program: syz_mount_image$nilfs2(&(0x7f0000000a40), &(0x7f0000000a80)='./file0\x00', 0x5, &(0x7f0000000480)={[{@discard}, {@nodiscard}, {@errors_remount_ro}, {@errors_continue}, {@order_relaxed}, {@norecovery}, {@errors_continue}, {@order_relaxed}]}, 0x1, 0xa3e, &(0x7f0000000ac0)="$eJzs3U+MG1f9APA39nrzt784/SV0SUObNNCWP91td5fwJ4KmIhIiaipulSouUZqWiDQgUgla9ZDkxI2WKmf+iFMvCBASvaCoF7hE0EhcKg6FAweiIFXiAA2J0drvee0XW2Nvdtfr9ecjzT7PfJ/nvfHOjMcz8+YFYGJVmn8XF2eKEC6//eaxfzz8921LU55s56g3/051jNVCCEUcn8rm9361ld764LVTvdIizDf/pvHwzI32e3eEEC6EA+FKqId9l6+9cXX+6RMXj186+O5bR66vzdIDAMBk+fqVI4t7//qn+3d/+IsHjoYt7enp+Lwex3fG4/6j8cA/Hf9XQvd40TF0ms7yTcWhkuWr9sjXWU4tyzfVp/zpbL61Pvm2lJRf7ZjWa7lhnKX1uB6KymzXeKUyO9v6TR6av+uni9lzZ86+cH5EFQVW3b8eDCEcMBgMkzg0do16DwTQkl8vvMOF/MzC3WnPbWqw8m88Ven9flgF673+txQXRlv+sla5NxujLX/Uy9+//J9ftMdh9WzWtSktV9qOdsbx/DpCfv/SsNt/ml9+PaI2YD1b77/Z6D194+tXz+o612Ol+tU/Xy82qy/FNH0OX87indtP/j8dl/8x0Nu/7/78f6PRiF9fG+B85iYYqj7LFQxbg3VwBcMdB54AUX7fXCNK8fy+vjy+pSS+tSS+rSS+vSS+oyQOk+zXL/8wvF4s/87Pf9MPez4snWe7J6b/N2R98vORw5af3/c7rLstP7+fGDay35589vTnn3/uWuv+/6K9/t+O6/uBOF6P29aVmCGdL8zPq7fv/a93l1Ppk+/erD739MjffL2nO1+xZ3k+oWM/c0c9Zrrft6tfvv3d+epZvm1x2JrVNz8+2Z69Lx1/VLP8U9ny1rLlmM7qkfYru2Oa1wNWIm2//e7/T+vnTKgVL5w5e/rxOJ7W0z9Ua1uWpj/RNddJuXoC423Q9j8zobv9z8729Fqlc7+wa3l60blfqGfT5/tMX4jj6Xvum9Vtzemzp7599vnVXniYcOdfefVbJ8+ePf3dDfjiL9UQNkA1vPBiAl+Mes8ErLW5l1/6ztz5V1597MxLJ188/eLpcwuHDy/Mzx/+wsLiXPO4fq7z6B7YTJa/9EddEwAAAAAAAAAAAGBQ3zt+7Nqf3/nce632/8vt/1L7/3Tnb2r//4Os/X/eTj61g0/tAHf3iDfzZE2Ep7N8tTj8f1bfPVk5e7P3fSSm7X78Yvv/VFzeMjnV575sev783pQve5zAHc9Lmc6eQZL3F/hQTC/F9GcBRqjY1ntyTMueb53W9fR8Cs+lGE/p/5bWhvQck9T+u99zndL+f/c61JHVtx7NCUe9jEBv/9T/p8EwsUOjoRcPYGMYdf+f6bxnSs/97mtbl4aU7cZT3fvL/PmlcDc2ev+Tyt9c/X+2+78beP+X9ZhXX1m5//nx9fc6ig37Bi0/X/70HOg9w5X/YSw/Lc0jYbDyGz/Nys8vCA3oZlb+9gHLv2P596+s/P/G8tPH9uihQctv1biodNcjP2+crv/l542TW9nyp2d7LpX70O+HWP4BHjXca4u5HcuHSTYu/cwOa0z6/z30oz6B/D6Mz8bxtCNM9znk/Z0MW/90f0X6Htibzb8o+X7T/+94+2JMy7aH1P9vWh/rPcYrHeO1Hp/tZt3XwLh63/U/g2Fih0ajsbYntEqMtHBG/vmP+nfCqMsf9edfJu//Nz+Gz/v/zeN5/795PO//N4/n/etVes++Hc8/z7z/3zx+XzbfvH/gmZL4R0vi+0ri95fE95fEP1YSP1gSf6Ak/mBJ/N6S+KGS+MdL4p8oiT9cEn+0JP7Jkvhml9qjTOrywyTL2+fZ/mFypOs//bb/PSVxYHwtXP3jV5/71Tfqrfb/0+3zIek63tE4ntq/fz+O59e9Q8f4UuydOP63LL7Rz3fAJMmfn5F/vz9SEgfGV7rPy/YNE6jo/cSeQZ9b1e84n/HyqZh+OqafieljMZ2N6VxMn4jp/DrVj7XxlV/+5sjrxfLv/V1ZfND7yfP2QPlzohYGrE9+fmDY+9nz5/gN627LX2FzMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJGpNP8uLs4UIVx++81jz544M7c05cl2jnrz71THWK39vhAej2k1pj+JL2598NqpzvR2TIswH4pQtKeHZ260S9oRQrgQDoQroR72Xb72xtX5p09cPH7p4LtvHbm+dp8AAAAAbH7/CwAA//9vMBaq") r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYBLOB="4400000010000305000000000000010000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002400128009000100626f6e64000000001400028005000100030000000800140000000000"], 0x44}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000780)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000007c0)={0x2c, r4, 0x277f826df11ec41b, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8}]}, 0x2c}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="3d537daa469f62eb70c6640d4175b02b4f688b7bbd4ed1051ef9a0dc5fe4af3dfa3b513d07cc06867da17254b055fead9e7ff0288f3cc0f79d34d3d70ded1cb3846101f6c1b41bdf96cb46324147ecc23e41fe6198aa1753008c02834b53c9a1cda68c518652d41a7679d05253f1cc73", @ANYRES16=r2, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=r7, @ANYBLOB="31000e0080000000ffffffffffff08021100000008021100000000000000000000000000640001007107ffff0001010720000000080026006c090000080027000300000008000c006400000008000d0000000000"], 0x70}}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) r12 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) r13 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_SERVICE(r13, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x50, r12, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x64}, @IPVS_SVC_ATTR_SCHED_NAME={0x9, 0x6, 'none\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8}]}]}, 0x50}}, 0x0) sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000600)={0x90, r12, 0x4, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffff9}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x64b}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}, @IPVS_CMD_ATTR_DAEMON={0x34, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'pimreg1\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0x2b}}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}]}, 0x90}, 0x1, 0x0, 0x0, 0x24000000}, 0x24000000) sendmsg$NL80211_CMD_NEW_STATION(r9, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)={0x3c, r10, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc0}, 0x0) r14 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r14, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0x12}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0xe}]}}}]}]}], {0x14}}, 0xd8}}, 0x0) syz_emit_ethernet(0x2a, &(0x7f00000015c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x8}}}}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000061105000000000009500000440000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) [ 85.419041][ T5307] Bluetooth: hci0: command tx timeout [ 85.540196][ T5331] loop0: detected capacity change from 0 to 2048 [ 85.581530][ T5331] NILFS (loop0): invalid segment: Checksum error in super root [ 85.595789][ T5331] NILFS (loop0): error -22 while loading super root [ 85.606804][ T5331] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode broadcast(3) [ 85.673915][ T54] IPVS: starting estimator thread 0... [ 85.680788][ T5331] ------------[ cut here ]------------ [ 85.683324][ T5331] WARNING: CPU: 0 PID: 5331 at net/mac80211/rate.c:53 rate_control_rate_init+0x64a/0x6e0 [ 85.688327][ T5331] Modules linked in: [ 85.690591][ T5331] CPU: 0 UID: 0 PID: 5331 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller-00233-g35e261cd95dd #0 PREEMPT(full) [ 85.695935][ T5331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.700180][ T5331] RIP: 0010:rate_control_rate_init+0x64a/0x6e0 [ 85.702657][ T5331] Code: 82 01 00 00 20 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 f0 8b 00 cc e8 62 6c e2 f6 90 0f 0b 90 eb e1 e8 57 6c e2 f6 90 <0f> 0b 90 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 90 00 00 00 [ 85.710504][ T5331] RSP: 0018:ffffc9000d586ff0 EFLAGS: 00010283 [ 85.713324][ T5331] RAX: ffffffff8adde219 RBX: ffff8880331f0000 RCX: 0000000000100000 [ 85.717301][ T5331] RDX: ffffc9000e202000 RSI: 0000000000000348 RDI: 0000000000000349 [ 85.721386][ T5331] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8adddd33 [ 85.725151][ T5331] R10: dffffc0000000000 R11: ffffed100663e031 R12: 1ffff1100663e00a [ 85.728730][ T5331] R13: ffff888041ed8e40 R14: 0000000000000001 R15: ffffffff8adddd33 [ 85.732412][ T5331] FS: 00007fb055f776c0(0000) GS:ffff88808d250000(0000) knlGS:0000000000000000 [ 85.736667][ T5331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.739546][ T5331] CR2: 00005571a0dc05b8 CR3: 0000000044188000 CR4: 0000000000352ef0 [ 85.743118][ T5331] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 85.747390][ T5331] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 85.751211][ T5331] Call Trace: [ 85.752818][ T5331] [ 85.754239][ T5331] rate_control_rate_init_all_links+0x109/0x1a0 [ 85.757314][ T5331] sta_apply_auth_flags+0x1c2/0x400 [ 85.759828][ T5331] sta_apply_parameters+0xe4b/0x15b0 [ 85.762245][ T5331] ieee80211_add_station+0x424/0x6a0 [ 85.764905][ T5331] rdev_add_station+0x108/0x290 [ 85.767196][ T5331] nl80211_new_station+0x1723/0x1b40 [ 85.769760][ T5331] ? __pfx_nl80211_new_station+0x10/0x10 [ 85.772392][ T5331] ? netdev_run_todo+0xe1d/0xea0 [ 85.774950][ T5331] ? nl80211_pre_doit+0x4f1/0x930 [ 85.777373][ T5331] genl_family_rcv_msg_doit+0x212/0x300 [ 85.779960][ T5331] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 85.782810][ T5331] ? bpf_lsm_capable+0x9/0x20 [ 85.785129][ T5331] ? security_capable+0x7e/0x2e0 [ 85.787522][ T5331] genl_rcv_msg+0x60e/0x790 [ 85.789637][ T5331] ? __pfx_genl_rcv_msg+0x10/0x10 [ 85.791981][ T5331] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 85.794961][ T5331] ? __pfx_nl80211_new_station+0x10/0x10 [ 85.798151][ T5331] ? __pfx_nl80211_post_doit+0x10/0x10 [ 85.801949][ T5331] netlink_rcv_skb+0x208/0x470 [ 85.804177][ T5331] ? __pfx_genl_rcv_msg+0x10/0x10 [ 85.806892][ T5331] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 85.809200][ T5331] ? down_read+0x1ad/0x2e0 [ 85.811235][ T5331] genl_rcv+0x28/0x40 [ 85.813474][ T5331] netlink_unicast+0x75b/0x8d0 [ 85.815891][ T5331] netlink_sendmsg+0x805/0xb30 [ 85.818102][ T5331] ? __pfx_netlink_sendmsg+0x10/0x10 [ 85.820302][ T5331] ? aa_sock_msg_perm+0x94/0x160 [ 85.822318][ T5331] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 85.824451][ T5331] ? __pfx_netlink_sendmsg+0x10/0x10 [ 85.826784][ T5331] __sock_sendmsg+0x21c/0x270 [ 85.828740][ T5331] ____sys_sendmsg+0x505/0x830 [ 85.830875][ T5331] ? __pfx_____sys_sendmsg+0x10/0x10 [ 85.833192][ T5331] ? import_iovec+0x74/0xa0 [ 85.835408][ T5331] ___sys_sendmsg+0x21f/0x2a0 [ 85.837465][ T5331] ? __pfx____sys_sendmsg+0x10/0x10 [ 85.839829][ T5331] ? __fget_files+0x2a/0x420 [ 85.841910][ T5331] ? __fget_files+0x3a0/0x420 [ 85.843971][ T5331] __x64_sys_sendmsg+0x19b/0x260 [ 85.846438][ T5331] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 85.848942][ T5331] ? rcu_is_watching+0x15/0xb0 [ 85.851376][ T5331] ? do_syscall_64+0xbe/0x3b0 [ 