM VIRTIO_MMIO VIRTIO_MMIO_CMDLINE_DEVICES VIRTIO_PMEM VIRTIO_VDPA VIRTIO_VSOCKETS VIRTIO_VSOCKETS_COMMON VIRT_WIFI VLAN_8021Q VLAN_8021Q_GVRP VLAN_8021Q_MVRP VMAP_PFN VMWARE_VMCI VMXNET3 VP_VDPA VSOCKETS VSOCKETS_DIAG VSOCKETS_LOOPBACK VSOCKMON VT_HW_CONSOLE_BINDING VXFS_FS WANT_DEV_COREDUMP WEXT_CORE WEXT_PRIV WEXT_PROC WIREGUARD WIRELESS WIRELESS_EXT WLAN WLAN_VENDOR_ADMTEK WLAN_VENDOR_PURELIFI WLAN_VENDOR_SILABS X86_SGX X86_SGX_KVM X86_USER_SHADOW_STACK X86_X2APIC X86_X32_ABI XDP_SOCKETS XDP_SOCKETS_DIAG XFRM_ESPINTCP XFRM_INTERFACE XFRM_IPCOMP XFRM_MIGRATE XFRM_OFFLOAD XFRM_STATISTICS XFRM_SUB_POLICY XFRM_USER_COMPAT XFS_FS XFS_POSIX_ACL XFS_QUOTA XFS_RT XOR_BLOCKS YENTA YENTA_ENE_TUNE YENTA_O2 YENTA_RICOH YENTA_TI YENTA_TOSHIBA ZEROPLUS_FF ZLIB_DEFLATE ZONEFS_FS ZPOOL ZRAM ZRAM_DEF_COMP_LZORLE ZSMALLOC ZSTD_COMPRESS ZSWAP ZSWAP_COMPRESSOR_DEFAULT_LZO ZSWAP_DEFAULT_ON ZSWAP_ZPOOL_DEFAULT_ZSMALLOC] disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP HANG], they are not needed testing current HEAD 6a0e38264012809afa24113ee2162dc07f4ed22b testing commit 6a0e38264012809afa24113ee2162dc07f4ed22b gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 78a4daf4da6cd7a7bd7b0a0313f4704783bb6da3ad5fd2f15494eeb265ead762 all runs: OK false negative chance: 0.000 # git bisect start 6a0e38264012809afa24113ee2162dc07f4ed22b fbafc3e621c3f4ded43720fdb1d6ce1728ec664e Bisecting: 29729 revisions left to test after this (roughly 15 steps) [1dee310c26677460fc1cc1d98c2d90b6e968988c] Merge branch 'bnxt_en-update-for-net-next' determine whether the revision contains the guilty commit revision fbafc3e621c3f4ded43720fdb1d6ce1728ec664e crashed and is reachable testing commit 1dee310c26677460fc1cc1d98c2d90b6e968988c gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 9fc0facdb24fe7b9c9a6f48d7fa056e4ddf9161f375a4584621f47017309dc5a all runs: OK false negative chance: 0.000 # git bisect bad 1dee310c26677460fc1cc1d98c2d90b6e968988c Bisecting: 14856 revisions left to test after this (roughly 14 steps) [c1ca10ceffbb289ed02feaf005bc9ee6095b4507] Merge tag 'scsi-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi determine whether the revision contains the guilty commit revision fbafc3e621c3f4ded43720fdb1d6ce1728ec664e crashed and is reachable testing commit c1ca10ceffbb289ed02feaf005bc9ee6095b4507 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 96f0c57ed7811c98bd1139e2f8d23a6d314b1053531a03c8c91c6cafb0db0015 all runs: OK false negative chance: 0.000 # git bisect bad c1ca10ceffbb289ed02feaf005bc9ee6095b4507 Bisecting: 8341 revisions left to test after this (roughly 13 steps) [ba5afb9a84df2e6b26a1b6389b98849cd16ea757] fs: rework listmount() implementation determine whether the revision contains the guilty commit revision fbafc3e621c3f4ded43720fdb1d6ce1728ec664e crashed and is reachable testing commit ba5afb9a84df2e6b26a1b6389b98849cd16ea757 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 17b87061b602dc54fa4bc6fa0345d689ff5e2eb15c38d8cfe553c2e7155abb39 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] # git bisect good ba5afb9a84df2e6b26a1b6389b98849cd16ea757 Bisecting: 4159 revisions left to test after this (roughly 12 steps) [08df80a3c51674ab73ae770885a383ca553fbbbf] Merge tag 'leds-next-6.8' of git://git.kernel.org/pub/scm/linux/kernel/git/lee/leds determine whether the revision contains the guilty commit revision ba5afb9a84df2e6b26a1b6389b98849cd16ea757 crashed and is reachable testing