bisecting fixing commit since a1b977b49b66c75e6c51a515f6700371ae720217 building syzkaller on d32b0bbf2f8cfe548553c4012e2c0f79040d999f testing commit a1b977b49b66c75e6c51a515f6700371ae720217 with gcc (GCC) 8.1.0 kernel signature: 23f8eeed48d7c1b0e100e301f969ace80dc55d3efb7ece00a9b00302e8b3a8cb all runs: crashed: BUG: unable to handle kernel paging request in dquot_add_space testing current HEAD 610bdbf6a174c9a91e34e276a9594114b44bef74 testing commit 610bdbf6a174c9a91e34e276a9594114b44bef74 with gcc (GCC) 8.1.0 kernel signature: ef27bb1bac1dd642574a2a81a6a296e4a8454441a9a713c3ce4cb7b46fb67ff4 all runs: OK # git bisect start 610bdbf6a174c9a91e34e276a9594114b44bef74 a1b977b49b66c75e6c51a515f6700371ae720217 Bisecting: 662 revisions left to test after this (roughly 9 steps) [d302e78731143479d203a05fff648270502ab770] cosa: Add missing kfree in error path of cosa_write testing commit d302e78731143479d203a05fff648270502ab770 with gcc (GCC) 8.1.0 kernel signature: 6b609fb9bb794dac11bd7fcd76fe9e4b52afc172e39fb82443ea6657a9056636 all runs: crashed: BUG: unable to handle kernel paging request in dquot_add_space # git bisect good d302e78731143479d203a05fff648270502ab770 Bisecting: 331 revisions left to test after this (roughly 8 steps) [13ed97c2bb939890fe0814d6952189dfec57797f] arm64: Change .weak to SYM_FUNC_START_WEAK_PI for arch/arm64/lib/mem*.S testing commit 13ed97c2bb939890fe0814d6952189dfec57797f with gcc (GCC) 8.1.0 kernel signature: 4cf27613645e2e23d6f23bbd3332728f8b40ce4fa5df797e7011b187e0dd09c1 all runs: crashed: BUG: unable to handle kernel paging request in dquot_add_space # git bisect good 13ed97c2bb939890fe0814d6952189dfec57797f Bisecting: 165 revisions left to test after this (roughly 7 steps) [7524b26f2c580127ad3f795b5084b63b07b10cd8] x86/kprobes: Restore BTF if the single-stepping is cancelled testing commit 7524b26f2c580127ad3f795b5084b63b07b10cd8 with gcc (GCC) 8.1.0 kernel signature: 0f5c09b20c5a64912a4f4df2429ef872b25fb4c059d0b581eb55d06e4fccfe90 all runs: OK # git bisect bad 7524b26f2c580127ad3f795b5084b63b07b10cd8 Bisecting: 82 revisions left to test after this (roughly 6 steps) [7c54e646390e424e07df1a33f8d8b9dc4b721d8a] staging: greybus: codecs: Fix reference counter leak in error handling testing commit 7c54e646390e424e07df1a33f8d8b9dc4b721d8a with gcc (GCC) 8.1.0 kernel signature: e39e221c6cb9d06d628f06315dc479ac1246d4226c5bc537e8ba8b430c3176fa all runs: OK # git bisect bad 7c54e646390e424e07df1a33f8d8b9dc4b721d8a Bisecting: 41 revisions left to test after this (roughly 5 steps) [53390efb1d09f43606d710e84b16de87575bc4e3] media: msi2500: assign SPI bus number dynamically testing commit 53390efb1d09f43606d710e84b16de87575bc4e3 with gcc (GCC) 8.1.0 kernel signature: 400040adc701068d3535d74a7b7ad1d898d8c49015ac32c4596ad1ae6b67eaee all runs: OK # git bisect bad 53390efb1d09f43606d710e84b16de87575bc4e3 Bisecting: 20 revisions left to test after this (roughly 4 steps) [6abd3ab44001ff55ccff27793b925983cef23198] arm64: syscall: exit userspace before unmasking exceptions testing commit 6abd3ab44001ff55ccff27793b925983cef23198 with gcc (GCC) 8.1.0 kernel signature: 9f70d4f10af65e34d05f5f1bd816b0b1dd0b6d00bb0e03d1e6fa632e81289821 all runs: crashed: BUG: unable to handle kernel paging request in dquot_add_space # git bisect good 6abd3ab44001ff55ccff27793b925983cef23198 Bisecting: 10 revisions left to test after this (roughly 3 