[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.10.7' (ECDSA) to the list of known hosts.
syzkaller login: [   56.483676][   T28] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.495282][   T28] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[   56.531857][ T2956] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   56.549754][   T28] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.558971][   T28] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.567879][ T2956] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   56.587071][ T8441] ------------[ cut here ]------------
[   56.593967][ T8441] WARNING: CPU: 0 PID: 8441 at net/mac80211/cfg.c:3660 ieee80211_probe_client+0x6fa/0x800
[   56.604883][ T8441] Modules linked in:
[   56.609224][ T8441] CPU: 0 PID: 8441 Comm: syz-executor931 Not tainted 5.14.0-rc7-syzkaller #0
[   56.619008][ T8441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   56.629176][ T8441] RIP: 0010:ieee80211_probe_client+0x6fa/0x800
[   56.635391][ T8441] Code: aa 8a c6 05 c8 d3 d5 04 01 e8 bf 59 66 00 e9 4e fe ff ff e8 18 6c f3 f8 4c 89 ff e8 a0 fb 90 fe e9 1f fe ff ff e8 06 6c f3 f8 <0f> 0b 41 bc ea ff ff ff e9 0d fe ff ff 48 89 ef e8 41 a6 39 f9 e9
[   56.655676][ T8441] RSP: 0018:ffffc9000102f4f8 EFLAGS: 00010293
[   56.661795][ T8441] RAX: 0000000000000000 RBX: ffff888037b60000 RCX: 0000000000000000
[   56.669998][ T8441] RDX: ffff888013bcd4c0 RSI: ffffffff88823cfa RDI: 0000000000000003
[   56.678017][ T8441] RBP: ffff888015f75820 R08: 0000000000000000 R09: 0000000000000001
[   56.686105][ T8441] R10: ffffffff888236ee R11: 0000000000000000 R12: ffff88802b688d60
[   56.694140][ T8441] R13: 0000000000000000 R14: 0000000000000001 R15: ffffc9000102f67c
[   56.702164][ T8441] FS:  0000000000d6e300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   56.711095][ T8441] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.717785][ T8441] CR2: 00007f0a65cbb000 CR3: 000000001af7c000 CR4: 0000000000350ef0
[   56.725989][ T8441] Call Trace:
[   56.729298][ T8441]  nl80211_probe_client+0x3a9/0xb90
[   56.734633][ T8441]  ? nl80211_probe_mesh_link+0xa10/0xa10
[   56.740289][ T8441]  ? nl80211_pre_doit+0xa6/0x620
[   56.745332][ T8441]  genl_family_rcv_msg_doit+0x228/0x320
[   56.751162][ T8441]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[   56.758658][ T8441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   56.765155][ T8441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   56.771541][ T8441]  ? ns_capable+0xd9/0x100
[   56.775989][ T8441]  genl_rcv_msg+0x328/0x580
[   56.780865][ T8441]  ? genl_get_cmd+0x480/0x480
[   56.785919][ T8441]  ? nl80211_probe_mesh_link+0xa10/0xa10
[   56.791681][ T8441]  ? lock_release+0x720/0x720
[   56.796383][ T8441]  netlink_rcv_skb+0x153/0x420
[   56.801142][ T8441]  ? genl_get_cmd+0x480/0x480
[   56.805896][ T8441]  ? netlink_ack+0xa60/0xa60
[   56.810522][ T8441]  ? _copy_from_iter+0x12b/0x1320
[   56.815838][ T8441]  genl_rcv+0x24/0x40
[   56.819851][ T8441]  netlink_unicast+0x533/0x7d0
[   56.824789][ T8441]  ? netlink_attachskb+0x890/0x890
[   56.829935][ T8441]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   56.837283][ T8441]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   56.843611][ T8441]  ? __phys_addr_symbol+0x2c/0x70
[   56.848641][ T8441]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   56.854414][ T8441]  ? __check_object_size+0x16e/0x3f0
[   56.859717][ T8441]  netlink_sendmsg+0x86d/0xdb0
[   56.864555][ T8441]  ? netlink_unicast+0x7d0/0x7d0
