[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.56' (ECDSA) to the list of known hosts.
syzkaller login: [ 1067.377301][ T8496] IPVS: ftp: loaded support on port[0] = 21
[ 1067.378064][ T8497] IPVS: ftp: loaded support on port[0] = 21
[ 1067.388907][ T8498] IPVS: ftp: loaded support on port[0] = 21
[ 1067.391949][ T8499] IPVS: ftp: loaded support on port[0] = 21
[ 1067.396987][ T8494] IPVS: ftp: loaded support on port[0] = 21
[ 1067.404362][ T8495] IPVS: ftp: loaded support on port[0] = 21
[ 1067.624673][  T412] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.632910][   T21] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.675313][   T21] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1067.694720][  T412] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1067.722806][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1067.780983][   T21] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.790662][   T21] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1067.802337][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1067.811777][ T8678] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.819808][ T8678] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1067.830646][  T412] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.838637][  T412] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1067.848322][ T8508] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.859788][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1067.868992][ T8508] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[ 1067.877777][   T21] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.879013][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1067.896026][   T21] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1067.897007][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1067.912269][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1067.920186][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1067.941000][ T8678] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.949092][ T8678] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1067.977870][   T21] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.995483][    C1] hrtimer: interrupt took 20970 ns
[ 1068.042516][   T21] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1068.066749][ T8692] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
executing program
[ 1068.086165][ T8473] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1068.105813][ T8692] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1068.115954][  T412] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1068.141896][ T4912] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1068.151448][ T4912] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1068.159723][  T412] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
executing program
[ 1068.969667][ T8678] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1069.178285][ T8678] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1096.180578][ T8621] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1096.188693][ T8621] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 1218.080424][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[ 1218.087359][    C1] rcu: 	1-....: (9755 ticks this GP) idle=f62/1/0x4000000000000000 softirq=10800/10802 fqs=94 
[ 1218.098026][    C1] 	(t=10500 jiffies g=8309 q=145)
[ 1218.103230][    C1] rcu: rcu_preempt kthread starved for 3182 jiffies! g8309 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1218.114312][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1218.124283][    C1] rcu: RCU grace-period kthread stack dump:
