[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.114' (ECDSA) to the list of known hosts.
syzkaller login: [   53.452052][ T8450] IPVS: ftp: loaded support on port[0] = 21
[   53.527424][   T24] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   53.545222][   T24] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[   53.574016][ T3201] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   53.596413][  T265] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   53.606129][  T265] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   53.615331][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   53.634054][ T8450] ------------[ cut here ]------------
[   53.639697][ T8450] wlan1: Failed check-sdata-in-driver check, flags: 0x4
[   53.647701][ T8450] WARNING: CPU: 1 PID: 8450 at net/mac80211/driver-ops.h:172 drv_bss_info_changed+0x4f3/0x5f0
[   53.658353][ T8450] Modules linked in:
[   53.662265][ T8450] CPU: 1 PID: 8450 Comm: syz-executor126 Not tainted 5.11.0-rc5-syzkaller #0
[   53.671650][ T8450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   53.683310][ T8450] RIP: 0010:drv_bss_info_changed+0x4f3/0x5f0
[   53.689491][ T8450] Code: 40 06 00 00 48 85 ed 0f 84 9c 00 00 00 e8 65 d2 26 f9 e8 60 d2 26 f9 8b 54 24 04 48 89 ee 48 c7 c7 c0 b5 62 8a e8 09 00 6d 00 <0f> 0b e9 dd fd ff ff e8 41 d2 26 f9 0f 0b e9 15 fd ff ff 4c 89 ff
[   53.709812][ T8450] RSP: 0018:ffffc9000177f508 EFLAGS: 00010286
[   53.716238][ T8450] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   53.724355][ T8450] RDX: ffff888010e43780 RSI: ffffffff815b6225 RDI: fffff520002efe93
[   53.732721][ T8450] RBP: ffff888013ac8000 R08: 0000000000000000 R09: 0000000000000000
[   53.741219][ T8450] R10: ffffffff815af3fe R11: 0000000000000000 R12: ffff888013ac8bc0
[   53.749778][ T8450] R13: 0000000002000000 R14: ffff888013ac9de0 R15: ffff888013ac9dd8
[   53.757798][ T8450] FS:  000000000149f880(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000
[   53.766773][ T8450] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   53.773581][ T8450] CR2: 000000002000a6c0 CR3: 00000000145e1000 CR4: 0000000000350ee0
[   53.781554][ T8450] Call Trace:
[   53.785194][ T8450]  ieee80211_bss_info_change_notify+0x9a/0xc0
[   53.791264][ T8450]  ieee80211_set_mcast_rate+0x37/0x40
[   53.797032][ T8450]  ? ieee80211_get_mesh_config+0x30/0x30
[   53.802662][ T8450]  nl80211_set_mcast_rate+0x317/0x610
[   53.808088][ T8450]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   53.814730][ T8450]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[   53.820967][ T8450]  ? nl80211_pre_doit+0xa2/0x630
[   53.825931][ T8450]  genl_family_rcv_msg_doit+0x228/0x320
[   53.831481][ T8450]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[   53.838974][ T8450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   53.845271][ T8450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   53.851505][ T8450]  ? ns_capable+0xde/0x100
[   53.856030][ T8450]  genl_rcv_msg+0x328/0x580
[   53.860536][ T8450]  ? genl_get_cmd+0x480/0x480
[   53.865241][ T8450]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   53.871882][ T8450]  ? lock_release+0x710/0x710
[   53.876596][ T8450]  netlink_rcv_skb+0x153/0x420
[   53.881358][ T8450]  ? genl_get_cmd+0x480/0x480
[   53.886077][ T8450]  ? netlink_ack+0xaa0/0xaa0
[   53.890674][ T8450]  genl_rcv+0x24/0x40
[   53.894688][ T8450]  netlink_unicast+0x533/0x7d0
[   53.899451][ T8450]  ? netlink_attachskb+0x870/0x870
[   53.904587][ T8450]  ? _copy_from_iter_full+0x275/0x850
[   53.909962][ T8450]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   53.916229][ T8450]  ? __phys_addr_symbol+0x2c/0x70
[   53.921255][ T8450]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   53.927114][ T8450]  ? __check_object_size+0x171/0x3f0
