Warning: Permanently added '10.128.1.13' (ED25519) to the list of known hosts.
2025/07/14 04:41:17 ignoring optional flag "sandboxArg"="0"
2025/07/14 04:41:19 parsed 1 programs
[ 90.349770][ T5796] cgroup: Unknown subsys name 'net'
[ 90.515671][ T5796] cgroup: Unknown subsys name 'rlimit'
[ 92.274468][ T5796] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 92.290865][ T788] cfg80211: failed to load regulatory.db
[ 95.353670][ T5829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 95.362148][ T5829] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 95.370580][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 95.379587][ T5829] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 95.387726][ T5829] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 95.395224][ T5829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 95.973861][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 95.981960][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 96.030230][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 96.039708][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 97.748447][ T5867] chnl_net:caif_netlink_parms(): no params data found
[ 97.859276][ T5867] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.867555][ T5867] bridge0: port 1(bridge_slave_0) entered disabled state
[ 97.874868][ T5867] bridge_slave_0: entered allmulticast mode
[ 97.882689][ T5867] bridge_slave_0: entered promiscuous mode
[ 97.895566][ T5867] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.903049][ T5867] bridge0: port 2(bridge_slave_1) entered disabled state
[ 97.910392][ T5867] bridge_slave_1: entered allmulticast mode
[ 97.919398][ T5867] bridge_slave_1: entered promiscuous mode
[ 97.969870][ T5867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 97.981621][ T5867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 98.023622][ T5867] team0: Port device team_slave_0 added
[ 98.033706][ T5867] team0: Port device team_slave_1 added
[ 98.067828][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 98.074826][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 98.101339][ T5867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 98.115551][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 98.122700][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 98.149562][ T5867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 98.202007][ T5867] hsr_slave_0: entered promiscuous mode
[ 98.208494][ T5867] hsr_slave_1: entered promiscuous mode
[ 98.406213][ T5867] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 98.419812][ T5867] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 98.439712][ T5867] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 98.450352][ T5867] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 98.485704][ T5867] bridge0: port 2(bridge_slave_1) entered blocking state
[ 98.493408][ T5867] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 98.501841][ T5867] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.509461][ T5867] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 98.579264][ T5867] 8021q: adding VLAN 0 to HW filter on device bond0
[ 98.609995][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.619659][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.639544][ T5867] 8021q: adding VLAN 0 to HW filter on device team0
[ 98.658516][ T1095] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.665729][ T1095] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 98.687569][ T1095] bridge0: port 2(bridge_slave_1) entered blocking state
[ 98.694822][ T1095] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 98.932066][ T5867] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 98.974046][ T5867] veth0_vlan: entered promiscuous mode
[ 98.993930][ T5867] veth1_vlan: entered promiscuous mode
