wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
------------[ cut here ]------------
no supported rates (0xffffffff) in rate_mask 0x0 with flags 0x0
WARNING: CPU: 1 PID: 31837 at net/mac80211/rate.c:359 __rate_control_send_low+0x4bb/0x580 net/mac80211/rate.c:359
Kernel panic - not syncing: panic_on_warn set ...

CPU: 1 PID: 31837 Comm: syz-executor.3 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1fc/0x2ef lib/dump_stack.c:118
 panic+0x26a/0x50e kernel/panic.c:186
 __warn.cold+0x20/0x5a kernel/panic.c:541
 report_bug+0x262/0x2b0 lib/bug.c:183
 fixup_bug arch/x86/kernel/traps.c:178 [inline]
 fixup_bug arch/x86/kernel/traps.c:173 [inline]
 do_error_trap+0x1d7/0x310 arch/x86/kernel/traps.c:296
 invalid_op+0x14/0x20 arch/x86/entry/entry_64.S:1038
RIP: 0010:__rate_control_send_low+0x4bb/0x580 net/mac80211/rate.c:359
Code: 0f 85 d6 00 00 00 48 8b 44 24 18 44 8b 24 a8 e8 9b 42 c6 f9 8b 54 24 24 44 89 e9 44 89 e6 48 c7 c7 80 98 67 89 e8 6a 7a 56 00 <0f> 0b e9 03 fe ff ff e8 79 42 c6 f9 41 83 cd 10 e9 32 fc ff ff e8
RSP: 0000:ffff8880ba106db8 EFLAGS: 00010282
RAX: 0000000000000000 RBX: ffff8880a9a51e28 RCX: 0000000000000000
RDX: 0000000000000100 RSI: ffffffff814dff01 RDI: ffffed1017420da9
RBP: ffff8880589bb548 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000005 R11: 0000000000000000 R12: 00000000ffffffff
R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000000
 rate_control_send_low+0x272/0x610 net/mac80211/rate.c:383
 minstrel_ht_get_rate+0x58/0x1510 net/mac80211/rc80211_minstrel_ht.c:1045
 rate_control_get_rate+0x43c/0x520 net/mac80211/rate.c:910
 ieee80211_tx_h_rate_ctrl+0x8b9/0x1450 net/mac80211/tx.c:751
 invoke_tx_handlers_early+0x84f/0x1f90 net/mac80211/tx.c:1758
 ieee80211_tx+0x283/0x3e0 net/mac80211/tx.c:1902
 ieee80211_xmit+0x380/0x480 net/mac80211/tx.c:2003
 __ieee80211_subif_start_xmit+0x51b/0x970 net/mac80211/tx.c:3728
 ieee80211_subif_start_xmit+0xeb/0xf10 net/mac80211/tx.c:3864
 __netdev_start_xmit include/linux/netdevice.h:4349 [inline]
 netdev_start_xmit include/linux/netdevice.h:4363 [inline]
 xmit_one net/core/dev.c:3256 [inline]
 dev_hard_start_xmit+0x1a8/0x920 net/core/dev.c:3272
 sch_direct_xmit+0x2d6/0xf70 net/sched/sch_generic.c:332
 qdisc_restart net/sched/sch_generic.c:395 [inline]
 __qdisc_run+0x4d0/0x1640 net/sched/sch_generic.c:403
 qdisc_run include/net/pkt_sched.h:120 [inline]
 __dev_xmit_skb net/core/dev.c:3451 [inline]
 __dev_queue_xmit+0x2102/0x2e00 net/core/dev.c:3807
 neigh_resolve_output+0x55a/0x910 net/core/neighbour.c:1374
 neigh_output include/net/neighbour.h:501 [inline]
 ip6_finish_output2+0x113d/0x2290 net/ipv6/ip6_output.c:120
 ip6_finish_output+0x89b/0x10f0 net/ipv6/ip6_output.c:192
 NF_HOOK_COND include/linux/netfilter.h:278 [inline]
