bisecting cause commit starting from 0072a0c14d5b7cb72c611d396f143f5dcd73ebe2
building syzkaller on 6ad0ae6171ea0891838243683f174c6d6eecc90c
testing commit 0072a0c14d5b7cb72c611d396f143f5dcd73ebe2 with gcc (GCC) 8.1.0
all runs: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
testing release v4.19
testing commit 84df9525b0c27f3ebc2ebb1864fa62a97fdedb7d with gcc (GCC) 8.1.0
run #0: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #1: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #2: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #3: OK
run #4: OK
run #5: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #6: crashed: kernel panic: corrupted stack end in wb_workfn
run #7: crashed: kernel panic: corrupted stack end in wb_workfn
run #8: crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
run #9: crashed: kernel panic: corrupted stack end in wb_workfn
testing release v4.18
testing commit 94710cac0ef4ee177a63b5227664b38c95bbf703 with gcc (GCC) 8.1.0
run #0: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #1: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #2: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #3: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #4: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #5: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #6: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #7: crashed: kernel panic: corrupted stack end in wb_workfn
run #8: crashed: kernel panic: corrupted stack end in wb_workfn
run #9: crashed: kernel panic: corrupted stack end in wb_workfn
testing release v4.17
testing commit 29dcea88779c856c7dc92040a0c01233263101d4 with gcc (GCC) 8.1.0
run #0: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #1: crashed: kernel panic: corrupted stack end in wb_workfn
run #2: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #3: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #4: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #5: crashed: kernel panic: corrupted stack end in wb_workfn
run #6: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #7: crashed: kernel panic: corrupted stack end in wb_workfn
run #8: crashed: kernel panic: corrupted stack end in wb_workfn
run #9: crashed: kernel panic: corrupted stack end in wb_workfn
testing release v4.16
testing commit 0adb32858b0bddf4ada5f364a84ed60b196dbcda with gcc (GCC) 8.1.0
run #0: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #1: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #2: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #3: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
testing release v4.15
testing commit d8a5b80568a9cb66810e75b182018e9edb68e8ff with gcc (GCC) 8.1.0
run #0: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #1: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #2: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #3: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #4: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #5: crashed: kernel panic: corrupted stack end in wb_workfn
run #6: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #7: crashed: kernel panic: corrupted stack end in wb_workfn
run #8: OK
run #9: OK
testing release v4.14
testing commit bebc6082da0a9f5d47a1ea2edc099bf671058bd4 with gcc (GCC) 8.1.0
all runs: OK
# git bisect start v4.15 v4.14
Bisecting: 8497 revisions left to test after this (roughly 13 steps)
[5d352e69c60e54b5f04d6e337a1d2bf0dbf3d94a] Merge tag 'media/v4.15-1' of ssh://gitolite.kernel.org/pub/scm/linux/kernel/git/mchehab/linux-media
testing commit 5d352e69c60e54b5f04d6e337a1d2bf0dbf3d94a with gcc (GCC) 8.1.0
all runs: OK
# git bisect good 5d352e69c60e54b5f04d6e337a1d2bf0dbf3d94a
Bisecting: 3900 revisions left to test after this (roughly 12 steps)
[f6705bf959efac87bca76d40050d342f1d212587] Merge tag 'drm-for-v4.15-amd-dc' of git://people.freedesktop.org/~airlied/linux
testing commit f6705bf959efac87bca76d40050d342f1d212587 with gcc (GCC) 8.1.0
all runs: OK
# git bisect good f6705bf959efac87bca76d40050d342f1d212587
Bisecting: 1936 revisions left to test after this (roughly 11 steps)
[4066aa72f9f2886105c6f747d7f9bd4f14f53c12] Merge tag 'drm-fixes-for-v4.15-rc3' of git://people.freedesktop.org/~airlied/linux
testing commit 4066aa72f9f2886105c6f747d7f9bd4f14f53c12 with gcc (GCC) 8.1.0
all runs: OK
# git bisect good 4066aa72f9f2886105c6f747d7f9bd4f14f53c12
Bisecting: 983 revisions left to test after this (roughly 10 steps)
[fd84b751ddb7dab7a8c22826e7bff85f3ff3f9a6] Merge tag 'drm-fixes-for-v4.15-rc6' of git://people.freedesktop.org/~airlied/linux
testing commit fd84b751ddb7dab7a8c22826e7bff85f3ff3f9a6 with gcc (GCC) 8.1.0
all runs: OK
# git bisect good fd84b751ddb7dab7a8c22826e7bff85f3ff3f9a6
Bisecting: 491 revisions left to test after this (roughly 9 steps)
[0f908ccbeca99ddf0ad60afa710e72aded4a5ea7] tools/objtool/Makefile: don't assume sync-check.sh is executable
testing commit 0f908ccbeca99ddf0ad60afa710e72aded4a5ea7 with gcc (GCC) 8.1.0
run #0: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #1: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #2: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #3: crashed: KASAN: use-after-free Read in get_mem_cgroup_from_mm
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 0f908ccbeca99ddf0ad60afa710e72aded4a5ea7
Bisecting: 250 revisions left to test after this (roughly 8 steps)
[5866bec2f47fe0da5fd4c503adbd4ad65182eafe] Merge tag 'drm-fixes-for-v4.15-rc7' of git://people.freedesktop.org/~airlied/linux
testing commit 5866bec2f47fe0da5fd4c503adbd4ad65182eafe with gcc (GCC) 8.1.0