[ 1218.130161][    C1] task:rcu_preempt     state:R  running task     stack:28488 pid:   11 ppid:     2 flags:0x00004000
[ 1218.141195][    C1] Call Trace:
[ 1218.144499][    C1]  __schedule+0x893/0x2130
[ 1218.149170][    C1]  ? io_schedule_timeout+0x140/0x140
[ 1218.154444][    C1]  ? debug_object_destroy+0x210/0x210
[ 1218.159800][    C1]  ? lock_downgrade+0x6d0/0x6d0
[ 1218.164647][    C1]  schedule+0xcf/0x270
[ 1218.168708][    C1]  schedule_timeout+0x148/0x250
[ 1218.173638][    C1]  ? usleep_range+0x170/0x170
[ 1218.178301][    C1]  ? lockdep_hardirqs_on+0x79/0x100
[ 1218.183485][    C1]  ? __next_timer_interrupt+0x210/0x210
[ 1218.189022][    C1]  ? prepare_to_swait_exclusive+0x2d0/0x2d0
[ 1218.194906][    C1]  rcu_gp_kthread+0xb4c/0x1c90
[ 1218.199657][    C1]  ? lock_downgrade+0x5f7/0x6d0
[ 1218.204495][    C1]  ? rcu_core_si+0x10/0x10
[ 1218.208899][    C1]  ? _raw_spin_unlock_irqrestore+0x42/0x50
[ 1218.214710][    C1]  ? lockdep_hardirqs_on+0x79/0x100
[ 1218.219897][    C1]  ? __kthread_parkme+0x13f/0x1e0
[ 1218.225333][    C1]  ? rcu_core_si+0x10/0x10
[ 1218.229747][    C1]  kthread+0x3b1/0x4a0
[ 1218.233810][    C1]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[ 1218.239951][    C1]  ret_from_fork+0x1f/0x30
[ 1218.244370][    C1] NMI backtrace for cpu 1
[ 1218.248684][    C1] CPU: 1 PID: 8760 Comm: syz-executor214 Not tainted 5.10.0-rc7-syzkaller #0
[ 1218.257418][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1218.267540][    C1] Call Trace:
[ 1218.270806][    C1]  <IRQ>
[ 1218.273645][    C1]  dump_stack+0x107/0x163
[ 1218.277961][    C1]  nmi_cpu_backtrace.cold+0x44/0xd7
[ 1218.283144][    C1]  ? lapic_can_unplug_cpu+0x80/0x80
[ 1218.288329][    C1]  nmi_trigger_cpumask_backtrace+0x1b3/0x230
[ 1218.294295][    C1]  rcu_dump_cpu_stacks+0x1e3/0x21e
[ 1218.299398][    C1]  rcu_sched_clock_irq.cold+0x472/0xee8
[ 1218.304937][    C1]  ? rcutree_dead_cpu+0x40/0x40
[ 1218.309772][    C1]  ? lock_downgrade+0x6d0/0x6d0
[ 1218.314613][    C1]  ? __raise_softirq_irqoff+0x93/0x1d0
[ 1218.320062][    C1]  update_process_times+0x77/0xd0
[ 1218.325158][    C1]  tick_sched_handle+0x9b/0x180
[ 1218.329990][    C1]  tick_sched_timer+0x1d1/0x2a0
[ 1218.334827][    C1]  ? can_stop_idle_tick+0x290/0x290
[ 1218.340009][    C1]  __hrtimer_run_queues+0x1ce/0xea0
[ 1218.345202][    C1]  ? hrtimer_sleeper_start_expires+0x80/0x80
[ 1218.351168][    C1]  ? ktime_get_update_offsets_now+0x249/0x320
[ 1218.357221][    C1]  hrtimer_interrupt+0x334/0x940
[ 1218.362154][    C1]  __sysvec_apic_timer_interrupt+0x146/0x540
[ 1218.368121][    C1]  sysvec_apic_timer_interrupt+0x48/0x100
[ 1218.373823][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1218.379789][    C1] RIP: 0010:check_preemption_disabled+0x2/0x130
[ 1218.386013][    C1] Code: 00 00 8b 1d 28 3b 07 04 31 ff 89 de 0f 1f 44 00 00 85 db 75 ae 0f 1f 44 00 00 41 bc 01 00 00 00 e8 c3 11 ce fa eb 9f cc 41 56 <41> 55 49 89 f5 41 54 55 48 89 fd 53 0f 1f 44 00 00 65 44 8b 25 35
[ 1218.405601][    C1] RSP: 0018:ffffc90000d906e0 EFLAGS: 00000206
[ 1218.411654][    C1] RAX: 0000000000000007 RBX: 00000000004474a9 RCX: 1ffffffff19d8e90
[ 1218.419695][    C1] RDX: 0000000000000000 RSI: ffffffff899d9280 RDI: ffffffff899d92c0
[ 1218.427652][    C1] RBP: 00000000004474a9 R08: ffffffff8df5c69e R09: ffffffff8df5c6a2
[ 1218.435610][    C1] R10: 0000000000082081 R11: 0000000000000001 R12: ffffc90000d90800
[ 1218.443653][    C1] R13: 0000000000000000 R14: ffff888021261a40 R15: 00000000000000e0
[ 1218.451624][    C1]  rcu_is_watching+0xe/0xc0
[ 1218.456200][    C1]  kernel_text_address+0x56/0xf0
[ 1218.461120][    C1]  __kernel_text_address+0x9/0x30
[ 1218.466131][    C1]  unwind_get_return_address+0x51/0x90
