bisecting fixing commit since 1e43c377a79f9189fea8f2711b399d4e8b4e609b
building syzkaller on 6a81331a1d4c744da9204d02ec88d558f7eea9c9
testing commit 1e43c377a79f9189fea8f2711b399d4e8b4e609b with gcc (GCC) 10.2.1 20210217
kernel signature: 59743f37457fb8a6c1f1487c6f223e827ee3ad64b0b8087670f90649564015d8
run #0: crashed: WARNING in timer_wait_running
run #1: crashed: WARNING in timer_wait_running
run #2: crashed: WARNING in timer_wait_running
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
run #10: OK
run #11: OK
run #12: OK
run #13: OK
run #14: OK
run #15: OK
run #16: OK
run #17: OK
run #18: OK
run #19: OK
reproducer seems to be flaky
testing current HEAD d72cd4ad4174cfd2257c426ad51e4f53bcfde9c9
testing commit d72cd4ad4174cfd2257c426ad51e4f53bcfde9c9 with gcc (GCC) 10.2.1 20210217
kernel signature: 08a80689bb7d54a5f1e17e75997c07edd6ce9936127317eb2fef89ad40f5d5cf
run #0: crashed: WARNING in timer_wait_running
run #1: crashed: WARNING in timer_wait_running
run #2: crashed: WARNING in timer_wait_running
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: OK
run #10: OK
run #11: OK
run #12: OK
run #13: OK
run #14: OK
run #15: OK
run #16: OK
run #17: OK
run #18: OK
run #19: OK
Reproducer flagged being flaky
revisions tested: 2, total time: 38m38.303233164s (build: 14m17.166005685s, test: 23m40.199314667s)
the crash still happens on HEAD
commit msg: Merge tag 'scsi-misc' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi
crash: WARNING in timer_wait_running
------------[ cut here ]------------
WARNING: CPU: 0 PID: 15102 at kernel/time/posix-timers.c:849 rcu_read_lock include/linux/rcupdate.h:658 [inline]
WARNING: CPU: 0 PID: 15102 at kernel/time/posix-timers.c:849 timer_wait_running+0x18c/0x1c0 kernel/time/posix-timers.c:846
Modules linked in:
CPU: 0 PID: 15102 Comm: syz-executor994 Not tainted 5.12.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:timer_wait_running+0x18c/0x1c0 kernel/time/posix-timers.c:849
Code: 0f 85 35 ff ff ff 48 c7 c2 e0 15 ad 88 be 92 02 00 00 48 c7 c7 40 16 ad 88 c6 05 0d 89 e6 0a 01 e8 02 4c a6 06 e9 11 ff ff ff <0f> 0b e9 63 ff ff ff e8 c8 9c 46 00 e9 c0 fe ff ff 4c 89 e7 e8 cb
RSP: 0018:ffffc9000b237d68 EFLAGS: 00010246
RAX: 0000000000000000 RBX: ffffffff88ad2180 RCX: 0000000000000000
RDX: 1ffffffff115a43f RSI: ffffffff88aafac0 RDI: ffffffff88ad21f8
RBP: ffff88802259a000 R08: 0000000000000001 R09: 0000000000000001
R10: ffffed10044b3404 R11: 000000000000002b R12: ffffc9000b237dc0
R13: 0000000000000000 R14: ffffc9000b237dc0 R15: 1ffff92001646fb4
FS:  00007f6bc5a83700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000004cd1b8 CR3: 0000000029e56000 CR4: 0000000000350ef0
Call Trace:
 do_timer_settime.part.0+0xe7/0x190 kernel/time/posix-timers.c:929
 do_timer_settime include/linux/time64.h:93 [inline]
 __do_sys_timer_settime kernel/time/posix-timers.c:952 [inline]
 __se_sys_timer_settime kernel/time/posix-timers.c:938 [inline]
 __x64_sys_timer_settime+0x16c/0x240 kernel/time/posix-timers.c:938
 do_syscall_64+0x3a/0xb0 arch/x86/entry/common.c:47
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x450ce9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f6bc5a83208 EFLAGS: 00000246 ORIG_RAX: 00000000000000df
RAX: ffffffffffffffda RBX: 00000000004d5298 RCX: 0000000000450ce9
RDX: 000000002006b000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00000000004d5290 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004d529c
R13: 00007ffe33e216af R14: 00007f6bc5a83300 R15: 0000000000022000