ci2 starts bisection 2023-06-12 14:41:20.986285292 +0000 UTC m=+1153.280165328
bisecting fixing commit since 7df047b3f0aa0c0ba730b6be9ab35c0053a3d4fd
building syzkaller on 48e0a81d77e80af7bdc154ef423accc74517f806
ensuring issue is reproducible on original commit 7df047b3f0aa0c0ba730b6be9ab35c0053a3d4fd

testing commit 7df047b3f0aa0c0ba730b6be9ab35c0053a3d4fd gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 582b57dd65bbb85009d6f7ba0721d42bf39fd4257743b704d1b38ad610510933
all runs: crashed: general protection fault in gfs2_evict_inode
testing current HEAD 858fd168a95c5b9669aac8db6c14a9aeab446375
testing commit 858fd168a95c5b9669aac8db6c14a9aeab446375 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 669bee03ea994bea54332b28a5a65ac952b69dea3b0901e4292c1e0dac35540e
all runs: OK
# git bisect start 858fd168a95c5b9669aac8db6c14a9aeab446375 7df047b3f0aa0c0ba730b6be9ab35c0053a3d4fd
Bisecting: 1460 revisions left to test after this (roughly 11 steps)
[adfbf653a3ba6bb8bbb84ed90bf4f1533db545d3] Merge tag 'fbdev-for-6.4-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/deller/linux-fbdev

testing commit adfbf653a3ba6bb8bbb84ed90bf4f1533db545d3 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: de79903a84c65b11f265ecf9d03efb5495f7323894049a4da2cbafe8b367bd36
all runs: OK
# git bisect bad adfbf653a3ba6bb8bbb84ed90bf4f1533db545d3
Bisecting: 731 revisions left to test after this (roughly 10 steps)
[a5e219005aeaf52cb10f9999a61c07a140db7097] Merge tag 'i2c-for-6.4-rc1-part2' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux

testing commit a5e219005aeaf52cb10f9999a61c07a140db7097 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 9008a9ef42416c823783ea3250211d7d58116df1524e29121cbb78ea4ff295e8
all runs: crashed: general protection fault in gfs2_evict_inode
# git bisect good a5e219005aeaf52cb10f9999a61c07a140db7097
Bisecting: 365 revisions left to test after this (roughly 9 steps)
[9a2d5178b9d51e1c5f9e08989ff97fc8d4893f31] Revert "perf build: Make BUILD_BPF_SKEL default, rename to NO_BPF_SKEL"

testing commit 9a2d5178b9d51e1c5f9e08989ff97fc8d4893f31 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: d3fcdba56d91111b223f1662fbc9be21e41931fe884f7eb4824e8dee398a6760
all runs: crashed: general protection fault in gfs2_evict_inode
# git bisect good 9a2d5178b9d51e1c5f9e08989ff97fc8d4893f31
Bisecting: 181 revisions left to test after this (roughly 8 steps)
[1c1094e47ef10be267a982fb1c69dbb80aa4f257] Merge tag 'mailbox-v6.4' of git://git.linaro.org/landing-teams/working/fujitsu/integration

testing commit 1c1094e47ef10be267a982fb1c69dbb80aa4f257 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 48e82da4314f147b7cc4fe21b59d45103816ba8c31d76ac0b25de87f2ac7a579
all runs: crashed: general protection fault in gfs2_evict_inode
# git bisect good 1c1094e47ef10be267a982fb1c69dbb80aa4f257
Bisecting: 92 revisions left to test after this (roughly 7 steps)
[6e27831b91a0bc572902eb065b374991c1ef452a] Merge tag 'net-6.4-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net

testing commit 6e27831b91a0bc572902eb065b374991c1ef452a gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 1c7f575babd6485a6e04882a7908bb9730ea396e347af79b20dc7cb0eda7cf8a
all runs: OK
# git bisect bad 6e27831b91a0bc572902eb065b374991c1ef452a
Bisecting: 43 revisions left to test after this (roughly 6 steps)
[2a78769da34b792cc4c4f7157cda6b622fab0872] Merge tag 'gfs2-v6.3-fix' of git://git.kernel.org/pub/scm/linux/kernel/git/gfs2/linux-gfs2

testing commit 2a78769da34b792cc4c4f7157cda6b622fab0872 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: c2302b55a485d5b78d1029f8111d4afdee2a92e2b685dea84a826237b938fa0d
all runs: OK
# git bisect bad 2a78769da34b792cc4c4f7157cda6b622fab0872
Bisecting: 22 revisions left to test after this (roughly 5 steps)
[ac9a78681b921877518763ba0e89202254349d1b] Linux 6.4-rc1

testing commit ac9a78681b921877518763ba0e89202254349d1b gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 45fccc8fc0b553e4bc06a410d26234cf313a37d6e5cebc035d70394d1cbb1648
all runs: crashed: general protection fault in gfs2_evict_inode
# git bisect good ac9a78681b921877518763ba0e89202254349d1b
Bisecting: 11 revisions left to test after this (roughly 4 steps)
[1dc3731daf1f350cfd631b5559aac865ab2fbb4c] Merge tag 'for-6.4-rc1-tag' of git://git.kernel.org/pub/scm/linux/kernel/git/kdave/linux

