program: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000340)='./file2\x00', 0x14550, &(0x7f0000000240)=ANY=[], 0x1, 0x11f3, &(0x7f0000001b80)="$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") r1 = open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file6\x00', 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$unix(0x1, 0x2, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000100)={'wlan1\x00'}) (async) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x6c, r4, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x60}, @val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x7ff, 0x5a}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}]]}, 0x6c}, 0x1, 0x0, 0x0, 0x81}, 0x24044884) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x1a0000, 0x0) close(r6) socket$inet_sctp(0x2, 0x1, 0x84) (async) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) socket$nl_route(0x10, 0x3, 0x0) (async) r8 = socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0x2, 0x300) (async) r9 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'}) (async) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) inotify_init1(0x0) (async) r11 = inotify_init1(0x0) r12 = inotify_add_watch(r11, &(0x7f0000000200)='.\x00', 0x10000a0) r13 = dup(r11) inotify_rm_watch(r13, r12) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r13, 0x84, 0x65, &(0x7f0000000240)=[@in6={0xa, 0x4e23, 0x200, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xe}}, 0x3}, @in={0x2, 0x4e22, @multicast1}, @in={0x2, 0x4e22, @rand_addr=0x64010100}, @in={0x2, 0x4e23, @private=0xa010102}, @in6={0xa, 0x4e23, 0xb71d, @loopback, 0x1000}, @in6={0xa, 0x4e23, 0x9, @mcast2, 0x1}, @in={0x2, 0x4e21, @loopback}, @in6={0xa, 0x4e24, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}, 0xffff}, @in={0x2, 0x4e24, @rand_addr=0x64010101}, @in={0x2, 0x4e21, @remote}], 0xd0) sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@bridge_delvlan={0x30, 0x70, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r10}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x0, 0x4}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x0, 0x4}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20004004}, 0x0) (async) sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@bridge_delvlan={0x30, 0x70, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r10}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x0, 0x4}}}, @BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x0, 0x4}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20004004}, 0x0) write$rfkill(r7, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) (async) creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000140)={0x6, @multicast1, 0x4e21, 0x3, 'lblc\x00', 0x12, 0x1, 0x2f}, 0x2c) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0x1f40) (async) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0x1f40) [ 76.278492][ T1308] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.280613][ T1308] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.283372][ T5302] Bluetooth: hci0: command tx timeout [ 76.410982][ T5318] loop0: detected capacity change from 0 to 8192 [ 76.423747][ T5318] ======================================================= [ 76.423747][ T5318] WARNING: The mand mount option has been deprecated and [ 76.423747][ T5318] and is ignored by this kernel. Remove the mand [ 76.423747][ T5318] option from the mount to silence this warning. [ 