DUID 00:04:dc:6c:a8:75:19:b8:f7:30:df:f1:e8:1e:24:9d:66:1e
forked to background, child pid 3175
[   26.518428][ T3176] 8021q: adding VLAN 0 to HW filter on device bond0
[   26.530690][ T3176] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.66' (ECDSA) to the list of known hosts.
syzkaller login: [   61.276959][   T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.291742][   T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.302516][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   61.312799][  T978] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
executing program
executing program
[   61.321251][  T978] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.330243][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   61.360092][ T3595] ------------[ cut here ]------------
[   61.365732][ T3595] wlan1: Failed check-sdata-in-driver check, flags: 0x4
[   61.373144][ T3595] WARNING: CPU: 1 PID: 3595 at net/mac80211/driver-ops.h:172 drv_bss_info_changed+0x4dd/0x5f0
[   61.384068][ T3595] Modules linked in:
[   61.388376][ T3595] CPU: 0 PID: 3595 Comm: syz-executor422 Not tainted 5.17.0-rc8-syzkaller-00003-g56e337f2cf13 #0
[   61.399039][ T3595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   61.409653][ T3595] RIP: 0010:drv_bss_info_changed+0x4dd/0x5f0
[   61.415756][ T3595] Code: 08 06 00 00 48 85 ed 0f 84 b9 00 00 00 e8 6b 0a e4 f8 e8 66 0a e4 f8 8b 54 24 04 48 89 ee 48 c7 c7 40 c3 ce 8a e8 55 68 73 00 <0f> 0b e9 f6 fd ff ff e8 47 0a e4 f8 e8 62 7b b7 00 31 ff 89 c3 89
[   61.435625][ T3595] RSP: 0018:ffffc90001fa7500 EFLAGS: 00010282
[   61.441698][ T3595] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   61.449714][ T3595] RDX: ffff88807cb19d00 RSI: ffffffff815ff5a8 RDI: fffff520003f4e92
[   61.457725][ T3595] RBP: ffff88807ce9c000 R08: 0000000000000000 R09: 0000000000000000
[   61.465796][ T3595] R10: ffffffff815f9c3e R11: 0000000000000000 R12: ffff88807ce9ccc0
[   61.473899][ T3595] R13: 0000000002000000 R14: ffff88807ce9e310 R15: ffff88807ce9e308
[   61.481940][ T3595] FS:  0000555555fb7300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
[   61.490908][ T3595] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   61.497548][ T3595] CR2: 00000000200001c0 CR3: 000000001977d000 CR4: 00000000003506e0
[   61.505550][ T3595] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   61.513518][ T3595] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   61.521565][ T3595] Call Trace:
[   61.525087][ T3595]  <TASK>
[   61.528019][ T3595]  ieee80211_bss_info_change_notify+0x9a/0xc0
[   61.534099][ T3595]  ieee80211_set_mcast_rate+0x37/0x40
[   61.539547][ T3595]  ? ieee80211_get_mesh_config+0x30/0x30
[   61.545315][ T3595]  nl80211_set_mcast_rate+0x317/0x610
[   61.550704][ T3595]  ? nl80211_tdls_cancel_channel_switch+0x5a0/0x5a0
[   61.557372][ T3595]  ? nl80211_pre_doit+0xa6/0x620
[   61.562326][ T3595]  genl_family_rcv_msg_doit+0x228/0x320
[   61.567958][ T3595]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[   61.575597][ T3595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   61.581851][ T3595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   61.588129][ T3595]  ? ns_capable+0xd9/0x100
[   61.592561][ T3595]  genl_rcv_msg+0x328/0x580
[   61.597151][ T3595]  ? genl_get_cmd+0x480/0x480
[   61.601841][ T3595]  ? nl80211_tdls_cancel_channel_switch+0x5a0/0x5a0
[   61.608484][ T3595]  ? lock_release+0x720/0x720
[   61.613178][ T3595]  netlink_rcv_skb+0x153/0x420
[   61.618005][ T3595]  ? genl_get_cmd+0x480/0x480
[   61.622688][ T3595]  ? netlink_ack+0xa60/0xa60
[   61.627387][ T3595]  ? netlink_deliver_tap+0x1b1/0xc30
[   61.632692][ T3595]  genl_rcv+0x24/0x40
[   61.636743][ T3595]  netlink_unicast+0x539/0x7e0
[   61.641518][ T3595]  ? netlink_attachskb+0x880/0x880
[   61.646668][ T3595]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   61.652952][ T3595]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   61.659297][ T3595]  ? __phys_addr_symbol+0x2c/0x70
