bisecting cause commit starting from 63623fd44972d1ed2bfb6e0fb631dfcf547fd1e7
building syzkaller on c88c7b75a4e022b758f4b0f1bf3db8ebb2fb25e6
testing commit 63623fd44972d1ed2bfb6e0fb631dfcf547fd1e7 with gcc (GCC) 8.1.0
kernel signature: 97f05a548c419ecae984f3b14ea30c68bab9cc624b5ff680e1bc5f64a1679222
run #0: crashed: general protection fault in j1939_netdev_start
run #1: crashed: general protection fault in j1939_netdev_start
run #2: crashed: general protection fault in j1939_netdev_start
run #3: crashed: general protection fault in j1939_netdev_start
run #4: crashed: general protection fault in j1939_netdev_start
run #5: crashed: general protection fault in j1939_netdev_start
run #6: crashed: general protection fault in j1939_netdev_start
run #7: crashed: general protection fault in j1939_netdev_start
run #8: crashed: general protection fault in j1939_netdev_start
run #9: boot failed: can't ssh into the instance
testing release v5.5
testing commit d5226fa6dbae0569ee43ecfc08bdcd6770fc4755 with gcc (GCC) 8.1.0
kernel signature: afd0b7ec3789b1e7adec8e82a1b7bdef23a15b5f4f4866c647ee94876c889549
all runs: crashed: general protection fault in j1939_netdev_start
testing release v5.4
testing commit 219d54332a09e8d8741c1e1982f5eae56099de85 with gcc (GCC) 8.1.0
kernel signature: 797c8d2e167c3a74630e10643d53376d7d5d72362c279069a861c601c4aebda9
all runs: crashed: general protection fault in j1939_netdev_start
testing release v5.3
testing commit 4d856f72c10ecb060868ed10ff1b1453943fc6c8 with gcc (GCC) 8.1.0
kernel signature: 4c788feb138d40bb8d36d52bd05a3ba8b000ed1cd1462cedf3123ecd013ac3ac
all runs: OK
# git bisect start 219d54332a09e8d8741c1e1982f5eae56099de85 4d856f72c10ecb060868ed10ff1b1453943fc6c8
Bisecting: 7882 revisions left to test after this (roughly 13 steps)
[a9f8b38a071b468276a243ea3ea5a0636e848cf2] Merge tag 'for-linus-5.4-1' of git://github.com/cminyard/linux-ipmi
testing commit a9f8b38a071b468276a243ea3ea5a0636e848cf2 with gcc (GCC) 8.1.0
kernel signature: 079971c92f6f9f7e769486532033aaec4561ea97e9fbabfb55545cde7ab29eaf
all runs: crashed: general protection fault in j1939_priv_get_by_ndev_locked
# git bisect bad a9f8b38a071b468276a243ea3ea5a0636e848cf2
Bisecting: 3920 revisions left to test after this (roughly 12 steps)
[fe38bd6862074c0a2b9be7f31f043aaa70b2af5f] Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm
testing commit fe38bd6862074c0a2b9be7f31f043aaa70b2af5f with gcc (GCC) 8.1.0
kernel signature: 8942d02a3cf4962a2069da4abee44d7d1412c9e33b44fe1f2a860a930942117a
all runs: OK
# git bisect good fe38bd6862074c0a2b9be7f31f043aaa70b2af5f
Bisecting: 1962 revisions left to test after this (roughly 11 steps)
[069841ef8293697e951c34f9a45601b77fb541d7] Merge branch '40GbE' of git://git.kernel.org/pub/scm/linux/kernel/git/jkirsher/next-queue
testing commit 069841ef8293697e951c34f9a45601b77fb541d7 with gcc (GCC) 8.1.0
kernel signature: 572da5d24d4f8be593fe9627efcf5fa36ec43bad5dd65d9d85aaf2a952a55ecd
all runs: crashed: general protection fault in j1939_priv_get_by_ndev_locked
# git bisect bad 069841ef8293697e951c34f9a45601b77fb541d7
Bisecting: 978 revisions left to test after this (roughly 10 steps)
[f33bf6b00f20c9d26c42dfdaf8b83c2b0c1e6f71] net: stmmac: dwmac-meson: use devm_platform_ioremap_resource() to simplify code
testing commit f33bf6b00f20c9d26c42dfdaf8b83c2b0c1e6f71 with gcc (GCC) 8.1.0
kernel signature: 68015e9d200c799aca692411f444f06c9bc65bb009eaf2c642280427e1cdc050
all runs: OK
# git bisect good f33bf6b00f20c9d26c42dfdaf8b83c2b0c1e6f71
Bisecting: 487 revisions left to test after this (roughly 9 steps)
