./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor754091702 <...> Warning: Permanently added '10.128.0.104' (ED25519) to the list of known hosts. execve("./syz-executor754091702", ["./syz-executor754091702"], 0x7fffd67bad30 /* 10 vars */) = 0 brk(NULL) = 0x555555882000 brk(0x555555882d00) = 0x555555882d00 arch_prctl(ARCH_SET_FS, 0x555555882380) = 0 set_tid_address(0x555555882650) = 5066 set_robust_list(0x555555882660, 24) = 0 rseq(0x555555882ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor754091702", 4096) = 27 getrandom("\x6d\xe4\xb8\x1d\x84\x05\x9c\xfb", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555882d00 brk(0x5555558a3d00) = 0x5555558a3d00 brk(0x5555558a4000) = 0x5555558a4000 mprotect(0x7f0c9b785000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5067 attached [pid 5067] set_robust_list(0x555555882660, 24 [pid 5066] <... clone resumed>, child_tidptr=0x555555882650) = 5067 [pid 5067] <... set_robust_list resumed>) = 0 [pid 5067] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5067] setsid() = 1 [pid 5067] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5067] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5067] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5067] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5067] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5067] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5067] unshare(CLONE_NEWNS) = 0 [pid 5067] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5067] unshare(CLONE_NEWIPC) = 0 [pid 5067] unshare(CLONE_NEWCGROUP) = 0 [pid 5067] unshare(CLONE_NEWUTS) = 0 [pid 5067] unshare(CLONE_SYSVSEM) = 0 [pid 5067] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "16777216", 8) = 8 [pid 5067] close(3) = 0 [pid 5067] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "536870912", 9) = 9 [pid 5067] close(3) = 0 [pid 5067] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1024", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "8192", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1024", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1024", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5067] close(3) = 0 [pid 5067] getpid() = 1 [pid 5067] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5070] set_robust_list(0x555555882660, 24 [pid 5067] <... clone resumed>, child_tidptr=0x555555882650) = 2 [pid 5070] <... set_robust_list resumed>) = 0 [pid 5070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5070] setpgid(0, 0) = 0 [pid 5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5070] write(3, "1000", 4) = 4 [pid 5070] close(3) = 0 [pid 5070] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5070] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 [pid 5070] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 [pid 5070] recvfrom(4, [{nlmsg_len=2496, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=2}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x23\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x46\x01\x00\x00\xec\x08\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2496 [pid 5070] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=2}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 [pid 5070] close(4) = 0 [pid 5070] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 [pid 5070] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0 [pid 