[   61.664335][ T3595]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   61.670127][ T3595]  ? __check_object_size+0x16e/0x310
[   61.675488][ T3595]  netlink_sendmsg+0x904/0xe00
[   61.680269][ T3595]  ? netlink_unicast+0x7e0/0x7e0
[   61.685260][ T3595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   61.691545][ T3595]  ? netlink_unicast+0x7e0/0x7e0
[   61.696559][ T3595]  sock_sendmsg+0xcf/0x120
[   61.700988][ T3595]  ____sys_sendmsg+0x6e8/0x810
[   61.705815][ T3595]  ? kernel_sendmsg+0x50/0x50
[   61.710502][ T3595]  ? do_recvmmsg+0x6d0/0x6d0
[   61.715168][ T3595]  ? find_held_lock+0x2d/0x110
[   61.719944][ T3595]  ? __might_fault+0xd1/0x170
[   61.724615][ T3595]  ? lock_downgrade+0x6e0/0x6e0
[   61.729511][ T3595]  ___sys_sendmsg+0xf3/0x170
[   61.734119][ T3595]  ? sendmsg_copy_msghdr+0x160/0x160
[   61.739488][ T3595]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   61.745511][ T3595]  ? get_user_ifreq+0x250/0x250
[   61.750364][ T3595]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   61.756412][ T3595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   61.762663][ T3595]  ? __fget_light+0x215/0x280
[   61.767397][ T3595]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   61.773649][ T3595]  __sys_sendmsg+0xe5/0x1b0
[   61.778214][ T3595]  ? __sys_sendmsg_sock+0x30/0x30
[   61.783277][ T3595]  ? syscall_enter_from_user_mode+0x21/0x70
[   61.789240][ T3595]  do_syscall_64+0x35/0xb0
[   61.793669][ T3595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   61.799683][ T3595] RIP: 0033:0x7fbb7da1d269
[   61.804103][ T3595] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   61.823826][ T3595] RSP: 002b:00007fff3890b448 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   61.832269][ T3595] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007fbb7da1d269
[   61.840303][ T3595] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000003
[   61.848300][ T3595] RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000
[   61.856328][ T3595] R10: 0000000c00000000 R11: 0000000000000246 R12: 000000000000ef8d
[   61.864328][ T3595] R13: 00007fff3890b4b0 R14: 00007fff3890b4a0 R15: 00007fff3890b46c
[   61.872376][ T3595]  </TASK>
[   61.875446][ T3595] Kernel panic - not syncing: panic_on_warn set ...
[   61.882011][ T3595] CPU: 1 PID: 3595 Comm: syz-executor422 Not tainted 5.17.0-rc8-syzkaller-00003-g56e337f2cf13 #0
[   61.892490][ T3595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   61.902535][ T3595] Call Trace:
[   61.905807][ T3595]  <TASK>
[   61.908728][ T3595]  dump_stack_lvl+0xcd/0x134
[   61.913322][ T3595]  panic+0x2b0/0x6dd
[   61.917213][ T3595]  ? __warn_printk+0xf3/0xf3
[   61.921803][ T3595]  ? __warn.cold+0x1d1/0x2cf
[   61.926387][ T3595]  ? drv_bss_info_changed+0x4dd/0x5f0
[   61.931758][ T3595]  __warn.cold+0x1ec/0x2cf
[   61.936171][ T3595]  ? wake_up_klogd.part.0+0x8e/0xd0
[   61.941370][ T3595]  ? drv_bss_info_changed+0x4dd/0x5f0
[   61.946740][ T3595]  report_bug+0x1bd/0x210
[   61.951072][ T3595]  handle_bug+0x3c/0x60
[   61.955238][ T3595]  exc_invalid_op+0x14/0x40
[   61.959760][ T3595]  asm_exc_invalid_op+0x12/0x20
[   61.964605][ T3595] RIP: 0010:drv_bss_info_changed+0x4dd/0x5f0
[   61.970589][ T3595] Code: 08 06 00 00 48 85 ed 0f 84 b9 00 00 00 e8 6b 0a e4 f8 e8 66 0a e4 f8 8b 54 24 04 48 89 ee 48 c7 c7 40 c3 ce 8a e8 55 68 73 00 <0f> 0b e9 f6 fd ff ff e8 47 0a e4 f8 e8 62 7b b7 00 31 ff 89 c3 89
[   61.990202][ T3595] RSP: 0018:ffffc90001fa7500 EFLAGS: 00010282
[   61.996268][ T3595] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   62.004231][ T3595] RDX: ffff88807cb19d00 RSI: ffffffff815ff5a8 RDI: fffff520003f4e92
[   62.012195][ T3595] RBP: ffff88807ce9c000 R08: 0000000000000000 R09: 0000000000000000
[   62.020162][ T3595] R10: ffffffff815f9c3e R11: 0000000000000000 R12: ffff88807ce9ccc0
[   62.028131][ T3595] R13: 0000000002000000 R14: ffff88807ce9e310 R15: ffff88807ce9e308
