[[0;32m  OK  [0m] Started Getty on tty4.
[[0;32m  OK  [0m] Started Getty on tty3.
[[0;32m  OK  [0m] Started Getty on tty2.
[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Started OpenBSD Secure Shell server.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.210' (ECDSA) to the list of known hosts.
executing program
executing program
syzkaller login: [   47.930007][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   47.963022][ T8414] general protection fault, probably for non-canonical address 0xfbd59c0000000020: 0000 [#1] PREEMPT SMP KASAN
[   47.974766][ T8414] KASAN: maybe wild-memory-access in range [0xdead000000000100-0xdead000000000107]
[   47.984046][ T8414] CPU: 0 PID: 8414 Comm: syz-executor955 Not tainted 5.11.0-rc7-syzkaller #0
[   47.992811][ T8414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   48.002926][ T8414] RIP: 0010:ieee80211_assign_vif_chanctx+0x6a7/0xa80
[   48.009608][ T8414] Code: 08 00 0f 85 96 00 00 00 e9 f7 00 00 00 e8 61 42 8a f8 49 83 c6 20 31 db 4c 89 f5 0f 1f 84 00 00 00 00 00 48 89 e8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 ef e8 aa b4 cd f8 48 8b 6d 00 4c 39 f5
[   48.029194][ T8414] RSP: 0018:ffffc9000131f670 EFLAGS: 00010a02
[   48.035246][ T8414] RAX: 1bd5a00000000020 RBX: 0000000000000002 RCX: ffff888021590000
[   48.043198][ T8414] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   48.051197][ T8414] RBP: dead000000000100 R08: ffffffff88ed9d85 R09: fffffbfff1b6725e
[   48.059150][ T8414] R10: fffffbfff1b6725e R11: 0000000000000000 R12: 0000000000000000
[   48.067140][ T8414] R13: dffffc0000000000 R14: ffff888012707420 R15: ffff888012464bc0
[   48.075089][ T8414] FS:  00000000007043c0(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   48.083996][ T8414] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.090557][ T8414] CR2: 00000000004b6110 CR3: 0000000012166000 CR4: 00000000001506f0
[   48.098514][ T8414] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.106462][ T8414] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.114410][ T8414] Call Trace:
[   48.117687][ T8414]  __ieee80211_vif_release_channel+0x279/0x540
[   48.123822][ T8414]  ieee80211_vif_release_channel+0x13e/0x1a0
[   48.129783][ T8414]  ieee80211_ibss_disconnect+0x6ea/0x870
[   48.135400][ T8414]  ieee80211_ibss_leave+0x26/0xf0
[   48.140408][ T8414]  __cfg80211_leave_ibss+0x11c/0x200
[   48.145677][ T8414]  cfg80211_leave_ibss+0x5c/0x70
[   48.150596][ T8414]  cfg80211_change_iface+0x428/0xaa0
[   48.155860][ T8414]  nl80211_set_interface+0x497/0x7f0
[   48.161123][ T8414]  genl_rcv_msg+0xe4e/0x1280
[   48.165692][ T8414]  ? nl80211_dump_interface+0x610/0x610
[   48.171234][ T8414]  netlink_rcv_skb+0x190/0x3a0
[   48.175974][ T8414]  ? genl_rcv+0x40/0x40
[   48.180108][ T8414]  genl_rcv+0x24/0x40
[   48.184068][ T8414]  netlink_unicast+0x786/0x940
[   48.188810][ T8414]  netlink_sendmsg+0x9ae/0xd50
[   48.193569][ T8414]  ? netlink_getsockopt+0xa50/0xa50
[   48.198744][ T8414]  ____sys_sendmsg+0x519/0x800
[   48.203487][ T8414]  ? import_iovec+0xe6/0x120
[   48.208062][ T8414]  __sys_sendmsg+0x2bf/0x370
[   48.212660][ T8414]  ? __might_fault+0xb9/0x110
[   48.217335][ T8414]  ? _copy_to_user+0xef/0x130
[   48.221990][ T8414]  ? sock_do_ioctl+0x210/0x260
[   48.226744][ T8414]  ? syscall_enter_from_user_mode+0x24/0x190
[   48.232704][ T8414]  ? lockdep_hardirqs_on+0x8d/0x130
[   48.237878][ T8414]  ? syscall_enter_from_user_mode+0x24/0x190
[   48.243839][ T8414]  do_syscall_64+0x2d/0x70
[   48.248269][ T8414]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   48.254138][ T8414] RIP: 0033:0x4415a9
[   48.258012][ T8414] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c4 ff ff ff f7 d8 64 89 01 48
[   48.277595][ T8414] RSP: 002b:00007ffd7a3c8178 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   48.285983][ T8414] RAX: ffffffffffffffda RBX: 000000000000bb21 RCX: 00000000004415a9
[   48.293930][ T8414] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000004
[   48.301895][ T8414] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   48.309865][ T8414] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd7a3c81ac
[   48.317835][ T8414] R13: 431bde82d7b634db R14: 00007ffd7a3c81c0 R15: 00000000004004b8
[   48.325791][ T8414] Modules linked in:
[   48.348369][ T8414] ---[ end trace 81df1e259b437e7f ]---
[   48.357122][ T8414] RIP: 0010:ieee80211_assign_vif_chanctx+0x6a7/0xa80
[   48.364517][ T8414] Code: 08 00 0f 85 96 00 00 00 e9 f7 00 00 00 e8 61 42 8a f8 49 83 c6 20 31 db 4c 89 f5 0f 1f 84 00 00 00 00 00 48 89 e8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 ef e8 aa b4 cd f8 48 8b 6d 00 4c 39 f5
[   48.390000][ T8414] RSP: 0018:ffffc9000131f670 EFLAGS: 00010a02
[   48.398835][ T8414] RAX: 1bd5a00000000020 RBX: 0000000000000002 RCX: ffff888021590000
[   48.411574][ T8414] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   48.419955][ T8414] RBP: dead000000000100 R08: ffffffff88ed9d85 R09: fffffbfff1b6725e
[   48.428552][ T8414] R10: fffffbfff1b6725e R11: 0000000000000000 R12: 0000000000000000
[   48.437077][ T8414] R13: dffffc0000000000 R14: ffff888012707420 R15: ffff888012464bc0
[   48.445430][ T8414] FS:  00000000007043c0(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   48.454839][ T8414] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.461420][ T8414] CR2: 00005564e1965160 CR3: 0000000012166000 CR4: 00000000001506f0
[   48.469932][ T8414] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.478291][ T8414] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.486597][ T8414] Kernel panic - not syncing: Fatal exception
[   48.493296][ T8414] Kernel Offset: disabled
[   48.497624][ T8414] Rebooting in 86400 seconds..