ci starts bisection 2023-07-31 21:50:35.466048509 +0000 UTC m=+112525.633165831 bisecting cause commit starting from 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 building syzkaller on 2a0d0f29e37863d5cdb8e95c9fa2a83251ba3972 ensuring issue is reproducible on original commit 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 testing commit 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: eede63374d0fa8c2061ce1e3e3e76212c6161c67f497f3c94d1369048cc42b29 run #0: crashed: BUG: unable to handle kernel paging request in corrupted run #1: crashed: BUG: unable to handle kernel paging request in corrupted run #2: crashed: general protection fault in anon_vma_interval_tree_verify run #3: crashed: general protection fault in anon_vma_interval_tree_verify run #4: crashed: general protection fault in cpuacct_account_field run #5: crashed: general protection fault in cpuacct_account_field run #6: crashed: general protection fault in corrupted run #7: crashed: general protection fault in corrupted run #8: crashed: stack segment fault in __stack_depot_save run #9: crashed: stack segment fault in __stack_depot_save run #10: crashed: general protection fault in locks_remove_posix run #11: crashed: general protection fault in locks_remove_posix run #12: crashed: stack segment fault in __stack_depot_save run #13: crashed: stack segment fault in __stack_depot_save run #14: crashed: general protection fault in cpuacct_account_field run #15: crashed: general protection fault in cpuacct_account_field run #16: crashed: KASAN: null-ptr-dereSeaBIOS (version NUM.NUM.NUM-google) run #17: crashed: KASAN: null-ptr-dereSeaBIOS (version NUM.NUM.NUM-google) run #18: crashed: general protection fault in mld_in_v1_mode run #19: crashed: general protection fault in mld_in_v1_mode run #20: crashed: general protection fault in timerqueue_del run #21: crashed: general protection fault in timerqueue_del run #22: crashed: general protection fault in debug_check_no_obj_freed run #23: crashed: general protection fault in debug_check_no_obj_freed run #24: crashed: general protection fault in __run_timers run #25: crashed: general protection fault in __run_timers run #26: crashed: general protection fault in psi_account_irqtime run #27: crashed: general protection fault in psi_account_irqtime run #28: crashed: general protection fault in serial8250_ports run #29: crashed: general protection fault in serial8250_ports run #30: crashed: KASAN: null-ptr-deref Read in __fput run #31: crashed: KASAN: null-ptr-deref Read in __fput run #32: crashed: general protection fault in timerqueue_add run #33: crashed: general protection fault in timerqueue_add run #34: crashed: general protection fault in __fput run #35: crashed: general protection fault in __fput run #36: crashed: possible deadlock in console_flush_all run #37: crashed: possible deadlock in console_flush_all run #38: crashed: BUG: unable to handle kernel paging request in corrupted run #39: crashed: BUG: unable to handle kernel paging request in corrupted representative crash: BUG: unable to handle kernel paging request in corrupted, types: [UNKNOWN] check whether we can drop unnecessary instrumentation disabling configs for [ATOMIC_SLEEP HANG LEAK UBSAN BUG KASAN LOCKDEP], they are not needed testing commit 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 42cdcba58a56f21a12618317a2b681eddd1749a62a16e99508585e092fb0c1e5 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK representative crash: BUG: unable to handle kernel NULL pointer dereference in corrupted, types: [UNKNOWN] kconfig minimization: base=3883 full=7651 leaves diff=1999 split chunks (needed=false): <1999> split chunk #0 of len 1999 into 5 parts testing without sub-chunk 1/5 testing commit 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 71bb17882621a6dc6d6ce4331312b921d89f9f6114113a47ed52318aa2a4f20a run #0: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #1: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #2: crashed: general protection fault in mtree_range_walk run #3: crashed: general protection fault in mtree_range_walk run #4: crashed: general protection fault in vma_interval_tree_remove run #5: crashed: general protection fault in vma_interval_tree_remove run #6: crashed: general protection fault in lookup_object_or_alloc run #7: crashed: general protection fault in lookup_object_or_alloc run #8: crashed: general protection fault in vma_prepare run #9: crashed: general protection fault in vma_prepare run #10: crashed: general protection fault in locks_remove_posix run #11: crashed: general protection fault in locks_remove_posix run #12: crashed: general protection fault in common_perm_cond run #13: crashed: general protection fault in common_perm_cond run #14: crashed: BUG: Bad rss-counter state run #15: crashed: BUG: Bad rss-counter state run #16: crashed: general protection fault in unlink_file_vma run #17: crashed: general protection fault in unlink_file_vma run #18: crashed: BUG: unable to handle pagSeaBIOS (version NUM.NUM.NUM-google) run #19: crashed: BUG: unable to handle pagSeaBIOS (version NUM.NUM.NUM-google) run #20: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #21: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #22: crashed: KASAN: null-ptr-deref Read in __fput run #23: crashed: KASAN: null-ptr-deref Read in __fput run #24: crashed: general protection fault in __call_rcu_common run #25: crashed: general protection fault in __call_rcu_common run #26: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #27: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #28: crashed: general protection fault in ieee80211_queue_skb run #29: crashed: general protection fault in ieee80211_queue_skb run #30: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #31: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #32: crashed: BUG: unable to handle kernel paging request in corrupted run #33: crashed: BUG: unable to handle kernel paging request in corrupted run #34: crashed: stack segment fault in corrupted run #35: crashed: stack segment fault in corrupted run #36: crashed: possible deadlock in console_flush_all run #37: crashed: possible deadlock in console_flush_all run #38: crashed: general protection fault in __rhashtable_lookup run #39: crashed: general protection fault in __rhashtable_lookup representative crash: BUG: unable to handle kernel paging request in leaf_paste_entries, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 2/5 testing commit 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: fecbe4881d39f9f149c694fd3de982d72d80ff660a33d63f2928ea10fefd5279 run #0: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #1: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #2: crashed: WARNING: suspicious RCU usage in corrupted run #3: crashed: WARNING: suspicious RCU usage in corrupted run #4: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #5: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #6: crashed: BUG: unable to handle kernel paging request in corrupted run #7: crashed: BUG: unable to handle kernel paging request in corrupted run #8: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #9: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #10: crashed: VFS: Close: file count is zero (use-after-free) run #11: crashed: VFS: Close: file count is zero (use-after-free) run #12: