[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.100' (ECDSA) to the list of known hosts. syzkaller login: [ 67.613512][ T8505] IPVS: ftp: loaded support on port[0] = 21 [ 67.720986][ T303] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.739778][ T303] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program [ 67.769997][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 67.788626][ T8468] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.796879][ T8468] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 67.805924][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready executing program [ 67.862312][ T8547] ------------[ cut here ]------------ [ 67.868117][ T8547] WARNING: CPU: 0 PID: 8547 at net/mac80211/ieee80211_i.h:1456 sta_info_alloc+0x191d/0x1f90 [ 67.878370][ T8547] Modules linked in: [ 67.882363][ T8547] CPU: 0 PID: 8547 Comm: syz-executor096 Not tainted 5.11.0-rc4-syzkaller #0 [ 67.891275][ T8547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.904662][ T8547] RIP: 0010:sta_info_alloc+0x191d/0x1f90 [ 67.910454][ T8547] Code: 85 8f 03 00 00 49 8b 9f 60 01 00 00 e9 04 f7 ff ff e8 77 df 23 f9 8b 5c 24 08 83 e3 01 83 c3 01 e9 ab fb ff ff e8 63 df 23 f9 <0f> 0b e8 ec 38 ac 00 31 ff 89 c3 89 c6 e8 d1 e6 23 f9 85 db 74 1d [ 67.931052][ T8547] RSP: 0018:ffffc900016c73e0 EFLAGS: 00010293 [ 67.937188][ T8547] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 67.945166][ T8547] RDX: ffff888014d70000 RSI: ffffffff884eec6d RDI: 0000000000000003 [ 67.953336][ T8547] RBP: ffff88802b560c80 R08: 0000000000000000 R09: 0000000000000000 [ 67.961380][ T8547] R10: ffffffff884eebaa R11: 0000000000000000 R12: 0000000000000000 [ 67.969435][ T8547] R13: 0000000000000008 R14: dffffc0000000000 R15: ffff88801a978000 [ 67.977477][ T8547] FS: 0000000001e4d880(0000) GS:ffff8880b9e00000(0000) knlGS:0000000000000000 [ 67.986418][ T8547] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.993078][ T8547] CR2: 00007ffeff8ba000 CR3: 0000000013bb7000 CR4: 00000000001506f0 [ 68.001123][ T8547] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 68.009624][ T8547] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 68.017656][ T8547] Call Trace: [ 68.020947][ T8547] ieee80211_add_station+0x28c/0x660 [ 68.026235][ T8547] nl80211_new_station+0xdd0/0x13c0 [ 68.031512][ T8547] ? rdev_set_cqm_rssi_range_config+0x330/0x330 [ 68.037870][ T8547] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 68.044110][ T8547] ? nl80211_pre_doit+0xa2/0x630 [ 68.049122][ T8547] genl_family_rcv_msg_doit+0x228/0x320 [ 68.054684][ T8547] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 68.063106][ T8547] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.069533][ T8547] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.075788][ T8547] ? ns_capable+0xde/0x100 [ 68.080272][ T8547] genl_rcv_msg+0x328/0x580 [ 68.084788][ T8547] ? genl_get_cmd+0x480/0x480 [ 68.089537][ T8547] ? rdev_set_cqm_rssi_range_config+0x330/0x330 [ 68.095794][ T8547] ? lock_release+0x710/0x710 [ 68.100561][ T8547] netlink_rcv_skb+0x153/0x420 [ 68.105349][ T8547] ? genl_get_cmd+0x480/0x480 [ 68.110285][ T8547] ? netlink_ack+0xaa0/0xaa0 [ 68.114906][ T8547] genl_rcv+0x24/0x40 [ 68.118934][ T8547] netlink_unicast+0x533/0x7d0 [ 68.123712][ T8547] ? netlink_attachskb+0x870/0x870 [ 68.128918][ T8547] ? _copy_from_iter_full+0x275/0x850 [ 68.134301][ T8547] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 68.140594][ T8547] ? __phys_addr_symbol+0x2c/0x70 [ 68.145633][ T8547] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 68.151421][ T8547] ? __check_object_size+0x171/0x3f0 [ 68.156728][ T8547] netlink_sendmsg+0x856/0xd90 [ 68.161642][ T8547] ? netlink_unicast+0x7d0/0x7d0 [ 68.166601][ T8547] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.172946][ T8547] ? netlink_unicast+0x7d0/0x7d0 [ 68.177950][ T8547] sock_sendmsg+0xcf/0x120 [ 68.182387][ T8547] ____sys_sendmsg+0x6e8/0x810 [ 68.188359][ T8547] ? kernel_sendmsg+0x50/0x50 [ 68.193056][ T8547] ? do_recvmmsg+0x6c0/0x6c0 [ 68.197735][ T8547] ? find_held_lock+0x2d/0x110 [ 68.202512][ T8547] ___sys_sendmsg+0xf3/0x170 [ 68.207196][ T8547] ? sendmsg_copy_msghdr+0x160/0x160 [ 68.212501][ T8547] ? _copy_to_user+0xdc/0x150 [ 68.217233][ T8547] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 68.223488][ T8547] ? sock_do_ioctl+0x168/0x2d0 [ 68.228337][ T8547] ? compat_ifr_data_ioctl+0x150/0x150 [ 68.233811][ T8547] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 68.239759][ T8547] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.246034][ T8547] ? __fget_light+0x215/0x280 [ 68.250790][ T8547] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 68.257055][ T8547] __sys_sendmsg+0xe5/0x1b0 [ 68.261620][ T8547] ? __sys_sendmsg_sock+0xb0/0xb0 [ 68.266661][ T8547] ? syscall_enter_from_user_mode+0x1d/0x50 [ 68.272642][ T8547] do_syscall_64+0x2d/0x70 [ 68.277077][ T8547] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 68.283173][ T8547] RIP: 0033:0x4421d9 [ 68.287054][ T8547] Code: e8 ac 00 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 68.306764][ T8547] RSP: 002b:00007fff1bf13458 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 68.315321][ T8547] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004421d9 [ 68.324454][ T8547] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000004 [ 68.332497][ T8547] RBP: 000000316e616c77 R08: 0000002100000000 R09: 0000002100000000 [ 68.340555][ T8547] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000108f4 [ 68.348583][ T8547] R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000004 [ 68.356591][ T8547] Kernel panic - not syncing: panic_on_warn set ... [ 68.363177][ T8547] CPU: 0 PID: 8547 Comm: syz-executor096 Not tainted 5.11.0-rc4-syzkaller #0 [ 68.371941][ T8547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.382011][ T8547] Call Trace: [ 68.385288][ T8547] dump_stack+0x107/0x163 [ 68.389626][ T8547] panic+0x306/0x73d [ 68.393511][ T8547] ? __warn_printk+0xf3/0xf3 [ 68.398092][ T8547] ? __warn.cold+0x1a/0x44 [ 68.402496][ T8547] ? sta_info_alloc+0x191d/0x1f90 [ 68.407521][ T8547] __warn.cold+0x35/0x44 [ 68.411752][ T8547] ? sta_info_alloc+0x191d/0x1f90 [ 68.416762][ T8547] report_bug+0x1bd/0x210 [ 68.421081][ T8547] handle_bug+0x3c/0x60 [ 68.425221][ T8547] exc_invalid_op+0x14/0x40 [ 68.429710][ T8547] asm_exc_invalid_op+0x12/0x20 [ 68.434548][ T8547] RIP: 0010:sta_info_alloc+0x191d/0x1f90 [ 68.440167][ T8547] Code: 85 8f 03 00 00 49 8b 9f 60 01 00 00 e9 04 f7 ff ff e8 77 df 23 f9 8b 5c 24 08 83 e3 01 83 c3 01 e9 ab fb ff ff e8 63 df 23 f9 <0f> 0b e8 ec 38 ac 00 31 ff 89 c3 89 c6 e8 d1 e6 23 f9 85 db 74 1d [ 68.459760][ T8547] RSP: 0018:ffffc900016c73e0 EFLAGS: 00010293 [ 68.465825][ T8547] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 68.473908][ T8547] RDX: ffff888014d70000 RSI: ffffffff884eec6d RDI: 0000000000000003 [ 68.481881][ T8547] RBP: ffff88802b560c80 R08: 0000000000000000 R09: 0000000000000000 [ 68.489850][ T8547] R10: ffffffff884eebaa R11: 0000000000000000 R12: 0000000000000000 [ 68.497813][ T8547] R13: 0000000000000008 R14: dffffc0000000000 R15: ffff88801a978000 [ 68.505787][ T8547] ? sta_info_alloc+0x185a/0x1f90 [ 68.510813][ T8547] ? sta_info_alloc+0x191d/0x1f90 [ 68.515835][ T8547] ieee80211_add_station+0x28c/0x660 [ 68.521127][ T8547] nl80211_new_station+0xdd0/0x13c0 [ 68.526321][ T8547] ? rdev_set_cqm_rssi_range_config+0x330/0x330 [ 68.532562][ T8547] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 68.538808][ T8547] ? nl80211_pre_doit+0xa2/0x630 [ 68.543728][ T8547] genl_family_rcv_msg_doit+0x228/0x320 [ 68.549280][ T8547] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 68.556633][ T8547] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.562889][ T8547] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.569153][ T8547] ? ns_capable+0xde/0x100 [ 68.573562][ T8547] genl_rcv_msg+0x328/0x580 [ 68.578054][ T8547] ? genl_get_cmd+0x480/0x480 [ 68.582727][ T8547] ? rdev_set_cqm_rssi_range_config+0x330/0x330 [ 68.588957][ T8547] ? lock_release+0x710/0x710 [ 68.593626][ T8547] netlink_rcv_skb+0x153/0x420 [ 68.598398][ T8547] ? genl_get_cmd+0x480/0x480 [ 68.603064][ T8547] ? netlink_ack+0xaa0/0xaa0 [ 68.607656][ T8547] genl_rcv+0x24/0x40 [ 68.611623][ T8547] netlink_unicast+0x533/0x7d0 [ 68.616387][ T8547] ? netlink_attachskb+0x870/0x870 [ 68.621498][ T8547] ? _copy_from_iter_full+0x275/0x850 [ 68.626853][ T8547] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 68.633077][ T8547] ? __phys_addr_symbol+0x2c/0x70 [ 68.638087][ T8547] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 68.643792][ T8547] ? __check_object_size+0x171/0x3f0 [ 68.649069][ T8547] netlink_sendmsg+0x856/0xd90 [ 68.653820][ T8547] ? netlink_unicast+0x7d0/0x7d0 [ 68.658757][ T8547] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.664994][ T8547] ? netlink_unicast+0x7d0/0x7d0 [ 68.669921][ T8547] sock_sendmsg+0xcf/0x120 [ 68.674343][ T8547] ____sys_sendmsg+0x6e8/0x810 [ 68.679112][ T8547] ? kernel_sendmsg+0x50/0x50 [ 68.683796][ T8547] ? do_recvmmsg+0x6c0/0x6c0 [ 68.688378][ T8547] ? find_held_lock+0x2d/0x110 [ 68.693151][ T8547] ___sys_sendmsg+0xf3/0x170 [ 68.697744][ T8547] ? sendmsg_copy_msghdr+0x160/0x160 [ 68.703031][ T8547] ? _copy_to_user+0xdc/0x150 [ 68.707700][ T8547] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 68.713932][ T8547] ? sock_do_ioctl+0x168/0x2d0 [ 68.718710][ T8547] ? compat_ifr_data_ioctl+0x150/0x150 [ 68.724153][ T8547] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 68.730041][ T8547] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.736269][ T8547] ? __fget_light+0x215/0x280 [ 68.740932][ T8547] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 68.747173][ T8547] __sys_sendmsg+0xe5/0x1b0 [ 68.751679][ T8547] ? __sys_sendmsg_sock+0xb0/0xb0 [ 68.756697][ T8547] ? syscall_enter_from_user_mode+0x1d/0x50 [ 68.762589][ T8547] do_syscall_64+0x2d/0x70 [ 68.767010][ T8547] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 68.772928][ T8547] RIP: 0033:0x4421d9 [ 68.776839][ T8547] Code: e8 ac 00 03 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 68.796425][ T8547] RSP: 002b:00007fff1bf13458 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 68.804824][ T8547] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004421d9 [ 68.812784][ T8547] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000004 [ 68.820758][ T8547] RBP: 000000316e616c77 R08: 0000002100000000 R09: 0000002100000000 [ 68.828719][ T8547] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000108f4 [ 68.836690][ T8547] R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000004 [ 68.845364][ T8547] Kernel Offset: disabled [ 68.849816][ T8547] Rebooting in 86400 seconds..