program: syz_mount_image$nilfs2(&(0x7f00000000c0), &(0x7f0000000300)='./file1\x00', 0x1014800, &(0x7f0000001880)=ANY=[@ANYRES16=0x0, @ANYBLOB="f9cba1923b054572145c2e67b885838cb353bc831573228abfb498e7f1fd8103aceb50858482ddb69dd9112c10e3d66c32cab6609b02bf9f07615fb29a27d49a24de56c84013a0c47945492852bdc34e69ddc25ffb9f4d1dd1af98558daa9974edd7d1abd46ee9d69da503b22758321d5031603da076b28cfc7d9477af38586cb482ad3a187ab4c7b916fad188280cee", @ANYRESOCT=0x0, @ANYRES8, @ANYRES8=0x0, @ANYRES64, @ANYRESOCT, @ANYRES64, @ANYBLOB="7540c430e8d8cb55e0610f65aa69c7eb0e142a7517e581064ff06e9ce239e0442bbf8cf256a108d756ee68844798521e40cb7b7963cd4041f65dc013adbd4ccf55477d30e5c56ff7db509a5cef7b7db994b9626f3e1e66ff309fa925885a36b49f6a215f7990ea209bdf87f38e08ed924527c0e45f594c78d32118cd03202a8875"], 0x1, 0xda6, &(0x7f0000003c80)="$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") r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20000008) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$uinput_user_dev(r1, &(0x7f0000000700)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x1]}, 0x45c) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x5c, r3, 0x5, 0x70bd26, 0x0, {{}, {@void, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x30, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x72, 0x6}, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x5c}}, 0x20000014) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r7, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_int(r7, 0x0, 0x13, &(0x7f0000000080)=0x207, 0x4) syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@local, @random="fad1e048716e", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r6, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000040)={0x3c, r8, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc0}, 0x0) r10 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) write$rfkill(r10, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8) [ 74.378801][ T4670] Bluetooth: hci0: command tx timeout [ 74.511010][ T5320] loop0: detected capacity change from 0 to 4096 [ 74.542080][ T5320] NILFS (loop0): invalid segment: Checksum error in segment payload [ 74.545348][ T5320] NILFS (loop0): trying rollback from an earlier position [ 74.576894][ T5320] NILFS (loop0): recovery complete [ 74.595852][ T5322] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 74.657972][ T5320] ------------[ cut here ]------------ [ 74.660869][ T5320] !chanctx_conf [ 74.660882][ T5320] WARNING: net/mac80211/rate.c:53 at rate_control_rate_init+0x64a/0x6e0, CPU#0: syz.0.0/5320 [ 74.667653][ T5320] Modules linked in: [ 74.669676][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 74.673612][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 74.678605][ T5320] RIP: 0010:rate_control_rate_init+0x64a/0x6e0 [ 74.681570][ T5320] Code: 82 01 00 00 20 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 58 08 90 00 cc e8 32 8d b8 f6 90 0f 0b 90 eb e1 e8 27 8d b8 f6 90 <0f> 0b 90 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 90 00 00 00 [ 74.690379][ T5320] RSP: 0018:ffffc9000c30ef60 EFLAGS: 00010283 [ 74.693091][ T5320] RAX: ffffffff8b0bfc99 RBX: ffff8880421bc000 RCX: 0000000000100000 [ 74.696625][ T5320] RDX: ffffc90020802000 RSI: 00000000000003a3 RDI: 00000000000003a4 [ 74.700290][ T5320] RBP: 0000000000000000 