Warning: Permanently added '10.128.0.51' (ECDSA) to the list of known hosts. 2019/10/21 19:51:42 fuzzer started 2019/10/21 19:51:47 dialing manager at 10.128.0.26:32863 2019/10/21 19:51:47 syscalls: 2415 2019/10/21 19:51:47 code coverage: enabled 2019/10/21 19:51:47 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled 2019/10/21 19:51:47 extra coverage: enabled 2019/10/21 19:51:47 setuid sandbox: enabled 2019/10/21 19:51:47 namespace sandbox: enabled 2019/10/21 19:51:47 Android sandbox: /sys/fs/selinux/policy does not exist 2019/10/21 19:51:47 fault injection: enabled 2019/10/21 19:51:47 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/10/21 19:51:47 net packet injection: enabled 2019/10/21 19:51:47 net device setup: enabled 2019/10/21 19:51:47 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 19:55:47 executing program 0: syzkaller login: [ 341.885986][T11735] IPVS: ftp: loaded support on port[0] = 21 [ 342.031621][T11735] chnl_net:caif_netlink_parms(): no params data found [ 342.091303][T11735] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.098582][T11735] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.107350][T11735] device bridge_slave_0 entered promiscuous mode [ 342.117627][T11735] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.125050][T11735] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.134624][T11735] device bridge_slave_1 entered promiscuous mode [ 342.167494][T11735] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 342.180192][T11735] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 342.213798][T11735] team0: Port device team_slave_0 added [ 342.223686][T11735] team0: Port device team_slave_1 added [ 342.407244][T11735] device hsr_slave_0 entered promiscuous mode [ 342.663007][T11735] device hsr_slave_1 entered promiscuous mode [ 342.943077][T11735] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.950306][T11735] bridge0: port 2(bridge_slave_1) entered forwarding state [ 342.958134][T11735] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.965455][T11735] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.046761][T11735] 8021q: adding VLAN 0 to HW filter on device bond0 [ 343.066813][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 343.080606][ T34] bridge0: port 1(bridge_slave_0) entered disabled state [ 343.093438][ T34] bridge0: port 2(bridge_slave_1) entered disabled state [ 343.109682][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 343.130830][T11735] 8021q: adding VLAN 0 to HW filter on device team0 [ 343.147143][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 343.156508][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 343.166742][ T34] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.173954][ T34] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.221039][T11735] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 343.231600][T11735] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 343.247362][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 343.257237][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 343.266492][ T34] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.273724][ T34] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.283132][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 343.293360][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 343.303454][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 343.313307][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 343.322965][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 343.335498][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 343.346028][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 343.355218][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 343.364801][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 