Warning: Permanently added '10.128.0.192' (ED25519) to the list of known hosts.
2025/07/14 03:01:54 ignoring optional flag "sandboxArg"="0"
2025/07/14 03:01:55 parsed 1 programs
[ 89.855800][ T5796] cgroup: Unknown subsys name 'net'
[ 89.998337][ T5796] cgroup: Unknown subsys name 'rlimit'
[ 91.803429][ T5796] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 92.231591][ T27] cfg80211: failed to load regulatory.db
[ 94.329736][ T5822] chnl_net:caif_netlink_parms(): no params data found
[ 94.427715][ T5822] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.435074][ T5822] bridge0: port 1(bridge_slave_0) entered disabled state
[ 94.443658][ T5822] bridge_slave_0: entered allmulticast mode
[ 94.451012][ T5822] bridge_slave_0: entered promiscuous mode
[ 94.461471][ T5822] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.469357][ T5822] bridge0: port 2(bridge_slave_1) entered disabled state
[ 94.476649][ T5822] bridge_slave_1: entered allmulticast mode
[ 94.484411][ T5822] bridge_slave_1: entered promiscuous mode
[ 94.517568][ T5822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 94.530118][ T5822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 94.566738][ T5822] team0: Port device team_slave_0 added
[ 94.576299][ T5822] team0: Port device team_slave_1 added
[ 94.627609][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 94.634795][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 94.661025][ T5822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 94.674025][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 94.681082][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 94.707063][ T5822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 94.751943][ T5822] hsr_slave_0: entered promiscuous mode
[ 94.760503][ T5822] hsr_slave_1: entered promiscuous mode
[ 94.936434][ T5822] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 94.957676][ T5822] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 94.968157][ T5822] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 94.979066][ T5822] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 95.019190][ T5822] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.026559][ T5822] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.034819][ T5822] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.042117][ T5822] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.116422][ T5822] 8021q: adding VLAN 0 to HW filter on device bond0
[ 95.137269][ T1133] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.147722][ T1133] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.165556][ T5822] 8021q: adding VLAN 0 to HW filter on device team0
[ 95.188805][ T58] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.196268][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.212745][ T58] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.219968][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.460013][ T5822] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 95.520605][ T5822] veth0_vlan: entered promiscuous mode
[ 95.534826][ T5822] veth1_vlan: entered promiscuous mode
[ 95.567101][ T5822] veth0_macvtap: entered promiscuous mode
[ 95.578895][ T5822] veth1_macvtap: entered promiscuous mode
[ 95.598011][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 95.616823][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 95.629706][ T5822] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.640026][ T5822] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.650148][ T5822] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.659008][ T5822] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.814613][ T3478] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.360212][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 97.369924][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 97.402057][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 97.410383][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 98.212951][ T5887] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 98.222732][ T5887] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 98.231049][ T5887] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 98.241790][ T5887] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 98.249735][ T5887] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 98.257139][ T5887] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 98.699328][ T3478] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/07/14 03:02:07 executed programs: 0
