bisecting fixing commit since 87335852c5d9ec629f80bb2257b9a9945962b719
building syzkaller on 2f1cec6277878744f2f5484a1833fb91903515f2
testing commit 87335852c5d9ec629f80bb2257b9a9945962b719 with gcc (GCC) 8.4.1 20210217
kernel signature: ee3bdbb2f18fe7e2e91ac6feea300561297a2a1a597789a70306d0b4c6de6482
all runs: crashed: general protection fault in ieee80211_subif_start_xmit
testing current HEAD 3242aa3a635c0958671ee1e4b0958dcc7c4e5c79
testing commit 3242aa3a635c0958671ee1e4b0958dcc7c4e5c79 with gcc (GCC) 8.4.1 20210217
kernel signature: d5a912d64d82a80835d9cf7435a2281214f70d0fee5b1288042f1e28a17355be
all runs: OK
# git bisect start 3242aa3a635c0958671ee1e4b0958dcc7c4e5c79 87335852c5d9ec629f80bb2257b9a9945962b719
Bisecting: 347 revisions left to test after this (roughly 9 steps)
[f8181d33515448cf8e2c80b1307775b0b857f8cd] ALSA: usb-audio: fix sync-ep altsetting sanity check

testing commit f8181d33515448cf8e2c80b1307775b0b857f8cd with gcc (GCC) 8.4.1 20210217
kernel signature: 43bc28667c007b5fb49971b313fa02a403d6918c6dd372da15d2cb482a5da4a5
all runs: crashed: general protection fault in ieee80211_subif_start_xmit
# git bisect good f8181d33515448cf8e2c80b1307775b0b857f8cd
Bisecting: 173 revisions left to test after this (roughly 8 steps)
[9264a6a6f8faf1bab83659754ebf5a18002c2c79] drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields

testing commit 9264a6a6f8faf1bab83659754ebf5a18002c2c79 with gcc (GCC) 8.4.1 20210217
kernel signature: c19fd70884f6ea29f2b6257a0187c1df1aea403eb2fdbe01078296cc75268a36
all runs: crashed: general protection fault in ieee80211_subif_start_xmit
# git bisect good 9264a6a6f8faf1bab83659754ebf5a18002c2c79
Bisecting: 86 revisions left to test after this (roughly 7 steps)
[cd796d942693a881c588f3f20fefc74b84c5e34b] USB: serial: cp210x: add new VID/PID for supporting Teraoka AD2000

testing commit cd796d942693a881c588f3f20fefc74b84c5e34b with gcc (GCC) 8.4.1 20210217
kernel signature: b3ec7e687253a80a7178619a34ab2ba089f7829d0fd65457ff72a1c8e491df84
all runs: OK
# git bisect bad cd796d942693a881c588f3f20fefc74b84c5e34b
Bisecting: 43 revisions left to test after this (roughly 6 steps)
[1c931eb816dfe6c9210d3476ba9750b6a553d6db] net: usb: qmi_wwan: added support for Thales Cinterion PLSx3 modem family

testing commit 1c931eb816dfe6c9210d3476ba9750b6a553d6db with gcc (GCC) 8.4.1 20210217
kernel signature: 5002a182a78fcb34f3c236a4a2b68a2ed1e7a8f8988b3ae096413047adb46ac7
all runs: crashed: general protection fault in ieee80211_subif_start_xmit
# git bisect good 1c931eb816dfe6c9210d3476ba9750b6a553d6db
Bisecting: 21 revisions left to test after this (roughly 5 steps)
[a49daeaa592c0d2cf7b378f6240ac69c7b019e1e] NFC: fix resource leak when target index is invalid

testing commit a49daeaa592c0d2cf7b378f6240ac69c7b019e1e with gcc (GCC) 8.4.1 20210217
kernel signature: 4b9d6bcd41e674a69fc725afaddfa3604aec01ac781d37271d329c37e6d388c0
all runs: OK
# git bisect bad a49daeaa592c0d2cf7b378f6240ac69c7b019e1e
Bisecting: 10 revisions left to test after this (roughly 4 steps)
[2e99e44b6b2cf3401fb84a1088405706340ac8dc] netfilter: nft_dynset: add timeout extension to template

