bisecting cause commit starting from 36a44bcdd8df092d76c11bc213e81c5817d4e302
building syzkaller on 2ffa6679c4790a83f26a1b674ed34800e028fe2e
testing commit 36a44bcdd8df092d76c11bc213e81c5817d4e302 with gcc (GCC) 8.1.0
kernel signature: 9cfcb5e781ea8b4e297823a0b6135de6c693947bc9edd2ea53f238da57eb078f
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v5.5
testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0
kernel signature: 66ed04a963b7ef5873a1a8fb14b2d9ee51fa42bb7046b291bd1e106890b414e5
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v5.4
testing commit 219d54332a09e8d8741c1e1982f5eae56099de85 with gcc (GCC) 8.1.0
kernel signature: d975d6331a1c18ca9b1ce2d83437c07bab7d2a96aee585dd9c22408463082118
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v5.3
testing commit 4d856f72c10ecb060868ed10ff1b1453943fc6c8 with gcc (GCC) 8.1.0
kernel signature: 5b8e3662382a9e3a567b7dcaabce521d6b58810c1c031af9f14a810b2cf0b742
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v5.2
testing commit 0ecfebd2b52404ae0c54a878c872bb93363ada36 with gcc (GCC) 8.1.0
kernel signature: 9b015a70ff39e7e98b7b86d89c194634ef032f37933a69022fed146119a89e87
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v5.1
testing commit e93c9c99a629c61837d5a7fc2120cd2b6c70dbdd with gcc (GCC) 8.1.0
kernel signature: 3ea018f14e8276e084722d98ed4ec94f2d390addd6d8896efc24fd6c87f877c0
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v5.0
testing commit 1c163f4c7b3f621efff9b28a47abb36f7378d783 with gcc (GCC) 8.1.0
kernel signature: bc320103b90a395e250fcc04f677f2ff58e98f4b8945745139de9e200db99bcc
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v4.20
testing commit 8fe28cb58bcb235034b64cbbb7550a8a43fd88be with gcc (GCC) 8.1.0
kernel signature: 3f05e2bb5b879181f4c848f2fdb008c73b08e6e988d64d8934e18b008c41ee82
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v4.19
testing commit 84df9525b0c27f3ebc2ebb1864fa62a97fdedb7d with gcc (GCC) 8.1.0
kernel signature: 40f6cbd5fb77708d5cb759767302fb9231bd825834f19ab45c4c9f6fabb9eec1
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v4.18
testing commit 94710cac0ef4ee177a63b5227664b38c95bbf703 with gcc (GCC) 8.1.0
kernel signature: c9578f90e989d798361291dd7ce0e4e9cb53ddb437ba761dccaac71fd5a93891
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v4.17
testing commit 29dcea88779c856c7dc92040a0c01233263101d4 with gcc (GCC) 8.1.0
kernel signature: 4f7156a1b920972071a2ac05a77eb72c9976d7cd7e52eb263c1856ad28dfca74
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v4.16
testing commit 0adb32858b0bddf4ada5f364a84ed60b196dbcda with gcc (GCC) 8.1.0
kernel signature: 41530071eec9674530cb13dc940be55b1b4512a9faa03baadeaea145cabeb3ee
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v4.15
testing commit d8a5b80568a9cb66810e75b182018e9edb68e8ff with gcc (GCC) 8.1.0
kernel signature: 9fdaea45517b75ffbaf9dda70295b550ab22a6001ec9359d1a1880c3614b0073
all runs: crashed: kernel panic: audit: backlog limit exceeded
testing release v4.14
testing commit bebc6082da0a9f5d47a1ea2edc099bf671058bd4 with gcc (GCC) 8.1.0
kernel signature: 8d5d803637e97687e955bfeb06df21b9b3da62ad3ad1df97304113eba2f071aa
run #0: OK
run #1: crashed: general protection fault in batadv_iv_ogm_queue_add
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
testing release v4.13
testing commit 569dbb88e80deb68974ef6fdd6a13edb9d686261 with gcc (GCC) 8.1.0
