syzkaller login: [   97.078522][    T9] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:64702' (ED25519) to the list of known hosts.
2026/02/19 20:47:40 parsed 1 programs
[  115.232473][ T5320] cgroup: Unknown subsys name 'net'
[  115.284511][ T5320] cgroup: Unknown subsys name 'cpuset'
[  115.289392][ T5320] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  117.248188][ T5320] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  118.470688][   T78] ODEBUG: Out of memory. ODEBUG disabled
[  121.880233][ T5329] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  127.187311][ T5385] chnl_net:caif_netlink_parms(): no params data found
[  127.393724][ T5385] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.397849][ T5385] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.401308][ T5385] bridge_slave_0: entered allmulticast mode
[  127.411324][ T5385] bridge_slave_0: entered promiscuous mode
[  127.417479][ T5385] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.431264][ T5385] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.434183][ T5385] bridge_slave_1: entered allmulticast mode
[  127.441577][ T5385] bridge_slave_1: entered promiscuous mode
[  127.495737][ T5385] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  127.512378][ T5385] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  127.551743][ T5385] team0: Port device team_slave_0 added
[  127.562678][ T5385] team0: Port device team_slave_1 added
[  127.603821][ T5385] batman_adv: batadv0: Adding interface: batadv_slave_0
[  127.606731][ T5385] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  127.630937][ T5385] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  127.651675][ T5385] batman_adv: batadv0: Adding interface: batadv_slave_1
[  127.654673][ T5385] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  127.681296][ T5385] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  127.766243][ T5385] hsr_slave_0: entered promiscuous mode
[  127.774187][ T5385] hsr_slave_1: entered promiscuous mode
[  128.048815][ T5385] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  128.073885][ T5385] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  128.080142][ T5385] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  128.095153][ T5385] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  128.178353][ T5385] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.194589][ T5385] 8021q: adding VLAN 0 to HW filter on device team0
[  128.203311][ T1038] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.206600][ T1038] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.217524][ T1038] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.220293][ T1038] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.398415][ T5385] 8021q: adding VLAN 0 to HW filter on device batadv0
[  128.435939][ T5385] veth0_vlan: entered promiscuous mode
[  128.446163][ T5385] veth1_vlan: entered promiscuous mode
[  128.473506][ T5385] veth0_macvtap: entered promiscuous mode
[  128.479266][ T5385] veth1_macvtap: entered promiscuous mode
[  128.494384][ T5385] batman_adv: batadv0: Interface activated: batadv_slave_0
[  128.505673][ T5385] batman_adv: batadv0: Interface activated: batadv_slave_1
[  128.532569][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  128.537488][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  128.551671][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  128.555546][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  128.775511][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.788516][ T5411] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  128.792585][ T5411] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  128.795599][ T5411] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  128.800307][ T5411] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  128.804364][ T5411] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  128.898820][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.955230][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.018597][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.342497][ T1076] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.345892][ T1076] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.389414][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.398606][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/19 20:47:58 executed programs: 0
[  130.918615][ T4663] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  130.922660][ T4663] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  130.926116][ T4663] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  130.933357][ T4663] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  130.936775][ T4663] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  131.256910][ T5432] chnl_net:caif_netlink_parms(): no params data found
[  131.337029][ T5432] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.341619][ T5432] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.344699][ T5432] bridge_slave_0: entered allmulticast mode
[  131.348380][ T5432] bridge_slave_0: entered promiscuous mode
[  131.353973][ T5432] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.357159][ T5432] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.360342][ T5432] bridge_slave_1: entered allmulticast mode
[  131.364391][ T5432] bridge_slave_1: entered promiscuous mode
[  131.388502][ T5432] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.394656][ T5432] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.418701][ T5432] team0: Port device team_slave_0 added
[  131.424106][ T5432] team0: Port device team_slave_1 added
[  131.524265][ T5432] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.527191][ T5432] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  131.561268][ T5432] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.567366][ T5432] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.570273][ T5432] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  131.602103][ T5432] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.712999][   T13] bridge_slave_1: left allmulticast mode
[  131.715951][   T13] bridge_slave_1: left promiscuous mode
[  131.719251][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.726388][   T13] bridge_slave_0: left allmulticast mode
[  131.728796][   T13] bridge_slave_0: left promiscuous mode
[  131.733173][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.860170][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  131.867345][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  131.873352][   T13] bond0 (unregistering): Released all slaves
[  131.919213][ T5432] hsr_slave_0: entered promiscuous mode
[  131.929081][ T5432] hsr_slave_1: entered promiscuous mode
[  131.936736][ T5432] debugfs: 'hsr0' already exists in 'hsr'
[  131.939424][ T5432] Cannot create hsr debugfs directory
[  131.953128][   T13] hsr_slave_0: left promiscuous mode
[  131.962234][   T13] hsr_slave_1: left promiscuous mode
[  131.971254][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  131.974478][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  131.982279][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  131.990963][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  132.008992][   T13] veth1_macvtap: left promiscuous mode
[  132.014468][   T13] veth0_macvtap: left promiscuous mode
[  132.018426][   T13] veth1_vlan: left promiscuous mode
[  132.020854][   T13] veth0_vlan: left promiscuous mode
[  132.443977][   T13] team0 (unregistering): Port device team_slave_1 removed
[  132.455927][   T13] team0 (unregistering): Port device team_slave_0 removed
[  132.993515][ T4663] Bluetooth: hci0: command tx timeout
[  133.654934][ T5432] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  133.685619][ T5432] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  133.701882][ T5432] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  133.723791][ T5432] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  133.864683][ T5432] 8021q: adding VLAN 0 to HW filter on device bond0
[  133.894893][ T5432] 8021q: adding VLAN 0 to HW filter on device team0
[  133.922478][ T1088] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.925514][ T1088] bridge0: port 1(bridge_slave_0) entered forwarding state
[  133.940565][ T1088] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.943700][ T1088] bridge0: port 2(bridge_slave_1) entered forwarding state
[  134.326315][ T5432] 8021q: adding VLAN 0 to HW filter on device batadv0
[  134.405336][ T5432] veth0_vlan: entered promiscuous mode
[  134.436115][ T5432] veth1_vlan: entered promiscuous mode
[  134.502993][ T5432] veth0_macvtap: entered promiscuous mode
[  134.517965][ T5432] veth1_macvtap: entered promiscuous mode
[  134.554189][ T5432] batman_adv: batadv0: Interface activated: batadv_slave_0
[  134.567436][ T5432] batman_adv: batadv0: Interface activated: batadv_slave_1
[  134.595298][ T1041] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.606846][ T1041] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.626302][ T1041] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.662210][ T1041] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.778013][ T1088] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.801594][ T1088] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  134.843677][ T1041] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.862561][ T1041] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.018315][ T5484] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.027805][ T5484] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.033152][ T5484] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.054433][ T5402] wlan1: No basic rates, using min rate instead
[  135.059218][ T5402] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  135.063676][ T4663] Bluetooth: hci0: command tx timeout
[  135.068388][ T5402] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  135.182079][ T1076] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  135.290910][ T1076] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  135.401331][ T1076] wlan1: authentication with 08:02:11:00:00:00 timed out
[  135.585023][ T5485] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.590481][ T5485] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.596289][ T5485] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  135.628612][ T5402] wlan1: No basic rates, using min rate instead
[  135.633209][ T5402] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  135.636850][ T5402] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  135.741170][ T1041] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  135.851861][ T1041] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  135.961307][ T1041] wlan1: authentication with 08:02:11:00:00:00 timed out
[  136.143805][ T5486] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  136.149161][ T5486] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
2026/02/19 20:48:03 executed programs: 4
[  136.166466][ T5486] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  136.183168][ T5402] wlan1: No basic rates, using min rate instead
