bisecting fixing commit since 521b619acdc8f1f5acdac15b84f81fd9515b2aff building syzkaller on 64069d48f293e0be98d4a78a6f7be23861cc1e06 testing commit 521b619acdc8f1f5acdac15b84f81fd9515b2aff with gcc (GCC) 8.1.0 kernel signature: e82ac0dd0fdca511f32070c01ddc9c342133a00c9af9fe9e6f175347ba5b2297 all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! testing current HEAD f5e6c330254ae691f6d7befe61c786eb5056007e testing commit f5e6c330254ae691f6d7befe61c786eb5056007e with gcc (GCC) 8.1.0 kernel signature: 17ce0daa66f63682a73e47c3d0443dbe6969654e8de960e5189acc1467a86201 all runs: OK # git bisect start f5e6c330254ae691f6d7befe61c786eb5056007e 521b619acdc8f1f5acdac15b84f81fd9515b2aff Bisecting: 8027 revisions left to test after this (roughly 13 steps) [d635a69dd4981cc51f90293f5f64268620ed1565] Merge tag 'net-next-5.11' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next testing commit d635a69dd4981cc51f90293f5f64268620ed1565 with gcc (GCC) 8.1.0 kernel signature: 1e194cddf2e8ad7e1a8747dcfb2014d05e197c1e259032221a8a8bd0c068375a all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good d635a69dd4981cc51f90293f5f64268620ed1565 Bisecting: 4035 revisions left to test after this (roughly 12 steps) [945433be3677955255fabecbf1076c17864ff9da] Merge tag 'leds-5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/pavel/linux-leds testing commit 945433be3677955255fabecbf1076c17864ff9da with gcc (GCC) 8.1.0 kernel signature: edf1385b2186c358326d846e000fde0314ecd89ae218a66a1b6b14cb81ad6e41 all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good 945433be3677955255fabecbf1076c17864ff9da Bisecting: 1958 revisions left to test after this (roughly 11 steps) [8a5be36b9303ae167468d4f5e1b3c090b9981396] Merge tag 'powerpc-5.11-1' of git://git.kernel.org/pub/scm/linux/kernel/git/powerpc/linux testing commit 8a5be36b9303ae167468d4f5e1b3c090b9981396 with gcc (GCC) 8.1.0 kernel signature: dcc52c702812b4cc5a81a2c1117e7b30cebcc1f6aa13770728f0880cc7aab236 all runs: OK # git bisect bad 8a5be36b9303ae167468d4f5e1b3c090b9981396 Bisecting: 991 revisions left to test after this (roughly 10 steps) [9805529ec544ea7a82d891d5239a8ebd3dbb2a3e] Merge tag 'arm-soc-dt-5.11' of git://git.kernel.org/pub/scm/linux/kernel/git/soc/soc testing commit 9805529ec544ea7a82d891d5239a8ebd3dbb2a3e with gcc (GCC) 8.1.0 kernel signature: 4fabe1899ea2ca42b6edf14934cbea3f8ea71de7be9e0416f4d50d1d9953f9a1 all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good 9805529ec544ea7a82d891d5239a8ebd3dbb2a3e Bisecting: 531 revisions left to test after this (roughly 9 steps) [be695ee29e8fc0af266d9f1882868c47da01a790] Merge tag 'ceph-for-5.11-rc1' of git://github.com/ceph/ceph-client testing commit be695ee29e8fc0af266d9f1882868c47da01a790 with gcc (GCC) 8.1.0 kernel signature: 6b48ea906dee419b1dd11c12054363a16c2fd9ed138b3a543e7dc1ba4bcc5e3e all runs: OK # git bisect bad be695ee29e8fc0af266d9f1882868c47da01a790 Bisecting: 231 revisions left to test after this (roughly 8 steps) [9ccd9ef36fc3552dcd1173d1f73dc19e56cca1f3] Merge tag 'v5.11-rockchip-drivers-1' of git://git.kernel.org/pub/scm/linux/kernel/git/mmind/linux-rockchip into arm/drivers testing commit 9ccd9ef36fc3552dcd1173d1f73dc19e56cca1f3 with gcc (GCC) 8.1.0 kernel signature: 25981d18c42859aa6f95065a82ed376326b759d29ddac79d9f07c13f7cae91ab all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good 9ccd9ef36fc3552dcd1173d1f73dc19e56cca1f3 Bisecting: 131 revisions left to test after this (roughly 7 steps) [b97d4c424e362ebf88fd9aa1b7ad82e3a28c26d3] Merge tag 'for_v5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs testing commit b97d4c424e362ebf88fd9aa1b7ad82e3a28c26d3 with gcc (GCC) 8.1.0 kernel signature: 0d8881053858b22d7e72373efc7dc3692c2c069def9c836e869b618dad1ce053 all runs: OK # git bisect bad b97d4c424e362ebf88fd9aa1b7ad82e3a28c26d3 Bisecting: 49 revisions left to test after