kernel signature: 3e715497453c32ab343927f85a956a0be2e65c8dec381126af0fb718dbe48255
all runs: OK
# git bisect start bebc6082da0a9f5d47a1ea2edc099bf671058bd4 569dbb88e80deb68974ef6fdd6a13edb9d686261
Bisecting: 7300 revisions left to test after this (roughly 13 steps)
[15d8ffc96464f6571ecf22043c45fad659f11bdd] Merge tag 'mmc-v4.14' of git://git.kernel.org/pub/scm/linux/kernel/git/ulfh/mmc
testing commit 15d8ffc96464f6571ecf22043c45fad659f11bdd with gcc (GCC) 8.1.0
kernel signature: 91ad92ef8e074591ef15ee27cb4c59441fa7cfc61dd854e41593dfd100094c8d
run #0: crashed: kernel panic: audit: backlog limit exceeded
run #1: crashed: kernel panic: audit: backlog limit exceeded
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 15d8ffc96464f6571ecf22043c45fad659f11bdd
Bisecting: 3676 revisions left to test after this (roughly 12 steps)
[bafb0762cb6a906eb4105cccfb3bcd90be7f40d2] Merge tag 'char-misc-4.14-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/char-misc
testing commit bafb0762cb6a906eb4105cccfb3bcd90be7f40d2 with gcc (GCC) 8.1.0
kernel signature: 2d8219597d3467f4c4e0598b23ff903dd5a519888de51c587085e9436cebe678
run #0: crashed: general protection fault in batadv_iv_ogm_queue_add
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad bafb0762cb6a906eb4105cccfb3bcd90be7f40d2
Bisecting: 1794 revisions left to test after this (roughly 11 steps)
[9657752cb5039c7498d4b27c4a75530f93b87d9b] Merge branch 'perf-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
testing commit 9657752cb5039c7498d4b27c4a75530f93b87d9b with gcc (GCC) 8.1.0
kernel signature: ac5901e43766d4c7ae76ca0e91340af2707cbf13f48b965899e4e2733ddf10b7
all runs: OK
# git bisect good 9657752cb5039c7498d4b27c4a75530f93b87d9b
Bisecting: 902 revisions left to test after this (roughly 10 steps)
[e63a94f12b5fc67b2b92a89d4058e7a9021e900e] Merge tag 'tty-4.14-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/tty
testing commit e63a94f12b5fc67b2b92a89d4058e7a9021e900e with gcc (GCC) 8.1.0
kernel signature: f3a2b1c015592d72ccb33174c05cdf771a61aeb53bfa9cd816a4eebc8238958d
all runs: OK
# git bisect good e63a94f12b5fc67b2b92a89d4058e7a9021e900e
Bisecting: 451 revisions left to test after this (roughly 9 steps)
[4a27e3e09d2f846905163eb967884a1efb8e6462] Staging: greybus: Fix spelling error in comment
testing commit 4a27e3e09d2f846905163eb967884a1efb8e6462 with gcc (GCC) 8.1.0
kernel signature: 3e15838858f8ffd3006b819530365b7e28024936f84232e0efef9f24021db7ea
run #0: crashed: kernel panic: audit: backlog limit exceeded
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 4a27e3e09d2f846905163eb967884a1efb8e6462
Bisecting: 225 revisions left to test after this (roughly 8 steps)
[28471424d1ce1b0fecbe788b1e283f52992b91ef] staging: ccree: Fix alignment issues in ssi_request_mgr.c
testing commit 28471424d1ce1b0fecbe788b1e283f52992b91ef with gcc (GCC) 8.1.0
kernel signature: 8b3b89ec43f7f8f6cb01c8030e4fa2c20e4a5a24884a57ebc94c1534d49e3eb6
all runs: OK
# git bisect good 28471424d1ce1b0fecbe788b1e283f52992b91ef
Bisecting: 112 revisions left to test after this (roughly 7 steps)
[a8e95f8a341097f64c5bc4a82af46050012fe43c] staging: most: hdm-dim2: fix error return code in dim2_probe()
testing commit a8e95f8a341097f64c5bc4a82af46050012fe43c with gcc (GCC) 8.1.0
kernel signature: b314225891720f9cba1bd123692b618f1537191808f726b35a7796435022ab46