crashed: general protection fault in locks_remove_posix run #13: crashed: general protection fault in locks_remove_posix run #14: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #15: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #16: crashed: BUG: unable to handle kernel paging request in corrupted run #17: crashed: BUG: unable to handle kernel paging request in corrupted run #18: crashed: general protection fault in remove_vma run #19: crashed: general protection fault in remove_vma run #20: crashed: BUG: unable to handle kernel paging request in corrupted run #21: crashed: BUG: unable to handle kernel paging request in corrupted run #22: crashed: VFS: Close: file count is zero (use-after-free) run #23: crashed: VFS: Close: file count is zero (use-after-free) run #24: crashed: BUG: unable to handle pagSeaBIOS (version NUM.NUM.NUM-google) run #25: crashed: BUG: unable to handle pagSeaBIOS (version NUM.NUM.NUM-google) run #26: crashed: general protection fault in mt_validate_nulls run #27: crashed: general protection fault in mt_validate_nulls run #28: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #29: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #30: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #31: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #32: crashed: BUG: unable to handle kernel NULL pointer dereference in rcu_core run #33: crashed: BUG: unable to handle kernel NULL pointer dereference in rcu_core run #34: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #35: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #36: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #37: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #38: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #39: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries representative crash: BUG: unable to handle kernel paging request in leaf_paste_entries, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 3/5 testing commit 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 5df9ef55792e2834bf30677e05151c4a751af83d8f9096da930e766a3a58adc8 run #0: crashed: BUG: unable to handle kernel NULL pointer dereference in __hrtimer_run_queues run #1: crashed: BUG: unable to handle kernel NULL pointer dereference in __hrtimer_run_queues run #2: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #3: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #4: crashed: VFS: Close: file count is zero (use-after-free) run #5: crashed: VFS: Close: file count is zero (use-after-free) run #6: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #7: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #8: crashed: BUG: unable to handle kernel paging request in corrupted run #9: crashed: BUG: unable to handle kernel paging request in corrupted run #10: crashed: general protection fault in corrupted run #11: crashed: general protection fault in corrupted run #12: crashed: general protection fault in corrupted run #13: crashed: general protection fault in corrupted run #14: crashed: KASAN: slab-out-of-bounds Read in __call_rcu_common run #15: crashed: KASAN: slab-out-of-bounds Read in __call_rcu_common run #16: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #17: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #18: crashed: general protection fault in update_blocked_averages run #19: crashed: general protection fault in update_blocked_averages run #20: crashed: general protection fault in update_blocked_averages run #21: crashed: general protection fault in update_blocked_averages run #22: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #23: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #24: crashed: BUG: unable to handle kernel paging request in corrupted run #25: crashed: BUG: unable to handle kernel paging request in corrupted run #26: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #27: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #28: crashed: general protection fault in update_blocked_averages run #29: crashed: general protection fault in update_blocked_averages run #30: crashed: BUG: Bad rss-counter state run #31: crashed: BUG: Bad rss-counter state run #32: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #33: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #34: crashed: stack segment fault in __stack_depot_save run #35: crashed: stack segment fault in __stack_depot_save run #36: OK run #37: OK representative crash: BUG: unable to handle kernel NULL pointer dereference in __hrtimer_run_queues, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 4/5 testing commit 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 55083bcea8f8eeb2c6897759be1478ee383c8770b98dafc5c6f3a602b69c1f07 all runs: OK false negative chance: 0.000 testing without sub-chunk 5/5 testing commit 5d0c230f1de8c7515b6567d9afba1f196fb4e2f4 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: c07a5dcfb35ac056893a068c13c212955267cb406de40537279331a068442487 run #0: crashed: general protection fault in update_blocked_averages run #1: crashed: general protection fault in update_blocked_averages run #2: crashed: general protection fault in timerqueue_add run #3: crashed: general protection fault in timerqueue_add run #4: crashed: BUG: Bad page map run #5: crashed: BUG: Bad page map run #6: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #7: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #8: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #9: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #10: crashed: BUG: unable to handle kernel paging request in corrupted run #11: crashed: BUG: unable to handle kernel paging request in corrupted run #12: crashed: general protection fault in unlink_file_vma run #13: crashed: general protection fault in unlink_file_vma run #14: crashed: kernel panic: Attempted to kill init! run #15: crashed: kernel panic: Attempted to kill init! run #16: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #17: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #18: crashed: BUG: unable to handle pagSeaBIOS (version NUM.NUM.NUM-google) run #19: crashed: BUG: unable to handle pagSeaBIOS (version NUM.NUM.NUM-google) run #20: crashed: kernel BUG in corrupted run #21: crashed: kernel BUG in corrupted run #22: crashed: BUG: unable to handle kernel paging request in corrupted run #23: crashed: BUG: unable to handle kernel paging request in corrupted run #24: crashed: general protection fault in update_blocked_averages run #25: crashed: general protection fault in update_blocked_averages run #26: crashed: general protection fault in corrupted run #27: crashed: general protection fault in corrupted run #28: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #29: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #30: crashed: general protection fault in locks_remove_posix run #31: crashed: general protection fault in locks_remove_posix run #32: crashed: general protection fault, probably for non-canonical address ADDRSeaBIOS (version NUM.NUM.NUM-google) run #33: crashed: general protection fault, probably for non-canonical address ADDRSeaBIOS (version NUM.NUM.NUM-google) run #34: crashed: general protection fault in update_blocked_averages run #35: crashed: general protection fault in update_blocked_averages run #36: OK run #37: OK representative crash: general protection fault in update_blocked_averages, types: [UNKNOWN] the chunk can be dropped minimized to 400 configs; suspects: [AF_RXRPC ARCH_ENABLE_MEMORY_HOTREMOVE ATM AX25 CFG80211 CMA DAX DLM DVB_CORE ENCRYPTED_KEYS EXTCON GENEVE GPIOLIB HAMRADIO HAVE_CLK HID_SENSOR_HUB HID_SMARTJOYPLUS HID_THRUSTMASTER IIO INFINIBAND INFINIBAND_ADDR_TRANS INFINIBAND_IPOIB INFINIBAND_USER_ACCESS INFINIBAND_VIRT_DMA INPUT_TABLET INPUT_TOUCHSCREEN IP_SCTP L2TP LIBNVDIMM MEDIA_COMMON_OPTIONS MEDIA_DIGITAL_TV_SUPPORT MEDIA_RADIO_SUPPORT MEDIA_SDR_SUPPORT MEDIA_SUPPORT MEDIA_USB_SUPPORT MEMORY_HOTPLUG MEMORY_HOTREMOVE MFD_DLN2 MFD_RETU MMC MTD MTD_UBI NETFILTER_CONNCOUNT NET_IPGRE NET_IPGRE_DEMUX NFS_V4_1 NF_NAT_TFTP NF_SOCKET_IPV4 NF_SOCKET_IPV6 NF_TABLES NF_TABLES_ARP NF_TPROXY_IPV4 NF_TPROXY_IPV6 NILFS2_FS NLMON NLS_CODEPAGE_1250 NLS_CODEPAGE_1251 NLS_CODEPAGE_737 NLS_CODEPAGE_775 NLS_CODEPAGE_850 NLS_CODEPAGE_852 NLS_CODEPAGE_855 NLS_CODEPAGE_857 NLS_CODEPAGE_860 NLS_CODEPAGE_861 NLS_CODEPAGE_862 NLS_CODEPAGE_863 NLS_CODEPAGE_864 NLS_CODEPAGE_865 NLS_CODEPAGE_866 NLS_CODEPAGE_869 NLS_CODEPAGE_874 NLS_CODEPAGE_932 NLS_CODEPAGE_936 NLS_CODEPAGE_949 NLS_CODEPAGE_950 NLS_ISO8859_13 NLS_ISO8859_14 NLS_ISO8859_15 NLS_ISO8859_2 NLS_ISO8859_3 NLS_ISO8859_4 NLS_ISO8859_5 NLS_ISO8859_6 NLS_ISO8859_7 NLS_ISO8859_8 NLS_ISO8859_9 NLS_KOI8_R NLS_KOI8_U NLS_MAC_CELTIC NLS_MAC_CENTEURO NLS_MAC_CROATIAN NLS_MAC_CYRILLIC NLS_MAC_GAELIC NLS_MAC_GREEK NLS_MAC_ICELAND NLS_MAC_INUIT NLS_MAC_ROMAN NLS_MAC_ROMANIAN NLS_MAC_TURKISH NOP_USB_XCEIV NOZOMI NTFS3_FS NTFS3_FS_POSIX_ACL NTFS3_LZX_XPRESS NTFS_FS NTFS_RW NULL_TTY NUMA_BALANCING NUMA_BALANCING_DEFAULT_ENABLED NUMA_EMU NUMA_KEEP_MEMINFO NVDIMM_DAX NVDIMM_KEYS NVDIMM_PFN NVME_CORE NVME_FABRICS NVME_FC NVME_MULTIPATH NVME_RDMA NVME_TARGET NVME_TARGET_FC NVME_TARGET_FCLOOP NVME_TARGET_LOOP NVME_TARGET_RDMA NVME_TARGET_TCP NVME_TCP N_GSM N_HDLC OCFS2_DEBUG_FS OCFS2_FS OCFS2_FS_O2CB OCFS2_FS_STATS OCFS2_FS_USERSPACE_CLUSTER OF_GPIO OF_PMEM OMFS_FS OPENVSWITCH OPENVSWITCH_GENEVE OPENVSWITCH_GRE OPENVSWITCH_VXLAN ORANGEFS_FS OSF_PARTITION OVERLAY_FS OVERLAY_FS_INDEX OVERLAY_FS_REDIRECT_ALWAYS_FOLLOW OVERLAY_FS_REDIRECT_DIR PACKET_DIAG PADATA PAGE_IDLE_FLAG PAGE_POOL PAGE_REPORTING PAHOLE_HAS_LANG_EXCLUDE PAHOLE_HAS_SPLIT_BTF PARPORT PARPORT_NOT_PC PARTITION_ADVANCED PCCARD PCCARD_NONSTATIC PCIEAER PCI_ENDPOINT PCI_IOV PCMCIA PCMCIA_LOAD_CIS PERCPU_STATS PERSISTENT_KEYRINGS PHONET PHYLINK PHY_CPCAP_USB PHY_QCOM_USB_HS PHY_QCOM_USB_HSIC PHY_SAMSUNG_USB2 PHY_TUSB1210 PKCS7_TEST_KEY PKCS8_PRIVATE_KEY_PARSER PM_CLK PNFS_BLOCK PNFS_FILE_LAYOUT PNFS_FLEXFILE_LAYOUT PPP PPPOATM PPPOE PPPOE_HASH_BITS_4 PPPOL2TP PPP_ASYNC PPP_BSDCOMP PPP_DEFLATE PPP_FILTER PPP_MPPE PPP_MULTILINK PPP_SYNC_TTY PPTP PREEMPT PREEMPT_NOTIFIERS PRISM2_USB PROC_CHILDREN PSI PSTORE PSTORE_842_COMPRESS PSTORE_COMPRESS PSTORE_DEFLATE_COMPRESS PSTORE_DEFLATE_COMPRESS_DEFAULT PSTORE_LZ4HC_COMPRESS PSTORE_LZ4_COMPRESS PSTORE_LZO_COMPRESS PSTORE_ZSTD_COMPRESS QCOM_QMI_HELPERS QNX4FS_FS QNX6FS_FS QRTR QRTR_TUN R8712U RADIO_ADAPTERS RADIO_SHARK RADIO_SHARK2 RADIO_TEA575X RAID6_PQ RAID_ATTRS RC_ATI_REMOTE RC_CORE RC_DEVICES RDMA_RXE RDMA_SIW RDS RDS_RDMA RDS_TCP READ_ONLY_THP_FOR_FS REALTEK_AUTOPM REED_SOLOMON REED_SOLOMON_DEC8 REGMAP REGMAP_I2C REGMAP_IRQ REGMAP_MMIO REGULATOR REGULATOR_TWL4030 REISERFS_FS REISERFS_FS_POSIX_ACL REISERFS_FS_SECURITY REISERFS_FS_XATTR REISERFS_PROC_INFO RESET_CONTROLLER RFKILL RFKILL_INPUT RFKILL_LEDS RMI4_2D_SENSOR RMI4_CORE RMI4_F03 RMI4_F03_SERIO RMI4_F11 RMI4_F12 RMI4_F30 ROMFS_BACKED_BY_BOTH ROMFS_FS ROMFS_ON_BLOCK ROMFS_ON_MTD ROSE RTC_DRV_HID_SENSOR_TIME RXKAD SCHED_CORE SCSI_FC_ATTRS SCSI_HPSA SCSI_ISCSI_ATTRS SCSI_LOGGING SCSI_NETLINK SCSI_SAS_ATA SCSI_SAS_ATTRS SCSI_SAS_LIBSAS SCSI_SCAN_ASYNC SCSI_SRP_ATTRS SCTP_COOKIE_HMAC_MD5 SCTP_COOKIE_HMAC_SHA1 SCTP_DEFAULT_COOKIE_HMAC_MD5 SECONDARY_TRUSTED_KEYRING SECURITY_INFINIBAND SECURITY_NETWORK_XFRM SERIAL_DEV_BUS SERIAL_DEV_CTRL_TTYPORT SERIAL_MCTRL_GPIO SGI_PARTITION SIGNATURE SIGNED_PE_FILE_VERIFICATION SLHC SLIP SLIP_COMPRESSED SLIP_MODE_SLIP6 SLIP_SMART SMARTJOYPLUS_FF SMBFS SMC SMC_DIAG SMSC_PHY SMS_SIANO_MDTV SMS_SIANO_RC SMS_USB_DRV SND SND_ALOOP SND_BCD2000 SND_CTL_FAST_LOOKUP SND_CTL_LED SND_DEBUG SND_DMA_SGBUF SND_DRIVERS SND_DUMMY SND_DYNAMIC_MINORS SND_HDA SND_HDA_CODEC_ANALOG SND_HDA_CODEC_CA0110 SND_HDA_CODEC_CA0132 SND_HDA_CODEC_CIRRUS SND_HDA_CODEC_CMEDIA SND_HDA_CODEC_CONEXANT SND_HDA_CODEC_HDMI SND_HDA_CODEC_REALTEK SND_HDA_CODEC_SI3054 SND_HDA_CODEC_SIGMATEL SND_HDA_CODEC_VIA SND_HDA_COMPONENT SND_HDA_CORE SND_HDA_GENERIC SND_HDA_GENERIC_LEDS SND_HDA_HWDEP SND_HDA_I915 SND_HDA_INPUT_BEEP SND_HDA_INTEL SND_HDA_PATCH_LOADER SND_HDA_RECONFIG SND_HRTIMER SND_HWDEP SND_INTEL_DSP_CONFIG SND_INTEL_NHLT SND_INTEL_SOUNDWIRE_ACPI SND_JACK SND_JACK_INPUT_DEV SND_MIXER_OSS SND_OSSEMUL SND_PCI SND_PCM SND_PCMCIA SND_PCM_OSS SND_PCM_OSS_PLUGINS SND_PCM_TIMER SND_PCM_XRUN_DEBUG SND_PROC_FS SND_RAWMIDI SND_SEQUENCER SND_SEQUENCER_OSS SND_SEQ_DEVICE SND_SEQ_DUMMY SND_SEQ_HRTIMER_DEFAULT SND_SEQ_MIDI SND_SEQ_MIDI_EVENT SND_SEQ_VIRMIDI SND_SUPPORT_OLD_API SND_TIMER SND_USB SND_USB_6FIRE SND_USB_AUDIO SND_USB_AUDIO_USE_MEDIA_CONTROLLER SND_USB_CAIAQ SND_USB_CAIAQ_INPUT SND_USB_HIFACE SND_USB_LINE6 SND_USB_POD SND_USB_PODHD SND_USB_TONEPORT SND_USB_UA101 SND_USB_US122L SND_USB_USX2Y SND_USB_VARIAX SND_VERBOSE_PROCFS SND_VIRMIDI SND_VIRTIO SND_VMASTER SND_X86 SOCK_VALIDATE_XMIT SOLARIS_X86_PARTITION SONY_FF SOUND SOUND_OSS_CORE SOUND_OSS_CORE_PRECLAIM SPI SPI_DLN2 SPI_DYNAMIC SPI_MASTER SQUASHFS SQUASHFS_4K_DEVBLK_SIZE SQUASHFS_COMPILE_DECOMP_SINGLE SQUASHFS_DECOMP_SINGLE SQUASHFS_FILE_DIRECT SQUASHFS_LZ4 SQUASHFS_LZO SQUASHFS_XATTR SQUASHFS_XZ SQUASHFS_ZLIB SQUASHFS_ZSTD SSB SSB_PCIHOST_POSSIBLE SSB_PCMCIAHOST_POSSIBLE SSB_SDIOHOST_POSSIBLE STAGING STP STREAM_PARSER SUNRPC_BACKCHANNEL SUN_PARTITION SW_SYNC SYSFB SYSV68_PARTITION SYSV_FS TABLET_USB_ACECAD TABLET_USB_AIPTEK TABLET_USB_HANWANG TABLET_USB_KBTAB TABLET_USB_PEGASUS TAHVO_USB TAHVO_USB_HOST_BY_DEFAULT TASKS_TRACE_RCU TCG_CRB TCG_TIS TCG_TIS_CORE TCG_TPM TCP_CONG_BBR TCP_CONG_BIC TCP_CONG_CDG TCP_CONG_DCTCP TCP_CONG_HSTCP TCP_CONG_HTCP TCP_CONG_HYBLA TCP_CONG_ILLINOIS TCP_CONG_LP TCP_CONG_NV TCP_CONG_SCALABLE TCP_CONG_VEGAS TCP_CONG_VENO TCP_CONG_WESTWOOD TCP_CONG_YEAH TEXTSEARCH TEXTSEARCH_BM TEXTSEARCH_FSM TEXTSEARCH_KMP THERMAL_NETLINK THP_SWAP THRUSTMASTER_FF TIPC TIPC_CRYPTO TIPC_DIAG TIPC_MEDIA_IB TIPC_MEDIA_UDP TLS TLS_TOE TOUCHSCREEN_SUR40 TOUCHSCREEN_USB_3M TOUCHSCREEN_USB_COMPOSITE TOUCHSCREEN_USB_DMC_TSC10 TOUCHSCREEN_USB_E2I TOUCHSCREEN_USB_EASYTOUCH TOUCHSCREEN_USB_EGALAX TOUCHSCREEN_USB_ELO TOUCHSCREEN_USB_ETT_TC45USB TOUCHSCREEN_USB_ETURBO TOUCHSCREEN_USB_GENERAL_TOUCH TOUCHSCREEN_USB_GOTOP TOUCHSCREEN_USB_GUNZE TOUCHSCREEN_USB_IDEALTEK TOUCHSCREEN_USB_IRTOUCH TOUCHSCREEN_USB_ITM TOUCHSCREEN_USB_JASTEC TOUCHSCREEN_USB_NEXIO TOUCHSCREEN_USB_PANJIT TOUCHSCREEN_USB_ZYTRONIC TRANSPARENT_HUGEPAGE TRANSPARENT_HUGEPAGE_MADVISE TTPCI_EEPROM TTY_PRINTK TUN_VNET_CROSS_LE TWL4030_CORE TYPEC TYPEC_FUSB302 TYPEC_TCPCI TYPEC_TCPM TYPEC_TPS6598X TYPEC_UCSI UBIFS_ATIME_SUPPORT UBIFS_FS UBIFS_FS_ADVANCED_COMPR UBIFS_FS_LZO UBIFS_FS_SECURITY UBIFS_FS_XATTR UBIFS_FS_ZLIB UBIFS_FS_ZSTD UCSI_ACPI UDF_FS UDMABUF UFS_FS UFS_FS_WRITE UHID ULTRIX_PARTITION UNICODE UNIXWARE_DISKLABEL UNIX_DIAG USB4 USB4_NET USBIP_CORE USBIP_HOST USBIP_VHCI_HCD USBIP_VUDC USBPCWATCHDOG