[ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.25' (ECDSA) to the list of known hosts. syzkaller login: [ 32.190160] IPVS: ftp: loaded support on port[0] = 21 [ 32.252773] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 32.260505] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 32.267866] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 32.276417] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 32.290026] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 executing program [ 32.294851] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 32.297147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 32.312201] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 32.323453] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 32.324763] ------------[ cut here ]------------ [ 32.338685] WARNING: CPU: 0 PID: 36 at net/mac80211/sta_info.c:458 sta_info_insert_rcu.cold+0x11/0xcc [ 32.348222] Kernel panic - not syncing: panic_on_warn set ... [ 32.348222] [ 32.355576] CPU: 0 PID: 36 Comm: kworker/u4:3 Not tainted 4.19.158-syzkaller #0 [ 32.363012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.372504] Workqueue: phy2 ieee80211_iface_work [ 32.377282] Call Trace: [ 32.379863] dump_stack+0x1fc/0x2fe [ 32.383483] panic+0x26a/0x50e [ 32.386672] ? __warn_printk+0xf3/0xf3 [ 32.390556] ? sta_info_insert_rcu.cold+0x11/0xcc [ 32.395389] ? __probe_kernel_read+0x130/0x1b0 [ 32.399963] ? __warn.cold+0x5/0x61 [ 32.403579] ? __warn+0xe4/0x200 [ 32.406932] ? sta_info_insert_rcu.cold+0x11/0xcc [ 32.411765] __warn.cold+0x20/0x61 [ 32.415297] ? sta_info_insert_rcu.cold+0x11/0xcc [ 32.420128] report_bug+0x262/0x2b0 [ 32.423748] do_error_trap+0x1d7/0x310 [ 32.427707] ? math_error+0x310/0x310 [ 32.431501] ? __irq_work_queue_local+0x101/0x160 [ 32.436424] ? irq_work_queue+0x29/0x80 [ 32.440393] ? error_entry+0x72/0xd0 [ 32.444099] ? trace_hardirqs_off_caller+0x6e/0x210 [ 32.449108] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.453940] invalid_op+0x14/0x20 [ 32.457384] RIP: 0010:sta_info_insert_rcu.cold+0x11/0xcc [ 32.462826] Code: 8d e8 45 fe ad f9 48 c7 c7 e0 b4 66 89 e8 c8 f7 98 f9 0f 0b e9 a6 51 ff ff e8 2d fe ad f9 48 c7 c7 e0 b4 66 89 e8 b0 f7 98 f9 <0f> 0b c7 04 24 ea ff ff ff e9 89 75 ff ff e8 0e fe ad f9 48 c7 c7 [ 32.482025] RSP: 0018:ffff8880b5147a50 EFLAGS: 00010286 [ 32.487383] RAX: 0000000000000024 RBX: ffff888094e1dbc0 RCX: 0000000000000000 [ 32.494733] RDX: 0000000000000000 RSI: ffffffff814fdba1 RDI: ffffed1016a28f3c [ 32.501996] RBP: 0000000000000001 R08: 0000000000000024 R09: 0000000000000000 [ 32.509260] R10: 0000000000000005 R11: 0000000000000000 R12: 00000000ffeeffff [ 32.516520] R13: ffff8880b01b05c0 R14: ffff8880a2ac9610 R15: 000000000000ffff [ 32.523800] ? vprintk_func+0x81/0x17e [ 32.527768] ? mark_held_locks+0xa6/0xf0 [ 32.531823] ? __local_bh_enable_ip+0x159/0x270 [ 32.536611] ? check_preemption_disabled+0x41/0x280 [ 32.541623] ? minstrel_ht_rate_update+0x40/0x40 [ 32.546369] ? rate_control_rate_init+0x2fa/0x4f0 [ 32.551384] ieee80211_ibss_finish_sta+0x25b/0x360 [ 32.556308] ? ieee80211_sta_join_ibss+0xe50/0xe50 [ 32.561231] ? mark_held_locks+0xa6/0xf0 [ 32.565330] ? __local_bh_enable_ip+0x159/0x270 [ 32.570052] ieee80211_ibss_work+0x2b6/0xe10 [ 32.574457] ? ieee80211_ibss_rx_queued_mgmt+0x18b0/0x18b0 [ 32.580074] ? mark_held_locks+0xa6/0xf0 [ 32.584127] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 32.589221] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 32.593794] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 32.598901] ieee80211_iface_work+0x7ba/0x8a0 [ 32.603405] process_one_work+0x864/0x1570 [ 32.607636] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 32.612393] worker_thread+0x64c/0x1130 [ 32.616454] ? __kthread_parkme+0x133/0x1e0 [ 32.620768] ? process_one_work+0x1570/0x1570 [ 32.625255] kthread+0x33f/0x460 [ 32.628614] ? kthread_park+0x180/0x180 [ 32.632582] ret_from_fork+0x24/0x30 [ 32.637385] Kernel Offset: disabled [ 32.641061] Rebooting in 86400 seconds..