[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.10.9' (ECDSA) to the list of known hosts.
syzkaller login: [   58.397771][ T8395] IPVS: ftp: loaded support on port[0] = 21
[   58.471950][  T300] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.489349][  T300] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[   58.525425][  T167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.526628][ T3845] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   58.534891][  T167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.555049][ T2932] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   58.604859][ T8395] ------------[ cut here ]------------
[   58.638991][ T8395] wlan0: Failed check-sdata-in-driver check, flags: 0x4
[   58.646867][ T8395] WARNING: CPU: 0 PID: 8395 at net/mac80211/driver-ops.h:172 drv_bss_info_changed+0x4f8/0x5f0
[   58.672945][ T8395] Modules linked in:
[   58.677125][ T8395] CPU: 0 PID: 8395 Comm: syz-executor708 Not tainted 5.12.0-rc5-syzkaller #0
[   58.686072][ T8395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   58.696420][ T8395] RIP: 0010:drv_bss_info_changed+0x4f8/0x5f0
[   58.707251][ T8395] Code: 40 06 00 00 48 85 ed 0f 84 9c 00 00 00 e8 00 47 1f f9 e8 fb 46 1f f9 8b 54 24 04 48 89 ee 48 c7 c7 e0 d1 84 8a e8 24 2e 6d 00 <0f> 0b e9 dd fd ff ff e8 dc 46 1f f9 0f 0b e9 15 fd ff ff 4c 89 ff
[   58.727459][ T8395] RSP: 0018:ffffc90000eef508 EFLAGS: 00010286
[   58.734163][ T8395] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   58.742819][ T8395] RDX: ffff888014b754c0 RSI: ffffffff815c4cf5 RDI: fffff520001dde93
[   58.751047][ T8395] RBP: ffff888025cb4000 R08: 0000000000000000 R09: 0000000000000000
[   58.759469][ T8395] R10: ffffffff815bda8e R11: 0000000000000000 R12: ffff888025cb4c00
[   58.767529][ T8395] R13: 0000000002000000 R14: ffff888025cb5e20 R15: ffff888025cb5e18
[   58.775539][ T8395] FS:  0000000000bac300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   58.784719][ T8395] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   58.791342][ T8395] CR2: 00005628d257c160 CR3: 000000001445a000 CR4: 0000000000350ef0
[   58.799382][ T8395] Call Trace:
[   58.802655][ T8395]  ieee80211_bss_info_change_notify+0x9a/0xc0
[   58.808711][ T8395]  ieee80211_set_mcast_rate+0x37/0x40
[   58.814129][ T8395]  ? ieee80211_get_mesh_config+0x30/0x30
[   58.819822][ T8395]  nl80211_set_mcast_rate+0x317/0x610
[   58.825371][ T8395]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   58.832183][ T8395]  ? nl80211_pre_doit+0xa6/0x5c0
[   58.837125][ T8395]  genl_family_rcv_msg_doit+0x228/0x320
[   58.842734][ T8395]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[   58.850197][ T8395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   58.856466][ T8395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   58.863606][ T8395]  ? ns_capable+0xde/0x100
[   58.868025][ T8395]  genl_rcv_msg+0x328/0x580
[   58.872797][ T8395]  ? genl_get_cmd+0x480/0x480
[   58.877480][ T8395]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   58.884137][ T8395]  ? lock_release+0x720/0x720
[   58.888820][ T8395]  netlink_rcv_skb+0x153/0x420
[   58.893618][ T8395]  ? genl_get_cmd+0x480/0x480
[   58.898297][ T8395]  ? netlink_ack+0xaa0/0xaa0
[   58.903103][ T8395]  genl_rcv+0x24/0x40
[   58.907083][ T8395]  netlink_unicast+0x533/0x7d0
[   58.911907][ T8395]  ? netlink_attachskb+0x870/0x870
[   58.917175][ T8395]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   58.923476][ T8395]  ? __phys_addr_symbol+0x2c/0x70
[   58.928504][ T8395]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   58.934514][ T8395]  ? __check_object_size+0x171/0x3f0
