Warning: Permanently added '10.128.0.241' (ECDSA) to the list of known hosts. syzkaller login: [ 80.223884] audit: type=1400 audit(1601971795.518:8): avc: denied { execmem } for pid=6496 comm="syz-executor521" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 80.237955] IPVS: ftp: loaded support on port[0] = 21 [ 80.308801] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 80.323714] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.330960] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program [ 80.365714] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 80.384813] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 80.391196] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.399042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.406740] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 80.423560] WARNING: CPU: 1 PID: 6537 at net/mac80211/ieee80211_i.h:1413 sta_info_alloc+0x147b/0x1940 [ 80.433101] Kernel panic - not syncing: panic_on_warn set ... [ 80.433101] [ 80.440456] CPU: 1 PID: 6537 Comm: syz-executor521 Not tainted 4.19.149-syzkaller #0 [ 80.448351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 80.457736] Call Trace: [ 80.460337] dump_stack+0x22c/0x33e [ 80.463968] panic+0x2ac/0x565 [ 80.467219] ? __warn_printk+0xf3/0xf3 [ 80.471144] ? sta_info_alloc+0x147b/0x1940 [ 80.475466] ? __probe_kernel_read+0x130/0x1b0 [ 80.480033] ? __warn.cold+0x5/0x5a [ 80.483659] ? __warn+0xe4/0x200 [ 80.487040] ? sta_info_alloc+0x147b/0x1940 [ 80.491369] __warn.cold+0x20/0x5a [ 80.494929] ? sta_info_alloc+0x147b/0x1940 [ 80.499252] report_bug+0x262/0x2b0 [ 80.502865] do_error_trap+0x1e1/0x330 [ 80.506743] ? math_error+0x320/0x320 [ 80.510540] ? mark_held_locks+0xf0/0xf0 [ 80.514587] ? find_held_lock+0x2d/0x110 [ 80.518659] ? error_entry+0x72/0xd0 [ 80.522406] ? trace_hardirqs_off_caller+0x6e/0x210 [ 80.527438] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 80.532285] invalid_op+0x14/0x20 [ 80.535723] RIP: 0010:sta_info_alloc+0x147b/0x1940 [ 80.540637] Code: fa 48 c7 c2 a0 5d cd 88 be a5 02 00 00 48 c7 c7 60 5c cd 88 c6 05 c7 df e6 03 01 e8 30 0b 0b fa e9 01 fc ff ff e8 45 b9 24 fa <0f> 0b e8 fe 0b 11 fa 31 ff 89 c3 89 c6 e8 a3 ba 24 fa 85 db 74 36 [ 80.559545] RSP: 0018:ffff8880a520f4e0 EFLAGS: 00010293 [ 80.564900] RAX: ffff8880a322a440 RBX: 0000000000000001 RCX: ffffffff874d1478 [ 80.572177] RDX: 0000000000000000 RSI: ffffffff874d191b RDI: 0000000000000007 [ 80.579449] RBP: ffff888084219260 R08: 0000000000000000 R09: 0000000000000000 [ 80.586706] R10: 0000000000000007 R11: 0000000000000003 R12: ffff8880a43f6e00 [ 80.593960] R13: 0000000000000000 R14: 0000000000000010 R15: ffff8880a43f7210 [ 80.601229] ? sta_info_alloc+0xfd8/0x1940 [ 80.605454] ? sta_info_alloc+0x147b/0x1940 [ 80.609769] ieee80211_add_station+0x264/0x660 [ 80.614339] nl80211_new_station+0xd78/0x1540 [ 80.618822] ? nl80211_remain_on_channel+0xeb0/0xeb0 [ 80.623925] ? nl80211_pre_doit+0xa2/0x660 [ 80.628144] ? nl80211_vendor_cmd_dump+0x15e0/0x15e0 [ 80.633234] genl_family_rcv_msg+0x6bf/0xd50 [ 80.637650] ? genl_family_attrbuf+0x120/0x120 [ 80.642234] ? genl_rcv_msg+0x15d/0x1b0 [ 80.646195] ? ww_mutex_unlock+0x2f0/0x2f0 [ 80.650418] ? __lock_acquire+0x6ec/0x3ff0 [ 80.654656] ? __radix_tree_lookup+0x251/0x3f0 [ 80.659237] genl_rcv_msg+0xdf/0x1b0 [ 80.662938] netlink_rcv_skb+0x160/0x440 [ 80.666985] ? genl_family_rcv_msg+0xd50/0xd50 [ 80.671559] ? netlink_ack+0xae0/0xae0 [ 80.675436] ? genl_rcv+0x15/0x40 [ 80.678873] genl_rcv+0x24/0x40 [ 80.682144] netlink_unicast+0x4d5/0x690 [ 80.686196] ? netlink_sendskb+0x110/0x110 [ 80.690419] netlink_sendmsg+0x717/0xcc0 [ 80.694487] ? nlmsg_notify+0x1a0/0x1a0 [ 80.698446] ? __sock_recv_ts_and_drops+0x540/0x540 [ 80.703454] ? nlmsg_notify+0x1a0/0x1a0 [ 80.707413] sock_sendmsg+0xc7/0x130 [ 80.711112] ___sys_sendmsg+0x7bb/0x8f0 [ 80.715088] ? lock_acquire+0x170/0x3f0 [ 80.719062] ? copy_msghdr_from_user+0x440/0x440 [ 80.723808] ? __lock_acquire+0x6ec/0x3ff0 [ 80.728061] ? lock_downgrade+0x750/0x750 [ 80.732219] ? lock_acquire+0x170/0x3f0 [ 80.736181] ? debug_object_active_state+0x108/0x340 [ 80.741270] ? mark_held_locks+0xf0/0xf0 [ 80.745346] ? lockdep_hardirqs_on+0x3c1/0x5e0 [ 80.749926] ? _raw_spin_unlock_irqrestore+0x6a/0xf0 [ 80.755014] ? debug_object_active_state+0x25b/0x340 [ 80.760110] ? __fget_light+0x1a2/0x230 [ 80.764074] __x64_sys_sendmsg+0x132/0x220 [ 80.768309] ? __sys_sendmsg+0x1b0/0x1b0 [ 80.772360] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 80.777710] ? trace_hardirqs_off_caller+0x6e/0x210 [ 80.782715] ? do_syscall_64+0x21/0x670 [ 80.786679] do_syscall_64+0xf9/0x670 [ 80.790488] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 80.795665] RIP: 0033:0x4421b9 [ 80.798846] Code: e8 ac 00 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 80.817736] RSP: 002b:00007ffcf636a5c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 80.825450] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004421b9 [ 80.832710] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005 [ 80.839966] RBP: 000000306e616c77 R08: 0000000000000000 R09: 0000001d00000000 [ 80.847222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000032 [ 80.854490] R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000004 [ 80.863164] Kernel Offset: disabled [ 80.866842] Rebooting in 86400 seconds..