commit 08df80a3c51674ab73ae770885a383ca553fbbbf gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 3410350b16083e96c5d047609d4c8243468b8e95e1f6e83b0c3ef87ffa4ccc4c all runs: OK false negative chance: 0.000 # git bisect bad 08df80a3c51674ab73ae770885a383ca553fbbbf Bisecting: 1969 revisions left to test after this (roughly 11 steps) [d2197029026021ea4bc68475e5abef2213c8b01c] Merge tag 'drm-xe-next-2023-12-21-pr1-1' of https://gitlab.freedesktop.org/drm/xe/kernel into drm-next determine whether the revision contains the guilty commit checking the merge base a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 no existing result, test the revision testing commit a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 49922bdecdc364eb4edbfef63ff38639dac2186b3f358c50f84d056744beeee8 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] testing commit d2197029026021ea4bc68475e5abef2213c8b01c gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: f14f1de54656d8bc1ec55e05493ed9c467e88472604b112e8c69dfcaf9d61b28 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] # git bisect good d2197029026021ea4bc68475e5abef2213c8b01c Bisecting: 1036 revisions left to test after this (roughly 10 steps) [a3cc31e75185f9b1ad8dc45eac77f8de788dc410] Merge tag 'libnvdimm-for-6.8' of git://git.kernel.org/pub/scm/linux/kernel/git/nvdimm/nvdimm determine whether the revision contains the guilty commit revision a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 crashed and is reachable testing commit a3cc31e75185f9b1ad8dc45eac77f8de788dc410 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: c4e136f7246f7b7424249624312d07861fe9b911c178b3ef3e5497c99b9b214f all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] # git bisect good a3cc31e75185f9b1ad8dc45eac77f8de788dc410 Bisecting: 517 revisions left to test after this (roughly 9 steps) [052d534373b7ed33712a63d5e17b2b6cdbce84fd] Merge tag 'exfat-for-6.8-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/linkinjeon/exfat determine whether the revision contains the guilty commit revision a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 crashed and is reachable testing commit 052d534373b7ed33712a63d5e17b2b6cdbce84fd gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ec1cfb9c9e24934417f8b959e5c9f4c30ff5a1adb6bb54b80e0322c2c172dbe3 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] # git bisect good 052d534373b7ed33712a63d5e17b2b6cdbce84fd Bisecting: 313 revisions left to test after this (roughly 8 steps) [1c6d984f523f67ecfad1083bb04c55d91977bb15] x86/kvm: Do not try to disable kvmclock if it was not enabled determine whether the revision contains the guilty commit revision a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 crashed and is reachable testing commit 1c6d984f523f67ecfad1083bb04c55d91977bb15 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 779c74451171537d3231a244376f0de920984ee020edd278c9598159a690f64f all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] # git bisect good 1c6d984f523f67ecfad1083bb04c55d91977bb15 Bisecting: 157 revisions left to test after this (roughly 7 steps) [09d1c6a80f2cf94c6e70be919203473d4ab8e26c] Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm determine whether the revision contains the guilty commit revision d2197029026021ea4bc68475e5abef2213c8b01c crashed and is reachable testing commit 09d1c6a80f2cf94c6e70be919203473d4ab8e26c gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 