[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.59' (ECDSA) to the list of known hosts.
executing program
executing program
syzkaller login: [   56.290656][ T8162] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   56.323584][ T8476] general protection fault, probably for non-canonical address 0xfbd59c0000000020: 0000 [#1] PREEMPT SMP KASAN
[   56.335380][ T8476] KASAN: maybe wild-memory-access in range [0xdead000000000100-0xdead000000000107]
[   56.344667][ T8476] CPU: 0 PID: 8476 Comm: syz-executor541 Not tainted 5.11.0-rc4-syzkaller #0
[   56.353528][ T8476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   56.363593][ T8476] RIP: 0010:ieee80211_chanctx_num_assigned+0xb1/0x140
[   56.370410][ T8476] Code: a8 f6 ff ff 48 39 c5 74 3b 49 bd 00 00 00 00 00 fc ff df e8 21 31 15 f9 48 8d bb 58 09 00 00 41 83 c4 01 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 75 68 48 8b 83 58 09 00 00 48 8d 98 a8 f6 ff ff 48
[   56.391823][ T8476] RSP: 0018:ffffc900016af330 EFLAGS: 00010212
[   56.397889][ T8476] RAX: 1bd5a00000000020 RBX: deacfffffffff7a8 RCX: 0000000000000000
[   56.405889][ T8476] RDX: ffff888019b05340 RSI: ffffffff885d995f RDI: dead000000000100
[   56.413860][ T8476] RBP: ffff888013aacd20 R08: 0000000000000000 R09: 0000000000000001
[   56.421831][ T8476] R10: ffffffff885d99bb R11: 0000000000000000 R12: 0000000000000002
[   56.429804][ T8476] R13: dffffc0000000000 R14: ffff888013aacd00 R15: 0000000000000000
[   56.437791][ T8476] FS:  0000000001577880(0000) GS:ffff8880b9e00000(0000) knlGS:0000000000000000
[   56.447365][ T8476] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.454810][ T8476] CR2: 00000000006d20a0 CR3: 000000001246b000 CR4: 0000000000350ef0
[   56.465072][ T8476] Call Trace:
[   56.469006][ T8476]  ieee80211_assign_vif_chanctx+0x7b8/0x1230
[   56.475274][ T8476]  __ieee80211_vif_release_channel+0x236/0x430
[   56.481558][ T8476]  ieee80211_vif_release_channel+0x117/0x220
[   56.487666][ T8476]  ieee80211_ibss_disconnect+0x44e/0x7b0
[   56.493360][ T8476]  ieee80211_ibss_leave+0x12/0xe0
[   56.499029][ T8476]  __cfg80211_leave_ibss+0x19a/0x4c0
[   56.504572][ T8476]  cfg80211_leave_ibss+0x57/0x80
[   56.509756][ T8476]  cfg80211_change_iface+0x7f2/0xf10
[   56.515748][ T8476]  nl80211_set_interface+0x65c/0x8d0
[   56.521223][ T8476]  ? nl80211_notify_iface+0x180/0x180
[   56.526824][ T8476]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[   56.533231][ T8476]  ? nl80211_pre_doit+0xa2/0x630
[   56.538277][ T8476]  genl_family_rcv_msg_doit+0x228/0x320
[   56.544170][ T8476]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[   56.551573][ T8476]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   56.557831][ T8476]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   56.564074][ T8476]  ? ns_capable+0xde/0x100
[   56.568519][ T8476]  genl_rcv_msg+0x328/0x580
[   56.574434][ T8476]  ? genl_get_cmd+0x480/0x480
[   56.579126][ T8476]  ? nl80211_notify_iface+0x180/0x180
[   56.584515][ T8476]  ? lock_release+0x710/0x710
[   56.589278][ T8476]  netlink_rcv_skb+0x153/0x420
[   56.594059][ T8476]  ? genl_get_cmd+0x480/0x480
[   56.598716][ T8476]  ? netlink_ack+0xaa0/0xaa0
[   56.603340][ T8476]  genl_rcv+0x24/0x40
[   56.607328][ T8476]  netlink_unicast+0x533/0x7d0
[   56.612096][ T8476]  ? netlink_attachskb+0x870/0x870
[   56.617216][ T8476]  ? _copy_from_iter_full+0x275/0x850
[   56.622574][ T8476]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   56.628803][ T8476]  ? __phys_addr_symbol+0x2c/0x70
