Starting Permit User Sessions... [ OK ] Started Regular background program processing daemon. [ OK ] Started Daily Cleanup of Temporary Directories. [ OK ] Reached target Timers. [ OK ] Started Permit User Sessions. [ OK ] Started System Logging Service. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Started OpenBSD Secure Shell server. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty2. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.11' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 60.298283][ T8438] device wlan0 entered promiscuous mode [ 60.337878][ T8438] ------------[ cut here ]------------ [ 60.345400][ T8438] WARNING: CPU: 1 PID: 8438 at net/mac80211/ieee80211_i.h:1457 ieee80211_get_sband+0x257/0x310 [ 60.358503][ T8438] Modules linked in: [ 60.362974][ T8438] CPU: 1 PID: 8438 Comm: syz-executor222 Not tainted 5.11.0-rc6-syzkaller #0 [ 60.374281][ T8438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.386713][ T8438] RIP: 0010:ieee80211_get_sband+0x257/0x310 [ 60.396523][ T8438] Code: 94 f8 c6 05 55 6a bd 04 01 48 c7 c7 6e ac 7c 8b be af 05 00 00 48 c7 c2 40 f1 ef 8a e8 62 ce 78 f8 48 85 db 0f 85 d4 fe ff ff <0f> 0b e8 f2 4d 65 00 89 c3 31 ff 89 c6 e8 47 92 94 f8 85 db 74 10 [ 60.421423][ T8438] RSP: 0018:ffffc90001aff6f0 EFLAGS: 00010246 [ 60.429314][ T8438] RAX: ffffffff88e33d72 RBX: 0000000000000000 RCX: ffff88801835d340 [ 60.438736][ T8438] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 60.454131][ T8438] RBP: 0000000000000001 R08: ffffffff88e33d65 R09: fffffbfff1f21891 [ 60.465851][ T8438] R10: fffffbfff1f21891 R11: 0000000000000000 R12: dffffc0000000000 [ 60.476485][ T8438] R13: ffff88801cc74000 R14: ffff88801be28c80 R15: ffff88801be6e098 [ 60.488251][ T8438] FS: 00007f20d7d46700(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 60.501992][ T8438] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 60.514324][ T8438] CR2: 0000563da5e16030 CR3: 000000001337f000 CR4: 00000000001506f0 [ 60.532351][ T8438] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 60.543291][ T8438] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 60.555050][ T8438] Call Trace: [ 60.559422][ T8438] sta_apply_parameters+0x4e/0x18e0 [ 60.567149][ T8438] ieee80211_add_station+0x2f1/0x570 [ 60.573914][ T8438] nl80211_new_station+0x182d/0x2050 [ 60.581323][ T8438] ? nl80211_pre_doit+0x43a/0x590 [ 60.587477][ T8438] genl_rcv_msg+0xe4e/0x1280 [ 60.594915][ T8438] ? nl80211_set_station+0x19f0/0x19f0 [ 60.603817][ T8438] netlink_rcv_skb+0x190/0x3a0 [ 60.610644][ T8438] ? genl_rcv+0x40/0x40 [ 60.617357][ T8438] genl_rcv+0x24/0x40 [ 60.623745][ T8438] netlink_unicast+0x786/0x940 [ 60.631923][ T8438] netlink_sendmsg+0x9ae/0xd50 [ 60.639347][ T8438] ? netlink_getsockopt+0xa50/0xa50 [ 60.647132][ T8438] ____sys_sendmsg+0x519/0x800 [ 60.653119][ T8438] ? import_iovec+0xe6/0x120 [ 60.658775][ T8438] __sys_sendmsg+0x2bf/0x370 [ 60.664403][ T8438] ? __might_fault+0xb9/0x110 [ 60.670983][ T8438] ? syscall_enter_from_user_mode+0x24/0x190 [ 60.680066][ T8438] ? lockdep_hardirqs_on+0x8d/0x130 [ 60.690336][ T8438] ? syscall_enter_from_user_mode+0x24/0x190 [ 60.698263][ T8438] do_syscall_64+0x2d/0x70 [ 60.704598][ T8438] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 60.727971][ T8438] RIP: 0033:0x4459a9 [ 60.732821][ T8438] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.758364][ T8438] RSP: 002b:00007f20d7d462f8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 60.770787][ T8438] RAX: ffffffffffffffda RBX: 00000000004cb470 RCX: 00000000004459a9 [ 60.781643][ T8438] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000a [ 60.791774][ T8438] RBP: 00000000004cb47c R08: 0000000000000000 