[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.173' (ECDSA) to the list of known hosts. syzkaller login: [ 66.581737][ T8503] IPVS: ftp: loaded support on port[0] = 21 [ 66.660273][ T170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.676984][ T170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program [ 66.703691][ T3184] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 66.725484][ T170] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 66.733415][ T170] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 66.743098][ T3184] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 66.757799][ T8503] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 66.769501][ T8503] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 66.777936][ T8503] CPU: 1 PID: 8503 Comm: syz-executor669 Not tainted 5.9.0-syzkaller #0 [ 66.786231][ T8503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.796273][ T8503] RIP: 0010:call_commit_handler+0x8b/0x110 [ 66.802082][ T8503] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 7d 48 8b 9d e0 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <80> 3c 02 00 75 73 48 b8 00 00 00 00 00 fc ff df 48 8b 1b 48 89 da [ 66.821694][ T8503] RSP: 0018:ffffc90001927ca8 EFLAGS: 00010246 [ 66.827748][ T8503] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8844a758 [ 66.835719][ T8503] RDX: 0000000000000000 RSI: ffffffff8844a765 RDI: ffff88809b6f81e0 [ 66.843668][ T8503] RBP: ffff88809b6f8000 R08: 0000000000000000 R09: ffff88809b6f8047 [ 66.851643][ T8503] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88809b6f8040 [ 66.859626][ T8503] R13: ffffc90001927db0 R14: ffff88809b6f8000 R15: 0000000000000004 [ 66.867606][ T8503] FS: 0000000000725880(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000 [ 66.876794][ T8503] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 66.883391][ T8503] CR2: 00000000200000c0 CR3: 00000000aabca000 CR4: 00000000001506e0 [ 66.891353][ T8503] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 66.899326][ T8503] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 66.907288][ T8503] Call Trace: [ 66.910583][ T8503] ioctl_standard_call+0x1b8/0x1f0 [ 66.915678][ T8503] ? cfg80211_wext_freq+0x1b0/0x1b0 [ 66.920862][ T8503] ? iw_handler_get_private+0x1a0/0x1a0 [ 66.926391][ T8503] ? cfg80211_wext_freq+0x1b0/0x1b0 [ 66.931569][ T8503] wireless_process_ioctl+0xc8/0x4c0 [ 66.936836][ T8503] ? call_commit_handler+0x110/0x110 [ 66.942116][ T8503] wext_handle_ioctl+0x26b/0x280 [ 66.947030][ T8503] ? compat_standard_call+0x340/0x340 [ 66.952393][ T8503] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 66.958266][ T8503] ? generic_block_fiemap+0x60/0x60 [ 66.963457][ T8503] ? __up_read+0x1a1/0x7b0 [ 66.967860][ T8503] sock_ioctl+0x439/0x730 [ 66.972163][ T8503] ? dlci_ioctl_set+0x30/0x30 [ 66.978039][ T8503] ? vmacache_update+0xce/0x140 [ 66.982882][ T8503] ? bpf_lsm_file_ioctl+0x5/0x10 [ 66.987811][ T8503] ? dlci_ioctl_set+0x30/0x30 [ 66.992481][ T8503] __x64_sys_ioctl+0x193/0x200 [ 66.997233][ T8503] do_syscall_64+0x2d/0x70 [ 67.001635][ T8503] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 67.007522][ T8503] RIP: 0033:0x441549 [ 67.011411][ T8503] Code: e8 ec 05 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.031010][ T8503] RSP: 002b:00007ffec8be6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 67.039426][ T8503] RAX: ffffffffffffffda RBX: 00007ffec8be6050 RCX: 0000000000441549 [ 67.047392][ T8503] RDX: 00000000200000c0 RSI: 0000000000008b04 RDI: 0000000000000003 [ 67.055345][ T8503] RBP: 0000000000000003 R08: 0000002000000000 R09: 0000002000000000 [ 67.063315][ T8503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000032 [ 67.071266][ T8503] R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000004 [ 67.079225][ T8503] Modules linked in: [ 67.085170][ T8503] ---[ end trace e41146864548f580 ]--- [ 67.090655][ T8503] RIP: 0010:call_commit_handler+0x8b/0x110 [ 67.096784][ T8503] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 7d 48 8b 9d e0 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <80> 3c 02 00 75 73 48 b8 00 00 00 00 00 fc ff df 48 8b 1b 48 89 da [ 67.117510][ T8503] RSP: 0018:ffffc90001927ca8 EFLAGS: 00010246 [ 67.123589][ T8503] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8844a758 [ 67.131592][ T8503] RDX: 0000000000000000 RSI: ffffffff8844a765 RDI: ffff88809b6f81e0 [ 67.139632][ T8503] RBP: ffff88809b6f8000 R08: 0000000000000000 R09: ffff88809b6f8047 [ 67.147647][ T8503] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88809b6f8040 [ 67.155662][ T8503] R13: ffffc90001927db0 R14: ffff88809b6f8000 R15: 0000000000000004 [ 67.163630][ T8503] FS: 0000000000725880(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000 [ 67.172599][ T8503] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.179240][ T8503] CR2: 00007f952003c058 CR3: 00000000aabca000 CR4: 00000000001506e0 [ 67.187244][ T8503] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 67.195262][ T8503] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 67.203248][ T8503] Kernel panic - not syncing: Fatal exception [ 67.209756][ T8503] Kernel Offset: disabled [ 67.214074][ T8503] Rebooting in 86400 seconds..