steps) [c1a14a02296f3a1a29bc0f8632ee8dd262cf13c0] USB: gadget: f_rndis: fix bitrate for SuperSpeed and above testing commit c1a14a02296f3a1a29bc0f8632ee8dd262cf13c0 with gcc (GCC) 8.1.0 kernel signature: f1f56903d071641da6522042d5ac03d8290c33ccdc337a401ae4581321c8e89b all runs: crashed: BUG: unable to handle kernel paging request in dquot_add_space # git bisect good c1a14a02296f3a1a29bc0f8632ee8dd262cf13c0 Bisecting: 5 revisions left to test after this (roughly 3 steps) [c9f589923f03a15402ea1e691e76897be65bb564] coresight: tmc-etr: Check if page is valid before dma_map_page() testing commit c9f589923f03a15402ea1e691e76897be65bb564 with gcc (GCC) 8.1.0 kernel signature: f1f56903d071641da6522042d5ac03d8290c33ccdc337a401ae4581321c8e89b all runs: crashed: BUG: unable to handle kernel paging request in dquot_add_space # git bisect good c9f589923f03a15402ea1e691e76897be65bb564 Bisecting: 2 revisions left to test after this (roughly 2 steps) [7a3c3a1c67e00942ae4890281b5b56026650bed8] serial_core: Check for port state when tty is in error state testing commit 7a3c3a1c67e00942ae4890281b5b56026650bed8 with gcc (GCC) 8.1.0 kernel signature: efb30932abf10230e6a21ac98999190f9efc71da17e31717727355d42dcdcb51 all runs: crashed: BUG: unable to handle kernel paging request in dquot_add_space # git bisect good 7a3c3a1c67e00942ae4890281b5b56026650bed8 Bisecting: 0 revisions left to test after this (roughly 1 step) [7bae84821b47e2ffa87a7afcb6891dd7e61c65ef] quota: Sanity-check quota file headers on load testing commit 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef with gcc (GCC) 8.1.0 kernel signature: 400040adc701068d3535d74a7b7ad1d898d8c49015ac32c4596ad1ae6b67eaee all runs: OK # git bisect bad 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef Bisecting: 0 revisions left to test after this (roughly 0 steps) [61490c481c61ff230da5f6042f353c6c0db0bc0c] Bluetooth: Fix slab-out-of-bounds read in hci_le_direct_adv_report_evt() testing commit 61490c481c61ff230da5f6042f353c6c0db0bc0c with gcc (GCC) 8.1.0 kernel signature: 268aca6a8f64feef53179f17dfb7ce9987c36655b2510f206d730ca5d312852b all runs: crashed: BUG: unable to handle kernel paging request in dquot_add_space # git bisect good 61490c481c61ff230da5f6042f353c6c0db0bc0c 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef is the first bad commit commit 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef Author: Jan Kara Date: Mon Nov 2 16:16:29 2020 +0100 quota: Sanity-check quota file headers on load commit 11c514a99bb960941535134f0587102855e8ddee upstream. Perform basic sanity checks of quota headers to avoid kernel crashes on corrupted quota files. CC: stable@vger.kernel.org Reported-by: syzbot+f816042a7ae2225f25ba@syzkaller.appspotmail.com Reviewed-by: Andreas Dilger Signed-off-by: Jan Kara Signed-off-by: Greg Kroah-Hartman fs/quota/quota_v2.c | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) culprit signature: 400040adc701068d3535d74a7b7ad1d898d8c49015ac32c4596ad1ae6b67eaee parent signature: 268aca6a8f64feef53179f17dfb7ce9987c36655b2510f206d730ca5d312852b revisions tested: 13, total time: 3h1m52.662447199s (build: 1h56m20.02924967s, test: 1h4m18.385522768s) first good commit: 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef quota: Sanity-check quota file headers on load recipients (to): ["adilger@dilger.ca" "gregkh@linuxfoundation.org" "jack@suse.cz"] recipients (cc): []