[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.94' (ECDSA) to the list of known hosts.
syzkaller login: [   60.974973][ T8467] IPVS: ftp: loaded support on port[0] = 21
[   61.063083][  T418] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.075594][  T418] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.095952][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
executing program
[   61.115205][    T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.123859][    T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.134604][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   61.184936][ T8467] ------------[ cut here ]------------
[   61.212095][ T8467] wlan0: Failed check-sdata-in-driver check, flags: 0x4
[   61.237908][ T8467] WARNING: CPU: 1 PID: 8467 at net/mac80211/driver-ops.h:172 drv_bss_info_changed+0x4f3/0x5f0
[   61.263350][ T8467] Modules linked in:
[   61.267692][ T8467] CPU: 1 PID: 8467 Comm: syz-executor314 Not tainted 5.10.0-rc7-syzkaller #0
[   61.276758][ T8467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   61.303223][ T8467] RIP: 0010:drv_bss_info_changed+0x4f3/0x5f0
[   61.309341][ T8467] Code: 40 06 00 00 48 85 ed 0f 84 9c 00 00 00 e8 c5 30 2d f9 e8 c0 30 2d f9 8b 54 24 04 48 89 ee 48 c7 c7 00 88 61 8a e8 69 9f 69 00 <0f> 0b e9 dd fd ff ff e8 a1 30 2d f9 0f 0b e9 15 fd ff ff 4c 89 ff
[   61.329162][ T8467] RSP: 0000:ffffc900011df508 EFLAGS: 00010286
[   61.335216][ T8467] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   61.343276][ T8467] RDX: ffff8880197d4ec0 RSI: ffffffff8158c835 RDI: fffff5200023be93
[   61.351783][ T8467] RBP: ffff88801b37c000 R08: 0000000000000001 R09: ffff8880b9f30627
[   61.359807][ T8467] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88801b37cc00
[   61.367897][ T8467] R13: 0000000002000000 R14: ffff88801b37de20 R15: ffff88801b37de18
[   61.375882][ T8467] FS:  0000000001718880(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000
[   61.384861][ T8467] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   61.391527][ T8467] CR2: 00007f9980a2f740 CR3: 0000000025119000 CR4: 00000000001506e0
[   61.399560][ T8467] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   61.407614][ T8467] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   61.415613][ T8467] Call Trace:
[   61.418975][ T8467]  ieee80211_bss_info_change_notify+0x9a/0xc0
[   61.425041][ T8467]  ieee80211_set_mcast_rate+0x37/0x40
[   61.430482][ T8467]  ? ieee80211_set_wds_peer+0x30/0x30
[   61.435867][ T8467]  nl80211_set_mcast_rate+0x317/0x610
[   61.441285][ T8467]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   61.447978][ T8467]  ? nl80211_pre_doit+0xa2/0x630
[   61.452919][ T8467]  genl_family_rcv_msg_doit+0x228/0x320
[   61.458525][ T8467]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[   61.465901][ T8467]  ? ns_capable+0xde/0x100
[   61.470396][ T8467]  genl_rcv_msg+0x328/0x580
[   61.474909][ T8467]  ? genl_get_cmd+0x480/0x480
[   61.479664][ T8467]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   61.486248][ T8467]  ? lock_release+0x710/0x710
[   61.491656][ T8467]  netlink_rcv_skb+0x153/0x420
[   61.496530][ T8467]  ? genl_get_cmd+0x480/0x480
[   61.501255][ T8467]  ? netlink_ack+0xaa0/0xaa0
[   61.505853][ T8467]  genl_rcv+0x24/0x40
[   61.509927][ T8467]  netlink_unicast+0x533/0x7d0
[   61.514691][ T8467]  ? netlink_attachskb+0x810/0x810
[   61.519871][ T8467]  ? __phys_addr_symbol+0x2c/0x70
