[ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Started System Logging Service. [ OK ] Started OpenBSD Secure Shell server. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.32' (ECDSA) to the list of known hosts. syzkaller login: [ 46.069942] audit: type=1400 audit(1603296871.573:8): avc: denied { execmem } for pid=8122 comm="syz-executor252" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 46.106593] IPVS: ftp: loaded support on port[0] = 21 [ 46.168398] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 46.190644] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.198448] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program [ 46.236674] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 46.249728] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 46.256602] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.264612] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.272588] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 46.295362] ------------[ cut here ]------------ [ 46.301032] WARNING: CPU: 0 PID: 383 at net/mac80211/sta_info.c:458 sta_info_insert_rcu.cold+0x104/0x280 [ 46.311595] Kernel panic - not syncing: panic_on_warn set ... [ 46.311595] [ 46.320284] CPU: 0 PID: 383 Comm: kworker/u4:5 Not tainted 4.19.152-syzkaller #0 [ 46.327965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.337918] Workqueue: phy2 ieee80211_iface_work [ 46.343122] Call Trace: [ 46.346306] dump_stack+0x22c/0x33e [ 46.350189] panic+0x2ac/0x565 [ 46.353420] ? __warn_printk+0xf3/0xf3 [ 46.357587] ? sta_info_insert_rcu.cold+0x104/0x280 [ 46.363168] ? __probe_kernel_read+0x130/0x1b0 [ 46.368226] ? __warn.cold+0x5/0x5a [ 46.371942] ? __warn+0xe4/0x200 [ 46.375510] ? sta_info_insert_rcu.cold+0x104/0x280 [ 46.380880] __warn.cold+0x20/0x5a [ 46.385025] ? sta_info_insert_rcu.cold+0x104/0x280 [ 46.390605] report_bug+0x262/0x2b0 [ 46.394724] do_error_trap+0x1e1/0x330 [ 46.398954] ? math_error+0x320/0x320 [ 46.403776] ? __irq_work_queue_local+0x14f/0x200 [ 46.409002] ? irq_work_queue+0x29/0x80 [ 46.413555] ? error_entry+0x72/0xd0 [ 46.418501] ? trace_hardirqs_off_caller+0x6e/0x210 [ 46.424113] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 46.430531] invalid_op+0x14/0x20 [ 46.434283] RIP: 0010:sta_info_insert_rcu.cold+0x104/0x280 [ 46.442585] Code: 74 24 30 48 c7 c7 80 ab 92 8c e8 85 83 ae fb 0f b6 44 24 30 e9 20 5a ff ff e8 16 9f 63 f9 48 c7 c7 00 de cc 89 e8 69 09 4d f9 <0f> 0b 41 bd ea ff ff ff e9 5d 63 ff ff e8 f8 9e 63 f9 0f b6 f3 48 [ 46.462836] RSP: 0018:ffff8880b47afa60 EFLAGS: 00010282 [ 46.469304] RAX: 0000000000000024 RBX: ffff8880a9425bc0 RCX: 0000000000000000 [ 46.477569] RDX: 0000000000000000 RSI: ffffffff8155c57f RDI: ffffed10168f5f3e [ 46.494754] RBP: 0000000000000001 R08: 0000000000000024 R09: 0000000000000000 [ 46.517915] R10: 0000000000000005 R11: 0000000000000000 R12: 00000000bd723777 [ 46.534727] R13: ffff88809400acc8 R14: ffff88809400ac80 R15: 0000000000003756 [ 46.543200] ? vprintk_func+0x7f/0x220 [ 46.547927] ? check_preemption_disabled+0x41/0x2b0 [ 46.554165] ? minstrel_ht_rate_update+0x40/0x40 [ 46.559540] ? rate_control_rate_init+0x33c/0x570 [ 46.564852] ieee80211_ibss_finish_sta+0x277/0x380 [ 46.571101] ? ieee80211_sta_join_ibss+0xf90/0xf90 [ 46.577501] ? ieee80211_ibss_work+0x120/0xec0 [ 46.583060] ? __local_bh_enable_ip+0x159/0x2a0 [ 46.590528] ? lockdep_hardirqs_on+0x3c1/0x5e0 [ 46.595301] ieee80211_ibss_work+0x2b6/0xec0 [ 46.599801] ? ieee80211_ibss_rx_queued_mgmt+0x1940/0x1940 [ 46.606119] ? mark_held_locks+0xa6/0xf0 [ 46.610684] ? _raw_spin_unlock_irqrestore+0x7d/0xf0 [ 46.616260] ? lockdep_hardirqs_on+0x3c1/0x5e0 [ 46.621533] ? _raw_spin_unlock_irqrestore+0x6a/0xf0 [ 46.628030] ieee80211_iface_work+0x828/0x900 [ 46.633774] process_one_work+0x796/0x14e0 [ 46.639606] ? alloc_unbound_pwq+0xcf0/0xcf0 [ 46.645669] worker_thread+0x64c/0x1130 [ 46.650502] ? __kthread_parkme+0x133/0x1e0 [ 46.655311] ? rescuer_thread+0xce0/0xce0 [ 46.661088] kthread+0x33f/0x460 [ 46.664461] ? kthread_park+0x180/0x180 [ 46.668436] ret_from_fork+0x24/0x30 [ 46.673551] Kernel Offset: disabled [ 46.678636] Rebooting in 86400 seconds..