[   44.057519][   T40] audit: type=1400 audit(1769932833.680:59): avc:  denied  { write } for  pid=5821 comm="sh" path="pipe:[3868]" dev="pipefs" ino=3868 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   44.064927][   T40] audit: type=1400 audit(1769932833.680:60): avc:  denied  { rlimitinh } for  pid=5821 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   44.071732][   T40] audit: type=1400 audit(1769932833.680:61): avc:  denied  { siginh } for  pid=5821 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '[localhost]:15590' (ED25519) to the list of known hosts.
[   50.493075][   T40] audit: type=1400 audit(1769932840.130:62): avc:  denied  { execute } for  pid=5911 comm="sh" name="syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   50.502186][   T40] audit: type=1400 audit(1769932840.130:63): avc:  denied  { execute_no_trans } for  pid=5911 comm="sh" path="/syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
2026/02/01 08:00:41 parsed 1 programs
[   51.803600][   T40] audit: type=1400 audit(1769932841.440:64): avc:  denied  { node_bind } for  pid=5911 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   54.361145][   T40] audit: type=1400 audit(1769932844.000:65): avc:  denied  { mounton } for  pid=5928 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   54.370475][   T40] audit: type=1400 audit(1769932844.010:66): avc:  denied  { mount } for  pid=5928 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   54.372985][ T5928] cgroup: Unknown subsys name 'net'
[   54.382942][   T40] audit: type=1400 audit(1769932844.020:67): avc:  denied  { unmount } for  pid=5928 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   54.473913][ T5928] cgroup: Unknown subsys name 'cpuset'
[   54.478333][ T5928] cgroup: Unknown subsys name 'rlimit'
[   54.676740][   T40] audit: type=1400 audit(1769932844.310:68): avc:  denied  { setattr } for  pid=5928 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   54.684423][   T40] audit: type=1400 audit(1769932844.310:69): avc:  denied  { create } for  pid=5928 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   54.691116][   T40] audit: type=1400 audit(1769932844.310:70): avc:  denied  { write } for  pid=5928 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   54.697373][   T40] audit: type=1400 audit(1769932844.310:71): avc:  denied  { read } for  pid=5928 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   54.728319][ T5936] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   55.583467][ T5928] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   57.346332][   T40] kauditd_printk_skb: 10 callbacks suppressed
[   57.346344][   T40] audit: type=1400 audit(1769932846.980:82): avc:  denied  { execmem } for  pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   57.355081][   T40] audit: type=1400 audit(1769932846.990:83): avc:  denied  { read } for  pid=5942 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.362756][   T40] audit: type=1400 audit(1769932846.990:84): avc:  denied  { open } for  pid=5942 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.370289][   T40] audit: type=1400 audit(1769932846.990:85): avc:  denied  { mounton } for  pid=5942 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   57.389609][   T40] audit: type=1400 audit(1769932847.030:86): avc:  denied  { mount } for  pid=5942 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   57.397108][   T40] audit: type=1400 audit(1769932847.030:87): avc:  denied  { mounton } for  pid=5942 comm="syz-executor" path="/syzkaller.8QgaM2/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   57.406455][   T40] audit: type=1400 audit(1769932847.030:88): avc:  denied  { mount } for  pid=5942 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   57.413872][   T40] audit: type=1400 audit(1769932847.030:89): avc:  denied  { mounton } for  pid=5942 comm="syz-executor" path="/syzkaller.8QgaM2/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   57.422000][   T40] audit: type=1400 audit(1769932847.030:90): avc:  denied  { mounton } for  pid=5942 comm="syz-executor" path="/syzkaller.8QgaM2/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=5980 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   57.425078][ T5942] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   57.432567][   T40] audit: type=1400 audit(1769932847.030:91): avc:  denied  { unmount } for  pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   58.316977][ T5974] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   58.322136][ T5974] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   58.325524][ T5974] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   58.332175][ T5974] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   58.335022][ T5974] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   59.339454][ T6000] chnl_net:caif_netlink_parms(): no params data found