[ 1218.471576][    C1]  ? create_prof_cpu_mask+0x20/0x20
[ 1218.476934][    C1]  arch_stack_walk+0x93/0xe0
[ 1218.481528][    C1]  stack_trace_save+0x8c/0xc0
[ 1218.486190][    C1]  ? stack_trace_consume_entry+0x160/0x160
[ 1218.491982][    C1]  ? find_held_lock+0x2d/0x110
[ 1218.496733][    C1]  ? mark_lock+0xf7/0x1730
[ 1218.501142][    C1]  kasan_save_stack+0x1b/0x40
[ 1218.505802][    C1]  ? kasan_save_stack+0x1b/0x40
[ 1218.510635][    C1]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1218.516425][    C1]  ? kmem_cache_alloc_node+0x1e0/0x470
[ 1218.521866][    C1]  ? __alloc_skb+0x71/0x550
[ 1218.526355][    C1]  ? skb_copy+0x137/0x2f0
[ 1218.530670][    C1]  ? mac80211_hwsim_tx_frame_no_nl.isra.0+0xb17/0x1330
[ 1218.537502][    C1]  ? mac80211_hwsim_tx_frame+0x14f/0x1e0
[ 1218.543117][    C1]  ? mac80211_hwsim_beacon_tx+0x4ba/0x910
[ 1218.548817][    C1]  ? __iterate_interfaces+0x1e5/0x520
[ 1218.554175][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x8d/0x170
[ 1218.561357][    C1]  ? mac80211_hwsim_beacon+0xd5/0x1a0
[ 1218.566710][    C1]  ? __hrtimer_run_queues+0x693/0xea0
[ 1218.572070][    C1]  ? hrtimer_run_softirq+0x17b/0x360
[ 1218.577336][    C1]  ? __do_softirq+0x2a0/0x9f6
[ 1218.582082][    C1]  ? asm_call_irq_on_stack+0xf/0x20
[ 1218.587264][    C1]  ? do_softirq_own_stack+0xaa/0xd0
[ 1218.592446][    C1]  ? irq_exit_rcu+0x132/0x200
[ 1218.597106][    C1]  ? sysvec_apic_timer_interrupt+0x4d/0x100
[ 1218.602981][    C1]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1218.609117][    C1]  ? _raw_spin_unlock_irqrestore+0x25/0x50
[ 1218.614907][    C1]  ? debug_check_no_obj_freed+0x20c/0x420
[ 1218.620871][    C1]  ? __free_pages_ok+0x241/0xc90
[ 1218.625881][    C1]  ? release_pages+0x53e/0x1690
[ 1218.630716][    C1]  ? tlb_finish_mmu+0x165/0x8c0
[ 1218.635551][    C1]  ? exit_mmap+0x2d1/0x530
[ 1218.639948][    C1]  ? __mmput+0x122/0x470
[ 1218.644170][    C1]  ? mmput+0x53/0x60
[ 1218.648048][    C1]  ? do_exit+0xa72/0x29b0
[ 1218.652363][    C1]  ? do_group_exit+0x125/0x310
[ 1218.657107][    C1]  ? get_signal+0x42a/0x1f10
[ 1218.661681][    C1]  ? arch_do_signal+0x82/0x2390
[ 1218.666514][    C1]  ? exit_to_user_mode_prepare+0x100/0x1a0
[ 1218.672304][    C1]  ? syscall_exit_to_user_mode+0x38/0x260
[ 1218.678092][    C1]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1218.684145][    C1]  ? mark_held_locks+0x9f/0xe0
[ 1218.688893][    C1]  ? irqtime_account_irq+0x17e/0x2d0
[ 1218.694160][    C1]  ? asm_sysvec_irq_work+0x12/0x20
[ 1218.699254][    C1]  ? lockdep_hardirqs_on+0x79/0x100
[ 1218.704431][    C1]  ? asm_sysvec_irq_work+0x12/0x20
[ 1218.709527][    C1]  ? __alloc_skb+0x71/0x550
[ 1218.714016][    C1]  ? kasan_unpoison_shadow+0x33/0x40
[ 1218.719461][    C1]  __kasan_kmalloc.constprop.0+0xc2/0xd0
[ 1218.725170][    C1]  kmem_cache_alloc_node+0x1e0/0x470
[ 1218.730616][    C1]  __alloc_skb+0x71/0x550
[ 1218.734935][    C1]  skb_copy+0x137/0x2f0
[ 1218.739080][    C1]  mac80211_hwsim_tx_frame_no_nl.isra.0+0xb17/0x1330
[ 1218.745754][    C1]  ? mac80211_hwsim_add_chanctx+0x220/0x220
[ 1218.751744][    C1]  ? lock_downgrade+0x6d0/0x6d0
[ 1218.756600][    C1]  ? static_obj+0x10/0xc0
[ 1218.761026][    C1]  ? mac80211_hwsim_monitor_rx+0x1c2/0x840
[ 1218.766846][    C1]  mac80211_hwsim_tx_frame+0x14f/0x1e0
[ 1218.772409][    C1]  mac80211_hwsim_beacon_tx+0x4ba/0x910
[ 1218.778058][    C1]  __iterate_interfaces+0x1e5/0x520
[ 1218.783271][    C1]  ? mac80211_hwsim_tx_frame+0x1e0/0x1e0
[ 1218.788917][    C1]  ? mac80211_hwsim_tx_frame+0x1e0/0x1e0
[ 1218.794564][    C1]  ieee80211_iterate_active_interfaces_atomic+0x8d/0x170
[ 1218.801609][    C1]  ? mac80211_hwsim_addr_match+0x180/0x180
