./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor435886048

<...>
forked to background, child pid 3208
no interfaces have a carrier
[   27.712514][ T3209] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.726667][ T3209] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.64' (ECDSA) to the list of known hosts.
execve("./syz-executor435886048", ["./syz-executor435886048"], 0x7ffda02102d0 /* 10 vars */) = 0
brk(NULL)                               = 0x555556b93000
brk(0x555556b93c40)                     = 0x555556b93c40
arch_prctl(ARCH_SET_FS, 0x555556b93300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
set_tid_address(0x555556b935d0)         = 3629
set_robust_list(0x555556b935e0, 24)     = 0
rt_sigaction(SIGRTMIN, {sa_handler=0x7f868f1fb650, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f868f1fbd20}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=0x7f868f1fb6f0, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f868f1fbd20}, NULL, 8) = 0
rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor435886048", 4096) = 27
brk(0x555556bb4c40)                     = 0x555556bb4c40
brk(0x555556bb5000)                     = 0x555556bb5000
mprotect(0x7f868f2c7000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mount(NULL, "/proc/sys/fs/binfmt_misc", "binfmt_misc", 0, NULL) = -1 EBUSY (Device or resource busy)
openat(AT_FDCWD, "/proc/sys/fs/binfmt_misc/register", O_WRONLY|O_CLOEXEC) = 3
write(3, "\x3a\x73\x79\x7a\x30\x3a\x4d\x3a\x30\x3a\x01\x3a\x3a\x2e\x2f\x66\x69\x6c\x65\x30\x3a", 21) = 21
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/fs/binfmt_misc/register", O_WRONLY|O_CLOEXEC) = 3
write(3, "\x3a\x73\x79\x7a\x31\x3a\x4d\x3a\x31\x3a\x02\x3a\x3a\x2e\x2f\x66\x69\x6c\x65\x30\x3a\x50\x4f\x43", 24) = 24
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
chmod("/dev/raw-gadget", 0666)          = 0
getpid()                                = 3629
mkdir("./syzkaller.APBUGz", 0700)       = 0
chmod("./syzkaller.APBUGz", 0777)       = 0
chdir("./syzkaller.APBUGz")             = 0
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556b935d0) = 3630
./strace-static-x86_64: Process 3630 attached
[pid  3630] set_robust_list(0x555556b935e0, 24) = 0
[pid  3630] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  3630] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3
[pid  3630] openat(AT_FDCWD, "/dev/vhci", O_RDWR) = 4
[pid  3630] dup2(4, 202)                = 202
[pid  3630] close(4)                    = 0
[pid  3630] write(202, "\xff\x00", 2)   = 2
[pid  3630] read(202, "\xff\x00\x00\x00", 4) = 4
[pid  3630] mmap(NULL, 8392704, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f868e9e9000
[pid  3630] mprotect(0x7f868e9ea000, 8388608, PROT_READ|PROT_WRITE) = 0
[pid  3630] clone(child_stack=0x7f868f1e93f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2], tls=0x7f868f1e9700, child_tidptr=0x7f868f1e99d0) = 2
[pid  3630] ioctl(3, HCIDEVUP./strace-static-x86_64: Process 3632 attached
 <unfinished ...>
[pid  3632] set_robust_list(0x7f868f1e99e0, 24) = 0
[pid  3632] read(202, "\x01\x03\x0c\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x03\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202, "\x01\x03\x10\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x03\x10", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202, "\x01\x01\x10\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x01\x10", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202, "\x01\x09\x10\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x0a", iov_len=2}, {iov_base="\x01\x09\x10", iov_len=3}, {iov_base="\x00\xaa\xaa\xaa\xaa\xaa\xaa", iov_len=7}], 4) = 13
[pid  3632] read(202, "\x01\x05\x10\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x0b", iov_len=2}, {iov_base="\x01\x05\x10", iov_len=3}, {iov_base="\x00\xfd\x03\x60\x04\x00\x06\x00", iov_len=8}], 4) = 14
[pid  3632] read(202, "\x01\x23\x0c\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x23\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202, "\x01\x14\x0c\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x14\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202, "\x01\x25\x0c\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x25\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202, "\x01\x38\x0c\x00", 1024) = 4
