[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.70' (ECDSA) to the list of known hosts. syzkaller login: [ 38.015116] IPVS: ftp: loaded support on port[0] = 21 [ 38.083254] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 38.091924] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.103212] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.117522] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready executing program [ 38.130068] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 38.137089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.144594] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.152486] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready executing program [ 38.176402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 38.186275] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 38.196805] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 38.210690] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 38.212638] wlan1: authenticate with 08:02:11:00:00:00 [ 38.221266] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium executing program [ 38.226565] wlan1: send auth to 08:02:11:00:00:00 (try 1/3) [ 38.235492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 38.253046] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 38.262651] wlan1: authenticated [ 38.262758] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 38.266229] mac80211_hwsim hwsim3 wlan1: disabling HT as WMM/QoS is not supported by the AP executing program [ 38.276053] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 38.288067] mac80211_hwsim hwsim3 wlan1: disabling VHT as WMM/QoS is not supported by the AP [ 38.303512] wlan1: associating with AP with corrupt probe response [ 38.309964] wlan1: RX AssocResp from 08:02:11:00:00:00 (capab=0x1 status=0 aid=1) [ 38.320277] WARNING: CPU: 0 PID: 23 at include/net/mac80211.h:5720 minstrel_rate_init+0x1e2/0x1540 [ 38.330046] Kernel panic - not syncing: panic_on_warn set ... [ 38.330046] [ 38.337393] CPU: 0 PID: 23 Comm: kworker/u4:1 Not tainted 4.19.211-syzkaller #0 [ 38.344818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.354163] Workqueue: phy3 ieee80211_iface_work [ 38.358910] Call Trace: [ 38.361492] dump_stack+0x1fc/0x2ef [ 38.365156] panic+0x26a/0x50e [ 38.368388] ? __warn_printk+0xf3/0xf3 [ 38.372278] ? minstrel_rate_init+0x1e2/0x1540 [ 38.376861] ? __probe_kernel_read+0x130/0x1b0 [ 38.381428] ? __warn.cold+0x5/0x5a [ 38.385047] ? __warn+0xe4/0x200 [ 38.388398] ? minstrel_rate_init+0x1e2/0x1540 [ 38.392965] __warn.cold+0x20/0x5a [ 38.396491] ? minstrel_rate_init+0x1e2/0x1540 [ 38.401061] report_bug+0x262/0x2b0 [ 38.404675] do_error_trap+0x1d7/0x310 [ 38.408547] ? math_error+0x310/0x310 [ 38.412330] ? __save_stack_trace+0x9f/0x190 [ 38.416719] ? __lock_acquire+0x6de/0x3ff0 [ 38.420936] ? error_entry+0x72/0xd0 [ 38.424633] ? trace_hardirqs_off_caller+0x6e/0x210 [ 38.429629] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 38.434543] invalid_op+0x14/0x20 [ 38.437998] RIP: 0010:minstrel_rate_init+0x1e2/0x1540 [ 38.443166] Code: 94 75 b0 f9 4d 85 f6 0f 85 f8 0f 00 00 e8 f6 73 b0 f9 41 83 c4 01 89 de 44 89 e7 e8 d8 74 b0 f9 41 39 dc 75 c3 e8 de 73 b0 f9 <0f> 0b 31 db 45 31 e4 eb 13 48 8b 44 24 30 31 db 45 31 e4 48 83 c0 [ 38.462048] RSP: 0018:ffff8880b5047370 EFLAGS: 00010293 [ 38.467389] RAX: ffff8880b503c600 RBX: 000000000000000c RCX: ffffffff87b21188 [ 38.474639] RDX: 0000000000000000 RSI: ffffffff87b21192 RDI: 0000000000000004 [ 38.481902] RBP: ffff88809df12ae0 R08: ffff8880b01dc080 R09: 000000000000000c [ 38.489167] R10: 0000000000000004 R11: 0000000000074071 R12: 000000000000000c [ 38.496417] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880b01dc080 [ 38.503679] ? minstrel_rate_init+0x1d8/0x1540 [ 38.508240] ? minstrel_rate_init+0x1e2/0x1540 [ 38.512809] ? mark_held_locks+0xf0/0xf0 [ 38.516852] ? mark_held_locks+0xf0/0xf0 [ 38.520910] ? mark_held_locks+0xf0/0xf0 [ 38.524952] ? minstrel_update_rates+0x9c0/0x9c0 [ 38.529688] ? check_preemption_disabled+0x41/0x280 [ 38.534688] ? minstrel_ht_rate_update+0x40/0x40 [ 38.539428] minstrel_ht_update_caps+0xf66/0x12e0 [ 38.544258] ? minstrel_ht_rate_update+0x40/0x40 [ 38.548997] rate_control_rate_init+0x2b3/0x4f0 [ 38.553981] ieee80211_assoc_success+0x161b/0x2b8a [ 38.558908] ? assoc_array_delete+0x81/0xc10 [ 38.563310] ? ieee80211_rx_mgmt_beacon.cold+0x372/0x372 [ 38.568757] ? mark_held_locks+0xa6/0xf0 [ 38.572843] ? console_unlock+0xdf5/0x1110 [ 38.577064] ? check_preemption_disabled+0x41/0x280 [ 38.582064] ? tick_nohz_tick_stopped+0x16/0x90 [ 38.586718] ? __irq_work_queue_local+0x101/0x160 [ 38.591553] ? irq_work_queue+0x29/0x80 [ 38.595511] ? wake_up_klogd.part.0+0x8c/0xc0 [ 38.599992] ? vprintk_emit+0x1d0/0x740 [ 38.603978] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 38.609261] ? ieee802_11_parse_elems_crc+0x3f1/0x1bf0 [ 38.614526] ? ieee80211_wake_vif_queues+0x1b0/0x1b0 [ 38.619619] ieee80211_sta_rx_queued_mgmt.cold+0x12a6/0x1dfd [ 38.625415] ? ieee80211_get_reason_code_string+0x70/0x70 [ 38.630941] ? __lock_acquire+0x6de/0x3ff0 [ 38.635164] ? mark_held_locks+0xf0/0xf0 [ 38.639223] ? mark_held_locks+0xa6/0xf0 [ 38.643297] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 38.648389] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 38.652958] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 38.658051] ieee80211_iface_work+0x5ad/0x8a0 [ 38.662534] process_one_work+0x864/0x1570 [ 38.666757] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 38.671413] worker_thread+0x64c/0x1130 [ 38.675376] ? process_one_work+0x1570/0x1570 [ 38.679860] kthread+0x33f/0x460 [ 38.683207] ? kthread_park+0x180/0x180 [ 38.687163] ret_from_fork+0x24/0x30 [ 38.691053] Kernel Offset: disabled [ 38.694708] Rebooting in 86400 seconds..