[ 98.815360][ T5887] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 98.827421][ T5887] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 98.836399][ T5887] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 98.846077][ T5887] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 98.854482][ T5887] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 98.862335][ T5887] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 99.033132][ T5897] chnl_net:caif_netlink_parms(): no params data found
[ 99.105649][ T5897] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.112940][ T5897] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.120465][ T5897] bridge_slave_0: entered allmulticast mode
[ 99.127696][ T5897] bridge_slave_0: entered promiscuous mode
[ 99.137759][ T5897] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.145331][ T5897] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.152881][ T5897] bridge_slave_1: entered allmulticast mode
[ 99.160629][ T5897] bridge_slave_1: entered promiscuous mode
[ 99.194650][ T5897] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 99.207182][ T5897] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 99.242927][ T5897] team0: Port device team_slave_0 added
[ 99.251832][ T5897] team0: Port device team_slave_1 added
[ 99.281801][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 99.289274][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 99.315978][ T5897] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 99.328939][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 99.336037][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 99.362731][ T5897] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 99.414352][ T5897] hsr_slave_0: entered promiscuous mode
[ 99.421432][ T5897] hsr_slave_1: entered promiscuous mode
[ 99.427725][ T5897] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 99.436032][ T5897] Cannot create hsr debugfs directory
[ 100.870488][ T3478] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 100.945599][ T3478] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 100.959840][ T5105] Bluetooth: hci0: command tx timeout
[ 101.838558][ T3478] hsr_slave_0: left promiscuous mode
[ 101.845778][ T3478] hsr_slave_1: left promiscuous mode
[ 101.853333][ T3478] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 101.863028][ T3478] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 101.873013][ T3478] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 101.883287][ T3478] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 101.892745][ T3478] bridge_slave_1: left allmulticast mode
[ 101.898449][ T3478] bridge_slave_1: left promiscuous mode
[ 101.907996][ T3478] bridge0: port 2(bridge_slave_1) entered disabled state
[ 101.925689][ T3478] bridge_slave_0: left allmulticast mode
[ 101.931875][ T3478] bridge_slave_0: left promiscuous mode
[ 101.938163][ T3478] bridge0: port 1(bridge_slave_0) entered disabled state
[ 101.976264][ T3478] veth1_macvtap: left promiscuous mode
[ 101.985165][ T3478] veth0_macvtap: left promiscuous mode
[ 101.992584][ T3478] veth1_vlan: left promiscuous mode
[ 101.998231][ T3478] veth0_vlan: left promiscuous mode
[ 102.474852][ T3478] team0 (unregistering): Port device team_slave_1 removed
[ 102.517040][ T3478] team0 (unregistering): Port device team_slave_0 removed