76.423747][ T5318] ======================================================= [ 76.461370][ T5318] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 76.468270][ T24] audit: type=1800 audit(1738280590.905:2): pid=5318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.0" name="bus" dev="loop0" ino=3 res=0 errno=0 [ 76.586168][ T5318] ------------[ cut here ]------------ [ 76.588475][ T5318] syzkaller0: Failed check-sdata-in-driver check, flags: 0x0 [ 76.593022][ T5318] WARNING: CPU: 0 PID: 5318 at net/mac80211/driver-ops.c:114 drv_remove_interface+0x35d/0x590 [ 76.596876][ T5318] Modules linked in: [ 76.598642][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted 6.13.0-syzkaller-09585-gb4b0881156fb #0 [ 76.602272][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.606745][ T5318] RIP: 0010:drv_remove_interface+0x35d/0x590 [ 76.609398][ T5318] Code: 00 48 85 c0 48 0f 44 d9 42 0f b6 44 2d 00 84 c0 0f 85 f3 00 00 00 41 8b 14 24 48 c7 c7 60 c3 28 8d 48 89 de e8 14 68 22 f6 90 <0f> 0b 90 90 e9 e3 fd ff ff e8 e5 ae 61 f6 c6 05 b0 ab a7 04 01 90 [ 76.616176][ T5318] RSP: 0018:ffffc9000d137608 EFLAGS: 00010246 [ 76.618851][ T5318] RAX: 3fb0385eb6579900 RBX: ffff888045abc120 RCX: ffff888000fb0000 [ 76.621734][ T5318] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 76.624921][ T5318] RBP: 1ffff11008b57ae5 R08: ffffffff81802842 R09: 1ffff11003f8519a [ 76.628150][ T5318] R10: dffffc0000000000 R11: ffffed1003f8519b R12: ffff888045abd728 [ 76.631110][ T5318] R13: dffffc0000000000 R14: ffff888011a38e40 R15: ffff888045abcd80 [ 76.634044][ T5318] FS: 00007eff35b546c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 76.637328][ T5318] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.639785][ T5318] CR2: 00007ffe2fe87f00 CR3: 000000003320c000 CR4: 0000000000352ef0 [ 76.642794][ T5318] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 76.645779][ T5318] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 76.648658][ T5318] Call Trace: [ 76.649872][ T5318] [ 76.651020][ T5318] ? __warn+0x165/0x4d0 [ 76.652579][ T5318] ? drv_remove_interface+0x35d/0x590 [ 76.654647][ T5318] ? report_bug+0x2b3/0x500 [ 76.656277][ T5318] ? drv_remove_interface+0x35d/0x590 [ 76.658515][ T5318] ? handle_bug+0x60/0x90 [ 76.660173][ T5318] ? exc_invalid_op+0x1a/0x50 [ 76.662058][ T5318] ? asm_exc_invalid_op+0x1a/0x20 [ 76.664034][ T5318] ? __warn_printk+0x292/0x360 [ 76.665952][ T5318] ? drv_remove_interface+0x35d/0x590 [ 76.668336][ T5318] ? drv_remove_interface+0x35c/0x590 [ 76.670583][ T5318] ieee80211_do_stop+0x1b68/0x2370 [ 76.672632][ T5318] ? __pfx_ieee80211_do_stop+0x10/0x10 [ 76.674727][ T5318] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 76.676963][ T5318] ? lockdep_hardirqs_on+0x99/0x150 [ 76.678865][ T5318] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 76.680971][ T5318] ? wiphy_work_cancel+0x1f0/0x3e0 [ 76.682607][ T5318] ieee80211_stop+0x43b/0x490 [ 76.684163][ T5318] ? __pfx_ieee80211_stop+0x10/0x10 [ 76.686091][ T5318] __dev_close_many+0x216/0x350 [ 76.688203][ T5318] ? __pfx___dev_close_many+0x10/0x10 [ 76.690268][ T5318] ? __pfx___mutex_trylock_common+0x10/0x10 [ 76.692453][ T5318] dev_close_many+0x24e/0x4c0 [ 76.694289][ T5318] ? trace_contention_end+0x3c/0x120 [ 76.696161][ T5318] ? __mutex_lock+0x397/0x1010 [ 76.698382][ T5318] ? __pfx_dev_close_many+0x10/0x10 [ 76.700494][ T5318] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 76.702726][ T5318] dev_close+0x1c0/0x2c0 [ 76.704305][ T5318] ? __pfx_dev_close+0x10/0x10 [ 76.706061][ T5318] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 76.708532][ T5318] cfg80211_shutdown_all_interfaces+0xbb/0x1d0 [ 76.710959][ T5318] cfg80211_rfkill_set_block+0x2d/0x50 [ 76.712992][ T5318] ? __pfx_cfg80211_rfkill_set_block+0x10/0x10 [ 76.715623][ T5318] rfkill_set_block+0x1f1/0x440 [ 76.717391][ T5318] rfkill_fop_write+0x5b8/0x790 [ 76.719351][ T5318] ? __pfx_rfkill_fop_write+0x10/0x10 [ 76.721283][ T5318] ? __pfx_bpf_lsm_file_permission+0x10/0x10 [ 76.723505][ T5318] ? rw_verify_area+0x243/0x630 [ 76.725350][ T5318] ? __pfx_rfkill_fop_write+0x10/0x10 [ 76.727238][ T5318] vfs_write+0x29f/0xd10 [ 76.728803][ T5318] ? __pfx_vfs_write+0x10/0x10 [ 76.730591][ T5318] ? __might_fault+0xaa/0x120 [ 76.732355][ T5318] ? __fget_files+0x2a/0x410 [ 76.734133][ T5318] ? __fget_files+0x395/0x410 [ 76.736026][ T5318] ? __fget_files+0x2a/0x410 [ 76.738019][ T5318] ksys_write+0x18f/0x2b0 [ 76.739680][ T5318] ? __pfx_ksys_write+0x10/0x10 [ 76.741461][ T5318] ? do_syscall_64+0x100/0x230 [ 76.743319][ T5318] ? do_syscall_64+0xb6/0x230 [ 76.745012][ T5318] do_syscall_64+0xf3/0x230 [ 76.746701][ T5318] ? clear_bhb_loop+0x35/0x90 [ 76.748603][ T5318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.750734][ T5318] RIP: 0033:0x7eff34d8cda9 [ 76.752417][ T5318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.759816][ T5318] RSP: 002b:00007eff35b54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 76.762773][ T5318] RAX: ffffffffffffffda RBX: 00007eff34fa5fa0 RCX: 00007eff34d8cda9 [ 76.765543][ T5318] RDX: 0000000000000008 RSI: 0000000020000080 RDI: 000000000000000c [ 76.768280][ T5318] RBP: 00007eff34e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 76.771158][ T5318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 76.774056][ T5318] R13: 0000000000000000 R14: 00007eff34fa5fa0 R15: 00007ffe2fe888b8 [ 76.776988][ T5318] [ 76.778215][ T5318] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 76.780733][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted 6.13.0-syzkaller-09585-gb4b0881156fb #0 [ 76.784313][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.787932][ T5318] Call Trace: [ 76.789136][ T5318] [ 76.790147][ T5318] dump_stack_lvl+0x241/0x360 [ 76.791898][ T5318] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.793868][ T5318] ? __pfx__printk+0x10/0x10 [ 76.795459][ T5318] ? _printk+0xd5/0x120 [ 76.797074][ T5318] ? __init_begin+0x41000/0x41000 [ 76.798967][ T5318] ? vscnprintf+0x5d/0x90 [ 76.800559][ T5318] panic+0x349/0x880 [ 76.801970][ T5318] ? __warn+0x174/0x4d0 [ 76.803439][ T5318] ? __pfx_panic+0x10/0x10 [ 76.805110][ T5318] __warn+0x344/0x4d0 [ 76.806602][ T5318] ? drv_remove_interface+0x35d/0x590 [ 76.808508][ T5318] report_bug+0x2b3/0x500 [ 76.810136][ T5318] ? drv_remove_interface+0x35d/0x590 [ 76.811965][ T5318] handle_bug+0x60/0x90 [ 76.813440][ T5318] exc_invalid_op+0x1a/0x50 [ 76.815045][ T5318] asm_exc_invalid_op+0x1a/0x20 [ 76.816818][ T5318] RIP: 0010:drv_remove_interface+0x35d/0x590 [ 76.819128][ T5318] Code: 00 48 85 c0 48 0f 44 d9 42 0f b6 44 2d 00 84 c0 0f 85 f3 00 00 00 41 8b 14 24 48 c7 c7 60 c3 28 8d 48 89 de e8 14 68 22 f6 90 <0f> 0b 90 90 e9 e3 fd ff ff e8 e5 ae 61 f6 c6 05 b0 ab a7 04 01 90 [ 76.826098][ T5318] RSP: 0018:ffffc9000d137608 EFLAGS: 00010246 [ 76.828305][ T5318] RAX: 3fb0385eb6579900 RBX: ffff888045abc120 