./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor754091702

<...>
Warning: Permanently added '10.128.0.104' (ED25519) to the list of known hosts.
execve("./syz-executor754091702", ["./syz-executor754091702"], 0x7fffd67bad30 /* 10 vars */) = 0
brk(NULL)                               = 0x555555882000
brk(0x555555882d00)                     = 0x555555882d00
arch_prctl(ARCH_SET_FS, 0x555555882380) = 0
set_tid_address(0x555555882650)         = 5066
set_robust_list(0x555555882660, 24)     = 0
rseq(0x555555882ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor754091702", 4096) = 27
getrandom("\x6d\xe4\xb8\x1d\x84\x05\x9c\xfb", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555555882d00
brk(0x5555558a3d00)                     = 0x5555558a3d00
brk(0x5555558a4000)                     = 0x5555558a4000
mprotect(0x7f0c9b785000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5067 attached
 <unfinished ...>
[pid  5067] set_robust_list(0x555555882660, 24 <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x555555882650) = 5067
[pid  5067] <... set_robust_list resumed>) = 0
[pid  5067] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5067] setsid()                    = 1
[pid  5067] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5067] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5067] unshare(CLONE_NEWNS)        = 0
[pid  5067] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5067] unshare(CLONE_NEWIPC)       = 0
[pid  5067] unshare(CLONE_NEWCGROUP)    = 0
[pid  5067] unshare(CLONE_NEWUTS)       = 0
[pid  5067] unshare(CLONE_SYSVSEM)      = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "16777216", 8)     = 8
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "536870912", 9)    = 9
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "1024", 4)         = 4
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "8192", 4)         = 4
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "1024", 4)         = 4
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "1024", 4)         = 4
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5067] close(3)                    = 0
[pid  5067] getpid()                    = 1
[pid  5067] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5067] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5067] unshare(CLONE_NEWNET)       = 0
[pid  5067] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] write(3, "0 65535", 7)      = 7
[pid  5067] close(3)                    = 0
[pid  5067] openat(AT_FDCWD, "/dev/rfkill", O_RDWR) = 3
[pid  5067] write(3, "\x00\x00\x00\x00\x00\x03\x00\x00", 8) = 8
[pid  5067] close(3)                    = 0
[pid  5067] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5067] sendto(3, [{nlmsg_len=40, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x13\x00\x02\x00\x4d\x41\x43\x38\x30\x32\x31\x31\x5f\x48\x57\x53\x49\x4d\x00\x00"], 40, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 40
[pid  5067] recvfrom(3, [{nlmsg_len=244, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x01\x02\x00\x00\x13\x00\x02\x00\x4d\x41\x43\x38\x30\x32\x31\x31\x5f\x48\x57\x53\x49\x4d\x00\x00\x06\x00\x01\x00\x2a\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x1c\x00\x00\x00\x90\x00\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00"...], 4096, 0, NULL, NULL) = 244
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=40, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] sendto(3, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5067] recvfrom(3, [{nlmsg_len=2496, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x23\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x46\x01\x00\x00\xec\x08\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2496
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] sendto(3, [{nlmsg_len=36, nlmsg_type=0x2a /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  5067] recvfrom(3, [{nlmsg_len=56, nlmsg_type=NLMSG_ERROR, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, {error=2, msg=[{nlmsg_len=36, nlmsg_type=0x2a /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x00\x00\x00"]}], 4096, 0, NULL, NULL) = 56
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan0", ifr_ifindex=11}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=36, nlmsg_type=0x23 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x06\x00\x00\x00\x08\x00\x03\x00\x0b\x00\x00\x00\x08\x00\x05\x00\x01\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=36, nlmsg_type=0x23 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] socket(AF_INET, SOCK_DGRAM, IPPROTO_IP) = 4
[pid  5067] ioctl(4, SIOCGIFFLAGS, {ifr_name="wlan0", ifr_flags=IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  5067] ioctl(4, SIOCSIFFLAGS, {ifr_name="wlan0", ifr_flags=IFF_UP|IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=64, nlmsg_type=0x23 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x2b\x00\x00\x00\x08\x00\x03\x00\x0b\x00\x00\x00\x0a\x00\x34\x00\x10\x10\x10\x10\x10\x10\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x0a\x00\x06\x00\x50\x50\x50\x50\x50\x50\x00\x00\x04\x00\x3c\x00"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x23 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] sendto(3, [{nlmsg_len=36, nlmsg_type=0x2a /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x01\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  5067] recvfrom(3, [{nlmsg_len=56, nlmsg_type=NLMSG_ERROR, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, {error=3, msg=[{nlmsg_len=36, nlmsg_type=0x2a /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x01\x00\x00"]}], 4096, 0, NULL, NULL) = 56