run #0: crashed: KASAN: use-after-free Read in fsnotify
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 5866bec2f47fe0da5fd4c503adbd4ad65182eafe
Bisecting: 122 revisions left to test after this (roughly 7 steps)
[4288e6b4dd60d2f80213de32eb7a71c4d63c0b77] Merge tag 'driver-core-4.15-rc6' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/driver-core
testing commit 4288e6b4dd60d2f80213de32eb7a71c4d63c0b77 with gcc (GCC) 8.1.0
all runs: OK
# git bisect good 4288e6b4dd60d2f80213de32eb7a71c4d63c0b77
Bisecting: 61 revisions left to test after this (roughly 6 steps)
[af2e01da344e9f90e38d039c39385882d7364c0f] docs: fix, intel_guc_loader.c has been moved to intel_guc_fw.c
testing commit af2e01da344e9f90e38d039c39385882d7364c0f with gcc (GCC) 8.1.0
run #0: crashed: KASAN: use-after-free Read in fsnotify
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad af2e01da344e9f90e38d039c39385882d7364c0f
Bisecting: 28 revisions left to test after this (roughly 5 steps)
[4c470317f91e5e684201f21e237fe444ed47c18c] Merge branch 'sched-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
testing commit 4c470317f91e5e684201f21e237fe444ed47c18c with gcc (GCC) 8.1.0
run #0: OK
run #1: crashed: KASAN: use-after-free Read in fsnotify
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 4c470317f91e5e684201f21e237fe444ed47c18c
Bisecting: 11 revisions left to test after this (roughly 4 steps)
[88fa025d30ea97a2aae6394794bdfc31dc9423b7] Merge branch 'irq-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
testing commit 88fa025d30ea97a2aae6394794bdfc31dc9423b7 with gcc (GCC) 8.1.0
all runs: OK
# git bisect good 88fa025d30ea97a2aae6394794bdfc31dc9423b7
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[2e36463525b8b63b32be0721d0268e336d314b38] Merge tag 'perf-urgent-for-mingo-4.15-20171218' of git://git.kernel.org/pub/scm/linux/kernel/git/acme/linux into perf/urgent
testing commit 2e36463525b8b63b32be0721d0268e336d314b38 with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip 2e36463525b8b63b32be0721d0268e336d314b38
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[d94d105329e4a8a874853b5bd854b6587c41adda] sched/isolation: Document boot parameters dependency on CONFIG_CPU_ISOLATION=y
testing commit d94d105329e4a8a874853b5bd854b6587c41adda with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip d94d105329e4a8a874853b5bd854b6587c41adda
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[7ad1437d6ace0e450a6c1167720608ad660b191d] perf/x86/intel: Plug memory leak in intel_pmu_init()
testing commit 7ad1437d6ace0e450a6c1167720608ad660b191d with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip 7ad1437d6ace0e450a6c1167720608ad660b191d
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[ca58d7e64bdfc54f7dfe46713c1e2acc68d7522d] perf jvmti: Generate correct debug information for inlined code
testing commit ca58d7e64bdfc54f7dfe46713c1e2acc68d7522d with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip ca58d7e64bdfc54f7dfe46713c1e2acc68d7522d
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[ca26cffa4e4aaeb09bb9e308f95c7835cb149248] x86/asm: Allow again using asm.h when building for the 'bpf' clang target
testing commit ca26cffa4e4aaeb09bb9e308f95c7835cb149248 with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip ca26cffa4e4aaeb09bb9e308f95c7835cb149248
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[61fb26a6a23c0f1a07a0f8a11b54bafb1ac2398b] perf tools: Fix up build in hardened environments
testing commit 61fb26a6a23c0f1a07a0f8a11b54bafb1ac2398b with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip 61fb26a6a23c0f1a07a0f8a11b54bafb1ac2398b
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[10b9baa701d5023897f70a4acb3bf0235da3dc4f] tools arch s390: Do not include header files from the kernel sources
testing commit 10b9baa701d5023897f70a4acb3bf0235da3dc4f with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip 10b9baa701d5023897f70a4acb3bf0235da3dc4f
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[2c43838c99d9d23f17eb2bdadafcb2879cca6995] sched/isolation: Enable CONFIG_CPU_ISOLATION=y by default
testing commit 2c43838c99d9d23f17eb2bdadafcb2879cca6995 with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip 2c43838c99d9d23f17eb2bdadafcb2879cca6995
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[e7c632fc479a8ac28da19252d44b0bd90a2638f6] Merge branch 'perf-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
testing commit e7c632fc479a8ac28da19252d44b0bd90a2638f6 with gcc (GCC) 8.1.0
all runs: OK
# git bisect good e7c632fc479a8ac28da19252d44b0bd90a2638f6
Bisecting: 1 revision left to test after this (roughly 1 step)
[bf29cb238dc0656e6564b6a94bb82e11d2129437] sched/isolation: Make CONFIG_NO_HZ_FULL select CONFIG_CPU_ISOLATION
testing commit bf29cb238dc0656e6564b6a94bb82e11d2129437 with gcc (GCC) 8.1.0
net/wireless/shipped-certs.c:774:14: error: redefinition of ‘shipped_regdb_certs_len’
# git bisect skip bf29cb238dc0656e6564b6a94bb82e11d2129437
There are only 'skip'ped commits left to test.
The first bad commit could be any of:
2c43838c99d9d23f17eb2bdadafcb2879cca6995
bf29cb238dc0656e6564b6a94bb82e11d2129437
d94d105329e4a8a874853b5bd854b6587c41adda
4c470317f91e5e684201f21e237fe444ed47c18c
We cannot bisect more!
revisions tested: 27, total time: 4h23m44.155049167s (build: 1h38m53.939166396s, test: 2h39m55.381363694s)
bisection is inconclusive, the first bad commit could be any of:
2c43838c99d9d23f17eb2bdadafcb2879cca6995
bf29cb238dc0656e6564b6a94bb82e11d2129437
d94d105329e4a8a874853b5bd854b6587c41adda
4c470317f91e5e684201f21e237fe444ed47c18c