Warning: Permanently added '10.128.15.199' (ECDSA) to the list of known hosts. syzkaller login: [ 30.577330] IPVS: ftp: loaded support on port[0] = 21 [ 30.669736] chnl_net:caif_netlink_parms(): no params data found [ 30.731819] bridge0: port 1(bridge_slave_0) entered blocking state [ 30.738547] bridge0: port 1(bridge_slave_0) entered disabled state [ 30.746608] device bridge_slave_0 entered promiscuous mode [ 30.753284] bridge0: port 2(bridge_slave_1) entered blocking state [ 30.760237] bridge0: port 2(bridge_slave_1) entered disabled state [ 30.767527] device bridge_slave_1 entered promiscuous mode [ 30.783511] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 30.792185] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 30.809311] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 30.816845] team0: Port device team_slave_0 added [ 30.822220] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 30.830218] team0: Port device team_slave_1 added [ 30.844915] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 30.851157] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 30.876918] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 30.888097] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 30.895046] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 30.920277] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 30.930756] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 30.938298] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 30.956791] device hsr_slave_0 entered promiscuous mode [ 30.962360] device hsr_slave_1 entered promiscuous mode [ 30.968454] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 30.975507] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 31.037982] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.044407] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.051102] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.057508] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.083222] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 31.090184] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.099392] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 31.108795] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 31.116885] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.124802] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.135094] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 31.141149] 8021q: adding VLAN 0 to HW filter on device team0 [ 31.150372] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 31.158217] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.164623] bridge0: port 1(bridge_slave_0) entered forwarding state [ 31.173315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 31.181347] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.187723] bridge0: port 2(bridge_slave_1) entered forwarding state [ 31.205456] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 31.213085] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 31.221469] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 31.229323] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 31.237850] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 31.247056] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 31.253027] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 31.265253] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 31.272290] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 31.279427] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 31.289294] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 31.337720] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 31.347747] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 31.376431] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 31.383302] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 31.391001] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 31.399869] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 31.407779] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 31.414728] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 31.422923] device veth0_vlan entered promiscuous mode [ 31.431566] device veth1_vlan entered promiscuous mode [ 31.437752] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 31.446762] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 31.458360] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 31.467034] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 31.475233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 31.482344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 31.491783] device veth0_macvtap entered promiscuous mode [ 31.498260] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 31.506709] device veth1_macvtap entered promiscuous mode [ 31.515143] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 31.523877] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 31.533130] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 31.541261] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 31.549355] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 31.558550] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 31.565639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 31.655850] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 31.667871] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 31.689685] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 31.696721] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 executing program [ 31.704990] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 31.712075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 31.719390] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 31.728014] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 31.737107] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 31.756731] ------------[ cut here ]------------ [ 31.761570] WARNING: CPU: 0 PID: 715 at net/mac80211/ibss.c:506 ieee80211_ibss_csa_beacon+0x523/0x670 [ 31.770911] Kernel panic - not syncing: panic_on_warn set ... [ 31.770911] [ 31.778257] CPU: 0 PID: 715 Comm: kworker/u4:3 Not tainted 4.14.204-syzkaller #0 [ 31.785783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.795137] Workqueue: phy3 ieee80211_csa_finalize_work [ 31.800494] Call Trace: [ 31.803076] dump_stack+0x1b2/0x283 [ 31.806694] panic+0x1f9/0x42d [ 31.809865] ? add_taint.cold+0x16/0x16 [ 31.813827] ? ieee80211_ibss_csa_beacon+0x523/0x670 [ 31.818906] ? ieee80211_ibss_csa_beacon+0x523/0x670 [ 31.823993] __warn.cold+0x20/0x4b [ 31.827519] ? ist_end_non_atomic+0x10/0x10 [ 31.831841] ? ieee80211_ibss_csa_beacon+0x523/0x670 [ 31.836941] report_bug+0x208/0x249 [ 31.840556] do_error_trap+0x195/0x2d0 [ 31.844421] ? math_error+0x2d0/0x2d0 [ 31.848217] ? cfg80211_get_bss+0x7af/0xc10 [ 31.852527] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 31.857345] invalid_op+0x1b/0x40 [ 31.860786] RIP: 0010:ieee80211_ibss_csa_beacon+0x523/0x670 [ 31.866469] RSP: 0018:ffff8880b4097ca0 EFLAGS: 00010297 [ 31.871818] RAX: ffff8880b4044440 RBX: ffff888094155b40 RCX: 1ffff110168089b1 [ 31.879498] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8880b4044cc4 [ 31.886746] RBP: 0000000000000002 R08: 0000000000000001 R09: 0000000000000000 [ 31.894001] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 31.901257] R13: ffff888094156630 R14: ffff888094bb9160 R15: ffff888094156068 [ 31.908527] ? ieee80211_ibss_finish_csa+0xe3/0x490 [ 31.913533] __ieee80211_csa_finalize+0x677/0xca0 [ 31.918353] ieee80211_csa_finalize_work+0x105/0x130 [ 31.923435] process_one_work+0x793/0x14a0 [ 31.928166] ? work_busy+0x320/0x320 [ 31.931862] ? worker_thread+0x158/0xff0 [ 31.935900] ? _raw_spin_unlock_irq+0x24/0x80 [ 31.940383] worker_thread+0x5cc/0xff0 [ 31.944260] ? rescuer_thread+0xc80/0xc80 [ 31.948381] kthread+0x30d/0x420 [ 31.951732] ? kthread_create_on_node+0xd0/0xd0 [ 31.956376] ret_from_fork+0x24/0x30 [ 31.960666] Kernel Offset: disabled [ 31.964320] Rebooting in 86400 seconds..