343.374017][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 343.388521][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 343.397371][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 343.429528][T11735] 8021q: adding VLAN 0 to HW filter on device batadv0 19:55:49 executing program 0: 19:55:49 executing program 0: 19:55:49 executing program 0: 19:55:49 executing program 0: 19:55:50 executing program 0: 19:55:50 executing program 0: r0 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x100000000000012, 0x7, 0x1, 0x3, 0x0, "", {{}, [{{0x9, 0x5, 0x82, 0x2, 0x355}}]}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000900)={0xac, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x20, 0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='\x00\x00\x00\x00\x00\x00\x00\x00\x00') fstat(r3, &(0x7f0000000280)) read$char_usb(r3, &(0x7f0000000080)=""/96, 0x60) r4 = dup2(r1, r2) ioctl$DRM_IOCTL_ADD_MAP(r4, 0xc0286415, 0x0) [ 344.392441][ T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 344.642603][ T12] usb 1-1: Using ep0 maxpacket: 8 [ 344.763338][ T12] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 344.773210][ T12] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 853 [ 344.783344][ T12] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 344.796465][ T12] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 344.805639][ T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 19:55:51 executing program 1: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) setsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f0000000000)=0x8000, 0x4) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e22, 0x1, @mcast2, 0x4a2}}}, &(0x7f0000000100)=0x84) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000140)={0x8, 0x2, 0x4, 0xb86, r1}, 0x10) r2 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0xe2e, 0x420000) recvmmsg(0xffffffffffffffff, &(0x7f0000005fc0)=[{{&(0x7f00000014c0)=@xdp={0x2c, 0x0, 0x0}, 0x80, &(0x7f0000001640)=[{&(0x7f0000001540)=""/33, 0x21}, {&(0x7f0000001580)=""/186, 0xba}], 0x2, &(0x7f0000001680)=""/223, 0xdf}, 0x3}, {{&(0x7f0000001780)=@tipc=@name, 0x80, &(0x7f0000003b40)=[{&(0x7f0000001800)=""/4096, 0x1000}, {&(0x7f0000002800)}, {&(0x7f0000002840)=""/94, 0x5e}, {&(0x7f00000028c0)=""/152, 0x98}, {&(0x7f0000002980)=""/4096, 0x1000}, {&(0x7f0000003980)=""/91, 0x5b}, {&(0x7f0000003a00)=""/220, 0xdc}, {&(0x7f0000003b00)=""/17, 0x11}], 0x8, &(0x7f0000003bc0)=""/91, 0x5b}, 0x6}, {{&(0x7f0000003c40)=@nl=@unspec, 0x80, &(0x7f00000051c0)=[{&(0x7f0000003cc0)=""/4096, 0x1000}, {&(0x7f0000004cc0)=""/5, 0x5}, {&(0x7f0000004d00)=""/169, 0xa9}, {&(0x7f0000004dc0)=""/9, 0x9}, {&(0x7f0000004e00)=""/241, 0xf1}, {&(0x7f0000004f00)=""/217, 0xd9}, {&(0x7f0000005000)=""/121, 0x79}, {&(0x7f0000005080)=""/197, 0xc5}, {&(0x7f0000005180)=""/45, 0x2d}], 0x9, &(0x7f0000005280)=""/206, 0xce}, 0x7fffffff}, {{&(0x7f0000005380)=@ethernet={0x0, @link_local}, 0x80, &(0x7f00000054c0)=[{&(0x7f0000005400)=""/149, 0x95}], 0x1}}, {{&(0x7f0000005500)=@nfc_llcp, 0x80, &(0x7f0000005940)=[{&(0x7f0000005580)=""/2, 0x2}, {&(0x7f00000055c0)=""/174, 0xae}, {&(0x7f0000005680)}, {&(0x7f00000056c0)=""/218, 0xda}, {&(0x7f00000057c0)=""/45, 0x2d}, {&(0x7f0000005800)=""/33, 0x21}, {&(0x7f0000005840)=""/229, 0xe5}], 0x7}}, {{&(0x7f00000059c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000005e00)=[{&(0x7f0000005a40)=""/119, 0x77}, {&(0x7f0000005ac0)=""/9, 0x9}, {&(0x7f0000005b00)}, {&(0x7f0000005b40)=""/35, 0x23}, {&(0x7f0000005b80)=""/196, 0xc4}, {&(0x7f0000005c80)=""/81, 0x51}, {&(0x7f0000005d00)=""/86, 0x56}, {&(0x7f0000005d80)=""/95, 0x5f}, {0x0}], 0x9, &(0x7f0000005ec0)=""/238, 0xee}, 0xb4}], 0x6, 0x400300e0, &(0x7f0000006140)={0x0, 0x1c9c380}) sendmsg$can_bcm(r2, &(0x7f0000006280)={&(0x7f0000006180)={0x1d, r3}, 0x10, &(0x7f0000006240)={&(0x7f00000061c0)={0x4, 0x0, 0xfffffff9, {0x0, 0x7530}, {0x0, 0x7530}, {0x2, 0x1, 0x1}, 0x1, @can={{0x2, 0x1, 0x1, 0x1}, 0x7, 0x1, 0x0, 0x0, "056d3b68e6805e76"}}, 0x48}, 0x1, 0x0, 0x0, 0xc000}, 0x24048408) socket$inet6(0xa, 0x6, 0x8) ioctl$SIOCGIFMTU(r2, 0x8921, &(0x7f00000062c0)) fcntl$getflags(r0, 0xb) ioctl$KDGKBLED(r2, 0x4b64, &(0x7f0000006300)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000006340)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000006380)=0x9) timer_create(0x4, &(0x7f00000063c0)={0x0, 0x2c, 0x7, @tid=0xffffffffffffffff}, &(0x7f0000006400)=0x0) timer_gettime(r6, &(0x7f0000006440)) r7 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000006480)='/dev/sequencer2\x00', 0x501001, 0x0) ioctl$HIDIOCGRDESC(r7, 0x90044802, &(0x7f00000064c0)={0x677, "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"}) r8 = syz_open_dev$sndpcmp(&(0x7f0000006b40)='/dev/snd/pcmC#D#p\x00', 0xb5, 0x20080) ioctl$TIOCSWINSZ(r8, 0x5414, &(0x7f0000006b80)={0x81, 0x2, 0x5, 0x6}) r9 = syz_open_dev$vivid(&(0x7f0000006bc0)='/dev/video#\x00', 0x1, 0x2) ioctl$VIDIOC_S_FMT(r9, 0xc0d05605, &(0x7f0000006c00)={0x3, @sliced={0x7fff, [0x4, 0x58c0, 0x59d, 0x2, 0x1, 0x9, 0x6, 0x2, 0xff, 0x9, 0x0, 0x8, 0x3, 0x1, 0x9, 0xfffa, 0x8, 0xb0c5, 0x6, 0x1, 0x8001, 0x8, 0x54, 0x9, 0x7f, 0x8, 0x3, 0x6d0, 0x4, 0xf000, 0x9, 0x100, 0x7fff, 0x7ff, 0xaa, 0x0, 0x1, 0x4, 0x7, 0x1, 0x800, 0x1ff, 0xb79, 0x6, 0x3, 0x8001, 0x43, 0x8000], 0x20}}) r10 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000006d00)='/dev/sequencer2\x00', 0x400, 0x0) r11 = syz_genetlink_get_family_id$ipvs(&(0x7f0000006d80)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r10, &(0x7f0000006e80)={&(0x7f0000006d40)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000006e40)={&(0x7f0000006dc0)={0x44, r11, 0x404, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10001}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e21}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xfffff800}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x20}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e23}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4000004) pipe2(&(0x7f0000006ec0)={0xffffffffffffffff}, 0x9ba8690082ea15ee) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000006f40)={0x2, &(0x7f0000006f00)=[{}, {0x0}]}) ioctl$DRM_IOCTL_UNLOCK(r12, 0x4008642b, &(0x7f0000006f80)={r13, 0x2c}) r14 = socket$can_raw(0x1d, 0x3, 0x1) dup3(r4, r14, 0x180000) r15 = syz_genetlink_get_family_id$tipc2(&(0x7f0000007000)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000007140)={&(0x7f0000006fc0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000007100)={&(0x7f0000007040)={0x90, r15, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xaf0f}]}, @TIPC_NLA_NET={0x60, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfc9}, @TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x400}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6d}]}]}, 0x90}, 0x1, 0x0, 0x0, 0xc0}, 0x24004820) [ 345.329253][ T12] usblp 1-1:1.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x0525 pid 0xA4A8 [ 345.533378][ T12] usb 1-1: USB disconnect, device number 2 [ 345.542344][ C0] usblp0: nonzero read bulk status received: -108 [ 345.558216][T11754] ===================================================== [ 345.565214][T11754] BUG: KMSAN: use-after-free in usb_autopm_put_interface+0xf2/0x120 [ 345.573203][T11754] CPU: 0 PID: 11754 Comm: syz-executor.0 Not tainted 5.4.0-rc3+ #0 [ 345.578562][T11759] IPVS: ftp: loaded support on port[0] = 21 [ 345.581116][T11754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.597057][T11754] Call Trace: [ 345.600348][T11754] dump_stack+0x191/0x1f0 [ 345.604686][T11754] kmsan_report+0x14a/0x2f0 [ 345.609184][T11754] __msan_warning+0x73/0xf0 [ 345.613771][T11754] usb_autopm_put_interface+0xf2/0x120 [ 345.619232][T11754] usblp_release+0x182/0x3d0 [ 345.623815][T11754] ? usblp_open+0x610/0x610 [ 345.628303][T11754] __fput+0x4c9/0xba0 [ 345.632285][T11754] ____fput+0x37/0x40 [ 345.636251][T11754] ? fput_many+0x2a0/0x2a0 [ 345.640663][T11754] task_work_run+0x22e/0x2a0 [ 345.645258][T11754] prepare_exit_to_usermode+0x39d/0x4d0 [ 345.650813][T11754] syscall_return_slowpath+0x90/0x610 [ 345.656182][T11754] do_syscall_64+0xdc/0x160 [ 345.660676][T11754] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 345.666562][T11754] RIP: 0033:0x413741 [ 345.670448][T11754] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 345.690038][T11754] RSP: 002b:0000000000a6fbf0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 345.698791][T11754] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000413741 [ 345.706749][T11754] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 345.714709][T11754] RBP: 0000000000000001 R08: 000000006e8b811c R09: 000000006e8b8120 [ 345.722676][T11754] R10: 0000000000a6fcd0 R11: 0000000000000293 R12: 000000000075bf20 [ 345.730633][T11754] R13: 00000000000545f3 R14: 0000000000760fd8 R15: 000000000075bf2c [ 345.738980][T11754] [ 345.741290][T11754] Uninit was created at: [ 345.745528][T11754] kmsan_internal_poison_shadow+0x60/0x110 [ 345.751320][T11754] kmsan_slab_free+0x8d/0x100 [ 345.755980][T11754] kfree+0x4c1/0x2e70 [ 345.759958][T11754] usb_release_interface+0x105/0x120 [ 345.765241][T11754] device_release+0xe2/0x380 [ 345.769834][T11754] kobject_put+0x38d/0x480 [ 345.774234][T11754] put_device+0x51/0x70 [ 345.778371][T11754] usb_disable_device+0x69a/0x1150 [ 345.783469][T11754] usb_disconnect+0x51e/0xd60 [ 345.788132][T11754] hub_event+0x3fd0/0x72f0 [ 345.792536][T11754] process_one_work+0x1572/0x1ef0 [ 345.797546][T11754] worker_thread+0x111b/0x2460 [ 345.802294][T11754] kthread+0x4b5/0x4f0 [ 345.806348][T11754] ret_from_fork+0x35/0x40 [ 345.810752][T11754] ===================================================== [ 345.817667][T11754] Disabling lock debugging due to kernel taint [ 345.823894][T11754] Kernel panic - not syncing: panic_on_warn set ... [ 345.830487][T11754] CPU: 0 PID: 11754 Comm: syz-executor.0 Tainted: G B 5.4.0-rc3+ #0 [ 345.839753][T11754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.849823][T11754] Call Trace: [ 345.853116][T11754] dump_stack+0x191/0x1f0 [ 345.857453][T11754] panic+0x3c9/0xc1e [ 345.861372][T11754] kmsan_report+0x2e8/0x2f0 [ 345.865872][T11754] __msan_warning+0x73/0xf0 [ 345.870369][T11754] usb_autopm_put_interface+0xf2/0x120 [ 345.875824][T11754] usblp_release+0x182/0x3d0 [ 345.880404][T11754] ? usblp_open+0x610/0x610 [ 345.884902][T11754] __fput+0x4c9/0xba0 [ 345.888880][T11754] ____fput+0x37/0x40 [ 345.892846][T11754] ? fput_many+0x2a0/0x2a0 [ 345.897250][T11754] task_work_run+0x22e/0x2a0 [ 345.901836][T11754] prepare_exit_to_usermode+0x39d/0x4d0 [ 345.907375][T11754] syscall_return_slowpath+0x90/0x610 [ 345.912745][T11754] do_syscall_64+0xdc/0x160 [ 345.917246][T11754] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 345.923131][T11754] RIP: 0033:0x413741 [ 345.927012][T11754] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 345.946612][T11754] RSP: 002b:0000000000a6fbf0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 345.955018][T11754] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000413741 [ 345.962984][T11754] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 345.970947][T11754] RBP: 0000000000000001 R08: 000000006e8b811c R09: 000000006e8b8120 [ 345.978907][T11754] R10: 0000000000a6fcd0 R11: 0000000000000293 R12: 000000000075bf20 [ 345.986863][T11754] R13: 00000000000545f3 R14: 0000000000760fd8 R15: 000000000075bf2c [ 345.996333][T11754] Kernel Offset: disabled [ 346.000667][T11754] Rebooting in 86400 seconds..