[67e974c3ae21c8ced474eae3ce9261a6f827e95c] Merge tag 'iwlwifi-next-for-kalle-2019-09-06' of git://git.kernel.org/pub/scm/linux/kernel/git/iwlwifi/iwlwifi-next
testing commit 67e974c3ae21c8ced474eae3ce9261a6f827e95c with gcc (GCC) 8.1.0
kernel signature: c4015d8eea105e801a217e8708a0785c03154f305ab3600a448ec86506b6176b
all runs: OK
# git bisect good 67e974c3ae21c8ced474eae3ce9261a6f827e95c
Bisecting: 212 revisions left to test after this (roughly 8 steps)
[1e46c09ec10049a9e366153b32e41cc557383fdb] Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next
testing commit 1e46c09ec10049a9e366153b32e41cc557383fdb with gcc (GCC) 8.1.0
kernel signature: ce124c21ee3883d1e1c16c45f8beb14a0efd1900c918270c9ef5ddb3ce87a1ef
all runs: crashed: general protection fault in j1939_priv_get_by_ndev_locked
# git bisect bad 1e46c09ec10049a9e366153b32e41cc557383fdb
Bisecting: 137 revisions left to test after this (roughly 7 steps)
[7d993c5f86aa308b00c2fd420fe5208da18125e2] gianfar: remove forward declarations
testing commit 7d993c5f86aa308b00c2fd420fe5208da18125e2 with gcc (GCC) 8.1.0
kernel signature: ef5d3726b94e7b5c2db26a7b6bf803cd156e1605adbfba4b886c14bbe4d288b5
all runs: crashed: general protection fault in j1939_priv_get_by_ndev_locked
# git bisect bad 7d993c5f86aa308b00c2fd420fe5208da18125e2
Bisecting: 68 revisions left to test after this (roughly 6 steps)
[aa3198819bea60f65f22cd771baf2ff038f59df1] ionic: Add RSS support
testing commit aa3198819bea60f65f22cd771baf2ff038f59df1 with gcc (GCC) 8.1.0
kernel signature: c78d48eef944d1255c1b49ff4adf49ebed6fff924ea605c4ad719a783a97ad2e
all runs: OK
# git bisect good aa3198819bea60f65f22cd771baf2ff038f59df1
Bisecting: 36 revisions left to test after this (roughly 5 steps)
[8330f73fe9742f201f467639f8356cf58756fb9f] rocker: add missing init_net check in FIB notifier
testing commit 8330f73fe9742f201f467639f8356cf58756fb9f with gcc (GCC) 8.1.0
kernel signature: 866b0dc3bb573530fb6a3a1cbcf7bc7c2fa86ec2f9e606f171d09de2cc195611
run #0: OK
run #1: OK
run #2: OK
run #3: OK
run #4: OK
run #5: OK
run #6: OK
run #7: OK
run #8: OK
run #9: crashed: general protection fault in batadv_iv_ogm_queue_add
# git bisect bad 8330f73fe9742f201f467639f8356cf58756fb9f
Bisecting: 16 revisions left to test after this (roughly 4 steps)
[13ecee77fa810b21beaf3023e921525c55f88b04] can: dev: can_dev_init(): convert from printk(KERN_INFO) to pr_info
testing commit 13ecee77fa810b21beaf3023e921525c55f88b04 with gcc (GCC) 8.1.0
kernel signature: f3f9c67d727e9f9708e7e9567539670a25edf1086bc58a73aa8ca210ad801284
all runs: OK
# git bisect good 13ecee77fa810b21beaf3023e921525c55f88b04
Bisecting: 8 revisions left to test after this (roughly 3 steps)
[be2fbc155fc8c0ff6e499753354d965cd9cf1bb0] net/tls: clean up the number of #ifdefs for CONFIG_TLS_DEVICE
testing commit be2fbc155fc8c0ff6e499753354d965cd9cf1bb0 with gcc (GCC) 8.1.0
kernel signature: d69bc0f4116c287f576fd3a291d5b640e63be48abaaa6c4f053650faf7cd485f
all runs: OK
# git bisect good be2fbc155fc8c0ff6e499753354d965cd9cf1bb0
Bisecting: 4 revisions left to test after this (roughly 2 steps)
[b06b39927249dad12e965d4f9914e58c83d87cf0] Merge tag 'linux-can-next-for-5.4-20190903' of git://git.kernel.org/pub/scm/linux/kernel/git/mkl/linux-can-next
testing commit b06b39927249dad12e965d4f9914e58c83d87cf0 with gcc (GCC) 8.1.0
kernel signature: 1b6569bf313ed240411865ee76886f11f087a29a59798a5b69967b4f77f209de
all runs: OK
# git bisect good b06b39927249dad12e965d4f9914e58c83d87cf0
Bisecting: 2 revisions left to test after this (roughly 1 step)
[60b3990c2cef8667a659e44accffc8da0144ea98] sunrpc: Use kzfree rather than its implementation.