syzkaller login: [   54.409277][ T3634] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   54.418667][ T3634] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   54.427392][ T3634] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   54.438811][ T3631] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   54.447827][ T3631] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x38\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202, "\x01\x39\x0c\x00", 1024) = 4
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x39\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202, "\x01\x16\x0c\x02\x00\x7d", 1024) = 6
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x16\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid  3632] read(202,  <unfinished ...>
[pid  3630] <... ioctl resumed>, 0)     = -1 EALREADY (Operation already in progress)
[pid  3630] ioctl(3, HCISETSCAN <unfinished ...>
[pid  3632] <... read resumed>"\x01\x1a\x0c\x01\x02", 1024) = 5
[pid  3632] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x04", iov_len=2}, {iov_base="\x01\x1a\x0c", iov_len=3}, {iov_base="\x00", iov_len=1}], 4) = 7
[pid  3630] <... ioctl resumed>, 0x7fffb169b618) = 0
[pid  3632] madvise(0x7f868e9e9000, 8372224, MADV_DONTNEED <unfinished ...>
[pid  3630] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x04\x0a", iov_len=2}, {iov_base="\xaa\xaa\xaa\xaa\xaa\x10\x00\x00\x00\x01", iov_len=10}], 3 <unfinished ...>
[pid  3632] <... madvise resumed>)      = 0
[pid  3630] <... writev resumed>)       = 13
[pid  3632] exit(0 <unfinished ...>
[pid  3630] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x03\x0b", iov_len=2}, {iov_base="\x00\xc8\x00\xaa\xaa\xaa\xaa\xaa\x10\x01\x00", iov_len=11}], 3) = 14
[pid  3630] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\v\v", iov_len=2}, {iov_base="\x00\xc8\x00\x00\x00\x00\x00\x00\x00\x00\x00", iov_len=11}], 3) = 14
[pid  3630] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x3e\x13", iov_len=2}, {iov_base="\x01\x00\xc9\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\x11\x00\x00\x00\x00\x00\x00\x00", iov_len=19}], 3) = 22
[pid  3630] futex(0x7f868f1e99d0, FUTEX_WAIT, 2, NULL <unfinished ...>
[pid  3632] <... exit resumed>)         = ?
[pid  3630] <... futex resumed>)        = 0
[pid  3630] close(3)                    = 0
[pid  3630] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  3630] setsid()                    = 1
[pid  3630] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  3630] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  3632] +++ exited with 0 +++
[pid  3630] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  3630] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  3630] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  3630] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  3630] unshare(CLONE_NEWNS)        = 0
[pid  3630] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  3630] unshare(CLONE_NEWIPC)       = 0
[pid  3630] unshare(CLONE_NEWCGROUP)    = 0
[pid  3630] unshare(CLONE_NEWUTS)       = 0
[pid  3630] unshare(CLONE_SYSVSEM)      = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "16777216", 8)     = 8
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "536870912", 9)    = 9
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "1024", 4)         = 4
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "8192", 4)         = 4
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "1024", 4)         = 4
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "1024", 4)         = 4
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "1024 1048576 500 1024", 21) = 21
[pid  3630] close(3)                    = 0
[pid  3630] getpid()                    = 1
[pid  3630] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  3630] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[   54.457069][ T3631] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[pid  3630] unshare(CLONE_NEWNET)       = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "0 65535", 7)      = 7
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/dev/net/tun", O_RDWR|O_NONBLOCK) = 3
[pid  3630] dup2(3, 200)                = 200
[pid  3630] close(3)                    = 0
[pid  3630] ioctl(200, TUNSETIFF, 0x7fffb169b680) = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/net/ipv6/conf/syz_tun/accept_dad", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "0", 1)            = 1
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/proc/sys/net/ipv6/conf/syz_tun/router_solicitations", O_WRONLY|O_CLOEXEC) = 3
