[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Warning: Permanently added '10.128.0.34' (ECDSA) to the list of known hosts. [ 84.176606][ T35] audit: type=1400 audit(1612382840.549:8): avc: denied { execmem } for pid=8447 comm="syz-executor545" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 84.197328][ T8448] IPVS: ftp: loaded support on port[0] = 21 [ 84.299612][ T24] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.315803][ T24] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.326636][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready executing program [ 84.364464][ T157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.372477][ T157] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.382298][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 84.407187][ T8448] ------------[ cut here ]------------ [ 84.412780][ T8448] WARNING: CPU: 1 PID: 8448 at net/mac80211/ieee80211_i.h:1457 sta_info_alloc+0x1923/0x1fa0 [ 84.424115][ T8448] Modules linked in: [ 84.428039][ T8448] CPU: 1 PID: 8448 Comm: syz-executor545 Not tainted 5.11.0-rc6-syzkaller #0 [ 84.437184][ T8448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 84.447417][ T8448] RIP: 0010:sta_info_alloc+0x1923/0x1fa0 [ 84.453228][ T8448] Code: 85 8f 03 00 00 49 8b 9f 60 01 00 00 e9 fe f6 ff ff e8 91 e6 23 f9 8b 5c 24 08 83 e3 01 83 c3 01 e9 a5 fb ff ff e8 7d e6 23 f9 <0f> 0b e8 a6 1a ac 00 31 ff 89 c3 89 c6 e8 8b ec 23 f9 85 db 74 1d [ 84.473860][ T8448] RSP: 0018:ffffc900011073e0 EFLAGS: 00010293 [ 84.480015][ T8448] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 84.488093][ T8448] RDX: ffff888027150140 RSI: ffffffff884ed9a3 RDI: 0000000000000003 [ 84.496249][ T8448] RBP: ffff888039560c80 R08: 0000000000000000 R09: 0000000000000000 [ 84.504993][ T8448] R10: ffffffff884ed8e0 R11: 0000000000000000 R12: 0000000000000000 [ 84.513669][ T8448] R13: 0000000000000008 R14: dffffc0000000000 R15: ffff88802775c000 [ 84.523263][ T8448] FS: 00000000023c0300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 84.532540][ T8448] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 84.539650][ T8448] CR2: 00007f05159186c0 CR3: 000000002ab40000 CR4: 00000000001506e0 [ 84.548328][ T8448] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 84.556488][ T8448] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 84.565740][ T8448] Call Trace: [ 84.569058][ T8448] ieee80211_add_station+0x28c/0x660 Debian GNU/[ 84.576463][ T8448] nl80211_new_station+0xdd0/0x13c0 Linux 9 syzkalle[ 84.582206][ T8448] ? rdev_set_cqm_rssi_config+0x330/0x330 r ttyS0 [ 84.590787][ T8448] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 84.597518][ T8448] ? nl80211_pre_doit+0xa2/0x630 [ 84.602610][ T8448] genl_family_rcv_msg_doit+0x228/0x320 [ 84.609158][ T8448] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 84.616869][ T8448] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 syzkaller[ 84.623746][ T8448] ? cap_capable+0x1f1/0x280 [ 84.630884][ T8448] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 login: [ 84.637737][ T8448] ? ns_capable+0xde/0x100 [ 84.642679][ T8448] genl_rcv_msg+0x328/0x580 [ 84.648201][ T8448] ? genl_get_cmd+0x480/0x480 [ 84.653886][ T8448] ? rdev_set_cqm_rssi_config+0x330/0x330 [ 84.661430][ T8448] ? lock_release+0x710/0x710 [ 84.666272][ T8448] netlink_rcv_skb+0x153/0x420 [ 84.671229][ T8448] ? genl_get_cmd+0x480/0x480 [ 84.677470][ T8448] ? netlink_ack+0xaa0/0xaa0 [ 84.682118][ T8448] genl_rcv+0x24/0x40 [ 84.686481][ T8448] netlink_unicast+0x533/0x7d0 [ 84.691291][ T8448] ? netlink_attachskb+0x870/0x870 [ 84.696482][ T8448] ? _copy_from_iter_full+0x275/0x850 [ 84.701919][ T8448] netlink_sendmsg+0x856/0xd90 [ 84.706938][ T8448] ? netlink_unicast+0x7d0/0x7d0 [ 84.712805][ T8448] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 