[   58.939867][ T8395]  netlink_sendmsg+0x856/0xd90
[   58.944627][ T8395]  ? netlink_unicast+0x7d0/0x7d0
[   58.949596][ T8395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   58.955837][ T8395]  ? netlink_unicast+0x7d0/0x7d0
[   58.960832][ T8395]  sock_sendmsg+0xcf/0x120
[   58.965619][ T8395]  ____sys_sendmsg+0x6e8/0x810
[   58.970608][ T8395]  ? kernel_sendmsg+0x50/0x50
[   58.975289][ T8395]  ? do_recvmmsg+0x6d0/0x6d0
[   58.980112][ T8395]  ? lock_chain_count+0x20/0x20
[   58.984963][ T8395]  ? find_held_lock+0x2d/0x110
[   58.990513][ T8395]  ___sys_sendmsg+0xf3/0x170
[   58.995110][ T8395]  ? sendmsg_copy_msghdr+0x160/0x160
[   59.000695][ T8395]  ? __lock_acquire+0x16b3/0x54c0
[   59.005735][ T8395]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   59.011804][ T8395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   59.018048][ T8395]  ? __fget_light+0x215/0x280
[   59.022782][ T8395]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   59.029089][ T8395]  __sys_sendmsg+0xe5/0x1b0
[   59.033582][ T8395]  ? __sys_sendmsg_sock+0x30/0x30
[   59.038740][ T8395]  ? syscall_enter_from_user_mode+0x27/0x70
[   59.044783][ T8395]  do_syscall_64+0x2d/0x70
[   59.049274][ T8395]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   59.055170][ T8395] RIP: 0033:0x440869
[   59.059114][ T8395] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   59.079125][ T8395] RSP: 002b:00007ffc8a57dca8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.087550][ T8395] RAX: ffffffffffffffda RBX: 00000000004b73a0 RCX: 0000000000440869
[   59.095552][ T8395] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000004
[   59.103766][ T8395] RBP: 0000000000000003 R08: 0000000c004004b8 R09: 0000000c004004b8
[   59.111946][ T8395] R10: 0000000c004004b8 R11: 0000000000000246 R12: 0000000000000031
[   59.120646][ T8395] R13: 00007ffc8a57dcf0 R14: 00007ffc8a57dcda R15: 00000000004b7410
[   59.128614][ T8395] Kernel panic - not syncing: panic_on_warn set ...
[   59.135171][ T8395] CPU: 0 PID: 8395 Comm: syz-executor708 Not tainted 5.12.0-rc5-syzkaller #0
[   59.143905][ T8395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   59.153936][ T8395] Call Trace:
[   59.157199][ T8395]  dump_stack+0x141/0x1d7
[   59.161512][ T8395]  panic+0x306/0x73d
[   59.165386][ T8395]  ? __warn_printk+0xf3/0xf3
[   59.169960][ T8395]  ? __warn.cold+0x1a/0x44
[   59.174356][ T8395]  ? drv_bss_info_changed+0x4f8/0x5f0
[   59.179704][ T8395]  __warn.cold+0x35/0x44
[   59.183923][ T8395]  ? wake_up_klogd.part.0+0x8e/0xd0
[   59.189102][ T8395]  ? drv_bss_info_changed+0x4f8/0x5f0
[   59.194454][ T8395]  report_bug+0x1bd/0x210
[   59.198763][ T8395]  handle_bug+0x3c/0x60
[   59.202898][ T8395]  exc_invalid_op+0x14/0x40
[   59.207384][ T8395]  asm_exc_invalid_op+0x12/0x20
[   59.212210][ T8395] RIP: 0010:drv_bss_info_changed+0x4f8/0x5f0
[   59.218170][ T8395] Code: 40 06 00 00 48 85 ed 0f 84 9c 00 00 00 e8 00 47 1f f9 e8 fb 46 1f f9 8b 54 24 04 48 89 ee 48 c7 c7 e0 d1 84 8a e8 24 2e 6d 00 <0f> 0b e9 dd fd ff ff e8 dc 46 1f f9 0f 0b e9 15 fd ff ff 4c 89 ff
[   59.237753][ T8395] RSP: 0018:ffffc90000eef508 EFLAGS: 00010286
[   59.243799][ T8395] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   59.251750][ T8395] RDX: ffff888014b754c0 RSI: ffffffff815c4cf5 RDI: fffff520001dde93
[   59.259700][ T8395] RBP: ffff888025cb4000 R08: 0000000000000000 R09: 0000000000000000
[   59.267648][ T8395] R10: ffffffff815bda8e R11: 0000000000000000 R12: ffff888025cb4c00
[   59.275594][ T8395] R13: 0000000002000000 R14: ffff888025cb5e20 R15: ffff888025cb5e18
[   59.283544][ T8395]  ? wake_up_klogd.part.0+0x8e/0xd0