R09: 0000000000000000 [ 60.803386][ T8438] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000049af88 [ 60.814396][ T8438] R13: 0031313230386c6e R14: 1102080006000a00 R15: 00000000004cb478 [ 60.824128][ T8438] Kernel panic - not syncing: panic_on_warn set ... [ 60.831339][ T8438] CPU: 0 PID: 8438 Comm: syz-executor222 Not tainted 5.11.0-rc6-syzkaller #0 [ 60.842288][ T8438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.853730][ T8438] Call Trace: [ 60.857771][ T8438] dump_stack+0x137/0x1be [ 60.862915][ T8438] ? panic+0x1f3/0x800 [ 60.868013][ T8438] panic+0x291/0x800 [ 60.872661][ T8438] ? __warn+0x13e/0x270 [ 60.877810][ T8438] __warn+0x26a/0x270 [ 60.883580][ T8438] ? ieee80211_get_sband+0x257/0x310 [ 60.890201][ T8438] ? ieee80211_get_sband+0x257/0x310 [ 60.897103][ T8438] report_bug+0x1b1/0x2e0 [ 60.902755][ T8438] handle_bug+0x3d/0x70 [ 60.908600][ T8438] exc_invalid_op+0x16/0x40 [ 60.914068][ T8438] asm_exc_invalid_op+0x12/0x20 [ 60.920294][ T8438] RIP: 0010:ieee80211_get_sband+0x257/0x310 [ 60.928298][ T8438] Code: 94 f8 c6 05 55 6a bd 04 01 48 c7 c7 6e ac 7c 8b be af 05 00 00 48 c7 c2 40 f1 ef 8a e8 62 ce 78 f8 48 85 db 0f 85 d4 fe ff ff <0f> 0b e8 f2 4d 65 00 89 c3 31 ff 89 c6 e8 47 92 94 f8 85 db 74 10 [ 60.954103][ T8438] RSP: 0018:ffffc90001aff6f0 EFLAGS: 00010246 [ 60.962005][ T8438] RAX: ffffffff88e33d72 RBX: 0000000000000000 RCX: ffff88801835d340 [ 60.974461][ T8438] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 60.986047][ T8438] RBP: 0000000000000001 R08: ffffffff88e33d65 R09: fffffbfff1f21891 [ 60.998301][ T8438] R10: fffffbfff1f21891 R11: 0000000000000000 R12: dffffc0000000000 [ 61.008085][ T8438] R13: ffff88801cc74000 R14: ffff88801be28c80 R15: ffff88801be6e098 [ 61.017492][ T8438] ? ieee80211_get_sband+0x115/0x310 [ 61.023887][ T8438] ? ieee80211_get_sband+0x122/0x310 [ 61.031396][ T8438] sta_apply_parameters+0x4e/0x18e0 [ 61.037495][ T8438] ieee80211_add_station+0x2f1/0x570 [ 61.044449][ T8438] nl80211_new_station+0x182d/0x2050 [ 61.052568][ T8438] ? nl80211_pre_doit+0x43a/0x590 [ 61.063818][ T8438] genl_rcv_msg+0xe4e/0x1280 [ 61.071539][ T8438] ? nl80211_set_station+0x19f0/0x19f0 [ 61.078954][ T8438] netlink_rcv_skb+0x190/0x3a0 [ 61.085953][ T8438] ? genl_rcv+0x40/0x40 [ 61.091996][ T8438] genl_rcv+0x24/0x40 [ 61.096888][ T8438] netlink_unicast+0x786/0x940 [ 61.102788][ T8438] netlink_sendmsg+0x9ae/0xd50 [ 61.108317][ T8438] ? netlink_getsockopt+0xa50/0xa50 [ 61.114037][ T8438] ____sys_sendmsg+0x519/0x800 [ 61.120209][ T8438] ? import_iovec+0xe6/0x120 [ 61.126498][ T8438] __sys_sendmsg+0x2bf/0x370 [ 61.131747][ T8438] ? __might_fault+0xb9/0x110 [ 61.137945][ T8438] ? syscall_enter_from_user_mode+0x24/0x190 [ 61.144942][ T8438] ? lockdep_hardirqs_on+0x8d/0x130 [ 61.150546][ T8438] ? syscall_enter_from_user_mode+0x24/0x190 [ 61.157805][ T8438] do_syscall_64+0x2d/0x70 [ 61.162870][ T8438] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 61.170174][ T8438] RIP: 0033:0x4459a9 [ 61.175153][ T8438] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 61.199996][ T8438] RSP: 002b:00007f20d7d462f8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 61.210204][ T8438] RAX: ffffffffffffffda RBX: 00000000004cb470 RCX: 00000000004459a9 [ 61.219815][ T8438] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000a [ 61.229348][ T8438] RBP: 00000000004cb47c R08: 0000000000000000 R09: 0000000000000000 [ 61.238791][ T8438] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000049af88 [ 61.247945][ T8438] R13: 0031313230386c6e R14: 1102080006000a00 R15: 00000000004cb478 [ 61.260990][ T8438] Kernel Offset: disabled [ 61.267930][ T8438] Rebooting in 86400 seconds..