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=36, nlmsg_type=0x23 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x01\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=36, nlmsg_type=0x23 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] socket(AF_INET, SOCK_DGRAM, IPPROTO_IP) = 4
[pid  5067] ioctl(4, SIOCGIFFLAGS, {ifr_name="wlan1", ifr_flags=IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  5067] ioctl(4, SIOCSIFFLAGS, {ifr_name="wlan1", ifr_flags=IFF_UP|IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] sendto(3, [{nlmsg_len=64, nlmsg_type=0x23 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x2b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x10\x10\x10\x10\x10\x10\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x0a\x00\x06\x00\x50\x50\x50\x50\x50\x50\x00\x00\x04\x00\x3c\x00"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[   55.698231][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.706286][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[pid  5067] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x23 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan0", ifr_ifindex=11}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4
[pid  5067] sendto(4, [{nlmsg_len=32, nlmsg_type=0x12 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5067] recvfrom(4, [{nlmsg_len=1460, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x00\x00\x01\x00\x0b\x00\x00\x00\x43\x10\x01\x00\x00\x00\x00\x00\x0a\x00\x03\x00\x77\x6c\x61\x6e\x30\x00\x00\x00\x08\x00\x0d\x00\xe8\x03\x00\x00\x05\x00\x10\x00\x06\x00\x00\x00\x05\x00\x11\x00\x00\x00\x00\x00\x08\x00\x04\x00\xdc\x05\x00\x00\x08\x00\x32\x00\x00\x01\x00\x00\x08\x00\x33\x00\x00\x09\x00\x00\x08\x00\x1b\x00\x00\x00\x00\x00\x08\x00\x1e\x00\x00\x00\x00\x00\x08\x00\x3d\x00\x00\x00\x00\x00"...], 4096, 0, NULL, NULL) = 1460
[pid  5067] close(4)                    = 0
[pid  5067] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[   55.751323][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.759358][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[pid  5067] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5067] close(4)                    = 0
[pid  5067] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4
[pid  5067] sendto(4, [{nlmsg_len=32, nlmsg_type=0x12 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5067] recvfrom(4, [{nlmsg_len=1460, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x00\x00\x01\x00\x0c\x00\x00\x00\x43\x10\x01\x00\x00\x00\x00\x00\x0a\x00\x03\x00\x77\x6c\x61\x6e\x31\x00\x00\x00\x08\x00\x0d\x00\xe8\x03\x00\x00\x05\x00\x10\x00\x06\x00\x00\x00\x05\x00\x11\x00\x00\x00\x00\x00\x08\x00\x04\x00\xdc\x05\x00\x00\x08\x00\x32\x00\x00\x01\x00\x00\x08\x00\x33\x00\x00\x09\x00\x00\x08\x00\x1b\x00\x00\x00\x00\x00\x08\x00\x1e\x00\x00\x00\x00\x00\x08\x00\x3d\x00\x00\x00\x00\x00"...], 4096, 0, NULL, NULL) = 1460
[pid  5067] close(4)                    = 0
[pid  5067] close(3)                    = 0
[pid  5067] mkdir("/dev/binderfs", 0777) = 0
[pid  5067] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5067] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5070 attached
 <unfinished ...>
[pid  5070] set_robust_list(0x555555882660, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x555555882650) = 2
[pid  5070] <... set_robust_list resumed>) = 0
[pid  5070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5070] setpgid(0, 0)               = 0
[pid  5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5070] write(3, "1000", 4)         = 4
[pid  5070] close(3)                    = 0
[pid  5070] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5070] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5070] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5070] recvfrom(4, [{nlmsg_len=2496, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=2}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x23\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x46\x01\x00\x00\xec\x08\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2496
[pid  5070] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=2}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5070] close(4)                    = 0
[pid  5070] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5070] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5070] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x23\x00\x4b\xf2\x00\x00\x00\x00\x00\x00\x00\x00\x5c\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x6b\x00\x1c\x02\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5070] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 5
[pid  5070] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x38\x00\x00\x00\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x14\x00\x1b\x00\x00\x00\x00\x00\x00\x00\x00\x21\x00\x00\x00\x00\x00\x00\x00\x01\x04\x00\x00\x00", iov_len=56}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 56
[pid  5070] close(3)                    = 0
[pid  5070] close(4)                    = 0
[pid  5070] close(5)                    = 0
[pid  5070] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5070] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5070] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5070] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5070] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(12)                   = -1 EBADF (Bad file descriptor)
[   55.895382][ T5070] netlink: 'syz-executor754': attribute type 27 has an invalid length.
