Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.20' (ECDSA) to the list of known hosts. syzkaller login: [ 68.860473][ T8442] IPVS: ftp: loaded support on port[0] = 21 [ 68.957212][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.982166][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.992652][ T4833] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready executing program [ 69.011159][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.019116][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.029257][ T4833] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.085332][ T8442] ------------[ cut here ]------------ [ 69.091077][ T8442] WARNING: CPU: 0 PID: 8442 at net/mac80211/ieee80211_i.h:1458 sta_info_alloc+0x1924/0x1fa0 [ 69.101840][ T8442] Modules linked in: [ 69.105766][ T8442] CPU: 0 PID: 8442 Comm: syz-executor540 Not tainted 5.12.0-rc4-next-20210322-syzkaller #0 [ 69.116014][ T8442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.126349][ T8442] RIP: 0010:sta_info_alloc+0x1924/0x1fa0 [ 69.132133][ T8442] Code: 85 8f 03 00 00 49 8b 9f 60 01 00 00 e9 04 f7 ff ff e8 b0 cc 16 f9 8b 5c 24 08 83 e3 01 83 c3 01 e9 ab fb ff ff e8 9c cc 16 f9 <0f> 0b e8 05 86 ac 00 31 ff 89 c3 89 c6 e8 3a d4 16 f9 85 db 74 1d [ 69.152919][ T8442] RSP: 0018:ffffc9000176f3e0 EFLAGS: 00010293 [ 69.159012][ T8442] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 69.167397][ T8442] RDX: ffff88801bb88000 RSI: ffffffff885d5a04 RDI: 0000000000000003 [ 69.175474][ T8442] RBP: ffff88802a0f8d00 R08: 0000000000000000 R09: 0000000000000000 [ 69.183522][ T8442] R10: ffffffff885d5941 R11: 0000000000000000 R12: 0000000000000000 [ 69.192124][ T8442] R13: 0000000000000008 R14: dffffc0000000000 R15: ffff888019c02000 [ 69.200184][ T8442] FS: 000000000050a300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 69.209136][ T8442] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.216035][ T8442] CR2: 00007f4be403e0f8 CR3: 00000000208f0000 CR4: 00000000001506f0 [ 69.224286][ T8442] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.232500][ T8442] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.241012][ T8442] Call Trace: [ 69.244305][ T8442] ieee80211_add_station+0x28c/0x660 [ 69.249591][ T8442] nl80211_new_station+0xdd0/0x13c0 [ 69.254872][ T8442] ? rdev_set_coalesce+0x340/0x340 [ 69.260784][ T8442] ? nl80211_pre_doit+0xa6/0x5c0 [ 69.265722][ T8442] genl_family_rcv_msg_doit+0x228/0x320 [ 69.271335][ T8442] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 69.278733][ T8442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.285054][ T8442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.291370][ T8442] ? ns_capable+0xde/0x100 [ 69.295801][ T8442] genl_rcv_msg+0x328/0x580 [ 69.300348][ T8442] ? genl_get_cmd+0x480/0x480 [ 69.305044][ T8442] ? rdev_set_coalesce+0x340/0x340 [ 69.310514][ T8442] ? lock_release+0x720/0x720 [ 69.315221][ T8442] netlink_rcv_skb+0x153/0x420 [ 69.320278][ T8442] ? genl_get_cmd+0x480/0x480 [ 69.324991][ T8442] ? netlink_ack+0xaa0/0xaa0 [ 69.329584][ T8442] genl_rcv+0x24/0x40 [ 69.333620][ T8442] netlink_unicast+0x533/0x7d0 [ 69.338404][ T8442] ? netlink_attachskb+0x870/0x870 [ 69.343777][ T8442] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.350110][ T8442] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.356367][ T8442] ? __phys_addr_symbol+0x2c/0x70 [ 69.361565][ T8442] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 69.367303][ T8442] ? __check_object_size+0x171/0x3f0 [ 69.372665][ T8442] netlink_sendmsg+0x856/0xd90 [ 69.377449][ T8442] ? netlink_unicast+0x7d0/0x7d0 [ 69.382458][ T8442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.388714][ T8442] ? netlink_unicast+0x7d0/0x7d0 [ 69.394524][ T8442] sock_sendmsg+0xcf/0x120 [ 69.398988][ T8442] ____sys_sendmsg+0x6e8/0x810 [ 69.404202][ T8442] ? kernel_sendmsg+0x50/0x50 [ 69.409090][ T8442] ? do_recvmmsg+0x6d0/0x6d0 [ 69.413836][ T8442] ? lock_chain_count+0x20/0x20 [ 69.418725][ T8442] ? stack_trace_consume_entry+0x160/0x160 [ 69.424627][ T8442] ___sys_sendmsg+0xf3/0x170 [ 69.429235][ T8442] ? sendmsg_copy_msghdr+0x160/0x160 [ 69.434627][ T8442] ? __lock_acquire+0x16a7/0x5230 [ 69.439675][ T8442] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 69.445724][ T8442] ? lockdep_hardirqs_on+0x79/0x100 [ 69.451086][ T8442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.457381][ T8442] ? __fget_light+0x215/0x280 [ 69.462280][ T8442] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.468545][ T8442] __sys_sendmsg+0xe5/0x1b0 [ 69.473132][ T8442] ? __sys_sendmsg_sock+0x30/0x30 [ 69.478168][ T8442] ? __context_tracking_enter+0xef/0x100 [ 69.484084][ T8442] ? syscall_enter_from_user_mode+0x27/0x70 [ 69.490155][ T8442] do_syscall_64+0x2d/0x70 [ 69.494590][ T8442] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 69.500536][ T8442] RIP: 0033:0x440a09 [ 69.504438][ T8442] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 69.525083][ T8442] RSP: 002b:00007ffd8b24b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 69.533931][ T8442] RAX: ffffffffffffffda RBX: 00000000004b73c0 RCX: 0000000000440a09 [ 69.542034][ T8442] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005 [ 69.550111][ T8442] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000c00000001 [ 69.558092][ T8442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000031 [ 69.566255][ T8442] R13: 00007ffd8b24b080 R14: 00007ffd8b24b06a R15: 00000000004b7430 [ 69.574432][ T8442] Kernel panic - not syncing: panic_on_warn set ... [ 69.581033][ T8442] CPU: 1 PID: 8442 Comm: syz-executor540 Not tainted 5.12.0-rc4-next-20210322-syzkaller #0 [ 69.591000][ T8442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.601053][ T8442] Call Trace: [ 69.604336][ T8442] dump_stack+0x141/0x1d7 [ 69.608671][ T8442] panic+0x306/0x73d [ 69.612565][ T8442] ? __warn_printk+0xf3/0xf3 [ 69.617163][ T8442] ? __warn.cold+0x1a/0x44 [ 69.621600][ T8442] ? sta_info_alloc+0x1924/0x1fa0 [ 69.626624][ T8442] __warn.cold+0x35/0x44 [ 69.630861][ T8442] ? sta_info_alloc+0x1924/0x1fa0 [ 69.635880][ T8442] report_bug+0x1bd/0x210 [ 69.640207][ T8442] handle_bug+0x3c/0x60 [ 69.644373][ T8442] exc_invalid_op+0x14/0x40 [ 69.648873][ T8442] asm_exc_invalid_op+0x12/0x20 [ 69.653721][ T8442] RIP: 0010:sta_info_alloc+0x1924/0x1fa0 [ 69.659346][ T8442] Code: 85 8f 03 00 00 49 8b 9f 60 01 00 00 e9 04 f7 ff ff e8 b0 cc 16 f9 8b 5c 24 08 83 e3 01 83 c3 01 e9 ab fb ff ff e8 9c cc 16 f9 <0f> 0b e8 05 86 ac 00 31 ff 89 c3 89 c6 e8 3a d4 16 f9 85 db 74 1d [ 69.678951][ T8442] RSP: 0018:ffffc9000176f3e0 EFLAGS: 00010293 [ 69.685012][ T8442] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 69.692975][ T8442] RDX: ffff88801bb88000 RSI: ffffffff885d5a04 RDI: 0000000000000003 [ 69.700939][ T8442] RBP: ffff88802a0f8d00 R08: 0000000000000000 R09: 0000000000000000 [ 69.708901][ T8442] R10: ffffffff885d5941 R11: 0000000000000000 R12: 0000000000000000 [ 69.716862][ T8442] R13: 0000000000000008 R14: dffffc0000000000 R15: ffff888019c02000 [ 69.724832][ T8442] ? sta_info_alloc+0x1861/0x1fa0 [ 69.729858][ T8442] ? sta_info_alloc+0x1924/0x1fa0 [ 69.734900][ T8442] ieee80211_add_station+0x28c/0x660 [ 69.740186][ T8442] nl80211_new_station+0xdd0/0x13c0 [ 69.745406][ T8442] ? rdev_set_coalesce+0x340/0x340 [ 69.750616][ T8442] ? nl80211_pre_doit+0xa6/0x5c0 [ 69.755550][ T8442] genl_family_rcv_msg_doit+0x228/0x320 [ 69.761094][ T8442] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 69.768462][ T8442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.774710][ T8442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.780946][ T8442] ? ns_capable+0xde/0x100 [ 69.785367][ T8442] genl_rcv_msg+0x328/0x580 [ 69.789899][ T8442] ? genl_get_cmd+0x480/0x480 [ 69.794585][ T8442] ? rdev_set_coalesce+0x340/0x340 [ 69.799706][ T8442] ? lock_release+0x720/0x720 [ 69.804401][ T8442] netlink_rcv_skb+0x153/0x420 [ 69.809164][ T8442] ? genl_get_cmd+0x480/0x480 [ 69.813836][ T8442] ? netlink_ack+0xaa0/0xaa0 [ 69.818442][ T8442] genl_rcv+0x24/0x40 [ 69.822415][ T8442] netlink_unicast+0x533/0x7d0 [ 69.827183][ T8442] ? netlink_attachskb+0x870/0x870 [ 69.832290][ T8442] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.838546][ T8442] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.844784][ T8442] ? __phys_addr_symbol+0x2c/0x70 [ 69.849818][ T8442] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 69.855549][ T8442] ? __check_object_size+0x171/0x3f0 [ 69.860843][ T8442] netlink_sendmsg+0x856/0xd90 [ 69.865620][ T8442] ? netlink_unicast+0x7d0/0x7d0 [ 69.870563][ T8442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.876806][ T8442] ? netlink_unicast+0x7d0/0x7d0 [ 69.881750][ T8442] sock_sendmsg+0xcf/0x120 [ 69.886162][ T8442] ____sys_sendmsg+0x6e8/0x810 [ 69.890922][ T8442] ? kernel_sendmsg+0x50/0x50 [ 69.895593][ T8442] ? do_recvmmsg+0x6d0/0x6d0 [ 69.900181][ T8442] ? lock_chain_count+0x20/0x20 [ 69.905027][ T8442] ? stack_trace_consume_entry+0x160/0x160 [ 69.910834][ T8442] ___sys_sendmsg+0xf3/0x170 [ 69.915422][ T8442] ? sendmsg_copy_msghdr+0x160/0x160 [ 69.920705][ T8442] ? __lock_acquire+0x16a7/0x5230 [ 69.925734][ T8442] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 69.931725][ T8442] ? lockdep_hardirqs_on+0x79/0x100 [ 69.936926][ T8442] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.943165][ T8442] ? __fget_light+0x215/0x280 [ 69.947844][ T8442] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.954085][ T8442] __sys_sendmsg+0xe5/0x1b0 [ 69.958583][ T8442] ? __sys_sendmsg_sock+0x30/0x30 [ 69.963630][ T8442] ? __context_tracking_enter+0xef/0x100 [ 69.969266][ T8442] ? syscall_enter_from_user_mode+0x27/0x70 [ 69.975157][ T8442] do_syscall_64+0x2d/0x70 [ 69.979572][ T8442] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 69.985475][ T8442] RIP: 0033:0x440a09 [ 69.989360][ T8442] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 70.008961][ T8442] RSP: 002b:00007ffd8b24b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 70.017366][ T8442] RAX: ffffffffffffffda RBX: 00000000004b73c0 RCX: 0000000000440a09 [ 70.025328][ T8442] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005 [ 70.033288][ T8442] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000c00000001 [ 70.041423][ T8442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000031 [ 70.049383][ T8442] R13: 00007ffd8b24b080 R14: 00007ffd8b24b06a R15: 00000000004b7430 [ 70.058206][ T8442] Kernel Offset: disabled [ 70.062652][ T8442] Rebooting in 86400 seconds..