Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp1288425yba; Thu, 4 Apr 2019 07:55:49 -0700 (PDT) X-Google-Smtp-Source: APXvYqytIU0YcVcRjF/mkRy/pGdgl+7smqqM0m2Eludz7cemxsiRUyXNuz9WAuCQzDwRuEEk6irb X-Received: by 2002:a63:e402:: with SMTP id a2mr6457233pgi.268.1554389749411; Thu, 04 Apr 2019 07:55:49 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1554389749; cv=none; d=google.com; s=arc-20160816; b=qKdheTP85BAI6V/WGtV+FLZxbKPYdCOC1ZJTxJxfYckqrN8gWRCVL87BL9avGZmMzY YaboSo1WzlkQXx8Bmp0G2/6riAW4RssmWacesC48fBD7atRbNcroFJOK8VlR5lFslp1r LDjjkcm7zALVM2saS7ZnVHCPfoX6SGzs5L5q9knT/oK80s1Acz+dpIGBR7FHND1Bw7la n+VSAY7I4mxW4IoGuo8hrLLb3D/LeZT0pY7n2cE5cMK4v/hwdCfNrM4p+zj7Y49Y4bkP CuvMnnhopSoLhRdWZsvnNf6vOAWo9LCNZMHRwdQL10Tz2KY54quRv2QcpdDvp91TzWwT A2hg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=cn0LVmXIqoX0URP+txBTeThDDXFlJoR0qshlkcSUUNw=; b=CXSD7S4ycIKuoYwajhwzMX8JTFDYADwUGR+AHPb/z4m0O7Q+Qfmtgcg6YnPU/EWDRA l0r9o9Cj24PWvZM4dtNijFTzUZHtAGtHClYHFD7nOFy+WBfzQK8TnmEj0Fw2VZdf36dG dqP7TnKJ0bh317z1tzJazPGdiksjS+zC/HOwgf6ZayWHktLEoxC5NviOst6k7Y31XnUD fpyekhfL4UyEM0DEAwyOyznrGWEgQ/j6kyFgmgZOV0MwqkRdelZXaGRvOESGLbF6aLrR wAgxKTNdjU02qb0CewsiJ7orJSROP1iHKymEjj4fSIPnXa/SPrBub2DoZA2XGL2to7Wq ETfg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=SttzBUSj; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id e24si12060464pgh.403.2019.04.04.07.55.33; Thu, 04 Apr 2019 07:55:49 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=SttzBUSj; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729013AbfDDOy4 (ORCPT + 99 others); Thu, 4 Apr 2019 10:54:56 -0400 Received: from mail-vs1-f67.google.com ([209.85.217.67]:34643 "EHLO mail-vs1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1728710AbfDDOy4 (ORCPT ); Thu, 4 Apr 2019 10:54:56 -0400 Received: by mail-vs1-f67.google.com with SMTP id t78so1546699vsc.1 for ; Thu, 04 Apr 2019 07:54:55 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=cn0LVmXIqoX0URP+txBTeThDDXFlJoR0qshlkcSUUNw=; b=SttzBUSj1LZYzXGjPUg4o4D4OuUzYx+FuqZ+9NDi7VYMBq1d5mWLcoNf3n4a3Yb3/W E0v9J8CqqIdzYStCS3uayf/0U01PLYPc0xJ51V7OpBv+a7NV3+X+fNk+k3fDOBtGEP56 JZhDNOlgufduxo7Tu0Ot3WloztiegGGX8IHuzr3PF1sSgiawDT6fF8T3US2CYo01UQai MnIqx4/ANEi9SXNUyHW8IdBCKCHOWOSsYrXmn3Js9ADvi9oP5ynoLbsSXPJ/DmANySD8 +4jIxksEgXCeqOfLBaVP4LOD2wHO5B+HDLehsMLfOBm0Xalvu5TxSbgsOq5kxdEqvhJ3 jOsQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=cn0LVmXIqoX0URP+txBTeThDDXFlJoR0qshlkcSUUNw=; b=FVSLcTcq4L7HTyjm2+DTd/0kwkZbCGhJrQscEO4w+trnm95bvlFATdU/+efKlr/1vw P82J0Kk8Cor29SOSAROxEE9LUGSsnNXLiexidSQ2Dm8iXJnq2VWTis3rFaF5a4wLl22R ReyPUYZHPWwQKHJmMrOQQdD+MH1DdW7INIpVvmrWVgU7auqFypD4+4jSCSQnGD7p8tp6 de76IprP6RWz85iW4qZr9W0AFPjiSLiEqV9iMgvd8QGfccjLmpcGswbrj83ZanJSgldK pcqs3DYGQfDqh8+RCKOWg6hfTN+HPXL/81p0pDO7tC63AO2atPmORH0uBwqhmgfTa35f KFig== X-Gm-Message-State: APjAAAVH23iZiRJlkjnYgAj3+hIl3SDKDQOVQvFTz+00hdwK0JkxDlvo GxQYLxOFEBWlLkfHHyq3brpmobIfU2l70xrkoYh2nQ== X-Received: by 2002:a67:ba03:: with