testing commit 60b3990c2cef8667a659e44accffc8da0144ea98 with gcc (GCC) 8.1.0
kernel signature: 91e5644b9fda108604113cb3d65da6a10cd3e2565c5ede349d176db343c43598
all runs: OK
# git bisect good 60b3990c2cef8667a659e44accffc8da0144ea98
Bisecting: 0 revisions left to test after this (roughly 1 step)
[09ea989e2bd2c3605068925f6ba2a7207948c6a4] Merge branch 'net-kzfree'
testing commit 09ea989e2bd2c3605068925f6ba2a7207948c6a4 with gcc (GCC) 8.1.0
kernel signature: 1d4b484156e34c69ba84e159e68ba82b7c521abe1b16e374138bdc71ee60a5d1
all runs: OK
# git bisect good 09ea989e2bd2c3605068925f6ba2a7207948c6a4
8330f73fe9742f201f467639f8356cf58756fb9f is the first bad commit
commit 8330f73fe9742f201f467639f8356cf58756fb9f
Author: Jiri Pirko <jiri@mellanox.com>
Date:   Wed Sep 4 09:40:47 2019 +0200

    rocker: add missing init_net check in FIB notifier
    
    Take only FIB events that are happening in init_net into account. No other
    namespaces are supported.
    
    Signed-off-by: Jiri Pirko <jiri@mellanox.com>
    Signed-off-by: David S. Miller <davem@davemloft.net>

 drivers/net/ethernet/rocker/rocker_main.c | 3 +++
 1 file changed, 3 insertions(+)
culprit signature: 866b0dc3bb573530fb6a3a1cbcf7bc7c2fa86ec2f9e606f171d09de2cc195611
parent  signature: 1d4b484156e34c69ba84e159e68ba82b7c521abe1b16e374138bdc71ee60a5d1
revisions tested: 18, total time: 4h38m41.703141797s (build: 1h57m30.238520544s, test: 2h39m51.200540619s)
first bad commit: 8330f73fe9742f201f467639f8356cf58756fb9f rocker: add missing init_net check in FIB notifier
cc: ["davem@davemloft.net" "jiri@mellanox.com" "jiri@resnulli.us" "linux-kernel@vger.kernel.org" "netdev@vger.kernel.org"]
crash: general protection fault in batadv_iv_ogm_queue_add
kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 8622 Comm: kworker/u4:6 Not tainted 5.3.0-rc7-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
RIP: 0010:batadv_iv_ogm_queue_add+0x9b/0xe50 net/batman-adv/bat_iv_ogm.c:605
Code: 44 89 8d 64 ff ff ff c7 02 f1 f1 f1 f1 c7 42 04 04 f2 f2 f2 48 89 fa 65 48 8b 0c 25 28 00 00 00 48 89 4d d0 31 c9 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 a2 0b 00 00
RSP: 0018:ffff8880a3007aa0 EFLAGS: 00010246
RAX: dffffc0000000000 RBX: ffff88809608a040 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: ffff8880a3007bb8 R08: ffff888076e64dc0 R09: 0000000000000001
R10: ffffed1012c1140f R11: ffff88809608a07f R12: ffff888076e64dc0
R13: 0000000000000000 R14: 000000007b8f1de2 R15: 0000000000000018
FS:  0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffb78531e78 CR3: 0000000082fa2000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 batadv_iv_ogm_schedule+0x7b2/0xe90 net/batman-adv/bat_iv_ogm.c:797
 batadv_iv_send_outstanding_bat_ogm_packet+0x570/0x7c4 net/batman-adv/bat_iv_ogm.c:1675
 process_one_work+0x856/0x1630 kernel/workqueue.c:2269
 worker_thread+0x85/0xb60 kernel/workqueue.c:2415
 kthread+0x331/0x3f0 kernel/kthread.c:255
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:352
Modules linked in:
---[ end trace da758c7807cbad15 ]---
RIP: 0010:batadv_iv_ogm_queue_add+0x9b/0xe50 net/batman-adv/bat_iv_ogm.c:605
Code: 44 89 8d 64 ff ff ff c7 02 f1 f1 f1 f1 c7 42 04 04 f2 f2 f2 48 89 fa 65 48 8b 0c 25 28 00 00 00 48 89 4d d0 31 c9 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 a2 0b 00 00
RSP: 0018:ffff8880a3007aa0 EFLAGS: 00010246
RAX: dffffc0000000000 RBX: ffff88809608a040 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
RBP: ffff8880a3007bb8 R08: ffff888076e64dc0 R09: 0000000000000001
R10: ffffed1012c1140f R11: ffff88809608a07f R12: ffff888076e64dc0
R13: 0000000000000000 R14: 000000007b8f1de2 R15: 0000000000000018
FS:  0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffb78531e78 CR3: 0000000082fa2000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400