USB_ACM USB_ADUTUX USB_AIRSPY USB_ALI_M5632 USB_AN2720 USB_APPLEDISPLAY USB_ARMLINUX USB_BDC_UDC USB_BELKIN USB_C67X00_HCD USB_CATC USB_CDC_PHONET USB_CHAOSKEY USB_CHIPIDEA USB_CHIPIDEA_HOST USB_CHIPIDEA_PCI USB_CHIPIDEA_UDC USB_CONFIGFS USB_CONFIGFS_ACM USB_CONFIGFS_ECM USB_CONFIGFS_ECM_SUBSET USB_CONFIGFS_EEM USB_CONFIGFS_F_FS USB_DWC2 USB_GADGET USB_MUSB_HDRC USB_NET_CDC_SUBSET USB_ROLE_SWITCH USB_STORAGE_REALTEK USB_ULPI_BUS USB_USBNET VIDEO_DEV VXLAN WIRELESS WLAN ZONE_DEVICE] testing release v6.4 testing commit 6995e2de6891c724bfeb2db33d7b87775f913ad1 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: a3239b29830bf4f34e024e5757150f1dac4d6ce515e152d66e4639977cf5391a run #0: crashed: general protection fault in corrupted run #1: crashed: general protection fault in corrupted run #2: crashed: BUG: unable to handle kernel paging request in corrupted run #3: crashed: BUG: unable to handle kernel paging request in corrupted run #4: crashed: BUG: unable to handle kernel paging request in corrupted run #5: crashed: BUG: unable to handle kernel paging request in corrupted run #6: crashed: general protection fault in cpuacct_account_field run #7: crashed: general protection fault in cpuacct_account_field run #8: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #9: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #10: crashed: general protection fault in timerqueue_del run #11: crashed: general protection fault in timerqueue_del run #12: crashed: BUG: unable to handle kernel NULL pointer dereference in __hrtimer_run_queues run #13: crashed: BUG: unable to handle kernel NULL pointer dereference in __hrtimer_run_queues run #14: crashed: BUG: unable to handle kernel NULL pointer dereference in __hrtimer_run_queues run #15: crashed: BUG: unable to handle kernel NULL pointer dereference in __hrtimer_run_queues run #16: crashed: general protection fault in timerqueue_del run #17: crashed: general protection fault in timerqueue_del run #18: crashed: general protection fault in timerqueue_del run #19: crashed: general protection fault in timerqueue_del run #20: crashed: BUG: unable to handle kernel paging request in corrupted run #21: crashed: BUG: unable to handle kernel paging request in corrupted run #22: crashed: general protection fault in cpuacct_account_field run #23: crashed: general protection fault in cpuacct_account_field run #24: crashed: stack segment fault in __stack_depot_save run #25: crashed: stack segment fault in __stack_depot_save run #26: crashed: BUG: unable to handle kernel paging request in corrupted run #27: crashed: BUG: unable to handle kernel paging request in corrupted run #28: crashed: general protection fault in timerqueue_add run #29: crashed: general protection fault in timerqueue_add run #30: crashed: general protection fault in timerqueue_del run #31: crashed: general protection fault in timerqueue_del run #32: OK run #33: OK run #34: OK run #35: OK representative crash: general protection fault in corrupted, types: [UNKNOWN] testing release v6.3 testing commit 457391b0380335d5e9a5babdec90ac53928b23b4 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: b79440105e7f9af7236b9d4b78fad8884d735f4a8261636ae45f0b1f1b1e50fa run #0: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #1: crashed: BUG: unable to handle kernel paging request in leaf_paste_entries run #2: crashed: general protection fault in timerqueue_add run #3: crashed: general protection fault in timerqueue_add run #4: crashed: BUG: unable to handle kernel paging request in corrupted run #5: crashed: BUG: unable to handle kernel paging request in corrupted run #6: crashed: general protection fault, probably for non-canonical address ADDRSeaBIOS (version NUM.NUM.NUM-google) run #7: crashed: general protection fault, probably for non-canonical address ADDRSeaBIOS (version NUM.NUM.NUM-google) run #8: crashed: BUG: unable to handle kernel paging request in corrupted run #9: crashed: BUG: unable to handle kernel paging request in corrupted run #10: crashed: general protection fault in update_blocked_averages run #11: crashed: general protection fault in update_blocked_averages run #12: crashed: general protection fault in corrupted run #13: crashed: general protection fault in corrupted run #14: crashed: KASAN: vmalloc-out-of-bounds Read in __schedule run #15: crashed: KASAN: vmalloc-out-of-bounds Read in __schedule run #16: crashed: general protection fault in generic_file_write_iter run #17: crashed: general protection fault in generic_file_write_iter run #18: crashed: general protection fault in update_blocked_averages run #19: crashed: general protection fault in update_blocked_averages run #20: crashed: general protection fault in locks_remove_posix run #21: crashed: general protection fault in locks_remove_posix run #22: crashed: general protection fault in update_blocked_averages run #23: crashed: general protection fault in update_blocked_averages run #24: crashed: BUG: unable to handle kernel paging request in corrupted run #25: crashed: BUG: unable to handle kernel paging request in corrupted run #26: crashed: BUG: unable to handle kernel paging request in corrupted run #27: crashed: BUG: unable to handle kernel paging request in corrupted run #28: crashed: general protection fault in corrupted run #29: crashed: general protection fault in corrupted run #30: crashed: general protection fault in corrupted run #31: crashed: general protection fault in corrupted run #32: OK run #33: OK run #34: OK run #35: OK representative crash: BUG: unable to handle kernel paging request in leaf_paste_entries, types: [UNKNOWN] testing release v6.2 testing commit c9c3395d5e3dcc6daee66c6908354d47bf98cb0c gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: c11fe7139c066dace2aa1b8fc4367c6a59b6c4ff5d2160e024fc463836ffb191 all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] testing release v6.1 testing commit 830b3c68c1fb1e9176028d02ef86f3cf76aa2476 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 86342b35df987b3e2f9d75bce6c4b03deaec15f51197d94473f58305bdfdf232 all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] testing release v6.0 testing commit 4fe89d07dcc2804c8b562f6c7896a45643d34b2f gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 75c9114761f7935830e735d10b463938571598cf60100fcae1153bc28053c87a all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] testing release v5.19 testing commit 3d7cb6b04c3f3115719235cc6866b10326de34cd gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 4cea29b26d252dc10ae3d1fa1c4d73e29e9d7c18f8da8498c2669ad9e820a1be all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] testing release v5.18 testing commit 4b0986a3613c92f4ec1bdc7f60ec66fea135991f gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 0f32984e12437a5a01c6b6ccce46fd9bed59b859541e750c20106eb0f5b60772 all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] testing release v5.17 testing commit f443e374ae131c168a065ea1748feac6b2e76613 gcc compiler: gcc (Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: cfedfff42ab36a4ce3241bde3e236cd793ff479ffed5ad1482c0fcf924b12c9b all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] testing release v5.16 testing commit df0cc57e057f18e44dac8e6c18aba47ab53202f9 gcc failed building df0cc57e057f18e44dac8e6c18aba47ab53202f9: scripts/sign-file.c:89:9: warning: 