[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Warning: Permanently added '10.128.10.44' (ECDSA) to the list of known hosts. [ 78.276607][ T35] audit: type=1400 audit(1612674030.121:8): avc: denied { execmem } for pid=8453 comm="syz-executor886" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 78.308889][ T8454] IPVS: ftp: loaded support on port[0] = 21 [ 78.389587][ T3098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.402272][ T3098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.428442][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready executing program [ 78.456467][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.464439][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.473159][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 78.496245][ T8454] ------------[ cut here ]------------ [ 78.501958][ T8454] WARNING: CPU: 0 PID: 8454 at net/mac80211/ieee80211_i.h:1457 sta_info_alloc+0x1923/0x1fa0 [ 78.512875][ T8454] Modules linked in: [ 78.517282][ T8454] CPU: 1 PID: 8454 Comm: syz-executor886 Not tainted 5.11.0-rc6-syzkaller #0 [ 78.526627][ T8454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.536916][ T8454] RIP: 0010:sta_info_alloc+0x1923/0x1fa0 [ 78.542705][ T8454] Code: 85 8f 03 00 00 49 8b 9f 60 01 00 00 e9 fe f6 ff ff e8 51 7b 23 f9 8b 5c 24 08 83 e3 01 83 c3 01 e9 a5 fb ff ff e8 3d 7b 23 f9 <0f> 0b e8 a6 2d ac 00 31 ff 89 c3 89 c6 e8 4b 81 23 f9 85 db 74 1d [ 78.562568][ T8454] RSP: 0018:ffffc90001caf3e0 EFLAGS: 00010293 [ 78.568766][ T8454] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 78.576872][ T8454] RDX: ffff888027d90240 RSI: ffffffff884f5853 RDI: 0000000000000003 [ 78.584877][ T8454] RBP: ffff888039920c80 R08: 0000000000000000 R09: 0000000000000000 [ 78.592910][ T8454] R10: ffffffff884f5790 R11: 0000000000000000 R12: 0000000000000000 [ 78.601014][ T8454] R13: 0000000000000008 R14: dffffc0000000000 R15: ffff88801c26a000 [ 78.609090][ T8454] FS: 0000000001c59300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 78.618340][ T8454] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 78.624926][ T8454] CR2: 0000000020000200 CR3: 000000001256e000 CR4: 00000000001506e0 [ 78.632990][ T8454] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 78.641072][ T8454] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 78.649150][ T8454] Call Trace: [ 78.652439][ T8454] ieee80211_add_station+0x28c/0x660 [ 78.658121][ T8454] nl80211_new_station+0xdd0/0x13c0 [ 78.663355][ T8454] ? rdev_set_cqm_rssi_config+0x330/0x330 [ 78.669182][ T8454] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 78.675520][ T8454] ? nl80211_pre_doit+0xa2/0x630 [ 78.680480][ T8454] genl_family_rcv_msg_doit+0x228/0x320 [ 78.686281][ T8454] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 78.693672][ T8454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 78.699995][ T8454] ? cap_capable+0x1f1/0x280 [ 78.704604][ T8454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 78.710924][ T8454] ? ns_capable+0xde/0x100 [ 78.715469][ T8454] genl_rcv_msg+0x328/0x580 [ 78.720003][ T8454] ? genl_get_cmd+0x480/0x480 [ 78.724695][ T8454] ? rdev_set_cqm_rssi_config+0x330/0x330 [ 78.730560][ T8454] ? lock_release+0x710/0x710 [ 78.735363][ T8454] netlink_rcv_skb+0x153/0x420 [ 78.740245][ T8454] ? genl_get_cmd+0x480/0x480 [ 78.744940][ T8454] ? netlink_ack+0xaa0/0xaa0 [ 78.749643][ T8454] genl_rcv+0x24/0x40 D[ 78.753648][ T8454] netlink_unicast+0x533/0x7d0 [ 78.758618][ T8454] ? netlink_attachskb+0x870/0x870 [ 78.763746][ T8454] ? _copy_from_iter_full+0x275/0x850 e[ 78.769223][ T8454] netlink_sendmsg+0x856/0xd90 [ 78.773971][ T8454] ? netlink_unicast+0x7d0/0x7d0 [ 78.779071][ T8454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 b[ 78.785431][ T8454] ? netlink_unicast+0x7d0/0x7d0 [ 78.790426][ T8454] sock_sendmsg+0xcf/0x120 i[ 78.794872][ T8454] ____sys_sendmsg+0x6e8/0x810 [ 78.799824][ T8454] ? kernel_sendmsg+0x50/0x50 a[ 78.804538][ T8454] ? do_recvmmsg+0x6c0/0x6c0 [ 78.809306][ T8454] ? get_max_files+0x10/0x10 [ 78.813918][ T8454] ? stack_trace_save+0x8c/0xc0 n[ 78.818880][ T8454] ? stack_trace_consume_entry+0x160/0x160 [ 78.824659][ T8454] ___sys_sendmsg+0xf3/0x170 [ 78.829348][ T8454] ? sendmsg_copy_msghdr+0x160/0x160 [ 78.834653][ T8454] ? call_rcu+0xbb/0x700 GNU/Linux 9 [ 78.839738][ T8454] ? exit_to_user_mode_prepare+0x249/0x250 [ 78.846723][ T8454] ? syscall_exit_to_user_mode+0x19/0x50 [ 78.852398][ T8454] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 syzkaller[ 78.859526][ T8454] ? debug_object_active_state+0x260/0x350 ttyS0 [ 78.865913][ T8454] ? lock_downgrade+0x6d0/0x6d0 [ 78.871084][ T8454] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 78.877434][ T8454] ? lockdep_hardirqs_on+0x79/0x100 [ 78.882660][ T8454] ? _raw_spin_unlock_irqrestore+0x2f/0x50 [ 78.888983][ T8454] ? debug_object_active_state+0x260/0x350 [ 78.894826][ T8454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 syzkaller[ 78.901781][ T8454] ? __fget_light+0x215/0x280 login: [ 78.908036][ T8454] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 78.914311][ T8454] __sys_sendmsg+0xe5/0x1b0 [ 78.918872][ T8454] ? __sys_sendmsg_sock+0xb0/0xb0 [ 78.923925][ T8454] ? syscall_enter_from_user_mode+0x1d/0x50 [ 78.929946][ T8454] do_syscall_64+0x2d/0x70 [ 78.934378][ T8454] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 78.940315][ T8454] RIP: 0033:0x4408f9 [ 78.944218][ T8454] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 78.964091][ T8454] RSP: 002b:00007ffc7272a478 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 78.972641][ T8454] RAX: ffffffffffffffda RBX: 0000000000000031 RCX: 00000000004408f9 [ 78.980761][ T8454] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005 [ 78.989404][ T8454] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffc7272a4a8 [ 78.997481][ T8454] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc7272a4d0 [ 79.005649][ T8454] R13: 00007ffc7272a4c2 R14: 00000000004b7430 R15: 00000000004b73c0 [ 79.013634][ T8454] Kernel panic - not syncing: panic_on_warn set ... [ 79.020218][ T8454] CPU: 0 PID: 8454 Comm: syz-executor886 Not tainted 5.11.0-rc6-syzkaller #0 [ 79.028961][ T8454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.039002][ T8454] Call Trace: [ 79.042269][ T8454] dump_stack+0x107/0x163 [ 79.046597][ T8454] panic+0x306/0x73d [ 79.050506][ T8454] ? __warn_printk+0xf3/0xf3 [ 79.055096][ T8454] ? __warn.cold+0x1a/0x44 [ 79.059504][ T8454] ? sta_info_alloc+0x1923/0x1fa0 [ 79.064519][ T8454] __warn.cold+0x35/0x44 [ 79.068750][ T8454] ? sta_info_alloc+0x1923/0x1fa0 [ 79.073763][ T8454] report_bug+0x1bd/0x210 [ 79.078113][ T8454] handle_bug+0x3c/0x60 [ 79.082275][ T8454] exc_invalid_op+0x14/0x40 [ 79.086765][ T8454] asm_exc_invalid_op+0x12/0x20 [ 79.091649][ T8454] RIP: 0010:sta_info_alloc+0x1923/0x1fa0 [ 79.097297][ T8454] Code: 85 8f 03 00 00 49 8b 9f 60 01 00 00 e9 fe f6 ff ff e8 51 7b 23 f9 8b 5c 24 08 83 e3 01 83 c3 01 e9 a5 fb ff ff e8 3d 7b 23 f9 <0f> 0b e8 a6 2d ac 00 31 ff 89 c3 89 c6 e8 4b 81 23 f9 85 db 74 1d [ 79.116897][ T8454] RSP: 0018:ffffc90001caf3e0 EFLAGS: 00010293 [ 79.122950][ T8454] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 79.130905][ T8454] RDX: ffff888027d90240 RSI: ffffffff884f5853 RDI: 0000000000000003 [ 79.138861][ T8454] RBP: ffff888039920c80 R08: 0000000000000000 R09: 0000000000000000 [ 79.146817][ T8454] R10: ffffffff884f5790 R11: 0000000000000000 R12: 0000000000000000 [ 79.154772][ T8454] R13: 0000000000000008 R14: dffffc0000000000 R15: ffff88801c26a000 [ 79.162734][ T8454] ? sta_info_alloc+0x1860/0x1fa0 [ 79.167753][ T8454] ? sta_info_alloc+0x1923/0x1fa0 [ 79.172779][ T8454] ieee80211_add_station+0x28c/0x660 [ 79.178142][ T8454] nl80211_new_station+0xdd0/0x13c0 [ 79.183331][ T8454] ? rdev_set_cqm_rssi_config+0x330/0x330 [ 79.189050][ T8454] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 79.195294][ T8454] ? nl80211_pre_doit+0xa2/0x630 [ 79.200241][ T8454] genl_family_rcv_msg_doit+0x228/0x320 [ 79.205782][ T8454] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 79.213153][ T8454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.219382][ T8454] ? cap_capable+0x1f1/0x280 [ 79.223988][ T8454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.230217][ T8454] ? ns_capable+0xde/0x100 [ 79.234625][ T8454] genl_rcv_msg+0x328/0x580 [ 79.239120][ T8454] ? genl_get_cmd+0x480/0x480 [ 79.244220][ T8454] ? rdev_set_cqm_rssi_config+0x330/0x330 [ 79.249930][ T8454] ? lock_release+0x710/0x710 [ 79.254598][ T8454] netlink_rcv_skb+0x153/0x420 [ 79.259352][ T8454] ? genl_get_cmd+0x480/0x480 [ 79.264020][ T8454] ? netlink_ack+0xaa0/0xaa0 [ 79.268624][ T8454] genl_rcv+0x24/0x40 [ 79.272595][ T8454] netlink_unicast+0x533/0x7d0 [ 79.277347][ T8454] ? netlink_attachskb+0x870/0x870 [ 79.282556][ T8454] ? _copy_from_iter_full+0x275/0x850 [ 79.287923][ T8454] netlink_sendmsg+0x856/0xd90 [ 79.292678][ T8454] ? netlink_unicast+0x7d0/0x7d0 [ 79.297606][ T8454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.303837][ T8454] ? netlink_unicast+0x7d0/0x7d0 [ 79.308775][ T8454] sock_sendmsg+0xcf/0x120 [ 79.313250][ T8454] ____sys_sendmsg+0x6e8/0x810 [ 79.318169][ T8454] ? kernel_sendmsg+0x50/0x50 [ 79.322845][ T8454] ? do_recvmmsg+0x6c0/0x6c0 [ 79.327430][ T8454] ? get_max_files+0x10/0x10 [ 79.332025][ T8454] ? stack_trace_save+0x8c/0xc0 [ 79.336979][ T8454] ? stack_trace_consume_entry+0x160/0x160 [ 79.342788][ T8454] ___sys_sendmsg+0xf3/0x170 [ 79.347372][ T8454] ? sendmsg_copy_msghdr+0x160/0x160 [ 79.352665][ T8454] ? call_rcu+0xbb/0x700 [ 79.356899][ T8454] ? exit_to_user_mode_prepare+0x249/0x250 [ 79.362696][ T8454] ? syscall_exit_to_user_mode+0x19/0x50 [ 79.368321][ T8454] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 79.374380][ T8454] ? debug_object_active_state+0x260/0x350 [ 79.380179][ T8454] ? lock_downgrade+0x6d0/0x6d0 [ 79.385033][ T8454] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 79.390832][ T8454] ? lockdep_hardirqs_on+0x79/0x100 [ 79.396021][ T8454] ? _raw_spin_unlock_irqrestore+0x2f/0x50 [ 79.401847][ T8454] ? debug_object_active_state+0x260/0x350 [ 79.407666][ T8454] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.413911][ T8454] ? __fget_light+0x215/0x280 [ 79.418580][ T8454] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 79.424815][ T8454] __sys_sendmsg+0xe5/0x1b0 [ 79.429310][ T8454] ? __sys_sendmsg_sock+0xb0/0xb0 [ 79.434333][ T8454] ? syscall_enter_from_user_mode+0x1d/0x50 [ 79.440225][ T8454] do_syscall_64+0x2d/0x70 [ 79.444631][ T8454] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 79.450530][ T8454] RIP: 0033:0x4408f9 [ 79.454414][ T8454] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 79.474097][ T8454] RSP: 002b:00007ffc7272a478 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 79.482517][ T8454] RAX: ffffffffffffffda RBX: 0000000000000031 RCX: 00000000004408f9 [ 79.490485][ T8454] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005 [ 79.498631][ T8454] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffc7272a4a8 [ 79.506609][ T8454] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc7272a4d0 [ 79.514578][ T8454] R13: 00007ffc7272a4c2 R14: 00000000004b7430 R15: 00000000004b73c0 [ 79.523575][ T8454] Kernel Offset: disabled [ 79.528012][ T8454] Rebooting in 86400 seconds..