[ 99.035183][ T5867] veth0_macvtap: entered promiscuous mode
[ 99.047584][ T5867] veth1_macvtap: entered promiscuous mode
[ 99.073123][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 99.088232][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 99.103239][ T5867] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 99.113309][ T5867] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 99.122213][ T5867] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 99.132165][ T5867] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 99.316865][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/07/14 04:41:31 executed programs: 0
[ 100.030797][ T5103] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 100.038990][ T5103] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 100.049337][ T5103] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 100.060363][ T5103] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 100.069705][ T5103] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 100.077694][ T5103] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 100.262057][ T5897] chnl_net:caif_netlink_parms(): no params data found
[ 100.337915][ T5897] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.345120][ T5897] bridge0: port 1(bridge_slave_0) entered disabled state
[ 100.352673][ T5897] bridge_slave_0: entered allmulticast mode
[ 100.359786][ T5897] bridge_slave_0: entered promiscuous mode
[ 100.369905][ T5897] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.377627][ T5897] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.384794][ T5897] bridge_slave_1: entered allmulticast mode
[ 100.392124][ T5897] bridge_slave_1: entered promiscuous mode
[ 100.429038][ T5897] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.441092][ T5897] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 100.482172][ T5897] team0: Port device team_slave_0 added
[ 100.492619][ T5897] team0: Port device team_slave_1 added
[ 100.522793][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 100.530802][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.557264][ T5897] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 100.570628][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 100.577721][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.604240][ T5897] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 100.660820][ T5897] hsr_slave_0: entered promiscuous mode
[ 100.667698][ T5897] hsr_slave_1: entered promiscuous mode
[ 100.674022][ T5897] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 100.682116][ T5897] Cannot create hsr debugfs directory
[ 102.029880][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 102.127829][ T5829] Bluetooth: hci0: command tx timeout
[ 104.206502][ T5829] Bluetooth: hci0: command tx timeout
[ 104.318954][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 104.373638][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 105.357998][ T12] hsr_slave_0: left promiscuous mode
[ 105.364609][ T12] hsr_slave_1: left promiscuous mode
[ 105.373309][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 105.381542][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 105.392871][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 105.401926][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 105.413500][ T12] bridge_slave_1: left allmulticast mode
[ 105.419454][ T12] bridge_slave_1: left promiscuous mode
[ 105.426245][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 105.442866][ T12] bridge_slave_0: left allmulticast mode
[ 105.449039][ T12] bridge_slave_0: left promiscuous mode
[ 105.454862][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 105.491841][ T12] veth1_macvtap: left promiscuous mode
[ 105.497957][ T12] veth0_macvtap: left promiscuous mode
[ 105.503667][ T12] veth1_vlan: left promiscuous mode
[ 105.511446][ T12] veth0_vlan: left promiscuous mode
[ 105.917746][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 105.953329][ T12] team0 (unregistering): Port device team_slave_0 removed
[ 105.985495][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 106.020660][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 106.298955][ T5829] Bluetooth: hci0: command tx timeout
[ 106.366254][ T12] bond0 (unregistering): Released all slaves
[ 106.459073][ T5897] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 106.470579][ T5897] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 106.480305][ T5897] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 106.494682][ T5897] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 106.603788][ T5897] 8021q: adding VLAN 0 to HW filter on device bond0
[ 106.639668][ T5897] 8021q: adding VLAN 0 to HW filter on device team0
[ 106.652661][ T58] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.659914][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 106.679332][ T77] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.686649][ T77] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 106.927821][ T5897] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 106.980163][ T5897] veth0_vlan: entered promiscuous mode
[ 107.000727][ T5897] veth1_vlan: entered promiscuous mode
[ 107.043732][ T5897] veth0_macvtap: entered promiscuous mode
[ 107.055045][ T5897] veth1_macvtap: entered promiscuous mode
[ 107.073647][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 107.095449][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 107.110725][ T5897] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.121669][ T5897] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.130918][ T5897] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.140935][ T5897] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.224291][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.233538][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.275148][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.283178][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.400363][ C1] ------------[ cut here ]------------
[ 107.406245][ C1] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0xfff with flags 0x20
[ 107.417531][ C1] WARNING: CPU: 1 PID: 5897 at net/mac80211/rate.c:385 __rate_control_send_low+0x635/0x880
[ 107.427693][ C1] Modules linked in:
[ 107.431840][ C1] CPU: 1 PID: 5897 Comm: syz-executor Not tainted 6.6.97-syzkaller #0
[ 107.440104][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 107.450255][ C1] RIP: 0010:__rate_control_send_low+0x635/0x880
[ 107.456671][ C1] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 c0 87 be 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 db 6e 69 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff
[ 107.476374][ C1] RSP: 0018:ffffc900001f0560 EFLAGS: 00010246
[ 107.482487][ C1] RAX: 4e21632c1f85dd00 RBX: 000000000000000c RCX: ffff888023a31e00
[ 107.490551][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[ 107.498611][ C1] RBP: 0000000000000084 R08: ffffc900001f0167 R09: 1ffff9200003e02c
[ 107.506685][ C1] R10: dffffc0000000000 R11: fffff5200003e02d R12: 0000000000000020
[ 107.514702][ C1] R13: dffffc0000000000 R14: ffff88802caa3358 R15: ffff888077038de8
[ 107.522748][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 107.531759][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 107.538423][ C1] CR2: 00007fb5a81b6078 CR3: 00000000239d4000 CR4: 00000000003506e0
[ 107.546483][ C1] Call Trace:
[ 107.549806][ C1]
[ 107.552712][ C1] rate_control_send_low+0x194/0x790
[ 107.558091][ C1] rate_control_get_rate+0x20b/0x5c0
[ 107.563435][ C1] ieee80211_beacon_get_finish+0x38d/0x6b0
[ 107.569349][ C1] ? ieee80211_set_beacon_cntdwn+0x660/0x660
[ 107.575474][ C1] ? __local_bh_enable_ip+0x12e/0x1c0
[ 107.580940][ C1] ? _local_bh_enable+0xa0/0xa0
[ 107.585879][ C1] ieee80211_beacon_get_ap+0x1429/0x1970
[ 107.591577][ C1] ? ieee80211_tx_8023+0x3c0/0x3c0
[ 107.596788][ C1] ? read_lock_is_recursive+0x20/0x20
[ 107.602218][ C1] ? __ieee80211_beacon_get+0x36/0x1600
[ 107.607849][ C1] __ieee80211_beacon_get+0x10eb/0x1600
[ 107.613537][ C1] ? __ieee80211_beacon_get+0x36/0x1600
[ 107.619173][ C1] ieee80211_beacon_get_tim+0xb8/0x560
[ 107.624687][ C1] ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 107.631680][ C1] mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 107.637350][ C1] __iterate_interfaces+0x243/0x500
[ 107.642616][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 107.648955][ C1] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 107.656356][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 107.662650][ C1] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 107.669771][ C1] mac80211_hwsim_beacon+0xbb/0x1b0
[ 107.675020][ C1] __hrtimer_run_queues+0x51e/0xc40
[ 107.680323][ C1] ? hw_scan_work+0x1060/0x1060
[ 107.685241][ C1] ? hrtimer_interrupt+0x9c0/0x9c0
[ 107.690442][ C1] ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 107.696604][ C1] hrtimer_run_softirq+0x187/0x2b0
[ 107.701763][ C1] handle_softirqs+0x280/0x820
[ 107.706609][ C1] ? __irq_exit_rcu+0xc7/0x190
[ 107.711418][ C1] ? do_softirq+0x180/0x180
[ 107.715995][ C1] ? irqtime_account_irq+0xb6/0x1c0
[ 107.721252][ C1] __irq_exit_rcu+0xc7/0x190
[ 107.725915][ C1] ? irq_exit_rcu+0x20/0x20
[ 107.730473][ C1] irq_exit_rcu+0x9/0x20
[ 107.734759][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 107.740476][ C1]
[ 107.743445][ C1]
[ 107.746445][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 107.752478][ C1] RIP: 0010:page_table_check_clear+0x241/0x6a0
[ 107.758740][ C1] Code: 04 00 00 00 e8 10 26 f5 ff 4c 89 e0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 0f 85 ff 00 00 00 41 8b 2c 24 <31> ff 89 ee e8 f6 78 9c ff 85 ed 0f 85 8d 01 00 00 49 8d 7c 24 04
[ 107.778450][ C1] RSP: 0018:ffffc900033776e0 EFLAGS: 00000246
[ 107.784562][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[ 107.792616][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88801b4dfb70
[ 107.800676][ C1] RBP: 0000000000000000 R08: ffff88801b4dfb73 R09: 1ffff1100369bf6e
[ 107.808735][ C1] R10: dffffc0000000000 R11: ffffed100369bf6f R12: ffff88801b4dfb70
[ 107.816786][ C1] R13: 0000000000000000 R14: ffff88801b4dfb30 R15: 1ffffffff2de2f9c
[ 107.824933][ C1] unmap_page_range+0x1ad1/0x2fe0
[ 107.830119][ C1] ? copy_page_range+0x3600/0x3600
[ 107.835304][ C1] ? unmap_single_vma+0x1b0/0x2a0
[ 107.840426][ C1] unmap_vmas+0x25e/0x3a0
[ 107.844825][ C1] ? unmap_page_range+0x2fe0/0x2fe0
[ 107.850139][ C1] ? __lock_acquire+0x7c80/0x7c80
[ 107.855233][ C1] exit_mmap+0x200/0xb50
[ 107.859586][ C1] ? exit_mm_release+0x1a/0x30
[ 107.864401][ C1] ? vm_brk+0x30/0x30
[ 107.868468][ C1] ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 107.874187][ C1] ? uprobe_clear_state+0x278/0x290
[ 107.879476][ C1] ? mm_update_next_owner+0x562/0x6c0
[ 107.884908][ C1] __mmput+0x118/0x3c0
[ 107.889065][ C1] exit_mm+0x1da/0x2c0
[ 107.893185][ C1] ? do_exit+0x23c0/0x23c0
[ 107.897684][ C1] ? taskstats_exit+0x35e/0x9e0
[ 107.902596][ C1] do_exit+0x88e/0x23c0
[ 107.906839][ C1] ? put_task_struct+0xc0/0xc0
[ 107.911735][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 107.917791][ C1] ? lock_chain_count+0x20/0x20
[ 107.922686][ C1] ? _raw_spin_lock_irq+0xaf/0xe0
[ 107.927796][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 107.933207][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 107.939317][ C1] ? _raw_spin_unlock_irq+0x23/0x50
[ 107.944565][ C1] ? lockdep_hardirqs_on+0x98/0x150
[ 107.949845][ C1] do_group_exit+0x21b/0x2d0
[ 107.954493][ C1] __x64_sys_exit_group+0x3f/0x40
[ 107.959604][ C1] do_syscall_64+0x55/0xb0
[ 107.964078][ C1] ? clear_bhb_loop+0x40/0x90
[ 107.968851][ C1] ? clear_bhb_loop+0x40/0x90
[ 107.973578][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 107.979552][ C1] RIP: 0033:0x7fb5a7f8e929
[ 107.984028][ C1] Code: Unable to access opcode bytes at 0x7fb5a7f8e8ff.
[ 107.991124][ C1] RSP: 002b:00007ffe0d182108 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 107.999639][ C1] RAX: ffffffffffffffda RBX: 00007fb5a801231f RCX: 00007fb5a7f8e929
[ 108.007788][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[ 108.015803][ C1] RBP: 00007fb5a8012331 R08: 00007ffe0d17fea7 R09: 00000000000927c0
[ 108.023858][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 108.031928][ C1] R13: 00000000000927c0 R14: 000000000001a340 R15: 00007ffe0d1822b0
[ 108.040001][ C1]
[ 108.043059][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 108.050379][ C1] CPU: 1 PID: 5897 Comm: syz-executor Not tainted 6.6.97-syzkaller #0
[ 108.058560][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 108.068641][ C1] Call Trace:
[ 108.071945][ C1]
[ 108.074816][ C1] dump_stack_lvl+0x16c/0x230
[ 108.079533][ C1] ? show_regs_print_info+0x20/0x20
[ 108.084773][ C1] ? load_image+0x3b0/0x3b0
[ 108.089312][ C1] panic+0x2c0/0x710
[ 108.093236][ C1] ? bpf_jit_dump+0xd0/0xd0
[ 108.097779][ C1] __warn+0x2e0/0x470
[ 108.101778][ C1] ? __rate_control_send_low+0x635/0x880
[ 108.107443][ C1] ? __rate_control_send_low+0x635/0x880
[ 108.113110][ C1] report_bug+0x2be/0x4f0
[ 108.117478][ C1] ? __rate_control_send_low+0x635/0x880
[ 108.123135][ C1] ? __rate_control_send_low+0x635/0x880
[ 108.128790][ C1] ? __rate_control_send_low+0x637/0x880
[ 108.134455][ C1] handle_bug+0xcf/0x120
[ 108.138733][ C1] exc_invalid_op+0x1a/0x50
[ 108.143280][ C1] asm_exc_invalid_op+0x1a/0x20
[ 108.148160][ C1] RIP: 0010:__rate_control_send_low+0x635/0x880
[ 108.154455][ C1] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 c0 87 be 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 db 6e 69 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff
[ 108.174220][ C1] RSP: 0018:ffffc900001f0560 EFLAGS: 00010246
[ 108.180318][ C1] RAX: 4e21632c1f85dd00 RBX: 000000000000000c RCX: ffff888023a31e00
[ 108.188316][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[ 108.196313][ C1] RBP: 0000000000000084 R08: ffffc900001f0167 R09: 1ffff9200003e02c
[ 108.204309][ C1] R10: dffffc0000000000 R11: fffff5200003e02d R12: 0000000000000020
[ 108.212314][ C1] R13: dffffc0000000000 R14: ffff88802caa3358 R15: ffff888077038de8
[ 108.220337][ C1] rate_control_send_low+0x194/0x790
[ 108.225654][ C1] rate_control_get_rate+0x20b/0x5c0
[ 108.230969][ C1] ieee80211_beacon_get_finish+0x38d/0x6b0
[ 108.236806][ C1] ? ieee80211_set_beacon_cntdwn+0x660/0x660
[ 108.242810][ C1] ? __local_bh_enable_ip+0x12e/0x1c0
[ 108.248208][ C1] ? _local_bh_enable+0xa0/0xa0
[ 108.253088][ C1] ieee80211_beacon_get_ap+0x1429/0x1970
[ 108.258762][ C1] ? ieee80211_tx_8023+0x3c0/0x3c0
[ 108.263924][ C1] ? read_lock_is_recursive+0x20/0x20
[ 108.269336][ C1] ? __ieee80211_beacon_get+0x36/0x1600
[ 108.274903][ C1] __ieee80211_beacon_get+0x10eb/0x1600
[ 108.280479][ C1] ? __ieee80211_beacon_get+0x36/0x1600
[ 108.286054][ C1] ieee80211_beacon_get_tim+0xb8/0x560
[ 108.291538][ C1] ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 108.298326][ C1] mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 108.303983][ C1] __iterate_interfaces+0x243/0x500
[ 108.309201][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 108.315548][ C1] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 108.322939][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 108.329205][ C1] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 108.336251][ C1] mac80211_hwsim_beacon+0xbb/0x1b0
[ 108.341493][ C1] __hrtimer_run_queues+0x51e/0xc40
[ 108.346737][ C1] ? hw_scan_work+0x1060/0x1060
[ 108.351625][ C1] ? hrtimer_interrupt+0x9c0/0x9c0
[ 108.356847][ C1] ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 108.363025][ C1] hrtimer_run_softirq+0x187/0x2b0
[ 108.368163][ C1] handle_softirqs+0x280/0x820
[ 108.372947][ C1] ? __irq_exit_rcu+0xc7/0x190
[ 108.377732][ C1] ? do_softirq+0x180/0x180
[ 108.382249][ C1] ? irqtime_account_irq+0xb6/0x1c0
[ 108.387600][ C1] __irq_exit_rcu+0xc7/0x190
[ 108.392246][ C1] ? irq_exit_rcu+0x20/0x20
[ 108.396779][ C1] irq_exit_rcu+0x9/0x20
[ 108.401044][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 108.406694][ C1]
[ 108.409639][ C1]
[ 108.412585][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 108.418588][ C1] RIP: 0010:page_table_check_clear+0x241/0x6a0
[ 108.424765][ C1] Code: 04 00 00 00 e8 10 26 f5 ff 4c 89 e0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 0f 85 ff 00 00 00 41 8b 2c 24 <31> ff 89 ee e8 f6 78 9c ff 85 ed 0f 85 8d 01 00 00 49 8d 7c 24 04
[ 108.444406][ C1] RSP: 0018:ffffc900033776e0 EFLAGS: 00000246
[ 108.450494][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[ 108.458496][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88801b4dfb70
[ 108.466485][ C1] RBP: 0000000000000000 R08: ffff88801b4dfb73 R09: 1ffff1100369bf6e
[ 108.474474][ C1] R10: dffffc0000000000 R11: ffffed100369bf6f R12: ffff88801b4dfb70
[ 108.482462][ C1] R13: 0000000000000000 R14: ffff88801b4dfb30 R15: 1ffffffff2de2f9c
[ 108.490492][ C1] unmap_page_range+0x1ad1/0x2fe0
[ 108.495579][ C1] ? copy_page_range+0x3600/0x3600
[ 108.500722][ C1] ? unmap_single_vma+0x1b0/0x2a0
[ 108.505772][ C1] unmap_vmas+0x25e/0x3a0
[ 108.510141][ C1] ? unmap_page_range+0x2fe0/0x2fe0
[ 108.515366][ C1] ? __lock_acquire+0x7c80/0x7c80
[ 108.520438][ C1] exit_mmap+0x200/0xb50
[ 108.524714][ C1] ? exit_mm_release+0x1a/0x30
[ 108.529511][ C1] ? vm_brk+0x30/0x30
[ 108.533525][ C1] ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 108.539214][ C1] ? uprobe_clear_state+0x278/0x290
[ 108.544445][ C1] ? mm_update_next_owner+0x562/0x6c0
[ 108.549853][ C1] __mmput+0x118/0x3c0
[ 108.553951][ C1] exit_mm+0x1da/0x2c0
[ 108.558143][ C1] ? do_exit+0x23c0/0x23c0
[ 108.562670][ C1] ? taskstats_exit+0x35e/0x9e0
[ 108.567594][ C1] do_exit+0x88e/0x23c0
[ 108.571812][ C1] ? put_task_struct+0xc0/0xc0
[ 108.576604][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 108.582606][ C1] ? lock_chain_count+0x20/0x20
[ 108.587472][ C1] ? _raw_spin_lock_irq+0xaf/0xe0
[ 108.592512][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 108.597899][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 108.603892][ C1] ? _raw_spin_unlock_irq+0x23/0x50
[ 108.609107][ C1] ? lockdep_hardirqs_on+0x98/0x150
[ 108.614341][ C1] do_group_exit+0x21b/0x2d0
[ 108.618952][ C1] __x64_sys_exit_group+0x3f/0x40
[ 108.623991][ C1] do_syscall_64+0x55/0xb0
[ 108.628429][ C1] ? clear_bhb_loop+0x40/0x90
[ 108.633124][ C1] ? clear_bhb_loop+0x40/0x90
[ 108.637826][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 108.643738][ C1] RIP: 0033:0x7fb5a7f8e929
[ 108.648174][ C1] Code: Unable to access opcode bytes at 0x7fb5a7f8e8ff.
[ 108.655195][ C1] RSP: 002b:00007ffe0d182108 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 108.663618][ C1] RAX: ffffffffffffffda RBX: 00007fb5a801231f RCX: 00007fb5a7f8e929
[ 108.671605][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[ 108.679586][ C1] RBP: 00007fb5a8012331 R08: 00007ffe0d17fea7 R09: 00000000000927c0
[ 108.687579][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 108.695564][ C1] R13: 00000000000927c0 R14: 000000000001a340 R15: 00007ffe0d1822b0
[ 108.703560][ C1]
[ 108.706831][ C1] Kernel Offset: disabled
[ 108.711217][ C1] Rebooting in 86400 seconds..