program: ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000000000096370040"]) syz_80211_inject_frame(&(0x7f0000000240)=@device_b, &(0x7f0000000000)=ANY=[@ANYBLOB="80000000080211000001080211000000aa09b799c0d70000000000000000000064000110000602020202020201010b"], 0xb5) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0) r0 = socket$inet6(0xa, 0x3, 0x7) sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='00'], 0x30}, 0x1, 0x0, 0x0, 0x18004}, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_REG(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000800000001a000000280022800414008004000080040000808341f1680200008014000080040000800400008004000080060021"], 0x44}}, 0x0) syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f0000000800)={[{@lastblock={'lastblock', 0x3d, 0xfe}}, {@longad}, {@adinicb}, {@shortad}, {@unhide}, {@shortad}, {@utf8}, {@nostrict}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}]}, 0x1, 0xc65, &(0x7f0000000f80)="$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") r3 = socket(0x1, 0x803, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000002500)={0x0, 0x0, 0x0}, &(0x7f0000002540)=0xc) mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x810000, &(0x7f0000002580)={[{@gid={'gid', 0x3d, r4}}]}) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r0, &(0x7f0000000480), 0x2e9, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) eventfd2(0x9, 0x80000) sendmsg$IPCTNL_MSG_CT_GET_DYING(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14, 0x6, 0x1, 0x801}, 0x14}}, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x24000850) sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a00)={0x28, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0) syz_mount_image$cramfs(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0071d0b71187c85502a576f9dc99a3d838900875ebccd98c223bf1438163c8def2d0dd2be2e87e85d3cadf28fe3f6baaefe25aeb6433e69a1c3e95959d77e242b751205cdfc82192a04451d940ef3c28954e5492b1e63fadc667472c0630086aca456cf0212429d1748913a013866a56ff6c9c50c6271ca0eb72f0322a20f9c3c5ba0cfb11a3971eb1861ccfc93c011a64fd42b360498f82255586f35d0fa2a5c45ad163e191147c025f703908745534c9"], 0x1, 0x140, &(0x7f0000000200)="$eJzszLFLMnEYwPHvvd77+lKaRgYWZEFDR2KeJ7Y1aCQJ2UHh0iTYRYFmJERjBW0N/QEOldAkDtHYUNZiKYT9HUJD0FicJ4gRDc2/DxzH7/s8PAtzDQU3tD9gPp/b2TUKBWN9YkVPxlevrm8GzG4H/vfMrf3bKGyafxlah2DmeydsbGWNmUw+a75bUVCAWL/VVazdPrN5rBbqNGUSqsNW075p4U4blSHm6t77OIcp895g994bsF/0V8qPy/VaIjB9OWbjOOEfH5J6u8840eIjJYfXRsp4uCDWnr8Ea4HnYKXcbNSTS3pSb4Q1bTashlQ10tSf6onIwSnyomMP1r7c+4fXJ6fgSIKiBOX2vHUnOYHq2buec9k9wOu2G6SfJpm0928p7XH/waYgIQiCIAiCIAiCIAi/9BkAAP//OCds6A==") [ 78.241137][ T5312] Bluetooth: hci0: command tx timeout [ 78.246475][ T1311] ieee802154 phy0 wpan0: encryption failed: -22 [ 78.249066][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 78.333206][ T5328] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 78.374069][ T5328] loop0: detected capacity change from 0 to 2048 [ 78.394834][ T5328] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 78.419713][ T5328] bpf: Bad value for 'gid' [ 