SMTP id l3mr4444189vsn.96.1554389694879; Thu, 04 Apr 2019 07:54:54 -0700 (PDT) MIME-Version: 1.0 References: <0000000000001c2b95057ad0935b@google.com> <000000000000462a4105848c8e12@google.com> In-Reply-To: From: Alexander Potapenko Date: Thu, 4 Apr 2019 16:54:43 +0200 Message-ID: Subject: Re: kernel BUG at arch/x86/mm/physaddr.c:LINE! (2) To: Hans Verkuil Cc: syzbot , David Miller , linux-can@vger.kernel.org, LKML , linux-media@vger.kernel.org, mchehab@kernel.org, mchehab@s-opensource.com, mkl@pengutronix.de, Networking , socketcan@hartkopp.net, syzkaller-bugs Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, Apr 4, 2019 at 4:51 PM Hans Verkuil wrote: > > On 4/4/19 4:47 PM, Alexander Potapenko wrote: > > On Wed, Mar 20, 2019 at 9:35 PM syzbot > > wrote: > >> > >> syzbot has bisected this bug to: > >> > >> commit 6d469a202ee73196d0df76025af80bd6a379e658 > >> Author: Mauro Carvalho Chehab > >> Date: Sun May 14 17:07:21 2017 +0000 > >> > >> Merge tag 'v4.12-rc1' into patchwork > >> > >> bisection log: https://syzkaller.appspot.com/x/bisect.txt?x=3D12639fd= 7200000 > >> start commit: 6d469a20 Merge tag 'v4.12-rc1' into patchwork > >> git tree: upstream > >> final crash: https://syzkaller.appspot.com/x/report.txt?x=3D15639fd= 7200000 > >> console output: https://syzkaller.appspot.com/x/log.txt?x=3D11639fd720= 0000 > >> kernel config: https://syzkaller.appspot.com/x/.config?x=3Dd86f243338= 80b605 > >> dashboard link: https://syzkaller.appspot.com/bug?extid=3D6c0effb5877f= 6b0344e2 > >> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=3D1312062b= 400000 > >> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=3D131bd09340= 0000 > >> > >> Reported-by: syzbot+6c0effb5877f6b0344e2@syzkaller.appspotmail.com > >> Fixes: 6d469a20 ("Merge tag 'v4.12-rc1' into patchwork") > >> > >> -- > >> You received this message because you are subscribed to the Google Gro= ups "syzkaller-bugs" group. > >> To unsubscribe from this group and stop receiving emails from it, send= an email to syzkaller-bugs+unsubscribe@googlegroups.com. > >> To view this discussion on the web visit https://groups.google.com/d/m= sgid/syzkaller-bugs/000000000000462a4105848c8e12%40google.com. > >> For more options, visit https://groups.google.com/d/optout. > > > > I believe this bug is caused by vivid_vid_cap_s_selection() calling > > kfree(dev->bitmap_cap). > > This makes little sense, as dev->bitmap_cap seems to be allocated > > using vzalloc(). > > > > Yup, that should be vfree. There was a similar problem with bitmap_out th= at > I fixed, but it looks I missed this one. Can you make a patch? Yes, I've almost hit the send button :) > Thanks, > > Hans --=20 Alexander Potapenko Software Engineer Google Germany GmbH Erika-Mann-Stra=C3=9Fe, 33 80636 M=C3=BCnchen Gesch=C3=A4ftsf=C3=BChrer: Paul Manicle, Halimah DeLaine Prado Registergericht und -nummer: Hamburg, HRB 86891 Sitz der Gesellschaft: Hamburg