[   59.288724][ T8395]  ? vprintk_func+0x95/0x1e0
[   59.293295][ T8395]  ? drv_bss_info_changed+0x4f8/0x5f0
[   59.298646][ T8395]  ieee80211_bss_info_change_notify+0x9a/0xc0
[   59.304692][ T8395]  ieee80211_set_mcast_rate+0x37/0x40
[   59.310042][ T8395]  ? ieee80211_get_mesh_config+0x30/0x30
[   59.315653][ T8395]  nl80211_set_mcast_rate+0x317/0x610
[   59.321003][ T8395]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   59.327590][ T8395]  ? nl80211_pre_doit+0xa6/0x5c0
[   59.332508][ T8395]  genl_family_rcv_msg_doit+0x228/0x320
[   59.338035][ T8395]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[   59.345381][ T8395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   59.351608][ T8395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   59.357825][ T8395]  ? ns_capable+0xde/0x100
[   59.362224][ T8395]  genl_rcv_msg+0x328/0x580
[   59.366704][ T8395]  ? genl_get_cmd+0x480/0x480
[   59.371359][ T8395]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   59.377931][ T8395]  ? lock_release+0x720/0x720
[   59.382594][ T8395]  netlink_rcv_skb+0x153/0x420
[   59.387350][ T8395]  ? genl_get_cmd+0x480/0x480
[   59.392008][ T8395]  ? netlink_ack+0xaa0/0xaa0
[   59.396585][ T8395]  genl_rcv+0x24/0x40
[   59.400543][ T8395]  netlink_unicast+0x533/0x7d0
[   59.405285][ T8395]  ? netlink_attachskb+0x870/0x870
[   59.410370][ T8395]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   59.416589][ T8395]  ? __phys_addr_symbol+0x2c/0x70
[   59.421593][ T8395]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   59.427291][ T8395]  ? __check_object_size+0x171/0x3f0
[   59.432557][ T8395]  netlink_sendmsg+0x856/0xd90
[   59.437299][ T8395]  ? netlink_unicast+0x7d0/0x7d0
[   59.442216][ T8395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   59.448436][ T8395]  ? netlink_unicast+0x7d0/0x7d0
[   59.453351][ T8395]  sock_sendmsg+0xcf/0x120
[   59.457749][ T8395]  ____sys_sendmsg+0x6e8/0x810
[   59.462492][ T8395]  ? kernel_sendmsg+0x50/0x50
[   59.467148][ T8395]  ? do_recvmmsg+0x6d0/0x6d0
[   59.471715][ T8395]  ? lock_chain_count+0x20/0x20
[   59.476544][ T8395]  ? find_held_lock+0x2d/0x110
[   59.481287][ T8395]  ___sys_sendmsg+0xf3/0x170
[   59.485856][ T8395]  ? sendmsg_copy_msghdr+0x160/0x160
[   59.491121][ T8395]  ? __lock_acquire+0x16b3/0x54c0
[   59.496134][ T8395]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   59.502100][ T8395]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   59.508318][ T8395]  ? __fget_light+0x215/0x280
[   59.512973][ T8395]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   59.519199][ T8395]  __sys_sendmsg+0xe5/0x1b0
[   59.523680][ T8395]  ? __sys_sendmsg_sock+0x30/0x30
[   59.528700][ T8395]  ? syscall_enter_from_user_mode+0x27/0x70
[   59.534574][ T8395]  do_syscall_64+0x2d/0x70
[   59.538975][ T8395]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   59.544846][ T8395] RIP: 0033:0x440869
[   59.548713][ T8395] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   59.568309][ T8395] RSP: 002b:00007ffc8a57dca8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.576703][ T8395] RAX: ffffffffffffffda RBX: 00000000004b73a0 RCX: 0000000000440869
[   59.584654][ T8395] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000004
[   59.592599][ T8395] RBP: 0000000000000003 R08: 0000000c004004b8 R09: 0000000c004004b8
[   59.600551][ T8395] R10: 0000000c004004b8 R11: 0000000000000246 R12: 0000000000000031
[   59.608500][ T8395] R13: 00007ffc8a57dcf0 R14: 00007ffc8a57dcda R15: 00000000004b7410
[   59.620585][ T8395] Kernel Offset: disabled
[   59.625056][ T8395] Rebooting in 86400 seconds..