'ERR_get_error_line' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations] scripts/sign-file.c:102:9: warning: 'ERR_get_error_line' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations] scripts/extract-cert.c:46:9: warning: 'ERR_get_error_line' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations] scripts/extract-cert.c:59:9: warning: 'ERR_get_error_line' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations] check.c:2836:58: error: '%d' directive output may be truncated writing between 1 and 10 bytes into a region of size 9 [-Werror=format-truncation=] testing release v5.15 testing commit 8bb7eca972ad531c9b149c0a51ab43a417385813 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 5ca5f0b0aff32ae4c3a4e34947a899b0773883c2d6067d98f09cd64fc62c1adc all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] testing release v5.14 testing commit 7d2a07b769330c34b4deabeed939325c77a7ec2f gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 7412e3b03e5597a66db4b06403a78a156161848e000bfa21fdbb334bba3f778d all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] testing release v5.13 testing commit 62fb9874f5da54fdb243003b386128037319b219 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ab143faf075837b8968fc3ad1c4a16b229651da23f5e8c39033f884e73a62a16 all runs: OK false negative chance: 0.000 # git bisect start 7d2a07b769330c34b4deabeed939325c77a7ec2f 62fb9874f5da54fdb243003b386128037319b219 Bisecting: 7914 revisions left to test after this (roughly 13 steps) [406254918b232db198ed60f5bf1f8b84d96bca00] Merge tag 'perf-tools-for-v5.14-2021-07-01' of git://git.kernel.org/pub/scm/linux/kernel/git/acme/linux testing commit 406254918b232db198ed60f5bf1f8b84d96bca00 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: a08f4f015702cf74323d67b21524b41da01e5b68b48345e8856ad12a723c6b8c run #0: basic kernel testing failed: possible deadlock in fs_reclaim_acquire run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK false negative chance: 0.000 # git bisect good 406254918b232db198ed60f5bf1f8b84d96bca00 Bisecting: 3969 revisions left to test after this (roughly 12 steps) [4ea90317956718e0648e1f87e56530db809a5a04] Merge tag 'for-linus-5.14-rc1-tag' of git://git.kernel.org/pub/scm/linux/kernel/git/xen/tip testing commit 4ea90317956718e0648e1f87e56530db809a5a04 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 1823e9c38d79b399490ecbde3842b81bf10b4b7016b0f0e78415969bc12de2c9 run #0: boot failed: BUG: sleeping function called from invalid context in stack_depot_save run #1: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #2: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #3: boot failed: BUG: sleeping function called from invalid context in stack_depot_save run #4: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #5: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #6: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #7: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #8: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #9: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #10: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #11: boot failed: BUG: sleeping function called from invalid context in stack_depot_save run #12: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #13: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #14: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #15: boot failed: possible deadlock in get_page_from_freelist run #16: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #17: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #18: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #19: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) unable to determine the verdict: 0 good runs (wanted 15), for bad wanted 10 in total, got 0 # git bisect skip 4ea90317956718e0648e1f87e56530db809a5a04 Bisecting: 3969 revisions left to test after this (roughly 12 steps) [c1b8ac969febc8f413c4d71f0eefe2e107610449] pwm: tegra: Drop an if block with an always false condition testing commit c1b8ac969febc8f413c4d71f0eefe2e107610449 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 3b74cfbe7b6fa0dd475ede872ffdd5d1f31147d27156b8e5a160f445c98e831a all runs: OK false negative chance: 0.000 # git bisect good c1b8ac969febc8f413c4d71f0eefe2e107610449 Bisecting: 3937 revisions left to test after this (roughly 12 steps) [b5e6d1261e2090df1325e762669c8eab6d4fb2fb] Merge tag 'hwlock-v5.14' of git://git.kernel.org/pub/scm/linux/kernel/git/andersson/remoteproc testing commit b5e6d1261e2090df1325e762669c8eab6d4fb2fb gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 1823e9c38d79b399490ecbde3842b81bf10b4b7016b0f0e78415969bc12de2c9 run #0: boot failed: BUG: sleeping function called from invalid context in stack_depot_save run #1: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #2: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #3: boot failed: BUG: sleeping function called from invalid context in stack_depot_save run #4: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #5: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #6: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #7: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #8: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #9: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #10: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #11: boot failed: BUG: sleeping function called from invalid context in stack_depot_save run #12: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #13: boot failed: possible deadlock in get_page_from_freelist run #14: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #15: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #16: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #17: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #18: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) run #19: boot failed: kernel panic: VFS: Unable to mount root fs on unknown-block(NUM,NUM) unable to determine the verdict: 0 good runs (wanted 15), for bad wanted 10 in total, got 0 # git bisect skip b5e6d1261e2090df1325e762669c8eab6d4fb2fb Bisecting: 3937 revisions left to test after this (roughly 12 steps) [5a4e0f58e2d959e2de0f0f1ddaa169e60711d2f0] s390/ipl: use register pair instead of register asm testing commit 5a4e0f58e2d959e2de0f0f1ddaa169e60711d2f0 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 745c5e5b2af8d27ec0853e86b2380129ebdf36f7beff57624baf1880a3253431 all runs: OK false negative chance: 0.000 # git bisect good 5a4e0f58e2d959e2de0f0f1ddaa169e60711d2f0 Bisecting: 3929 revisions left to test after this (roughly 12 steps) [2de7e4f67599affc97132bd07e30e3bd59d0b777] ixgbevf: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops testing commit 2de7e4f67599affc97132bd07e30e3bd59d0b777 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 failed building 2de7e4f67599affc97132bd07e30e3bd59d0b777: scripts/extract-cert.c:46:9: warning: 'ERR_get_error_line' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations] scripts/extract-cert.c:59:9: warning: 'ERR_get_error_line' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations] scripts/sign-file.c:89:9: warning: 'ERR_get_error_line' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations] scripts/sign-file.c:102:9: warning: 'ERR_get_error_line' is deprecated: Since OpenSSL 3.0 [-Wdeprecated-declarations] net/core/dev.c:6015:51: error: 