[   59.431379][ T6000] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.435514][ T6000] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.438527][ T6000] bridge_slave_0: entered allmulticast mode
[   59.442828][ T6000] bridge_slave_0: entered promiscuous mode
[   59.448542][ T6000] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.451893][ T6000] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.454975][ T6000] bridge_slave_1: entered allmulticast mode
[   59.458929][ T6000] bridge_slave_1: entered promiscuous mode
[   59.488092][ T6000] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.495980][ T6000] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.527560][ T6000] team0: Port device team_slave_0 added
[   59.533359][ T6000] team0: Port device team_slave_1 added
[   59.555681][ T6000] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.559032][ T6000] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   59.569192][ T6000] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.574370][ T6000] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.576736][ T6000] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   59.585823][ T6000] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.627805][ T6000] hsr_slave_0: entered promiscuous mode
[   59.632807][ T6000] hsr_slave_1: entered promiscuous mode
[   59.780929][ T6000] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   59.792550][ T6000] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   59.799767][ T6000] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   59.805996][ T6000] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   59.832528][ T6000] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.835815][ T6000] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.839896][ T6000] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.843071][ T6000] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.885987][ T6000] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.898412][ T1144] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.902325][ T1144] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.910406][ T6000] 8021q: adding VLAN 0 to HW filter on device team0
[   59.918458][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.921593][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.929673][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.931979][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.066229][ T6000] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.104175][ T6000] veth0_vlan: entered promiscuous mode
[   60.109771][ T6000] veth1_vlan: entered promiscuous mode
[   60.130927][ T6000] veth0_macvtap: entered promiscuous mode
[   60.134986][ T6000] veth1_macvtap: entered promiscuous mode
[   60.152221][ T6000] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.164576][ T6000] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.174003][ T1212] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.177466][ T1212] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.180474][ T1212] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.184157][ T1212] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.268282][ T1144] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.372358][ T1144] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.427243][ T1144] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.541377][ T1144] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.649436][ T1212] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.653184][ T1212] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.676034][ T1212] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.678589][ T1212] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/01 08:00:50 executed programs: 0
[   61.083484][ T5974] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   61.086935][ T5974] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   61.089848][ T5974] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   61.092989][ T5974] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   61.096502][ T5974] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   61.244607][ T6038] chnl_net:caif_netlink_parms(): no params data found