RCX: ffff888000fb0000 [ 76.831381][ T5318] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 76.834325][ T5318] RBP: 1ffff11008b57ae5 R08: ffffffff81802842 R09: 1ffff11003f8519a [ 76.837310][ T5318] R10: dffffc0000000000 R11: ffffed1003f8519b R12: ffff888045abd728 [ 76.840269][ T5318] R13: dffffc0000000000 R14: ffff888011a38e40 R15: ffff888045abcd80 [ 76.843115][ T5318] ? __warn_printk+0x292/0x360 [ 76.844883][ T5318] ? drv_remove_interface+0x35c/0x590 [ 76.846732][ T5318] ieee80211_do_stop+0x1b68/0x2370 [ 76.848722][ T5318] ? __pfx_ieee80211_do_stop+0x10/0x10 [ 76.850648][ T5318] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 76.852757][ T5318] ? lockdep_hardirqs_on+0x99/0x150 [ 76.854724][ T5318] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 76.857122][ T5318] ? wiphy_work_cancel+0x1f0/0x3e0 [ 76.859126][ T5318] ieee80211_stop+0x43b/0x490 [ 76.860953][ T5318] ? __pfx_ieee80211_stop+0x10/0x10 [ 76.862886][ T5318] __dev_close_many+0x216/0x350 [ 76.864533][ T5318] ? __pfx___dev_close_many+0x10/0x10 [ 76.866531][ T5318] ? __pfx___mutex_trylock_common+0x10/0x10 [ 76.868672][ T5318] dev_close_many+0x24e/0x4c0 [ 76.870509][ T5318] ? trace_contention_end+0x3c/0x120 [ 76.872246][ T5318] ? __mutex_lock+0x397/0x1010 [ 76.873741][ T5318] ? __pfx_dev_close_many+0x10/0x10 [ 76.875352][ T5318] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 76.877614][ T5318] dev_close+0x1c0/0x2c0 [ 76.879375][ T5318] ? __pfx_dev_close+0x10/0x10 [ 76.881174][ T5318] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 76.883351][ T5318] cfg80211_shutdown_all_interfaces+0xbb/0x1d0 [ 76.885596][ T5318] cfg80211_rfkill_set_block+0x2d/0x50 [ 76.887629][ T5318] ? __pfx_cfg80211_rfkill_set_block+0x10/0x10 [ 76.889986][ T5318] rfkill_set_block+0x1f1/0x440 [ 76.891758][ T5318] rfkill_fop_write+0x5b8/0x790 [ 76.893522][ T5318] ? __pfx_rfkill_fop_write+0x10/0x10 [ 76.895463][ T5318] ? __pfx_bpf_lsm_file_permission+0x10/0x10 [ 76.897622][ T5318] ? rw_verify_area+0x243/0x630 [ 76.899391][ T5318] ? __pfx_rfkill_fop_write+0x10/0x10 [ 76.901386][ T5318] vfs_write+0x29f/0xd10 [ 76.902985][ T5318] ? __pfx_vfs_write+0x10/0x10 [ 76.904771][ T5318] ? __might_fault+0xaa/0x120 [ 76.906650][ T5318] ? __fget_files+0x2a/0x410 [ 76.908493][ T5318] ? __fget_files+0x395/0x410 [ 76.909933][ T5318] ? __fget_files+0x2a/0x410 [ 76.911269][ T5318] ksys_write+0x18f/0x2b0 [ 76.912789][ T5318] ? __pfx_ksys_write+0x10/0x10 [ 76.914609][ T5318] ? do_syscall_64+0x100/0x230 [ 76.916189][ T5318] ? do_syscall_64+0xb6/0x230 [ 76.917771][ T5318] do_syscall_64+0xf3/0x230 [ 76.919688][ T5318] ? clear_bhb_loop+0x35/0x90 [ 76.921502][ T5318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.923476][ T5318] RIP: 0033:0x7eff34d8cda9 [ 76.925081][ T5318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.931593][ T5318] RSP: 002b:00007eff35b54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 76.934789][ T5318] RAX: ffffffffffffffda RBX: 00007eff34fa5fa0 RCX: 00007eff34d8cda9 [ 76.937583][ T5318] RDX: 0000000000000008 RSI: 0000000020000080 RDI: 000000000000000c [ 76.940452][ T5318] RBP: 00007eff34e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 76.942973][ T5318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 76.945680][ T5318] R13: 0000000000000000 R14: 00007eff34fa5fa0 R15: 00007ffe2fe888b8 [ 76.948444][ T5318] [ 76.949811][ T5318] Kernel Offset: disabled [ 76.951358][ T5318] Rebooting in 86400 seconds..