[pid  3630] write(3, "0", 1)            = 1
[pid  3630] close(3)                    = 0
[pid  3630] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 3
[pid  3630] access("/proc/net", R_OK)   = 0
[pid  3630] access("/proc/net/unix", R_OK) = 0
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=40, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}, "\x02\x18\x00\x00\x0b\x00\x00\x00\x08\x00\x02\x00\xac\x14\x14\xaa\x08\x00\x01\x00\xac\x14\x14\xaa"], 40, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 40
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=40, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=64, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}, "\x0a\x78\x00\x00\x0b\x00\x00\x00\x14\x00\x02\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa\x14\x00\x01\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=48, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}, "\x02\x00\x00\x00\x0b\x00\x00\x00\x80\x00\x00\x00\x08\x00\x01\x00\xac\x14\x14\xbb\x0a\x00\x02\x00\xbb\xaa\xaa\xaa\xaa\xaa\x00\x00"], 48, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 48
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=48, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=60, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}, "\x0a\x00\x00\x00\x0b\x00\x00\x00\x80\x00\x00\x00\x14\x00\x01\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbb\x0a\x00\x02\x00\xbb\xaa\xaa\xaa\xaa\xaa\x00\x00"], 60, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 60
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=60, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x0a\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\xaa\x00\x00"], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] close(3)                    = 0
[pid  3630] openat(AT_FDCWD, "/dev/rfkill", O_RDWR) = 3
[pid  3630] write(3, "\x00\x00\x00\x00\x00\x03\x00\x00", 8) = 8
[pid  3630] close(3)                    = 0
[pid  3630] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  3630] sendto(3, [{nlmsg_len=40, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x13\x00\x02\x00\x4d\x41\x43\x38\x30\x32\x31\x31\x5f\x48\x57\x53\x49\x4d\x00\x00"], 40, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 40
[pid  3630] recvfrom(3, [{nlmsg_len=224, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x01\x02\x00\x00\x13\x00\x02\x00\x4d\x41\x43\x38\x30\x32\x31\x31\x5f\x48\x57\x53\x49\x4d\x00\x00\x06\x00\x01\x00\x28\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x19\x00\x00\x00\x7c\x00\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00"...], 4096, 0, NULL, NULL) = 224
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=40, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] sendto(3, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  3630] recvfrom(3, [{nlmsg_len=2476, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x22\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x40\x01\x00\x00\xd8\x08\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2476
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] sendto(3, [{nlmsg_len=36, nlmsg_type=0x28 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  3630] recvfrom(3, [{nlmsg_len=56, nlmsg_type=NLMSG_ERROR, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, {error=2, msg=[{nlmsg_len=36, nlmsg_type=0x28 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x00\x00\x00"]}], 4096, 0, NULL, NULL) = 56
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan0", ifr_ifindex=12}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=36, nlmsg_type=0x22 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x01\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=36, nlmsg_type=0x22 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] socket(AF_INET, SOCK_DGRAM, IPPROTO_IP) = 4
[pid  3630] ioctl(4, SIOCGIFFLAGS, {ifr_name="wlan0", ifr_flags=IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  3630] ioctl(4, SIOCSIFFLAGS, {ifr_name="wlan0", ifr_flags=IFF_UP|IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=64, nlmsg_type=0x22 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x2b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x10\x10\x10\x10\x10\x10\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x0a\x00\x06\x00\x50\x50\x50\x50\x50\x50\x00\x00\x04\x00\x3c\x00"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x22 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] sendto(3, [{nlmsg_len=36, nlmsg_type=0x28 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x01\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  3630] recvfrom(3, [{nlmsg_len=56, nlmsg_type=NLMSG_ERROR, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, {error=3, msg=[{nlmsg_len=36, nlmsg_type=0x28 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x01\x00\x00"]}], 4096, 0, NULL, NULL) = 56
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=13}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=36, nlmsg_type=0x22 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x06\x00\x00\x00\x08\x00\x03\x00\x0d\x00\x00\x00\x08\x00\x05\x00\x01\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=36, nlmsg_type=0x22 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] socket(AF_INET, SOCK_DGRAM, IPPROTO_IP) = 4
[pid  3630] ioctl(4, SIOCGIFFLAGS, {ifr_name="wlan1", ifr_flags=IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  3630] ioctl(4, SIOCSIFFLAGS, {ifr_name="wlan1", ifr_flags=IFF_UP|IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] sendto(3, [{nlmsg_len=64, nlmsg_type=0x22 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x2b\x00\x00\x00\x08\x00\x03\x00\x0d\x00\x00\x00\x0a\x00\x34\x00\x10\x10\x10\x10\x10\x10\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x0a\x00\x06\x00\x50\x50\x50\x50\x50\x50\x00\x00\x04\x00\x3c\x00"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[   54.597254][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.611356][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.620809][  T150] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[pid  3630] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x22 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan0", ifr_ifindex=12}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4
[pid  3630] sendto(4, [{nlmsg_len=32, nlmsg_type=0x12 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  3630] recvfrom(4, [{nlmsg_len=1412, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x00\x00\x01\x00\x0c\x00\x00\x00\x43\x10\x01\x00\x00\x00\x00\x00\x0a\x00\x03\x00\x77\x6c\x61\x6e\x30\x00\x00\x00\x08\x00\x0d\x00\xe8\x03\x00\x00\x05\x00\x10\x00\x06\x00\x00\x00\x05\x00\x11\x00\x00\x00\x00\x00\x08\x00\x04\x00\xdc\x05\x00\x00\x08\x00\x32\x00\x00\x01\x00\x00\x08\x00\x33\x00\x00\x09\x00\x00\x08\x00\x1b\x00\x00\x00\x00\x00\x08\x00\x1e\x00\x00\x00\x00\x00\x08\x00\x3d\x00\x00\x00\x00\x00"...], 4096, 0, NULL, NULL) = 1412
[pid  3630] close(4)                    = 0
[pid  3630] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  3630] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=13}) = 0
[pid  3630] close(4)                    = 0
[pid  3630] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4
[pid  3630] sendto(4, [{nlmsg_len=32, nlmsg_type=0x12 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  3630] recvfrom(4, [{nlmsg_len=1412, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x00\x00\x01\x00\x0d\x00\x00\x00\x43\x10\x01\x00\x00\x00\x00\x00\x0a\x00\x03\x00\x77\x6c\x61\x6e\x31\x00\x00\x00\x08\x00\x0d\x00\xe8\x03\x00\x00\x05\x00\x10\x00\x06\x00\x00\x00\x05\x00\x11\x00\x00\x00\x00\x00\x08\x00\x04\x00\xdc\x05\x00\x00\x08\x00\x32\x00\x00\x01\x00\x00\x08\x00\x33\x00\x00\x09\x00\x00\x08\x00\x1b\x00\x00\x00\x00\x00\x08\x00\x1e\x00\x00\x00\x00\x00\x08\x00\x3d\x00\x00\x00\x00\x00"...], 4096, 0, NULL, NULL) = 1412
[pid  3630] close(4)                    = 0
[pid  3630] close(3)                    = 0
[pid  3630] mkdir("/dev/binderfs", 0777) = 0
[pid  3630] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  3630] memfd_create("syzkaller", 0) = 3
[pid  3630] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f86865e9000
[   54.640949][ T1101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.649411][ T1101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.658338][ T2958] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[pid  3630] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216) = 16777216
[pid  3630] munmap(0x7f86865e9000, 16777216) = 0
[pid  3630] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  3630] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  3630] close(3)                    = 0
[pid  3630] mkdir("./file0", 0777)      = 0
[   54.818869][ T3630] loop0: detected capacity change from 0 to 32768
[   54.828021][ T3630] XFS: ikeep mount option is deprecated.