[   61.303526][ T6038] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.306583][ T6038] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.309932][ T6038] bridge_slave_0: entered allmulticast mode
[   61.313738][ T6038] bridge_slave_0: entered promiscuous mode
[   61.318260][ T6038] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.322222][ T6038] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.325161][ T6038] bridge_slave_1: entered allmulticast mode
[   61.328898][ T6038] bridge_slave_1: entered promiscuous mode
[   61.354299][ T6038] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   61.362557][ T6038] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   61.379227][ T6038] team0: Port device team_slave_0 added
[   61.383002][ T6038] team0: Port device team_slave_1 added
[   61.400067][ T6038] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.402346][ T6038] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   61.410641][ T6038] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   61.414885][ T6038] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.417086][ T6038] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   61.425701][ T6038] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.450437][ T6038] hsr_slave_0: entered promiscuous mode
[   61.452833][ T6038] hsr_slave_1: entered promiscuous mode
[   61.454952][ T6038] debugfs: 'hsr0' already exists in 'hsr'
[   61.456829][ T6038] Cannot create hsr debugfs directory
[   63.109582][ T5974] Bluetooth: hci0: command tx timeout
[   63.363184][ T1144] bridge_slave_1: left allmulticast mode
[   63.365256][ T1144] bridge_slave_1: left promiscuous mode
[   63.367672][ T1144] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.373806][ T1144] bridge_slave_0: left allmulticast mode
[   63.375740][ T1144] bridge_slave_0: left promiscuous mode
[   63.377810][ T1144] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.403387][   T40] kauditd_printk_skb: 20 callbacks suppressed
[   63.403398][   T40] audit: type=1400 audit(1769932853.040:112): avc:  denied  { create } for  pid=6047 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   63.413521][   T40] audit: type=1400 audit(1769932853.040:113): avc:  denied  { write } for  pid=6047 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth2.link" dev="tmpfs" ino=2042 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   63.423036][   T40] audit: type=1400 audit(1769932853.040:114): avc:  denied  { append } for  pid=6047 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" dev="tmpfs" ino=2042 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   63.453659][   T40] audit: type=1400 audit(1769932853.090:115): avc:  denied  { unlink } for  pid=6050 comm="rm" name="resolv.conf.eth2.link" dev="tmpfs" ino=2042 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   63.640349][ T1144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   63.646235][ T1144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   63.651308][ T1144] bond0 (unregistering): Released all slaves
[   63.779854][ T1144] hsr_slave_0: left promiscuous mode
[   63.783498][ T1144] hsr_slave_1: left promiscuous mode
[   63.786342][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.789869][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.794780][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.797831][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.811431][ T1144] veth1_macvtap: left promiscuous mode
[   63.813307][ T1144] veth0_macvtap: left promiscuous mode
[   63.815932][ T1144] veth1_vlan: left promiscuous mode
[   63.818283][ T1144] veth0_vlan: left promiscuous mode
[   64.112276][ T1144] team0 (unregistering): Port device team_slave_1 removed
[   64.132789][ T1144] team0 (unregistering): Port device team_slave_0 removed
[   64.767526][ T6038] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   64.772641][ T6038] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   64.776439][ T6038] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   64.781526][ T6038] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   64.851689][ T6038] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.876120][ T6038] 8021q: adding VLAN 0 to HW filter on device team0