[ 1218.807429][    C1]  mac80211_hwsim_beacon+0xd5/0x1a0
[ 1218.812639][    C1]  ? mac80211_hwsim_addr_match+0x180/0x180
[ 1218.818456][    C1]  __hrtimer_run_queues+0x693/0xea0
[ 1218.823676][    C1]  ? hrtimer_sleeper_start_expires+0x80/0x80
[ 1218.829759][    C1]  ? ktime_get_update_offsets_now+0x249/0x320
[ 1218.835843][    C1]  hrtimer_run_softirq+0x17b/0x360
[ 1218.840969][    C1]  __do_softirq+0x2a0/0x9f6
[ 1218.845486][    C1]  asm_call_irq_on_stack+0xf/0x20
[ 1218.850522][    C1]  </IRQ>
[ 1218.853469][    C1]  do_softirq_own_stack+0xaa/0xd0
[ 1218.858502][    C1]  irq_exit_rcu+0x132/0x200
[ 1218.863026][    C1]  sysvec_apic_timer_interrupt+0x4d/0x100
[ 1218.868760][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1218.874743][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x25/0x50
[ 1218.881153][    C1] Code: f8 5d c3 66 90 55 48 89 fd 48 83 c7 18 53 48 89 f3 48 8b 74 24 10 e8 ca 28 6e f8 48 89 ef e8 52 dd 6e f8 f6 c7 02 75 1a 53 9d <bf> 01 00 00 00 e8 61 49 63 f8 65 8b 05 8a f3 19 77 85 c0 74 0a 5b
[ 1218.900763][    C1] RSP: 0018:ffffc9000236f7f0 EFLAGS: 00000212
[ 1218.906926][    C1] RAX: 0000000000040cc7 RBX: 0000000000000212 RCX: 1ffffffff19d8e91
[ 1218.914902][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1218.922880][    C1] RBP: ffffffff8f0fa158 R08: 0000000000000001 R09: 0000000000000001
[ 1218.930858][    C1] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffffffff1e1f42a
[ 1218.938820][    C1] R13: 0000000000000000 R14: dead000000000100 R15: dffffc0000000000
[ 1218.946804][    C1]  debug_check_no_obj_freed+0x20c/0x420
[ 1218.952345][    C1]  __free_pages_ok+0x241/0xc90
[ 1218.957101][    C1]  release_pages+0x53e/0x1690
[ 1218.961775][    C1]  ? put_devmap_managed_page+0x160/0x160
[ 1218.967395][    C1]  ? free_pages_and_swap_cache+0x62/0x90
[ 1218.973017][    C1]  tlb_finish_mmu+0x165/0x8c0
[ 1218.977686][    C1]  exit_mmap+0x2d1/0x530
[ 1218.981917][    C1]  ? __ia32_sys_remap_file_pages+0x150/0x150
[ 1218.987897][    C1]  ? __khugepaged_exit+0x2d9/0x3f0
[ 1218.992995][    C1]  __mmput+0x122/0x470
[ 1218.997052][    C1]  mmput+0x53/0x60
[ 1219.000764][    C1]  do_exit+0xa72/0x29b0
[ 1219.004914][    C1]  ? io_schedule_timeout+0x140/0x140
[ 1219.010183][    C1]  ? mm_update_next_owner+0x7a0/0x7a0
[ 1219.015544][    C1]  ? lockdep_hardirqs_on+0x79/0x100
[ 1219.020914][    C1]  ? preempt_schedule_thunk+0x16/0x18
[ 1219.026271][    C1]  ? preempt_schedule_common+0x59/0xc0
[ 1219.032155][    C1]  do_group_exit+0x125/0x310
[ 1219.036736][    C1]  get_signal+0x42a/0x1f10
[ 1219.041143][    C1]  ? do_mmap+0x610/0x11d0
[ 1219.045469][    C1]  arch_do_signal+0x82/0x2390
[ 1219.050137][    C1]  ? randomize_stack_top+0x100/0x100
[ 1219.055410][    C1]  ? copy_siginfo_to_user32+0xa0/0xa0
[ 1219.060773][    C1]  ? __do_sys_futex+0x2a2/0x470
[ 1219.065612][    C1]  ? do_futex+0x1a60/0x1a60
[ 1219.070112][    C1]  exit_to_user_mode_prepare+0x100/0x1a0
[ 1219.075933][    C1]  syscall_exit_to_user_mode+0x38/0x260
[ 1219.081467][    C1]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1219.087345][    C1] RIP: 0033:0x4474a9
[ 1219.091312][    C1] Code: Unable to access opcode bytes at RIP 0x44747f.
[ 1219.098141][    C1] RSP: 002b:00007f1b52dafdb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1219.106627][    C1] RAX: fffffffffffffe00 RBX: 00000000006dcc28 RCX: 00000000004474a9
[ 1219.114584][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dcc28
[ 1219.122628][    C1] RBP: 00000000006dcc20 R08: 0000000000000000 R09: 0000000000000000
[ 1219.130849][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dcc2c
[ 1219.139155][    C1] R13: 00007fff6eb3763f R14: 00007f1b52db09c0 R15: 0000000000000064