Starting Permit User Sessions... Starting getty on tty2-tty6 if dbus and logind are not available... Starting System Logging Service... [ OK ] Started Regular background program processing daemon. Starting OpenBSD Secure Shell server... [ OK ] Started System Logging Service. [ OK ] Started Permit User Sessions. [ OK ] Found device /dev/ttyS0. [ OK ] Started OpenBSD Secure Shell server. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Warning: Permanently added '10.128.0.151' (ECDSA) to the list of known hosts. [ 79.031324][ T37] audit: type=1400 audit(1619864261.975:8): avc: denied { execmem } for pid=8373 comm="syz-executor717" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 79.047740][ T8374] IPVS: ftp: loaded support on port[0] = 21 [ 79.147268][ T219] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.155557][ T219] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program [ 79.189460][ T25] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.193431][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 79.198090][ T25] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.219119][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready Debian GNU/Linux 9 syzkaller ttyS0 [ 79.312776][ T8414] ------------[ cut here ]------------ syzkaller login: [ 79.339924][ T8414] wlan0: Failed check-sdata-in-driver check, flags: 0x4 [ 79.352566][ T8414] WARNING: CPU: 1 PID: 8414 at net/mac80211/driver-ops.h:172 drv_bss_info_changed+0x4f8/0x5f0 [ 79.363490][ T8414] Modules linked in: [ 79.367512][ T8414] CPU: 1 PID: 8414 Comm: syz-executor717 Not tainted 5.12.0-syzkaller #0 [ 79.376321][ T8414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.386717][ T8414] RIP: 0010:drv_bss_info_changed+0x4f8/0x5f0 [ 79.394088][ T8414] Code: 40 06 00 00 48 85 ed 0f 84 9c 00 00 00 e8 30 34 19 f9 e8 2b 34 19 f9 8b 54 24 04 48 89 ee 48 c7 c7 a0 57 85 8a e8 a7 3e 6d 00 <0f> 0b e9 dd fd ff ff e8 0c 34 19 f9 0f 0b e9 15 fd ff ff 4c 89 ff [ 79.431077][ T8414] RSP: 0018:ffffc9000163f500 EFLAGS: 00010282 [ 79.437333][ T8414] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 79.445550][ T8414] RDX: ffff8880284b00c0 RSI: ffffffff815bb075 RDI: fffff520002c7e92 [ 79.453720][ T8414] RBP: ffff888022fa8000 R08: 0000000000000000 R09: 0000000000000000 [ 79.462279][ T8414] R10: ffffffff815b4eae R11: 0000000000000000 R12: ffff888022fa8c00 [ 79.470315][ T8414] R13: 0000000002000000 R14: ffff888022fa9e20 R15: ffff888022fa9e18 [ 79.479690][ T8414] FS: 0000000001bd0300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 79.489132][ T8414] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 79.496253][ T8414] CR2: 00007fe82b188000 CR3: 000000002383b000 CR4: 00000000001506e0 [ 79.504759][ T8414] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 79.512984][ T8414] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 79.521669][ T8414] Call Trace: [ 79.524960][ T8414] ieee80211_bss_info_change_notify+0x9a/0xc0 [ 79.531216][ T8414] ieee80211_set_mcast_rate+0x37/0x40 [ 79.536652][ T8414] ? ieee80211_get_mesh_config+0x30/0x30 [ 79.542462][ T8414] nl80211_set_mcast_rate+0x317/0x610 [ 79.547857][ T8414] ? nl80211_nan_add_func+0x1940/0x1940 [ 79.553513][ T8414] ? nl80211_pre_doit+0xa6/0x5c0 [ 79.558468][ T8414] genl_family_rcv_msg_doit+0x228/0x320 [ 79.564189][ T8414] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 79.571697][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.577960][ T8414] ? cap_capable+0x1f1/0x280 [ 79.582633][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.588899][ T8414] ? ns_capable+0xde/0x100 [ 79.593404][ T8414] genl_rcv_msg+0x328/0x580 [ 79.597920][ T8414] ? genl_get_cmd+0x480/0x480 [ 79.602673][ T8414] ? nl80211_nan_add_func+0x1940/0x1940 [ 79.608228][ T8414] ? lock_release+0x720/0x720 [ 79.613106][ T8414] netlink_rcv_skb+0x153/0x420 [ 79.617891][ T8414] ? genl_get_cmd+0x480/0x480 [ 79.622654][ T8414] ? netlink_ack+0xaa0/0xaa0 [ 79.627258][ T8414] genl_rcv+0x24/0x40 [ 79.631386][ T8414] netlink_unicast+0x533/0x7d0 [ 79.636163][ T8414] ? netlink_attachskb+0x870/0x870 [ 79.641419][ T8414] netlink_sendmsg+0x856/0xd90 [ 79.646201][ T8414] ? netlink_unicast+0x7d0/0x7d0 [ 79.651233][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.657491][ T8414] ? netlink_unicast+0x7d0/0x7d0 [ 79.662506][ T8414] sock_sendmsg+0xcf/0x120 [ 79.666935][ T8414] ____sys_sendmsg+0x6e8/0x810 [ 79.671885][ T8414] ? kernel_sendmsg+0x50/0x50 [ 79.676569][ T8414] ? do_recvmmsg+0x6d0/0x6d0 [ 79.681237][ T8414] ? lock_chain_count+0x20/0x20 [ 79.686103][ T8414] ? find_held_lock+0x2d/0x110 [ 79.691150][ T8414] ___sys_sendmsg+0xf3/0x170 [ 79.695763][ T8414] ? sendmsg_copy_msghdr+0x160/0x160 [ 79.701191][ T8414] ? __lock_acquire+0x16a7/0x5230 [ 79.706228][ T8414] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 79.712359][ T8414] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 79.718351][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 79.724673][ T8414] ? __fget_light+0x215/0x280 [ 79.729358][ T8414] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 79.735707][ T8414] __sys_sendmsg+0xe5/0x1b0 [ 79.740227][ T8414] ? __sys_sendmsg_sock+0x30/0x30 [ 79.745334][ T8414] ? syscall_enter_from_user_mode+0x27/0x70 [ 79.751341][ T8414] do_syscall_64+0x3a/0xb0 [ 79.755776][ T8414] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 79.761737][ T8414] RIP: 0033:0x440f79 [ 79.765724][ T8414] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 79.785456][ T8414] RSP: 002b:00007ffff3bd3ab8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 79.793948][ T8414] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000440f79 [ 79.802003][ T8414] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000004 [ 79.809987][ T8414] RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000 [ 79.818058][ T8414] R10: 0000000c00000000 R11: 0000000000000246 R12: 0000000000000031 [ 79.826128][ T8414] R13: 00007ffff3bd3b20 R14: 00007ffff3bd3b10 R15: 00000000004b7410 [ 79.834179][ T8414] Kernel panic - not syncing: panic_on_warn set ... [ 79.840768][ T8414] CPU: 1 PID: 8414 Comm: syz-executor717 Not tainted 5.12.0-syzkaller #0 [ 79.849185][ T8414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.859242][ T8414] Call Trace: [ 79.862510][ T8414] dump_stack+0x141/0x1d7 [ 79.866839][ T8414] panic+0x306/0x73d [ 79.870726][ T8414] ? __warn_printk+0xf3/0xf3 [ 79.875323][ T8414] ? __warn.cold+0x1a/0x44 [ 79.879726][ T8414] ? drv_bss_info_changed+0x4f8/0x5f0 [ 79.885085][ T8414] __warn.cold+0x35/0x44 [ 79.889428][ T8414] ? drv_bss_info_changed+0x4f8/0x5f0 [ 79.894788][ T8414] report_bug+0x1bd/0x210 [ 79.899139][ T8414] handle_bug+0x3c/0x60 [ 79.903286][ T8414] exc_invalid_op+0x14/0x40 [ 79.907776][ T8414] asm_exc_invalid_op+0x12/0x20 [ 79.912635][ T8414] RIP: 0010:drv_bss_info_changed+0x4f8/0x5f0 [ 79.918606][ T8414] Code: 40 06 00 00 48 85 ed 0f 84 9c 00 00 00 e8 30 34 19 f9 e8 2b 34 19 f9 8b 54 24 04 48 89 ee 48 c7 c7 a0 57 85 8a e8 a7 3e 6d 00 <0f> 0b e9 dd fd ff ff e8 0c 34 19 f9 0f 0b e9 15 fd ff ff 4c 89 ff [ 79.938201][ T8414] RSP: 0018:ffffc9000163f500 EFLAGS: 00010282 [ 79.944256][ T8414] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 79.952229][ T8414] RDX: ffff8880284b00c0 RSI: ffffffff815bb075 RDI: fffff520002c7e92 [ 79.960186][ T8414] RBP: ffff888022fa8000 R08: 0000000000000000 R09: 0000000000000000 [ 79.969642][ T8414] R10: ffffffff815b4eae R11: 0000000000000000 R12: ffff888022fa8c00 [ 79.977630][ T8414] R13: 0000000002000000 R14: ffff888022fa9e20 R15: ffff888022fa9e18 [ 79.985588][ T8414] ? wake_up_klogd.part.0+0x8e/0xd0 [ 79.990803][ T8414] ? vprintk+0x95/0x260 [ 79.994955][ T8414] ieee80211_bss_info_change_notify+0x9a/0xc0 [ 80.001051][ T8414] ieee80211_set_mcast_rate+0x37/0x40 [ 80.006413][ T8414] ? ieee80211_get_mesh_config+0x30/0x30 [ 80.012037][ T8414] nl80211_set_mcast_rate+0x317/0x610 [ 80.017398][ T8414] ? nl80211_nan_add_func+0x1940/0x1940 [ 80.022951][ T8414] ? nl80211_pre_doit+0xa6/0x5c0 [ 80.027877][ T8414] genl_family_rcv_msg_doit+0x228/0x320 [ 80.033413][ T8414] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 80.040772][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 80.047005][ T8414] ? cap_capable+0x1f1/0x280 [ 80.051585][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 80.057827][ T8414] ? ns_capable+0xde/0x100 [ 80.062236][ T8414] genl_rcv_msg+0x328/0x580 [ 80.066732][ T8414] ? genl_get_cmd+0x480/0x480 [ 80.071396][ T8414] ? nl80211_nan_add_func+0x1940/0x1940 [ 80.076928][ T8414] ? lock_release+0x720/0x720 [ 80.081598][ T8414] netlink_rcv_skb+0x153/0x420 [ 80.086374][ T8414] ? genl_get_cmd+0x480/0x480 [ 80.091068][ T8414] ? netlink_ack+0xaa0/0xaa0 [ 80.095644][ T8414] genl_rcv+0x24/0x40 [ 80.099619][ T8414] netlink_unicast+0x533/0x7d0 [ 80.104376][ T8414] ? netlink_attachskb+0x870/0x870 [ 80.109586][ T8414] netlink_sendmsg+0x856/0xd90 [ 80.114342][ T8414] ? netlink_unicast+0x7d0/0x7d0 [ 80.119266][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 80.125504][ T8414] ? netlink_unicast+0x7d0/0x7d0 [ 80.130429][ T8414] sock_sendmsg+0xcf/0x120 [ 80.134845][ T8414] ____sys_sendmsg+0x6e8/0x810 [ 80.139594][ T8414] ? kernel_sendmsg+0x50/0x50 [ 80.144280][ T8414] ? do_recvmmsg+0x6d0/0x6d0 [ 80.148856][ T8414] ? lock_chain_count+0x20/0x20 [ 80.153695][ T8414] ? find_held_lock+0x2d/0x110 [ 80.158445][ T8414] ___sys_sendmsg+0xf3/0x170 [ 80.163020][ T8414] ? sendmsg_copy_msghdr+0x160/0x160 [ 80.168299][ T8414] ? __lock_acquire+0x16a7/0x5230 [ 80.173322][ T8414] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 80.179311][ T8414] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 80.185285][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 80.191626][ T8414] ? __fget_light+0x215/0x280 [ 80.196309][ T8414] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 80.202537][ T8414] __sys_sendmsg+0xe5/0x1b0 [ 80.207027][ T8414] ? __sys_sendmsg_sock+0x30/0x30 [ 80.212037][ T8414] ? syscall_enter_from_user_mode+0x27/0x70 [ 80.217925][ T8414] do_syscall_64+0x3a/0xb0 [ 80.222327][ T8414] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 80.228208][ T8414] RIP: 0033:0x440f79 [ 80.232093][ T8414] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 80.251694][ T8414] RSP: 002b:00007ffff3bd3ab8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 80.260100][ T8414] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000440f79 [ 80.268059][ T8414] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000004 [ 80.276031][ T8414] RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000 [ 80.284009][ T8414] R10: 0000000c00000000 R11: 0000000000000246 R12: 0000000000000031 [ 80.291964][ T8414] R13: 00007ffff3bd3b20 R14: 00007ffff3bd3b10 R15: 00000000004b7410 [ 80.300588][ T8414] Kernel Offset: disabled [ 80.305020][ T8414] Rebooting in 86400 seconds..