all runs: OK
# git bisect good a8e95f8a341097f64c5bc4a82af46050012fe43c
Bisecting: 56 revisions left to test after this (roughly 6 steps)
[afd37dfa43caca1db72abe13d334d59c5967b4c1] staging: greybus: make device_type const
testing commit afd37dfa43caca1db72abe13d334d59c5967b4c1 with gcc (GCC) 8.1.0
kernel signature: da50d38d22a877c7efe59654137a3cbfddd5e77fdfdc204f57026b22ff0173ca
run #0: crashed: kernel panic: audit: backlog limit exceeded
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad afd37dfa43caca1db72abe13d334d59c5967b4c1
Bisecting: 27 revisions left to test after this (roughly 5 steps)
[0a60340f199136e7b74f4b279e3844abf2d45485] iio: magnetometer: ak8974: debug AMI306 calibration data
testing commit 0a60340f199136e7b74f4b279e3844abf2d45485 with gcc (GCC) 8.1.0
kernel signature: c69a6f73b49e11f99f85554e8256ceec2fe7af33c4696a83276c50f1bd52b1a5
all runs: OK
# git bisect good 0a60340f199136e7b74f4b279e3844abf2d45485
Bisecting: 13 revisions left to test after this (roughly 4 steps)
[87587016f614e96d873f883609a0099e820172e8] iio: adc: rockchip_saradc: explicitly request exclusive reset control
testing commit 87587016f614e96d873f883609a0099e820172e8 with gcc (GCC) 8.1.0
kernel signature: 066a07c25a15692e75df875fc8d6945138ac8540d4c815ccfaef6c0ee2647eb2
all runs: OK
# git bisect good 87587016f614e96d873f883609a0099e820172e8
Bisecting: 6 revisions left to test after this (roughly 3 steps)
[bab87505c3284ac3345463abb8af9e6774e7e9f8] staging: lustre: obd: make echo_lock_ops const
testing commit bab87505c3284ac3345463abb8af9e6774e7e9f8 with gcc (GCC) 8.1.0
kernel signature: c47db5f19fe2ff061c79a789c75e5cdd8ce1bac4eaefd60a07cd720a3a2315b8
all runs: OK
# git bisect good bab87505c3284ac3345463abb8af9e6774e7e9f8
Bisecting: 3 revisions left to test after this (roughly 2 steps)
[0c1b9970ddd4cc41002321c3877e7f91aacb896d] staging: lustre: lustre: Off by two in lmv_fid2path()
testing commit 0c1b9970ddd4cc41002321c3877e7f91aacb896d with gcc (GCC) 8.1.0
kernel signature: fe4aa3131f2fb1349c3e6dc99422ed44a1231e64ea0bfe6fb389062fec97b560
run #0: crashed: general protection fault in batadv_iv_ogm_queue_add
run #1: crashed: general protection fault in batadv_iv_ogm_queue_add
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
# git bisect bad 0c1b9970ddd4cc41002321c3877e7f91aacb896d
Bisecting: 0 revisions left to test after this (roughly 1 step)
[5e47adb90630c6c1b84623d85751618f704fb89d] Merge tag 'iio-for-4.14b' of git://git.kernel.org/pub/scm/linux/kernel/git/jic23/iio into staging-next
testing commit 5e47adb90630c6c1b84623d85751618f704fb89d with gcc (GCC) 8.1.0
kernel signature: 28601294412e949b6be2fe593ee6d509a00edb991f01f528a730cd933a62f891
all runs: OK
# git bisect good 5e47adb90630c6c1b84623d85751618f704fb89d
0c1b9970ddd4cc41002321c3877e7f91aacb896d is the first bad commit
commit 0c1b9970ddd4cc41002321c3877e7f91aacb896d
Author: Dan Carpenter <dan.carpenter@oracle.com>
Date:   Fri Jul 28 17:42:27 2017 +0300

    staging: lustre: lustre: Off by two in lmv_fid2path()
    
    We want to concatonate join string one, a '/' character, string two and
    then a NUL terminator.  The destination buffer holds ori_gf->gf_pathlen
    characters.  The strlen() function returns the number of characters not
    counting the NUL terminator.  So we should be adding two extra spaces,
    one for the foward slash and one for the NUL.