[   62.036098][ T3595]  ? wake_up_klogd.part.0+0x8e/0xd0
[   62.041303][ T3595]  ? vprintk+0x88/0x90
[   62.045377][ T3595]  ieee80211_bss_info_change_notify+0x9a/0xc0
[   62.051444][ T3595]  ieee80211_set_mcast_rate+0x37/0x40
[   62.056822][ T3595]  ? ieee80211_get_mesh_config+0x30/0x30
[   62.062469][ T3595]  nl80211_set_mcast_rate+0x317/0x610
[   62.067846][ T3595]  ? nl80211_tdls_cancel_channel_switch+0x5a0/0x5a0
[   62.074441][ T3595]  ? nl80211_pre_doit+0xa6/0x620
[   62.079384][ T3595]  genl_family_rcv_msg_doit+0x228/0x320
[   62.084932][ T3595]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[   62.092307][ T3595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   62.098562][ T3595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   62.104802][ T3595]  ? ns_capable+0xd9/0x100
[   62.109218][ T3595]  genl_rcv_msg+0x328/0x580
[   62.113723][ T3595]  ? genl_get_cmd+0x480/0x480
[   62.118399][ T3595]  ? nl80211_tdls_cancel_channel_switch+0x5a0/0x5a0
[   62.124997][ T3595]  ? lock_release+0x720/0x720
[   62.129677][ T3595]  netlink_rcv_skb+0x153/0x420
[   62.134449][ T3595]  ? genl_get_cmd+0x480/0x480
[   62.139138][ T3595]  ? netlink_ack+0xa60/0xa60
[   62.143730][ T3595]  ? netlink_deliver_tap+0x1b1/0xc30
[   62.149018][ T3595]  genl_rcv+0x24/0x40
[   62.152996][ T3595]  netlink_unicast+0x539/0x7e0
[   62.157773][ T3595]  ? netlink_attachskb+0x880/0x880
[   62.162882][ T3595]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   62.169123][ T3595]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   62.175366][ T3595]  ? __phys_addr_symbol+0x2c/0x70
[   62.180393][ T3595]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   62.186112][ T3595]  ? __check_object_size+0x16e/0x310
[   62.191401][ T3595]  netlink_sendmsg+0x904/0xe00
[   62.196168][ T3595]  ? netlink_unicast+0x7e0/0x7e0
[   62.201115][ T3595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   62.207359][ T3595]  ? netlink_unicast+0x7e0/0x7e0
[   62.212467][ T3595]  sock_sendmsg+0xcf/0x120
[   62.216890][ T3595]  ____sys_sendmsg+0x6e8/0x810
[   62.221653][ T3595]  ? kernel_sendmsg+0x50/0x50
[   62.226335][ T3595]  ? do_recvmmsg+0x6d0/0x6d0
[   62.230914][ T3595]  ? find_held_lock+0x2d/0x110
[   62.235677][ T3595]  ? __might_fault+0xd1/0x170
[   62.240352][ T3595]  ? lock_downgrade+0x6e0/0x6e0
[   62.245220][ T3595]  ___sys_sendmsg+0xf3/0x170
[   62.249805][ T3595]  ? sendmsg_copy_msghdr+0x160/0x160
[   62.255097][ T3595]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   62.261075][ T3595]  ? get_user_ifreq+0x250/0x250
[   62.265934][ T3595]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   62.271937][ T3595]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   62.278182][ T3595]  ? __fget_light+0x215/0x280
[   62.282854][ T3595]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   62.289140][ T3595]  __sys_sendmsg+0xe5/0x1b0
[   62.293642][ T3595]  ? __sys_sendmsg_sock+0x30/0x30
[   62.298675][ T3595]  ? syscall_enter_from_user_mode+0x21/0x70
[   62.304576][ T3595]  do_syscall_64+0x35/0xb0
[   62.309000][ T3595]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   62.314893][ T3595] RIP: 0033:0x7fbb7da1d269
[   62.319304][ T3595] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   62.339023][ T3595] RSP: 002b:00007fff3890b448 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.347436][ T3595] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007fbb7da1d269
[   62.355404][ T3595] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000003
[   62.363392][ T3595] RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000
[   62.371386][ T3595] R10: 0000000c00000000 R11: 0000000000000246 R12: 000000000000ef8d
[   62.379353][ T3595] R13: 00007fff3890b4b0 R14: 00007fff3890b4a0 R15: 00007fff3890b46c
[   62.387331][ T3595]  </TASK>
[   62.390531][ T3595] Kernel Offset: disabled
[   62.394931][ T3595] Rebooting in 86400 seconds..