bisecting fixing commit since 0fed55c248d98e70dd74f0942f64a139ba07f75d building syzkaller on acb5b744f96bcc435cd43a8f5af19aa36f7ae58c testing commit 0fed55c248d98e70dd74f0942f64a139ba07f75d with gcc (GCC) 8.1.0 kernel signature: 3283454ed60ab62b6d6dae11a46d8ac17602e362 run #0: crashed: INFO: rcu detected stall in br_handle_frame run #1: crashed: INFO: rcu detected stall in addrconf_dad_work run #2: crashed: INFO: rcu detected stall in addrconf_dad_work run #3: crashed: INFO: rcu detected stall in addrconf_dad_work run #4: crashed: INFO: rcu detected stall in addrconf_dad_work run #5: crashed: INFO: rcu detected stall in mld_ifc_timer_expire run #6: crashed: INFO: rcu detected stall in br_handle_frame run #7: crashed: INFO: rcu detected stall in addrconf_dad_work run #8: crashed: INFO: rcu detected stall in br_handle_frame run #9: crashed: INFO: rcu detected stall in addrconf_dad_work testing current HEAD fb683b5e3f53a73e761952735736180939a313df testing commit fb683b5e3f53a73e761952735736180939a313df with gcc (GCC) 8.1.0 kernel signature: 1856270602c88491bd2f7c19787dd180b6f3f3b5 all runs: OK # git bisect start fb683b5e3f53a73e761952735736180939a313df 0fed55c248d98e70dd74f0942f64a139ba07f75d Bisecting: 1357 revisions left to test after this (roughly 10 steps) [89aa9e2626f409ebef9153373cc66c07c635c59a] RDMA/mlx5: Clear old rate limit when closing QP testing commit 89aa9e2626f409ebef9153373cc66c07c635c59a with gcc (GCC) 8.1.0 kernel signature: 740f15853215c4f24f5570650966fbc632364680 all runs: OK # git bisect bad 89aa9e2626f409ebef9153373cc66c07c635c59a Bisecting: 678 revisions left to test after this (roughly 9 steps) [6aa455b0d0a05efc6ce4d523cc005234bae9748e] powerpc/rtas: use device model APIs and serialization during LPM testing commit 6aa455b0d0a05efc6ce4d523cc005234bae9748e with gcc (GCC) 8.1.0 kernel signature: d3c0bd212cdf1b4c1fcd1d18f2c5bf875ece7e65 all runs: OK # git bisect bad 6aa455b0d0a05efc6ce4d523cc005234bae9748e Bisecting: 338 revisions left to test after this (roughly 8 steps) [55ed0ad50201c8ee196d6c423e94eadec8a76007] Kconfig: Fix the reference to the IDT77105 Phy driver in the description of ATM_NICSTAR_USE_IDT77105 testing commit 55ed0ad50201c8ee196d6c423e94eadec8a76007 with gcc (GCC) 8.1.0 kernel signature: 1a4f69c5dcc66706434d034af60b1ddeabe134ed all runs: OK # git bisect bad 55ed0ad50201c8ee196d6c423e94eadec8a76007 Bisecting: 169 revisions left to test after this (roughly 7 steps) [3cfce8b77aad06fbd2e43b3ae847ad8bd78334b0] usb: typec: tcpm: Try PD-2.0 if sink does not respond to 3.0 source-caps testing commit 3cfce8b77aad06fbd2e43b3ae847ad8bd78334b0 with gcc (GCC) 8.1.0 kernel signature: 572c2181e8cf88729bcfd6d4883e54a1e1b69457 run #0: crashed: INFO: rcu detected stall in mld_ifc_timer_expire run #1: crashed: INFO: rcu detected stall in addrconf_dad_work run #2: crashed: INFO: rcu detected stall in addrconf_dad_work run #3: crashed: INFO: rcu detected stall in addrconf_dad_work run #4: crashed: INFO: rcu detected stall in br_handle_frame run #5: crashed: INFO: rcu detected stall in mld_dad_timer_expire run #6: crashed: INFO: rcu detected stall in br_handle_frame run #7: crashed: INFO: rcu detected stall in br_handle_frame run #8: crashed: INFO: rcu detected stall in addrconf_dad_work run #9: crashed: INFO: rcu detected stall in addrconf_dad_work # git bisect good 3cfce8b77aad06fbd2e43b3ae847ad8bd78334b0 Bisecting: 84 revisions left to test after this (roughly 6 steps) [b26f489245b3cf0c06d09a10a8cbdd426af94df6] ixgbe: Fix secpath usage for IPsec TX offload. testing commit b26f489245b3cf0c06d09a10a8cbdd426af94df6 with gcc (GCC) 8.1.0 kernel signature: 2f77751420cb4d0c65ec9a539d0b8aba9c548c9c run #0: crashed: INFO: rcu detected stall in addrconf_dad_work run #1: crashed: INFO: rcu detected stall in addrconf_dad_work run #2: crashed: INFO: rcu detected stall in addrconf_dad_work run #3: crashed: INFO: rcu detected stall in addrconf_dad_work run #4: crashed: INFO: rcu detected stall in br_handle_frame run #5: crashed: INFO: rcu detected stall in addrconf_dad_work run #6: crashed: INFO: rcu detected stall in br_handle_frame run #7: crashed: INFO: rcu detected stall in addrconf_dad_work run #8: crashed: INFO: rcu detected stall in br_handle_frame run #9: crashed: INFO: rcu detected stall in mld_ifc_timer_expire # git bisect good b26f489245b3cf0c06d09a10a8cbdd426af94df6 Bisecting: 42 revisions left to test after this (roughly 5 steps) [780f3aadee1e84aba46f7dec0f5bcda26b409a06] platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to critclk_systems DMI table testing commit 780f3aadee1e84aba46f7dec0f5bcda26b409a06 with gcc (GCC) 8.1.0 kernel signature: ef8cd185892785961e6ddaa9bd0965afeb5cbf5a all runs: OK # git bisect bad 780f3aadee1e84aba46f7dec0f5bcda26b409a06 Bisecting: 20 revisions left to test after this (roughly 4 steps) [d9e8b4ba039766141014e20490d33178c96feb10] powerpc: Add barrier_nospec to raw_copy_in_user() testing commit d9e8b4ba039766141014e20490d33178c96feb10 with gcc (GCC) 8.1.0 kernel signature: 74f67ad7d8c726e66c35e588f5ce8de99bad4576 all runs: OK # git bisect bad d9e8b4ba039766141014e20490d33178c96feb10 Bisecting: 10 revisions left to test after this (roughly 3 steps) [0f4ceb25949371f23338f81b2207dda2302c59a4] tun: fix use-after-free when register netdev failed testing commit 0f4ceb25949371f23338f81b2207dda2302c59a4 with gcc (GCC) 8.1.0 kernel signature: 455ffab6771e10227647252827eb300daa93a1f0 all runs: OK # git bisect bad 0f4ceb25949371f23338f81b2207dda2302c59a4 Bisecting: 4 revisions left to test after this (roughly 2 steps) [a9e91767b921ee196ab693fa13a81b278f53ddac] sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero testing commit a9e91767b921ee196ab693fa13a81b278f53ddac with gcc (GCC) 8.1.0 kernel signature: d077d45042a4e8ff874e5b4167523ba4c97af9cc all runs: OK # git bisect bad a9e91767b921ee196ab693fa13a81b278f53ddac Bisecting: 2 revisions left to test after this (roughly 1 step) [821302dd0c51d29269ef73a595bdff294419e2cd] net: gso: Fix skb_segment splat when splitting gso_size mangled skb having linear-headed frag_list testing commit 821302dd0c51d29269ef73a595bdff294419e2cd with gcc (GCC) 8.1.0 kernel signature: f1ee4bd5be40694aa3eb0d1c5d38124bb4998769 