'TC_SKB_EXT' undeclared (first use in this function) net/core/dev.c:6020:19: error: invalid use of undefined type 'struct tc_skb_ext' net/core/dev.c:6020:36: error: invalid use of undefined type 'struct tc_skb_ext' # git bisect skip 2de7e4f67599affc97132bd07e30e3bd59d0b777 Bisecting: 3929 revisions left to test after this (roughly 12 steps) [484f2b7c61b9ae58cc00c5127bcbcd9177af8dfe] cpufreq: armada-37xx: forbid cpufreq for 1.2 GHz variant testing commit 484f2b7c61b9ae58cc00c5127bcbcd9177af8dfe gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 7e33bfb4a5cf9bc9bdede9ae4ed3a6c35ac7e0261a888e09b25cc0162c90b895 run #0: basic kernel testing failed: possible deadlock in fs_reclaim_acquire run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK false negative chance: 0.000 # git bisect good 484f2b7c61b9ae58cc00c5127bcbcd9177af8dfe Bisecting: 1028 revisions left to test after this (roughly 10 steps) [c7d102232649226a69dddd58a4942cf13cff4f7c] Merge tag 'net-5.14-rc4' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net testing commit c7d102232649226a69dddd58a4942cf13cff4f7c gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: a4cd69d91898045077b5aba79a720bb17a6f343fb8770039362fee9e85facaba all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] # git bisect bad c7d102232649226a69dddd58a4942cf13cff4f7c Bisecting: 557 revisions left to test after this (roughly 9 steps) [2e41a6696bf828a7b06f520d147f6911c947a7af] Merge tag 'drm-misc-fixes-2021-07-22' of git://anongit.freedesktop.org/drm/drm-misc into drm-fixes testing commit 2e41a6696bf828a7b06f520d147f6911c947a7af gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: a44f1c085d90ced74c599c2f36f72fa50839c6e4acf299415c5c6432f4fbba24 all runs: OK false negative chance: 0.000 # git bisect good 2e41a6696bf828a7b06f520d147f6911c947a7af Bisecting: 278 revisions left to test after this (roughly 8 steps) [6498f6151825f1e5aac5543fa9ea4ea218dcbe8c] Merge tag 'riscv-for-linus-5.14-rc3' of git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux testing commit 6498f6151825f1e5aac5543fa9ea4ea218dcbe8c gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: fa21dbc3cf5f80b1423462c110281eda64baa2204f4cbfc345fe04012ec80a1b all runs: OK false negative chance: 0.000 # git bisect good 6498f6151825f1e5aac5543fa9ea4ea218dcbe8c Bisecting: 137 revisions left to test after this (roughly 7 steps) [ad6ec09d9622efca3f31ab34f925c15185c2bd0e] Merge branch 'akpm' (patches from Andrew) testing commit ad6ec09d9622efca3f31ab34f925c15185c2bd0e gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 497f7fb3a72144be4e11ce4bb4d12ff17953f327ba268a5e3e0110ded93599c2 all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] # git bisect bad ad6ec09d9622efca3f31ab34f925c15185c2bd0e Bisecting: 70 revisions left to test after this (roughly 6 steps) [2b99c470d50ae01df37c40596f4be58f1d41db06] Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/gerg/m68knommu testing commit 2b99c470d50ae01df37c40596f4be58f1d41db06 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 13c505c59bea9274e8b7c672d942f9e568f8f680366c01fa791d92fc3c32197b all runs: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] # git bisect bad 2b99c470d50ae01df37c40596f4be58f1d41db06 Bisecting: 35 revisions left to test after this (roughly 5 steps) [51bbe7ebac25368e4e77a41fdff5f11c42e4ae2d] Merge branch 'for-5.14-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cgroup testing commit 51bbe7ebac25368e4e77a41fdff5f11c42e4ae2d gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 820f2fa8a855b7f4b869834649990c09928764d7e3c87b67a136ac1b3e5c0ef5 all runs: OK false negative chance: 0.000 # git bisect good 51bbe7ebac25368e4e77a41fdff5f11c42e4ae2d Bisecting: 18 revisions left to test after this (roughly 4 steps) [2b2c66f607d00d17f879c0d946d44340bfbdc501] platform/x86: gigabyte-wmi: add support for B550 Aorus Elite V2 testing commit 2b2c66f607d00d17f879c0d946d44340bfbdc501 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 7e33bfb4a5cf9bc9bdede9ae4ed3a6c35ac7e0261a888e09b25cc0162c90b895 run #0: basic kernel testing failed: possible deadlock in fs_reclaim_acquire run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK false negative chance: 0.000 # git bisect good 2b2c66f607d00d17f879c0d946d44340bfbdc501 Bisecting: 8 revisions left to test after this (roughly 3 steps) [7d549995d4e0d99b68e8a7793a0d23da6fc40fe8] Merge tag 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/rdma/rdma testing commit 7d549995d4e0d99b68e8a7793a0d23da6fc40fe8 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 1ff716a85bde633bf85b16c6f5b532b7ec04b8e311ea5c70336a0af171706c2d all runs: OK false negative chance: 0.000 # git bisect good 7d549995d4e0d99b68e8a7793a0d23da6fc40fe8 Bisecting: 5 revisions left to test after this (roughly 2 steps) [13d257503c0930010ef9eed78b689cec417ab741] reiserfs: check directory items on read from disk testing commit 13d257503c0930010ef9eed78b689cec417ab741 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 45e2e8d3752b719e13d9fead616d107499a8b14f5049e14046bac951e2a43642 run #0: basic kernel testing failed: possible deadlock in fs_reclaim_acquire run #1: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #2: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #3: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #4: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #5: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #6: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #7: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #8: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #9: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #10: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #11: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #12: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #13: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #14: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #15: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #16: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #17: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #18: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #19: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #20: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #21: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #22: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #23: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #24: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #25: crashed: possible deadlock in fs_reclaim_acquire run #26: crashed: possible deadlock in fs_reclaim_acquire run #27: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #28: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #29: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #30: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #31: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #32: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #33: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #34: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #35: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #36: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #37: crashed: KASAN: out-of-bounds Read in leaf_paste_entries run #38: crashed: KASAN: out-of-bounds Read in leaf_paste_entries representative crash: KASAN: out-of-bounds Read in