./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor935880738
<...>
Warning: Permanently added '10.128.1.6' (ECDSA) to the list of known hosts.
execve("./syz-executor935880738", ["./syz-executor935880738"], 0x7ffe2cb57fa0 /* 10 vars */) = 0
brk(NULL) = 0x555556a1a000
brk(0x555556a1ac40) = 0x555556a1ac40
arch_prctl(ARCH_SET_FS, 0x555556a1a300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor935880738", 4096) = 27
brk(0x555556a3bc40) = 0x555556a3bc40
brk(0x555556a3c000) = 0x555556a3c000
mprotect(0x7fb12689e000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556a1a5d0) = 5001
./strace-static-x86_64: Process 5001 attached
[pid 5001] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5001] setpgid(0, 0) = 0
[pid 5001] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5001] write(3, "1000", 4) = 4
[pid 5001] close(3) = 0
[pid 5001] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 3
syzkaller login: [ 42.747606][ T5001] netlink: 'syz-executor935': attribute type 27 has an invalid length.
[ 42.756132][ T5001] netlink: 4 bytes leftover after parsing attributes in process `syz-executor935'.
[ 42.924956][ T5011] netlink: 'syz-executor935': attribute type 27 has an invalid length.
[ 42.933419][ T5011] netlink: 4 bytes leftover after parsing attributes in process `syz-executor935'.
[ 42.949592][ T5011] ------------[ cut here ]------------
[ 42.955189][ T5011] wlan0: Failed check-sdata-in-driver check, flags: 0x0
[ 42.963180][ T5011] WARNING: CPU: 0 PID: 5011 at net/mac80211/main.c:236 ieee80211_bss_info_change_notify+0x787/0x8d0
[ 42.974168][ T5011] Modules linked in:
[ 42.978138][ T5011] CPU: 0 PID: 5011 Comm: syz-executor935 Not tainted 6.4.0-rc6-syzkaller-00049-g62d8779610bb #0
[ 42.988594][ T5011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[ 42.998709][ T5011] RIP: 0010:ieee80211_bss_info_change_notify+0x787/0x8d0
[ 43.005751][ T5011] Code: 00 00 48 8b ab f8 08 00 00 48 85 ed 74 79 e8 f0 28 ff f7 e8 eb 28 ff f7 44 89 fa 48 89 ee 48 c7 c7 c0 04 7f 8b e8 29 e4 c6 f7 <0f> 0b e9 90 f9 ff ff e8 cd 28 ff f7 e8 e8 58 e8 f7 31 ff 41 89 c7
[ 43.025474][ T5011] RSP: 0018:ffffc900039ef358 EFLAGS: 00010282
[ 43.031600][ T5011] RAX: 0000000000000000 RBX: ffff888021784c80 RCX: 0000000000000000
[ 43.039680][ T5011] RDX: ffff88807e61bb80 RSI: ffffffff814c03b7 RDI: 0000000000000001
[ 43.047743][ T5011] RBP: ffff888021784000 R08: 0000000000000001 R09: 0000000000000000
[ 43.055759][ T5011] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000400000
[ 43.063840][ T5011] R13: ffff888021786918 R14: 0000000000000000 R15: 0000000000000000
[ 43.071882][ T5011] FS: 0000555556a1a300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 43.080883][ T5011] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 43.087485][ T5011] CR2: 0000000000668b80 CR3: 0000000029a5c000 CR4: 0000000000350ef0
[ 43.095455][ T5011] Call Trace:
[ 43.098814][ T5011]
[ 43.101752][ T5011] ? __warn+0xe6/0x390
[ 43.105883][ T5011] ? preempt_schedule_notrace+0x5f/0xd0
[ 43.111438][ T5011] ? ieee80211_bss_info_change_notify+0x787/0x8d0
[ 43.117905][ T5011] ? report_bug+0x2da/0x500