    
    Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
    Reviewed-by: John L. Hammond <john.hammond@intel.com>
    Reviewed-by: frank zago <fzago@cray.com>
    Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

 drivers/staging/lustre/lustre/lmv/lmv_obd.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
culprit signature: fe4aa3131f2fb1349c3e6dc99422ed44a1231e64ea0bfe6fb389062fec97b560
parent  signature: 28601294412e949b6be2fe593ee6d509a00edb991f01f528a730cd933a62f891
revisions tested: 28, total time: 6h13m33.497560597s (build: 2h36m23.203519734s, test: 3h34m52.654317383s)
first bad commit: 0c1b9970ddd4cc41002321c3877e7f91aacb896d staging: lustre: lustre: Off by two in lmv_fid2path()
cc: ["dan.carpenter@oracle.com" "fzago@cray.com" "gregkh@linuxfoundation.org" "john.hammond@intel.com"]
crash: general protection fault in batadv_iv_ogm_queue_add
audit: type=1305 audit(1582369371.185:88860): audit_failure=2 old=2 auid=4294967295 ses=4294967295 res=1
batman_adv: batadv0: Interface deactivated: batadv_slave_0
batman_adv: batadv0: Removing interface: batadv_slave_0
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
Modules linked in:
CPU: 1 PID: 103 Comm: kworker/u4:3 Not tainted 4.13.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
task: ffff88012ac28400 task.stack: ffff88012ae98000
RIP: 0010:batadv_iv_ogm_queue_add+0xdf/0x1110 net/batman-adv/bat_iv_ogm.c:774
RSP: 0018:ffff88012ae9ef80 EFLAGS: 00010246
RAX: 0000000000000000 RBX: ffff88012ae9f1a8 RCX: ffff88010ee53500
RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: ffff88012ae9f1d0 R08: ffff88010ee53500 R09: 0000000000000001
R10: ffffed00255d3e7a R11: ffff88012ac28400 R12: 000000000000003c
R13: ffff880119f78e40 R14: dffffc0000000000 R15: ffffed00255d3e7a
FS:  0000000000000000(0000) GS:ffff88012c100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000200006c0 CR3: 000000011a572000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 batadv_iv_ogm_schedule+0xcc0/0x10b0 net/batman-adv/bat_iv_ogm.c:978
 batadv_iv_send_outstanding_bat_ogm_packet+0x576/0xa30 net/batman-adv/bat_iv_ogm.c:1805
 process_one_work+0x9aa/0x1920 kernel/workqueue.c:2097
 worker_thread+0x215/0x1820 kernel/workqueue.c:2231
 kthread+0x338/0x400 kernel/kthread.c:231
 ret_from_fork+0x2a/0x40 arch/x86/entry/entry_64.S:425
Code: f2 c7 40 20 f2 f2 f2 f2 c7 40 24 00 f2 f2 f2 c7 40 28 f2 f2 f2 f2 c7 40 2c 00 f2 f2 f2 c7 40 30 f3 f3 f3 f3 48 89 f8 48 c1 e8 03 <0f> b6 04 10 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 bd 0c 00 
RIP: batadv_iv_ogm_queue_add+0xdf/0x1110 net/batman-adv/bat_iv_ogm.c:774 RSP: ffff88012ae9ef80
---[ end trace 2828822a476d85ee ]---