 ip6_output+0x205/0x770 net/ipv6/ip6_output.c:209
 dst_output include/net/dst.h:455 [inline]
 NF_HOOK include/linux/netfilter.h:289 [inline]
 mld_sendpack+0x674/0x1060 net/ipv6/mcast.c:1681
 mld_send_cr net/ipv6/mcast.c:1977 [inline]
 mld_ifc_timer_expire+0x616/0xdf0 net/ipv6/mcast.c:2476
 call_timer_fn+0x177/0x700 kernel/time/timer.c:1338
 expire_timers+0x243/0x4e0 kernel/time/timer.c:1375
 __run_timers kernel/time/timer.c:1696 [inline]
 run_timer_softirq+0x21c/0x670 kernel/time/timer.c:1709
 __do_softirq+0x265/0x980 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x215/0x260 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x136/0x550 arch/x86/kernel/apic/apic.c:1098
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894
 </IRQ>
RIP: 0033:0x7f77c4b1f7b6
Code: f8 48 03 14 f8 80 3d 20 f9 16 00 00 49 89 d7 89 d5 75 37 b8 00 00 00 80 48 01 d0 48 3d ff ff ff 7e 0f 87 2a 02 00 00 44 89 c0 <c1> e8 10 44 31 c0 83 f0 3d 8d 04 c0 89 c7 c1 ef 04 31 f8 69 c0 2d
RSP: 002b:00007fff2426b700 EFLAGS: 00000297 ORIG_RAX: ffffffffffffff13
RAX: 0000000083761959 RBX: 00007f77c4c93018 RCX: 0000001b2f420000
RDX: ffffffff83761980 RSI: 0000001b2f424b48 RDI: 000000000002a5e0
RBP: 0000000083761980 R08: ffffffff83761959 R09: 00000000bf0875bd
R10: 00007fff2426b8c0 R11: 0000000000000246 R12: 00007f77c4c87000
R13: 0000000000000001 R14: 000000000002a5e0 R15: ffffffff83761980
Kernel Offset: disabled

=============================
WARNING: suspicious RCU usage
4.19.211-syzkaller #0 Not tainted
-----------------------------
kernel/sched/core.c:6157 Illegal context switch in RCU-bh read-side critical section!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 1
8 locks held by syz-executor.3/31837:
 #0: 00000000b7994a33 ((&idev->mc_ifc_timer)){+.-.}, at: lockdep_copy_map include/linux/lockdep.h:168 [inline]
 #0: 00000000b7994a33 ((&idev->mc_ifc_timer)){+.-.}, at: call_timer_fn+0xc9/0x700 kernel/time/timer.c:1328
 #1: 00000000a57947c7 (rcu_read_lock){....}, at: read_pnet include/net/net_namespace.h:307 [inline]
 #1: 00000000a57947c7 (rcu_read_lock){....}, at: dev_net include/linux/netdevice.h:2158 [inline]
 #1: 00000000a57947c7 (rcu_read_lock){....}, at: mld_sendpack+0x173/0x1060 net/ipv6/mcast.c:1648
 #2: 00000000e1e46c08 (rcu_read_lock_bh){....}, at: lwtunnel_xmit_redirect include/net/lwtunnel.h:92 [inline]
 #2: 00000000e1e46c08 (rcu_read_lock_bh){....}, at: ip6_finish_output2+0x1f2/0x2290 net/ipv6/ip6_output.c:106
 #3: 00000000e1e46c08 (rcu_read_lock_bh){....}, at: __dev_queue_xmit+0x1e2/0x2e00 net/core/dev.c:3773
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: spin_trylock include/linux/spinlock.h:339 [inline]
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: qdisc_run_begin include/net/sch_generic.h:130 [inline]
