bisecting fixing commit since b94de4d19498b454645b72d08a05d32fa9074fb5 building syzkaller on cba33199be220cbf61f7c0c8223d88a25a913d6f testing commit b94de4d19498b454645b72d08a05d32fa9074fb5 with gcc (GCC) 8.4.1 20210217 kernel signature: d4e8f28505da3922a75a88b8a71b10e10a44430288c7763c7a9205eba1b23521 all runs: crashed: WARNING in sta_apply_parameters testing current HEAD 1e986fe9ad15b8406034c504afc5ae76f0a8e852 testing commit 1e986fe9ad15b8406034c504afc5ae76f0a8e852 with gcc (GCC) 8.4.1 20210217 kernel signature: c8142474ab93f9bd234e8bd14d2421a73ff11619f1d8c62546ba32b44c2eb01e all runs: crashed: WARNING in sta_apply_parameters revisions tested: 2, total time: 23m50.401366103s (build: 16m17.521104468s, test: 6m53.093889124s) the crash still happens on HEAD commit msg: Linux 4.19.191 crash: WARNING in sta_apply_parameters IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready WARNING: CPU: 1 PID: 9560 at net/mac80211/ieee80211_i.h:1414 sta_apply_mesh_params net/mac80211/cfg.c:1216 [inline] WARNING: CPU: 1 PID: 9560 at net/mac80211/ieee80211_i.h:1414 sta_apply_parameters+0x1062/0x1880 net/mac80211/cfg.c:1393 Modules linked in: CPU: 1 PID: 9560 Comm: syz-executor.4 Not tainted 4.19.191-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:ieee80211_get_sband net/mac80211/ieee80211_i.h:1414 [inline] RIP: 0010:sta_apply_parameters+0x1062/0x1880 net/mac80211/cfg.c:1229 Code: c0 03 38 d0 7c 08 84 d2 0f 85 da 05 00 00 41 8b 76 3c 85 f6 0f 85 e0 00 00 00 44 89 c6 48 89 df e8 33 90 10 00 e9 b3 f9 ff ff <0f> 0b e8 87 ba 19 fa 85 c0 74 0d 80 3d f6 e4 6f 03 00 0f 84 09 01 RSP: 0018:ffff8881c8fb7440 EFLAGS: 00010246 RAX: 0000000000000001 RBX: ffff8881ee390e40 RCX: ffffed103bdab168 RDX: 1ffffffff1322479 RSI: 0000000000000000 RDI: 0000000000000282 RBP: ffff8881c8fb74b0 R08: 1ffff1103bdab168 R09: ffffed103eca4552 R10: ffffed103eca4552 R11: ffff8881f6522a93 R12: 0000000000000000 R13: ffff8881cc269d20 R14: ffff8881c8fb7560 R15: ffff8881df23ca80 FS: 00007fd508ef2700(0000) GS:ffff8881f6500000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000000016d6708 CR3: 00000001e7495005 CR4: 00000000001606e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: ieee80211_add_station+0x276/0x500 net/mac80211/cfg.c:1442 rdev_add_station net/wireless/rdev-ops.h:176 [inline] nl80211_new_station+0x8db/0x15a0 net/wireless/nl80211.c:5601 genl_family_rcv_msg+0x599/0x1000 net/netlink/genetlink.c:602 genl_rcv_msg+0xa7/0x140 net/netlink/genetlink.c:627 netlink_rcv_skb+0x13e/0x3d0 net/netlink/af_netlink.c:2455 genl_rcv+0x23/0x40 net/netlink/genetlink.c:638 netlink_unicast_kernel net/netlink/af_netlink.c:1318 [inline] netlink_unicast+0x443/0x660 net/netlink/af_netlink.c:1344 netlink_sendmsg+0x667/0xc60 net/netlink/af_netlink.c:1909 sock_sendmsg_nosec net/socket.c:622 [inline] sock_sendmsg+0xac/0xf0 net/socket.c:632 ___sys_sendmsg+0x647/0x950 net/socket.c:2115 __sys_sendmsg+0xd9/0x180 net/socket.c:2153 __do_sys_sendmsg net/socket.c:2162 [inline] __se_sys_sendmsg net/socket.c:2160 [inline] __x64_sys_sendmsg+0x73/0xb0 net/socket.c:2160 do_syscall_64+0xd0/0x4e0 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x465889 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fd508ef2188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 000000000055bfa8 RCX: 0000000000465889 RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000006 RBP: 00000000004af68d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 000000000055bfa8 R13: 00007ffc501f349f R14: 00007fd508ef2300 R15: 0000000000022000 irq event stamp: 780 hardirqs last enabled at (779): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (779): [] _raw_spin_unlock_irqrestore+0x82/0xd0 kernel/locking/spinlock.c:184 hardirqs last disabled at (780): [] trace_hardirqs_off_thunk+0x1a/0x1c softirqs last enabled at (740): [] rcu_read_unlock_bh include/linux/rcupdate.h:717 [inline] softirqs last enabled at (740): [] __dev_queue_xmit+0x1219/0x2900 net/core/dev.c:3865 softirqs last disabled at (736): [] __dev_queue_xmit+0x20b/0x2900 net/core/dev.c:3773 ---[ end trace de5f7fdf24d1efc4 ]--- device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode