program:
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000280)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48, 0x0, r3, 0x21eae}}, 0x20}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x401, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r3}, [@IFA_ADDRESS={0x14, 0x1, @local}]}, 0x2c}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ibss_ssid, 0xb, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
getpid() (async)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) (async)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00'}) (async)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000280)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48, 0x0, r3, 0x21eae}}, 0x20}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x401, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r3}, [@IFA_ADDRESS={0x14, 0x1, @local}]}, 0x2c}}, 0x0) (async)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@default_ibss_ssid, 0xb, 0x0) (async)

[   72.221937][ T5087] Bluetooth: hci0: command tx timeout
[   73.260172][ T5103] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[   73.271683][ T1026] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.275229][ T1026] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.292847][ T1026] ------------[ cut here ]------------
[   73.295194][ T1026] WARNING: CPU: 0 PID: 1026 at net/wireless/ibss.c:37 __cfg80211_ibss_joined+0x3d1/0x440
[   73.299382][ T1026] Modules linked in:
[   73.300895][ T1026] CPU: 0 UID: 0 PID: 1026 Comm: kworker/u4:5 Not tainted 6.11.0-syzkaller-08829-gaf9c191ac2a0 #0
[   73.305140][ T1026] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.309762][ T1026] Workqueue: cfg80211 cfg80211_event_work
[   73.312158][ T1026] RIP: 0010:__cfg80211_ibss_joined+0x3d1/0x440
[   73.314574][ T1026] Code: 0f 85 81 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 6b 66 78 f6 90 0f 0b 90 eb ba e8 60 66 78 f6 90 <0f> 0b 90 4c 8b 6c 24 18 eb aa e8 50 66 78 f6 90 0f 0b 90 e9 c2 fd
[   73.322243][ T1026] RSP: 0018:ffffc900024f7a20 EFLAGS: 00010293
[   73.324708][ T1026] RAX: ffffffff8b1c5350 RBX: 000000000000000b RCX: ffff888000da4880
[   73.327791][ T1026] RDX: 0000000000000000 RSI: ffffffff8c0aca40 RDI: ffffffff8c60ddc0
[   73.330842][ T1026] RBP: ffffc900024f7b00 R08: ffffffff94259837 R09: 1ffffffff284b306
[   73.333891][ T1026] R10: dffffc0000000000 R11: fffffbfff284b307 R12: ffff88801228b338
[   73.336969][ T1026] R13: 1ffff9200049ef4c R14: dffffc0000000000 R15: ffff88801fb54cd0
[   73.340180][ T1026] FS:  0000000000000000(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   73.343648][ T1026] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   73.346160][ T1026] CR2: 000000316e616c77 CR3: 0000000011b18000 CR4: 0000000000350ef0
[   73.349373][ T1026] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   73.352486][ T1026] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   73.355621][ T1026] Call Trace:
[   73.356943][ T1026]  <TASK>
[   73.358253][ T1026]  ? __warn+0x168/0x4e0
[   73.359943][ T1026]  ? __cfg80211_ibss_joined+0x3d1/0x440
[   73.362111][ T1026]  ? report_bug+0x2b3/0x500
[   73.363866][ T1026]  ? __cfg80211_ibss_joined+0x3d1/0x440
[   73.366006][ T1026]  ? handle_bug+0x60/0x90
[   73.367713][ T1026]  ? exc_invalid_op+0x1a/0x50
[   73.369638][ T1026]  ? asm_exc_invalid_op+0x1a/0x20
[   73.371552][ T1026]  ? __cfg80211_ibss_joined+0x3d0/0x440
[   73.373643][ T1026]  ? __cfg80211_ibss_joined+0x3d1/0x440
[   73.375748][ T1026]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[   73.378079][ T1026]  ? lockdep_hardirqs_on+0x99/0x150
[   73.380300][ T1026]  ? __pfx___cfg80211_ibss_joined+0x10/0x10
[   73.382679][ T1026]  ? cfg80211_event_work+0x27/0x40
[   73.384782][ T1026]  ? __pfx_lock_acquire+0x10/0x10
[   73.386737][ T1026]  ? __pfx___mutex_lock+0x10/0x10
[   73.388824][ T1026]  cfg80211_process_wdev_events+0x3af/0x510
[   73.391046][ T1026]  ? process_scheduled_works+0x976/0x1850
[   73.393119][ T1026]  cfg80211_process_rdev_events+0xac/0x110
[   73.395286][ T1026]  cfg80211_event_work+0x2f/0x40