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: qdisc_run include/net/pkt_sched.h:119 [inline]
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: __dev_xmit_skb net/core/dev.c:3451 [inline]
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: __dev_queue_xmit+0x278b/0x2e00 net/core/dev.c:3807
 #5: 0000000045750d1d (dev->qdisc_running_key ?: &qdisc_running_key){+...}, at: neigh_resolve_output+0x55a/0x910 net/core/neighbour.c:1374
 #6: 00000000fdbd3660 (_xmit_ETHER#2){+.-.}, at: spin_lock include/linux/spinlock.h:329 [inline]
 #6: 00000000fdbd3660 (_xmit_ETHER#2){+.-.}, at: __netif_tx_lock include/linux/netdevice.h:3842 [inline]
 #6: 00000000fdbd3660 (_xmit_ETHER#2){+.-.}, at: sch_direct_xmit+0x254/0xf70 net/sched/sch_generic.c:330
 #7: 00000000a57947c7 (rcu_read_lock){....}, at: __ieee80211_subif_start_xmit+0xba/0x970 net/mac80211/tx.c:3656

stack backtrace:
CPU: 1 PID: 31837 Comm: syz-executor.3 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1fc/0x2ef lib/dump_stack.c:118
 ___might_sleep+0x211/0x2b0 kernel/sched/core.c:6157
 down_read+0x17/0x80 kernel/locking/rwsem.c:23
 __blocking_notifier_call_chain kernel/notifier.c:316 [inline]
 __blocking_notifier_call_chain kernel/notifier.c:304 [inline]
 blocking_notifier_call_chain kernel/notifier.c:328 [inline]
 blocking_notifier_call_chain+0x6f/0xa0 kernel/notifier.c:325
 fb_blank+0xb5/0x1d0 drivers/video/fbdev/core/fbmem.c:1074
 fbcon_blank+0x932/0xec0 drivers/video/fbdev/core/fbcon.c:2221
 do_unblank_screen+0x241/0x610 drivers/tty/vt/vt.c:4294
 panic+0x313/0x50e kernel/panic.c:239
 __warn.cold+0x20/0x5a kernel/panic.c:541
 report_bug+0x262/0x2b0 lib/bug.c:183
 fixup_bug arch/x86/kernel/traps.c:178 [inline]
 fixup_bug arch/x86/kernel/traps.c:173 [inline]
 do_error_trap+0x1d7/0x310 arch/x86/kernel/traps.c:296
 invalid_op+0x14/0x20 arch/x86/entry/entry_64.S:1038
RIP: 0010:__rate_control_send_low+0x4bb/0x580 net/mac80211/rate.c:359
Code: 0f 85 d6 00 00 00 48 8b 44 24 18 44 8b 24 a8 e8 9b 42 c6 f9 8b 54 24 24 44 89 e9 44 89 e6 48 c7 c7 80 98 67 89 e8 6a 7a 56 00 <0f> 0b e9 03 fe ff ff e8 79 42 c6 f9 41 83 cd 10 e9 32 fc ff ff e8
RSP: 0000:ffff8880ba106db8 EFLAGS: 00010282
RAX: 0000000000000000 RBX: ffff8880a9a51e28 RCX: 0000000000000000
RDX: 0000000000000100 RSI: ffffffff814dff01 RDI: ffffed1017420da9
RBP: ffff8880589bb548 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000005 R11: 0000000000000000 R12: 00000000ffffffff
R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000000
 rate_control_send_low+0x272/0x610 net/mac80211/rate.c:383
 minstrel_ht_get_rate+0x58/0x1510 net/mac80211/rc80211_minstrel_ht.c:1045
 rate_control_get_rate+0x43c/0x520 net/mac80211/rate.c:910