this (roughly 6 steps) [baa2a611762f9ad033392d15efa3b5aeb5c69d50] ARM: dts: Configure power domain for omap5 dss testing commit baa2a611762f9ad033392d15efa3b5aeb5c69d50 with gcc (GCC) 8.1.0 kernel signature: 3e6ebaf73bc81f9e45dd367cab5e480337a0ed4d81271f0db6ecc532a850e0e6 all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good baa2a611762f9ad033392d15efa3b5aeb5c69d50 Bisecting: 24 revisions left to test after this (roughly 5 steps) [19cf6e6d402a7732d39570afcdd3b8a0a66df652] Merge tag 'samsung-drivers-5.11-2' of git://git.kernel.org/pub/scm/linux/kernel/git/krzk/linux into arm/drivers testing commit 19cf6e6d402a7732d39570afcdd3b8a0a66df652 with gcc (GCC) 8.1.0 kernel signature: 25981d18c42859aa6f95065a82ed376326b759d29ddac79d9f07c13f7cae91ab all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good 19cf6e6d402a7732d39570afcdd3b8a0a66df652 Bisecting: 10 revisions left to test after this (roughly 4 steps) [14bd41e41899cbd1de4bb5ddfa46c85b08091a69] Merge tag 'fsnotify_for_v5.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs testing commit 14bd41e41899cbd1de4bb5ddfa46c85b08091a69 with gcc (GCC) 8.1.0 kernel signature: f84b1d9edea56f127d5ef666db238d04987e517343c8e36e4626bb99d5d9b1db all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good 14bd41e41899cbd1de4bb5ddfa46c85b08091a69 Bisecting: 5 revisions left to test after this (roughly 3 steps) [2356eb80ca42deba0bf2523c62530d4c79dad08f] docs: filesystems: Reduce ext2.rst to one top-level heading testing commit 2356eb80ca42deba0bf2523c62530d4c79dad08f with gcc (GCC) 8.1.0 kernel signature: ddb7889abba3a9d27cde4706d2f288dae2e8935c7345355588025bb5a184c536 all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good 2356eb80ca42deba0bf2523c62530d4c79dad08f Bisecting: 2 revisions left to test after this (roughly 2 steps) [d24396c5290ba8ab04ba505176874c4e04a2d53c] reiserfs: add check for an invalid ih_entry_count testing commit d24396c5290ba8ab04ba505176874c4e04a2d53c with gcc (GCC) 8.1.0 kernel signature: 5b892dc8c96751e47f747a9af123bfbe72a5127b584ff9eaaba47f426d9e488d all runs: OK # git bisect bad d24396c5290ba8ab04ba505176874c4e04a2d53c Bisecting: 0 revisions left to test after this (roughly 1 step) [8fca3c8a3451514c6f20dd26d5e66e78220d16e3] ext2: Fix fall-through warnings for Clang testing commit 8fca3c8a3451514c6f20dd26d5e66e78220d16e3 with gcc (GCC) 8.1.0 kernel signature: ddb7889abba3a9d27cde4706d2f288dae2e8935c7345355588025bb5a184c536 all runs: crashed: kernel BUG at fs/reiserfs/prints.c:LINE! # git bisect good 8fca3c8a3451514c6f20dd26d5e66e78220d16e3 d24396c5290ba8ab04ba505176874c4e04a2d53c is the first bad commit commit d24396c5290ba8ab04ba505176874c4e04a2d53c Author: Rustam Kovhaev Date: Sun Nov 1 06:09:58 2020 -0800 reiserfs: add check for an invalid ih_entry_count when directory item has an invalid value set for ih_entry_count it might trigger use-after-free or out-of-bounds read in bin_search_in_dir_item() ih_entry_count * IH_SIZE for directory item should not be larger than ih_item_len Link: https://lore.kernel.org/r/20201101140958.3650143-1-rkovhaev@gmail.com Reported-and-tested-by: syzbot+83b6f7cf9922cae5c4d7@syzkaller.appspotmail.com Link: https://syzkaller.appspot.com/bug?extid=83b6f7cf9922cae5c4d7 Signed-off-by: Rustam Kovhaev Signed-off-by: Jan Kara fs/reiserfs/stree.c | 6 ++++++ 1 file changed, 6 insertions(+) culprit signature: 5b892dc8c96751e47f747a9af123bfbe72a5127b584ff9eaaba47f426d9e488d parent signature: ddb7889abba3a9d27cde4706d2f288dae2e8935c7345355588025bb5a184c536 revisions tested: 15, total time: 2h33m8.136508067s (build: 1h7m32.957298375s, test: 1h23m54.428530742s) first good commit: d24396c5290ba8ab04ba505176874c4e04a2d53c reiserfs: add check for an invalid ih_entry_count recipients (to): ["jack@suse.cz" "rkovhaev@gmail.com" "syzbot+83b6f7cf9922cae5c4d7@syzkaller.appspotmail.com"] recipients (cc): []