[   73.397228][ T1026]  process_scheduled_works+0xa63/0x1850
[   73.399555][ T1026]  ? __pfx_process_scheduled_works+0x10/0x10
[   73.401838][ T1026]  ? assign_work+0x364/0x3d0
[   73.403616][ T1026]  worker_thread+0x870/0xd30
[   73.405362][ T1026]  ? __kthread_parkme+0x169/0x1d0
[   73.407255][ T1026]  ? __pfx_worker_thread+0x10/0x10
[   73.409319][ T1026]  kthread+0x2f0/0x390
[   73.410921][ T1026]  ? __pfx_worker_thread+0x10/0x10
[   73.412893][ T1026]  ? __pfx_kthread+0x10/0x10
[   73.414708][ T1026]  ret_from_fork+0x4b/0x80
[   73.416460][ T1026]  ? __pfx_kthread+0x10/0x10
[   73.418364][ T1026]  ret_from_fork_asm+0x1a/0x30
[   73.420368][ T1026]  </TASK>
[   73.421638][ T1026] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   73.424464][ T1026] CPU: 0 UID: 0 PID: 1026 Comm: kworker/u4:5 Not tainted 6.11.0-syzkaller-08829-gaf9c191ac2a0 #0
[   73.428496][ T1026] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.432668][ T1026] Workqueue: cfg80211 cfg80211_event_work
[   73.434918][ T1026] Call Trace:
[   73.436211][ T1026]  <TASK>
[   73.437384][ T1026]  dump_stack_lvl+0x241/0x360
[   73.439218][ T1026]  ? __pfx_dump_stack_lvl+0x10/0x10
[   73.441195][ T1026]  ? __pfx__printk+0x10/0x10
[   73.443024][ T1026]  ? vscnprintf+0x5d/0x90
[   73.444686][ T1026]  panic+0x349/0x880
[   73.446225][ T1026]  ? __warn+0x177/0x4e0
[   73.447719][ T1026]  ? __pfx_panic+0x10/0x10
[   73.449405][ T1026]  ? ret_from_fork_asm+0x1a/0x30
[   73.451326][ T1026]  __warn+0x34b/0x4e0
[   73.452866][ T1026]  ? __cfg80211_ibss_joined+0x3d1/0x440
[   73.455004][ T1026]  report_bug+0x2b3/0x500
[   73.456641][ T1026]  ? __cfg80211_ibss_joined+0x3d1/0x440
[   73.458769][ T1026]  handle_bug+0x60/0x90
[   73.460381][ T1026]  exc_invalid_op+0x1a/0x50
[   73.462060][ T1026]  asm_exc_invalid_op+0x1a/0x20
[   73.463783][ T1026] RIP: 0010:__cfg80211_ibss_joined+0x3d1/0x440
[   73.466113][ T1026] Code: 0f 85 81 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 6b 66 78 f6 90 0f 0b 90 eb ba e8 60 66 78 f6 90 <0f> 0b 90 4c 8b 6c 24 18 eb aa e8 50 66 78 f6 90 0f 0b 90 e9 c2 fd
[   73.473116][ T1026] RSP: 0018:ffffc900024f7a20 EFLAGS: 00010293
[   73.475365][ T1026] RAX: ffffffff8b1c5350 RBX: 000000000000000b RCX: ffff888000da4880
[   73.478371][ T1026] RDX: 0000000000000000 RSI: ffffffff8c0aca40 RDI: ffffffff8c60ddc0
[   73.481346][ T1026] RBP: ffffc900024f7b00 R08: ffffffff94259837 R09: 1ffffffff284b306
[   73.484096][ T1026] R10: dffffc0000000000 R11: fffffbfff284b307 R12: ffff88801228b338
[   73.486822][ T1026] R13: 1ffff9200049ef4c R14: dffffc0000000000 R15: ffff88801fb54cd0
[   73.489709][ T1026]  ? __cfg80211_ibss_joined+0x3d0/0x440
[   73.491766][ T1026]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[   73.493933][ T1026]  ? lockdep_hardirqs_on+0x99/0x150
[   73.495946][ T1026]  ? __pfx___cfg80211_ibss_joined+0x10/0x10
[   73.498138][ T1026]  ? cfg80211_event_work+0x27/0x40
[   73.499848][ T1026]  ? __pfx_lock_acquire+0x10/0x10
[   73.501731][ T1026]  ? __pfx___mutex_lock+0x10/0x10
[   73.503600][ T1026]  cfg80211_process_wdev_events+0x3af/0x510
[   73.505818][ T1026]  ? process_scheduled_works+0x976/0x1850
[   73.508049][ T1026]  cfg80211_process_rdev_events+0xac/0x110
[   73.510141][ T1026]  cfg80211_event_work+0x2f/0x40
[   73.512001][ T1026]  process_scheduled_works+0xa63/0x1850
[   73.514034][ T1026]  ? __pfx_process_scheduled_works+0x10/0x10
[   73.516304][ T1026]  ? assign_work+0x364/0x3d0
[   73.518112][ T1026]  worker_thread+0x870/0xd30
[   73.519926][ T1026]  ? __kthread_parkme+0x169/0x1d0
[   73.521926][ T1026]  ? __pfx_worker_thread+0x10/0x10
[   73.523950][ T1026]  kthread+0x2f0/0x390
[   73.525537][ T1026]  ? __pfx_worker_thread+0x10/0x10
[   73.527475][ T1026]  ? __pfx_kthread+0x10/0x10
[   73.529173][ T1026]  ret_from_fork+0x4b/0x80
[   73.530870][ T1026]  ? __pfx_kthread+0x10/0x10
[   73.532542][ T1026]  ret_from_fork_asm+0x1a/0x30
[   73.534332][ T1026]  </TASK>
[   73.535800][ T1026] Kernel Offset: disabled
[   73.537504][ T1026] Rebooting in 86400 seconds..