78.453022][ T5328] wlan1: No basic rates, using min rate instead [ 78.455988][ T5328] ------------[ cut here ]------------ [ 78.458023][ T5328] WARNING: CPU: 0 PID: 5328 at net/mac80211/mlme.c:1124 ieee80211_prep_channel+0x4e32/0x66e0 [ 78.462369][ T5328] Modules linked in: [ 78.463898][ T5328] CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted 6.15.0-rc3-syzkaller-00008-ga33b5a08cbbd #0 PREEMPT(full) [ 78.468158][ T5328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 78.472525][ T5328] RIP: 0010:ieee80211_prep_channel+0x4e32/0x66e0 [ 78.474892][ T5328] Code: c6 05 a2 63 93 04 01 48 c7 c7 97 40 6d 8d be e8 03 00 00 48 c7 c2 00 42 6d 8d e8 b9 31 e8 f5 e9 03 b5 ff ff e8 ef 58 0c f6 90 <0f> 0b 90 48 8b 7c 24 28 e8 91 f0 6a f6 48 c7 44 24 28 ea ff ff ff [ 78.482159][ T5328] RSP: 0018:ffffc9000d686440 EFLAGS: 00010283 [ 78.484451][ T5328] RAX: ffffffff8bb66431 RBX: 0000000000000000 RCX: 0000000000100000 [ 78.487391][ T5328] RDX: ffffc9000e44a000 RSI: 0000000000000a48 RDI: 0000000000000a49 [ 78.490325][ T5328] RBP: ffffc9000d686850 R08: ffffffff8bb62477 R09: ffffffff8b84924c [ 78.493501][ T5328] R10: 000000000000000e R11: ffff888000ee2440 R12: dffffc0000000000 [ 78.496429][ T5328] R13: ffff888053466758 R14: ffffc9000d686710 R15: ffffc9000d686750 [ 78.499286][ T5328] FS: 00007ff5dd8a06c0(0000) GS:ffff88808c59a000(0000) knlGS:0000000000000000 [ 78.502940][ T5328] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 78.505366][ T5328] CR2: 000056040b265080 CR3: 00000000442a2000 CR4: 0000000000352ef0 [ 78.508301][ T5328] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 78.511209][ T5328] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 78.514238][ T5328] Call Trace: [ 78.515516][ T5328] [ 78.516627][ T5328] ? tick_nohz_tick_stopped+0x82/0xb0 [ 78.518599][ T5328] ? ieee80211_prep_channel+0x223/0x66e0 [ 78.520833][ T5328] ? __wake_up_klogd+0xd5/0x110 [ 78.522719][ T5328] ? vprintk_emit+0x81f/0xa40 [ 78.524453][ T5328] ? __pfx_vprintk_emit+0x10/0x10 [ 78.526420][ T5328] ? __pfx_ieee80211_prep_channel+0x10/0x10 [ 78.528594][ T5328] ? ieee80211_mgd_setup_link_sta+0x600/0xb10 [ 78.530929][ T5328] ? __pfx__printk+0x10/0x10 [ 78.532803][ T5328] ? __pfx_ieee80211_mgd_setup_link_sta+0x10/0x10 [ 78.535317][ T5328] ? ieee80211_prep_connection+0x55d/0x1310 [ 78.537474][ T5328] ieee80211_prep_connection+0xda7/0x1310 [ 78.539597][ T5328] ieee80211_mgd_auth+0xf04/0x1770 [ 78.541453][ T5328] ? __lock_acquire+0xad5/0xd80 [ 78.543386][ T5328] ? __pfx_ieee80211_mgd_auth+0x10/0x10 [ 78.545476][ T5328] cfg80211_mlme_auth+0x59f/0x970 [ 78.547316][ T5328] cfg80211_conn_do_work+0x637/0xed0 [ 78.549353][ T5328] ? __pfx_cfg80211_conn_do_work+0x10/0x10 [ 78.551580][ T5328] ? _raw_spin_unlock_irqrestore+0x90/0x140 [ 78.553951][ T5328] ? lockdep_hardirqs_on+0x9d/0x150 [ 78.555931][ T5328] ? rcu_is_watching+0x15/0xb0 [ 78.557696][ T5328] ? trace_cfg80211_return_bss+0x87/0x210 [ 78.559779][ T5328] ? __cfg80211_get_bss+0x613/0x7d0 [ 78.561672][ T5328] ? cfg80211_connect+0x16cc/0x20e0 [ 78.563678][ T5328] cfg80211_connect+0x1758/0x20e0 [ 