bisecting fixing commit since c37da90efff5f183bea6ae4c2af33571f61fe317 building syzkaller on abf9ba4fc75d9b29af15625d44dcfc1360fad3b7 testing commit c37da90efff5f183bea6ae4c2af33571f61fe317 with gcc (GCC) 8.1.0 kernel signature: f3d44b434d482fd2b597a54c924435bb7ab3399f1a3219e252c9f8ceaa0e4f00 run #0: crashed: KASAN: use-after-free Read in __sock_release run #1: crashed: KASAN: use-after-free Read in __sock_release run #2: crashed: KASAN: use-after-free Read in __sock_release run #3: crashed: KASAN: use-after-free Read in __sock_release run #4: crashed: general protection fault in __sock_release run #5: crashed: KASAN: use-after-free Read in locks_remove_file run #6: crashed: KASAN: use-after-free Read in __sock_release run #7: crashed: general protection fault in __sock_release run #8: crashed: KASAN: use-after-free Read in __sock_release run #9: crashed: general protection fault in __sock_release testing current HEAD b09c34517e1ac4018e3bb75ed5c8610a8a1f486b testing commit b09c34517e1ac4018e3bb75ed5c8610a8a1f486b with gcc (GCC) 8.1.0 kernel signature: c164c339375f162a7258b52664759c7dbd510424e6e9b999c229a6bbff0b8cf8 all runs: OK # git bisect start b09c34517e1ac4018e3bb75ed5c8610a8a1f486b c37da90efff5f183bea6ae4c2af33571f61fe317 Bisecting: 254 revisions left to test after this (roughly 8 steps) [fb181ac6fe194b4eb20007f65504c61ea22826fd] net: wan: wanxl: use allow to pass CROSS_COMPILE_M68k for rebuilding firmware testing commit fb181ac6fe194b4eb20007f65504c61ea22826fd with gcc (GCC) 8.1.0 kernel signature: ff987ceff2c2c03ff6611e00925b47e03572b22d4bdec895314dcf28aac1a58f all runs: OK # git bisect bad fb181ac6fe194b4eb20007f65504c61ea22826fd Bisecting: 126 revisions left to test after this (roughly 7 steps) [4023bad0a528d383800a2262c899f52dcd613c7c] HID: elan: Fix memleak in elan_input_configured testing commit 4023bad0a528d383800a2262c899f52dcd613c7c with gcc (GCC) 8.1.0 kernel signature: 31c7a800c6b085ae431416f7fad62f69baa0412e435707f70a8ea92fe7d9c37b all runs: OK # git bisect bad 4023bad0a528d383800a2262c899f52dcd613c7c Bisecting: 63 revisions left to test after this (roughly 6 steps) [3d7de9fe191d4a86ba40f7a549bb265e05635f84] net: usb: qmi_wwan: add Telit 0x1050 composition testing commit 3d7de9fe191d4a86ba40f7a549bb265e05635f84 with gcc (GCC) 8.1.0 kernel signature: f8e286a93dc7eeca886a762a95415577f7d6961c9db3073c15f9de49a45f58ad all runs: OK # git bisect bad 3d7de9fe191d4a86ba40f7a549bb265e05635f84 Bisecting: 31 revisions left to test after this (roughly 5 steps) [296802fe11fe2060fae691006172b2f7d937f184] bnxt_en: Don't query FW when netif_running() is false. testing commit 296802fe11fe2060fae691006172b2f7d937f184 with gcc (GCC) 8.1.0 kernel signature: ed270aadb1a25fa4e44bd9efafaeb5edc15d0854e4a27fe21d64c95cf4fb2c6b run #0: crashed: general protection fault in __sock_release run #1: crashed: KASAN: use-after-free Read in locks_remove_file run #2: crashed: KASAN: use-after-free Read in __sock_release run #3: crashed: KASAN: use-after-free Read in locks_remove_file run #4: crashed: KASAN: use-after-free Read in __sock_release run #5: crashed: KASAN: use-after-free Read in __sock_release run #6: crashed: general protection fault in __sock_release run #7: crashed: KASAN: use-after-free Read in __sock_release run #8: crashed: WARNING: ODEBUG bug in get_signal run #9: crashed: KASAN: use-after-free Read in __sock_release # git bisect good 296802fe11fe2060fae691006172b2f7d937f184 Bisecting: 15 revisions left to test after this (roughly 4 steps) [f10d77cdedbe8b4aaf2799f4cea6126b2612dd93] x86, fakenuma: Fix invalid starting node ID testing commit f10d77cdedbe8b4aaf2799f4cea6126b2612dd93 with gcc (GCC) 8.1.0 kernel signature: 4de80f4fbf6158ae4d17164cf8ab4cd165809bd119d8ab415cacc8d2e715f83c all runs: OK # git bisect bad f10d77cdedbe8b4aaf2799f4cea6126b2612dd93 Bisecting: 7 revisions left to test after this (roughly 3 steps) [dff6a2c2828bce13f32c62029def97195f8830f6] nvmet-fc: Fix a missed _irqsave version of spin_lock in 'nvmet_fc_fod_op_done()' testing commit dff6a2c2828bce13f32c62029def97195f8830f6 with gcc (GCC) 8.1.0 kernel signature: 1e0f1d5914c75e26d4a0d996e1ccf7e1bfefabd18fb2f57702978f89a2ddc114 run #0: crashed: KASAN: use-after-free Read in __sock_release run #1: crashed: KASAN: use-after-free Read in __sock_release run #2: crashed: general protection fault in __sock_release run #3: crashed: KASAN: use-after-free Read in __sock_release run #4: crashed: general protection fault in __sock_release run #5: crashed: general protection fault in __sock_release run #6: crashed: KASAN: use-after-free Read in __sock_release run #7: crashed: KASAN: use-after-free Read in __sock_release run #8: crashed: KASAN: use-after-free Read in __sock_release run #9: crashed: general protection fault in __sock_release # git bisect good dff6a2c2828bce13f32c62029def97195f8830f6 Bisecting: 3 revisions left to test after this (roughly 2 steps) [2a7241fe4d340bce8c13854976f0eabf2a72d4eb] net: gemini: Fix another missing clk_disable_unprepare() in probe testing commit 2a7241fe4d340bce8c13854976f0eabf2a72d4eb with gcc (GCC) 8.1.0 kernel signature: 4efe3ef961567f8bd90682f9e02112c7f448ac3e553d4199ed3ef185074ed1b6 all runs: OK # git bisect bad 2a7241fe4d340bce8c13854976f0eabf2a72d4eb Bisecting: 1 revision left to test after this (roughly 1 step) [f00d82c3fb4368afb41cba89b287801a7888627c] net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() testing commit f00d82c3fb4368afb41cba89b287801a7888627c with gcc (GCC) 8.1.0 kernel signature: b341a63696a4e86a50d4007de8cdb036e92766265f0c2b3e8acc81da7737e112 run #0: crashed: KASAN: use-after-free Read in __sock_release run #1: crashed: KASAN: use-after-free Read in locks_remove_file run #2: crashed: KASAN: use-after-free Read in __sock_release run #3: crashed: KASAN: use-after-free Read in __sock_release run #4: crashed: KASAN: use-after-free Read in locks_remove_file run #5: crashed: KASAN: use-after-free Read in __sock_release run #6: crashed: KASAN: use-after-free Read in __sock_release run #7: crashed: KASAN: use-after-free Read in __sock_release run #8: crashed: kernel BUG at fs/inode.c:LINE! run #9: crashed: KASAN: use-after-free Read in __sock_release # git bisect good f00d82c3fb4368afb41cba89b287801a7888627c Bisecting: 0 revisions left to test after this (roughly 0 steps) [37d933e8b41b83bb8278815e366aec5a542b7e31] fix regression in "epoll: Keep a reference on files added to the check list" testing commit 37d933e8b41b83bb8278815e366aec5a542b7e31 with gcc (GCC) 8.1.0 kernel signature: d720ed96961a1198925156d94b8ccc6f5b63bb3bff1f0527ed40674d563e543f all runs: OK # git bisect bad 37d933e8b41b83bb8278815e366aec5a542b7e31 37d933e8b41b83bb8278815e366aec5a542b7e31 is the first bad commit commit 37d933e8b41b83bb8278815e366aec5a542b7e31 Author: Al Viro Date: Wed Sep 2 11:30:48 2020 -0400 fix regression in "epoll: Keep a reference on files added to the check list" [ Upstream commit 77f4689de17c0887775bb77896f4cc11a39bf848 ] epoll_loop_check_proc() can run into a file already committed to destruction; we can't grab a reference on those and don't need to add them to the set for reverse path check anyway. Tested-by: Marc Zyngier Fixes: a9ed4a6560b8 ("epoll: Keep a reference on files added to the check list") Signed-off-by: Al Viro Signed-off-by: Sasha Levin fs/eventpoll.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) culprit signature: d720ed96961a1198925156d94b8ccc6f5b63bb3bff1f0527ed40674d563e543f parent signature: b341a63696a4e86a50d4007de8cdb036e92766265f0c2b3e8acc81da7737e112 revisions tested: 11, total time: 3h2m24.062132334s (build: 1h40m46.4004508s, test: 1h20m15.14371069s) first good commit: 37d933e8b41b83bb8278815e366aec5a542b7e31 fix regression in "epoll: Keep a reference on files added to the check list" recipients (to): ["maz@kernel.org" "sashal@kernel.org" "viro@zeniv.linux.org.uk"] recipients (cc): []