bisecting fixing commit since 13d2ce42de8cb98ff952f8de6307f896203854c2 building syzkaller on 821e0b09046a2f972ace26fbdc02aef1116792d4 testing commit 13d2ce42de8cb98ff952f8de6307f896203854c2 with gcc (GCC) 8.1.0 kernel signature: f1fe9a4755dab66c9a9cf9cb104d2ba4d39a92cb6e1c577f3877f1aa2ff9809c all runs: crashed: BUG: unable to handle kernel paging request in dqput testing current HEAD 2263955bf7e71ca8419b64d7a60510aad29002f6 testing commit 2263955bf7e71ca8419b64d7a60510aad29002f6 with gcc (GCC) 8.1.0 kernel signature: 6952caf5483f11bffb27b9db6fdd2263d7eefe2874a42ff1de7630d1509effc3 all runs: OK # git bisect start 2263955bf7e71ca8419b64d7a60510aad29002f6 13d2ce42de8cb98ff952f8de6307f896203854c2 Bisecting: 285 revisions left to test after this (roughly 8 steps) [2d27af9d8e806a46b281deba6ab11c3635021c9e] USB: serial: mos7720: fix parallel-port state restore testing commit 2d27af9d8e806a46b281deba6ab11c3635021c9e with gcc (GCC) 8.1.0 kernel signature: 72aa8353ad7c61e247a52050bd54507dbf08f59e4091263661249d092a4a3f54 all runs: OK # git bisect bad 2d27af9d8e806a46b281deba6ab11c3635021c9e Bisecting: 142 revisions left to test after this (roughly 7 steps) [0d4a8dd1a3eec63a7b2e6f4ffd9922d5fbc4bc30] drm/omap: dmm_tiler: fix return error code in omap_dmm_probe() testing commit 0d4a8dd1a3eec63a7b2e6f4ffd9922d5fbc4bc30 with gcc (GCC) 8.1.0 kernel signature: 91482e9d180383f491266af45a1aa49713c31a5792ff44cfb641a11deeb83a29 all runs: OK # git bisect bad 0d4a8dd1a3eec63a7b2e6f4ffd9922d5fbc4bc30 Bisecting: 71 revisions left to test after this (roughly 6 steps) [4069f4247a8bb5d33902232e1ab9fb703a3d2729] drm/tegra: sor: Disable clocks on error in tegra_sor_init() testing commit 4069f4247a8bb5d33902232e1ab9fb703a3d2729 with gcc (GCC) 8.1.0 kernel signature: e70f7382ef7c8bbc0dad0f5b8117c1d6a8dc68726a2e6faa55dce3e2c8666606 all runs: crashed: BUG: unable to handle kernel paging request in dqput # git bisect good 4069f4247a8bb5d33902232e1ab9fb703a3d2729 Bisecting: 35 revisions left to test after this (roughly 5 steps) [373eac79ec767237cc4634785761bb3d29b553ab] x86/mm/ident_map: Check for errors from ident_pud_init() testing commit 373eac79ec767237cc4634785761bb3d29b553ab with gcc (GCC) 8.1.0 kernel signature: b8becd9312afb0802d3d6290763b48506c2b91b0cba548b8ee79e4926bb6f33a all runs: OK # git bisect bad 373eac79ec767237cc4634785761bb3d29b553ab Bisecting: 17 revisions left to test after this (roughly 4 steps) [145b35d22ee296cd19d17333373ca56d206e2848] HID: i2c-hid: add Vero K147 to descriptor override testing commit 145b35d22ee296cd19d17333373ca56d206e2848 with gcc (GCC) 8.1.0 kernel signature: fef731bfb60fc3e5a6894dae9faf987b494f4c71edfc5cb9bc3c5aab30f319ba all runs: crashed: BUG: unable to handle kernel paging request in dqput # git bisect good 145b35d22ee296cd19d17333373ca56d206e2848 Bisecting: 8 revisions left to test after this (roughly 3 steps) [18a4a903b4684b420fb1facd496769f21a1cd1b1] drm/gma500: fix double free of gma_connector testing commit 18a4a903b4684b420fb1facd496769f21a1cd1b1 with gcc (GCC) 8.1.0 kernel signature: 0e0ca8c3464137c77dc138936887c8aecca0409e54d0392dbdbab4a5937f156d all runs: OK # git bisect bad 18a4a903b4684b420fb1facd496769f21a1cd1b1 Bisecting: 4 revisions left to test after this (roughly 2 steps) [53390efb1d09f43606d710e84b16de87575bc4e3] media: msi2500: assign SPI bus number dynamically testing commit 53390efb1d09f43606d710e84b16de87575bc4e3 with gcc (GCC) 8.1.0 kernel signature: 0b0577368cb6a4f72275f013fc518b011ecc130be7cc77e290a1884e6c7a2b53 run #0: basic kernel testing failed: BUG: program execution failed: executor 0: failed to write control pipe: write |1: broken pipe run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK # git bisect bad 53390efb1d09f43606d710e84b16de87575bc4e3 Bisecting: 1 revision left to test after this (roughly 1 step) [61490c481c61ff230da5f6042f353c6c0db0bc0c] Bluetooth: Fix slab-out-of-bounds read in hci_le_direct_adv_report_evt() testing commit 61490c481c61ff230da5f6042f353c6c0db0bc0c with gcc (GCC) 8.1.0 kernel signature: 5af7400abd70ac2a22c5b9b200d070fabc976fb974d4c548fbb20ffead7c384e all runs: crashed: BUG: unable to handle kernel paging request in dqput # git bisect good 61490c481c61ff230da5f6042f353c6c0db0bc0c Bisecting: 0 revisions left to test after this (roughly 0 steps) [7bae84821b47e2ffa87a7afcb6891dd7e61c65ef] quota: Sanity-check quota file headers on load testing commit 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef with gcc (GCC) 8.1.0 kernel signature: 55bc957c058dd7a8b76fdd958596d5a0c820efb57b05b237fa270e1aa7831f8b all runs: OK # git bisect bad 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef is the first bad commit commit 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef Author: Jan Kara Date: Mon Nov 2 16:16:29 2020 +0100 quota: Sanity-check quota file headers on load commit 11c514a99bb960941535134f0587102855e8ddee upstream. Perform basic sanity checks of quota headers to avoid kernel crashes on corrupted quota files. CC: stable@vger.kernel.org Reported-by: syzbot+f816042a7ae2225f25ba@syzkaller.appspotmail.com Reviewed-by: Andreas Dilger Signed-off-by: Jan Kara Signed-off-by: Greg Kroah-Hartman fs/quota/quota_v2.c | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) culprit signature: 55bc957c058dd7a8b76fdd958596d5a0c820efb57b05b237fa270e1aa7831f8b parent signature: 5af7400abd70ac2a22c5b9b200d070fabc976fb974d4c548fbb20ffead7c384e revisions tested: 11, total time: 2h45m49.9177455s (build: 1h32m13.720717496s, test: 1h12m35.368986329s) first good commit: 7bae84821b47e2ffa87a7afcb6891dd7e61c65ef quota: Sanity-check quota file headers on load recipients (to): ["adilger@dilger.ca" "gregkh@linuxfoundation.org" "jack@suse.cz"] recipients (cc): []