5070] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x23\x00\x4b\xf2\x00\x00\x00\x00\x00\x00\x00\x00\x5c\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x6b\x00\x1c\x02\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36 [pid 5070] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 5 [pid 5070] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x38\x00\x00\x00\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x14\x00\x1b\x00\x00\x00\x00\x00\x00\x00\x00\x21\x00\x00\x00\x00\x00\x00\x00\x01\x04\x00\x00\x00", iov_len=56}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 56 [pid 5070] close(3) = 0 [pid 5070] close(4) = 0 [pid 5070] close(5) = 0 [pid 5070] close(6) = -1 EBADF (Bad file descriptor) [pid 5070] close(7) = -1 EBADF (Bad file descriptor) [pid 5070] close(8) = -1 EBADF (Bad file descriptor) [pid 5070] close(9) = -1 EBADF (Bad file descriptor) [pid 5070] close(10) = -1 EBADF (Bad file descriptor) [pid 5070] close(11) = -1 EBADF (Bad file descriptor) [pid 5070] close(12) = -1 EBADF (Bad file descriptor) [ 55.895382][ T5070] netlink: 'syz-executor754': attribute type 27 has an invalid length. [pid 5070] close(13) = -1 EBADF (Bad file descriptor) [pid 5070] close(14) = -1 EBADF (Bad file descriptor) [pid 5070] close(15) = -1 EBADF (Bad file descriptor) [pid 5070] close(16) = -1 EBADF (Bad file descriptor) [pid 5070] close(17) = -1 EBADF (Bad file descriptor) [pid 5070] close(18) = -1 EBADF (Bad file descriptor) [pid 5070] close(19) = -1 EBADF (Bad file descriptor) [pid 5070] close(20) = -1 EBADF (Bad file descriptor) [pid 5070] close(21) = -1 EBADF (Bad file descriptor) [pid 5070] close(22) = -1 EBADF (Bad file descriptor) [pid 5070] close(23) = -1 EBADF (Bad file descriptor) [pid 5070] close(24) = -1 EBADF (Bad file descriptor) [pid 5070] close(25) = -1 EBADF (Bad file descriptor) [pid 5070] close(26) = -1 EBADF (Bad file descriptor) [pid 5070] close(27) = -1 EBADF (Bad file descriptor) [pid 5070] close(28) = -1 EBADF (Bad file descriptor) [pid 5070] close(29) = -1 EBADF (Bad file descriptor) [pid 5070] exit_group(0) = ? [pid 5070] +++ exited with 0 +++ [pid 5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5067] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached , child_tidptr=0x555555882650) = 3 [pid 5071] set_robust_list(0x555555882660, 24) = 0 [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5071] setpgid(0, 0) = 0 [pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "1000", 4) = 4 [pid 5071] close(3) = 0 [pid 5071] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5071] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 [pid 5071] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 [pid 5071] recvfrom(4, [{nlmsg_len=2496, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=3}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x23\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x46\x01\x00\x00\xec\x08\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2496 [pid 5071] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=3}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 [pid 5071] close(4) = 0 [pid 5071] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 [pid 5071] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0 [ 56.088000][ T5071] ------------[ cut here ]------------ [ 56.093690][ T5071] wlan1: Failed check-sdata-in-driver check, flags: 0x0 [ 56.101317][ T5071] WARNING: CPU: 0 PID: 5071 at net/mac80211/main.c:290 ieee80211_link_info_change_notify+0x215/0x340 [ 56.112702][ T5071] Modules linked in: [ 56.116598][ T5071] CPU: 0 PID: 5071 Comm: syz-executor754 Not tainted 6.7.0-rc8-syzkaller-00055-g5eff55d725a4 #0 [ 56.127106][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 56.137375][ T5071] RIP: 0010:ieee80211_link_info_change_notify+0x215/0x340 [ 56.144557][ T5071] Code: e8 60 ce 97 f7 48 8b 74 24 08 48 89 74 24 08 e8 51 ce 97 f7 8b 54 24 04 48 c7 c7 40 d8 0b 8c 48 8b 74 24 08 e8 6c 0f 5e f7 90 <0f> 0b 90 90 e8 32 ce 97 f7 4c 89 e2 48 b8 00 00 00 00 00 fc ff df [ 56.164218][ T5071] RSP: 0018:ffffc9000418f450 EFLAGS: 00010286 [ 56.170273][ T5071] RAX: 0000000000000000 RBX: ffff888072c5cc80 RCX: ffffffff814db519 [ 56.178285][ T5071] RDX: ffff88807b4f3b80 RSI: ffffffff814db526 RDI: 0000000000000001 [ 56.186340][ T5071] RBP: 0000000002000000 R08: 0000000000000001 R09: 0000000000000000 [ 56.194381][ T5071] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888072c5d4d0 [ 56.202415][ T5071] R13: ffff888072c5e2a8 R14: ffff888027008e20 R15: 0000000000000000 [ 56.210440][ T5071] FS: 0000555555882380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 56.219455][ T5071] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 56.226073][ T5071] CR2: 00007f0c9b75a070 CR3: 0000000072ca8000 CR4: 0000000000350ef0 [ 56.234135][ T5071] Call Trace: [ 56.237427][ T5071] [ 56.240344][ T5071] ? show_regs+0x8f/0xa0 [ 56.244641][ T5071] ? __warn+0xe6/0x390 [ 56.248726][ T5071] ? ieee80211_link_info_change_notify+0x215/0x340 [ 56.255290][ T5071] ? report_bug+0x3bc/0x580 [ 56.259824][ T5071] ? handle_bug+0x3d/0x70 [ 56.264217][ T5071] ? exc_invalid_op+0x17/0x40 [ 56.268918][ T5071] ? asm_exc_invalid_op+0x1a/0x20 [ 56.274001][ T5071] ? __warn_printk+0x199/0x350 [ 56.278786][ T5071] ? __warn_printk+0x1a6/0x350 [ 56.283601][ T5071] ? ieee80211_link_info_change_notify+0x215/0x340 [ 56.290558][ T5071] ieee80211_set_mcast_rate+0x42/0x50 [ 56.295988][ T5071] ? ieee80211_copy_rnr_beacon+0x280/0x280 [ 56.301859][ T5071] nl80211_set_mcast_rate+0x339/0x580 [ 56.307240][ T5071] ? nl80211_nan_del_func+0x510/0x510 [ 56.312665][ T5071] ? nl80211_pre_doit+0x1b0/0xb10 [ 56.317705][ T5071] genl_family_rcv_msg_doit+0x1fc/0x2e0 [ 56.323543][ T5071] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 56.330950][ T5071] ? ns_capable+0xd5/0x110 [ 56.335413][ T5071] genl_rcv_msg+0x561/0x800 [ 56.339943][ T5071] ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0 [ 56.345902][ T5071] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 56.351961][ T5071] ? cfg80211_crit_proto_stopped+0x490/0x490 [ 56.357979][ T5071] ? nl80211_nan_del_func+0x510/0x510 [ 56.363406][ T5071] ? nl80211_get_power_save+0x480/0x480 [ 56.368983][ T5071] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 56.375017][ T5071] netlink_rcv_skb+0x16b/0x440 [ 56.379794][ T5071] ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0 [ 56.385735][ T5071] ? netlink_ack+0x1380/0x1380 [ 56.390521][ T5071] ? down_read+0xc9/0x330 [ 56.394884][ T5071] ? rwsem_down_read_slowpath+0xb20/0xb20 [ 56.400620][ T5071] ? netlink_deliver_tap+0x1a0/0xd00 [ 56.405951][ T5071] ? _copy_from_iter+0x2c1/0x10f0 [ 56.411017][ T5071] genl_rcv+0x28/0x40 [ 56.415057][ T5071] netlink_unicast+0x53b/0x810 [ 56.419844][ T5071] ? netlink_attachskb+0x880/0x880 [ 56.425001][ T5071] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 56.431269][ T5071] ? __phys_addr_symbol+0x30/0x70 [ 56.436360][ T5071] ? __check_object_size+0x323/0x730 [ 56.441761][ T5071] netlink_sendmsg+0x93c/0xe40 [ 56.446564][ T5071] ? netlink_unicast+0x810/0x810 [ 56.451586][ T5071] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 56.456892][ T5071] ? netlink_unicast+0x810/0x810 [ 56.461913][ T5071] __sock_sendmsg+0xd5/0x180 [ 56.466539][ T5071] ____sys_sendmsg+0x6ac/0x940 [ 56.471333][ T5071] ? copy_msghdr_from_user+0x10b/0x160 [ 56.476905][ T5071] ? kernel_sendmsg+0x50/0x50 [ 56.481630][ T5071] ? hlock_class+0x4e/0x130 [ 56.486163][ T5071] ___sys_sendmsg+0x135/0x1d0 [ 56.490831][ T5071] ? do_recvmmsg+0x740/0x740 [ 56.495494][ T5071] ? recalc_sigpending_tsk+0x187/0x1d0 [ 56.500962][ T5071] ? __fget_light+0x1fc/0x260 [ 56.505691][ T5071] __sys_sendmsg+0x117/0x1e0 [ 56.510309][ T5071] ? __sys_sendmsg_sock+0x30/0x30 [ 56.515397][ T5071] ? ptrace_notify+0xf4/0x130 [ 56.520111][ T5071] ? syscall_trace_enter.constprop.0+0xaf/0x1e0 [ 56.526407][ T5071] do_syscall_64+0x40/0x110 [ 56.530978][ T5071] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 56.536936][ T5071] RIP: 0033:0x7f0c9b70d429 [ 56.541409][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 56.561157][ T5071] RSP: 002b:00007fff1ac9df48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 56.570059][ T5071] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0c9b70d429 [ 56.578101][ T5071] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 56.586155][ T5071] RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000 [ 56.594382][ T5071] R10: 0000000c00000000 R11: 0000000000000246 R12: 0000000000000000 [ 56.602394][ T5071] R13: 0000000000000000 R14: 00007fff1ac9dfb0 R15: 00007fff1ac9dfa0 [ 56.610381][ T5071] [ 56.613445][ T5071] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 56.620731][ T5071] CPU: 0 PID: 5071 Comm: syz-executor754 Not tainted 6.7.0-rc8-syzkaller-00055-g5eff55d725a4 #0 [ 56.631134][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 56.641188][ T5071] Call Trace: [ 56.644461][ T5071] [ 56.647397][ T5071] dump_stack_lvl+0xd9/0x1b0 [ 56.652018][ T5071] panic+0x6dc/0x790 [ 56.655908][ T5071] ? panic_smp_self_stop+0xa0/0xa0 [ 56.661011][ T5071] ? show_trace_log_lvl+0x363/0x4f0 [ 56.666211][ T5071] ? check_panic_on_warn+0x1f/0xb0 [ 56.671338][ T5071] ? ieee80211_link_info_change_notify+0x215/0x340 [ 56.677865][ T5071] check_panic_on_warn+0xab/0xb0 [ 56.682826][ T5071] __warn+0xf2/0x390 [ 56.686722][ T5071] ? ieee80211_link_info_change_notify+0x215/0x340 [ 56.693228][ T5071] report_bug+0x3bc/0x580 [ 56.697562][ T5071] handle_bug+0x3d/0x70 [ 56.701741][ T5071] exc_invalid_op+0x17/0x40 [ 56.706261][ T5071] asm_exc_invalid_op+0x1a/0x20 [ 56.711110][ T5071] RIP: 0010:ieee80211_link_info_change_notify+0x215/0x340 [ 56.718225][ T5071] Code: e8 60 ce 97 f7 48 8b 74 24 08 48 89 74 24 08 e8 51 ce 97 f7 8b 54 24 04 48 c7 c7 40 d8 0b 8c 48 8b 74 24 08 e8 6c 0f 5e f7 90 <0f> 0b 90 90 e8 32 ce 97 f7 4c 89 e2 48 b8 00 00 00 00 00 fc ff df [ 56.738110][ T5071] RSP: 0018:ffffc9000418f450 EFLAGS: 00010286 [ 56.744203][ T5071] RAX: 0000000000000000 RBX: ffff888072c5cc80 RCX: ffffffff814db519 [ 56.752173][ T5071] RDX: ffff88807b4f3b80 RSI: ffffffff814db526 RDI: 0000000000000001 [ 56.760136][ T5071] RBP: 0000000002000000 R08: 0000000000000001 R09: 0000000000000000 [ 56.768106][ T5071] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888072c5d4d0 [ 56.776084][ T5071] R13: ffff888072c5e2a8 R14: ffff888027008e20 R15: 0000000000000000 [ 56.784064][ T5071] ? __warn_printk+0x199/0x350 [ 56.788833][ T5071] ? __warn_printk+0x1a6/0x350 [ 56.793609][ T5071] ieee80211_set_mcast_rate+0x42/0x50 [ 56.798999][ T5071] ? ieee80211_copy_rnr_beacon+0x280/0x280 [ 56.804819][ T5071] nl80211_set_mcast_rate+0x339/0x580 [ 56.810200][ T5071] ? nl80211_nan_del_func+0x510/0x510 [ 56.815583][ T5071] ? nl80211_pre_doit+0x1b0/0xb10 [ 56.820609][ T5071] genl_family_rcv_msg_doit+0x1fc/0x2e0 [ 56.826164][ T5071] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 56.833634][ T5071] ? ns_capable+0xd5/0x110 [ 56.838055][ T5071] genl_rcv_msg+0x561/0x800 [ 56.842564][ T5071] ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0 [ 56.848457][ T5071] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 56.854438][ T5071] ? cfg80211_crit_proto_stopped+0x490/0x490 [ 56.860410][ T5071] ? nl80211_nan_del_func+0x510/0x510 [ 56.865788][ T5071] ? nl80211_get_power_save+0x480/0x480 [ 56.871356][ T5071] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 56.877354][ T5071] netlink_rcv_skb+0x16b/0x440 [ 56.882119][ T5071] ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0 [ 56.888010][ T5071] ? netlink_ack+0x1380/0x1380 [ 56.892774][ T5071] ? down_read+0xc9/0x330 [ 56.897098][ T5071] ? rwsem_down_read_slowpath+0xb20/0xb20 [ 56.902849][ T5071] ? netlink_deliver_tap+0x1a0/0xd00 [ 56.908166][ T5071] ? _copy_from_iter+0x2c1/0x10f0 [ 56.913207][ T5071] genl_rcv+0x28/0x40 [ 56.917193][ T5071] netlink_unicast+0x53b/0x810 [ 56.921959][ T5071] ? netlink_attachskb+0x880/0x880 [ 56.927067][ T5071] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 56.932972][ T5071] ? __phys_addr_symbol+0x30/0x70 [ 56.938001][ T5071] ? __check_object_size+0x323/0x730 [ 56.943296][ T5071] netlink_sendmsg+0x93c/0xe40 [ 56.948068][ T5071] ? netlink_unicast+0x810/0x810 [ 56.953014][ T5071] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 56.958300][ T5071] ? netlink_unicast+0x810/0x810 [ 56.963236][ T5071] __sock_sendmsg+0xd5/0x180 [ 56.967829][ T5071] ____sys_sendmsg+0x6ac/0x940 [ 56.972603][ T5071] ? copy_msghdr_from_user+0x10b/0x160 [ 56.978067][ T5071] ? kernel_sendmsg+0x50/0x50 [ 56.982742][ T5071] ? hlock_class+0x4e/0x130 [ 56.987253][ T5071] ___sys_sendmsg+0x135/0x1d0 [ 56.991934][ T5071] ? do_recvmmsg+0x740/0x740 [ 56.996542][ T5071] ? recalc_sigpending_tsk+0x187/0x1d0 [ 57.001999][ T5071] ? __fget_light+0x1fc/0x260 [ 57.006678][ T5071] __sys_sendmsg+0x117/0x1e0 [ 57.011273][ T5071] ? __sys_sendmsg_sock+0x30/0x30 [ 57.016322][ T5071] ? ptrace_notify+0xf4/0x130 [ 57.021000][ T5071] ? syscall_trace_enter.constprop.0+0xaf/0x1e0 [ 57.027261][ T5071] do_syscall_64+0x40/0x110 [ 57.031803][ T5071] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 57.037711][ T5071] RIP: 0033:0x7f0c9b70d429 [ 57.042139][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 57.061772][ T5071] RSP: 002b:00007fff1ac9df48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 57.070190][ T5071] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0c9b70d429 [ 57.078164][ T5071] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 57.086134][ T5071] RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000 [ 57.094112][ T5071] R10: 0000000c00000000 R11: 0000000000000246 R12: 0000000000000000 [ 57.102086][ T5071] R13: 0000000000000000 R14: 00007fff1ac9dfb0 R15: 00007fff1ac9dfa0 [ 57.110065][ T5071] [ 57.113337][ T5071] Kernel Offset: disabled [ 57.117744][ T5071] Rebooting in 86400 seconds..