leaf_paste_entries, types: [KASAN] # git bisect bad 13d257503c0930010ef9eed78b689cec417ab741 Bisecting: 1 revision left to test after this (roughly 1 step) [2acf15b94d5b8ea8392c4b6753a6ffac3135cd78] reiserfs: add check for root_inode in reiserfs_fill_super testing commit 2acf15b94d5b8ea8392c4b6753a6ffac3135cd78 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 84cad29722f1f094cd3749d9ef293ffea5bf5514faf6ac2ebfd615c49783ac8b run #0: basic kernel testing failed: BUG: sleeping function called from invalid context in stack_depot_save run #1: basic kernel testing failed: possible deadlock in fs_reclaim_acquire run #2: crashed: possible deadlock in fs_reclaim_acquire run #3: crashed: possible deadlock in fs_reclaim_acquire run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: OK run #16: OK run #17: OK run #18: OK run #19: OK run #20: OK representative crash: possible deadlock in fs_reclaim_acquire, types: [LOCKDEP] # git bisect bad 2acf15b94d5b8ea8392c4b6753a6ffac3135cd78 2acf15b94d5b8ea8392c4b6753a6ffac3135cd78 is the first bad commit commit 2acf15b94d5b8ea8392c4b6753a6ffac3135cd78 Author: Yu Kuai Date: Fri Jul 2 12:07:43 2021 +0800 reiserfs: add check for root_inode in reiserfs_fill_super Our syzcaller report a NULL pointer dereference: BUG: kernel NULL pointer dereference, address: 0000000000000000 PGD 116e95067 P4D 116e95067 PUD 1080b5067 PMD 0 Oops: 0010 [#1] SMP KASAN CPU: 7 PID: 592 Comm: a.out Not tainted 5.13.0-next-20210629-dirty #67 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ?-20190727_073836-buildvm-p4 RIP: 0010:0x0 Code: Unable to access opcode bytes at RIP 0xffffffffffffffd6. RSP: 0018:ffff888114e779b8 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 1ffff110229cef39 RCX: ffffffffaa67e1aa RDX: 0000000000000000 RSI: ffff88810a58ee00 RDI: ffff8881233180b0 RBP: ffffffffac38e9c0 R08: ffffffffaa67e17e R09: 0000000000000001 R10: ffffffffb91c5557 R11: fffffbfff7238aaa R12: ffff88810a58ee00 R13: ffff888114e77aa0 R14: 0000000000000000 R15: ffff8881233180b0 FS: 00007f946163c480(0000) GS:ffff88839f1c0000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffffffffffffd6 CR3: 00000001099c1000 CR4: 00000000000006e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: __lookup_slow+0x116/0x2d0 ? page_put_link+0x120/0x120 ? __d_lookup+0xfc/0x320 ? d_lookup+0x49/0x90 lookup_one_len+0x13c/0x170 ? __lookup_slow+0x2d0/0x2d0 ? reiserfs_schedule_old_flush+0x31/0x130 reiserfs_lookup_privroot+0x64/0x150 reiserfs_fill_super+0x158c/0x1b90 ? finish_unfinished+0xb10/0xb10 ? bprintf+0xe0/0xe0 ? __mutex_lock_slowpath+0x30/0x30 ? __kasan_check_write+0x20/0x30 ? up_write+0x51/0xb0 ? set_blocksize+0x9f/0x1f0 mount_bdev+0x27c/0x2d0 ? finish_unfinished+0xb10/0xb10 ? reiserfs_kill_sb+0x120/0x120 get_super_block+0x19/0x30 legacy_get_tree+0x76/0xf0 vfs_get_tree+0x49/0x160 ? capable+0x1d/0x30 path_mount+0xacc/0x1380 ? putname+0x97/0xd0 ? finish_automount+0x450/0x450 ? kmem_cache_free+0xf8/0x5a0 ? putname+0x97/0xd0 do_mount+0xe2/0x110 ? path_mount+0x1380/0x1380 ? copy_mount_options+0x69/0x140 __x64_sys_mount+0xf0/0x190 do_syscall_64+0x35/0x80 entry_SYSCALL_64_after_hwframe+0x44/0xae This is because 'root_inode' is initialized with wrong mode, and it's i_op is set to 'reiserfs_special_inode_operations'. Thus add check for 'root_inode' to fix the problem. Link: https://lore.kernel.org/r/20210702040743.1918552-1-yukuai3@huawei.com Signed-off-by: Yu Kuai Signed-off-by: Jan Kara fs/reiserfs/super.c | 8 ++++++++ 1 file changed, 8 insertions(+) accumulated error probability: 0.00 parent commit e73f0f0ee7541171d89f2e2491130c7771ba58d3 wasn't tested testing commit e73f0f0ee7541171d89f2e2491130c7771ba58d3 gcc compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 7e33bfb4a5cf9bc9bdede9ae4ed3a6c35ac7e0261a888e09b25cc0162c90b895 culprit signature: 84cad29722f1f094cd3749d9ef293ffea5bf5514faf6ac2ebfd615c49783ac8b parent signature: 7e33bfb4a5cf9bc9bdede9ae4ed3a6c35ac7e0261a888e09b25cc0162c90b895 reproducer is flaky (0.48 repro chance estimate) revisions tested: 34, total time: 7h7m38.815772751s (build: 2h42m37.013859687s, test: 4h8m1.339073764s) first bad commit: 2acf15b94d5b8ea8392c4b6753a6ffac3135cd78 reiserfs: add check for root_inode in reiserfs_fill_super recipients (to): ["jack@suse.cz" "yukuai3@huawei.com"] recipients (cc): [] crash: possible deadlock in fs_reclaim_acquire REISERFS (device loop0): using ordered data mode reiserfs: using flush barriers REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 ====================================================== WARNING: possible circular locking dependency detected 5.14.0-rc1-syzkaller #0 Not tainted ------------------------------------------------------ syz-executor.0/2913 is trying to acquire lock: ffffffff863784e0 (fs_reclaim){+.+.}-{0:0}, at: fs_reclaim_acquire+0xf7/0x160 mm/page_alloc.c:4574 but task is already holding lock: ffff8880bab30300 (lock#2){-.-.}-{2:2}, at: __alloc_pages_bulk+0x4ad/0x1870 mm/page_alloc.c:5279 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #2 (lock#2){-.-.}-{2:2}: local_lock_acquire include/linux/local_lock_internal.h:42 [inline] free_unref_page+0x1bf/0x690 mm/page_alloc.c:3427 mm_free_pgd kernel/fork.c:636 [inline] __mmdrop+0xb9/0x350 kernel/fork.c:687 mmdrop include/linux/sched/mm.h:49 [inline] finish_task_switch.isra.0+0x6ed/0xa70 kernel/sched/core.c:4582 context_switch kernel/sched/core.c:4686 [inline] __schedule+0xb02/0x5840 kernel/sched/core.c:5940 preempt_schedule_irq+0x4e/0x90 kernel/sched/core.c:6328 irqentry_exit+0x31/0x80 kernel/entry/common.c:427 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:638 vma_pages include/linux/mm.h:2747 [inline] vma_last_pgoff mm/interval_tree.c:20 [inline] vma_interval_tree_augment_compute_max mm/interval_tree.c:23 [inline] vma_interval_tree_augment_propagate mm/interval_tree.c:23 [inline] __rb_erase_augmented include/linux/rbtree_augmented.h:295 [inline] rb_erase_augmented include/linux/rbtree_augmented.h:303 [inline] rb_erase_augmented_cached include/linux/rbtree_augmented.h:314 [inline] vma_interval_tree_remove+0x4d0/0x10f0 mm/interval_tree.c:23 __vma_adjust+0x41b/0x2510 mm/mmap.c:876 vma_merge+0x25d/0xb10 mm/mmap.c:1233 mmap_region+0x287/0x13a0 mm/mmap.c:1768 do_mmap+0x5d3/0xfc0 mm/mmap.c:1584 vm_mmap_pgoff+0x163/0x200 mm/util.c:519 ksys_mmap_pgoff+0x3be/0x5f0 mm/mmap.c:1635 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0x80 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae -> #1 (&mapping->i_mmap_rwsem){+.+.}-{3:3}: down_write+0x92/0x150 kernel/locking/rwsem.c:1406 i_mmap_lock_write include/linux/fs.h:494 [inline] dma_resv_lockdep+0x2ac/0x429 drivers/dma-buf/dma-resv.c:689 do_one_initcall+0xbe/0x440 init/main.c:1282 do_initcall_level init/main.c:1355 [inline] do_initcalls init/main.c:1371 [inline] do_basic_setup init/main.c:1391 [inline] kernel_init_freeable+0x5ad/0x611 init/main.c:1593 kernel_init+0x14/0x120 init/main.c:1485 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295 -> #0 (fs_reclaim){+.+.