[pid  5070] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5070] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5070] exit_group(0)               = ?
[pid  5070] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached
, child_tidptr=0x555555882650) = 3
[pid  5071] set_robust_list(0x555555882660, 24) = 0
[pid  5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5071] setpgid(0, 0)               = 0
[pid  5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5071] write(3, "1000", 4)         = 4
[pid  5071] close(3)                    = 0
[pid  5071] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5071] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5071] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5071] recvfrom(4, [{nlmsg_len=2496, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=3}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x23\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x46\x01\x00\x00\xec\x08\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2496
[pid  5071] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=3}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5071] close(4)                    = 0
[pid  5071] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5071] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[   56.088000][ T5071] ------------[ cut here ]------------
[   56.093690][ T5071] wlan1: Failed check-sdata-in-driver check, flags: 0x0
[   56.101317][ T5071] WARNING: CPU: 0 PID: 5071 at net/mac80211/main.c:290 ieee80211_link_info_change_notify+0x215/0x340
[   56.112702][ T5071] Modules linked in:
[   56.116598][ T5071] CPU: 0 PID: 5071 Comm: syz-executor754 Not tainted 6.7.0-rc8-syzkaller-00055-g5eff55d725a4 #0
[   56.127106][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   56.137375][ T5071] RIP: 0010:ieee80211_link_info_change_notify+0x215/0x340
[   56.144557][ T5071] Code: e8 60 ce 97 f7 48 8b 74 24 08 48 89 74 24 08 e8 51 ce 97 f7 8b 54 24 04 48 c7 c7 40 d8 0b 8c 48 8b 74 24 08 e8 6c 0f 5e f7 90 <0f> 0b 90 90 e8 32 ce 97 f7 4c 89 e2 48 b8 00 00 00 00 00 fc ff df
[   56.164218][ T5071] RSP: 0018:ffffc9000418f450 EFLAGS: 00010286
[   56.170273][ T5071] RAX: 0000000000000000 RBX: ffff888072c5cc80 RCX: ffffffff814db519
[   56.178285][ T5071] RDX: ffff88807b4f3b80 RSI: ffffffff814db526 RDI: 0000000000000001
[   56.186340][ T5071] RBP: 0000000002000000 R08: 0000000000000001 R09: 0000000000000000
[   56.194381][ T5071] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888072c5d4d0
[   56.202415][ T5071] R13: ffff888072c5e2a8 R14: ffff888027008e20 R15: 0000000000000000
[   56.210440][ T5071] FS:  0000555555882380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   56.219455][ T5071] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.226073][ T5071] CR2: 00007f0c9b75a070 CR3: 0000000072ca8000 CR4: 0000000000350ef0
[   56.234135][ T5071] Call Trace:
[   56.237427][ T5071]  <TASK>
[   56.240344][ T5071]  ? show_regs+0x8f/0xa0
[   56.244641][ T5071]  ? __warn+0xe6/0x390
[   56.248726][ T5071]  ? ieee80211_link_info_change_notify+0x215/0x340
