bisecting fixing commit since 414510bc00a5fc954d8340c170083f518d09aa55 building syzkaller on a60cb4cd840ce786236a00480e8bb1025e0c5fef testing commit 414510bc00a5fc954d8340c170083f518d09aa55 with gcc (GCC) 8.1.0 kernel signature: f014c2c20c9273b836e9e92e19219c0a9e7fc3b2 run #0: crashed: INFO: rcu detected stall in corrupted run #1: crashed: INFO: rcu detected stall in br_handle_frame run #2: crashed: INFO: rcu detected stall in addrconf_dad_work run #3: crashed: INFO: rcu detected stall in corrupted run #4: crashed: INFO: rcu detected stall in corrupted run #5: crashed: INFO: rcu detected stall in corrupted run #6: crashed: INFO: rcu detected stall in corrupted run #7: crashed: INFO: rcu detected stall in mld_dad_timer_expire run #8: crashed: INFO: rcu detected stall in corrupted run #9: crashed: INFO: rcu detected stall in corrupted testing current HEAD a844dc4c544291470aa69edbe2434b040794e269 testing commit a844dc4c544291470aa69edbe2434b040794e269 with gcc (GCC) 8.1.0 kernel signature: e9b214803dc725ee01826ce175f0d5d1971b11d0 all runs: OK # git bisect start a844dc4c544291470aa69edbe2434b040794e269 414510bc00a5fc954d8340c170083f518d09aa55 Bisecting: 878 revisions left to test after this (roughly 10 steps) [a0128f369072548e4f3a0e9862a268fedf32c618] ASoC: tlv320dac31xx: mark expected switch fall-through testing commit a0128f369072548e4f3a0e9862a268fedf32c618 with gcc (GCC) 8.1.0 kernel signature: 2213680285189ee9459b05839562e7fc76a8fe17 all runs: OK # git bisect bad a0128f369072548e4f3a0e9862a268fedf32c618 Bisecting: 439 revisions left to test after this (roughly 9 steps) [8f25db0a2e89f529beccdd7c13dc70d6857e5dbe] timer: Read jiffies once when forwarding base clk testing commit 8f25db0a2e89f529beccdd7c13dc70d6857e5dbe with gcc (GCC) 8.1.0 kernel signature: 0ce3c420a74712c160e5c2e480abea6f0465ff44 all runs: OK # git bisect bad 8f25db0a2e89f529beccdd7c13dc70d6857e5dbe Bisecting: 219 revisions left to test after this (roughly 8 steps) [b6a2d6c11272b3cf5d2d902bb9aaf7558560a5eb] nfc: enforce CAP_NET_RAW for raw sockets testing commit b6a2d6c11272b3cf5d2d902bb9aaf7558560a5eb with gcc (GCC) 8.1.0 kernel signature: 2d4258cbb682ab0d122bff5e7cb40e720d6c5ff6 all runs: OK # git bisect bad b6a2d6c11272b3cf5d2d902bb9aaf7558560a5eb Bisecting: 109 revisions left to test after this (roughly 7 steps) [551649e587e7ce4682cd2a60a20bc8aafa1c9103] Input: elan_i2c - remove Lenovo Legion Y7000 PnpID testing commit 551649e587e7ce4682cd2a60a20bc8aafa1c9103 with gcc (GCC) 8.1.0 kernel signature: 01ceb186e9a918bbb1a0b4a31fbbbd2d04521133 all runs: OK # git bisect bad 551649e587e7ce4682cd2a60a20bc8aafa1c9103 Bisecting: 54 revisions left to test after this (roughly 6 steps) [dd17277c2483db588c470df406f63059f3975432] hv_sock: Fix hang when a connection is closed testing commit dd17277c2483db588c470df406f63059f3975432 with gcc (GCC) 8.1.0 kernel signature: 1b03d4c67e3ff0cfc97f4d004d2b79bae30f800a run #0: crashed: INFO: rcu detected stall in corrupted run #1: crashed: INFO: rcu detected stall in corrupted run #2: crashed: INFO: rcu detected stall in corrupted run #3: crashed: INFO: rcu detected stall in corrupted run #4: crashed: INFO: rcu detected stall in br_handle_frame run #5: crashed: INFO: rcu detected stall in br_handle_frame run #6: crashed: INFO: rcu detected stall in addrconf_dad_work run #7: crashed: INFO: rcu detected stall in mld_dad_timer_expire run #8: crashed: INFO: rcu detected stall in mld_dad_timer_expire run #9: crashed: INFO: rcu detected stall in br_handle_frame # git bisect good dd17277c2483db588c470df406f63059f3975432 Bisecting: 27 revisions left to test after this (roughly 5 steps) [4a8683c33a1188dee924f75366211ccafc50703a] Btrfs: fix assertion failure during fsync and use of stale transaction testing commit 4a8683c33a1188dee924f75366211ccafc50703a with gcc (GCC) 8.1.0 kernel signature: 3512afbcf02e77eb69441e251cc22c1ee3bec71f all runs: OK # git bisect bad 4a8683c33a1188dee924f75366211ccafc50703a Bisecting: 13 revisions left to test after this (roughly 4 steps) [55fb612bef7fd237fb70068e2b6ff1cd1543a8ef] net: gso: Fix skb_segment splat when splitting gso_size mangled skb having linear-headed frag_list testing commit 55fb612bef7fd237fb70068e2b6ff1cd1543a8ef with gcc (GCC) 8.1.0 