 ieee80211_tx_h_rate_ctrl+0x8b9/0x1450 net/mac80211/tx.c:751
 invoke_tx_handlers_early+0x84f/0x1f90 net/mac80211/tx.c:1758
 ieee80211_tx+0x283/0x3e0 net/mac80211/tx.c:1902
 ieee80211_xmit+0x380/0x480 net/mac80211/tx.c:2003
 __ieee80211_subif_start_xmit+0x51b/0x970 net/mac80211/tx.c:3728
 ieee80211_subif_start_xmit+0xeb/0xf10 net/mac80211/tx.c:3864
 __netdev_start_xmit include/linux/netdevice.h:4349 [inline]
 netdev_start_xmit include/linux/netdevice.h:4363 [inline]
 xmit_one net/core/dev.c:3256 [inline]
 dev_hard_start_xmit+0x1a8/0x920 net/core/dev.c:3272
 sch_direct_xmit+0x2d6/0xf70 net/sched/sch_generic.c:332
 qdisc_restart net/sched/sch_generic.c:395 [inline]
 __qdisc_run+0x4d0/0x1640 net/sched/sch_generic.c:403
 qdisc_run include/net/pkt_sched.h:120 [inline]
 __dev_xmit_skb net/core/dev.c:3451 [inline]
 __dev_queue_xmit+0x2102/0x2e00 net/core/dev.c:3807
 neigh_resolve_output+0x55a/0x910 net/core/neighbour.c:1374
 neigh_output include/net/neighbour.h:501 [inline]
 ip6_finish_output2+0x113d/0x2290 net/ipv6/ip6_output.c:120
 ip6_finish_output+0x89b/0x10f0 net/ipv6/ip6_output.c:192
 NF_HOOK_COND include/linux/netfilter.h:278 [inline]
 ip6_output+0x205/0x770 net/ipv6/ip6_output.c:209
 dst_output include/net/dst.h:455 [inline]
 NF_HOOK include/linux/netfilter.h:289 [inline]
 mld_sendpack+0x674/0x1060 net/ipv6/mcast.c:1681
 mld_send_cr net/ipv6/mcast.c:1977 [inline]
 mld_ifc_timer_expire+0x616/0xdf0 net/ipv6/mcast.c:2476
 call_timer_fn+0x177/0x700 kernel/time/timer.c:1338
 expire_timers+0x243/0x4e0 kernel/time/timer.c:1375
 __run_timers kernel/time/timer.c:1696 [inline]
 run_timer_softirq+0x21c/0x670 kernel/time/timer.c:1709
 __do_softirq+0x265/0x980 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x215/0x260 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x136/0x550 arch/x86/kernel/apic/apic.c:1098
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894
 </IRQ>
RIP: 0033:0x7f77c4b1f7b6
Code: f8 48 03 14 f8 80 3d 20 f9 16 00 00 49 89 d7 89 d5 75 37 b8 00 00 00 80 48 01 d0 48 3d ff ff ff 7e 0f 87 2a 02 00 00 44 89 c0 <c1> e8 10 44 31 c0 83 f0 3d 8d 04 c0 89 c7 c1 ef 04 31 f8 69 c0 2d
RSP: 002b:00007fff2426b700 EFLAGS: 00000297 ORIG_RAX: ffffffffffffff13
RAX: 0000000083761959 RBX: 00007f77c4c93018 RCX: 0000001b2f420000
RDX: ffffffff83761980 RSI: 0000001b2f424b48 RDI: 000000000002a5e0
RBP: 0000000083761980 R08: ffffffff83761959 R09: 00000000bf0875bd
R10: 00007fff2426b8c0 R11: 0000000000000246 R12: 00007f77c4c87000
R13: 0000000000000001 R14: 000000000002a5e0 R15: ffffffff83761980

================================
WARNING: inconsistent lock state
4.19.211-syzkaller #0 Not tainted
--------------------------------
inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-R} usage.