[   56.255290][ T5071]  ? report_bug+0x3bc/0x580
[   56.259824][ T5071]  ? handle_bug+0x3d/0x70
[   56.264217][ T5071]  ? exc_invalid_op+0x17/0x40
[   56.268918][ T5071]  ? asm_exc_invalid_op+0x1a/0x20
[   56.274001][ T5071]  ? __warn_printk+0x199/0x350
[   56.278786][ T5071]  ? __warn_printk+0x1a6/0x350
[   56.283601][ T5071]  ? ieee80211_link_info_change_notify+0x215/0x340
[   56.290558][ T5071]  ieee80211_set_mcast_rate+0x42/0x50
[   56.295988][ T5071]  ? ieee80211_copy_rnr_beacon+0x280/0x280
[   56.301859][ T5071]  nl80211_set_mcast_rate+0x339/0x580
[   56.307240][ T5071]  ? nl80211_nan_del_func+0x510/0x510
[   56.312665][ T5071]  ? nl80211_pre_doit+0x1b0/0xb10
[   56.317705][ T5071]  genl_family_rcv_msg_doit+0x1fc/0x2e0
[   56.323543][ T5071]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[   56.330950][ T5071]  ? ns_capable+0xd5/0x110
[   56.335413][ T5071]  genl_rcv_msg+0x561/0x800
[   56.339943][ T5071]  ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0
[   56.345902][ T5071]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[   56.351961][ T5071]  ? cfg80211_crit_proto_stopped+0x490/0x490
[   56.357979][ T5071]  ? nl80211_nan_del_func+0x510/0x510
[   56.363406][ T5071]  ? nl80211_get_power_save+0x480/0x480
[   56.368983][ T5071]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[   56.375017][ T5071]  netlink_rcv_skb+0x16b/0x440
[   56.379794][ T5071]  ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0
[   56.385735][ T5071]  ? netlink_ack+0x1380/0x1380
[   56.390521][ T5071]  ? down_read+0xc9/0x330
[   56.394884][ T5071]  ? rwsem_down_read_slowpath+0xb20/0xb20
[   56.400620][ T5071]  ? netlink_deliver_tap+0x1a0/0xd00
[   56.405951][ T5071]  ? _copy_from_iter+0x2c1/0x10f0
[   56.411017][ T5071]  genl_rcv+0x28/0x40
[   56.415057][ T5071]  netlink_unicast+0x53b/0x810
[   56.419844][ T5071]  ? netlink_attachskb+0x880/0x880
[   56.425001][ T5071]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   56.431269][ T5071]  ? __phys_addr_symbol+0x30/0x70
[   56.436360][ T5071]  ? __check_object_size+0x323/0x730
[   56.441761][ T5071]  netlink_sendmsg+0x93c/0xe40
[   56.446564][ T5071]  ? netlink_unicast+0x810/0x810
[   56.451586][ T5071]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   56.456892][ T5071]  ? netlink_unicast+0x810/0x810
[   56.461913][ T5071]  __sock_sendmsg+0xd5/0x180
[   56.466539][ T5071]  ____sys_sendmsg+0x6ac/0x940
[   56.471333][ T5071]  ? copy_msghdr_from_user+0x10b/0x160
[   56.476905][ T5071]  ? kernel_sendmsg+0x50/0x50
[   56.481630][ T5071]  ? hlock_class+0x4e/0x130
[   56.486163][ T5071]  ___sys_sendmsg+0x135/0x1d0
[   56.490831][ T5071]  ? do_recvmmsg+0x740/0x740
[   56.495494][ T5071]  ? recalc_sigpending_tsk+0x187/0x1d0
[   56.500962][ T5071]  ? __fget_light+0x1fc/0x260
[   56.505691][ T5071]  __sys_sendmsg+0x117/0x1e0
[   56.510309][ T5071]  ? __sys_sendmsg_sock+0x30/0x30
[   56.515397][ T5071]  ? ptrace_notify+0xf4/0x130
[   56.520111][ T5071]  ? syscall_trace_enter.constprop.0+0xaf/0x1e0
[   56.526407][ T5071]  do_syscall_64+0x40/0x110