run #0: crashed: INFO: rcu detected stall in br_handle_frame run #1: crashed: INFO: rcu detected stall in addrconf_dad_work run #2: crashed: INFO: rcu detected stall in addrconf_dad_work run #3: crashed: INFO: rcu detected stall in addrconf_dad_work run #4: crashed: INFO: rcu detected stall in addrconf_dad_work run #5: crashed: INFO: rcu detected stall in addrconf_dad_work run #6: crashed: INFO: rcu detected stall in br_handle_frame run #7: crashed: INFO: rcu detected stall in br_handle_frame run #8: crashed: BUG: soft lockup in br_handle_frame run #9: crashed: INFO: rcu detected stall in mld_dad_timer_expire # git bisect good 821302dd0c51d29269ef73a595bdff294419e2cd Bisecting: 0 revisions left to test after this (roughly 1 step) [a7f46e18ecfe7e169e9f5f6e4afeceb26527769a] net: sched: fix reordering issues testing commit a7f46e18ecfe7e169e9f5f6e4afeceb26527769a with gcc (GCC) 8.1.0 kernel signature: b416310e1a59fb97feb2fe386c2ee2369640ccec run #0: crashed: INFO: rcu detected stall in addrconf_dad_work run #1: crashed: INFO: rcu detected stall in br_handle_frame run #2: crashed: INFO: rcu detected stall in mld_ifc_timer_expire run #3: crashed: INFO: rcu detected stall in addrconf_dad_work run #4: crashed: INFO: rcu detected stall in br_handle_frame run #5: crashed: INFO: rcu detected stall in br_handle_frame run #6: crashed: INFO: rcu detected stall in addrconf_dad_work run #7: crashed: INFO: rcu detected stall in br_handle_frame run #8: crashed: INFO: rcu detected stall in netlink_sendmsg run #9: crashed: INFO: rcu detected stall in mld_dad_timer_expire # git bisect good a7f46e18ecfe7e169e9f5f6e4afeceb26527769a a9e91767b921ee196ab693fa13a81b278f53ddac is the first bad commit commit a9e91767b921ee196ab693fa13a81b278f53ddac Author: Cong Wang Date: Sun Sep 8 13:40:51 2019 -0700 sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero [ Upstream commit d4d6ec6dac07f263f06d847d6f732d6855522845 ] In case of TCA_HHF_NON_HH_WEIGHT or TCA_HHF_QUANTUM is zero, it would make no progress inside the loop in hhf_dequeue() thus kernel would get stuck. Fix this by checking this corner case in hhf_change(). Fixes: 10239edf86f1 ("net-qdisc-hhf: Heavy-Hitter Filter (HHF) qdisc") Reported-by: syzbot+bc6297c11f19ee807dc2@syzkaller.appspotmail.com Reported-by: syzbot+041483004a7f45f1f20a@syzkaller.appspotmail.com Reported-by: syzbot+55be5f513bed37fc4367@syzkaller.appspotmail.com Cc: Jamal Hadi Salim Cc: Jiri Pirko Cc: Terry Lam Signed-off-by: Cong Wang Signed-off-by: David S. Miller Signed-off-by: Greg Kroah-Hartman net/sched/sch_hhf.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) kernel signature: d077d45042a4e8ff874e5b4167523ba4c97af9cc previous signature: b416310e1a59fb97feb2fe386c2ee2369640ccec revisions tested: 13, total time: 3h42m39.4735561s (build: 1h46m28.9822805s, test: 1h55m0.319876171s) first good commit: a9e91767b921ee196ab693fa13a81b278f53ddac sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero cc: ["davem@davemloft.net" "gregkh@linuxfoundation.org" "jhs@mojatatu.com" "jiri@resnulli.us" "vtlam@google.com" "xiyou.wangcong@gmail.com"]