------------[ cut here ]------------
can-isotp: tx timer state 00000000 cfecho 00000000
WARNING: CPU: 0 PID: 0 at net/can/isotp.c:920 isotp_tx_timer_handler+0xc4/0x14c net/can/isotp.c:920
Modules linked in:
CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.1.0-rc8-syzkaller-00164-g4cee37b3a4e6 #0
Hardware name: linux,dummy-virt (DT)
pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : isotp_tx_timer_handler+0xc4/0x14c net/can/isotp.c:920
lr : isotp_tx_timer_handler+0xc4/0x14c net/can/isotp.c:920
sp : ffff800008003eb0
x29: ffff800008003eb0 x28: ffff00007fbb9200 x27: ffff00007fbb9240
x26: ffff8000096d0d64 x25: 0000000000000000 x24: 0000000000000001
x23: 0000000000000000 x22: 000004667f246c00 x21: ffff00007fbb9100
x20: faff00000a600000 x19: 0000000000000000 x18: 00000000fffffffe
x17: ffff800075918000 x16: ffff800008004000 x15: 0000000000000020
x14: ffff80000a2eda70 x13: 00000000000014dc x12: 00000000000006f4
x11: 3030303030303030 x10: ffff80000a39da70 x9 : 00000000ffffe000
x8 : ffff80000a2eda70 x7 : ffff80000a39da70 x6 : 0000000000000000
x5 : ffff00007fbb6a10 x4 : 0000000000000000 x3 : ffff800075918000
x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff80000a2d9a00
Call trace:
 isotp_tx_timer_handler+0xc4/0x14c net/can/isotp.c:920
 __run_hrtimer kernel/time/hrtimer.c:1685 [inline]
 __hrtimer_run_queues+0x140/0x1e0 kernel/time/hrtimer.c:1749
 hrtimer_run_softirq+0x6c/0xd0 kernel/time/hrtimer.c:1766
 _stext+0x124/0x2a4
 ____do_softirq+0x10/0x20 arch/arm64/kernel/irq.c:79
 call_on_irq_stack+0x2c/0x5c arch/arm64/kernel/entry.S:889
 do_softirq_own_stack+0x1c/0x30 arch/arm64/kernel/irq.c:84
 invoke_softirq kernel/softirq.c:452 [inline]
 __irq_exit_rcu+0xcc/0xf4 kernel/softirq.c:650
 irq_exit_rcu+0x10/0x20 kernel/softirq.c:662
 __el1_irq arch/arm64/kernel/entry-common.c:472 [inline]
 el1_interrupt+0x38/0x6c arch/arm64/kernel/entry-common.c:486
 el1h_64_irq_handler+0x18/0x2c arch/arm64/kernel/entry-common.c:491
 el1h_64_irq+0x64/0x68 arch/arm64/kernel/entry.S:577
 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline]
 arch_cpu_idle+0x18/0x2c arch/arm64/kernel/idle.c:45
 default_idle_call+0x30/0x6c kernel/sched/idle.c:109
 cpuidle_idle_call kernel/sched/idle.c:191 [inline]
 do_idle+0x244/0x2c0 kernel/sched/idle.c:303
 cpu_startup_entry+0x28/0x30 kernel/sched/idle.c:400
 kernel_init+0x0/0x12c init/main.c:729
 arch_post_acpi_subsys_init+0x0/0x18 init/main.c:890
 start_kernel+0x668/0x6a8 init/main.c:1145
 __primary_switched+0xb4/0xbc arch/arm64/kernel/head.S:468
---[ end trace 0000000000000000 ]---