85.853649][ T5331] do_syscall_64+0xfa/0x3b0 [ 85.855967][ T5331] ? lockdep_hardirqs_on+0x9c/0x150 [ 85.858449][ T5331] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.861291][ T5331] ? clear_bhb_loop+0x60/0xb0 [ 85.863424][ T5331] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.866332][ T5331] RIP: 0033:0x7fb05518e929 [ 85.868412][ T5331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.876985][ T5331] RSP: 002b:00007fb055f77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 85.880713][ T5331] RAX: ffffffffffffffda RBX: 00007fb0553b5fa0 RCX: 00007fb05518e929 [ 85.884352][ T5331] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000009 [ 85.888317][ T5331] RBP: 00007fb055210b39 R08: 0000000000000000 R09: 0000000000000000 [ 85.891900][ T5331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 85.895580][ T5331] R13: 0000000000000000 R14: 00007fb0553b5fa0 R15: 00007ffd71c72e18 [ 85.899120][ T5331] [ 85.900635][ T5331] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 85.903845][ T5331] CPU: 0 UID: 0 PID: 5331 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller-00233-g35e261cd95dd #0 PREEMPT(full) [ 85.908937][ T5331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.913613][ T5331] Call Trace: [ 85.915272][ T5331] [ 85.916673][ T5331] dump_stack_lvl+0x99/0x250 [ 85.918855][ T5331] ? __asan_memcpy+0x40/0x70 [ 85.921045][ T5331] ? __pfx_dump_stack_lvl+0x10/0x10 [ 85.923395][ T5331] ? __pfx__printk+0x10/0x10 [ 85.925532][ T5331] panic+0x2db/0x790 [ 85.927344][ T5331] ? __pfx_panic+0x10/0x10 [ 85.929421][ T5331] __warn+0x31b/0x4b0 [ 85.931212][ T5331] ? rate_control_rate_init+0x64a/0x6e0 [ 85.933709][ T5331] ? rate_control_rate_init+0x64a/0x6e0 [ 85.936025][ T5331] report_bug+0x2be/0x4f0 [ 85.938062][ T5331] ? rate_control_rate_init+0x64a/0x6e0 [ 85.940640][ T5331] ? rate_control_rate_init+0x64a/0x6e0 [ 85.943129][ T5331] ? rate_control_rate_init+0x64c/0x6e0 [ 85.945737][ T5331] handle_bug+0x84/0x160 [ 85.947729][ T5331] exc_invalid_op+0x1a/0x50 [ 85.949838][ T5331] asm_exc_invalid_op+0x1a/0x20 [ 85.952047][ T5331] RIP: 0010:rate_control_rate_init+0x64a/0x6e0 [ 85.954799][ T5331] Code: 82 01 00 00 20 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 f0 8b 00 cc e8 62 6c e2 f6 90 0f 0b 90 eb e1 e8 57 6c e2 f6 90 <0f> 0b 90 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 90 00 00 00 [ 85.962480][ T5331] RSP: 0018:ffffc9000d586ff0 EFLAGS: 00010283 [ 85.965283][ T5331] RAX: ffffffff8adde219 RBX: ffff8880331f0000 RCX: 0000000000100000 [ 85.968928][ T5331] RDX: ffffc9000e202000 RSI: 0000000000000348 RDI: 0000000000000349 [ 85.972518][ T5331] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8adddd33 [ 85.976306][ T5331] R10: dffffc0000000000 R11: ffffed100663e031 R12: 1ffff1100663e00a [ 85.979769][ T5331] R13: ffff888041ed8e40 R14: 0000000000000001 R15: ffffffff8adddd33 [ 85.983419][ T5331] ? rate_control_rate_init+0x163/0x6e0 [ 85.985993][ T5331] ? rate_control_rate_init+0x163/0x6e0 [ 85.988649][ T5331] ? rate_control_rate_init+0x649/0x6e0 [ 85.992204][ T5331] rate_control_rate_init_all_links+0x109/0x1a0 [ 85.996071][ T5331] sta_apply_auth_flags+0x1c2/0x400 [ 85.998818][ T5331] sta_apply_parameters+0xe4b/0x15b0 [ 86.001447][ T5331] ieee80211_add_station+0x424/0x6a0 [ 86.004218][ T5331] rdev_add_station+0x108/0x290 [ 86.006587][ T5331] nl80211_new_station+0x1723/0x1b40 [ 86.009193][ T5331] ? __pfx_nl80211_new_station+0x10/0x10 [ 86.011996][ T5331] ? netdev_run_todo+0xe1d/0xea0 [ 86.014300][ T5331] ? nl80211_pre_doit+0x4f1/0x930 [ 86.016596][ T5331] genl_family_rcv_msg_doit+0x212/0x300 [ 86.019084][ T5331] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 86.021856][ T5331] ? bpf_lsm_capable+0x9/0x20 [ 86.024129][ T5331] ? security_capable+0x7e/0x2e0 [ 86.026499][ T5331] genl_rcv_msg+0x60e/0x790 [ 86.028950][ T5331] ? __pfx_genl_rcv_msg+0x10/0x10 [ 86.031319][ T5331] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 86.033767][ T5331] ? __pfx_nl80211_new_station+0x10/0x10 [ 86.036716][ T5331] ? __pfx_nl80211_post_doit+0x10/0x10 [ 86.039437][ T5331] netlink_rcv_skb+0x208/0x470 [ 86.041605][ T5331] ? __pfx_genl_rcv_msg+0x10/0x10 [ 86.043876][ T5331] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 86.046145][ T5331] ? down_read+0x1ad/0x2e0 [ 86.048123][ T5331] genl_rcv+0x28/0x40 [ 86.049922][ T5331] netlink_unicast+0x75b/0x8d0 [ 86.051992][ T5331] netlink_sendmsg+0x805/0xb30 [ 86.054127][ T5331] ? __pfx_netlink_sendmsg+0x10/0x10 [ 86.056579][ T5331] ? aa_sock_msg_perm+0x94/0x160 [ 86.058787][ T5331] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 86.061125][ T5331] ? __pfx_netlink_sendmsg+0x10/0x10 [ 86.063411][ T5331] __sock_sendmsg+0x21c/0x270 [ 86.065526][ T5331] ____sys_sendmsg+0x505/0x830 [ 86.067683][ T5331] ? __pfx_____sys_sendmsg+0x10/0x10 [ 86.070032][ T5331] ? import_iovec+0x74/0xa0 [ 86.072029][ T5331] ___sys_sendmsg+0x21f/0x2a0 [ 86.074156][ T5331] ? __pfx____sys_sendmsg+0x10/0x10 [ 86.076480][ T5331] ? __fget_files+0x2a/0x420 [ 86.078492][ T5331] ? __fget_files+0x3a0/0x420 [ 86.080513][ T5331] __x64_sys_sendmsg+0x19b/0x260 [ 86.082647][ T5331] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 86.085024][ T5331] ? rcu_is_watching+0x15/0xb0 [ 86.087091][ T5331] ? do_syscall_64+0xbe/0x3b0 [ 86.089134][ T5331] do_syscall_64+0xfa/0x3b0 [ 86.091166][ T5331] ? lockdep_hardirqs_on+0x9c/0x150 [ 86.093415][ T5331] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.096143][ T5331] ? clear_bhb_loop+0x60/0xb0 [ 86.098221][ T5331] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.100776][ T5331] RIP: 0033:0x7fb05518e929 [ 86.102800][ T5331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 86.110967][ T5331] RSP: 002b:00007fb055f77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 86.114712][ T5331] RAX: ffffffffffffffda RBX: 00007fb0553b5fa0 RCX: 00007fb05518e929 [ 86.118237][ T5331] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000009 [ 86.121759][ T5331] RBP: 00007fb055210b39 R08: 0000000000000000 R09: 0000000000000000 [ 86.125187][ T5331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 86.128608][ T5331] R13: 0000000000000000 R14: 00007fb0553b5fa0 R15: 00007ffd71c72e18 [ 86.132049][ T5331] [ 86.133484][ T5331] Kernel Offset: disabled [ 86.134931][ T5331] Rebooting in 86400 seconds..