[  136.187528][ T5402] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  136.193345][ T5402] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  136.301166][ T1088] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  136.411143][ T1088] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  136.521109][ T1088] wlan1: authentication with 08:02:11:00:00:00 timed out
[  136.720580][ T5487] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  136.728706][ T5487] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  136.734159][ T5487] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  136.752638][ T1352] wlan1: No basic rates, using min rate instead
[  136.756568][ T1352] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  136.760529][ T1352] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  136.870942][ T1088] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  136.981111][ T1088] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  137.090983][ T1088] wlan1: authentication with 08:02:11:00:00:00 timed out
[  137.141085][ T4663] Bluetooth: hci0: command tx timeout
[  137.283410][ T5488] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  137.288721][ T5488] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  137.299561][ T5488] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  137.323535][ T5402] wlan1: No basic rates, using min rate instead
[  137.328657][ T5402] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  137.332708][ T5402] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  137.441028][ T1041] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  137.550970][ T1041] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  137.660969][ T1041] wlan1: authentication with 08:02:11:00:00:00 timed out
[  137.852542][ T5489] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  137.866782][ T5489] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  137.874041][ T5489] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  137.881848][    T9] wlan1: No basic rates, using min rate instead
[  137.885640][    T9] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  137.889812][    T9] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  138.000977][ T1088] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  138.111073][ T1041] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  138.221073][ T1088] wlan1: authentication with 08:02:11:00:00:00 timed out
[  138.410064][ T5490] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  138.427880][ T5490] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  138.436243][ T5490] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  138.442724][    T9] wlan1: No basic rates, using min rate instead
[  138.446740][    T9] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  138.450143][    T9] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  138.562299][ T1041] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  138.671259][ T1041] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  138.780971][ T1088] wlan1: authentication with 08:02:11:00:00:00 timed out
[  139.007211][ T5491] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.032195][ T5402] wlan1: No basic rates, using min rate instead
[  139.036583][ T5402] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  139.041751][ T5491] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.051224][ T5402] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  139.054493][ T5491] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.171607][ T1088] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  139.222461][ T4663] Bluetooth: hci0: command tx timeout
[  139.281643][ T1088] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  139.392211][ T1088] wlan1: authentication with 08:02:11:00:00:00 timed out
[  139.637457][ T5492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.652112][    T9] wlan1: No basic rates, using min rate instead
[  139.656024][    T9] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  139.659910][ T5492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.670587][ T5492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.674695][    T9] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  140.245238][ T5493] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.263484][ T1041] wlan1: authenticated
[  140.265706][    T9] wlan1: associating to AP 08:02:11:00:00:00 with corrupt probe response
[  140.269720][ T5493] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.274786][ T1041] wlan1: associate with 08:02:11:00:00:00 (try 1/3)
[  140.279898][ T1041] wlan1: RX AssocResp from 08:02:11:00:00:00 (capab=0xa004 status=0 aid=12)
[  140.284338][ T5493] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.288863][ T1041] wlan1: No basic rates, using min rate instead
[  140.292838][ T1041] wlan1: associated
[  140.835025][ T5494] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.840219][ T5494] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.846468][ T5494] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  141.398594][ T5495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  141.404417][ T5495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  141.409540][ T5495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
2026/02/19 20:48:08 executed programs: 13
[  141.945085][   T13] ------------[ cut here ]------------
[  141.949422][   T13] !sta
[  141.950236][   T13] WARNING: net/mac80211/mlme.c:4504 at ieee80211_mgd_probe_ap_send+0x497/0x560, CPU#0: kworker/u4:1/13
[  141.959210][   T13] Modules linked in:
[  141.962198][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u4:1 Not tainted syzkaller #0 PREEMPT(full) 
[  141.966459][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  141.970553][   T13] Workqueue: events_unbound cfg80211_wiphy_work
[  141.974599][   T13] RIP: 0010:ieee80211_mgd_probe_ap_send+0x497/0x560
[  141.977532][   T13] Code: 4c 89 fe 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d e9 dd 2b 78 f6 e8 98 44 8c f6 90 0f 0b 90 e9 3a fc ff ff e8 8a 44 8c f6 90 <0f> 0b 90 e9 d3 fc ff ff e8 7c 44 8c f6 90 0f 0b 90 e9 3c ff ff ff
[  141.986678][   T13] RSP: 0018:ffffc9000026fa60 EFLAGS: 00010293
[  141.989794][   T13] RAX: ffffffff8b3957a6 RBX: ffff888012918dc0 RCX: ffff88801b7b0000
[  141.993624][   T13] RDX: 0000000000000000 RSI: ffffffff8e16564a RDI: ffff88801b7b0000
[  141.997172][   T13] RBP: 0000000000000001 R08: ffff88801b7b0000 R09: 000000000000000c
[  142.000741][   T13] R10: 000000000000000c R11: 0000000000000000 R12: ffff88801291aae2
[  142.004471][   T13] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff888012919d40
[  142.007936][   T13] FS:  0000000000000000(0000) GS:ffff88808ca5b000(0000) knlGS:0000000000000000
[  142.011716][   T13] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  142.014607][   T13] CR2: 00007f947154da08 CR3: 000000001253c000 CR4: 0000000000352ef0
[  142.018002][   T13] Call Trace:
[  142.019540][   T13]  <TASK>
[  142.020980][   T13]  cfg80211_wiphy_work+0x2ab/0x4a0
[  142.023170][   T13]  ? process_scheduled_works+0xa25/0x1830
[  142.025594][   T13]  process_scheduled_works+0xb02/0x1830
[  142.028005][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  142.030643][   T13]  ? assign_work+0x3d5/0x5e0
[  142.032887][   T13]  worker_thread+0xa50/0xfc0
[  142.035063][   T13]  kthread+0x388/0x470
[  142.036735][   T13]  ? __pfx_worker_thread+0x10/0x10
[  142.038859][   T13]  ? __pfx_kthread+0x10/0x10
[  142.040987][   T13]  ret_from_fork+0x51e/0xb90
[  142.043210][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  142.045624][   T13]  ? __switch_to+0xc7d/0x1450
[  142.048022][   T13]  ? __pfx_kthread+0x10/0x10
[  142.050107][   T13]  ret_from_fork_asm+0x1a/0x30
[  142.052363][   T13]  </TASK>
[  142.053766][   T13] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  142.057012][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u4:1 Not tainted syzkaller #0 PREEMPT(full) 
[  142.061869][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  142.066181][   T13] Workqueue: events_unbound cfg80211_wiphy_work
[  142.068995][   T13] Call Trace:
[  142.070496][   T13]  <TASK>
[  142.071833][   T13]  vpanic+0x56c/0xa60
[  142.073598][   T13]  ? __pfx__printk+0x10/0x10
[  142.075606][   T13]  ? __pfx_vpanic+0x10/0x10
[  142.077667][   T13]  ? is_bpf_text_address+0x292/0x2b0
[  142.080016][   T13]  ? is_bpf_text_address+0x26/0x2b0
[  142.082295][   T13]  panic+0xc5/0xd0
[  142.083982][   T13]  ? __pfx_panic+0x10/0x10
[  142.085923][   T13]  ? ret_from_fork_asm+0x1a/0x30
[  142.088160][   T13]  __warn+0x315/0x4f0
[  142.089847][   T13]  ? ieee80211_mgd_probe_ap_send+0x497/0x560
[  142.092398][   T13]  ? ieee80211_mgd_probe_ap_send+0x497/0x560
[  142.094955][   T13]  __report_bug+0x29a/0x540
[  142.096975][   T13]  ? lockdep_hardirqs_on+0x7a/0x110
[  142.100315][   T13]  ? ieee80211_mgd_probe_ap_send+0x497/0x560
[  142.103123][   T13]  ? __pfx___report_bug+0x10/0x10
[  142.105368][   T13]  ? __lock_acquire+0x6b5/0x2cf0
[  142.107509][   T13]  ? nla_put+0xd0/0x150
[  142.109380][   T13]  ? ieee80211_mgd_probe_ap_send+0x497/0x560
[  142.111935][   T13]  report_bug+0x16a/0x220
[  142.114100][   T13]  ? ieee80211_mgd_probe_ap_send+0x497/0x560
[  142.117247][   T13]  ? ieee80211_mgd_probe_ap_send+0x499/0x560
[  142.120430][   T13]  handle_bug+0x98/0x200
[  142.122291][   T13]  exc_invalid_op+0x1a/0x50
[  142.124365][   T13]  asm_exc_invalid_op+0x1a/0x20
[  142.126435][   T13] RIP: 0010:ieee80211_mgd_probe_ap_send+0x497/0x560
[  142.129089][   T13] Code: 4c 89 fe 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d e9 dd 2b 78 f6 e8 98 44 8c f6 90 0f 0b 90 e9 3a fc ff ff e8 8a 44 8c f6 90 <0f> 0b 90 e9 d3 fc ff ff e8 7c 44 8c f6 90 0f 0b 90 e9 3c ff ff ff
[  142.137152][   T13] RSP: 0018:ffffc9000026fa60 EFLAGS: 00010293
[  142.139853][   T13] RAX: ffffffff8b3957a6 RBX: ffff888012918dc0 RCX: ffff88801b7b0000
[  142.143281][   T13] RDX: 0000000000000000 RSI: ffffffff8e16564a RDI: ffff88801b7b0000
[  142.146801][   T13] RBP: 0000000000000001 R08: ffff88801b7b0000 R09: 000000000000000c
[  142.150059][   T13] R10: 000000000000000c R11: 0000000000000000 R12: ffff88801291aae2
[  142.153477][   T13] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff888012919d40
[  142.156920][   T13]  ? ieee80211_mgd_probe_ap_send+0x496/0x560
[  142.159549][   T13]  cfg80211_wiphy_work+0x2ab/0x4a0
[  142.161723][   T13]  ? process_scheduled_works+0xa25/0x1830
[  142.164192][   T13]  process_scheduled_works+0xb02/0x1830
[  142.166547][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  142.169094][   T13]  ? assign_work+0x3d5/0x5e0
[  142.171005][   T13]  worker_thread+0xa50/0xfc0
[  142.173085][   T13]  kthread+0x388/0x470
[  142.175067][   T13]  ? __pfx_worker_thread+0x10/0x10
[  142.177428][   T13]  ? __pfx_kthread+0x10/0x10
[  142.179466][   T13]  ret_from_fork+0x51e/0xb90
[  142.181490][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  142.183761][   T13]  ? __switch_to+0xc7d/0x1450
[  142.185813][   T13]  ? __pfx_kthread+0x10/0x10
[  142.187785][   T13]  ret_from_fork_asm+0x1a/0x30
[  142.189904][   T13]  </TASK>
[  142.191672][   T13] Kernel Offset: disabled
[  142.193647][   T13] Rebooting in 86400 seconds..