[   64.882187][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.885343][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.897085][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.900282][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.148049][ T6038] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.165385][ T6038] veth0_vlan: entered promiscuous mode
[   65.170299][ T6038] veth1_vlan: entered promiscuous mode
[   65.188732][ T5974] Bluetooth: hci0: command tx timeout
[   65.189195][ T6038] veth0_macvtap: entered promiscuous mode
[   65.196813][ T6038] veth1_macvtap: entered promiscuous mode
[   65.231140][ T6038] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.240311][ T6038] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.253377][   T43] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.256888][   T43] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.261946][   T43] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.265532][   T43] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.330639][ T1212] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.333964][ T1212] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.352138][ T1212] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.355512][ T1212] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.384473][   T40] audit: type=1400 audit(1769932855.020:116): avc:  denied  { ioctl } for  pid=6093 comm="syz.0.17" path="socket:[7159]" dev="sockfs" ino=7159 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   65.402685][   T12] ------------[ cut here ]------------
[   65.402774][ T6093] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   65.404486][   T12] intf 08:02:11:00:00:01 [link=0]: bad STA 00:00:00:ff:ff:ff bandwidth 20 MHz (0) > channel config 10 MHz (7)
[   65.412360][   T12] WARNING: drivers/net/wireless/virtual/mac80211_hwsim.c:2693 at mac80211_hwsim_sta_rc_update+0x5dc/0x840, CPU#2: kworker/u32:0/12
[   65.416549][   T12] Modules linked in:
[   65.417844][   T12] CPU: 2 UID: 0 PID: 12 Comm: kworker/u32:0 Not tainted syzkaller #0 PREEMPT(full) 
[   65.420975][   T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   65.424121][   T12] Workqueue: events_unbound cfg80211_wiphy_work
[   65.426129][   T12] RIP: 0010:mac80211_hwsim_sta_rc_update+0x5fe/0x840
[   65.428237][   T12] Code: 00 48 8d 3d 74 27 b0 09 48 8b 4c 24 10 48 8b 44 24 20 89 da 44 8b 89 b8 01 00 00 55 48 8d b0 72 05 00 00 41 57 44 8b 44 24 14 <67> 48 0f b9 3a 58 5a e9 3b fc ff ff e8 11 7e f3 fa e8 5c 4a 63 04
[   65.434509][   T12] RSP: 0018:ffffc900000f7888 EFLAGS: 00010246
[   65.436732][   T12] RAX: ffff88803d23aa60 RBX: 0000000000000000 RCX: ffff888030254ec0
[   65.439495][   T12] RDX: 0000000000000000 RSI: ffff88803d23afd2 RDI: ffffffff90c3a490
[   65.441986][   T12] RBP: 0000000000000007 R08: 0000000000000014 R09: 0000000000000000
[   65.444586][   T12] R10: 0000000000000007 R11: 0000000000000000 R12: dffffc0000000000
[   65.447096][   T12] R13: ffff888030255088 R14: ffff88803889b100 R15: 000000000000000a
[   65.449801][   T12] FS:  0000000000000000(0000) GS:ffff8880d67d9000(0000) knlGS:0000000000000000
[   65.452605][   T12] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   65.454438][   T12] CR2: 0000001b2e124008 CR3: 0000000057da2000 CR4: 0000000000352ef0
[   65.457362][   T12] Call Trace:
[   65.459190][   T12]  <TASK>
[   65.460499][   T12]  mac80211_hwsim_sta_add+0xc9/0x290
[   65.462733][   T12]  ? __pfx_mac80211_hwsim_sta_add+0x10/0x10
[   65.465257][   T12]  drv_sta_state+0x826/0x17b0
[   65.467258][   T12]  sta_info_insert_rcu+0x170b/0x2fa0
[   65.469847][   T12]  ? rate_control_rate_init+0x3d6/0x730
[   65.472177][   T12]  ieee80211_ocb_work+0x34d/0x650
[   65.474308][   T12]  ? __pfx_ieee80211_ocb_work+0x10/0x10
[   65.476685][   T12]  ? lockdep_hardirqs_on+0x78/0x100
[   65.479244][   T12]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   65.481765][   T12]  ieee80211_iface_work+0x431/0x1350
[   65.483714][   T12]  ? rcu_is_watching+0x12/0xc0
[   65.485239][   T12]  cfg80211_wiphy_work+0x3f7/0x560
[   65.486908][   T12]  process_one_work+0x9c2/0x1840
[   65.488471][   T12]  ? __pfx_process_one_work+0x10/0x10
[   65.490380][   T12]  ? assign_work+0x19c/0x250
[   65.491881][   T12]  worker_thread+0x5da/0xe40
[   65.493403][   T12]  ? kthread+0x17d/0x730
[   65.494820][   T12]  ? __pfx_worker_thread+0x10/0x10
[   65.496495][   T12]  kthread+0x3b3/0x730
