[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.89' (ECDSA) to the list of known hosts. syzkaller login: [ 38.364605] IPVS: ftp: loaded support on port[0] = 21 [ 38.396573] IPVS: ftp: loaded support on port[0] = 21 [ 38.434740] IPVS: ftp: loaded support on port[0] = 21 [ 38.445873] IPVS: ftp: loaded support on port[0] = 21 [ 38.453644] IPVS: ftp: loaded support on port[0] = 21 [ 38.460234] IPVS: ftp: loaded support on port[0] = 21 [ 38.639017] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 38.707295] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.721955] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.747647] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 38.759139] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 38.770278] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 38.816701] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 38.826872] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.827552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.841903] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.852296] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.863254] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 38.872238] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 38.888070] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.900568] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program [ 38.935918] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 38.960225] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 38.981796] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 38.992392] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 39.000424] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 39.008709] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.014875] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 39.016648] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.028861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.040663] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.049398] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.056192] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.056223] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.064052] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready executing program [ 39.088639] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.101293] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.112344] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.119674] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 39.130737] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 executing program executing program executing program executing program [ 39.150162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.163094] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 39.182997] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready executing program executing program executing program [ 39.194507] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 39.198140] list_add double add: new=ffff8880ab03ab58, prev=ffff8880ab03ab58, next=ffff88823b29c400. [ 39.211207] ------------[ cut here ]------------ [ 39.215979] kernel BUG at lib/list_debug.c:29! [ 39.221621] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 39.224177] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready [ 39.227007] CPU: 1 PID: 8142 Comm: kworker/u5:8 Not tainted 4.19.163-syzkaller #0 [ 39.236045] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.240667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.240684] Workqueue: hci5 hci_rx_work [ 39.240702] RIP: 0010:__list_add_valid.cold+0x26/0x3c [ 39.240724] Code: 57 ff ff ff 4c 89 e1 48 c7 c7 a0 bb b3 88 e8 d1 a6 cf fd 0f 0b 48 89 f2 4c 89 e1 48 89 ee 48 c7 c7 e0 bc b3 88 e8 ba a6 cf fd <0f> 0b 48 89 f1 48 c7 c7 60 bc b3 88 4c 89 e6 e8 a6 a6 cf fd 0f 0b [ 39.247898] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.257149] RSP: 0018:ffff888094f67800 EFLAGS: 00010282 [ 39.257160] RAX: 0000000000000058 RBX: ffff88823b29c400 RCX: 0000000000000000 [ 39.257166] RDX: 0000000000000000 RSI: ffffffff814fdbb1 RDI: ffffed10129ecef2 [ 39.257173] RBP: ffff8880ab03ab58 R08: 0000000000000058 R09: 0000000000000000 [ 39.257179] R10: 0000000000000005 R11: 0000000000000000 R12: ffff88823b29c400 [ 39.257186] R13: ffff8880956e62d0 R14: ffff8880ab03ab70 R15: ffff8880ab03ab58 [ 39.257201] FS: 0000000000000000(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 39.269508] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 executing program [ 39.285275] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.285282] CR2: 00007ffdf495b070 CR3: 0000000009e6d000 CR4: 00000000001406e0 [ 39.285292] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 39.285299] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 39.285304] Call Trace: [ 39.285328] kobject_add_internal+0x18d/0x9c0 [ 39.285346] kobject_add+0x150/0x1c0 [ 39.293813] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.298065] ? kset_create_and_add+0x1a0/0x1a0 executing program executing program [ 39.298079] ? kfree+0x110/0x210 [ 39.298090] ? kfree_const+0x51/0x60 [ 39.298107] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 39.312919] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.319935] ? device_add+0x35c/0x16d0 [ 39.319948] device_add+0x37b/0x16d0 [ 39.319963] ? device_check_offline+0x280/0x280 [ 39.319976] ? lock_acquire+0x170/0x3c0 [ 39.319989] hci_conn_add_sysfs+0x97/0x1a0 [ 39.320003] hci_sync_conn_complete_evt.isra.0+0x9e9/0xca0 [ 39.320017] hci_event_packet+0x391f/0x7e19 [ 39.320030] ? mark_held_locks+0xf0/0xf0 [ 39.320041] ? __lock_acquire+0x6de/0x3ff0 [ 39.320054] ? hci_cmd_complete_evt+0xc280/0xc280 [ 39.320068] ? __update_load_avg_se+0x5ec/0xa00 [ 39.320082] ? debug_object_deactivate+0x1f9/0x2e0 [ 39.320099] ? mark_held_locks+0xa6/0xf0 [ 39.320111] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 39.320124] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 39.320139] hci_rx_work+0x4ad/0xc70 [ 39.320158] process_one_work+0x864/0x1570 [ 39.343823] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.350134] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 39.350153] worker_thread+0x64c/0x1130 [ 39.350169] ? __kthread_parkme+0x133/0x1e0 [ 39.358601] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.363334] ? process_one_work+0x1570/0x1570 [ 39.363346] kthread+0x33f/0x460 [ 39.363357] ? kthread_park+0x180/0x180 [ 39.363369] ret_from_fork+0x24/0x30 [ 39.363384] Modules linked in: [ 39.376922] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.379412] ---[ end trace 95f979322632bded ]--- [ 39.386435] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 39.388974] RIP: 0010:__list_add_valid.cold+0x26/0x3c [ 39.388986] Code: 57 ff ff ff 4c 89 e1 48 c7 c7 a0 bb b3 88 e8 d1 a6 cf fd 0f 0b 48 89 f2 4c 89 e1 48 89 ee 48 c7 c7 e0 bc b3 88 e8 ba a6 cf fd <0f> 0b 48 89 f1 48 c7 c7 60 bc b3 88 4c 89 e6 e8 a6 a6 cf fd 0f 0b [ 39.388998] RSP: 0018:ffff888094f67800 EFLAGS: 00010282 [ 39.587687] RAX: 0000000000000058 RBX: ffff88823b29c400 RCX: 0000000000000000 [ 39.595086] RDX: 0000000000000000 RSI: ffffffff814fdbb1 RDI: ffffed10129ecef2 [ 39.602416] RBP: ffff8880ab03ab58 R08: 0000000000000058 R09: 0000000000000000 [ 39.609710] R10: 0000000000000005 R11: 0000000000000000 R12: ffff88823b29c400 [ 39.617024] R13: ffff8880956e62d0 R14: ffff8880ab03ab70 R15: ffff8880ab03ab58 [ 39.625338] FS: 0000000000000000(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 39.634163] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.640053] CR2: 00007ffdf495b070 CR3: 0000000009e6d000 CR4: 00000000001406e0 [ 39.647357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 39.654674] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 39.661958] Kernel panic - not syncing: Fatal exception [ 39.667775] Kernel Offset: disabled [ 39.671394] Rebooting in 86400 seconds..