[   54.838891][ T3630] XFS (loop0): Mounting V5 Filesystem
[   54.857227][ T3630] XFS (loop0): Ending clean mount
[pid  3630] mount("/dev/loop0", "./file0", "xfs", MS_SYNCHRONOUS|MS_SILENT, "gqnoenforce,pqnoenforce,ikeep,,nouuid") = 0
[pid  3630] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  3630] chdir("./file0")            = 0
[pid  3630] ioctl(4, LOOP_CLR_FD)       = 0
[pid  3630] close(4)                    = 0
[pid  3630] open("./file0", O_RDONLY)   = 4
[pid  3630] dup2(4, 4)                  = 4
[pid  3630] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[pid  3630] write(5, "7", 1)            = 1
[   54.865718][ T3630] XFS (loop0): Quotacheck needed: Please wait.
[   54.885688][ T3630] XFS (loop0): Quotacheck: Done.
[   54.902134][ T3630] FAULT_INJECTION: forcing a failure.
[   54.902134][ T3630] name failslab, interval 1, probability 0, space 0, times 1
[   54.915749][ T3630] CPU: 0 PID: 3630 Comm: syz-executor435 Not tainted 6.1.0-syzkaller-00071-g3a28c2c89f4b #0
[   54.925846][ T3630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   54.936267][ T3630] Call Trace:
[   54.939556][ T3630]  <TASK>
[   54.942474][ T3630]  dump_stack_lvl+0xd1/0x138
[   54.947084][ T3630]  should_fail_ex.cold+0x5/0xa
[   54.951845][ T3630]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[   54.958253][ T3630]  should_failslab+0x9/0x20
[   54.962742][ T3630]  kmem_cache_alloc+0x5a/0x3d0
[   54.967503][ T3630]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[   54.973735][ T3630]  radix_tree_extend+0x1a1/0x4a0
[   54.978675][ T3630]  radix_tree_insert+0x43c/0x640
[   54.983635][ T3630]  xfs_qm_dqget_cache_insert.constprop.0+0x38/0x410
[   54.990234][ T3630]  xfs_qm_dqget+0x16e/0x7a0
[   54.994734][ T3630]  ? xfs_dquot_to_disk+0x750/0x750
[   54.999848][ T3630]  ? xfs_qm_vop_dqalloc+0x785/0xfc0
[   55.005052][ T3630]  ? rcu_read_lock_sched_held+0x3e/0x70
[   55.010607][ T3630]  xfs_qm_vop_dqalloc+0x7a2/0xfc0
[   55.015622][ T3630]  ? xfs_qm_mount_quotas+0x690/0x690
[   55.020894][ T3630]  ? lock_release+0x810/0x810
[   55.025571][ T3630]  xfs_fileattr_set+0x69e/0x2120
[   55.030499][ T3630]  ? up_write+0x520/0x520
[   55.034814][ T3630]  ? xfs_fileattr_get+0xd0/0xd0
[   55.039652][ T3630]  ? projid_m_show+0x220/0x220
[   55.044401][ T3630]  ? xfs_fileattr_get+0xa5/0xd0
[   55.049245][ T3630]  ? rcu_read_lock_sched_held+0x3e/0x70
[   55.054781][ T3630]  ? xfs_iunlock+0x3cc/0x4c0
[   55.059374][ T3630]  vfs_fileattr_set+0x7f9/0xbe0
[   55.064228][ T3630]  ? ioctl_file_clone+0x100/0x100
[   55.069253][ T3630]  ? __mnt_want_write+0x1fe/0x2e0
[   55.074277][ T3630]  do_vfs_ioctl+0xfa8/0x1600
[   55.078859][ T3630]  ? vfs_fileattr_set+0xbe0/0xbe0
[   55.083875][ T3630]  ? find_held_lock+0x2d/0x110
[   55.088635][ T3630]  ? do_one_initcall+0x362/0x780