1a2f0fab77298cacaa8ec7f2e2c472b1a9d8babaa3a9761f44e26219dcc995f9 all runs: OK false negative chance: 0.000 # git bisect bad 09d1c6a80f2cf94c6e70be919203473d4ab8e26c Bisecting: 96 revisions left to test after this (roughly 6 steps) [cb51bfee7f62a8e26b694f9d84c0041b3e3ccc71] Merge patch series "riscv: hwprobe: add Zicond, Zacas and Ztso support" determine whether the revision contains the guilty commit checking the merge base ed5b7cfd7839f9280a63365c1133482b42d0981f no existing result, test the revision testing commit ed5b7cfd7839f9280a63365c1133482b42d0981f gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 47ad46f60ee72bbb10f4c1e491d4c412a9fd893259fda34b9a88217e354f61a9 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] testing commit cb51bfee7f62a8e26b694f9d84c0041b3e3ccc71 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: a9c9285c50df77c3a5f55a113fc50a100f98f9724d38f4dcbdb1268d63853a23 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] # git bisect good cb51bfee7f62a8e26b694f9d84c0041b3e3ccc71 Bisecting: 42 revisions left to test after this (roughly 6 steps) [6cff79f4b90a42d73f039564f09fa5d59ec3d8ab] Merge tag 'uml-for-linus-6.8-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/uml/linux determine whether the revision contains the guilty commit revision a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 crashed and is reachable testing commit 6cff79f4b90a42d73f039564f09fa5d59ec3d8ab gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 4364a2c4a975d0809b4f3195e617ab300c728cff04ce11c98dde395283b84bce all runs: OK false negative chance: 0.000 # git bisect bad 6cff79f4b90a42d73f039564f09fa5d59ec3d8ab Bisecting: 32 revisions left to test after this (roughly 5 steps) [eebe75827b73b0a61e84acd2033ce304a3166d70] Merge tag 'fscrypt-for-linus' of git://git.kernel.org/pub/scm/fs/fscrypt/linux determine whether the revision contains the guilty commit revision a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 crashed and is reachable testing commit eebe75827b73b0a61e84acd2033ce304a3166d70 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 7686cc6775b97d7bb49db42ea4e729cbaad41e7bbe0c8cdbb7bd1b4ad8ad9b84 all runs: OK false negative chance: 0.000 # git bisect bad eebe75827b73b0a61e84acd2033ce304a3166d70 Bisecting: 10 revisions left to test after this (roughly 3 steps) [7ea6ec4c25294e8bc8788148ef854df92ee8dc5e] efi: disable mirror feature during crashkernel determine whether the revision contains the guilty commit revision a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 crashed and is reachable testing commit 7ea6ec4c25294e8bc8788148ef854df92ee8dc5e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ccdf07a753e9d9cedfa1a68edc33b2a8ea77d7f317caf16bcb31857d07284da5 all runs: OK false negative chance: 0.000 # git bisect bad 7ea6ec4c25294e8bc8788148ef854df92ee8dc5e Bisecting: 4 revisions left to test after this (roughly 2 steps) [efbd6398353315b7018e6943e41fee9ec35e875f] scripts/decode_stacktrace.sh: optionally use LLVM utilities determine whether the revision contains the guilty commit revision a39b6ac3781d46ba18193c9dbb2110f31e9bffe9 crashed and is reachable testing commit efbd6398353315b7018e6943e41fee9ec35e875f gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 8e713cc525a911fb4fe0b2d489eebc831465aa78ff66a106228dc5bdbb3e91d3 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] # git bisect good efbd6398353315b7018e6943e41fee9ec35e875f Bisecting: 2 revisions