[   56.869579][ T8441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   56.875959][ T8441]  ? netlink_unicast+0x7d0/0x7d0
[   56.880906][ T8441]  sock_sendmsg+0xcf/0x120
[   56.885356][ T8441]  ____sys_sendmsg+0x6e8/0x810
[   56.890124][ T8441]  ? kernel_sendmsg+0x50/0x50
[   56.894852][ T8441]  ? do_recvmmsg+0x6d0/0x6d0
[   56.899600][ T8441]  ? lock_chain_count+0x20/0x20
[   56.904489][ T8441]  ? find_held_lock+0x2d/0x110
[   56.909260][ T8441]  ___sys_sendmsg+0xf3/0x170
[   56.913986][ T8441]  ? sendmsg_copy_msghdr+0x160/0x160
[   56.919275][ T8441]  ? __lock_acquire+0x162f/0x54a0
[   56.924343][ T8441]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   56.930322][ T8441]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   56.936355][ T8441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   56.942752][ T8441]  ? __fget_light+0x215/0x280
[   56.947628][ T8441]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   56.953926][ T8441]  __sys_sendmsg+0xe5/0x1b0
[   56.958433][ T8441]  ? __sys_sendmsg_sock+0x30/0x30
[   56.963603][ T8441]  ? syscall_enter_from_user_mode+0x21/0x70
[   56.969533][ T8441]  do_syscall_64+0x35/0xb0
[   56.974043][ T8441]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   56.980104][ T8441] RIP: 0033:0x440979
[   56.984116][ T8441] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   57.003976][ T8441] RSP: 002b:00007ffee7ff0af8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.012870][ T8441] RAX: ffffffffffffffda RBX: 0000000000000031 RCX: 0000000000440979
[   57.021162][ T8441] RDX: 0000000000004004 RSI: 00000000200024c0 RDI: 0000000000000003
[   57.029411][ T8441] RBP: 0000000000000003 R08: 00007ffee7ff0b28 R09: 00007ffee7ff0b28
[   57.037516][ T8441] R10: 00007ffee7ff0b28 R11: 0000000000000246 R12: 000000000000000c
[   57.045645][ T8441] R13: 00007ffee7ff0b50 R14: 00000000004b7410 R15: 0000000000000004
[   57.053848][ T8441] Kernel panic - not syncing: panic_on_warn set ...
[   57.060618][ T8441] CPU: 0 PID: 8441 Comm: syz-executor931 Not tainted 5.14.0-rc7-syzkaller #0
[   57.069377][ T8441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   57.079441][ T8441] Call Trace:
[   57.082721][ T8441]  dump_stack_lvl+0xcd/0x134
[   57.087308][ T8441]  panic+0x306/0x73d
[   57.091194][ T8441]  ? __warn_printk+0xf3/0xf3
[   57.095782][ T8441]  ? __warn.cold+0x1a/0x44
[   57.100286][ T8441]  ? ieee80211_probe_client+0x6fa/0x800
[   57.106033][ T8441]  __warn.cold+0x35/0x44
[   57.110293][ T8441]  ? ieee80211_probe_client+0x6fa/0x800
[   57.116110][ T8441]  report_bug+0x1bd/0x210
[   57.120460][ T8441]  handle_bug+0x3c/0x60
[   57.124617][ T8441]  exc_invalid_op+0x14/0x40
[   57.129120][ T8441]  asm_exc_invalid_op+0x12/0x20
[   57.133960][ T8441] RIP: 0010:ieee80211_probe_client+0x6fa/0x800
[   57.140111][ T8441] Code: aa 8a c6 05 c8 d3 d5 04 01 e8 bf 59 66 00 e9 4e fe ff ff e8 18 6c f3 f8 4c 89 ff e8 a0 fb 90 fe e9 1f fe ff ff e8 06 6c f3 f8 <0f> 0b 41 bc ea ff ff ff e9 0d fe ff ff 48 89 ef e8 41 a6 39 f9 e9
[   57.159711][ T8441] RSP: 0018:ffffc9000102f4f8 EFLAGS: 00010293
[   57.165888][ T8441] RAX: 0000000000000000 RBX: ffff888037b60000 RCX: 0000000000000000
[   57.173858][ T8441] RDX: ffff888013bcd4c0 RSI: ffffffff88823cfa RDI: 0000000000000003
[   57.181829][ T8441] RBP: ffff888015f75820 R08: 0000000000000000 R09: 0000000000000001
[   57.189801][ T8441] R10: ffffffff888236ee R11: 0000000000000000 R12: ffff88802b688d60
[   57.197773][ T8441] R13: 0000000000000000 R14: 0000000000000001 R15: ffffc9000102f67c
[   57.205757][ T8441]  ? ieee80211_probe_client+0xee/0x800
[   57.211237][ T8441]  ? ieee80211_probe_client+0x6fa/0x800