[ 43.122435][ T5011] ? handle_bug+0x3c/0x70
[ 43.126804][ T5011] ? exc_invalid_op+0x18/0x50
[ 43.131485][ T5011] ? asm_exc_invalid_op+0x1a/0x20
[ 43.136568][ T5011] ? __warn_printk+0x187/0x310
[ 43.141353][ T5011] ? ieee80211_bss_info_change_notify+0x787/0x8d0
[ 43.147832][ T5011] ? ieee80211_bss_info_change_notify+0x787/0x8d0
[ 43.154268][ T5011] ieee80211_ocb_leave+0x24d/0x3c0
[ 43.159470][ T5011] __cfg80211_leave_ocb+0x1eb/0x640
[ 43.164695][ T5011] cfg80211_leave_ocb+0x52/0x70
[ 43.169635][ T5011] cfg80211_change_iface+0x86c/0xe00
[ 43.174948][ T5011] nl80211_set_interface+0x695/0x960
[ 43.180300][ T5011] ? nl80211_notify_iface+0x190/0x190
[ 43.185694][ T5011] ? nl80211_pre_doit+0x120/0xab0
[ 43.190780][ T5011] genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 43.196970][ T5011] ? genl_start+0x660/0x660
[ 43.201469][ T5011] ? ns_capable+0xe0/0x110
[ 43.205967][ T5011] genl_rcv_msg+0x4ff/0x7e0
[ 43.210499][ T5011] ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 43.216881][ T5011] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 43.222877][ T5011] ? validate_beacon_tx_rate+0x790/0x790
[ 43.228535][ T5011] ? nl80211_notify_iface+0x190/0x190
[ 43.233919][ T5011] ? cfg80211_vendor_cmd_reply+0x2f0/0x2f0
[ 43.239800][ T5011] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 43.245796][ T5011] netlink_rcv_skb+0x165/0x440
[ 43.250603][ T5011] ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 43.256993][ T5011] ? netlink_ack+0x1360/0x1360
[ 43.261775][ T5011] ? down_write_killable+0x250/0x250
[ 43.267093][ T5011] ? netlink_deliver_tap+0x1b1/0xcf0
[ 43.272386][ T5011] genl_rcv+0x28/0x40
[ 43.276475][ T5011] netlink_unicast+0x547/0x7f0
[ 43.281251][ T5011] ? netlink_attachskb+0x890/0x890
[ 43.286389][ T5011] ? __virt_addr_valid+0x61/0x2e0
[ 43.291429][ T5011] ? __phys_addr_symbol+0x30/0x70
[ 43.296523][ T5011] ? __check_object_size+0x323/0x730
[ 43.301859][ T5011] netlink_sendmsg+0x925/0xe30
[ 43.306866][ T5011] ? netlink_unicast+0x7f0/0x7f0
[ 43.311831][ T5011] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 43.317193][ T5011] ? netlink_unicast+0x7f0/0x7f0
[ 43.322139][ T5011] sock_sendmsg+0xde/0x190
[ 43.326591][ T5011] ____sys_sendmsg+0x71c/0x900
[ 43.331364][ T5011] ? copy_msghdr_from_user+0xfc/0x150
[ 43.336902][ T5011] ? kernel_sendmsg+0x50/0x50
[ 43.341617][ T5011] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 43.347653][ T5011] ___sys_sendmsg+0x110/0x1b0
[ 43.352367][ T5011] ? do_recvmmsg+0x6f0/0x6f0
[ 43.357031][ T5011] ? lock_sync+0x190/0x190
[ 43.361459][ T5011] ? ptrace_stop.part.0+0x4a3/0x8e0
[ 43.366689][ T5011] ? do_raw_spin_lock+0x124/0x2b0
[ 43.371729][ T5011] ? spin_bug+0x1c0/0x1c0
[ 43.376106][ T5011] ? _raw_spin_lock_irq+0x45/0x50
[ 43.381149][ T5011] ? __fget_light+0x20a/0x270
[ 43.385867][ T5011] __sys_sendmsg+0xf7/0x1c0
[ 43.390390][ T5011] ? __sys_sendmsg_sock+0x40/0x40
[ 43.395405][ T5011] ? lock_downgrade+0x690/0x690
[ 43.400334][ T5011] ? lockdep_hardirqs_on+0x7d/0x100
[ 43.405543][ T5011] ? _raw_spin_unlock_irq+0x2e/0x50
[ 43.410797][ T5011] ? ptrace_notify+0xfe/0x140
[ 43.415496][ T5011] do_syscall_64+0x39/0xb0