}-{0:0}: check_prev_add kernel/locking/lockdep.c:3051 [inline] check_prevs_add kernel/locking/lockdep.c:3174 [inline] validate_chain kernel/locking/lockdep.c:3789 [inline] __lock_acquire+0x2985/0x5410 kernel/locking/lockdep.c:5015 lock_acquire kernel/locking/lockdep.c:5625 [inline] lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5590 __fs_reclaim_acquire mm/page_alloc.c:4552 [inline] fs_reclaim_acquire+0x117/0x160 mm/page_alloc.c:4566 prepare_alloc_pages+0x15c/0x580 mm/page_alloc.c:5164 __alloc_pages+0x12f/0x500 mm/page_alloc.c:5363 stack_depot_save+0x39d/0x4e0 lib/stackdepot.c:303 save_stack+0x131/0x1a0 mm/page_owner.c:120 __set_page_owner+0x2e/0x250 mm/page_owner.c:181 prep_new_page mm/page_alloc.c:2433 [inline] __alloc_pages_bulk+0x8b9/0x1870 mm/page_alloc.c:5301 alloc_pages_bulk_array_node include/linux/gfp.h:557 [inline] vm_area_alloc_pages mm/vmalloc.c:2793 [inline] __vmalloc_area_node mm/vmalloc.c:2863 [inline] __vmalloc_node_range+0x2f6/0x7e0 mm/vmalloc.c:2966 __vmalloc_node mm/vmalloc.c:3015 [inline] vzalloc+0x62/0x80 mm/vmalloc.c:3085 allocate_cnodes fs/reiserfs/journal.c:351 [inline] journal_init+0x16e1/0x5e10 fs/reiserfs/journal.c:2861 reiserfs_fill_super+0x9c5/0x2680 fs/reiserfs/super.c:2032 mount_bdev+0x2cb/0x3b0 fs/super.c:1368 legacy_get_tree+0xfa/0x1f0 fs/fs_context.c:592 vfs_get_tree+0x7f/0x2c0 fs/super.c:1498 do_new_mount fs/namespace.c:2905 [inline] path_mount+0x7f3/0x1a40 fs/namespace.c:3235 do_mount fs/namespace.c:3248 [inline] __do_sys_mount fs/namespace.c:3456 [inline] __se_sys_mount fs/namespace.c:3433 [inline] __x64_sys_mount+0x1f5/0x260 fs/namespace.c:3433 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0x80 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae other info that might help us debug this: Chain exists of: fs_reclaim --> &mapping->i_mmap_rwsem --> lock#2 Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(lock#2); lock(&mapping->i_mmap_rwsem); lock(lock#2); lock(fs_reclaim); *** DEADLOCK *** 2 locks held by syz-executor.0/2913: #0: ffff8880236ca0e0 (&type->s_umount_key#23/1){+.+.}-{3:3}, at: alloc_super+0x192/0xa00 fs/super.c:229 #1: ffff8880bab30300 (lock#2){-.-.}-{2:2}, at: __alloc_pages_bulk+0x4ad/0x1870 mm/page_alloc.c:5279 stack backtrace: CPU: 1 PID: 2913 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x57/0x7d lib/dump_stack.c:105 check_noncircular+0x25f/0x2e0 kernel/locking/lockdep.c:2131 check_prev_add kernel/locking/lockdep.c:3051 [inline] check_prevs_add kernel/locking/lockdep.c:3174 [inline] validate_chain kernel/locking/lockdep.c:3789 [inline] __lock_acquire+0x2985/0x5410 kernel/locking/lockdep.c:5015 lock_acquire kernel/locking/lockdep.c:5625 [inline] lock_acquire+0x1ab/0x510 kernel/locking/lockdep.c:5590 __fs_reclaim_acquire mm/page_alloc.c:4552 [inline] fs_reclaim_acquire+0x117/0x160 mm/page_alloc.c:4566 prepare_alloc_pages+0x15c/0x580 mm/page_alloc.c:5164 __alloc_pages+0x12f/0x500 mm/page_alloc.c:5363 stack_depot_save+0x39d/0x4e0 lib/stackdepot.c:303 save_stack+0x131/0x1a0 mm/page_owner.c:120 __set_page_owner+0x2e/0x250 mm/page_owner.c:181 prep_new_page mm/page_alloc.c:2433 [inline] __alloc_pages_bulk+0x8b9/0x1870 mm/page_alloc.c:5301 alloc_pages_bulk_array_node include/linux/gfp.h:557 [inline] vm_area_alloc_pages mm/vmalloc.c:2793 [inline] __vmalloc_area_node mm/vmalloc.c:2863 [inline] __vmalloc_node_range+0x2f6/0x7e0 mm/vmalloc.c:2966 __vmalloc_node mm/vmalloc.c:3015 [inline] vzalloc+0x62/0x80 mm/vmalloc.c:3085 allocate_cnodes fs/reiserfs/journal.c:351 [inline] journal_init+0x16e1/0x5e10 fs/reiserfs/journal.c:2861 reiserfs_fill_super+0x9c5/0x2680 fs/reiserfs/super.c:2032 mount_bdev+0x2cb/0x3b0 fs/super.c:1368 legacy_get_tree+0xfa/0x1f0 fs/fs_context.c:592 vfs_get_tree+0x7f/0x2c0 fs/super.c:1498 do_new_mount fs/namespace.c:2905 [inline] path_mount+0x7f3/0x1a40 fs/namespace.c:3235 do_mount fs/namespace.c:3248 [inline] __do_sys_mount fs/namespace.c:3456 [inline] __se_sys_mount fs/namespace.c:3433 [inline] __x64_sys_mount+0x1f5/0x260 fs/namespace.c:3433 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0x80 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f96bb6971ea Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f96bb217ee8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f96bb217f80 RCX: 00007f96bb6971ea RDX: 0000000020001100 RSI: 0000000020000040 RDI: 00007f96bb217f40 RBP: 0000000020001100 R08: 00007f96bb217f80 R09: 0000000000008080 R10: 0000000000008080 R11: 0000000000000246 R12: 0000000020000040 R13: 00007f96bb217f40 R14: 000000000000110f R15: 0000000020000000 BUG: sleeping function called from invalid context at mm/page_alloc.c:5167 in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 2913, name: syz-executor.0 INFO: lockdep is turned off. irq event stamp: 20542 hardirqs last enabled at (20541): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (20541): [] _raw_spin_unlock_irqrestore+0x50/0x70 kernel/locking/spinlock.c:191 hardirqs last disabled at (20542): [] __alloc_pages_bulk+0x1017/0x1870 mm/page_alloc.c:5279 softirqs last enabled at (20520): [] invoke_softirq kernel/softirq.c:432 [inline] softirqs last enabled at (20520): [] __irq_exit_rcu kernel/softirq.c:636 [inline] softirqs last enabled at (20520): [] irq_exit_rcu+0x175/0x1d0 kernel/softirq.c:648 softirqs last disabled at (20495): [] invoke_softirq kernel/softirq.c:432 [inline] softirqs last disabled at (20495): [] __irq_exit_rcu kernel/softirq.c:636 [inline] softirqs last disabled at (20495): [] irq_exit_rcu+0x175/0x1d0 kernel/softirq.c:648 CPU: 1 PID: 2913 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x57/0x7d lib/dump_stack.c:105 ___might_sleep.cold+0x1f1/0x237 kernel/sched/core.c:9154 prepare_alloc_pages+0x3da/0x580 mm/page_alloc.c:5167 __alloc_pages+0x12f/0x500 mm/page_alloc.c:5363 stack_depot_save+0x39d/0x4e0 lib/stackdepot.c:303 save_stack+0x131/0x1a0 mm/page_owner.c:120 __set_page_owner+0x2e/0x250 mm/page_owner.c:181 prep_new_page mm/page_alloc.c:2433 [inline] __alloc_pages_bulk+0x8b9/0x1870 mm/page_alloc.c:5301 alloc_pages_bulk_array_node include/linux/gfp.h:557 [inline] vm_area_alloc_pages mm/vmalloc.c:2793 [inline] __vmalloc_area_node mm/vmalloc.c:2863 [inline] __vmalloc_node_range+0x2f6/0x7e0 mm/vmalloc.c:2966 __vmalloc_node mm/vmalloc.c:3015 [inline] vzalloc+0x62/0x80 mm/vmalloc.c:3085 allocate_cnodes fs/reiserfs/journal.c:351 [inline] journal_init+0x16e1/0x5e10 fs/reiserfs/journal.c:2861 reiserfs_fill_super+0x9c5/0x2680 fs/reiserfs/super.c:2032 mount_bdev+0x2cb/0x3b0 fs/super.c:1368 legacy_get_tree+0xfa/0x1f0 fs/fs_context.c:592 vfs_get_tree+0x7f/0x2c0 fs/super.c:1498 do_new_mount fs/namespace.c:2905 [inline] path_mount+0x7f3/0x1a40 fs/namespace.c:3235 do_mount fs/namespace.c:3248 [inline] __do_sys_mount fs/namespace.c:3456 [inline] __se_sys_mount fs/namespace.c:3433 [inline] __x64_sys_mount+0x1f5/0x260 fs/namespace.c:3433 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0x80 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f96bb6971ea Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f96bb217ee8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f96bb217f80 RCX: 00007f96bb6971ea RDX: 0000000020001100 RSI: 0000000020000040 RDI: 00007f96bb217f40 RBP: 0000000020001100 R08: 00007f96bb217f80 R09: 0000000000008080 R10: 0000000000008080 R11: 0000000000000246 R12: 0000000020000040 R13: 00007f96bb217f40 R14: 000000000000110f R15: 0000000020000000 REISERFS (device loop0): checking transaction log (loop0) REISERFS (device loop0): Using r5 hash to sort names REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck? REISERFS (device loop0): Remounting filesystem read-only REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck? REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck? REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.