bisecting fixing commit since b94de4d19498b454645b72d08a05d32fa9074fb5 building syzkaller on cba33199be220cbf61f7c0c8223d88a25a913d6f testing commit b94de4d19498b454645b72d08a05d32fa9074fb5 with gcc (GCC) 8.4.1 20210217 kernel signature: 95af607afa6149c93bc4b208fec017e6124249eebcb4cefcaaa5826d6754f674 all runs: crashed: WARNING in sta_apply_parameters testing current HEAD eb575cd5d7f60241d016fdd13a9e86d962093c9b testing commit eb575cd5d7f60241d016fdd13a9e86d962093c9b with gcc (GCC) 8.4.1 20210217 kernel signature: edb2693387f6c70d2efd80135607406702079862a928ed5e56de87fd8ed6d47f all runs: crashed: WARNING in sta_apply_parameters revisions tested: 2, total time: 23m56.179277908s (build: 16m30.842967651s, test: 6m59.069091417s) the crash still happens on HEAD commit msg: Linux 4.19.195 crash: WARNING in sta_apply_parameters IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready WARNING: CPU: 0 PID: 10050 at net/mac80211/ieee80211_i.h:1401 sta_apply_mesh_params net/mac80211/cfg.c:1216 [inline] WARNING: CPU: 0 PID: 10050 at net/mac80211/ieee80211_i.h:1401 sta_apply_parameters+0x1062/0x1880 net/mac80211/cfg.c:1393 Modules linked in: CPU: 0 PID: 10050 Comm: syz-executor.0 Not tainted 4.19.195-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:ieee80211_get_sband net/mac80211/ieee80211_i.h:1401 [inline] RIP: 0010:sta_apply_parameters+0x1062/0x1880 net/mac80211/cfg.c:1229 Code: c0 03 38 d0 7c 08 84 d2 0f 85 da 05 00 00 41 8b 76 3c 85 f6 0f 85 e0 00 00 00 44 89 c6 48 89 df e8 93 c2 10 00 e9 b3 f9 ff ff <0f> 0b e8 b7 83 19 fa 85 c0 74 0d 80 3d a6 a7 6f 03 00 0f 84 09 01 RSP: 0018:ffff8881c4d2f440 EFLAGS: 00010246 RAX: 0000000000000001 RBX: ffff8881ed884b00 RCX: ffffed10389a4538 RDX: 1ffffffff1322479 RSI: 0000000000000000 RDI: 0000000000000286 RBP: ffff8881c4d2f4b0 R08: 1ffff110389a4538 R09: ffffed103ec84552 R10: ffffed103ec84552 R11: ffff8881f6422a93 R12: 0000000000000000 R13: ffff8881d3f79be0 R14: ffff8881c4d2f560 R15: ffff8881f284e840 FS: 00007f3041646700(0000) GS:ffff8881f6400000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000515150 CR3: 00000001dc234005 CR4: 00000000001606f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: ieee80211_add_station+0x276/0x500 net/mac80211/cfg.c:1442 rdev_add_station net/wireless/rdev-ops.h:176 [inline] nl80211_new_station+0x8db/0x15a0 net/wireless/nl80211.c:5602 genl_family_rcv_msg+0x599/0x1000 net/netlink/genetlink.c:602 genl_rcv_msg+0xa7/0x140 net/netlink/genetlink.c:627 netlink_rcv_skb+0x13e/0x3d0 net/netlink/af_netlink.c:2457 genl_rcv+0x23/0x40 net/netlink/genetlink.c:638 netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline] netlink_unicast+0x443/0x660 net/netlink/af_netlink.c:1346 netlink_sendmsg+0x667/0xc60 net/netlink/af_netlink.c:1911 sock_sendmsg_nosec net/socket.c:622 [inline] sock_sendmsg+0xac/0xf0 net/socket.c:632 ___sys_sendmsg+0x647/0x950 net/socket.c:2115 __sys_sendmsg+0xd9/0x180 net/socket.c:2153 __do_sys_sendmsg net/socket.c:2162 [inline] __se_sys_sendmsg net/socket.c:2160 [inline] __x64_sys_sendmsg+0x73/0xb0 net/socket.c:2160 do_syscall_64+0xd0/0x4e0 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x465889 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f3041646188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 000000000055bf00 RCX: 0000000000465889 RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000007 RBP: 00000000004af68d R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 000000000055bf00 R13: 00007ffeb603643f R14: 00007f3041646300 R15: 0000000000022000 irq event stamp: 626 hardirqs last enabled at (625): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (625): [] _raw_spin_unlock_irqrestore+0x82/0xd0 kernel/locking/spinlock.c:184 hardirqs last disabled at (626): [] trace_hardirqs_off_thunk+0x1a/0x1c softirqs last enabled at (586): [] rcu_read_unlock_bh include/linux/rcupdate.h:717 [inline] softirqs last enabled at (586): [] __dev_queue_xmit+0x1219/0x2900 net/core/dev.c:3865 softirqs last disabled at (582): [] __dev_queue_xmit+0x20b/0x2900 net/core/dev.c:3773 ---[ end trace ed258d40762cf6ff ]--- device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 entered promiscuous mode IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode device wlan0 left promiscuous mode