[ 102.564308][ T3478] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 102.621336][ T3478] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 103.023188][ T3478] bond0 (unregistering): Released all slaves
[ 103.029462][ T5105] Bluetooth: hci0: command tx timeout
[ 103.116396][ T5897] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 103.126797][ T5897] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 103.139430][ T5897] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 103.152295][ T5897] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 103.278443][ T5897] 8021q: adding VLAN 0 to HW filter on device bond0
[ 103.300088][ T5897] 8021q: adding VLAN 0 to HW filter on device team0
[ 103.314708][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 103.321955][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 103.340175][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 103.347440][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 103.661154][ T5897] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 103.747748][ T5897] veth0_vlan: entered promiscuous mode
[ 103.767988][ T5897] veth1_vlan: entered promiscuous mode
[ 103.796869][ T5897] veth0_macvtap: entered promiscuous mode
[ 103.807503][ T5897] veth1_macvtap: entered promiscuous mode
[ 103.827853][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 103.844780][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 103.857705][ T5897] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.867236][ T5897] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.876086][ T5897] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.885856][ T5897] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.951111][ T1133] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.966793][ T1133] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.995330][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.004079][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.200209][ C0] ------------[ cut here ]------------
[ 104.206035][ C0] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0xfff with flags 0x20
[ 104.217162][ C0] WARNING: CPU: 0 PID: 5788 at net/mac80211/rate.c:385 __rate_control_send_low+0x635/0x880
[ 104.227349][ C0] Modules linked in:
[ 104.231339][ C0] CPU: 0 PID: 5788 Comm: syz-execprog Not tainted 6.6.97-syzkaller #0
[ 104.239587][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 104.249769][ C0] RIP: 0010:__rate_control_send_low+0x635/0x880
[ 104.256074][ C0] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 c0 87 be 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 db 6e 69 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff
[ 104.275776][ C0] RSP: 0018:ffffc90000007560 EFLAGS: 00010246
[ 104.281952][ C0] RAX: 44d2230da0d4cb00 RBX: 000000000000000c RCX: ffff8880300e9e00
[ 104.290005][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[ 104.298024][ C0] RBP: 0000000000000084 R08: ffffc90000007167 R09: 1ffff92000000e2c
[ 104.306091][ C0] R10: dffffc0000000000 R11: fffff52000000e2d R12: 0000000000000020
[ 104.314165][ C0] R13: dffffc0000000000 R14: ffff888020493358 R15: ffff8880765702a8
[ 104.322214][ C0] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 104.331220][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.337845][ C0] CR2: 00007f0c9dfb6078 CR3: 0000000031e55000 CR4: 00000000003506f0
[ 104.345907][ C0] Call Trace:
[ 104.349246][ C0]
[ 104.352122][ C0] rate_control_send_low+0x194/0x790
[ 104.357431][ C0] rate_control_get_rate+0x20b/0x5c0
[ 104.362807][ C0] ieee80211_beacon_get_finish+0x38d/0x6b0
[ 104.368758][ C0] ? ieee80211_set_beacon_cntdwn+0x660/0x660
[ 104.374764][ C0] ? __local_bh_enable_ip+0x12e/0x1c0
[ 104.380207][ C0] ? _local_bh_enable+0xa0/0xa0
[ 104.385104][ C0] ieee80211_beacon_get_ap+0x1429/0x1970
[ 104.390906][ C0] ? ieee80211_tx_8023+0x3c0/0x3c0
[ 104.396092][ C0] ? read_lock_is_recursive+0x20/0x20
[ 104.401568][ C0] ? __ieee80211_beacon_get+0x36/0x1600
[ 104.407162][ C0] __ieee80211_beacon_get+0x10eb/0x1600
[ 104.412797][ C0] ? __ieee80211_beacon_get+0x36/0x1600
[ 104.418400][ C0] ieee80211_beacon_get_tim+0xb8/0x560
[ 104.423960][ C0] ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 104.430808][ C0] mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 104.436380][ C0] __iterate_interfaces+0x243/0x500
[ 104.441671][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 104.448056][ C0] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 104.455442][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 104.461860][ C0] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 104.468980][ C0] mac80211_hwsim_beacon+0xbb/0x1b0
[ 104.474250][ C0] __hrtimer_run_queues+0x51e/0xc40
[ 104.479576][ C0] ? hw_scan_work+0x1060/0x1060
[ 104.484483][ C0] ? hrtimer_interrupt+0x9c0/0x9c0
[ 104.489675][ C0] ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 104.495792][ C0] hrtimer_run_softirq+0x187/0x2b0
[ 104.501003][ C0] handle_softirqs+0x280/0x820
[ 104.505816][ C0] ? __irq_exit_rcu+0xc7/0x190
[ 104.510690][ C0] ? do_softirq+0x180/0x180
[ 104.515244][ C0] ? irqtime_account_irq+0xb6/0x1c0
[ 104.520529][ C0] __irq_exit_rcu+0xc7/0x190
[ 104.525158][ C0] ? irq_exit_rcu+0x20/0x20
[ 104.529755][ C0] irq_exit_rcu+0x9/0x20
[ 104.534034][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 104.539761][ C0]
[ 104.542727][ C0]
[ 104.545667][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 104.551729][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x60
[ 104.557885][ C0] Code: 00 00 f3 0f 1e fa 53 48 89 fb e8 13 00 00 00 48 8b 3d ac fe c4 0c 48 89 de 5b e9 43 de 57 00 cc cc cc f3 0f 1e fa 48 8b 04 24 <65> 48 8b 0d 80 23 7e 7e 65 8b 15 81 23 7e 7e 81 e2 00 01 ff 00 74
[ 104.577585][ C0] RSP: 0018:ffffc900046ff4b8 EFLAGS: 00000286
[ 104.583767][ C0] RAX: ffffffff81c8a17a RBX: ffff888024a8e880 RCX: ffff8880300e9e00
[ 104.591803][ C0] RDX: 0000000000000000 RSI: 00000000000001fe RDI: 0000000000000041
[ 104.599864][ C0] RBP: ffffc900046ff6b0 R08: ffffea0001d87307 R09: 1ffffd40003b0e60
[ 104.607901][ C0] R10: dffffc0000000000 R11: fffff940003b0e61 R12: 0000000000600000
[ 104.615968][ C0] R13: dffffc0000000000 R14: 0000000000449000 R15: ffff888071f57240
[ 104.624149][ C0] ? unmap_page_range+0x9ea/0x2fe0
[ 104.629384][ C0] unmap_page_range+0x9ea/0x2fe0
[ 104.634385][ C0] ? copy_page_range+0x3600/0x3600
[ 104.639598][ C0] ? unmap_single_vma+0x1b0/0x2a0
[ 104.644688][ C0] unmap_vmas+0x25e/0x3a0
[ 104.649127][ C0] ? unmap_page_range+0x2fe0/0x2fe0
[ 104.654380][ C0] ? __lock_acquire+0x7c80/0x7c80
[ 104.659536][ C0] exit_mmap+0x200/0xb50
[ 104.663830][ C0] ? exit_mm_release+0x1a/0x30
[ 104.668728][ C0] ? vm_brk+0x30/0x30
[ 104.672763][ C0] ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 104.678434][ C0] ? uprobe_clear_state+0x278/0x290
[ 104.683793][ C0] ? mm_update_next_owner+0x562/0x6c0
[ 104.689269][ C0] __mmput+0x118/0x3c0
[ 104.693373][ C0] exit_mm+0x1da/0x2c0
[ 104.697568][ C0] ? do_exit+0x23c0/0x23c0
[ 104.702067][ C0] ? taskstats_exit+0x35e/0x9e0
[ 104.706973][ C0] do_exit+0x88e/0x23c0
[ 104.711219][ C0] ? put_task_struct+0xc0/0xc0
[ 104.716035][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 104.722096][ C0] ? get_signal+0x1068/0x1400
[ 104.726822][ C0] ? lock_chain_count+0x20/0x20
[ 104.731750][ C0] ? _raw_spin_lock_irq+0xaf/0xe0
[ 104.736919][ C0] do_group_exit+0x21b/0x2d0
[ 104.741605][ C0] ? lockdep_hardirqs_on+0x98/0x150
[ 104.746895][ C0] get_signal+0x12fc/0x1400
[ 104.751518][ C0] arch_do_signal_or_restart+0x96/0x780
[ 104.757111][ C0] ? get_sigframe_size+0x20/0x20
[ 104.762153][ C0] ? exit_to_user_mode_loop+0x3b/0x110
[ 104.767691][ C0] exit_to_user_mode_loop+0x70/0x110
[ 104.773086][ C0] exit_to_user_mode_prepare+0xb1/0x140
[ 104.778870][ C0] syscall_exit_to_user_mode+0x1a/0x50
[ 104.784404][ C0] do_syscall_64+0x61/0xb0
[ 104.788932][ C0] ? clear_bhb_loop+0x40/0x90
[ 104.793673][ C0] ? clear_bhb_loop+0x40/0x90
[ 104.798371][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 104.804351][ C0] RIP: 0033:0x480143
[ 104.808296][ C0] Code: Unable to access opcode bytes at 0x480119.
[ 104.814955][ C0] RSP: 002b:000000c000097cf0 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca
[ 104.823452][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000480143
[ 104.831496][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c00007e948
[ 104.839533][ C0] RBP: 000000c000097d38 R08: 0000000000000000 R09: 0000000000000000
[ 104.847518][ C0] R10: 0000000000000000 R11: 0000000000000286 R12: 000000000000001e
[ 104.855562][ C0] R13: 0000000000000001 R14: 000000c000002a80 R15: 0000000000000001
[ 104.863620][ C0]
[ 104.866671][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 104.873963][ C0] CPU: 0 PID: 5788 Comm: syz-execprog Not tainted 6.6.97-syzkaller #0
[ 104.882120][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 104.892184][ C0] Call Trace:
[ 104.895476][ C0]
[ 104.898325][ C0] dump_stack_lvl+0x16c/0x230
[ 104.903031][ C0] ? show_regs_print_info+0x20/0x20
[ 104.908243][ C0] ? load_image+0x3b0/0x3b0
[ 104.912776][ C0] panic+0x2c0/0x710
[ 104.916704][ C0] ? bpf_jit_dump+0xd0/0xd0
[ 104.921271][ C0] __warn+0x2e0/0x470
[ 104.925281][ C0] ? __rate_control_send_low+0x635/0x880
[ 104.930928][ C0] ? __rate_control_send_low+0x635/0x880
[ 104.936573][ C0] report_bug+0x2be/0x4f0
[ 104.940923][ C0] ? __rate_control_send_low+0x635/0x880
[ 104.946565][ C0] ? __rate_control_send_low+0x635/0x880
[ 104.952210][ C0] ? __rate_control_send_low+0x637/0x880
[ 104.957851][ C0] handle_bug+0xcf/0x120
[ 104.962113][ C0] exc_invalid_op+0x1a/0x50
[ 104.966634][ C0] asm_exc_invalid_op+0x1a/0x20
[ 104.971520][ C0] RIP: 0010:__rate_control_send_low+0x635/0x880
[ 104.977786][ C0] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 c0 87 be 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 db 6e 69 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff
[ 104.997497][ C0] RSP: 0018:ffffc90000007560 EFLAGS: 00010246
[ 105.003577][ C0] RAX: 44d2230da0d4cb00 RBX: 000000000000000c RCX: ffff8880300e9e00
[ 105.011555][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[ 105.019548][ C0] RBP: 0000000000000084 R08: ffffc90000007167 R09: 1ffff92000000e2c
[ 105.027547][ C0] R10: dffffc0000000000 R11: fffff52000000e2d R12: 0000000000000020
[ 105.035542][ C0] R13: dffffc0000000000 R14: ffff888020493358 R15: ffff8880765702a8
[ 105.043556][ C0] rate_control_send_low+0x194/0x790
[ 105.048869][ C0] rate_control_get_rate+0x20b/0x5c0
[ 105.054171][ C0] ieee80211_beacon_get_finish+0x38d/0x6b0
[ 105.060015][ C0] ? ieee80211_set_beacon_cntdwn+0x660/0x660
[ 105.066023][ C0] ? __local_bh_enable_ip+0x12e/0x1c0
[ 105.071530][ C0] ? _local_bh_enable+0xa0/0xa0
[ 105.076420][ C0] ieee80211_beacon_get_ap+0x1429/0x1970
[ 105.082094][ C0] ? ieee80211_tx_8023+0x3c0/0x3c0
[ 105.087232][ C0] ? read_lock_is_recursive+0x20/0x20
[ 105.092645][ C0] ? __ieee80211_beacon_get+0x36/0x1600
[ 105.098200][ C0] __ieee80211_beacon_get+0x10eb/0x1600
[ 105.103756][ C0] ? __ieee80211_beacon_get+0x36/0x1600
[ 105.109317][ C0] ieee80211_beacon_get_tim+0xb8/0x560
[ 105.114961][ C0] ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 105.119137][ T5105] Bluetooth: hci0: command tx timeout
[ 105.127332][ C0] mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 105.133049][ C0] __iterate_interfaces+0x243/0x500
[ 105.138321][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 105.144590][ C0] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 105.151810][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 105.158156][ C0] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 105.165226][ C0] mac80211_hwsim_beacon+0xbb/0x1b0
[ 105.170474][ C0] __hrtimer_run_queues+0x51e/0xc40
[ 105.175720][ C0] ? hw_scan_work+0x1060/0x1060
[ 105.180592][ C0] ? hrtimer_interrupt+0x9c0/0x9c0