kernel signature: 317954167b03304d7946691f750a0b70ce63c1a9 run #0: crashed: INFO: rcu detected stall in addrconf_dad_work run #1: crashed: INFO: rcu detected stall in br_handle_frame run #2: crashed: INFO: rcu detected stall in mld_ifc_timer_expire run #3: crashed: INFO: rcu detected stall in corrupted run #4: crashed: INFO: rcu detected stall in br_handle_frame run #5: crashed: INFO: rcu detected stall in addrconf_dad_work run #6: crashed: INFO: rcu detected stall in corrupted run #7: crashed: INFO: rcu detected stall in mld_dad_timer_expire run #8: crashed: INFO: rcu detected stall in br_handle_frame run #9: crashed: INFO: rcu detected stall in addrconf_rs_timer # git bisect good 55fb612bef7fd237fb70068e2b6ff1cd1543a8ef Bisecting: 6 revisions left to test after this (roughly 3 steps) [f37ed9bc10eca7e771ad3c14bfd04bdd29bcf37a] tun: fix use-after-free when register netdev failed testing commit f37ed9bc10eca7e771ad3c14bfd04bdd29bcf37a with gcc (GCC) 8.1.0 kernel signature: d747d16702cb35e6b6f834441f93c329c30bf8f2 all runs: OK # git bisect bad f37ed9bc10eca7e771ad3c14bfd04bdd29bcf37a Bisecting: 3 revisions left to test after this (roughly 2 steps) [e90daafad0dc80374bd204a404f030a5efa0b3ac] sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()' testing commit e90daafad0dc80374bd204a404f030a5efa0b3ac with gcc (GCC) 8.1.0 kernel signature: 26bbdfd434d8365178a9e718f046f0a6c377403f all runs: OK # git bisect bad e90daafad0dc80374bd204a404f030a5efa0b3ac Bisecting: 0 revisions left to test after this (roughly 1 step) [cc243e2427cef2a5dd7367cb0e0b846503350ffe] sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero testing commit cc243e2427cef2a5dd7367cb0e0b846503350ffe with gcc (GCC) 8.1.0 kernel signature: fd875b856e64338daa352f0660e9ca09399c80fc all runs: OK # git bisect bad cc243e2427cef2a5dd7367cb0e0b846503350ffe Bisecting: 0 revisions left to test after this (roughly 0 steps) [37a791c19a92a416ef00c0b5e4ee4d31d7094989] net: phylink: Fix flow control resolution testing commit 37a791c19a92a416ef00c0b5e4ee4d31d7094989 with gcc (GCC) 8.1.0 kernel signature: 3ac8a62beb4ef6ca8adc2d23bc84492e80c5c6c1 run #0: crashed: INFO: rcu detected stall in corrupted run #1: crashed: INFO: rcu detected stall in corrupted run #2: crashed: INFO: rcu detected stall in corrupted run #3: crashed: INFO: rcu detected stall in addrconf_dad_work run #4: crashed: INFO: rcu detected stall in addrconf_dad_work run #5: crashed: INFO: rcu detected stall in br_handle_frame run #6: crashed: INFO: rcu detected stall in br_handle_frame run #7: crashed: INFO: rcu detected stall in br_handle_frame run #8: crashed: INFO: rcu detected stall in br_handle_frame run #9: crashed: INFO: rcu detected stall in br_handle_frame # git bisect good 37a791c19a92a416ef00c0b5e4ee4d31d7094989 cc243e2427cef2a5dd7367cb0e0b846503350ffe is the first bad commit commit cc243e2427cef2a5dd7367cb0e0b846503350ffe Author: Cong Wang Date: Sun Sep 8 13:40:51 2019 -0700 sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero [ Upstream commit d4d6ec6dac07f263f06d847d6f732d6855522845 ] In case of TCA_HHF_NON_HH_WEIGHT or TCA_HHF_QUANTUM is zero, it would make no progress inside the loop in hhf_dequeue() thus kernel would get stuck. Fix this by checking this corner case in hhf_change(). Fixes: 10239edf86f1 ("net-qdisc-hhf: Heavy-Hitter Filter (HHF) qdisc") Reported-by: syzbot+bc6297c11f19ee807dc2@syzkaller.appspotmail.com Reported-by: syzbot+041483004a7f45f1f20a@syzkaller.appspotmail.com Reported-by: syzbot+55be5f513bed37fc4367@syzkaller.appspotmail.com Cc: Jamal Hadi Salim Cc: Jiri Pirko Cc: Terry Lam Signed-off-by: Cong Wang Signed-off-by: David S. Miller Signed-off-by: Greg Kroah-Hartman net/sched/sch_hhf.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) kernel signature: fd875b856e64338daa352f0660e9ca09399c80fc previous signature: 3ac8a62beb4ef6ca8adc2d23bc84492e80c5c6c1 revisions tested: 13, total time: 3h40m47.336147944s (build: 1h45m8.220814511s, test: 1h54m28.505851125s) first good commit: cc243e2427cef2a5dd7367cb0e0b846503350ffe sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero cc: ["davem@davemloft.net" "gregkh@linuxfoundation.org" "jhs@mojatatu.com" "jiri@resnulli.us" "vtlam@google.com" "xiyou.wangcong@gmail.com"]