left to test after this (roughly 1 step) [4cccb6221cae6d020270606b9e52b1678fc8b71a] fs/proc/task_mmu: move mmu notification mechanism inside mm lock determine whether the revision contains the guilty commit revision fbafc3e621c3f4ded43720fdb1d6ce1728ec664e crashed and is reachable testing commit 4cccb6221cae6d020270606b9e52b1678fc8b71a gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: a43a5c4d5c8e1ec1b9665e1df8399df221d0072ecde80c29c862ca92d4d3ebb0 all runs: OK false negative chance: 0.000 # git bisect bad 4cccb6221cae6d020270606b9e52b1678fc8b71a Bisecting: 0 revisions left to test after this (roughly 0 steps) [ea52f71598f3d0cfaaf53b7d837bee9919041351] mm: zswap: switch maintainers to recently active developers and reviewers determine whether the revision contains the guilty commit revision ed5b7cfd7839f9280a63365c1133482b42d0981f crashed and is reachable testing commit ea52f71598f3d0cfaaf53b7d837bee9919041351 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 49adc09f1fa7ac1c592c13ceca8a15e515aad53ddc6b7f76794dd14d7b6392eb all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd representative crash: BUG: unable to handle kernel NULL pointer dereference in do_pagemap_cmd, types: [UNKNOWN] # git bisect good ea52f71598f3d0cfaaf53b7d837bee9919041351 4cccb6221cae6d020270606b9e52b1678fc8b71a is the first bad commit commit 4cccb6221cae6d020270606b9e52b1678fc8b71a Author: Muhammad Usama Anjum Date: Tue Jan 9 16:24:42 2024 +0500 fs/proc/task_mmu: move mmu notification mechanism inside mm lock Move mmu notification mechanism inside mm lock to prevent race condition in other components which depend on it. The notifier will invalidate memory range. Depending upon the number of iterations, different memory ranges would be invalidated. The following warning would be removed by this patch: WARNING: CPU: 0 PID: 5067 at arch/x86/kvm/../../../virt/kvm/kvm_main.c:734 kvm_mmu_notifier_change_pte+0x860/0x960 arch/x86/kvm/../../../virt/kvm/kvm_main.c:734 There is no behavioural and performance change with this patch when there is no component registered with the mmu notifier. [akpm@linux-foundation.org: narrow the scope of `range', per Sean] Link: https://lkml.kernel.org/r/20240109112445.590736-1-usama.anjum@collabora.com Fixes: 52526ca7fdb9 ("fs/proc/task_mmu: implement IOCTL to get and optionally clear info about PTEs") Signed-off-by: Muhammad Usama Anjum Reported-by: syzbot+81227d2bd69e9dedb802@syzkaller.appspotmail.com Link: https://lore.kernel.org/all/000000000000f6d051060c6785bc@google.com/ Reviewed-by: Sean Christopherson Cc: Andrei Vagin Cc: Arnd Bergmann Cc: David Hildenbrand Cc: Hugh Dickins Cc: Kefeng Wang Cc: Liam R. Howlett Cc: Michał Mirosław Cc: Peter Xu Cc: Ryan Roberts Cc: Stephen Rothwell Cc: Suren Baghdasaryan Cc: Signed-off-by: Andrew Morton fs/proc/task_mmu.c | 24 +++++++++++++----------- 1 file changed, 13 insertions(+), 11 deletions(-) accumulated error probability: 0.00 culprit signature: a43a5c4d5c8e1ec1b9665e1df8399df221d0072ecde80c29c862ca92d4d3ebb0 parent signature: 49adc09f1fa7ac1c592c13ceca8a15e515aad53ddc6b7f76794dd14d7b6392eb revisions tested: 26, total time: 7h48m48.576699485s (build: 4h54m8.019599148s, test: 2h38m44.971033945s) first good commit: 4cccb6221cae6d020270606b9e52b1678fc8b71a fs/proc/task_mmu: move mmu notification mechanism inside mm lock recipients (to): ["akpm@linux-foundation.org" "seanjc@google.com" "usama.anjum@collabora.com"] recipients (cc): []