[   56.530978][ T5071]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   56.536936][ T5071] RIP: 0033:0x7f0c9b70d429
[   56.541409][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   56.561157][ T5071] RSP: 002b:00007fff1ac9df48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.570059][ T5071] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0c9b70d429
[   56.578101][ T5071] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[   56.586155][ T5071] RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000
[   56.594382][ T5071] R10: 0000000c00000000 R11: 0000000000000246 R12: 0000000000000000
[   56.602394][ T5071] R13: 0000000000000000 R14: 00007fff1ac9dfb0 R15: 00007fff1ac9dfa0
[   56.610381][ T5071]  </TASK>
[   56.613445][ T5071] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   56.620731][ T5071] CPU: 0 PID: 5071 Comm: syz-executor754 Not tainted 6.7.0-rc8-syzkaller-00055-g5eff55d725a4 #0
[   56.631134][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   56.641188][ T5071] Call Trace:
[   56.644461][ T5071]  <TASK>
[   56.647397][ T5071]  dump_stack_lvl+0xd9/0x1b0
[   56.652018][ T5071]  panic+0x6dc/0x790
[   56.655908][ T5071]  ? panic_smp_self_stop+0xa0/0xa0
[   56.661011][ T5071]  ? show_trace_log_lvl+0x363/0x4f0
[   56.666211][ T5071]  ? check_panic_on_warn+0x1f/0xb0
[   56.671338][ T5071]  ? ieee80211_link_info_change_notify+0x215/0x340
[   56.677865][ T5071]  check_panic_on_warn+0xab/0xb0
[   56.682826][ T5071]  __warn+0xf2/0x390
[   56.686722][ T5071]  ? ieee80211_link_info_change_notify+0x215/0x340
[   56.693228][ T5071]  report_bug+0x3bc/0x580
[   56.697562][ T5071]  handle_bug+0x3d/0x70
[   56.701741][ T5071]  exc_invalid_op+0x17/0x40
[   56.706261][ T5071]  asm_exc_invalid_op+0x1a/0x20
[   56.711110][ T5071] RIP: 0010:ieee80211_link_info_change_notify+0x215/0x340
[   56.718225][ T5071] Code: e8 60 ce 97 f7 48 8b 74 24 08 48 89 74 24 08 e8 51 ce 97 f7 8b 54 24 04 48 c7 c7 40 d8 0b 8c 48 8b 74 24 08 e8 6c 0f 5e f7 90 <0f> 0b 90 90 e8 32 ce 97 f7 4c 89 e2 48 b8 00 00 00 00 00 fc ff df
[   56.738110][ T5071] RSP: 0018:ffffc9000418f450 EFLAGS: 00010286
[   56.744203][ T5071] RAX: 0000000000000000 RBX: ffff888072c5cc80 RCX: ffffffff814db519
[   56.752173][ T5071] RDX: ffff88807b4f3b80 RSI: ffffffff814db526 RDI: 0000000000000001
[   56.760136][ T5071] RBP: 0000000002000000 R08: 0000000000000001 R09: 0000000000000000
[   56.768106][ T5071] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888072c5d4d0
[   56.776084][ T5071] R13: ffff888072c5e2a8 R14: ffff888027008e20 R15: 0000000000000000
[   56.784064][ T5071]  ? __warn_printk+0x199/0x350
[   56.788833][ T5071]  ? __warn_printk+0x1a6/0x350
[   56.793609][ T5071]  ieee80211_set_mcast_rate+0x42/0x50
[   56.798999][ T5071]  ? ieee80211_copy_rnr_beacon+0x280/0x280
[   56.804819][ T5071]  nl80211_set_mcast_rate+0x339/0x580
[   56.810200][ T5071]  ? nl80211_nan_del_func+0x510/0x510
[   56.815583][ T5071]  ? nl80211_pre_doit+0x1b0/0xb10
[   56.820609][ T5071]  genl_family_rcv_msg_doit+0x1fc/0x2e0
[   56.826164][ T5071]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[   56.833634][ T5071]  ? ns_capable+0xd5/0x110