[   61.524891][ T8467]  ? __check_object_size+0x171/0x3f0
[   61.530269][ T8467]  netlink_sendmsg+0x856/0xd90
[   61.535030][ T8467]  ? netlink_unicast+0x7d0/0x7d0
[   61.540040][ T8467]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[   61.545324][ T8467]  ? netlink_unicast+0x7d0/0x7d0
[   61.550418][ T8467]  sock_sendmsg+0xcf/0x120
[   61.554830][ T8467]  ____sys_sendmsg+0x6e8/0x810
[   61.559660][ T8467]  ? kernel_sendmsg+0x50/0x50
[   61.564352][ T8467]  ? do_recvmmsg+0x6c0/0x6c0
[   61.569015][ T8467]  ? find_held_lock+0x2d/0x110
[   61.573794][ T8467]  ___sys_sendmsg+0xf3/0x170
[   61.578441][ T8467]  ? sendmsg_copy_msghdr+0x160/0x160
[   61.583732][ T8467]  ? _copy_to_user+0xdc/0x150
[   61.588483][ T8467]  ? sock_do_ioctl+0x168/0x2d0
[   61.593243][ T8467]  ? compat_ifr_data_ioctl+0x150/0x150
[   61.598767][ T8467]  ? __sanitizer_cov_trace_switch+0x45/0x70
[   61.604665][ T8467]  ? __fget_light+0x215/0x280
[   61.609424][ T8467]  __sys_sendmsg+0xe5/0x1b0
[   61.613923][ T8467]  ? __sys_sendmsg_sock+0xb0/0xb0
[   61.619062][ T8467]  ? syscall_enter_from_user_mode+0x1d/0x50
[   61.624955][ T8467]  do_syscall_64+0x2d/0x70
[   61.629512][ T8467]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   61.635411][ T8467] RIP: 0033:0x4417f9
[   61.639405][ T8467] Code: e8 dc 05 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   61.659174][ T8467] RSP: 002b:00007ffce4f663d8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   61.667626][ T8467] RAX: ffffffffffffffda RBX: 00007ffce4f66400 RCX: 00000000004417f9
[   61.675590][ T8467] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000004
[   61.683628][ T8467] RBP: 0000000000000003 R08: 0000002100000000 R09: 0000002100000000
[   61.691665][ T8467] R10: 0000002100000000 R11: 0000000000000246 R12: 0000000000000032
[   61.699733][ T8467] R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000004
[   61.707774][ T8467] Kernel panic - not syncing: panic_on_warn set ...
[   61.714345][ T8467] CPU: 1 PID: 8467 Comm: syz-executor314 Not tainted 5.10.0-rc7-syzkaller #0
[   61.723075][ T8467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   61.733724][ T8467] Call Trace:
[   61.736995][ T8467]  dump_stack+0x107/0x163
[   61.741305][ T8467]  panic+0x306/0x73d
[   61.745177][ T8467]  ? __warn_printk+0xf3/0xf3
[   61.749751][ T8467]  ? __warn.cold+0x1a/0x44
[   61.754162][ T8467]  ? __warn+0xf1/0x210
[   61.758212][ T8467]  ? drv_bss_info_changed+0x4f3/0x5f0
[   61.763561][ T8467]  __warn.cold+0x35/0x44
[   61.767780][ T8467]  ? wake_up_klogd.part.0+0x8e/0xd0
[   61.773042][ T8467]  ? drv_bss_info_changed+0x4f3/0x5f0
[   61.778393][ T8467]  report_bug+0x1bd/0x210
[   61.782701][ T8467]  handle_bug+0x3c/0x60
[   61.786832][ T8467]  exc_invalid_op+0x14/0x40
[   61.791319][ T8467]  asm_exc_invalid_op+0x12/0x20
[   61.796159][ T8467] RIP: 0010:drv_bss_info_changed+0x4f3/0x5f0
[   61.802117][ T8467] Code: 40 06 00 00 48 85 ed 0f 84 9c 00 00 00 e8 c5 30 2d f9 e8 c0 30 2d f9 8b 54 24 04 48 89 ee 48 c7 c7 00 88 61 8a e8 69 9f 69 00 <0f> 0b e9 dd fd ff ff e8 a1 30 2d f9 0f 0b e9 15 fd ff ff 4c 89 ff
[   61.821697][ T8467] RSP: 0000:ffffc900011df508 EFLAGS: 00010286
[   61.827740][ T8467] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   61.835697][ T8467] RDX: ffff8880197d4ec0 RSI: ffffffff8158c835 RDI: fffff5200023be93
[   61.843645][ T8467] RBP: ffff88801b37c000 R08: 0000000000000001 R09: ffff8880b9f30627
