[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.19' (ECDSA) to the list of known hosts. syzkaller login: [ 31.900633] IPVS: ftp: loaded support on port[0] = 21 [ 31.963397] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 31.973369] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 31.980723] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program executing program executing program executing program executing program executing program [ 32.003659] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 32.013862] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 32.020705] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 32.029034] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 32.042297] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 32.162374] no supported rates (0xffffffff) in rate_mask 0x0 with flags 0x0 [ 32.169732] ------------[ cut here ]------------ [ 32.174518] WARNING: CPU: 1 PID: 8054 at net/mac80211/rate.c:359 __rate_control_send_low.cold+0x6e/0x81 [ 32.184026] Kernel panic - not syncing: panic_on_warn set ... [ 32.184026] [ 32.191420] CPU: 1 PID: 8054 Comm: syz-executor190 Not tainted 4.14.203-syzkaller #0 [ 32.199339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.208676] Call Trace: [ 32.211265] [ 32.213420] dump_stack+0x1b2/0x283 [ 32.217044] panic+0x1f9/0x42d [ 32.220233] ? add_taint.cold+0x16/0x16 [ 32.224188] ? __rate_control_send_low.cold+0x6e/0x81 [ 32.229372] ? __rate_control_send_low.cold+0x6e/0x81 [ 32.234574] __warn.cold+0x20/0x4b [ 32.238099] ? ist_end_non_atomic+0x10/0x10 [ 32.242614] ? __rate_control_send_low.cold+0x6e/0x81 [ 32.247788] report_bug+0x208/0x249 [ 32.251406] do_error_trap+0x195/0x2d0 [ 32.255292] ? math_error+0x2d0/0x2d0 [ 32.259092] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.263916] invalid_op+0x1b/0x40 [ 32.267349] RIP: 0010:__rate_control_send_low.cold+0x6e/0x81 [ 32.273122] RSP: 0018:ffff8880ba507ad8 EFLAGS: 00010286 [ 32.278474] RAX: 000000000000003f RBX: ffff888091b1b868 RCX: 0000000000000000 [ 32.285737] RDX: 0000000000000100 RSI: ffffffff878bb940 RDI: ffffed10174a0f51 [ 32.292987] RBP: 00000000ffffffff R08: 000000000000003f R09: 0000000000000000 [ 32.300235] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a234a9e0 [ 32.307542] R13: 0000000000000000 R14: 0000000000000090 R15: 000000000000000c [ 32.314805] ? __rate_control_send_low.cold+0x6e/0x81 [ 32.319996] rate_control_send_low+0x248/0x560 [ 32.324587] ? minstrel_ht_alloc_sta+0x2a0/0x2a0 [ 32.329340] minstrel_ht_get_rate+0x56/0x13f0 [ 32.333834] ? __ieee80211_beacon_get+0x1362/0x1820 [ 32.338829] ? minstrel_ht_alloc_sta+0x2a0/0x2a0 [ 32.343589] rate_control_get_rate+0x40d/0x4f0 [ 32.348164] __ieee80211_beacon_get+0x87b/0x1820 [ 32.352915] ? ieee80211_csa_update_counter+0x390/0x390 [ 32.358255] ? trace_hardirqs_on+0x10/0x10 [ 32.362474] ieee80211_beacon_get_tim+0x78/0x750 [ 32.367215] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 32.372322] ? ieee80211_beacon_get_template+0x30/0x30 [ 32.377615] mac80211_hwsim_beacon_tx+0xd8/0x570 [ 32.382375] __iterate_interfaces+0x247/0x3c0 [ 32.386887] ? hwsim_send_ps_poll+0x4a0/0x4a0 [ 32.391378] ? hwsim_send_ps_poll+0x4a0/0x4a0 [ 32.395858] ieee80211_iterate_active_interfaces_atomic+0x74/0x130 [ 32.402156] mac80211_hwsim_beacon+0xbe/0x180 [ 32.406632] __tasklet_hrtimer_trampoline+0x29/0xa0 [ 32.411630] tasklet_hi_action+0x195/0x330 [ 32.415843] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 32.421272] __do_softirq+0x254/0xa1d [ 32.425054] ? check_preemption_disabled+0x35/0x240 [ 32.430057] irq_exit+0x193/0x240 [ 32.433507] smp_apic_timer_interrupt+0x141/0x5e0 [ 32.438345] apic_timer_interrupt+0x93/0xa0 [ 32.442656] [ 32.444873] RIP: 0010:kmem_cache_free+0x173/0x2b0 [ 32.449690] RSP: 0018:ffff888094f5fbf8 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10 [ 32.457376] RAX: 0000000000000007 RBX: ffff8880b530d040 RCX: 0000000000000000 [ 32.464623] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000282 [ 32.471871] RBP: ffff88823f830c40 R08: 0000000000000000 R09: 0000000000000000 [ 32.479120] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000282 [ 32.486372] R13: ffffffff81786dd4 R14: 0000000000000000 R15: ffff8880b3e086c0 [ 32.493627] ? remove_vma+0x154/0x1a0 [ 32.497476] remove_vma+0x154/0x1a0 [ 32.501097] exit_mmap+0x304/0x4d0 [ 32.504620] ? SyS_remap_file_pages+0x6a0/0x6a0 [ 32.509287] ? kmem_cache_free+0x23a/0x2b0 [ 32.513502] ? __khugepaged_exit+0x29b/0x3c0 [ 32.517907] mmput+0xfa/0x420 [ 32.520998] do_exit+0x948/0x27f0 [ 32.524459] ? __do_page_fault+0x571/0xad0 [ 32.528689] ? mm_update_next_owner+0x5b0/0x5b0 [ 32.533339] ? lock_downgrade+0x740/0x740 [ 32.537470] do_group_exit+0x100/0x2e0 [ 32.541393] SyS_exit_group+0x19/0x20 [ 32.545179] ? do_group_exit+0x2e0/0x2e0 [ 32.549217] do_syscall_64+0x1d5/0x640 [ 32.553088] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 32.558259] RIP: 0033:0x4413d8 [ 32.561442] RSP: 002b:00007fff543bdd58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 32.569146] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004413d8 [ 32.576395] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 32.583643] RBP: 00000000004c6970 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 32.590891] R10: 0000001300000000 R11: 0000000000000246 R12: 0000000000000001 [ 32.598154] R13: 00000000006da240 R14: 000000000000000c R15: 0000000000000004 [ 32.606293] Kernel Offset: disabled [ 32.609960] Rebooting in 86400 seconds..