testing commit 1dc3731daf1f350cfd631b5559aac865ab2fbb4c gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 49520b55d07ec2ca8e232e1fe2bac4dbc6e20db32fedd4d770766996da22df23
all runs: crashed: general protection fault in gfs2_evict_inode
# git bisect good 1dc3731daf1f350cfd631b5559aac865ab2fbb4c
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[6abfa99ce52f61a31bcfc2aaaae09006f5665495] platform/x86: touchscreen_dmi: Add upside-down quirk for GDIX1002 ts on the Juno Tablet

testing commit 6abfa99ce52f61a31bcfc2aaaae09006f5665495 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 6925522713d01491c4231def3334f02c684264ccdede970ccb8d11d85be87207
all runs: crashed: general protection fault in gfs2_evict_inode
# git bisect good 6abfa99ce52f61a31bcfc2aaaae09006f5665495
Bisecting: 3 revisions left to test after this (roughly 2 steps)
[3d43f9f639542fadfb28f40b509bf147a6624d48] platform/mellanox: fix potential race in mlxbf-tmfifo driver

testing commit 3d43f9f639542fadfb28f40b509bf147a6624d48 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 5e732a887c384decb685771831578caa91cc67ad7395da77c6f95227c8daa90c
all runs: crashed: general protection fault in gfs2_evict_inode
# git bisect good 3d43f9f639542fadfb28f40b509bf147a6624d48
Bisecting: 1 revision left to test after this (roughly 1 step)
[ad2fd53a7870a395b8564697bef6c329d017c6c9] Merge tag 'platform-drivers-x86-v6.4-2' of git://git.kernel.org/pub/scm/linux/kernel/git/pdx86/platform-drivers-x86

testing commit ad2fd53a7870a395b8564697bef6c329d017c6c9 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: be6220a0d3c4857b87ebf5cab0e2ee94f6afd0d2a4b845542557250361676abe
all runs: crashed: general protection fault in gfs2_evict_inode
# git bisect good ad2fd53a7870a395b8564697bef6c329d017c6c9
Bisecting: 0 revisions left to test after this (roughly 0 steps)
[504a10d9e46bc37b23d0a1ae2f28973c8516e636] gfs2: Don't deref jdesc in evict

testing commit 504a10d9e46bc37b23d0a1ae2f28973c8516e636 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 7f03bdc32f09d5c4030fc224995390d5278f07fb0e836ec0e8ea06ef2cd28a9b
all runs: OK
# git bisect bad 504a10d9e46bc37b23d0a1ae2f28973c8516e636
504a10d9e46bc37b23d0a1ae2f28973c8516e636 is the first bad commit
commit 504a10d9e46bc37b23d0a1ae2f28973c8516e636
Author: Bob Peterson <rpeterso@redhat.com>
Date:   Fri Apr 28 12:07:46 2023 -0400

    gfs2: Don't deref jdesc in evict
    
    On corrupt gfs2 file systems the evict code can try to reference the
    journal descriptor structure, jdesc, after it has been freed and set to
    NULL. The sequence of events is:
    
    init_journal()
    ...
    fail_jindex:
       gfs2_jindex_free(sdp); <------frees journals, sets jdesc = NULL
          if (gfs2_holder_initialized(&ji_gh))
             gfs2_glock_dq_uninit(&ji_gh);
    fail:
       iput(sdp->sd_jindex); <--references jdesc in evict_linked_inode
          evict()
             gfs2_evict_inode()
                evict_linked_inode()
                   ret = gfs2_trans_begin(sdp, 0, sdp->sd_jdesc->jd_blocks);
    <------references the now freed/zeroed sd_jdesc pointer.
    
    The call to gfs2_trans_begin is done because the truncate_inode_pages
    call can cause gfs2 events that require a transaction, such as removing
    journaled data (jdata) blocks from the journal.
    
    This patch fixes the problem by adding a check for sdp->sd_jdesc to
    function gfs2_evict_inode. In theory, this should only happen to corrupt
    gfs2 file systems, when gfs2 detects the problem, reports it, then tries
    to evict all the system inodes it has read in up to that point.
    
    Reported-by: Yang Lan <lanyang0908@gmail.com>
    Signed-off-by: Bob Peterson <rpeterso@redhat.com>
    Signed-off-by: Andreas Gruenbacher <agruenba@redhat.com>

 fs/gfs2/super.c | 8 ++++++++
 1 file changed, 8 insertions(+)

parent commit e0fcc9c68d1147ca33159d57332b02ca8bac6ab9 wasn't tested
testing commit e0fcc9c68d1147ca33159d57332b02ca8bac6ab9 gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 2eccb0e0726c5181d64d9847cecbd1862d6776a9110497eac5d7c46b01930d62
culprit signature: 7f03bdc32f09d5c4030fc224995390d5278f07fb0e836ec0e8ea06ef2cd28a9b
parent  signature: 2eccb0e0726c5181d64d9847cecbd1862d6776a9110497eac5d7c46b01930d62
revisions tested: 14, total time: 6h22m5.802847385s (build: 4h58m25.305657619s, test: 1h21m32.106999512s)
first good commit: 504a10d9e46bc37b23d0a1ae2f28973c8516e636 gfs2: Don't deref jdesc in evict
recipients (to): ["agruenba@redhat.com" "rpeterso@redhat.com"]
recipients (cc): []