program:
pwritev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000080)="5f28468bb5a7da702955486d4d23c83ca856fe", 0x13}], 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$sock_proto_private(r0, 0x8b20, &(0x7f0000000080))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x5c, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16f8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x5c}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r4=>0xffffffffffffffff})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r5, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000340)={0x3c, r6, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

[   60.853758][ T4660] Bluetooth: hci0: command tx timeout
[   60.901871][ T5314] warning: `syz.0.0' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   60.921715][ T5314] ------------[ cut here ]------------
[   60.923970][ T5314] WARNING: CPU: 0 PID: 5314 at net/mac80211/rate.c:53 rate_control_rate_init+0x5ec/0x680
[   60.927727][ T5314] Modules linked in:
[   60.929222][ T5314] CPU: 0 UID: 0 PID: 5314 Comm: syz.0.0 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[   60.933399][ T5314] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.937047][ T5314] RIP: 0010:rate_control_rate_init+0x5ec/0x680
[   60.939259][ T5314] Code: 8b 82 01 00 00 20 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 00 9c 65 f6 90 0f 0b 90 eb e2 e8 f5 9b 65 f6 90 <0f> 0b 90 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d e9 8e 00 00 00
[   60.947604][ T5314] RSP: 0018:ffffc9000d4a6fd0 EFLAGS: 00010287
[   60.949981][ T5314] RAX: ffffffff8b39d7fb RBX: 0000000000000001 RCX: 0000000000100000
[   60.953376][ T5314] RDX: ffffc9000e8ca000 RSI: 0000000000000365 RDI: 0000000000000366
[   60.956374][ T5314] RBP: ffffffff8b39d345 R08: ffffffff8b39d430 R09: 1ffffffff2854910
[   60.959055][ T5314] R10: dffffc0000000000 R11: fffffbfff2854911 R12: ffff888052d10e40
[   60.961823][ T5314] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff1100871580a
[   60.964896][ T5314] FS:  00007f747c8ec6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   60.968101][ T5314] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   60.970518][ T5314] CR2: 0000000020001080 CR3: 0000000042f44000 CR4: 0000000000352ef0
[   60.973661][ T5314] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   60.976602][ T5314] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   60.979602][ T5314] Call Trace:
[   60.981256][ T5314]  <TASK>
[   60.982797][ T5314]  ? __warn+0x165/0x4d0
[   60.984571][ T5314]  ? rate_control_rate_init+0x5ec/0x680
[   60.986967][ T5314]  ? report_bug+0x2b3/0x500
[   60.988666][ T5314]  ? rate_control_rate_init+0x5ec/0x680
[   60.991065][ T5314]  ? handle_bug+0x60/0x90
[   60.993324][ T5314]  ? exc_invalid_op+0x1a/0x50
[   60.995438][ T5314]  ? asm_exc_invalid_op+0x1a/0x20
[   60.997680][ T5314]  ? rate_control_rate_init+0x135/0x680
[   61.000170][ T5314]  ? rate_control_rate_init+0x220/0x680
[   61.002785][ T5314]  ? rate_control_rate_init+0x5eb/0x680
[   61.005326][ T5314]  ? rate_control_rate_init+0x5ec/0x680
[   61.007423][ T5314]  rate_control_rate_init_all_links+0xfc/0x190
[   61.009721][ T5314]  sta_apply_auth_flags+0x1b6/0x410
[   61.011732][ T5314]  sta_apply_parameters+0xe23/0x1550
[   61.013730][ T5314]  ieee80211_add_station+0x3da/0x630
[   61.015649][ T5314]  rdev_add_station+0x11b/0x2b0
[   61.017482][ T5314]  nl80211_new_station+0x1d53/0x2550
[   61.019326][ T5314]  ? __pfx_nl80211_new_station+0x10/0x10
[   61.021475][ T5314]  ? netdev_run_todo+0xf88/0x1000
[   61.023517][ T5314]  genl_rcv_msg+0xb14/0xec0
[   61.025290][ T5314]  ? __pfx_genl_rcv_msg+0x10/0x10
[   61.027268][ T5314]  ? __pfx_lock_acquire+0x10/0x10