[   56.633925][ T8476]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   56.639742][ T8476]  ? __check_object_size+0x171/0x3f0
[   56.645875][ T8476]  netlink_sendmsg+0x856/0xd90
[   56.650857][ T8476]  ? netlink_unicast+0x7d0/0x7d0
[   56.656035][ T8476]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   56.662265][ T8476]  ? netlink_unicast+0x7d0/0x7d0
[   56.667188][ T8476]  sock_sendmsg+0xcf/0x120
[   56.671820][ T8476]  ____sys_sendmsg+0x6e8/0x810
[   56.676588][ T8476]  ? kernel_sendmsg+0x50/0x50
[   56.681243][ T8476]  ? do_recvmmsg+0x6c0/0x6c0
[   56.685818][ T8476]  ? find_held_lock+0x2d/0x110
[   56.690568][ T8476]  ___sys_sendmsg+0xf3/0x170
[   56.695141][ T8476]  ? sendmsg_copy_msghdr+0x160/0x160
[   56.700430][ T8476]  ? _copy_to_user+0xdc/0x150
[   56.705092][ T8476]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   56.711337][ T8476]  ? sock_do_ioctl+0x168/0x2d0
[   56.716313][ T8476]  ? compat_ifr_data_ioctl+0x150/0x150
[   56.722211][ T8476]  ? __sanitizer_cov_trace_switch+0x63/0xf0
[   56.728094][ T8476]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   56.734422][ T8476]  ? __fget_light+0x215/0x280
[   56.739100][ T8476]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   56.745357][ T8476]  __sys_sendmsg+0xe5/0x1b0
[   56.749852][ T8476]  ? __sys_sendmsg_sock+0xb0/0xb0
[   56.754862][ T8476]  ? syscall_enter_from_user_mode+0x1d/0x50
[   56.760780][ T8476]  do_syscall_64+0x2d/0x70
[   56.765197][ T8476]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   56.771301][ T8476] RIP: 0033:0x4421a9
[   56.775215][ T8476] Code: e8 4c ff 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db 06 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   56.795027][ T8476] RSP: 002b:00007fff6c8c3178 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.803597][ T8476] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004421a9
[   56.811697][ T8476] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000003
[   56.819691][ T8476] RBP: 000000306e616c77 R08: 00000000004002e0 R09: 00000000004002e0
[   56.827649][ T8476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000402d10
[   56.835607][ T8476] R13: 0000000000402da0 R14: 0000000000000000 R15: 0000000000000000
[   56.843587][ T8476] Modules linked in:
[   56.849645][ T8476] ---[ end trace fbf0db71b8ea0e20 ]---
[   56.855116][ T8476] RIP: 0010:ieee80211_chanctx_num_assigned+0xb1/0x140
[   56.862461][ T8476] Code: a8 f6 ff ff 48 39 c5 74 3b 49 bd 00 00 00 00 00 fc ff df e8 21 31 15 f9 48 8d bb 58 09 00 00 41 83 c4 01 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 75 68 48 8b 83 58 09 00 00 48 8d 98 a8 f6 ff ff 48
[   56.883187][ T8476] RSP: 0018:ffffc900016af330 EFLAGS: 00010212
[   56.889512][ T8476] RAX: 1bd5a00000000020 RBX: deacfffffffff7a8 RCX: 0000000000000000
[   56.897493][ T8476] RDX: ffff888019b05340 RSI: ffffffff885d995f RDI: dead000000000100
[   56.905756][ T8476] RBP: ffff888013aacd20 R08: 0000000000000000 R09: 0000000000000001
[   56.913898][ T8476] R10: ffffffff885d99bb R11: 0000000000000000 R12: 0000000000000002
[   56.922054][ T8476] R13: dffffc0000000000 R14: ffff888013aacd00 R15: 0000000000000000
[   56.930191][ T8476] FS:  0000000001577880(0000) GS:ffff8880b9e00000(0000) knlGS:0000000000000000
[   56.939181][ T8476] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.945791][ T8476] CR2: 00007f88cb9cb170 CR3: 000000001246b000 CR4: 0000000000350ef0
[   56.953798][ T8476] Kernel panic - not syncing: Fatal exception
[   56.963700][ T8476] Kernel Offset: disabled
[   56.968051][ T8476] Rebooting in 86400 seconds..