84.719151][ T8448] ? netlink_unicast+0x7d0/0x7d0 [ 84.724285][ T8448] sock_sendmsg+0xcf/0x120 [ 84.728719][ T8448] ____sys_sendmsg+0x6e8/0x810 [ 84.733552][ T8448] ? kernel_sendmsg+0x50/0x50 [ 84.738258][ T8448] ? do_recvmmsg+0x6c0/0x6c0 [ 84.742846][ T8448] ? get_max_files+0x10/0x10 [ 84.747555][ T8448] ? stack_trace_save+0x8c/0xc0 [ 84.752440][ T8448] ? stack_trace_consume_entry+0x160/0x160 [ 84.760216][ T8448] ___sys_sendmsg+0xf3/0x170 [ 84.765818][ T8448] ? sendmsg_copy_msghdr+0x160/0x160 [ 84.772104][ T8448] ? call_rcu+0xbb/0x700 [ 84.777949][ T8448] ? exit_to_user_mode_prepare+0x249/0x250 [ 84.783953][ T8448] ? syscall_exit_to_user_mode+0x19/0x50 [ 84.789633][ T8448] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 84.795803][ T8448] ? debug_object_active_state+0x260/0x350 [ 84.802645][ T8448] ? lock_downgrade+0x6d0/0x6d0 [ 84.807673][ T8448] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 84.813775][ T8448] ? lockdep_hardirqs_on+0x79/0x100 [ 84.819174][ T8448] ? _raw_spin_unlock_irqrestore+0x2f/0x50 [ 84.825125][ T8448] ? debug_object_active_state+0x260/0x350 [ 84.830950][ T8448] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 84.837507][ T8448] ? __fget_light+0x215/0x280 [ 84.843252][ T8448] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 84.850101][ T8448] __sys_sendmsg+0xe5/0x1b0 [ 84.854690][ T8448] ? __sys_sendmsg_sock+0xb0/0xb0 [ 84.859755][ T8448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 84.865885][ T8448] do_syscall_64+0x2d/0x70 [ 84.870324][ T8448] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 84.876288][ T8448] RIP: 0033:0x440909 [ 84.880199][ T8448] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 84.899923][ T8448] RSP: 002b:00007ffe84400008 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 84.908458][ T8448] RAX: ffffffffffffffda RBX: 0000000000000031 RCX: 0000000000440909 [ 84.916554][ T8448] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005 [ 84.924597][ T8448] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffe84400038 [ 84.932604][ T8448] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe84400060 [ 84.940743][ T8448] R13: 00007ffe84400052 R14: 00000000004b7430 R15: 00000000004b73c0 [ 84.949009][ T8448] Kernel panic - not syncing: panic_on_warn set ... [ 84.955607][ T8448] CPU: 1 PID: 8448 Comm: syz-executor545 Not tainted 5.11.0-rc6-syzkaller #0 [ 84.964914][ T8448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 84.974997][ T8448] Call Trace: [ 84.978292][ T8448] dump_stack+0x107/0x163 [ 84.982625][ T8448] panic+0x306/0x73d [ 84.986513][ T8448] ? __warn_printk+0xf3/0xf3 [ 84.991186][ T8448] ? __warn.cold+0x1a/0x44 [ 84.995592][ T8448] ? sta_info_alloc+0x1923/0x1fa0 [ 85.000624][ T8448] __warn.cold+0x35/0x44 [ 85.005646][ T8448] ? sta_info_alloc+0x1923/0x1fa0 [ 85.011200][ T8448] report_bug+0x1bd/0x210 [ 85.015566][ T8448] handle_bug+0x3c/0x60 [ 85.019737][ T8448] exc_invalid_op+0x14/0x40 [ 85.024257][ T8448] asm_exc_invalid_op+0x12/0x20 [ 85.029115][ T8448] RIP: 0010:sta_info_alloc+0x1923/0x1fa0 [ 85.034750][ T8448] Code: 85 8f 03 00 00 49 8b 9f 60 01 00 00 e9 fe f6 ff ff e8 91 e6 23 f9 8b 5c 24 08 83 e3 01 83 c3 01 e9 a5 fb ff ff e8 7d e6 23 f9 <0f> 0b e8 a6 1a ac 00 31 ff 89 c3 89 c6 e8 8b ec 23 f9 85 db 74 1d [ 85.054469][ T8448] RSP: 0018:ffffc900011073e0 EFLAGS: 00010293 [ 85.060706][ T8448] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 85.068705][ T8448] RDX: ffff888027150140 RSI: ffffffff884ed9a3 RDI: 0000000000000003 [ 85.077477][ T8448] RBP: ffff888039560c80 R08: 0000000000000000 R09: 0000000000000000 [ 85.085448][ T8448] R10: ffffffff884ed8e0 R11: 0000000000000000 R12: 0000000000000000 [ 85.093461][ T8448] R13: 0000000000000008 R14: dffffc0000000000 R15: ffff88802775c000 [ 