bisecting fixing commit since fa2e1ba3e9e39072fa7a6a9d11ac432c505b4ac7 building syzkaller on b838eb76eef06deea9b4ec66dd328e77ca00eb0f testing commit fa2e1ba3e9e39072fa7a6a9d11ac432c505b4ac7 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 5c61894ed9810c9a08aa63d6c116e8f144aab73a3b174410f7ed94a37ee6d66e run #0: OK run #1: OK run #2: OK run #3: crashed: WARNING: ODEBUG bug in cancel_delayed_work run #4: OK run #5: OK run #6: crashed: WARNING: ODEBUG bug in cancel_delayed_work run #7: OK run #8: crashed: WARNING: ODEBUG bug in cancel_delayed_work run #9: OK run #10: OK run #11: crashed: WARNING: ODEBUG bug in cancel_delayed_work run #12: OK run #13: OK run #14: OK run #15: OK run #16: crashed: WARNING: ODEBUG bug in cancel_delayed_work run #17: crashed: WARNING: ODEBUG bug in cancel_delayed_work run #18: crashed: WARNING: ODEBUG bug in cancel_delayed_work run #19: crashed: WARNING: ODEBUG bug in cancel_delayed_work reproducer seems to be flaky testing current HEAD 46b556205dcead1ec180329b771c2593d81c6b9b testing commit 46b556205dcead1ec180329b771c2593d81c6b9b compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 3736c6594d0c1e3c33335b9915ffd2e7a9340f3d019425291765fb53d4028d2c run #0: OK run #1: basic kernel testing failed: BUG: program execution failed: executor NUM: exit status NUM run #2: OK run #3: basic kernel testing failed: BUG: program execution failed: executor NUM: exit status NUM run #4: OK run #5: basic kernel testing failed: BUG: program execution failed: executor NUM: exit status NUM run #6: OK run #7: OK run #8: OK run #9: OK run #10: OK run #11: OK run #12: OK run #13: OK run #14: OK run #15: crashed: WARNING: ODEBUG bug in cancel_delayed_work run #16: OK run #17: OK run #18: OK run #19: crashed: WARNING: ODEBUG bug in cancel_delayed_work Reproducer flagged being flaky revisions tested: 2, total time: 22m57.202059752s (build: 15m46.973435039s, test: 6m33.084038434s) the crash still happens on HEAD commit msg: Merge tag 'linux-can-fixes-for-5.18-20220331' of git://git.kernel.org/pub/scm/linux/kernel/git/mkl/linux-can crash: WARNING: ODEBUG bug in cancel_delayed_work ------------[ cut here ]------------ ODEBUG: assert_init not available (active state 0) object type: timer_list hint: 0x0 WARNING: CPU: 0 PID: 4072 at lib/debugobjects.c:505 debug_print_object+0x16e/0x250 lib/debugobjects.c:505 Modules linked in: CPU: 0 PID: 4072 Comm: syz-executor398 Tainted: G W 5.17.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:debug_print_object+0x16e/0x250 lib/debugobjects.c:505 Code: ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 af 00 00 00 48 8b 14 dd 40 91 42 89 4c 89 ee 48 c7 c7 40 85 42 89 e8 2c 02 b4 04 <0f> 0b 83 05 75 45 0e 09 01 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e c3 RSP: 0018:ffffc90004827938 EFLAGS: 00010086 RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000000000 RDX: 0000000000000001 RSI: 0000000000000004 RDI: fffff52000904f19 RBP: 0000000000000001 R08: 0000000000000001 R09: ffff8880b9e27a2b R10: ffffed10173c4f45 R11: 203a47554245444f R12: ffffffff88ed7820 R13: ffffffff89428bc0 R14: ffffffff815da4d0 R15: 1ffff92000904f32 FS: 000055555671a300(0000) GS:ffff8880b9e00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f682becf85e CR3: 0000000075902000 CR4: 00000000003506f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: debug_object_assert_init lib/debugobjects.c:895 [inline] debug_object_assert_init+0x1f4/0x2e0 lib/debugobjects.c:866 debug_timer_assert_init kernel/time/timer.c:739 [inline] debug_assert_init kernel/time/timer.c:784 [inline] del_timer+0x65/0xf0 kernel/time/timer.c:1204 try_to_grab_pending+0x41/0x80 kernel/workqueue.c:1275 __cancel_work kernel/workqueue.c:3250 [inline] cancel_delayed_work+0x6d/0x270 kernel/workqueue.c:3279 l2cap_clear_timer include/net/bluetooth/l2cap.h:883 [inline] l2cap_chan_del+0x43b/0x8e0 net/bluetooth/l2cap_core.c:665 l2cap_chan_close+0x180/0x990 net/bluetooth/l2cap_core.c:825 l2cap_sock_shutdown+0x307/0xdb0 net/bluetooth/l2cap_sock.c:1377 l2cap_sock_release+0x5d/0x1e0 net/bluetooth/l2cap_sock.c:1420 __sock_release+0xbb/0x270 net/socket.c:650 sock_close+0xf/0x20 net/socket.c:1318 __fput+0x1f5/0x8c0 fs/file_table.c:317 task_work_run+0xc0/0x160 kernel/task_work.c:164 tracehook_notify_resume include/linux/tracehook.h:188 [inline] exit_to_user_mode_loop kernel/entry/common.c:190 [inline] exit_to_user_mode_prepare+0x27e/0x290 kernel/entry/common.c:222 __syscall_exit_to_user_mode_work kernel/entry/common.c:304 [inline] syscall_exit_to_user_mode+0x19/0x60 kernel/entry/common.c:315 do_syscall_64+0x42/0x80 arch/x86/entry/common.c:86 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f6528c6f05b Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44 RSP: 002b:00007ffe5b1a06f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 0000000000000005 RCX: 00007f6528c6f05b RDX: ffffffffffffffb8 RSI: 0000000020000000 RDI: 0000000000000004 RBP: 0000000000000003 R08: 0000000000000000 R09: 000000ff00000001 R10: 000000ff00000001 R11: 0000000000000293 R12: 000055555671a2b8 R13: 0000000000000011 R14: 00007ffe5b1a0760 R15: 0000000000000003