syz-executor.3/31837 [HC0[0]:SC1[5]:HE0:SE0] takes:
00000000be12699e ((fb_notifier_list).rwsem){+++?}, at: __blocking_notifier_call_chain kernel/notifier.c:316 [inline]
00000000be12699e ((fb_notifier_list).rwsem){+++?}, at: __blocking_notifier_call_chain kernel/notifier.c:304 [inline]
00000000be12699e ((fb_notifier_list).rwsem){+++?}, at: blocking_notifier_call_chain kernel/notifier.c:328 [inline]
00000000be12699e ((fb_notifier_list).rwsem){+++?}, at: blocking_notifier_call_chain+0x6f/0xa0 kernel/notifier.c:325
{SOFTIRQ-ON-W} state was registered at:
  down_write+0x34/0x90 kernel/locking/rwsem.c:70
  blocking_notifier_chain_register+0x78/0x350 kernel/notifier.c:226
  fb_console_init+0x1c/0x305 drivers/video/fbdev/core/fbcon.c:3432
  fbmem_init+0x105/0x126 drivers/video/fbdev/core/fbmem.c:1932
  do_one_initcall+0xf1/0x740 init/main.c:884
  do_initcall_level init/main.c:952 [inline]
  do_initcalls init/main.c:960 [inline]
  do_basic_setup init/main.c:978 [inline]
  kernel_init_freeable+0x9c5/0xab7 init/main.c:1145
  kernel_init+0xd/0x1ba init/main.c:1062
  ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415
irq event stamp: 1647
hardirqs last  enabled at (1646): [<ffffffff814dbe45>] console_unlock+0xdf5/0x1110 kernel/printk/printk.c:2489
hardirqs last disabled at (1647): [<ffffffff81003d00>] trace_hardirqs_off_thunk+0x1a/0x1c
softirqs last  enabled at (1496): [<ffffffff88400678>] __do_softirq+0x678/0x980 kernel/softirq.c:318
softirqs last disabled at (1559): [<ffffffff813927d5>] invoke_softirq kernel/softirq.c:372 [inline]
softirqs last disabled at (1559): [<ffffffff813927d5>] irq_exit+0x215/0x260 kernel/softirq.c:412

other info that might help us debug this:
 Possible unsafe locking scenario:

       CPU0
       ----
  lock((fb_notifier_list).rwsem);
  <Interrupt>
    lock((fb_notifier_list).rwsem);

 *** DEADLOCK ***

8 locks held by syz-executor.3/31837:
 #0: 00000000b7994a33 ((&idev->mc_ifc_timer)){+.-.}, at: lockdep_copy_map include/linux/lockdep.h:168 [inline]
 #0: 00000000b7994a33 ((&idev->mc_ifc_timer)){+.-.}, at: call_timer_fn+0xc9/0x700 kernel/time/timer.c:1328
 #1: 00000000a57947c7 (rcu_read_lock){....}, at: read_pnet include/net/net_namespace.h:307 [inline]
 #1: 00000000a57947c7 (rcu_read_lock){....}, at: dev_net include/linux/netdevice.h:2158 [inline]
 #1: 00000000a57947c7 (rcu_read_lock){....}, at: mld_sendpack+0x173/0x1060 net/ipv6/mcast.c:1648
 #2: 00000000e1e46c08 (rcu_read_lock_bh){....}, at: lwtunnel_xmit_redirect include/net/lwtunnel.h:92 [inline]
 #2: 00000000e1e46c08 (rcu_read_lock_bh){....}, at: ip6_finish_output2+0x1f2/0x2290 net/ipv6/ip6_output.c:106
 #3: 00000000e1e46c08 (rcu_read_lock_bh){....}, at: __dev_queue_xmit+0x1e2/0x2e00 net/core/dev.c:3773
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: spin_trylock include/linux/spinlock.h:339 [inline]