[   65.497816][   T12]  ? __pfx_kthread+0x10/0x10
[   65.499478][   T12]  ? ret_from_fork+0x79/0xaf0
[   65.500983][   T12]  ? ret_from_fork+0x79/0xaf0
[   65.502445][   T12]  ? rcu_is_watching+0x12/0xc0
[   65.504004][   T12]  ? __pfx_kthread+0x10/0x10
[   65.505536][   T12]  ret_from_fork+0x754/0xaf0
[   65.507023][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[   65.508933][   T12]  ? __switch_to+0x7b9/0x10c0
[   65.510454][   T12]  ? __pfx_kthread+0x10/0x10
[   65.511960][   T12]  ret_from_fork_asm+0x1a/0x30
[   65.513527][   T12]  </TASK>
[   65.514533][   T12] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   65.516839][   T12] CPU: 2 UID: 0 PID: 12 Comm: kworker/u32:0 Not tainted syzkaller #0 PREEMPT(full) 
[   65.520296][   T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   65.523748][   T12] Workqueue: events_unbound cfg80211_wiphy_work
[   65.526410][   T12] Call Trace:
[   65.527534][   T12]  <TASK>
[   65.528505][   T12]  dump_stack_lvl+0x100/0x190
[   65.530003][   T12]  vpanic+0x20d/0x630
[   65.531399][   T12]  panic+0xd1/0xd1
[   65.532664][   T12]  ? __pfx_panic+0x10/0x10
[   65.534138][   T12]  ? check_panic_on_warn+0x1f/0x90
[   65.535792][   T12]  check_panic_on_warn.cold+0x19/0x34
[   65.537510][   T12]  ? mac80211_hwsim_sta_rc_update+0x5dc/0x840
[   65.539477][   T12]  __warn.cold+0x191/0x2f8
[   65.540917][   T12]  __report_bug+0x296/0x3d0
[   65.542385][   T12]  ? mac80211_hwsim_sta_rc_update+0x5dc/0x840
[   65.544378][   T12]  ? __pfx___report_bug+0x10/0x10
[   65.546014][   T12]  ? irqentry_exit+0x180/0x670
[   65.547555][   T12]  ? mac80211_hwsim_sta_rc_update+0x5fe/0x840
[   65.549488][   T12]  report_bug_entry+0xe1/0x290
[   65.551013][   T12]  ? mac80211_hwsim_sta_rc_update+0x5fe/0x840
[   65.553072][   T12]  handle_bug+0x1c9/0x2a0
[   65.554505][   T12]  exc_invalid_op+0x17/0x50
[   65.556000][   T12]  asm_exc_invalid_op+0x1a/0x20
[   65.557661][   T12] RIP: 0010:mac80211_hwsim_sta_rc_update+0x5fe/0x840
[   65.559740][   T12] Code: 00 48 8d 3d 74 27 b0 09 48 8b 4c 24 10 48 8b 44 24 20 89 da 44 8b 89 b8 01 00 00 55 48 8d b0 72 05 00 00 41 57 44 8b 44 24 14 <67> 48 0f b9 3a 58 5a e9 3b fc ff ff e8 11 7e f3 fa e8 5c 4a 63 04
[   65.565685][   T12] RSP: 0018:ffffc900000f7888 EFLAGS: 00010246
[   65.567569][   T12] RAX: ffff88803d23aa60 RBX: 0000000000000000 RCX: ffff888030254ec0
[   65.570005][   T12] RDX: 0000000000000000 RSI: ffff88803d23afd2 RDI: ffffffff90c3a490
[   65.572491][   T12] RBP: 0000000000000007 R08: 0000000000000014 R09: 0000000000000000
[   65.575019][   T12] R10: 0000000000000007 R11: 0000000000000000 R12: dffffc0000000000
[   65.577451][   T12] R13: ffff888030255088 R14: ffff88803889b100 R15: 000000000000000a
[   65.579964][   T12]  mac80211_hwsim_sta_add+0xc9/0x290
[   65.581646][   T12]  ? __pfx_mac80211_hwsim_sta_add+0x10/0x10
[   65.583573][   T12]  drv_sta_state+0x826/0x17b0
[   65.585111][   T12]  sta_info_insert_rcu+0x170b/0x2fa0
[   65.586805][   T12]  ? rate_control_rate_init+0x3d6/0x730
[   65.588575][   T12]  ieee80211_ocb_work+0x34d/0x650
[   65.590155][   T12]  ? __pfx_ieee80211_ocb_work+0x10/0x10
[   65.591926][   T12]  ? lockdep_hardirqs_on+0x78/0x100
[   65.593651][   T12]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   65.595587][   T12]  ieee80211_iface_work+0x431/0x1350
[   65.597317][   T12]  ? rcu_is_watching+0x12/0xc0
[   65.598850][   T12]  cfg80211_wiphy_work+0x3f7/0x560
[   65.600500][   T12]  process_one_work+0x9c2/0x1840
[   65.602077][   T12]  ? __pfx_process_one_work+0x10/0x10
[   65.603803][   T12]  ? assign_work+0x19c/0x250
[   65.605352][   T12]  worker_thread+0x5da/0xe40
[   65.606827][   T12]  ? kthread+0x17d/0x730
[   65.608199][   T12]  ? __pfx_worker_thread+0x10/0x10
[   65.609869][   T12]  kthread+0x3b3/0x730
[   65.611133][   T12]  ? __pfx_kthread+0x10/0x10
[   65.612713][   T12]  ? ret_from_fork+0x79/0xaf0
[   65.614182][   T12]  ? ret_from_fork+0x79/0xaf0
[   65.615688][   T12]  ? rcu_is_watching+0x12/0xc0
[   65.617178][   T12]  ? __pfx_kthread+0x10/0x10
[   65.618638][   T12]  ret_from_fork+0x754/0xaf0
[   65.620283][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[   65.622418][   T12]  ? __switch_to+0x7b9/0x10c0
[   65.624408][   T12]  ? __pfx_kthread+0x10/0x10
[   65.626332][   T12]  ret_from_fork_asm+0x1a/0x30
[   65.628337][   T12]  </TASK>
[   65.630459][   T12] Kernel Offset: disabled
[   65.632285][   T12] Rebooting in 86400 seconds..