testing commit 2e99e44b6b2cf3401fb84a1088405706340ac8dc with gcc (GCC) 8.4.1 20210217
kernel signature: 5c54edb797c53d6045b1f227a009f760a90997fbdcf88bef1d002def8a56e8f7
all runs: crashed: general protection fault in ieee80211_subif_start_xmit
# git bisect good 2e99e44b6b2cf3401fb84a1088405706340ac8dc
Bisecting: 5 revisions left to test after this (roughly 3 steps)
[d882652c1c6fc339c5fb9535005f70ee79f11859] mac80211: pause TX while changing interface type

testing commit d882652c1c6fc339c5fb9535005f70ee79f11859 with gcc (GCC) 8.4.1 20210217
kernel signature: 216d25212d5383b01d22a4ec4b309e01a736273f1bc17d22e776c309c75e89e1
all runs: OK
# git bisect bad d882652c1c6fc339c5fb9535005f70ee79f11859
Bisecting: 2 revisions left to test after this (roughly 1 step)
[8ef6c49a63057962a009338f9f00f9c8c53bc640] RDMA/cxgb4: Fix the reported max_recv_sge value

testing commit 8ef6c49a63057962a009338f9f00f9c8c53bc640 with gcc (GCC) 8.4.1 20210217
kernel signature: ef79f32e5342f8e4f7fb391adc8f70eb9c38bc1e917d96d8989bc1bcc549bf3d
all runs: crashed: general protection fault in ieee80211_subif_start_xmit
# git bisect good 8ef6c49a63057962a009338f9f00f9c8c53bc640
Bisecting: 0 revisions left to test after this (roughly 1 step)
[006015bdd3a465af54153ddf319d3ec0b67ac300] iwlwifi: pcie: reschedule in long-running memory reads

testing commit 006015bdd3a465af54153ddf319d3ec0b67ac300 with gcc (GCC) 8.4.1 20210217
kernel signature: ef79f32e5342f8e4f7fb391adc8f70eb9c38bc1e917d96d8989bc1bcc549bf3d
all runs: crashed: general protection fault in ieee80211_subif_start_xmit
# git bisect good 006015bdd3a465af54153ddf319d3ec0b67ac300
d882652c1c6fc339c5fb9535005f70ee79f11859 is the first bad commit
commit d882652c1c6fc339c5fb9535005f70ee79f11859
Author: Johannes Berg <johannes.berg@intel.com>
Date:   Fri Jan 22 17:11:16 2021 +0100

    mac80211: pause TX while changing interface type
    
    [ Upstream commit 054c9939b4800a91475d8d89905827bf9e1ad97a ]
    
    syzbot reported a crash that happened when changing the interface
    type around a lot, and while it might have been easy to fix just
    the symptom there, a little deeper investigation found that really
    the reason is that we allowed packets to be transmitted while in
    the middle of changing the interface type.
    
    Disallow TX by stopping the queues while changing the type.
    
    Fixes: 34d4bc4d41d2 ("mac80211: support runtime interface type changes")
    Reported-by: syzbot+d7a3b15976bf7de2238a@syzkaller.appspotmail.com
    Link: https://lore.kernel.org/r/20210122171115.b321f98f4d4f.I6997841933c17b093535c31d29355be3c0c39628@changeid
    Signed-off-by: Johannes Berg <johannes.berg@intel.com>
    Signed-off-by: Sasha Levin <sashal@kernel.org>

 net/mac80211/ieee80211_i.h | 1 +
 net/mac80211/iface.c       | 6 ++++++
 2 files changed, 7 insertions(+)

culprit signature: 216d25212d5383b01d22a4ec4b309e01a736273f1bc17d22e776c309c75e89e1
parent  signature: ef79f32e5342f8e4f7fb391adc8f70eb9c38bc1e917d96d8989bc1bcc549bf3d
revisions tested: 11, total time: 2h27m59.931716473s (build: 1h17m28.891526821s, test: 1h5m59.980157011s)
first good commit: d882652c1c6fc339c5fb9535005f70ee79f11859 mac80211: pause TX while changing interface type
recipients (to): ["davem@davemloft.net" "johannes.berg@intel.com" "johannes@sipsolutions.net" "linux-wireless@vger.kernel.org" "netdev@vger.kernel.org" "sashal@kernel.org"]
recipients (cc): ["linux-kernel@vger.kernel.org"]