[   55.093574][ T3630]  ? bpf_lsm_file_ioctl+0x9/0x10
[   55.098595][ T3630]  __x64_sys_ioctl+0x10c/0x210
[   55.103350][ T3630]  do_syscall_64+0x39/0xb0
[   55.107760][ T3630]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   55.113638][ T3630] RIP: 0033:0x7f868f23ea19
[   55.118043][ T3630] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   55.137652][ T3630] RSP: 002b:00007fffb169b5a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   55.146057][ T3630] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f868f23ea19
[   55.154013][ T3630] RDX: 0000000020000140 RSI: 00000000401c5820 RDI: 0000000000000004
[   55.162064][ T3630] RBP: 00007fffb169b630 R08: 0000000000000001 R09: 0000000000000000
[   55.170027][ T3630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[   55.177984][ T3630] R13: 000000000000000d R14: 00007f868f2cd810 R15: 00007fffb169b6b0
[   55.185954][ T3630]  </TASK>
[   55.189755][ T3630] ------------[ cut here ]------------
[   55.195282][ T3630] WARNING: CPU: 0 PID: 3630 at fs/xfs/xfs_dquot.c:801 xfs_qm_dqget_cache_insert.constprop.0+0x36a/0x410
[   55.206506][ T3630] Modules linked in:
[   55.210394][ T3630] CPU: 0 PID: 3630 Comm: syz-executor435 Not tainted 6.1.0-syzkaller-00071-g3a28c2c89f4b #0
[   55.220488][ T3630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   55.230590][ T3630] RIP: 0010:xfs_qm_dqget_cache_insert.constprop.0+0x36a/0x410
[   55.238085][ T3630] Code: e9 c4 fd ff ff e8 56 0a 6c fe 0f 0b e9 1c ff ff ff e8 1a e4 b8 fe e9 59 fd ff ff e8 b0 e4 b8 fe e9 20 fd ff ff e8 36 0a 6c fe <0f> 0b e9 7f fd ff ff e8 2a 0a 6c fe e8 25 50 d9 06 31 ff 89 c3 89
[   55.257722][ T3630] RSP: 0018:ffffc90003dbf8f0 EFLAGS: 00010293
[   55.263802][ T3630] RAX: 0000000000000000 RBX: ffff888076fe7800 RCX: 0000000000000000
[   55.271832][ T3630] RDX: ffff888024149d40 RSI: ffffffff8314132a RDI: 0000000000000005
[   55.279846][ T3630] RBP: ffff888070cf8680 R08: 0000000000000005 R09: 00000000ffffffef
[   55.287855][ T3630] R10: 00000000fffffff4 R11: 0000000000000000 R12: 00000000fffffff4
[   55.296008][ T3630] R13: ffff888076fe78f0 R14: ffff888076fe78a0 R15: 0000000000000000
[   55.303996][ T3630] FS:  0000555556b93300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[   55.312993][ T3630] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   55.319936][ T3630] CR2: 0000000000dc2a68 CR3: 0000000077707000 CR4: 0000000000350ef0
[   55.327968][ T3630] Call Trace:
[   55.331264][ T3630]  <TASK>
[   55.334207][ T3630]  xfs_qm_dqget+0x16e/0x7a0
[   55.338787][ T3630]  ? xfs_dquot_to_disk+0x750/0x750
[   55.343911][ T3630]  ? xfs_qm_vop_dqalloc+0x785/0xfc0
[   55.349156][ T3630]  ? rcu_read_lock_sched_held+0x3e/0x70
[   55.354729][ T3630]  xfs_qm_vop_dqalloc+0x7a2/0xfc0
[   55.359806][ T3630]  ? xfs_qm_mount_quotas+0x690/0x690
[   55.365692][ T3630]  ? lock_release+0x810/0x810