[   57.216798][ T8441]  ? ieee80211_probe_client+0x6fa/0x800
[   57.222354][ T8441]  nl80211_probe_client+0x3a9/0xb90
[   57.227557][ T8441]  ? nl80211_probe_mesh_link+0xa10/0xa10
[   57.233195][ T8441]  ? nl80211_pre_doit+0xa6/0x620
[   57.238132][ T8441]  genl_family_rcv_msg_doit+0x228/0x320
[   57.243798][ T8441]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[   57.251439][ T8441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   57.257789][ T8441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   57.264022][ T8441]  ? ns_capable+0xd9/0x100
[   57.268457][ T8441]  genl_rcv_msg+0x328/0x580
[   57.272963][ T8441]  ? genl_get_cmd+0x480/0x480
[   57.278208][ T8441]  ? nl80211_probe_mesh_link+0xa10/0xa10
[   57.283841][ T8441]  ? lock_release+0x720/0x720
[   57.288515][ T8441]  netlink_rcv_skb+0x153/0x420
[   57.293531][ T8441]  ? genl_get_cmd+0x480/0x480
[   57.298239][ T8441]  ? netlink_ack+0xa60/0xa60
[   57.302836][ T8441]  ? _copy_from_iter+0x12b/0x1320
[   57.307895][ T8441]  genl_rcv+0x24/0x40
[   57.311984][ T8441]  netlink_unicast+0x533/0x7d0
[   57.316758][ T8441]  ? netlink_attachskb+0x890/0x890
[   57.321878][ T8441]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   57.328122][ T8441]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   57.334362][ T8441]  ? __phys_addr_symbol+0x2c/0x70
[   57.339390][ T8441]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   57.345107][ T8441]  ? __check_object_size+0x16e/0x3f0
[   57.350393][ T8441]  netlink_sendmsg+0x86d/0xdb0
[   57.355164][ T8441]  ? netlink_unicast+0x7d0/0x7d0
[   57.360111][ T8441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   57.366353][ T8441]  ? netlink_unicast+0x7d0/0x7d0
[   57.371295][ T8441]  sock_sendmsg+0xcf/0x120
[   57.375717][ T8441]  ____sys_sendmsg+0x6e8/0x810
[   57.380488][ T8441]  ? kernel_sendmsg+0x50/0x50
[   57.385161][ T8441]  ? do_recvmmsg+0x6d0/0x6d0
[   57.389752][ T8441]  ? lock_chain_count+0x20/0x20
[   57.394686][ T8441]  ? find_held_lock+0x2d/0x110
[   57.399547][ T8441]  ___sys_sendmsg+0xf3/0x170
[   57.404144][ T8441]  ? sendmsg_copy_msghdr+0x160/0x160
[   57.409448][ T8441]  ? __lock_acquire+0x162f/0x54a0
[   57.414494][ T8441]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   57.420682][ T8441]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   57.426963][ T8441]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   57.433208][ T8441]  ? __fget_light+0x215/0x280
[   57.438346][ T8441]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   57.444601][ T8441]  __sys_sendmsg+0xe5/0x1b0
[   57.449107][ T8441]  ? __sys_sendmsg_sock+0x30/0x30
[   57.454161][ T8441]  ? syscall_enter_from_user_mode+0x21/0x70
[   57.460469][ T8441]  do_syscall_64+0x35/0xb0
[   57.465011][ T8441]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   57.470928][ T8441] RIP: 0033:0x440979
[   57.474822][ T8441] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   57.494443][ T8441] RSP: 002b:00007ffee7ff0af8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.502858][ T8441] RAX: ffffffffffffffda RBX: 0000000000000031 RCX: 0000000000440979
[   57.510821][ T8441] RDX: 0000000000004004 RSI: 00000000200024c0 RDI: 0000000000000003
[   57.518787][ T8441] RBP: 0000000000000003 R08: 00007ffee7ff0b28 R09: 00007ffee7ff0b28
[   57.526846][ T8441] R10: 00007ffee7ff0b28 R11: 0000000000000246 R12: 000000000000000c
[   57.534819][ T8441] R13: 00007ffee7ff0b50 R14: 00000000004b7410 R15: 0000000000000004
[   57.549615][ T8441] Kernel Offset: disabled
[   57.554050][ T8441] Rebooting in 86400 seconds..