[   61.851594][ T8467] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88801b37cc00
[   61.859542][ T8467] R13: 0000000002000000 R14: ffff88801b37de20 R15: ffff88801b37de18
[   61.867501][ T8467]  ? vprintk_func+0x95/0x1e0
[   61.872072][ T8467]  ? drv_bss_info_changed+0x4f3/0x5f0
[   61.877426][ T8467]  ieee80211_bss_info_change_notify+0x9a/0xc0
[   61.883469][ T8467]  ieee80211_set_mcast_rate+0x37/0x40
[   61.888817][ T8467]  ? ieee80211_set_wds_peer+0x30/0x30
[   61.894180][ T8467]  nl80211_set_mcast_rate+0x317/0x610
[   61.899537][ T8467]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   61.906110][ T8467]  ? nl80211_pre_doit+0xa2/0x630
[   61.911040][ T8467]  genl_family_rcv_msg_doit+0x228/0x320
[   61.916563][ T8467]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[   61.923915][ T8467]  ? ns_capable+0xde/0x100
[   61.928313][ T8467]  genl_rcv_msg+0x328/0x580
[   61.932793][ T8467]  ? genl_get_cmd+0x480/0x480
[   61.937456][ T8467]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   61.944032][ T8467]  ? lock_release+0x710/0x710
[   61.948689][ T8467]  netlink_rcv_skb+0x153/0x420
[   61.953429][ T8467]  ? genl_get_cmd+0x480/0x480
[   61.958081][ T8467]  ? netlink_ack+0xaa0/0xaa0
[   61.962659][ T8467]  genl_rcv+0x24/0x40
[   61.966615][ T8467]  netlink_unicast+0x533/0x7d0
[   61.971358][ T8467]  ? netlink_attachskb+0x810/0x810
[   61.976459][ T8467]  ? __phys_addr_symbol+0x2c/0x70
[   61.981461][ T8467]  ? __check_object_size+0x171/0x3f0
[   61.986735][ T8467]  netlink_sendmsg+0x856/0xd90
[   61.991480][ T8467]  ? netlink_unicast+0x7d0/0x7d0
[   61.996411][ T8467]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[   62.001674][ T8467]  ? netlink_unicast+0x7d0/0x7d0
[   62.006600][ T8467]  sock_sendmsg+0xcf/0x120
[   62.010995][ T8467]  ____sys_sendmsg+0x6e8/0x810
[   62.015737][ T8467]  ? kernel_sendmsg+0x50/0x50
[   62.020403][ T8467]  ? do_recvmmsg+0x6c0/0x6c0
[   62.024982][ T8467]  ? find_held_lock+0x2d/0x110
[   62.029737][ T8467]  ___sys_sendmsg+0xf3/0x170
[   62.034315][ T8467]  ? sendmsg_copy_msghdr+0x160/0x160
[   62.039596][ T8467]  ? _copy_to_user+0xdc/0x150
[   62.044270][ T8467]  ? sock_do_ioctl+0x168/0x2d0
[   62.049023][ T8467]  ? compat_ifr_data_ioctl+0x150/0x150
[   62.054465][ T8467]  ? __sanitizer_cov_trace_switch+0x45/0x70
[   62.060345][ T8467]  ? __fget_light+0x215/0x280
[   62.065009][ T8467]  __sys_sendmsg+0xe5/0x1b0
[   62.069492][ T8467]  ? __sys_sendmsg_sock+0xb0/0xb0
[   62.074512][ T8467]  ? syscall_enter_from_user_mode+0x1d/0x50
[   62.080387][ T8467]  do_syscall_64+0x2d/0x70
[   62.084787][ T8467]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   62.090655][ T8467] RIP: 0033:0x4417f9
[   62.094541][ T8467] Code: e8 dc 05 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   62.114122][ T8467] RSP: 002b:00007ffce4f663d8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.122530][ T8467] RAX: ffffffffffffffda RBX: 00007ffce4f66400 RCX: 00000000004417f9
[   62.130486][ T8467] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000004
[   62.138440][ T8467] RBP: 0000000000000003 R08: 0000002100000000 R09: 0000002100000000
[   62.146391][ T8467] R10: 0000002100000000 R11: 0000000000000246 R12: 0000000000000032
[   62.154355][ T8467] R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000004
[   62.163150][ T8467] Kernel Offset: disabled
[   62.167557][ T8467] Rebooting in 86400 seconds..