bisecting cause commit starting from c74386d50fbaf4a54fd3fe560f1abc709c0cff4b building syzkaller on 8098ea0f3397d5db00e4852b1b29d0958f2189c6 testing commit c74386d50fbaf4a54fd3fe560f1abc709c0cff4b with gcc (GCC) 8.1.0 all runs: crashed: WARNING in j1939_sk_queue_activate_next testing release v5.3 testing commit 4d856f72c10ecb060868ed10ff1b1453943fc6c8 with gcc (GCC) 8.1.0 all runs: OK # git bisect start c74386d50fbaf4a54fd3fe560f1abc709c0cff4b 4d856f72c10ecb060868ed10ff1b1453943fc6c8 Bisecting: 7798 revisions left to test after this (roughly 13 steps) [e3a008ac1213d99f5f1210adc9d2a1f60da10c3b] Merge tag 'devicetree-for-5.4' of git://git.kernel.org/pub/scm/linux/kernel/git/robh/linux testing commit e3a008ac1213d99f5f1210adc9d2a1f60da10c3b with gcc (GCC) 8.1.0 all runs: crashed: WARNING in j1939_sk_queue_activate_next # git bisect bad e3a008ac1213d99f5f1210adc9d2a1f60da10c3b Bisecting: 3895 revisions left to test after this (roughly 12 steps) [fe38bd6862074c0a2b9be7f31f043aaa70b2af5f] Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm testing commit fe38bd6862074c0a2b9be7f31f043aaa70b2af5f with gcc (GCC) 8.1.0 all runs: OK # git bisect good fe38bd6862074c0a2b9be7f31f043aaa70b2af5f Bisecting: 1948 revisions left to test after this (roughly 11 steps) [98ab76ef6b6d16f3fcb5e13ed19448bcc7de83d2] rtw88: report RX power for each antenna testing commit 98ab76ef6b6d16f3fcb5e13ed19448bcc7de83d2 with gcc (GCC) 8.1.0 all runs: crashed: WARNING in j1939_sk_queue_activate_next # git bisect bad 98ab76ef6b6d16f3fcb5e13ed19448bcc7de83d2 Bisecting: 973 revisions left to test after this (roughly 10 steps) [4f830a5af7b5b3614a03ef784cd2f4a83ceebf27] net: fec: use devm_platform_ioremap_resource() to simplify code testing commit 4f830a5af7b5b3614a03ef784cd2f4a83ceebf27 with gcc (GCC) 8.1.0 all runs: OK # git bisect good 4f830a5af7b5b3614a03ef784cd2f4a83ceebf27 Bisecting: 486 revisions left to test after this (roughly 9 steps) [9b1bcfcc6e068ab2106749bf8faffb8a7d73b976] iwlwifi: dbg_ini: remove periodic trigger testing commit 9b1bcfcc6e068ab2106749bf8faffb8a7d73b976 with gcc (GCC) 8.1.0 all runs: OK # git bisect good 9b1bcfcc6e068ab2106749bf8faffb8a7d73b976 Bisecting: 211 revisions left to test after this (roughly 8 steps) [1e46c09ec10049a9e366153b32e41cc557383fdb] Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next testing commit 1e46c09ec10049a9e366153b32e41cc557383fdb with gcc (GCC) 8.1.0 all runs: crashed: WARNING in j1939_sk_queue_activate_next # git bisect bad 1e46c09ec10049a9e366153b32e41cc557383fdb Bisecting: 137 revisions left to test after this (roughly 7 steps) [7d993c5f86aa308b00c2fd420fe5208da18125e2] gianfar: remove forward declarations testing commit 7d993c5f86aa308b00c2fd420fe5208da18125e2 with gcc (GCC) 8.1.0 all runs: crashed: WARNING in j1939_sk_queue_activate_next # git bisect bad 7d993c5f86aa308b00c2fd420fe5208da18125e2 Bisecting: 68 revisions left to test after this (roughly 6 steps) [aa3198819bea60f65f22cd771baf2ff038f59df1] ionic: Add RSS support testing commit aa3198819bea60f65f22cd771baf2ff038f59df1 with gcc (GCC) 8.1.0 all runs: OK # git bisect good aa3198819bea60f65f22cd771baf2ff038f59df1 Bisecting: 36 revisions left to test after this (roughly 5 steps) [8330f73fe9742f201f467639f8356cf58756fb9f] rocker: add missing init_net check in FIB notifier testing commit 8330f73fe9742f201f467639f8356cf58756fb9f with gcc (GCC) 8.1.0 all runs: OK # git bisect good 8330f73fe9742f201f467639f8356cf58756fb9f Bisecting: 18 revisions left to test after this (roughly 4 steps) [9868b5d44f3df9dd75247acd23dddff0a42f79be] can: introduce CAN_REQUIRED_SIZE macro testing commit 9868b5d44f3df9dd75247acd23dddff0a42f79be with gcc (GCC) 8.1.0 all runs: OK # git bisect good 9868b5d44f3df9dd75247acd23dddff0a42f79be Bisecting: 9 revisions left to test after this (roughly 3 steps) [4647e021193d638d3c87d1f1b9a5f7f7a48f36a3] net: stmmac: selftests: Add selftest for L3/L4 Filters testing commit 4647e021193d638d3c87d1f1b9a5f7f7a48f36a3 with gcc (GCC) 8.1.0 all runs: crashed: WARNING in j1939_sk_queue_activate_next # git bisect bad 4647e021193d638d3c87d1f1b9a5f7f7a48f36a3 Bisecting: 4 revisions left to test after this (roughly 2 steps) [44c40910b66f786d33ffd2682ef38750eebb567c] Merge tag 'linux-can-next-for-5.4-20190904' of git://git.kernel.org/pub/scm/linux/kernel/git/mkl/linux-can-next testing commit 44c40910b66f786d33ffd2682ef38750eebb567c with gcc (GCC) 8.1.0 all runs: crashed: WARNING in j1939_sk_queue_activate_next # git bisect bad 44c40910b66f786d33ffd2682ef38750eebb567c Bisecting: 1 revision left to test after this (roughly 1 step) [f5223e9eee651e005c0f6d6d078909087601b7e9] can: extend sockaddr_can to include j1939 members testing commit f5223e9eee651e005c0f6d6d078909087601b7e9 with gcc (GCC) 8.1.0 all runs: OK # git bisect good f5223e9eee651e005c0f6d6d078909087601b7e9 Bisecting: 0 revisions left to test after this (roughly 0 steps) [9d71dd0c70099914fcd063135da3c580865e924c] can: add support of SAE J1939 protocol testing commit 9d71dd0c70099914fcd063135da3c580865e924c with gcc (GCC) 8.1.0 all runs: crashed: WARNING in j1939_sk_queue_activate_next # git bisect bad 9d71dd0c70099914fcd063135da3c580865e924c 9d71dd0c70099914fcd063135da3c580865e924c is the first bad commit commit 9d71dd0c70099914fcd063135da3c580865e924c Author: The j1939 authors Date: Mon Oct 8 11:48:36 2018 +0200 can: add support of SAE J1939 protocol SAE J1939 is the vehicle bus recommended practice used for communication and diagnostics among vehicle components. Originating in the car and heavy-duty truck industry in the United States, it is now widely used in other parts of the world. J1939, ISO 11783 and NMEA 2000 all share the same high level protocol. SAE J1939 can be considered the replacement for the older SAE J1708 and SAE J1587 specifications. Acked-by: Oliver Hartkopp Signed-off-by: Bastian Stender Signed-off-by: Elenita Hinds Signed-off-by: kbuild test robot Signed-off-by: Kurt Van Dijck Signed-off-by: Maxime Jayat Signed-off-by: Robin van der Gracht Signed-off-by: Oleksij Rempel Signed-off-by: Marc Kleine-Budde :040000 040000 6438450435a8d8353573ce224b3dc9bcc05336fa 7305e82a35c355e46b2660329eb868aa551e2b4c M Documentation :100644 100644 a081c477d1d16934701a8f744f6a44e0d280b3f9 844f416437c427107d7410ab5ab972a202ebe86a M MAINTAINERS :040000 040000 dd56832348e76ffa1949ca007d838d21854a0bfa dfca2d178b96f019a0a7ae1ab81a813b2064f5d3 M include :040000 040000 93492ef857a6d33d4eafc56c27db9f1e31803033 356932da79a67691bcedc6e71faa591f7e5f7392 M net revisions