[   61.029167][ T5314]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   61.031318][ T5314]  ? __pfx_nl80211_new_station+0x10/0x10
[   61.033545][ T5314]  ? __pfx_nl80211_post_doit+0x10/0x10
[   61.035554][ T5314]  ? __pfx___might_resched+0x10/0x10
[   61.037488][ T5314]  netlink_rcv_skb+0x1e3/0x430
[   61.039219][ T5314]  ? __pfx_genl_rcv_msg+0x10/0x10
[   61.041112][ T5314]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   61.043155][ T5314]  ? __netlink_deliver_tap+0x7aa/0x7f0
[   61.045207][ T5314]  genl_rcv+0x28/0x40
[   61.046731][ T5314]  netlink_unicast+0x7f6/0x990
[   61.048660][ T5314]  ? __pfx_netlink_unicast+0x10/0x10
[   61.050575][ T5314]  ? __virt_addr_valid+0x45f/0x530
[   61.052474][ T5314]  ? __phys_addr_symbol+0x2f/0x70
[   61.054566][ T5314]  ? __check_object_size+0x47a/0x730
[   61.056539][ T5314]  netlink_sendmsg+0x8e4/0xcb0
[   61.058387][ T5314]  ? __pfx_netlink_sendmsg+0x10/0x10
[   61.060401][ T5314]  ? aa_sock_msg_perm+0x91/0x160
[   61.062384][ T5314]  ? __pfx_netlink_sendmsg+0x10/0x10
[   61.064486][ T5314]  __sock_sendmsg+0x221/0x270
[   61.066612][ T5314]  ____sys_sendmsg+0x52a/0x7e0
[   61.068931][ T5314]  ? __pfx_____sys_sendmsg+0x10/0x10
[   61.071339][ T5314]  ? __fget_files+0x2a/0x410
[   61.073205][ T5314]  ? __fget_files+0x2a/0x410
[   61.074854][ T5314]  __sys_sendmsg+0x269/0x350
[   61.076555][ T5314]  ? __pfx___sys_sendmsg+0x10/0x10
[   61.078541][ T5314]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   61.080874][ T5314]  ? do_syscall_64+0x100/0x230
[   61.082661][ T5314]  ? do_syscall_64+0xb6/0x230
[   61.084478][ T5314]  do_syscall_64+0xf3/0x230
[   61.086287][ T5314]  ? clear_bhb_loop+0x35/0x90
[   61.088044][ T5314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.090165][ T5314] RIP: 0033:0x7f747bb85d29
[   61.091851][ T5314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.098631][ T5314] RSP: 002b:00007f747c8ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   61.101526][ T5314] RAX: ffffffffffffffda RBX: 00007f747bd75fa0 RCX: 00007f747bb85d29
[   61.104637][ T5314] RDX: 0000000000000000 RSI: 0000000020001080 RDI: 0000000000000007
[   61.107395][ T5314] RBP: 00007f747bc01aa8 R08: 0000000000000000 R09: 0000000000000000
[   61.110206][ T5314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   61.113138][ T5314] R13: 0000000000000000 R14: 00007f747bd75fa0 R15: 00007fff9b2e5168
[   61.116049][ T5314]  </TASK>
[   61.117177][ T5314] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   61.119787][ T5314] CPU: 0 UID: 0 PID: 5314 Comm: syz.0.0 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[   61.123650][ T5314] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.127689][ T5314] Call Trace:
[   61.128966][ T5314]  <TASK>
[   61.130163][ T5314]  dump_stack_lvl+0x241/0x360
[   61.131991][ T5314]  ? __pfx_dump_stack_lvl+0x10/0x10
[   61.133986][ T5314]  ? __pfx__printk+0x10/0x10
[   61.135706][ T5314]  ? vscnprintf+0x5d/0x90
[   61.137245][ T5314]  panic+0x349/0x880
[   61.138685][ T5314]  ? __warn+0x174/0x4d0
[   61.140224][ T5314]  ? __pfx_panic+0x10/0x10
[   61.141894][ T5314]  __warn+0x344/0x4d0
[   61.143361][ T5314]  ? rate_control_rate_init+0x5ec/0x680
[   61.145440][ T5314]  report_bug+0x2b3/0x500
[   61.147055][ T5314]  ? rate_control_rate_init+0x5ec/0x680
[   61.149115][ T5314]  handle_bug+0x60/0x90
[   61.150674][ T5314]  exc_invalid_op+0x1a/0x50
[   61.152310][ T5314]  asm_exc_invalid_op+0x1a/0x20
[   61.154159][ T5314] RIP: 0010:rate_control_rate_init+0x5ec/0x680
[   61.156358][ T5314] Code: 8b 82 01 00 00 20 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 00 9c 65 f6 90 0f 0b 90 eb e2 e8 f5 9b 65 f6 90 <0f> 0b 90 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d e9 8e 00 00 00
[   61.163389][ T5314] RSP: 0018:ffffc9000d4a6fd0 EFLAGS: 00010287
