bisecting cause commit starting from c85fb28b6f999db9928b841f63f1beeb3074eeca building syzkaller on 1880b4a9f394370a7d1fcb5c1cfca0fa1127b463 testing commit c85fb28b6f999db9928b841f63f1beeb3074eeca with gcc (GCC) 8.1.0 kernel signature: 154d67f607f385ef10301fb918f60a4d339fe95d86ade28d545a93dd609d8aa5 all runs: crashed: UBSAN: array-index-out-of-bounds in ieee80211_del_key testing release v5.8 testing commit bcf876870b95592b52519ed4aafcf9d95999bc9c with gcc (GCC) 8.1.0 kernel signature: dce5c35650765d2b370844aec7e9fdff7e7befdb98de566881389a0d29021373 all runs: crashed: UBSAN: array-index-out-of-bounds in ieee80211_del_key testing release v5.7 testing commit 3d77e6a8804abcc0504c904bd6e5cdf3a5cf8162 with gcc (GCC) 8.1.0 kernel signature: a2eb004f1e9d4d8ae56bd44bfb266d75bb7b1b8b6dbd1507e2cfde09ec8d6260 all runs: crashed: UBSAN: array-index-out-of-bounds in ieee80211_del_key testing release v5.6 testing commit 7111951b8d4973bda27ff663f2cf18b663d15b48 with gcc (GCC) 8.1.0 kernel signature: 9f8bd0ceb1c55a1d7553cda1e734b29230f41ca5f399653987ef46112c67ecf3 all runs: crashed: UBSAN: undefined-behaviour in ieee80211_del_key testing release v5.5 testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0 kernel signature: e112322fb03245e4b43d398e5999fe1d96ff5e5cb12810f3d9d7241dae036914 all runs: crashed: UBSAN: undefined-behaviour in ieee80211_del_key testing release v5.4 testing commit 219d54332a09e8d8741c1e1982f5eae56099de85 with gcc (GCC) 8.1.0 kernel signature: e0369313225c0ebb4eda09a154ef4bac69b6645a20056208d21fb06b3b461cde all runs: crashed: UBSAN: undefined-behaviour in ieee80211_del_key testing release v5.3 testing commit 4d856f72c10ecb060868ed10ff1b1453943fc6c8 with gcc (GCC) 8.1.0 kernel signature: 408980fe07729f4cfc4eb1d9e7d323478958bb74bfc21d68578cb6a53190e650 all runs: crashed: UBSAN: undefined-behaviour in ieee80211_del_key testing release v5.2 testing commit 0ecfebd2b52404ae0c54a878c872bb93363ada36 with gcc (GCC) 8.1.0 kernel signature: eaf84945c2677d78168c90dd9bf3a5b7eaf3bac6c89626311c340e5b6d2f6d7a all runs: crashed: general protection fault in ieee80211_key_replace testing release v5.1 testing commit e93c9c99a629c61837d5a7fc2120cd2b6c70dbdd with gcc (GCC) 8.1.0 kernel signature: d46aab1eab708e5799be86d03e56e49148d5601344c93f57a34711ec0c0bcede all runs: crashed: general protection fault in ieee80211_key_replace testing release v5.0 testing commit 1c163f4c7b3f621efff9b28a47abb36f7378d783 with gcc (GCC) 8.1.0 kernel signature: d603a254567981e973ed495629c6546fd223c7587935ef62b3069c07e2ac4ea7 run #0: OK run #1: OK run #2: OK run #3: OK run #4: OK run #5: OK run #6: OK run #7: OK run #8: OK run #9: crashed: general protection fault in batadv_iv_ogm_queue_add testing release v4.20 testing commit 8fe28cb58bcb235034b64cbbb7550a8a43fd88be with gcc (GCC) 8.1.0 kernel signature: ab39f54913a39bfc542f6d476a99ccb0941f5a732755668d6fc8c012709c26c0 all runs: OK # git bisect start 1c163f4c7b3f621efff9b28a47abb36f7378d783 8fe28cb58bcb235034b64cbbb7550a8a43fd88be Bisecting: 7011 revisions left to test after this (roughly 13 steps) [af7ddd8a627c62a835524b3f5b471edbbbcce025] Merge tag 'dma-mapping-4.21' of git://git.infradead.org/users/hch/dma-mapping testing commit af7ddd8a627c62a835524b3f5b471edbbbcce025 with gcc (GCC) 8.1.0 kernel signature: 95b1892af07f6365bef9a41a19e0641f8cc3df2ad0f55807cb4db6a0a32df100 all runs: OK # git bisect good af7ddd8a627c62a835524b3f5b471edbbbcce025 Bisecting: 3532 revisions left to test after this (roughly 12 steps) [c9bef4a651769927445900564781a9c99fdf6258] Merge tag 'pinctrl-v4.21-1' of git://git.kernel.org/pub/scm/linux/kernel/git/linusw/linux-pinctrl testing commit c9bef4a651769927445900564781a9c99fdf6258 with gcc (GCC) 8.1.0 kernel signature: 1f87a9946436d12f9e226d8c076a8bfa70a96ae6095be77bd2cfcd56bcbab8c4 all runs: OK # git bisect good c9bef4a651769927445900564781a9c99fdf6258 