85.101468][ T8448] ? sta_info_alloc+0x1860/0x1fa0 [ 85.106510][ T8448] ? sta_info_alloc+0x1923/0x1fa0 [ 85.111550][ T8448] ieee80211_add_station+0x28c/0x660 [ 85.116840][ T8448] nl80211_new_station+0xdd0/0x13c0 [ 85.122048][ T8448] ? rdev_set_cqm_rssi_config+0x330/0x330 [ 85.127802][ T8448] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 85.134153][ T8448] ? nl80211_pre_doit+0xa2/0x630 [ 85.139112][ T8448] genl_family_rcv_msg_doit+0x228/0x320 [ 85.144660][ T8448] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 85.152038][ T8448] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 85.158309][ T8448] ? cap_capable+0x1f1/0x280 [ 85.162927][ T8448] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 85.169194][ T8448] ? ns_capable+0xde/0x100 [ 85.174928][ T8448] genl_rcv_msg+0x328/0x580 [ 85.179457][ T8448] ? genl_get_cmd+0x480/0x480 [ 85.184135][ T8448] ? rdev_set_cqm_rssi_config+0x330/0x330 [ 85.190113][ T8448] ? lock_release+0x710/0x710 [ 85.194874][ T8448] netlink_rcv_skb+0x153/0x420 [ 85.200021][ T8448] ? genl_get_cmd+0x480/0x480 [ 85.204709][ T8448] ? netlink_ack+0xaa0/0xaa0 [ 85.209316][ T8448] genl_rcv+0x24/0x40 [ 85.213330][ T8448] netlink_unicast+0x533/0x7d0 [ 85.218135][ T8448] ? netlink_attachskb+0x870/0x870 [ 85.223343][ T8448] ? _copy_from_iter_full+0x275/0x850 [ 85.228745][ T8448] netlink_sendmsg+0x856/0xd90 [ 85.233513][ T8448] ? netlink_unicast+0x7d0/0x7d0 [ 85.238456][ T8448] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 85.244694][ T8448] ? netlink_unicast+0x7d0/0x7d0 [ 85.249628][ T8448] sock_sendmsg+0xcf/0x120 [ 85.254049][ T8448] ____sys_sendmsg+0x6e8/0x810 [ 85.258916][ T8448] ? kernel_sendmsg+0x50/0x50 [ 85.263832][ T8448] ? do_recvmmsg+0x6c0/0x6c0 [ 85.268448][ T8448] ? get_max_files+0x10/0x10 [ 85.273299][ T8448] ? stack_trace_save+0x8c/0xc0 [ 85.278839][ T8448] ? stack_trace_consume_entry+0x160/0x160 [ 85.284695][ T8448] ___sys_sendmsg+0xf3/0x170 [ 85.289322][ T8448] ? sendmsg_copy_msghdr+0x160/0x160 [ 85.294633][ T8448] ? call_rcu+0xbb/0x700 [ 85.298894][ T8448] ? exit_to_user_mode_prepare+0x249/0x250 [ 85.304712][ T8448] ? syscall_exit_to_user_mode+0x19/0x50 [ 85.310354][ T8448] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 85.316423][ T8448] ? debug_object_active_state+0x260/0x350 [ 85.322239][ T8448] ? lock_downgrade+0x6d0/0x6d0 [ 85.327096][ T8448] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 85.332906][ T8448] ? lockdep_hardirqs_on+0x79/0x100 [ 85.338101][ T8448] ? _raw_spin_unlock_irqrestore+0x2f/0x50 [ 85.343921][ T8448] ? debug_object_active_state+0x260/0x350 [ 85.349719][ T8448] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 85.355973][ T8448] ? __fget_light+0x215/0x280 [ 85.360669][ T8448] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 85.366935][ T8448] __sys_sendmsg+0xe5/0x1b0 [ 85.371463][ T8448] ? __sys_sendmsg_sock+0xb0/0xb0 [ 85.376511][ T8448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 85.382435][ T8448] do_syscall_64+0x2d/0x70 [ 85.386852][ T8448] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 85.392743][ T8448] RIP: 0033:0x440909 [ 85.396647][ T8448] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 85.416457][ T8448] RSP: 002b:00007ffe84400008 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 85.425770][ T8448] RAX: ffffffffffffffda RBX: 0000000000000031 RCX: 0000000000440909 [ 85.434623][ T8448] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005 [ 85.442880][ T8448] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffe84400038 [ 85.451247][ T8448] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe84400060 [ 85.459416][ T8448] R13: 00007ffe84400052 R14: 00000000004b7430 R15: 00000000004b73c0 [ 85.468542][ T8448] Kernel Offset: disabled [ 85.473901][ T8448] Rebooting in 86400 seconds..