[ 43.419998][ T5011] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 43.425951][ T5011] RIP: 0033:0x7fb126831a99
[ 43.430385][ T5011] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 43.450076][ T5011] RSP: 002b:00007ffe6a6dc958 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 43.458582][ T5011] RAX: ffffffffffffffda RBX: 000000000000a6dd RCX: 00007fb126831a99
[ 43.466643][ T5011] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000004
[ 43.474659][ T5011] RBP: 0000000000000000 R08: 00007ffe6a6dcaf8 R09: 00007ffe6a6dcaf8
[ 43.482689][ T5011] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe6a6dc96c
[ 43.490693][ T5011] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000
[ 43.498706][ T5011]
[ 43.501732][ T5011] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 43.509011][ T5011] CPU: 0 PID: 5011 Comm: syz-executor935 Not tainted 6.4.0-rc6-syzkaller-00049-g62d8779610bb #0
[ 43.519405][ T5011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[ 43.529482][ T5011] Call Trace:
[ 43.532759][ T5011]
[ 43.535685][ T5011] dump_stack_lvl+0xd9/0x150
[ 43.540297][ T5011] panic+0x686/0x730
[ 43.544211][ T5011] ? panic_smp_self_stop+0xa0/0xa0
[ 43.549314][ T5011] ? show_trace_log_lvl+0x284/0x390
[ 43.554510][ T5011] ? ieee80211_bss_info_change_notify+0x787/0x8d0
[ 43.560910][ T5011] check_panic_on_warn+0xb1/0xc0
[ 43.565848][ T5011] __warn+0xf2/0x390
[ 43.569762][ T5011] ? preempt_schedule_notrace+0x5f/0xd0
[ 43.575306][ T5011] ? ieee80211_bss_info_change_notify+0x787/0x8d0
[ 43.581721][ T5011] report_bug+0x2da/0x500
[ 43.586062][ T5011] handle_bug+0x3c/0x70
[ 43.590221][ T5011] exc_invalid_op+0x18/0x50
[ 43.594710][ T5011] asm_exc_invalid_op+0x1a/0x20
[ 43.599549][ T5011] RIP: 0010:ieee80211_bss_info_change_notify+0x787/0x8d0
[ 43.606570][ T5011] Code: 00 00 48 8b ab f8 08 00 00 48 85 ed 74 79 e8 f0 28 ff f7 e8 eb 28 ff f7 44 89 fa 48 89 ee 48 c7 c7 c0 04 7f 8b e8 29 e4 c6 f7 <0f> 0b e9 90 f9 ff ff e8 cd 28 ff f7 e8 e8 58 e8 f7 31 ff 41 89 c7
[ 43.626181][ T5011] RSP: 0018:ffffc900039ef358 EFLAGS: 00010282
[ 43.632247][ T5011] RAX: 0000000000000000 RBX: ffff888021784c80 RCX: 0000000000000000
[ 43.640209][ T5011] RDX: ffff88807e61bb80 RSI: ffffffff814c03b7 RDI: 0000000000000001
[ 43.648168][ T5011] RBP: ffff888021784000 R08: 0000000000000001 R09: 0000000000000000
[ 43.656128][ T5011] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000400000
[ 43.664088][ T5011] R13: ffff888021786918 R14: 0000000000000000 R15: 0000000000000000
[ 43.672056][ T5011] ? __warn_printk+0x187/0x310
[ 43.676822][ T5011] ? ieee80211_bss_info_change_notify+0x787/0x8d0
[ 43.683228][ T5011] ieee80211_ocb_leave+0x24d/0x3c0
[ 43.688342][ T5011] __cfg80211_leave_ocb+0x1eb/0x640
[ 43.693541][ T5011] cfg80211_leave_ocb+0x52/0x70
[ 43.698387][ T5011] cfg80211_change_iface+0x86c/0xe00
[ 43.703672][ T5011] nl80211_set_interface+0x695/0x960
[ 43.708951][ T5011] ? nl80211_notify_iface+0x190/0x190
[ 43.714315][ T5011] ? nl80211_pre_doit+0x120/0xab0
[ 43.719332][ T5011] genl_family_rcv_msg_doit.isra.0+0x1e6/0x2d0
[ 43.725485][ T5011] ? genl_start+0x660/0x660