78.565646][ T5328] ? __lock_acquire+0xad5/0xd80 [ 78.567444][ T5328] ? reacquire_held_locks+0x12a/0x1e0 [ 78.569456][ T5328] ? __pfx_cfg80211_connect+0x10/0x10 [ 78.571404][ T5328] ? __asan_memset+0x23/0x50 [ 78.573210][ T5328] ? nl80211_crypto_settings+0xb6d/0xf10 [ 78.575305][ T5328] nl80211_connect+0x1d57/0x24b0 [ 78.577146][ T5328] ? __pfx_nl80211_connect+0x10/0x10 [ 78.579094][ T5328] ? trace_contention_end+0x3c/0x120 [ 78.581161][ T5328] genl_rcv_msg+0xb38/0xf00 [ 78.583007][ T5328] ? __pfx_genl_rcv_msg+0x10/0x10 [ 78.584897][ T5328] ? __dev_queue_xmit+0x1780/0x3f60 [ 78.586926][ T5328] ? kasan_save_track+0x3f/0x80 [ 78.588776][ T5328] ? __kasan_slab_alloc+0x66/0x80 [ 78.590716][ T5328] ? do_syscall_64+0xf3/0x210 [ 78.592615][ T5328] ? __lock_acquire+0xad5/0xd80 [ 78.594493][ T5328] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 78.596489][ T5328] ? __pfx_nl80211_connect+0x10/0x10 [ 78.598471][ T5328] ? __pfx_nl80211_post_doit+0x10/0x10 [ 78.600568][ T5328] netlink_rcv_skb+0x208/0x480 [ 78.602487][ T5328] ? __pfx_genl_rcv_msg+0x10/0x10 [ 78.604373][ T5328] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 78.606402][ T5328] ? netlink_deliver_tap+0x2e/0x1b0 [ 78.608385][ T5328] genl_rcv+0x28/0x40 [ 78.609924][ T5328] netlink_unicast+0x7f8/0x9a0 [ 78.611636][ T5328] ? __pfx_netlink_unicast+0x10/0x10 [ 78.613681][ T5328] ? skb_put+0x114/0x1f0 [ 78.615198][ T5328] netlink_sendmsg+0x8c3/0xcd0 [ 78.616879][ T5328] ? __pfx_netlink_sendmsg+0x10/0x10 [ 78.618757][ T5328] ? aa_sock_msg_perm+0x91/0x160 [ 78.620461][ T5328] ? __pfx_netlink_sendmsg+0x10/0x10 [ 78.622442][ T5328] __sock_sendmsg+0x221/0x270 [ 78.624081][ T5328] ____sys_sendmsg+0x523/0x860 [ 78.625929][ T5328] ? __pfx_____sys_sendmsg+0x10/0x10 [ 78.627886][ T5328] ? __fget_files+0x2a/0x420 [ 78.629620][ T5328] ? __fget_files+0x2a/0x420 [ 78.631368][ T5328] __sys_sendmsg+0x271/0x360 [ 78.633144][ T5328] ? __lock_acquire+0xad5/0xd80 [ 78.634956][ T5328] ? __pfx___sys_sendmsg+0x10/0x10 [ 78.636992][ T5328] ? do_syscall_64+0xb6/0x210 [ 78.638829][ T5328] do_syscall_64+0xf3/0x210 [ 78.640485][ T5328] ? clear_bhb_loop+0x45/0xa0 [ 78.642325][ T5328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.644462][ T5328] RIP: 0033:0x7ff5dc98e169 [ 78.646124][ T5328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 78.653205][ T5328] RSP: 002b:00007ff5dd8a0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 78.656249][ T5328] RAX: ffffffffffffffda RBX: 00007ff5dcbb5fa0 RCX: 00007ff5dc98e169 [ 78.659124][ T5328] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000007 [ 78.662113][ T5328] RBP: 00007ff5dca10a68 R08: 0000000000000000 R09: 0000000000000000 [ 78.665081][ T5328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 78.667806][ T5328] R13: 0000000000000000 R14: 00007ff5dcbb5fa0 R15: 00007fffec2c7868 [ 78.670559][ T5328] [ 78.671640][ T5328] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 78.674139][ T5328] CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted 6.15.0-rc3-syzkaller-00008-ga33b5a08cbbd #0 PREEMPT(full) [ 78.678053][ T5328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 78.681901][ T5328] Call Trace: [ 78.683182][ T5328] [ 78.684268][ T5328] dump_stack_lvl+0x241/0x360 [ 78.686088][ T5328] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.687953][ T5328] ? __pfx__printk+0x10/0x10 [ 78.689805][ T5328] ? vscnprintf+0x5d/0x90 [ 78.691355][ T5328] panic+0x349/0x880 [ 78.692812][ T5328] ? __warn+0x174/0x4d0 [ 78.694359][ T5328] ? __pfx_panic+0x10/0x10 [ 78.696002][ T5328] __warn+0x344/0x4d0 [ 78.697432][ T5328] ? ieee80211_prep_channel+0x4e32/0x66e0 [ 78.699563][ T5328] report_bug+0x2b3/0x500 [ 78.701142][ T5328] ? ieee80211_prep_channel+0x4e32/0x66e0 [ 78.703206][ T5328] ? ieee80211_prep_channel+0x4e32/0x66e0 [ 78.705236][ T5328] ? ieee80211_prep_channel+0x4e34/0x66e0 [ 78.707318][ T5328] handle_bug+0x89/0x170 [ 78.708879][ T5328] exc_invalid_op+0x1a/0x50 [ 78.710614][ T5328] asm_exc_invalid_op+0x1a/0x20 [ 78.712368][ T5328] RIP: 0010:ieee80211_prep_channel+0x4e32/0x66e0 [ 78.714616][ T5328] Code: c6 05 a2 63 93 04 01 48 c7 c7 97 40 6d 8d be e8 03 00 00 48 c7 c2 00 42 6d 8d e8 b9 31 e8 f5 e9 03 b5 ff ff e8 ef 58 0c f6 90 <0f> 0b 90 48 8b 7c 24 28 e8 91 f0 6a f6 48 c7 44 24 28 ea ff ff ff [ 78.721635][ T5328] RSP: 0018:ffffc9000d686440 EFLAGS: 00010283 [ 78.723789][ T5328] RAX: ffffffff8bb66431 RBX: 0000000000000000 RCX: 0000000000100000 [ 78.726675][ T5328] RDX: ffffc9000e44a000 RSI: 0000000000000a48 RDI: 0000000000000a49 [ 78.729514][ T5328] RBP: ffffc9000d686850 R08: ffffffff8bb62477 R09: ffffffff8b84924c [ 78.732364][ T5328] R10: 000000000000000e R11: ffff888000ee2440 R12: dffffc0000000000 [ 78.735302][ T5328] R13: ffff888053466758 R14: ffffc9000d686710 R15: ffffc9000d686750 [ 78.738206][ T5328] ? cfg80211_get_end_freq+0x7c/0x1d0 [ 78.740219][ T5328] ? ieee80211_prep_channel+0xe77/0x66e0 [ 78.742298][ T5328] ? ieee80211_prep_channel+0x4e31/0x66e0 [ 78.744410][ T5328] ? tick_nohz_tick_stopped+0x82/0xb0 [ 78.746517][ T5328] ? ieee80211_prep_channel+0x223/0x66e0 [ 78.748780][ T5328] ? __wake_up_klogd+0xd5/0x110 [ 78.750592][ T5328] ? vprintk_emit+0x81f/0xa40 [ 78.752326][ T5328] ? __pfx_vprintk_emit+0x10/0x10 [ 78.754254][ T5328] ? __pfx_ieee80211_prep_channel+0x10/0x10 [ 78.756451][ T5328] ? ieee80211_mgd_setup_link_sta+0x600/0xb10 [ 78.758688][ T5328] ? __pfx__printk+0x10/0x10 [ 78.760479][ T5328] ? __pfx_ieee80211_mgd_setup_link_sta+0x10/0x10 [ 78.762774][ T5328] ? ieee80211_prep_connection+0x55d/0x1310 [ 78.764900][ T5328] ieee80211_prep_connection+0xda7/0x1310 [ 78.767021][ T5328] ieee80211_mgd_auth+0xf04/0x1770 [ 78.768933][ T5328] ? __lock_acquire+0xad5/0xd80 [ 78.770768][ T5328] ? __pfx_ieee80211_mgd_auth+0x10/0x10 [ 78.772759][ T5328] cfg80211_mlme_auth+0x59f/0x970 [ 78.774590][ T5328] cfg80211_conn_do_work+0x637/0xed0 [ 78.776652][ T5328] ? __pfx_cfg80211_conn_do_work+0x10/0x10 [ 78.778914][ T5328] ? _raw_spin_unlock_irqrestore+0x90/0x140 [ 78.781203][ T5328] ? lockdep_hardirqs_on+0x9d/0x150 [ 78.783181][ T5328] ? rcu_is_watching+0x15/0xb0 [ 78.785047][ T5328] ? trace_cfg80211_return_bss+0x87/0x210 [ 78.787289][ T5328] ? __cfg80211_get_bss+0x613/0x7d0 [ 78.789296][ T5328] ? cfg80211_connect+0x16cc/0x20e0 [ 78.791333][ T5328] cfg80211_connect+0x1758/0x20e0 [ 78.793216][ T5328] ? __lock_acquire+0xad5/0xd80 [ 78.795157][ T5328] ? reacquire_held_locks+0x12a/0x1e0 [ 78.797293][ T5328] ? __pfx_cfg80211_connect+0x10/0x10 [ 78.799401][ T5328] ? __asan_memset+0x23/0x50 [ 78.801277][ T5328] ? nl80211_crypto_settings+0xb6d/0xf10 [ 78.803625][ T5328] nl80211_connect+0x1d57/0x24b0 [ 78.805696][ T5328] ? __pfx_nl80211_connect+0x10/0x10 [ 78.807822][ T5328] ? trace_contention_end+0x3c/0x120 [ 78.809995][ T5328] genl_rcv_msg+0xb38/0xf00 [ 78.811936][ T5328] ? __pfx_genl_rcv_msg+0x10/0x10 [ 78.814054][ T5328] ? __dev_queue_xmit+0x1780/0x3f60 [ 78.816219][ T5328] ? kasan_save_track+0x3f/0x80 [ 78.818264][ T5328] ? __kasan_slab_alloc+0x66/0x80 [ 78.820244][ T5328] ? do_syscall_64+0xf3/0x210 [ 78.822129][ T5328] ? __lock_acquire+0xad5/0xd80 [ 78.824148][ T5328] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 78.826356][ T5328] ? __pfx_nl80211_connect+0x10/0x10 [ 78.828525][ T5328] ? __pfx_nl80211_post_doit+0x10/0x10 [ 78.830738][ T5328] netlink_rcv_skb+0x208/0x480 [ 78.832571][ T5328] ? __pfx_genl_rcv_msg+0x10/0x10 [ 78.834352][ T5328] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 78.836189][ T5328] ? netlink_deliver_tap+0x2e/0x1b0 [ 78.838085][ T5328] genl_rcv+0x28/0x40 [ 78.839700][ T5328] netlink_unicast+0x7f8/0x9a0 [ 78.841602][ T5328] ? __pfx_netlink_unicast+0x10/0x10 [ 78.843750][ T5328] ? skb_put+0x114/0x1f0 [ 78.845516][ T5328] netlink_sendmsg+0x8c3/0xcd0 [ 78.847393][ T5328] ? __pfx_netlink_sendmsg+0x10/0x10 [ 78.849407][ T5328] ? aa_sock_msg_perm+0x91/0x160 [ 78.851332][ T5328] ? __pfx_netlink_sendmsg+0x10/0x10 [ 78.853380][ T5328] __sock_sendmsg+0x221/0x270 [ 78.855177][ T5328] ____sys_sendmsg+0x523/0x860 [ 78.856982][ T5328] ? __pfx_____sys_sendmsg+0x10/0x10 [ 78.859003][ T5328] ? __fget_files+0x2a/0x420 [ 78.860807][ T5328] ? __fget_files+0x2a/0x420 [ 78.862566][ T5328] __sys_sendmsg+0x271/0x360 [ 78.864244][ T5328] ? __lock_acquire+0xad5/0xd80 [ 78.866234][ T5328] ? __pfx___sys_sendmsg+0x10/0x10 [ 78.868365][ T5328] ? do_syscall_64+0xb6/0x210 [ 78.870119][ T5328] do_syscall_64+0xf3/0x210 [ 78.871886][ T5328] ? clear_bhb_loop+0x45/0xa0 [ 78.873833][ T5328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.875976][ T5328] RIP: 0033:0x7ff5dc98e169 [ 78.877597][ T5328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 78.884794][ T5328] RSP: 002b:00007ff5dd8a0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 78.887832][ T5328] RAX: ffffffffffffffda RBX: 00007ff5dcbb5fa0 RCX: 00007ff5dc98e169 [ 78.890865][ T5328] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000007 [ 78.893801][ T5328] RBP: 00007ff5dca10a68 R08: 0000000000000000 R09: 0000000000000000 [ 78.896657][ T5328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 78.899516][ T5328] R13: 0000000000000000 R14: 00007ff5dcbb5fa0 R15: 00007fffec2c7868 [ 78.902368][ T5328] [ 78.903774][ T5328] Kernel Offset: disabled [ 78.905418][ T5328] Rebooting in 86400 seconds..