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: qdisc_run_begin include/net/sch_generic.h:130 [inline]
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: qdisc_run include/net/pkt_sched.h:119 [inline]
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: __dev_xmit_skb net/core/dev.c:3451 [inline]
 #4: 00000000a66a99e1 (&(&sch->seqlock)->rlock){+...}, at: __dev_queue_xmit+0x278b/0x2e00 net/core/dev.c:3807
 #5: 0000000045750d1d (dev->qdisc_running_key ?: &qdisc_running_key){+...}, at: neigh_resolve_output+0x55a/0x910 net/core/neighbour.c:1374
 #6: 00000000fdbd3660 (_xmit_ETHER#2){+.-.}, at: spin_lock include/linux/spinlock.h:329 [inline]
 #6: 00000000fdbd3660 (_xmit_ETHER#2){+.-.}, at: __netif_tx_lock include/linux/netdevice.h:3842 [inline]
 #6: 00000000fdbd3660 (_xmit_ETHER#2){+.-.}, at: sch_direct_xmit+0x254/0xf70 net/sched/sch_generic.c:330
 #7: 00000000a57947c7 (rcu_read_lock){....}, at: __ieee80211_subif_start_xmit+0xba/0x970 net/mac80211/tx.c:3656

stack backtrace:
CPU: 1 PID: 31837 Comm: syz-executor.3 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1fc/0x2ef lib/dump_stack.c:118
 print_usage_bug.cold+0x42e/0x570 kernel/locking/lockdep.c:2545
 valid_state kernel/locking/lockdep.c:2558 [inline]
 mark_lock_irq kernel/locking/lockdep.c:2752 [inline]
 mark_lock+0xc70/0x1160 kernel/locking/lockdep.c:3132
 mark_irqflags kernel/locking/lockdep.c:3002 [inline]
 __lock_acquire+0x10ed/0x3ff0 kernel/locking/lockdep.c:3373
 lock_acquire+0x170/0x3c0 kernel/locking/lockdep.c:3908
 down_read+0x36/0x80 kernel/locking/rwsem.c:24
 __blocking_notifier_call_chain kernel/notifier.c:316 [inline]
 __blocking_notifier_call_chain kernel/notifier.c:304 [inline]
 blocking_notifier_call_chain kernel/notifier.c:328 [inline]
 blocking_notifier_call_chain+0x6f/0xa0 kernel/notifier.c:325
 fb_blank+0xb5/0x1d0 drivers/video/fbdev/core/fbmem.c:1074
 fbcon_blank+0x932/0xec0 drivers/video/fbdev/core/fbcon.c:2221
 do_unblank_screen+0x241/0x610 drivers/tty/vt/vt.c:4294
 panic+0x313/0x50e kernel/panic.c:239
 __warn.cold+0x20/0x5a kernel/panic.c:541
 report_bug+0x262/0x2b0 lib/bug.c:183
 fixup_bug arch/x86/kernel/traps.c:178 [inline]
 fixup_bug arch/x86/kernel/traps.c:173 [inline]
 do_error_trap+0x1d7/0x310 arch/x86/kernel/traps.c:296
 invalid_op+0x14/0x20 arch/x86/entry/entry_64.S:1038
RIP: 0010:__rate_control_send_low+0x4bb/0x580 net/mac80211/rate.c:359
Code: 0f 85 d6 00 00 00 48 8b 44 24 18 44 8b 24 a8 e8 9b 42 c6 f9 8b 54 24 24 44 89 e9 44 89 e6 48 c7 c7 80 98 67 89 e8 6a 7a 56 00 <0f> 0b e9 03 fe ff ff e8 79 42 c6 f9 41 83 cd 10 e9 32 fc ff ff e8
RSP: 0000:ffff8880ba106db8 EFLAGS: 00010282
RAX: 0000000000000000 RBX: ffff8880a9a51e28 RCX: 0000000000000000
RDX: 0000000000000100 RSI: ffffffff814dff01 RDI: ffffed1017420da9
RBP: ffff8880589bb548 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000005 R11: 0000000000000000 R12: 00000000ffffffff
