[ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.143' (ECDSA) to the list of known hosts. 2020/11/24 07:35:09 parsed 1 programs 2020/11/24 07:35:09 executed programs: 0 syzkaller login: [ 34.908452] IPVS: ftp: loaded support on port[0] = 21 [ 35.026941] chnl_net:caif_netlink_parms(): no params data found [ 35.118063] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.124914] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.132685] device bridge_slave_0 entered promiscuous mode [ 35.140413] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.146788] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.154378] device bridge_slave_1 entered promiscuous mode [ 35.172898] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 35.181617] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 35.199743] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 35.207222] team0: Port device team_slave_0 added [ 35.213283] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 35.221187] team0: Port device team_slave_1 added [ 35.235894] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.242171] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.268077] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.280270] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.286528] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.312446] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.323368] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 35.330983] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 35.350895] device hsr_slave_0 entered promiscuous mode [ 35.356848] device hsr_slave_1 entered promiscuous mode [ 35.363222] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 35.370411] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 35.435616] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.442094] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.448848] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.455254] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.486493] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 35.494058] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.502887] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 35.512333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.521359] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.528283] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.535585] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 35.545783] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 35.552812] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.561844] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 35.570174] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.576643] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.598458] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 35.608651] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 35.619351] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 35.626141] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 35.634347] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.640762] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.648278] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 35.657212] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 35.664973] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 35.672806] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 35.680424] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 35.687194] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 35.698739] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 35.707271] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 35.714874] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 35.726201] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.739777] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 35.749930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 35.783966] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 35.791539] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 35.797987] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 35.807971] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 35.816321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 35.823638] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 35.832900] device veth0_vlan entered promiscuous mode [ 35.842979] device veth1_vlan entered promiscuous mode [ 35.848894] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 35.857591] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 35.868456] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 35.877974] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 35.885484] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 35.893817] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 35.903339] device veth0_macvtap entered promiscuous mode [ 35.909806] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 35.917491] device veth1_macvtap entered promiscuous mode [ 35.926925] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 35.936132] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 35.946434] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.953957] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 35.962470] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 35.972463] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.980450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.084673] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 36.091938] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.108037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.114658] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 36.115781] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.129567] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 36.132302] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.143208] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 36.163284] BUG: sleeping function called from invalid context at net/mac80211/sta_info.c:1850 [ 36.173854] in_atomic(): 0, irqs_disabled(): 0, pid: 346, name: kworker/u4:4 [ 36.183065] 4 locks held by kworker/u4:4/346: [ 36.187556] #0: 00000000aa4dfafa ((wq_completion)"%s"wiphy_name(local->hw.wiphy)){+.+.}, at: process_one_work+0x767/0x1570 [ 36.199770] #1: 0000000081f12d3c ((work_completion)(&sdata->work)){+.+.}, at: process_one_work+0x79c/0x1570 [ 36.210410] #2: 0000000073e3b933 (&wdev->mtx){+.+.}, at: ieee80211_ibss_work+0x85/0xe10 [ 36.219290] #3: 00000000a1154b2e (rcu_read_lock){....}, at: sta_info_insert_rcu+0x48e/0x2310 [ 36.228863] Preemption disabled at: [ 36.228880] [