[ 105.185710][ C0] ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 105.191792][ C0] hrtimer_run_softirq+0x187/0x2b0
[ 105.196953][ C0] handle_softirqs+0x280/0x820
[ 105.201729][ C0] ? __irq_exit_rcu+0xc7/0x190
[ 105.206503][ C0] ? do_softirq+0x180/0x180
[ 105.211127][ C0] ? irqtime_account_irq+0xb6/0x1c0
[ 105.216363][ C0] __irq_exit_rcu+0xc7/0x190
[ 105.220979][ C0] ? irq_exit_rcu+0x20/0x20
[ 105.225511][ C0] irq_exit_rcu+0x9/0x20
[ 105.229773][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 105.235421][ C0]
[ 105.238361][ C0]
[ 105.241298][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 105.247291][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x60
[ 105.253384][ C0] Code: 00 00 f3 0f 1e fa 53 48 89 fb e8 13 00 00 00 48 8b 3d ac fe c4 0c 48 89 de 5b e9 43 de 57 00 cc cc cc f3 0f 1e fa 48 8b 04 24 <65> 48 8b 0d 80 23 7e 7e 65 8b 15 81 23 7e 7e 81 e2 00 01 ff 00 74
[ 105.273021][ C0] RSP: 0018:ffffc900046ff4b8 EFLAGS: 00000286
[ 105.279118][ C0] RAX: ffffffff81c8a17a RBX: ffff888024a8e880 RCX: ffff8880300e9e00
[ 105.287119][ C0] RDX: 0000000000000000 RSI: 00000000000001fe RDI: 0000000000000041
[ 105.295113][ C0] RBP: ffffc900046ff6b0 R08: ffffea0001d87307 R09: 1ffffd40003b0e60
[ 105.303096][ C0] R10: dffffc0000000000 R11: fffff940003b0e61 R12: 0000000000600000
[ 105.311107][ C0] R13: dffffc0000000000 R14: 0000000000449000 R15: ffff888071f57240
[ 105.319112][ C0] ? unmap_page_range+0x9ea/0x2fe0
[ 105.324265][ C0] unmap_page_range+0x9ea/0x2fe0
[ 105.329244][ C0] ? copy_page_range+0x3600/0x3600
[ 105.334396][ C0] ? unmap_single_vma+0x1b0/0x2a0
[ 105.339433][ C0] unmap_vmas+0x25e/0x3a0
[ 105.343776][ C0] ? unmap_page_range+0x2fe0/0x2fe0
[ 105.348982][ C0] ? __lock_acquire+0x7c80/0x7c80
[ 105.354209][ C0] exit_mmap+0x200/0xb50
[ 105.358470][ C0] ? exit_mm_release+0x1a/0x30
[ 105.363252][ C0] ? vm_brk+0x30/0x30
[ 105.367871][ C0] ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 105.373572][ C0] ? uprobe_clear_state+0x278/0x290
[ 105.378797][ C0] ? mm_update_next_owner+0x562/0x6c0
[ 105.384191][ C0] __mmput+0x118/0x3c0
[ 105.388269][ C0] exit_mm+0x1da/0x2c0
[ 105.392416][ C0] ? do_exit+0x23c0/0x23c0
[ 105.396906][ C0] ? taskstats_exit+0x35e/0x9e0
[ 105.401803][ C0] do_exit+0x88e/0x23c0
[ 105.406012][ C0] ? put_task_struct+0xc0/0xc0
[ 105.410803][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 105.416799][ C0] ? get_signal+0x1068/0x1400
[ 105.421497][ C0] ? lock_chain_count+0x20/0x20
[ 105.426360][ C0] ? _raw_spin_lock_irq+0xaf/0xe0
[ 105.431401][ C0] do_group_exit+0x21b/0x2d0
[ 105.436005][ C0] ? lockdep_hardirqs_on+0x98/0x150
[ 105.441243][ C0] get_signal+0x12fc/0x1400
[ 105.445779][ C0] arch_do_signal_or_restart+0x96/0x780
[ 105.451337][ C0] ? get_sigframe_size+0x20/0x20
[ 105.456291][ C0] ? exit_to_user_mode_loop+0x3b/0x110
[ 105.461766][ C0] exit_to_user_mode_loop+0x70/0x110
[ 105.467058][ C0] exit_to_user_mode_prepare+0xb1/0x140
[ 105.472673][ C0] syscall_exit_to_user_mode+0x1a/0x50
[ 105.478179][ C0] do_syscall_64+0x61/0xb0
[ 105.482640][ C0] ? clear_bhb_loop+0x40/0x90
[ 105.487325][ C0] ? clear_bhb_loop+0x40/0x90
[ 105.492011][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 105.497926][ C0] RIP: 0033:0x480143
[ 105.501836][ C0] Code: Unable to access opcode bytes at 0x480119.
[ 105.508336][ C0] RSP: 002b:000000c000097cf0 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca
[ 105.516773][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000480143
[ 105.524753][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000c00007e948
[ 105.532742][ C0] RBP: 000000c000097d38 R08: 0000000000000000 R09: 0000000000000000
[ 105.540736][ C0] R10: 0000000000000000 R11: 0000000000000286 R12: 000000000000001e
[ 105.548808][ C0] R13: 0000000000000001 R14: 000000c000002a80 R15: 0000000000000001
[ 105.556828][ C0]
[ 105.560214][ C0] Kernel Offset: disabled
[ 105.564623][ C0] Rebooting in 86400 seconds..