[   53.932466][ T8450]  netlink_sendmsg+0x856/0xd90
[   53.937336][ T8450]  ? netlink_unicast+0x7d0/0x7d0
[   53.942295][ T8450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   53.948624][ T8450]  ? netlink_unicast+0x7d0/0x7d0
[   53.953633][ T8450]  sock_sendmsg+0xcf/0x120
[   53.958048][ T8450]  ____sys_sendmsg+0x6e8/0x810
[   53.962792][ T8450]  ? kernel_sendmsg+0x50/0x50
[   53.967512][ T8450]  ? do_recvmmsg+0x6c0/0x6c0
[   53.972312][ T8450]  ? find_held_lock+0x2d/0x110
[   53.977136][ T8450]  ___sys_sendmsg+0xf3/0x170
[   53.982114][ T8450]  ? sendmsg_copy_msghdr+0x160/0x160
[   53.987867][ T8450]  ? _copy_to_user+0xdc/0x150
[   53.992564][ T8450]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   53.998867][ T8450]  ? sock_do_ioctl+0x168/0x2d0
[   54.004284][ T8450]  ? compat_ifr_data_ioctl+0x150/0x150
[   54.004330][ T8450]  ? __sanitizer_cov_trace_switch+0x63/0xf0
[   54.004357][ T8450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   54.004379][ T8450]  ? __fget_light+0x215/0x280
[   54.026978][ T8450]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   54.033570][ T8450]  __sys_sendmsg+0xe5/0x1b0
[   54.038441][ T8450]  ? __sys_sendmsg_sock+0xb0/0xb0
[   54.044499][ T8450]  ? syscall_enter_from_user_mode+0x1d/0x50
[   54.050505][ T8450]  do_syscall_64+0x2d/0x70
[   54.055046][ T8450]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   54.060955][ T8450] RIP: 0033:0x4417b9
[   54.064956][ T8450] Code: e8 dc 05 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   54.084933][ T8450] RSP: 002b:00007ffe873a45b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.094135][ T8450] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004417b9
[   54.102133][ T8450] RDX: 0000000000000000 RSI: 0000000020000500 RDI: 0000000000000005
[   54.110440][ T8450] RBP: 000000316e616c77 R08: 0000002100000000 R09: 0000002100000000
[   54.118534][ T8450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000032
[   54.126693][ T8450] R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000004
[   54.134828][ T8450] Kernel panic - not syncing: panic_on_warn set ...
[   54.141491][ T8450] CPU: 0 PID: 8450 Comm: syz-executor126 Not tainted 5.11.0-rc5-syzkaller #0
[   54.150232][ T8450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   54.160269][ T8450] Call Trace:
[   54.163537][ T8450]  dump_stack+0x107/0x163
[   54.167857][ T8450]  panic+0x306/0x73d
[   54.171738][ T8450]  ? __warn_printk+0xf3/0xf3
[   54.176502][ T8450]  ? __warn.cold+0x1a/0x44
[   54.180906][ T8450]  ? drv_bss_info_changed+0x4f3/0x5f0
[   54.186258][ T8450]  __warn.cold+0x35/0x44
[   54.190487][ T8450]  ? wake_up_klogd.part.0+0x8e/0xd0
[   54.195845][ T8450]  ? drv_bss_info_changed+0x4f3/0x5f0
[   54.201203][ T8450]  report_bug+0x1bd/0x210
[   54.205521][ T8450]  handle_bug+0x3c/0x60
[   54.209667][ T8450]  exc_invalid_op+0x14/0x40
[   54.214154][ T8450]  asm_exc_invalid_op+0x12/0x20
[   54.219077][ T8450] RIP: 0010:drv_bss_info_changed+0x4f3/0x5f0
[   54.225056][ T8450] Code: 40 06 00 00 48 85 ed 0f 84 9c 00 00 00 e8 65 d2 26 f9 e8 60 d2 26 f9 8b 54 24 04 48 89 ee 48 c7 c7 c0 b5 62 8a e8 09 00 6d 00 <0f> 0b e9 dd fd ff ff e8 41 d2 26 f9 0f 0b e9 15 fd ff ff 4c 89 ff
[   54.244658][ T8450] RSP: 0018:ffffc9000177f508 EFLAGS: 00010286
[   54.250807][ T8450] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   54.258992][ T8450] RDX: ffff888010e43780 RSI: ffffffff815b6225 RDI: fffff520002efe93
[   54.266975][ T8450] RBP: ffff888013ac8000 R08: 0000000000000000 R09: 0000000000000000
[   54.274939][ T8450] R10: ffffffff815af3fe R11: 0000000000000000 R12: ffff888013ac8bc0
[   54.282904][ T8450] R13: 0000000002000000 R14: ffff888013ac9de0 R15: ffff888013ac9dd8
[   54.290867][ T8450]  ? wake_up_klogd.part.0+0x8e/0xd0
[   54.296072][ T8450]  ? vprintk_func+0x95/0x1e0
[   54.300653][ T8450]  ? drv_bss_info_changed+0x4f3/0x5f0
[   54.306016][ T8450]  ieee80211_bss_info_change_notify+0x9a/0xc0
[   54.312071][ T8450]  ieee80211_set_mcast_rate+0x37/0x40
[   54.317430][ T8450]  ? ieee80211_get_mesh_config+0x30/0x30
[   54.323050][ T8450]  nl80211_set_mcast_rate+0x317/0x610
[   54.328414][ T8450]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   54.334993][ T8450]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[   54.341220][ T8450]  ? nl80211_pre_doit+0xa2/0x630
[   54.346152][ T8450]  genl_family_rcv_msg_doit+0x228/0x320
[   54.351692][ T8450]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[   54.359049][ T8450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   54.365304][ T8450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   54.371533][ T8450]  ? ns_capable+0xde/0x100
[   54.375943][ T8450]  genl_rcv_msg+0x328/0x580
[   54.380521][ T8450]  ? genl_get_cmd+0x480/0x480
[   54.385265][ T8450]  ? nl80211_tdls_cancel_channel_switch+0x5b0/0x5b0
[   54.391852][ T8450]  ? lock_release+0x710/0x710
[   54.396522][ T8450]  netlink_rcv_skb+0x153/0x420
[   54.401286][ T8450]  ? genl_get_cmd+0x480/0x480
[   54.405959][ T8450]  ? netlink_ack+0xaa0/0xaa0
[   54.410538][ T8450]  genl_rcv+0x24/0x40
[   54.414502][ T8450]  netlink_unicast+0x533/0x7d0
[   54.419250][ T8450]  ? netlink_attachskb+0x870/0x870
[   54.424432][ T8450]  ? _copy_from_iter_full+0x275/0x850
[   54.429889][ T8450]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   54.436123][ T8450]  ? __phys_addr_symbol+0x2c/0x70
[   54.441145][ T8450]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   54.446850][ T8450]  ? __check_object_size+0x171/0x3f0
[   54.452172][ T8450]  netlink_sendmsg+0x856/0xd90
[   54.456930][ T8450]  ? netlink_unicast+0x7d0/0x7d0
[   54.461858][ T8450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   54.468110][ T8450]  ? netlink_unicast+0x7d0/0x7d0
[   54.473041][ T8450]  sock_sendmsg+0xcf/0x120
[   54.477456][ T8450]  ____sys_sendmsg+0x6e8/0x810
[   54.482217][ T8450]  ? kernel_sendmsg+0x50/0x50
[   54.486886][ T8450]  ? do_recvmmsg+0x6c0/0x6c0
[   54.491467][ T8450]  ? find_held_lock+0x2d/0x110
[   54.496322][ T8450]  ___sys_sendmsg+0xf3/0x170
[   54.500915][ T8450]  ? sendmsg_copy_msghdr+0x160/0x160
[   54.506387][ T8450]  ? _copy_to_user+0xdc/0x150
[   54.511047][ T8450]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   54.517282][ T8450]  ? sock_do_ioctl+0x168/0x2d0
[   54.522032][ T8450]  ? compat_ifr_data_ioctl+0x150/0x150
[   54.527472][ T8450]  ? __sanitizer_cov_trace_switch+0x63/0xf0
[   54.533351][ T8450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   54.539571][ T8450]  ? __fget_light+0x215/0x280
[   54.544230][ T8450]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   54.550472][ T8450]  __sys_sendmsg+0xe5/0x1b0
[   54.554964][ T8450]  ? __sys_sendmsg_sock+0xb0/0xb0
[   54.559981][ T8450]  ? syscall_enter_from_user_mode+0x1d/0x50
[   54.565864][ T8450]  do_syscall_64+0x2d/0x70
[   54.570271][ T8450]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   54.576152][ T8450] RIP: 0033:0x4417b9
[   54.580030][ T8450] Code: e8 dc 05 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   54.599634][ T8450] RSP: 002b:00007ffe873a45b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.608045][ T8450] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004417b9
[   54.616238][ T8450] RDX: 0000000000000000 RSI: 0000000020000500 RDI: 0000000000000005
[   54.624192][ T8450] RBP: 000000316e616c77 R08: 0000002100000000 R09: 0000002100000000
[   54.632141][ T8450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000032
[   54.640383][ T8450] R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000004
[   54.652339][ T8450] Kernel Offset: disabled
[   54.657140][ T8450] Rebooting in 86400 seconds..