tested: 16, total time: 3h26m12.116321845s (build: 1h33m10.585384752s, test: 1h48m39.063006066s) first bad commit: 9d71dd0c70099914fcd063135da3c580865e924c can: add support of SAE J1939 protocol cc: ["bst@pengutronix.de" "dev.kurt@vandijck-laurijssen.be" "ecathinds@gmail.com" "linux-can@vger.kernel.org" "lkp@intel.com" "maxime.jayat@mobile-devices.fr" "mkl@pengutronix.de" "o.rempel@pengutronix.de" "robin@protonic.nl" "socketcan@hartkopp.net"] crash: WARNING in j1939_sk_queue_activate_next vcan0: j1939_tp_rxtimer: 0x0000000070ea65d6: rx timeout, send abort vcan0: j1939_xtp_rx_abort_one: 0x0000000070ea65d6: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. WARNING: CPU: 0 PID: 9 at net/can/j1939/socket.c:182 j1939_sk_queue_activate_next_locked net/can/j1939/socket.c:163 [inline] WARNING: CPU: 0 PID: 9 at net/can/j1939/socket.c:182 j1939_sk_queue_activate_next+0x2a9/0x3e0 net/can/j1939/socket.c:206 Kernel panic - not syncing: panic_on_warn set ... CPU: 0 PID: 9 Comm: ksoftirqd/0 Not tainted 5.3.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x113/0x167 lib/dump_stack.c:113 panic+0x223/0x4dc kernel/panic.c:219 __warn.cold.10+0x1b/0x37 kernel/panic.c:576 report_bug+0x1a4/0x200 lib/bug.c:186 fixup_bug arch/x86/kernel/traps.c:179 [inline] do_error_trap+0x11b/0x200 arch/x86/kernel/traps.c:272 do_invalid_op+0x36/0x40 arch/x86/kernel/traps.c:291 invalid_op+0x23/0x30 arch/x86/entry/entry_64.S:1028 RIP: 0010:j1939_sk_queue_activate_next_locked net/can/j1939/socket.c:182 [inline] RIP: 0010:j1939_sk_queue_activate_next+0x2a9/0x3e0 net/can/j1939/socket.c:206 Code: 0b e9 2f fe ff ff e8 f6 66 03 fd c1 e8 1c 83 c0 0a 89 45 d4 eb b4 e8 56 a5 9c fb e9 07 fe ff ff e8 4c a5 9c fb e9 89 fe ff ff <0f> 0b 48 8d be b0 00 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 20 84 RSP: 0018:ffff8880a98bf910 EFLAGS: 00010286 RAX: 00000000fffffff5 RBX: ffff888097d4a6d0 RCX: 0000000000000002 RDX: 1ffffffff10653d4 RSI: ffff888090edbd58 RDI: ffffffff88329ea0 RBP: ffff8880a98bf968 R08: 0000000000000002 R09: fffffbfff134773b R10: fffffbfff134773a R11: ffffffff89a3b9d7 R12: dffffc0000000000 R13: ffff888090edbd40 R14: ffff888097d4a1c0 R15: ffff888097d4a708 j1939_session_deactivate_activate_next+0x1c/0x20 net/can/j1939/transport.c:1042 j1939_xtp_rx_abort_one.cold.18+0x1df/0x33d net/can/j1939/transport.c:1258 j1939_xtp_rx_abort net/can/j1939/transport.c:1269 [inline] j1939_tp_cmd_recv net/can/j1939/transport.c:1940 [inline] j1939_tp_recv+0x4a9/0x780 net/can/j1939/transport.c:1973 j1939_can_recv+0x425/0x590 net/can/j1939/main.c:100 deliver net/can/af_can.c:568 [inline] can_rcv_filter+0x4ff/0x840 net/can/af_can.c:602 can_receive+0x290/0x470 net/can/af_can.c:659 can_rcv+0xd9/0x160 net/can/af_can.c:685 __netif_receive_skb_one_core+0xe9/0x170 net/core/dev.c:5006 __netif_receive_skb+0x1f/0x1b0 net/core/dev.c:5120 process_backlog+0x1cb/0x670 net/core/dev.c:5951 napi_poll net/core/dev.c:6388 [inline] net_rx_action+0x458/0xe40 net/core/dev.c:6456 __do_softirq+0x262/0x9a8 kernel/softirq.c:292 run_ksoftirqd+0x94/0x100 kernel/softirq.c:603 smpboot_thread_fn+0x55f/0x8b0 kernel/smpboot.c:165 kthread+0x331/0x3f0 kernel/kthread.c:255 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:352 Kernel Offset: disabled Rebooting in 86400 seconds..