[ 43.729989][ T5011] ? ns_capable+0xe0/0x110
[ 43.734410][ T5011] genl_rcv_msg+0x4ff/0x7e0
[ 43.738909][ T5011] ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 43.745253][ T5011] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 43.751231][ T5011] ? validate_beacon_tx_rate+0x790/0x790
[ 43.756856][ T5011] ? nl80211_notify_iface+0x190/0x190
[ 43.762220][ T5011] ? cfg80211_vendor_cmd_reply+0x2f0/0x2f0
[ 43.768020][ T5011] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 43.774004][ T5011] netlink_rcv_skb+0x165/0x440
[ 43.778766][ T5011] ? genl_family_rcv_msg_doit.isra.0+0x2d0/0x2d0
[ 43.785094][ T5011] ? netlink_ack+0x1360/0x1360
[ 43.789861][ T5011] ? down_write_killable+0x250/0x250
[ 43.795144][ T5011] ? netlink_deliver_tap+0x1b1/0xcf0
[ 43.800424][ T5011] genl_rcv+0x28/0x40
[ 43.804399][ T5011] netlink_unicast+0x547/0x7f0
[ 43.809161][ T5011] ? netlink_attachskb+0x890/0x890
[ 43.814263][ T5011] ? __virt_addr_valid+0x61/0x2e0
[ 43.819289][ T5011] ? __phys_addr_symbol+0x30/0x70
[ 43.824309][ T5011] ? __check_object_size+0x323/0x730
[ 43.829589][ T5011] netlink_sendmsg+0x925/0xe30
[ 43.834350][ T5011] ? netlink_unicast+0x7f0/0x7f0
[ 43.839301][ T5011] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 43.844578][ T5011] ? netlink_unicast+0x7f0/0x7f0
[ 43.849508][ T5011] sock_sendmsg+0xde/0x190
[ 43.853922][ T5011] ____sys_sendmsg+0x71c/0x900
[ 43.858677][ T5011] ? copy_msghdr_from_user+0xfc/0x150
[ 43.864039][ T5011] ? kernel_sendmsg+0x50/0x50
[ 43.868708][ T5011] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 43.874681][ T5011] ___sys_sendmsg+0x110/0x1b0
[ 43.879353][ T5011] ? do_recvmmsg+0x6f0/0x6f0
[ 43.883962][ T5011] ? lock_sync+0x190/0x190
[ 43.888375][ T5011] ? ptrace_stop.part.0+0x4a3/0x8e0
[ 43.893575][ T5011] ? do_raw_spin_lock+0x124/0x2b0
[ 43.898603][ T5011] ? spin_bug+0x1c0/0x1c0
[ 43.902928][ T5011] ? _raw_spin_lock_irq+0x45/0x50
[ 43.907952][ T5011] ? __fget_light+0x20a/0x270
[ 43.912628][ T5011] __sys_sendmsg+0xf7/0x1c0
[ 43.917130][ T5011] ? __sys_sendmsg_sock+0x40/0x40
[ 43.922181][ T5011] ? lock_downgrade+0x690/0x690
[ 43.927030][ T5011] ? lockdep_hardirqs_on+0x7d/0x100
[ 43.932219][ T5011] ? _raw_spin_unlock_irq+0x2e/0x50
[ 43.937413][ T5011] ? ptrace_notify+0xfe/0x140
[ 43.942086][ T5011] do_syscall_64+0x39/0xb0
[ 43.946497][ T5011] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 43.952395][ T5011] RIP: 0033:0x7fb126831a99
[ 43.956799][ T5011] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 43.976429][ T5011] RSP: 002b:00007ffe6a6dc958 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 43.984837][ T5011] RAX: ffffffffffffffda RBX: 000000000000a6dd RCX: 00007fb126831a99
[ 43.992802][ T5011] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000004
[ 44.000786][ T5011] RBP: 0000000000000000 R08: 00007ffe6a6dcaf8 R09: 00007ffe6a6dcaf8
[ 44.008754][ T5011] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe6a6dc96c
[ 44.016720][ T5011] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000
[ 44.024780][ T5011]
[ 44.028418][ T5011] Kernel Offset: disabled
[ 44.032796][ T5011] Rebooting in 86400 seconds..