Bisecting: 1768 revisions left to test after this (roughly 11 steps) [4d5f6e0201bc568c0758ed3f77a06648ec9fd482] Merge tag 'scsi-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi testing commit 4d5f6e0201bc568c0758ed3f77a06648ec9fd482 with gcc (GCC) 8.1.0 kernel signature: c00b28fbc6b247cf64a22a618a212a5f7520f807ac610731061aef1222eadb00 all runs: OK # git bisect good 4d5f6e0201bc568c0758ed3f77a06648ec9fd482 Bisecting: 879 revisions left to test after this (roughly 10 steps) [680905431b9de8c7224b15b76b1826a1481cfeaf] Merge tag 'char-misc-5.0-rc6' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/char-misc testing commit 680905431b9de8c7224b15b76b1826a1481cfeaf with gcc (GCC) 8.1.0 kernel signature: bbfd5a72bddf820c359dcb13799de9ddfdb899f136f9b95a580755aca8769492 all runs: OK # git bisect good 680905431b9de8c7224b15b76b1826a1481cfeaf Bisecting: 440 revisions left to test after this (roughly 9 steps) [88fe73cb804abc3d209a06f6221a7108d89ff04f] Merge tag 'nfsd-5.0-2' of git://linux-nfs.org/~bfields/linux testing commit 88fe73cb804abc3d209a06f6221a7108d89ff04f with gcc (GCC) 8.1.0 kernel signature: a8c2c0105d896e0d54bbde477c9b7c19a961ff0aad9d9c168631a20c1c70a164 all runs: OK # git bisect good 88fe73cb804abc3d209a06f6221a7108d89ff04f Bisecting: 223 revisions left to test after this (roughly 8 steps) [8456e98e18f35f4d4376e8ff3110a3342f81ce9b] Merge branch 'parisc-5.0-1' of git://git.kernel.org/pub/scm/linux/kernel/git/deller/parisc-linux testing commit 8456e98e18f35f4d4376e8ff3110a3342f81ce9b with gcc (GCC) 8.1.0 kernel signature: 1ff55bb1d747ac701a1ee467ed6e3be467b2f233c2d1b3338f0f4d95bc3e0bbb all runs: OK # git bisect good 8456e98e18f35f4d4376e8ff3110a3342f81ce9b Bisecting: 113 revisions left to test after this (roughly 7 steps) [c4eb1e1852df60d61e04a6b580a0490460c9e31b] Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net testing commit c4eb1e1852df60d61e04a6b580a0490460c9e31b with gcc (GCC) 8.1.0 kernel signature: b6445372a4d194908be970c945d49b1796dfb24c30d1760f2f3b26a39b843a06 all runs: OK # git bisect good c4eb1e1852df60d61e04a6b580a0490460c9e31b Bisecting: 60 revisions left to test after this (roughly 6 steps) [07f12b26e21ab359261bf75cfcb424fdc7daeb6d] net: sit: fix memory leak in sit_init_net() testing commit 07f12b26e21ab359261bf75cfcb424fdc7daeb6d with gcc (GCC) 8.1.0 kernel signature: 469266c9783eb43b46089a80379e104558e924ac2b36e1637326de90f239da7f all runs: OK # git bisect good 07f12b26e21ab359261bf75cfcb424fdc7daeb6d Bisecting: 29 revisions left to test after this (roughly 5 steps) [6357c8127bea35c52085a0ae0f97e73de2419825] Merge tag 'drm-fixes-2019-03-01' of git://anongit.freedesktop.org/drm/drm testing commit 6357c8127bea35c52085a0ae0f97e73de2419825 with gcc (GCC) 8.1.0 kernel signature: f8d4fe1001f2fa0c2f64abf48c722928b9ddef9e8f81d8201cc4923726f16190 all runs: OK # git bisect good 6357c8127bea35c52085a0ae0f97e73de2419825 Bisecting: 10 revisions left to test after this (roughly 4 steps) [df49fd0ff83a0c20c5ce68a790a4f43601ecdc4a] Merge tag 'scsi-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi testing commit df49fd0ff83a0c20c5ce68a790a4f43601ecdc4a with gcc (GCC) 8.1.0 kernel signature: c35663f839a8082cbf0e4f4391e4c9be90e3bbe858f849b126b8968905af0adb all runs: OK # git bisect good df49fd0ff83a0c20c5ce68a790a4f43601ecdc4a Bisecting: 4 revisions left to test after this (roughly 3 steps) [6089e65618dca3fc0e7ccd7a6315de62ebf893a4] Merge tag 'qcom-fixes-for-5.0-rc8' of git://git.kernel.org/pub/scm/linux/kernel/git/agross/linux into arm/fixes testing commit 6089e65618dca3fc0e7ccd7a6315de62ebf893a4 with gcc (GCC) 8.1.0 kernel signature: 327a63a11b8d610ed38e2857606566e8f8313ff3db261799cf00bb598a8e2d47 all runs: OK # git bisect good 6089e65618dca3fc0e7ccd7a6315de62ebf893a4 Bisecting: 2 revisions left to test after this (roughly 1 step) [9cd05ad2910b55238e3c720c99ad896dc538301b] x86/hyper-v: Fix definition of HV_MAX_FLUSH_REP_COUNT testing commit 9cd05ad2910b55238e3c720c99ad896dc538301b with gcc (GCC) 8.1.0 kernel signature: 128cb51eba060f85220cffb1b006197c31fb7d6850b709209081e05cda0d4372 all runs: OK # git bisect good 9cd05ad2910b55238e3c720c99ad896dc538301b Bisecting: 0 revisions left to test after this (roughly 1 step) [c027c7cf1577bc2333449447c6e48c93126a56b0] Merge tag 'armsoc-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/soc/soc testing commit c027c7cf1577bc2333449447c6e48c93126a56b0 with gcc (GCC) 8.1.0 kernel signature: fdb4202ec5b3cc4fb47d5496d4273ebce0f442a4fc0a30cf2b1cffb069421773 all runs: OK # git bisect good c027c7cf1577bc2333449447c6e48c93126a56b0 1c163f4c7b3f621efff9b28a47abb36f7378d783 is the first bad commit commit 1c163f4c7b3f621efff9b28a47abb36f7378d783 Author: Linus Torvalds Date: Sun Mar 3 15:21:29 2019 -0800 Linux 5.0 Makefile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) culprit signature: d603a254567981e973ed495629c6546fd223c7587935ef62b3069c07e2ac4ea7 parent signature: fdb4202ec5b3cc4fb47d5496d4273ebce0f442a4fc0a30cf2b1cffb069421773 revisions tested: 24, total time: 5h47m0.386387637s (build: 2h32m50.446263763s, test: 3h10m45.521095143s) first bad commit: 1c163f4c7b3f621efff9b28a47abb36f7378d783 Linux 5.0 recipients (to): ["linux-kbuild@vger.kernel.org" "michal.lkml@markovi.net" "torvalds@linux-foundation.org" "yamada.masahiro@socionext.com"] recipients (cc): ["linux-kernel@vger.kernel.org"] crash: general protection fault in batadv_iv_ogm_queue_add bridge0: port 1(bridge_slave_0) entered disabled state batman_adv: batadv0: Interface deactivated: batadv_slave_0 batman_adv: batadv0: Removing interface: batadv_slave_0 kasan: CONFIG_KASAN_INLINE enabled kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: 883 Comm: kworker/u4:4 Not tainted 5.0.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet RIP: 0010:batadv_iv_ogm_queue_add+0x9b/0xe50 net/batman-adv/bat_iv_ogm.c:611 Code: 44 89 8d 64 ff ff ff c7 02 f1 f1 f1 f1 c7 42 04 04 f2 f2 f2 48 89 fa 65 48 8b 0c 25 28 00 00 00 48 89 4d d0 31 c9 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 99 0b 00 00 RSP: 0018:ffff8880a8147ac0 EFLAGS: 00010246 RAX: dffffc0000000000 RBX: ffff888096462340 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 RBP: ffff8880a8147bd8 R08: ffff888096ee6a00 R09: 0000000000000001 R10: ffffed1015028f8f R11: 0000000000000003 R12: ffff888096ee6a00 R13: dffffc0000000000 R14: ffffed1012ddcd4e R15: 000000000000003c FS: 0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000056335b05f1d8 CR3: 000000009671f000 CR4: 00000000001406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: batadv_iv_ogm_schedule+0xb47/0xe80 net/batman-adv/bat_iv_ogm.c:819 batadv_iv_send_outstanding_bat_ogm_packet+0x4a2/0x790 net/batman-adv/bat_iv_ogm.c:1681 process_one_work+0x7b9/0x15e0 kernel/workqueue.c:2173 worker_thread+0x85/0xb60 kernel/workqueue.c:2319 kthread+0x324/0x3e0 kernel/kthread.c:246 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:352 Modules linked in: ---[ end trace 03fb34c68640babf ]--- RIP: 0010:batadv_iv_ogm_queue_add+0x9b/0xe50 net/batman-adv/bat_iv_ogm.c:611 Code: 44 89 8d 64 ff ff ff c7 02 f1 f1 f1 f1 c7 42 04 04 f2 f2 f2 48 89 fa 65 48 8b 0c 25 28 00 00 00 48 89 4d d0 31 c9 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 99 0b 00 00 RSP: 0018:ffff8880a8147ac0 EFLAGS: 00010246 RAX: dffffc0000000000 RBX: ffff888096462340 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 RBP: ffff8880a8147bd8 R08: ffff888096ee6a00 R09: 0000000000000001 R10: ffffed1015028f8f R11: 0000000000000003 R12: ffff888096ee6a00 R13: dffffc0000000000 R14: ffffed1012ddcd4e R15: 000000000000003c FS: 0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000056335b05f1d8 CR3: 000000009671f000 CR4: 00000000001406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400