R08: ffffffff8b0bf7b3 R09: ffffffff8e55a360 [ 74.703371][ T5320] R10: dffffc0000000000 R11: ffffed1008437831 R12: 1ffff1100843780a [ 74.706473][ T5320] R13: ffff8880428e0e80 R14: 0000000000000001 R15: ffffffff8b0bf7b3 [ 74.709749][ T5320] FS: 00007f25c5a1e6c0(0000) GS:ffff88808cce8000(0000) knlGS:0000000000000000 [ 74.713302][ T5320] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.715975][ T5320] CR2: 00007f25c5a1cfa8 CR3: 0000000012140000 CR4: 0000000000352ef0 [ 74.719533][ T5320] Call Trace: [ 74.721215][ T5320] [ 74.722546][ T5320] rate_control_rate_init_all_links+0x109/0x1a0 [ 74.725305][ T5320] sta_apply_auth_flags+0x1c2/0x400 [ 74.727699][ T5320] sta_apply_parameters+0xe27/0x1570 [ 74.729990][ T5320] ieee80211_add_station+0x424/0x6a0 [ 74.732290][ T5320] rdev_add_station+0xfc/0x270 [ 74.734360][ T5320] nl80211_new_station+0x1860/0x1c70 [ 74.736706][ T5320] ? __pfx_nl80211_new_station+0x10/0x10 [ 74.739314][ T5320] ? netdev_run_todo+0xd5c/0xde0 [ 74.741610][ T5320] ? nl80211_pre_doit+0x4f1/0x930 [ 74.743957][ T5320] genl_family_rcv_msg_doit+0x22a/0x330 [ 74.746319][ T5320] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 74.749231][ T5320] ? bpf_lsm_capable+0x9/0x20 [ 74.751615][ T5320] ? security_capable+0x7e/0x2c0 [ 74.754034][ T5320] genl_rcv_msg+0x61c/0x7a0 [ 74.756134][ T5320] ? __pfx_genl_rcv_msg+0x10/0x10 [ 74.758645][ T5320] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 74.761662][ T5320] ? __pfx_nl80211_new_station+0x10/0x10 [ 74.764370][ T5320] ? __pfx_nl80211_post_doit+0x10/0x10 [ 74.767111][ T5320] ? __pfx_ref_tracker_free+0x10/0x10 [ 74.769590][ T5320] ? __skb_clone+0x63/0x7a0 [ 74.771695][ T5320] netlink_rcv_skb+0x232/0x4b0 [ 74.773833][ T5320] ? __pfx_genl_rcv_msg+0x10/0x10 [ 74.775952][ T5320] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 74.778305][ T5320] ? genl_rcv+0x19/0x40 [ 74.780293][ T5320] ? down_read+0x272/0x2e0 [ 74.782277][ T5320] ? genl_rcv+0xd/0x40 [ 74.784128][ T5320] genl_rcv+0x28/0x40 [ 74.785898][ T5320] netlink_unicast+0x80f/0x9b0 [ 74.788132][ T5320] ? __pfx_netlink_unicast+0x10/0x10 [ 74.790546][ T5320] ? __alloc_skb+0x193/0x390 [ 74.792633][ T5320] ? netlink_sendmsg+0x650/0xb40 [ 74.794903][ T5320] ? skb_put+0x11b/0x210 [ 74.796777][ T5320] netlink_sendmsg+0x813/0xb40 [ 74.799002][ T5320] ? __pfx_netlink_sendmsg+0x10/0x10 [ 74.801221][ T5320] ? aa_sock_msg_perm+0xf1/0x1b0 [ 74.803381][ T5320] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 74.805683][ T5320] ? __pfx_netlink_sendmsg+0x10/0x10 [ 74.808192][ T5320] ____sys_sendmsg+0xa68/0xad0 [ 74.810290][ T5320] ? __might_fault+0xaf/0x130 [ 74.812488][ T5320] ? __pfx_____sys_sendmsg+0x10/0x10 [ 74.814904][ T5320] ? import_iovec+0x73/0xa0 [ 74.817145][ T5320] ___sys_sendmsg+0x2a5/0x360 [ 74.819308][ T5320] ? __lock_acquire+0x6b5/0x2cf0 [ 74.821574][ T5320] ? __pfx____sys_sendmsg+0x10/0x10 [ 74.823973][ T5320] ? futex_wait+0x29a/0x380 [ 74.825996][ T5320] ? __fget_files+0x2a/0x420 [ 74.828145][ T5320] ? __fget_files+0x3a0/0x420 [ 74.830339][ T5320] __x64_sys_sendmsg+0x1bd/0x2a0 [ 74.832586][ T5320] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 74.835000][ T5320] ? rcu_is_watching+0x15/0xb0 [ 74.837195][ T5320] do_syscall_64+0xe2/0xf80 [ 74.839176][ T5320] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.841827][ T5320] ? trace_irq_disable+0x37/0x100 [ 74.844075][ T5320] ? clear_bhb_loop+0x60/0xb0 [ 74.846096][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.848658][ T5320] RIP: 0033:0x7f25c4b9aeb9 [ 74.850559][ T5320] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 74.859383][ T5320] RSP: 002b:00007f25c5a1e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 74.863088][ T5320] RAX: ffffffffffffffda RBX: 00007f25c4e15fa0 RCX: 00007f25c4b9aeb9 [ 74.866591][ T5320] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000009 [ 74.870154][ T5320] RBP: 00007f25c4c08c1f R08: 0000000000000000 R09: 0000000000000000 [ 74.873677][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.877205][ T5320] R13: 00007f25c4e16038 R14: 00007f25c4e15fa0 R15: 00007ffd8e855a88 [ 74.880792][ T5320] [ 74.882192][ T5320] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 74.885339][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 74.889073][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 74.893317][ T5320] Call Trace: [ 74.894793][ T5320] [ 74.896074][ T5320] vpanic+0x1e0/0x670 [ 74.897817][ T5320] panic+0xc5/0xd0 [ 74.899491][ T5320] ? __pfx_panic+0x10/0x10 [ 74.901455][ T5320] __warn+0x315/0x4a0 [ 74.903271][ T5320] ? rate_control_rate_init+0x64a/0x6e0 [ 74.905634][ T5320] ? rate_control_rate_init+0x64a/0x6e0 [ 74.908079][ T5320] __report_bug+0x29a/0x540 [ 74.910178][ T5320] ? lockdep_hardirqs_on+0x7a/0x110 [ 74.912502][ T5320] ? rate_control_rate_init+0x64a/0x6e0 [ 74.914956][ T5320] ? __pfx___report_bug+0x10/0x10 [ 74.917188][ T5320] ? __lock_acquire+0x6b5/0x2cf0 [ 74.919386][ T5320] ? __lock_acquire+0x6b5/0x2cf0 [ 74.921578][ T5320] ? rate_control_rate_init+0x64a/0x6e0 [ 74.923983][ T5320] report_bug+0x16a/0x220 [ 74.925887][ T5320] ? rate_control_rate_init+0x64a/0x6e0 [ 74.928332][ T5320] ? rate_control_rate_init+0x64c/0x6e0 [ 74.930697][ T5320] handle_bug+0x98/0x200 [ 74.932522][ T5320] exc_invalid_op+0x1a/0x50 [ 74.934514][ T5320] asm_exc_invalid_op+0x1a/0x20 [ 74.936705][ T5320] RIP: 0010:rate_control_rate_init+0x64a/0x6e0 [ 74.939292][ T5320] Code: 82 01 00 00 20 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 58 08 90 00 cc e8 32 8d b8 f6 90 0f 0b 90 eb e1 e8 27 8d b8 f6 90 <0f> 0b 90 48 83 c4 20 5b 41 5c 41 5d 41 5e 41 5f 5d e9 90 00 00 00 [ 74.947606][ T5320] RSP: 0018:ffffc9000c30ef60 EFLAGS: 00010283 [ 74.950211][ T5320] RAX: ffffffff8b0bfc99 RBX: ffff8880421bc000 RCX: 0000000000100000 [ 74.953464][ T5320] RDX: ffffc90020802000 RSI: 00000000000003a3 RDI: 00000000000003a4 [ 74.956807][ T5320] RBP: 0000000000000000 R08: ffffffff8b0bf7b3 R09: ffffffff8e55a360 [ 74.960279][ T5320] R10: dffffc0000000000 R11: ffffed1008437831 R12: 1ffff1100843780a [ 74.963812][ T5320] R13: ffff8880428e0e80 R14: 0000000000000001 R15: ffffffff8b0bf7b3 [ 74.967324][ T5320] ? rate_control_rate_init+0x163/0x6e0 [ 74.969762][ T5320] ? rate_control_rate_init+0x163/0x6e0 [ 74.972256][ T5320] ? rate_control_rate_init+0x649/0x6e0 [ 74.974496][ T5320] rate_control_rate_init_all_links+0x109/0x1a0 [ 74.977091][ T5320] sta_apply_auth_flags+0x1c2/0x400 [ 74.979397][ T5320] sta_apply_parameters+0xe27/0x1570 [ 74.982205][ T5320] ieee80211_add_station+0x424/0x6a0 [ 74.984541][ T5320] rdev_add_station+0xfc/0x270 [ 74.986571][ T5320] nl80211_new_station+0x1860/0x1c70 [ 74.988902][ T5320] ? __pfx_nl80211_new_station+0x10/0x10 [ 74.991330][ T5320] ? netdev_run_todo+0xd5c/0xde0 [ 74.993355][ T5320] ? nl80211_pre_doit+0x4f1/0x930 [ 74.995532][ T5320] genl_family_rcv_msg_doit+0x22a/0x330 [ 74.997821][ T5320] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 75.000509][ T5320] ? bpf_lsm_capable+0x9/0x20 [ 75.002538][ T5320] ? security_capable+0x7e/0x2c0 [ 75.004648][ T5320] genl_rcv_msg+0x61c/0x7a0 [ 75.006527][ T5320] ? __pfx_genl_rcv_msg+0x10/0x10 [ 75.008687][ T5320] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 75.011061][ T5320] ? __pfx_nl80211_new_station+0x10/0x10 [ 75.013553][ T5320] ? __pfx_nl80211_post_doit+0x10/0x10 [ 75.015940][ T5320] ? __pfx_ref_tracker_free+0x10/0x10 [ 75.018223][ T5320] ? __skb_clone+0x63/0x7a0 [ 75.020251][ T5320] netlink_rcv_skb+0x232/0x4b0 [ 75.022348][ T5320] ? __pfx_genl_rcv_msg+0x10/0x10 [ 75.024552][ T5320] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 75.026974][ T5320] ? genl_rcv+0x19/0x40 [ 75.028781][ T5320] ? down_read+0x272/0x2e0 [ 75.030680][ T5320] ? genl_rcv+0xd/0x40 [ 75.032476][ T5320] genl_rcv+0x28/0x40 [ 75.034477][ T5320] netlink_unicast+0x80f/0x9b0 [ 75.036775][ T5320] ? __pfx_netlink_unicast+0x10/0x10 [ 75.039298][ T5320] ? __alloc_skb+0x193/0x390 [ 75.041476][ T5320] ? netlink_sendmsg+0x650/0xb40 [ 75.043566][ T5320] ? skb_put+0x11b/0x210 [ 75.045406][ T5320] netlink_sendmsg+0x813/0xb40 [ 75.047491][ T5320] ? __pfx_netlink_sendmsg+0x10/0x10 [ 75.049806][ T5320] ? aa_sock_msg_perm+0xf1/0x1b0 [ 75.051810][ T5320] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 75.054040][ T5320] ? __pfx_netlink_sendmsg+0x10/0x10 [ 75.056280][ T5320] ____sys_sendmsg+0xa68/0xad0 [ 75.058268][ T5320] ? __might_fault+0xaf/0x130 [ 75.060403][ T5320] ? __pfx_____sys_sendmsg+0x10/0x10 [ 75.062621][ T5320] ? import_iovec+0x73/0xa0 [ 75.064869][ T5320] ___sys_sendmsg+0x2a5/0x360 [ 75.066910][ T5320] ? __lock_acquire+0x6b5/0x2cf0 [ 75.069080][ T5320] ? __pfx____sys_sendmsg+0x10/0x10 [ 75.071383][ T5320] ? futex_wait+0x29a/0x380 [ 75.073317][ T5320] ? __fget_files+0x2a/0x420 [ 75.075791][ T5320] ? __fget_files+0x3a0/0x420 [ 75.078298][ T5320] __x64_sys_sendmsg+0x1bd/0x2a0 [ 75.080887][ T5320] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 75.083119][ T5320] ? rcu_is_watching+0x15/0xb0 [ 75.085151][ T5320] do_syscall_64+0xe2/0xf80 [ 75.087075][ T5320] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.089679][ T5320] ? trace_irq_disable+0x37/0x100 [ 75.091907][ T5320] ? clear_bhb_loop+0x60/0xb0 [ 75.093964][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.096464][ T5320] RIP: 0033:0x7f25c4b9aeb9 [ 75.098450][ T5320] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 75.106963][ T5320] RSP: 002b:00007f25c5a1e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 75.110559][ T5320] RAX: ffffffffffffffda RBX: 00007f25c4e15fa0 RCX: 00007f25c4b9aeb9 [ 75.113632][ T5320] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000009 [ 75.116843][ T5320] RBP: 00007f25c4c08c1f R08: 0000000000000000 R09: 0000000000000000 [ 75.120374][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 75.123924][ T5320] R13: 00007f25c4e16038 R14: 00007f25c4e15fa0 R15: 00007ffd8e855a88 [ 75.127186][ T5320] [ 75.128945][ T5320] Kernel Offset: disabled [ 75.130872][ T5320] Rebooting in 86400 seconds..