[   61.165546][ T5314] RAX: ffffffff8b39d7fb RBX: 0000000000000001 RCX: 0000000000100000
[   61.168293][ T5314] RDX: ffffc9000e8ca000 RSI: 0000000000000365 RDI: 0000000000000366
[   61.171022][ T5314] RBP: ffffffff8b39d345 R08: ffffffff8b39d430 R09: 1ffffffff2854910
[   61.173718][ T5314] R10: dffffc0000000000 R11: fffffbfff2854911 R12: ffff888052d10e40
[   61.176364][ T5314] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff1100871580a
[   61.179035][ T5314]  ? rate_control_rate_init+0x135/0x680
[   61.181026][ T5314]  ? rate_control_rate_init+0x220/0x680
[   61.183081][ T5314]  ? rate_control_rate_init+0x5eb/0x680
[   61.185139][ T5314]  rate_control_rate_init_all_links+0xfc/0x190
[   61.187387][ T5314]  sta_apply_auth_flags+0x1b6/0x410
[   61.189387][ T5314]  sta_apply_parameters+0xe23/0x1550
[   61.191397][ T5314]  ieee80211_add_station+0x3da/0x630
[   61.193209][ T5314]  rdev_add_station+0x11b/0x2b0
[   61.194719][ T5314]  nl80211_new_station+0x1d53/0x2550
[   61.196610][ T5314]  ? __pfx_nl80211_new_station+0x10/0x10
[   61.198430][ T5314]  ? netdev_run_todo+0xf88/0x1000
[   61.200269][ T5314]  genl_rcv_msg+0xb14/0xec0
[   61.202634][ T5314]  ? __pfx_genl_rcv_msg+0x10/0x10
[   61.205091][ T5314]  ? __pfx_lock_acquire+0x10/0x10
[   61.207384][ T5314]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   61.209372][ T5314]  ? __pfx_nl80211_new_station+0x10/0x10
[   61.211587][ T5314]  ? __pfx_nl80211_post_doit+0x10/0x10
[   61.213547][ T5314]  ? __pfx___might_resched+0x10/0x10
[   61.215368][ T5314]  netlink_rcv_skb+0x1e3/0x430
[   61.217106][ T5314]  ? __pfx_genl_rcv_msg+0x10/0x10
[   61.218912][ T5314]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   61.220946][ T5314]  ? __netlink_deliver_tap+0x7aa/0x7f0
[   61.222997][ T5314]  genl_rcv+0x28/0x40
[   61.224460][ T5314]  netlink_unicast+0x7f6/0x990
[   61.226232][ T5314]  ? __pfx_netlink_unicast+0x10/0x10
[   61.228250][ T5314]  ? __virt_addr_valid+0x45f/0x530
[   61.230152][ T5314]  ? __phys_addr_symbol+0x2f/0x70
[   61.231918][ T5314]  ? __check_object_size+0x47a/0x730
[   61.233806][ T5314]  netlink_sendmsg+0x8e4/0xcb0
[   61.235440][ T5314]  ? __pfx_netlink_sendmsg+0x10/0x10
[   61.237377][ T5314]  ? aa_sock_msg_perm+0x91/0x160
[   61.239232][ T5314]  ? __pfx_netlink_sendmsg+0x10/0x10
[   61.241209][ T5314]  __sock_sendmsg+0x221/0x270
[   61.243037][ T5314]  ____sys_sendmsg+0x52a/0x7e0
[   61.244876][ T5314]  ? __pfx_____sys_sendmsg+0x10/0x10
[   61.246798][ T5314]  ? __fget_files+0x2a/0x410
[   61.248528][ T5314]  ? __fget_files+0x2a/0x410
[   61.250273][ T5314]  __sys_sendmsg+0x269/0x350
[   61.252048][ T5314]  ? __pfx___sys_sendmsg+0x10/0x10
[   61.254023][ T5314]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   61.256448][ T5314]  ? do_syscall_64+0x100/0x230
[   61.258198][ T5314]  ? do_syscall_64+0xb6/0x230
[   61.259903][ T5314]  do_syscall_64+0xf3/0x230
[   61.261651][ T5314]  ? clear_bhb_loop+0x35/0x90
[   61.263267][ T5314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.265411][ T5314] RIP: 0033:0x7f747bb85d29
[   61.266944][ T5314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.273844][ T5314] RSP: 002b:00007f747c8ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   61.277306][ T5314] RAX: ffffffffffffffda RBX: 00007f747bd75fa0 RCX: 00007f747bb85d29
[   61.280326][ T5314] RDX: 0000000000000000 RSI: 0000000020001080 RDI: 0000000000000007
[   61.283198][ T5314] RBP: 00007f747bc01aa8 R08: 0000000000000000 R09: 0000000000000000
[   61.286090][ T5314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   61.288995][ T5314] R13: 0000000000000000 R14: 00007f747bd75fa0 R15: 00007fff9b2e5168
[   61.291797][ T5314]  </TASK>
[   61.293161][ T5314] Kernel Offset: disabled
[   61.294807][ T5314] Rebooting in 86400 seconds..