bisecting fixing commit since 9b15f7fae677336e04b9e026ff91854e43165455
building syzkaller on 5d7b90f1af2e3bf33992b75e7fcf0bab6bf49bd6
testing commit 9b15f7fae677336e04b9e026ff91854e43165455 with gcc (GCC) 8.4.1 20210217
kernel signature: 701aaf36d05d9badc32535fd200382924bd84921fbd7c171f4366d801af28b1a
run #0: crashed: WARNING in process_one_work
run #1: crashed: WARNING in corrupted
run #2: crashed: WARNING in corrupted
run #3: crashed: WARNING in corrupted
run #4: crashed: WARNING in corrupted
run #5: crashed: WARNING in process_one_work
run #6: crashed: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
run #7: crashed: WARNING in process_one_work
run #8: crashed: WARNING in corrupted
run #9: crashed: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
run #10: crashed: WARNING in corrupted
run #11: crashed: WARNING in corrupted
run #12: crashed: WARNING in process_one_work
run #13: crashed: WARNING in corrupted
run #14: crashed: WARNING in corrupted
run #15: crashed: WARNING in corrupted
run #16: crashed: WARNING in corrupted
run #17: crashed: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
run #18: crashed: WARNING in process_one_work
run #19: crashed: WARNING in corrupted
testing current HEAD 2d19be4653f5e74ed95560b69f94eb6791d49af3
testing commit 2d19be4653f5e74ed95560b69f94eb6791d49af3 with gcc (GCC) 8.4.1 20210217
kernel signature: 8e2f627038eb939a05465d33a0e227fddf0d48c5feecefce734849bd6459b935
run #0: crashed: WARNING in corrupted
run #1: crashed: WARNING in process_one_work
run #2: crashed: WARNING in process_one_work
run #3: crashed: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
run #4: crashed: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
run #5: crashed: WARNING in process_one_work
run #6: crashed: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
run #7: crashed: WARNING in corrupted
run #8: crashed: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
run #9: crashed: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
revisions tested: 2, total time: 25m8.865427207s (build: 16m56.092190272s, test: 6m44.405813535s)
the crash still happens on HEAD
commit msg: Linux 4.19.177
crash: WARNING in batadv_iv_send_outstanding_bat_ogm_packet
RBP: 000000000000002e R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000053bf00
R13: 00007fb8a7e916bc R14: 0000000000000006 R15: 0000000000000001
------------[ cut here ]------------
WARNING: CPU: 0 PID: 2472 at net/batman-adv/bat_iv_ogm.c:597 batadv_iv_ogm_emit net/batman-adv/bat_iv_ogm.c:597 [inline]
WARNING: CPU: 0 PID: 2472 at net/batman-adv/bat_iv_ogm.c:597 batadv_iv_send_outstanding_bat_ogm_packet.cold.25+0x30/0x37 net/batman-adv/bat_iv_ogm.c:1857
Kernel panic - not syncing: panic_on_warn set ...

CPU: 0 PID: 2472 Comm: kworker/u4:4 Not tainted 4.19.177-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x123/0x171 lib/dump_stack.c:118
 panic+0x1cd/0x375 kernel/panic.c:186
 __warn.cold.8+0x1b/0x36 kernel/panic.c:541
 report_bug+0x1a1/0x200 lib/bug.c:186
 fixup_bug arch/x86/kernel/traps.c:178 [inline]
 fixup_bug arch/x86/kernel/traps.c:173 [inline]
 do_error_trap+0x200/0x350 arch/x86/kernel/traps.c:296
 do_invalid_op+0x1b/0x20 arch/x86/kernel/traps.c:316
 invalid_op+0x14/0x20 arch/x86/entry/entry_64.S:1038
RIP: 0010:batadv_iv_ogm_emit net/batman-adv/bat_iv_ogm.c:597 [inline]
RIP: 0010:batadv_iv_send_outstanding_bat_ogm_packet.cold.25+0x30/0x37 net/batman-adv/bat_iv_ogm.c:1857
Code: 87 e8 8b 72 ea ff 0f 0b e9 a3 65 cd ff 48 c7 c7 20 61 d9 87 e8 78 72 ea ff e9 92 65 cd ff 48 c7 c7 e0 5d d9 87 e8 67 72 ea ff <0f> 0b e9 7f 65 cd ff 48 c7 c7 e0 5d d9 87 e8 54 72 ea ff 0f 0b 4c
RSP: 0018:ffff8881e9cefce0 EFLAGS: 00010282
RAX: 0000000000000024 RBX: ffff8881de26b348 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffffffff87679f20 RDI: ffffffff8a1899a0
RBP: ffff8881e9cefd58 R08: ffffed103ed05079 R09: ffffed103ed05078
R10: ffffed103ed05078 R11: ffff8881f68283c7 R12: ffff8881d87ec340
R13: ffff8881de26b3e0 R14: ffff8881de26b300 R15: ffff8881ede71b00
 process_one_work+0x830/0x1670 kernel/workqueue.c:2152
 worker_thread+0x85/0xb60 kernel/workqueue.c:2295
 kthread+0x347/0x410 kernel/kthread.c:259
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415
Kernel Offset: disabled
Rebooting in 86400 seconds..