R13: 0000000000000000 R14: 000000000000000c R15: 0000000000000000
 rate_control_send_low+0x272/0x610 net/mac80211/rate.c:383
 minstrel_ht_get_rate+0x58/0x1510 net/mac80211/rc80211_minstrel_ht.c:1045
 rate_control_get_rate+0x43c/0x520 net/mac80211/rate.c:910
 ieee80211_tx_h_rate_ctrl+0x8b9/0x1450 net/mac80211/tx.c:751
 invoke_tx_handlers_early+0x84f/0x1f90 net/mac80211/tx.c:1758
 ieee80211_tx+0x283/0x3e0 net/mac80211/tx.c:1902
 ieee80211_xmit+0x380/0x480 net/mac80211/tx.c:2003
 __ieee80211_subif_start_xmit+0x51b/0x970 net/mac80211/tx.c:3728
 ieee80211_subif_start_xmit+0xeb/0xf10 net/mac80211/tx.c:3864
 __netdev_start_xmit include/linux/netdevice.h:4349 [inline]
 netdev_start_xmit include/linux/netdevice.h:4363 [inline]
 xmit_one net/core/dev.c:3256 [inline]
 dev_hard_start_xmit+0x1a8/0x920 net/core/dev.c:3272
 sch_direct_xmit+0x2d6/0xf70 net/sched/sch_generic.c:332
 qdisc_restart net/sched/sch_generic.c:395 [inline]
 __qdisc_run+0x4d0/0x1640 net/sched/sch_generic.c:403
 qdisc_run include/net/pkt_sched.h:120 [inline]
 __dev_xmit_skb net/core/dev.c:3451 [inline]
 __dev_queue_xmit+0x2102/0x2e00 net/core/dev.c:3807
 neigh_resolve_output+0x55a/0x910 net/core/neighbour.c:1374
 neigh_output include/net/neighbour.h:501 [inline]
 ip6_finish_output2+0x113d/0x2290 net/ipv6/ip6_output.c:120
 ip6_finish_output+0x89b/0x10f0 net/ipv6/ip6_output.c:192
 NF_HOOK_COND include/linux/netfilter.h:278 [inline]
 ip6_output+0x205/0x770 net/ipv6/ip6_output.c:209
 dst_output include/net/dst.h:455 [inline]
 NF_HOOK include/linux/netfilter.h:289 [inline]
 mld_sendpack+0x674/0x1060 net/ipv6/mcast.c:1681
 mld_send_cr net/ipv6/mcast.c:1977 [inline]
 mld_ifc_timer_expire+0x616/0xdf0 net/ipv6/mcast.c:2476
 call_timer_fn+0x177/0x700 kernel/time/timer.c:1338
 expire_timers+0x243/0x4e0 kernel/time/timer.c:1375
 __run_timers kernel/time/timer.c:1696 [inline]
 run_timer_softirq+0x21c/0x670 kernel/time/timer.c:1709
 __do_softirq+0x265/0x980 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x215/0x260 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x136/0x550 arch/x86/kernel/apic/apic.c:1098
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894
 </IRQ>
RIP: 0033:0x7f77c4b1f7b6
Code: f8 48 03 14 f8 80 3d 20 f9 16 00 00 49 89 d7 89 d5 75 37 b8 00 00 00 80 48 01 d0 48 3d ff ff ff 7e 0f 87 2a 02 00 00 44 89 c0 <c1> e8 10 44 31 c0 83 f0 3d 8d 04 c0 89 c7 c1 ef 04 31 f8 69 c0 2d
RSP: 002b:00007fff2426b700 EFLAGS: 00000297 ORIG_RAX: ffffffffffffff13
RAX: 0000000083761959 RBX: 00007f77c4c93018 RCX: 0000001b2f420000
RDX: ffffffff83761980 RSI: 0000001b2f424b48 RDI: 000000000002a5e0
RBP: 0000000083761980 R08: ffffffff83761959 R09: 00000000bf0875bd
R10: 00007fff2426b8c0 R11: 0000000000000246 R12: 00007f77c4c87000
R13: 0000000000000001 R14: 000000000002a5e0 R15: ffffffff83761980
Rebooting in 86400 seconds..