[   55.370390][ T3630]  xfs_fileattr_set+0x69e/0x2120
[   55.375430][ T3630]  ? up_write+0x520/0x520
[   55.379810][ T3630]  ? xfs_fileattr_get+0xd0/0xd0
[   55.384654][ T3630]  ? projid_m_show+0x220/0x220
[   55.389490][ T3630]  ? xfs_fileattr_get+0xa5/0xd0
[   55.394488][ T3630]  ? rcu_read_lock_sched_held+0x3e/0x70
[   55.400105][ T3630]  ? xfs_iunlock+0x3cc/0x4c0
[   55.404739][ T3630]  vfs_fileattr_set+0x7f9/0xbe0
[   55.409659][ T3630]  ? ioctl_file_clone+0x100/0x100
[   55.414702][ T3630]  ? __mnt_want_write+0x1fe/0x2e0
[   55.419872][ T3630]  do_vfs_ioctl+0xfa8/0x1600
[   55.424483][ T3630]  ? vfs_fileattr_set+0xbe0/0xbe0
[   55.429563][ T3630]  ? find_held_lock+0x2d/0x110
[   55.434346][ T3630]  ? do_one_initcall+0x362/0x780
[   55.439372][ T3630]  ? bpf_lsm_file_ioctl+0x9/0x10
[   55.444343][ T3630]  __x64_sys_ioctl+0x10c/0x210
[   55.449201][ T3630]  do_syscall_64+0x39/0xb0
[   55.453647][ T3630]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   55.459675][ T3630] RIP: 0033:0x7f868f23ea19
[   55.464116][ T3630] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   55.483792][ T3630] RSP: 002b:00007fffb169b5a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   55.492264][ T3630] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f868f23ea19
[   55.500511][ T3630] RDX: 0000000020000140 RSI: 00000000401c5820 RDI: 0000000000000004
[   55.508581][ T3630] RBP: 00007fffb169b630 R08: 0000000000000001 R09: 0000000000000000
[   55.516678][ T3630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[   55.524655][ T3630] R13: 000000000000000d R14: 00007f868f2cd810 R15: 00007fffb169b6b0
[   55.532919][ T3630]  </TASK>
[   55.535998][ T3630] Kernel panic - not syncing: panic_on_warn set ...
[   55.542595][ T3630] CPU: 0 PID: 3630 Comm: syz-executor435 Not tainted 6.1.0-syzkaller-00071-g3a28c2c89f4b #0
[   55.552665][ T3630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   55.562724][ T3630] Call Trace:
[   55.566001][ T3630]  <TASK>
[   55.568924][ T3630]  dump_stack_lvl+0xd1/0x138
[   55.573519][ T3630]  panic+0x2cc/0x626
[   55.577419][ T3630]  ? panic_print_sys_info.part.0+0x110/0x110
[   55.583410][ T3630]  ? __warn.cold+0x24b/0x350
[   55.588007][ T3630]  ? xfs_qm_dqget_cache_insert.constprop.0+0x36a/0x410
[   55.594854][ T3630]  __warn.cold+0x25c/0x350
[   55.599277][ T3630]  ? xfs_qm_dqget_cache_insert.constprop.0+0x36a/0x410
[   55.606125][ T3630]  report_bug+0x1c0/0x210
[   55.610460][ T3630]  handle_bug+0x3c/0x70
[   55.614611][ T3630]  exc_invalid_op+0x18/0x50
[   55.619128][ T3630]  asm_exc_invalid_op+0x1a/0x20
[   55.623978][ T3630] RIP: 0010:xfs_qm_dqget_cache_insert.constprop.0+0x36a/0x410
[   55.631439][ T3630] Code: e9 c4 fd ff ff e8 56 0a 6c fe 0f 0b e9 1c ff ff ff e8 1a e4 b8 fe e9 59 fd ff ff e8 b0 e4 b8 fe e9 20 fd ff ff e8 36 0a 6c fe <0f> 0b e9 7f fd ff ff e8 2a 0a 6c fe e8 25 50 d9 06 31 ff 89 c3 89
