bisecting fixing commit since 2c746135a12e3f329171ed168ca0078d468f6d85
building syzkaller on 0d27f508b6b35d3b12b9fafebd40a1f36950c8f3
testing commit 2c746135a12e3f329171ed168ca0078d468f6d85 with gcc (GCC) 8.4.1 20210217
kernel signature: 7c1f9bc48b9f30ce02a5cbf6e55d9c959f93cf10a8ac1e88a8893f7c25f6594d
run #0: crashed: WARNING in ieee80211_ibss_csa_beacon
run #1: crashed: WARNING in ieee80211_ibss_csa_beacon
run #2: crashed: WARNING in ieee80211_ibss_csa_beacon
run #3: crashed: WARNING in ieee80211_ibss_csa_beacon
run #4: crashed: WARNING in ieee80211_ibss_csa_beacon
run #5: crashed: WARNING in ieee80211_ibss_csa_beacon
run #6: crashed: WARNING in ieee80211_ibss_csa_beacon
run #7: crashed: WARNING in ieee80211_ibss_csa_beacon
run #8: crashed: WARNING in ieee80211_ibss_csa_beacon
run #9: crashed: WARNING in ieee80211_ibss_csa_beacon
run #10: crashed: WARNING in ieee80211_ibss_csa_beacon
run #11: crashed: WARNING in ieee80211_ibss_csa_beacon
run #12: crashed: WARNING in ieee80211_ibss_csa_beacon
run #13: crashed: WARNING in ieee80211_ibss_csa_beacon
run #14: OK
run #15: OK
run #16: OK
run #17: OK
run #18: OK
run #19: OK
testing current HEAD 2034d6f0838e465dd8f120c4e946d8444b4bb5df
testing commit 2034d6f0838e465dd8f120c4e946d8444b4bb5df with gcc (GCC) 8.4.1 20210217
kernel signature: b3b848d748f34c44682b33ef804030f3fc13f196ab07c6b02ce20150fc01d60e
run #0: crashed: WARNING in ieee80211_ibss_csa_beacon
run #1: crashed: WARNING in ieee80211_ibss_csa_beacon
run #2: crashed: WARNING in ieee80211_ibss_csa_beacon
run #3: crashed: WARNING in ieee80211_ibss_csa_beacon
run #4: crashed: WARNING in ieee80211_ibss_csa_beacon
run #5: crashed: WARNING in ieee80211_ibss_csa_beacon
run #6: OK
run #7: OK
run #8: OK
run #9: OK
revisions tested: 2, total time: 40m59.164559407s (build: 22m26.441464053s, test: 17m36.905450557s)
the crash still happens on HEAD
commit msg: Linux 4.19.184
crash: WARNING in ieee80211_ibss_csa_beacon
wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
------------[ cut here ]------------
WARNING: CPU: 1 PID: 7 at net/mac80211/ibss.c:506 ieee80211_ibss_csa_beacon.cold.13+0x1f/0x2b net/mac80211/ibss.c:506
Modules linked in:
CPU: 1 PID: 7 Comm: kworker/u4:0 Not tainted 4.19.184-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: phy15 ieee80211_csa_finalize_work
RIP: 0010:ieee80211_ibss_csa_beacon.cold.13+0x1f/0x2b net/mac80211/ibss.c:506
Code: 89 85 d0 fc ff ff e9 16 91 8e ff 48 c7 c7 a0 50 f6 88 e8 4a 11 e2 ff 0f 0b e9 20 9f 8e ff 48 c7 c7 a0 50 f6 88 e8 37 11 e2 ff <0f> 0b bb ea ff ff ff e9 1f a2 8e ff 48 c7 c7 a0 50 f6 88 e8 1f 11
RSP: 0018:ffff8881f527fc28 EFLAGS: 00010282
RAX: 0000000000000024 RBX: 0000000000000002 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffffffff88501ac0 RDI: ffffffff8bad9720
RBP: ffff8881f527fc80 R08: ffffed103eca4e99 R09: ffffed103eca4e98
R10: ffffed103eca4e98 R11: ffff8881f65274c7 R12: 0000000000000000
R13: ffff8881ef8ed530 R14: ffff8881ef8edaf8 R15: ffff8881ef8ed000
FS:  0000000000000000(0000) GS:ffff8881f6500000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00005650b218f1e8 CR3: 000000000986d006 CR4: 00000000001606e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 ieee80211_ibss_finish_csa+0x1aa/0x4c0 net/mac80211/ibss.c:565
 ieee80211_set_after_csa_beacon net/mac80211/cfg.c:2934 [inline]
 __ieee80211_csa_finalize+0x604/0xb10 net/mac80211/cfg.c:2990
 ieee80211_csa_finalize net/mac80211/cfg.c:3013 [inline]
 ieee80211_csa_finalize_work+0xfb/0x120 net/mac80211/cfg.c:3038
 process_one_work+0x7b9/0x15a0 kernel/workqueue.c:2152
 worker_thread+0x85/0xb60 kernel/workqueue.c:2295
 kthread+0x347/0x410 kernel/kthread.c:259
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415
irq event stamp: 1997772
hardirqs last  enabled at (1997771): [<ffffffff87a3e677>] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline]
hardirqs last  enabled at (1997771): [<ffffffff87a3e677>] _raw_spin_unlock_irq+0x27/0x90 kernel/locking/spinlock.c:192
hardirqs last disabled at (1997772): [<ffffffff81003500>] trace_hardirqs_off_thunk+0x1a/0x1c
softirqs last  enabled at (1997766): [<ffffffff87e0062d>] __do_softirq+0x62d/0x919 kernel/softirq.c:318
softirqs last disabled at (1997627): [<ffffffff81350def>] invoke_softirq kernel/softirq.c:372 [inline]
softirqs last disabled at (1997627): [<ffffffff81350def>] irq_exit+0x17f/0x1c0 kernel/softirq.c:412
---[ end trace c8a75a878dff9e9f ]---
wlan1: failed to finalize CSA, disconnecting