[   56.838055][ T5071]  genl_rcv_msg+0x561/0x800
[   56.842564][ T5071]  ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0
[   56.848457][ T5071]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[   56.854438][ T5071]  ? cfg80211_crit_proto_stopped+0x490/0x490
[   56.860410][ T5071]  ? nl80211_nan_del_func+0x510/0x510
[   56.865788][ T5071]  ? nl80211_get_power_save+0x480/0x480
[   56.871356][ T5071]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[   56.877354][ T5071]  netlink_rcv_skb+0x16b/0x440
[   56.882119][ T5071]  ? genl_family_rcv_msg_dumpit+0x2d0/0x2d0
[   56.888010][ T5071]  ? netlink_ack+0x1380/0x1380
[   56.892774][ T5071]  ? down_read+0xc9/0x330
[   56.897098][ T5071]  ? rwsem_down_read_slowpath+0xb20/0xb20
[   56.902849][ T5071]  ? netlink_deliver_tap+0x1a0/0xd00
[   56.908166][ T5071]  ? _copy_from_iter+0x2c1/0x10f0
[   56.913207][ T5071]  genl_rcv+0x28/0x40
[   56.917193][ T5071]  netlink_unicast+0x53b/0x810
[   56.921959][ T5071]  ? netlink_attachskb+0x880/0x880
[   56.927067][ T5071]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   56.932972][ T5071]  ? __phys_addr_symbol+0x30/0x70
[   56.938001][ T5071]  ? __check_object_size+0x323/0x730
[   56.943296][ T5071]  netlink_sendmsg+0x93c/0xe40
[   56.948068][ T5071]  ? netlink_unicast+0x810/0x810
[   56.953014][ T5071]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   56.958300][ T5071]  ? netlink_unicast+0x810/0x810
[   56.963236][ T5071]  __sock_sendmsg+0xd5/0x180
[   56.967829][ T5071]  ____sys_sendmsg+0x6ac/0x940
[   56.972603][ T5071]  ? copy_msghdr_from_user+0x10b/0x160
[   56.978067][ T5071]  ? kernel_sendmsg+0x50/0x50
[   56.982742][ T5071]  ? hlock_class+0x4e/0x130
[   56.987253][ T5071]  ___sys_sendmsg+0x135/0x1d0
[   56.991934][ T5071]  ? do_recvmmsg+0x740/0x740
[   56.996542][ T5071]  ? recalc_sigpending_tsk+0x187/0x1d0
[   57.001999][ T5071]  ? __fget_light+0x1fc/0x260
[   57.006678][ T5071]  __sys_sendmsg+0x117/0x1e0
[   57.011273][ T5071]  ? __sys_sendmsg_sock+0x30/0x30
[   57.016322][ T5071]  ? ptrace_notify+0xf4/0x130
[   57.021000][ T5071]  ? syscall_trace_enter.constprop.0+0xaf/0x1e0
[   57.027261][ T5071]  do_syscall_64+0x40/0x110
[   57.031803][ T5071]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   57.037711][ T5071] RIP: 0033:0x7f0c9b70d429
[   57.042139][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   57.061772][ T5071] RSP: 002b:00007fff1ac9df48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.070190][ T5071] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0c9b70d429
[   57.078164][ T5071] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[   57.086134][ T5071] RBP: 0000000000000000 R08: 0000000c00000000 R09: 0000000c00000000
[   57.094112][ T5071] R10: 0000000c00000000 R11: 0000000000000246 R12: 0000000000000000
[   57.102086][ T5071] R13: 0000000000000000 R14: 00007fff1ac9dfb0 R15: 00007fff1ac9dfa0
[   57.110065][ T5071]  </TASK>
[   57.113337][ T5071] Kernel Offset: disabled
[   57.117744][ T5071] Rebooting in 86400 seconds..