[   55.651048][ T3630] RSP: 0018:ffffc90003dbf8f0 EFLAGS: 00010293
[   55.657112][ T3630] RAX: 0000000000000000 RBX: ffff888076fe7800 RCX: 0000000000000000
[   55.665075][ T3630] RDX: ffff888024149d40 RSI: ffffffff8314132a RDI: 0000000000000005
[   55.673210][ T3630] RBP: ffff888070cf8680 R08: 0000000000000005 R09: 00000000ffffffef
[   55.681181][ T3630] R10: 00000000fffffff4 R11: 0000000000000000 R12: 00000000fffffff4
[   55.689153][ T3630] R13: ffff888076fe78f0 R14: ffff888076fe78a0 R15: 0000000000000000
[   55.697135][ T3630]  ? xfs_qm_dqget_cache_insert.constprop.0+0x36a/0x410
[   55.703993][ T3630]  xfs_qm_dqget+0x16e/0x7a0
[   55.708498][ T3630]  ? xfs_dquot_to_disk+0x750/0x750
[   55.713602][ T3630]  ? xfs_qm_vop_dqalloc+0x785/0xfc0
[   55.718793][ T3630]  ? rcu_read_lock_sched_held+0x3e/0x70
[   55.724431][ T3630]  xfs_qm_vop_dqalloc+0x7a2/0xfc0
[   55.729459][ T3630]  ? xfs_qm_mount_quotas+0x690/0x690
[   55.734741][ T3630]  ? lock_release+0x810/0x810
[   55.739435][ T3630]  xfs_fileattr_set+0x69e/0x2120
[   55.744379][ T3630]  ? up_write+0x520/0x520
[   55.748710][ T3630]  ? xfs_fileattr_get+0xd0/0xd0
[   55.753555][ T3630]  ? projid_m_show+0x220/0x220
[   55.758318][ T3630]  ? xfs_fileattr_get+0xa5/0xd0
[   55.763166][ T3630]  ? rcu_read_lock_sched_held+0x3e/0x70
[   55.768711][ T3630]  ? xfs_iunlock+0x3cc/0x4c0
[   55.773303][ T3630]  vfs_fileattr_set+0x7f9/0xbe0
[   55.778153][ T3630]  ? ioctl_file_clone+0x100/0x100
[   55.783172][ T3630]  ? __mnt_want_write+0x1fe/0x2e0
[   55.788204][ T3630]  do_vfs_ioctl+0xfa8/0x1600
[   55.792793][ T3630]  ? vfs_fileattr_set+0xbe0/0xbe0
[   55.797818][ T3630]  ? find_held_lock+0x2d/0x110
[   55.802609][ T3630]  ? do_one_initcall+0x362/0x780
[   55.807567][ T3630]  ? bpf_lsm_file_ioctl+0x9/0x10
[   55.812500][ T3630]  __x64_sys_ioctl+0x10c/0x210
[   55.817267][ T3630]  do_syscall_64+0x39/0xb0
[   55.821686][ T3630]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   55.827581][ T3630] RIP: 0033:0x7f868f23ea19
[   55.831987][ T3630] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   55.851599][ T3630] RSP: 002b:00007fffb169b5a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   55.860016][ T3630] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f868f23ea19
[   55.867983][ T3630] RDX: 0000000020000140 RSI: 00000000401c5820 RDI: 0000000000000004
[   55.875945][ T3630] RBP: 00007fffb169b630 R08: 0000000000000001 R09: 0000000000000000
[   55.883905][ T3630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[   55.891867][ T3630] R13: 000000000000000d R14: 00007f868f2cd810 R15: 00007fffb169b6b0
[   55.899846][ T3630]  </TASK>
[   55.903724][ T3630] Kernel Offset: disabled
[   55.908115][ T3630] Rebooting in 86400 seconds..