program: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x40, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_MARK={0x8}]}, 0x40}}, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d) ioctl$sock_netdev_private(r3, 0x8914, &(0x7f0000000000)) r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0) r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_rose_SIOCADDRT(r5, 0x890b, &(0x7f0000000380)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6, @bcast, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]}) r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_rose_SIOCADDRT(r6, 0x890b, &(0x7f00000007c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6, @bcast, @bpq0, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]}) ioctl$sock_ifreq(r4, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'}) ioctl$sock_rose_SIOCRSCLRRT(r5, 0x89e4) [ 67.918100][ T5309] Bluetooth: hci0: command tx timeout [ 67.975508][ T5324] ================================================================== [ 67.984964][ T5324] BUG: KASAN: slab-use-after-free in rose_link_device_down+0x7a/0xb0 [ 67.988456][ T5324] Read of size 8 at addr ffff8880110d2400 by task syz.0.0/5324 [ 67.991654][ T5324] [ 67.992669][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 67.992687][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 67.992693][ T5324] Call Trace: [ 67.992702][ T5324] [ 67.992707][ T5324] dump_stack_lvl+0x189/0x250 [ 67.992729][ T5324] ? rcu_is_watching+0x15/0xb0 [ 67.992745][ T5324] ? __kasan_check_byte+0x12/0x40 [ 67.992814][ T5324] ? __pfx_dump_stack_lvl+0x10/0x10 [ 67.992829][ T5324] ? rcu_is_watching+0x15/0xb0 [ 67.992845][ T5324] ? lock_release+0x4b/0x3e0 [ 67.992859][ T5324] ? _raw_spin_lock_irqsave+0xb3/0xf0 [ 67.992875][ T5324] ? __virt_addr_valid+0x18c/0x540 [ 67.992890][ T5324] ? __virt_addr_valid+0x469/0x540 [ 67.992906][ T5324] print_report+0xb4/0x290 [ 67.992919][ T5324] ? rose_link_device_down+0x7a/0xb0 [ 67.992934][ T5324] kasan_report+0x118/0x150 [ 67.992949][ T5324] ? rose_link_device_down+0x7a/0xb0 [ 67.992964][ T5324] rose_link_device_down+0x7a/0xb0 [ 67.992977][ T5324] rose_device_event+0x5fb/0x6a0 [ 67.992989][ T5324] ? __pfx_rose_device_event+0x10/0x10 [ 67.993000][ T5324] ? __local_bh_enable_ip+0x12d/0x1c0 [ 67.993015][ T5324] ? lockdep_hardirqs_on+0x9c/0x150 [ 67.993026][ T5324] ? __local_bh_enable_ip+0x12d/0x1c0 [ 67.993041][ T5324] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 67.993056][ T5324] ? do_raw_spin_unlock+0x4d/0x240 [ 67.993068][ T5324] ? nr_device_event+0x137/0x150 [ 67.993080][ T5324] notifier_call_chain+0x1b3/0x3e0 [ 67.993094][ T5324] dev_close_many+0x29c/0x410 [ 67.993111][ T5324] ? __pfx_dev_close_many+0x10/0x10 [ 67.993128][ T5324] ? __try_to_del_timer_sync+0x34a/0x3a0 [ 67.993152][ T5324] ? bond_netdev_event+0x227/0xe80 [ 67.993165][ T5324] netif_close+0x158/0x210 [ 67.993182][ T5324] ? __pfx_netif_close+0x10/0x10 [ 67.993197][ T5324] ? tun_device_event+0x77/0x1020 [ 67.993213][ T5324] dev_close+0x10a/0x220 [ 67.993224][ T5324] bpq_device_event+0x2f4/0x600 [ 67.993234][ T5324] notifier_call_chain+0x1b3/0x3e0 [ 67.993246][ T5324] dev_close_many+0x29c/0x410 [ 67.993264][ T5324] ? __pfx_dev_close_many+0x10/0x10 [ 67.993288][ T5324] ? __lock_acquire+0xaac/0xd20 [ 67.993303][ T5324] netif_close+0x158/0x210 [ 67.993319][ T5324] ? __pfx_netif_close+0x10/0x10 [ 67.993335][ T5324] ? do_raw_spin_lock+0x121/0x290 [ 67.993346][ T5324] ? __local_bh_enable_ip+0x12d/0x1c0 [ 67.993363][ T5324] ? lockdep_hardirqs_on+0x9c/0x150 [ 67.993374][ T5324] dev_close+0x10a/0x220 [ 67.993384][ T5324] bond_setup_by_slave+0x5f/0x3f0 [ 67.993397][ T5324] bond_enslave+0x7b4/0x3a40 [ 67.993409][ T5324] ? kernel_text_address+0xa5/0xe0 [ 67.993424][ T5324] ? unwind_get_return_address+0x4d/0x90 [ 67.993443][ T5324] ? __pfx_bond_enslave+0x10/0x10 [ 67.993457][ T5324] ? apparmor_capable+0x137/0x1b0 [ 67.993471][ T5324] ? full_name_hash+0x92/0xe0 [ 67.993490][ T5324] ? netdev_name_node_lookup+0xdf/0x120 [ 67.993505][ T5324] bond_do_ioctl+0x635/0x9b0 [ 67.993521][ T5324] ? __pfx_bond_do_ioctl+0x10/0x10 [ 67.993534][ T5324] ? trace_contention_end+0x39/0x120 [ 67.993545][ T5324] ? __mutex_lock+0x330/0xe80 [ 67.993556][ T5324] ? __lock_acquire+0xaac/0xd20 [ 67.993570][ T5324] ? full_name_hash+0x92/0xe0 [ 67.993586][ T5324] ? netdev_name_node_lookup+0xdf/0x120 [ 67.993603][ T5324] dev_ifsioc+0x908/0xf00 [ 67.993619][ T5324] ? dev_load+0x21/0x1f0 [ 67.993634][ T5324] dev_ioctl+0x7b4/0x1150 [ 67.993649][ T5324] sock_do_ioctl+0x22c/0x300 [ 67.993664][ T5324] ? __pfx_sock_do_ioctl+0x10/0x10 [ 67.993681][ T5324] sock_ioctl+0x576/0x790 [ 67.993695][ T5324] ? __pfx_sock_ioctl+0x10/0x10 [ 67.993709][ T5324] ? __fget_files+0x3a0/0x420 [ 67.993722][ T5324] ? __fget_files+0x2a/0x420 [ 67.993737][ T5324] ? bpf_lsm_file_ioctl+0x9/0x20 [ 67.993751][ T5324] ? __pfx_sock_ioctl+0x10/0x10 [ 68.003890][ T5324] __se_sys_ioctl+0xf9/0x170 [ 68.003916][ T5324] do_syscall_64+0xf6/0x210 [ 68.003930][ T5324] ? clear_bhb_loop+0x45/0xa0 [ 68.003942][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.003954][ T5324] RIP: 0033:0x7fc598d8e969 [ 68.003966][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 68.003976][ T5324] RSP: 002b:00007fc599c5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 68.003988][ T5324] RAX: ffffffffffffffda RBX: 00007fc598fb5fa0 RCX: 00007fc598d8e969 [ 68.003997][ T5324] RDX: 0000200000000180 RSI: 0000000000008990 RDI: 0000000000000009 [ 68.004004][ T5324] RBP: 00007fc598e10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 68.004011][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 68.004018][ T5324] R13: 0000000000000000 R14: 00007fc598fb5fa0 R15: 00007ffe180539a8 [ 68.004029][ T5324] [ 68.004034][ T5324] [ 68.433961][ T5324] Allocated by task 5324: [ 68.437384][ T5324] kasan_save_track+0x3e/0x80 [ 68.452579][ T5324] __kasan_kmalloc+0x93/0xb0 [ 68.456414][ T5324] __kmalloc_cache_noprof+0x230/0x3d0 [ 68.459434][ T5324] rose_add_node+0x23a/0xde0 [ 68.462433][ T5324] rose_rt_ioctl+0xa48/0xfb0 [ 68.467302][ T5324] rose_ioctl+0x3ce/0x8b0 [ 68.476134][ T5324] sock_do_ioctl+0xd9/0x300 [ 68.478342][ T5324] sock_ioctl+0x576/0x790 [ 68.480909][ T5324] __se_sys_ioctl+0xf9/0x170 [ 68.483176][ T5324] do_syscall_64+0xf6/0x210 [ 68.501477][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.504412][ T5324] [ 68.505632][ T5324] Freed by task 5325: [ 68.507547][ T5324] kasan_save_track+0x3e/0x80 [ 68.511800][ T5324] kasan_save_free_info+0x46/0x50 [ 68.514732][ T5324] __kasan_slab_free+0x62/0x70 [ 68.517191][ T5324] kfree+0x193/0x440 [ 68.524726][ T5324] rose_rt_ioctl+0x428/0xfb0 [ 68.527152][ T5324] rose_ioctl+0x3ce/0x8b0 [ 68.529320][ T5324] sock_do_ioctl+0xd9/0x300 [ 68.531536][ T5324] sock_ioctl+0x576/0x790 [ 68.544851][ T5324] __se_sys_ioctl+0xf9/0x170 [ 68.556272][ T5324] do_syscall_64+0xf6/0x210 [ 68.558412][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.561361][ T5324] [ 68.562507][ T5324] The buggy address belongs to the object at ffff8880110d2400 [ 68.562507][ T5324] which belongs to the cache kmalloc-512 of size 512 [ 68.585329][ T5324] The buggy address is located 0 bytes inside of [ 68.585329][ T5324] freed 512-byte region [ffff8880110d2400, ffff8880110d2600) [ 68.592014][ T5324] [ 68.593238][ T5324] The buggy address belongs to the physical page: [ 68.596522][ T5324] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x110d2 [ 68.608002][ T5324] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 68.614531][ T5324] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 68.629359][ T5324] page_type: f5(slab) [ 68.635342][ T5324] raw: 00fff00000000040 ffff88801a041c80 dead000000000122 0000000000000000 [ 68.641953][ T5324] raw: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000 [ 68.648440][ T5324] head: 00fff00000000040 ffff88801a041c80 dead000000000122 0000000000000000 [ 68.656070][ T5324] head: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000 [ 68.670403][ T5324] head: 00fff00000000001 ffffea0000443481 00000000ffffffff 00000000ffffffff [ 68.678079][ T5324] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 68.684104][ T5324] page dumped because: kasan: bad access detected [ 68.688016][ T5324] page_owner tracks the page as allocated [ 68.692702][ T5324] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 5324, tgid 5323 (syz.0.0), ts 67896061820, free_ts 43013657982 [ 68.707926][ T5324] post_alloc_hook+0x1d8/0x230 [ 68.709941][ T5324] get_page_from_freelist+0x21ce/0x22b0 [ 68.721502][ T5324] __alloc_pages_slowpath+0x2fe/0xcc0 [ 68.729039][ T5324] __alloc_frozen_pages_noprof+0x319/0x370 [ 68.732332][ T5324] allocate_slab+0x65/0x3b0 [ 68.740056][ T5324] ___slab_alloc+0xbfc/0x1480 [ 68.746483][ T5324] __kmalloc_node_noprof+0x2fd/0x4e0 [ 68.749326][ T5324] alloc_slab_obj_exts+0x39/0xa0 [ 68.751334][ T5324] __memcg_slab_post_alloc_hook+0x332/0x820 [ 68.774800][ T5324] kmem_cache_alloc_noprof+0x2bf/0x3c0 [ 68.779641][ T5324] create_new_namespaces+0x34/0x700 [ 68.790384][ T5324] __se_sys_setns+0x2dc/0x1790 [ 68.793013][ T5324] do_syscall_64+0xf6/0x210 [ 68.795177][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.797684][ T5324] page last free pid 5072 tgid 5072 stack trace: [ 68.800434][ T5324] __free_frozen_pages+0xb0e/0xcd0 [ 68.804928][ T5324] __slab_free+0x326/0x400 [ 68.809903][ T5324] qlist_free_all+0x9a/0x140 [ 68.813377][ T5324] kasan_quarantine_reduce+0x148/0x160 [ 68.816814][ T5324] __kasan_slab_alloc+0x22/0x80 [ 68.819807][ T5324] kmem_cache_alloc_noprof+0x1c1/0x3c0 [ 68.826631][ T5324] ptlock_alloc+0x20/0x70 [ 68.829226][ T5324] pte_alloc_one+0x6d/0x160 [ 68.831645][ T5324] __handle_mm_fault+0x27e8/0x5380 [ 68.834459][ T5324] handle_mm_fault+0x3f6/0x8c0 [ 68.837630][ T5324] do_user_addr_fault+0xa81/0x1390 [ 68.841529][ T5324] exc_page_fault+0x68/0x110 [ 68.844705][ T5324] asm_exc_page_fault+0x26/0x30 [ 68.847697][ T5324] [ 68.849625][ T5324] Memory state around the buggy address: [ 68.855097][ T5324] ffff8880110d2300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 68.863061][ T5324] ffff8880110d2380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 68.867338][ T5324] >ffff8880110d2400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.871293][ T5324] ^ [ 68.873287][ T5324] ffff8880110d2480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.880946][ T5324] ffff8880110d2500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.887662][ T5324] ================================================================== [ 69.091411][ T5324] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 69.094664][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted 6.15.0-rc4-syzkaller-00011-gf15d97df5afa #0 PREEMPT(full) [ 69.099744][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.119855][ T5324] Call Trace: [ 69.121617][ T5324] [ 69.123136][ T5324] dump_stack_lvl+0x99/0x250 [ 69.126496][ T5324] ? __asan_memcpy+0x40/0x70 [ 69.128553][ T5324] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.130782][ T5324] ? __pfx__printk+0x10/0x10 [ 69.132802][ T5324] panic+0x2db/0x790 [ 69.134520][ T5324] ? __pfx_preempt_schedule+0x10/0x10 [ 69.137210][ T5324] ? __pfx_panic+0x10/0x10 [ 69.139297][ T5324] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 69.142646][ T5324] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 69.147221][ T5324] ? rose_link_device_down+0x7a/0xb0 [ 69.151972][ T5324] check_panic_on_warn+0x89/0xb0 [ 69.154693][ T5324] ? rose_link_device_down+0x7a/0xb0 [ 69.158206][ T5324] end_report+0x78/0x160 [ 69.160154][ T5324] kasan_report+0x129/0x150 [ 69.161833][ T5324] ? rose_link_device_down+0x7a/0xb0 [ 69.171546][ T5324] rose_link_device_down+0x7a/0xb0 [ 69.173702][ T5324] rose_device_event+0x5fb/0x6a0 [ 69.188411][ T5324] ? __pfx_rose_device_event+0x10/0x10 [ 69.190659][ T5324] ? __local_bh_enable_ip+0x12d/0x1c0 [ 69.192937][ T5324] ? lockdep_hardirqs_on+0x9c/0x150 [ 69.195314][ T5324] ? __local_bh_enable_ip+0x12d/0x1c0 [ 69.197591][ T5324] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 69.199803][ T5324] ? do_raw_spin_unlock+0x4d/0x240 [ 69.201705][ T5324] ? nr_device_event+0x137/0x150 [ 69.203597][ T5324] notifier_call_chain+0x1b3/0x3e0 [ 69.221798][ T5324] dev_close_many+0x29c/0x410 [ 69.223875][ T5324] ? __pfx_dev_close_many+0x10/0x10 [ 69.225946][ T5324] ? __try_to_del_timer_sync+0x34a/0x3a0 [ 69.228263][ T5324] ? bond_netdev_event+0x227/0xe80 [ 69.230195][ T5324] netif_close+0x158/0x210 [ 69.231944][ T5324] ? __pfx_netif_close+0x10/0x10 [ 69.237515][ T5324] ? tun_device_event+0x77/0x1020 [ 69.239612][ T5324] dev_close+0x10a/0x220 [ 69.245033][ T5324] bpq_device_event+0x2f4/0x600 [ 69.247092][ T5324] notifier_call_chain+0x1b3/0x3e0 [ 69.249261][ T5324] dev_close_many+0x29c/0x410 [ 69.251225][ T5324] ? __pfx_dev_close_many+0x10/0x10 [ 69.253460][ T5324] ? __lock_acquire+0xaac/0xd20 [ 69.260710][ T5324] netif_close+0x158/0x210 [ 69.262398][ T5324] ? __pfx_netif_close+0x10/0x10 [ 69.282910][ T5324] ? do_raw_spin_lock+0x121/0x290 [ 69.288502][ T5324] ? __local_bh_enable_ip+0x12d/0x1c0 [ 69.290739][ T5324] ? lockdep_hardirqs_on+0x9c/0x150 [ 69.292873][ T5324] dev_close+0x10a/0x220 [ 69.308451][ T5324] bond_setup_by_slave+0x5f/0x3f0 [ 69.310629][ T5324] bond_enslave+0x7b4/0x3a40 [ 69.312489][ T5324] ? kernel_text_address+0xa5/0xe0 [ 69.329394][ T5324] ? unwind_get_return_address+0x4d/0x90 [ 69.331803][ T5324] ? __pfx_bond_enslave+0x10/0x10 [ 69.343667][ T5324] ? apparmor_capable+0x137/0x1b0 [ 69.352193][ T5324] ? full_name_hash+0x92/0xe0 [ 69.368150][ T5324] ? netdev_name_node_lookup+0xdf/0x120 [ 69.371894][ T5324] bond_do_ioctl+0x635/0x9b0 [ 69.374129][ T5324] ? __pfx_bond_do_ioctl+0x10/0x10 [ 69.376575][ T5324] ? trace_contention_end+0x39/0x120 [ 69.379016][ T5324] ? __mutex_lock+0x330/0xe80 [ 69.381251][ T5324] ? __lock_acquire+0xaac/0xd20 [ 69.383501][ T5324] ? full_name_hash+0x92/0xe0 [ 69.401765][ T5324] ? netdev_name_node_lookup+0xdf/0x120 [ 69.404536][ T5324] dev_ifsioc+0x908/0xf00 [ 69.406585][ T5324] ? dev_load+0x21/0x1f0 [ 69.409337][ T5324] dev_ioctl+0x7b4/0x1150 [ 69.412528][ T5324] sock_do_ioctl+0x22c/0x300 [ 69.415590][ T5324] ? __pfx_sock_do_ioctl+0x10/0x10 [ 69.419520][ T5324] sock_ioctl+0x576/0x790 [ 69.424614][ T5324] ? __pfx_sock_ioctl+0x10/0x10 [ 69.431349][ T5324] ? __fget_files+0x3a0/0x420 [ 69.433723][ T5324] ? __fget_files+0x2a/0x420 [ 69.446288][ T5324] ? bpf_lsm_file_ioctl+0x9/0x20 [ 69.448877][ T5324] ? __pfx_sock_ioctl+0x10/0x10 [ 69.451158][ T5324] __se_sys_ioctl+0xf9/0x170 [ 69.454032][ T5324] do_syscall_64+0xf6/0x210 [ 69.465967][ T5324] ? clear_bhb_loop+0x45/0xa0 [ 69.468810][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.472480][ T5324] RIP: 0033:0x7fc598d8e969 [ 69.479453][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.500179][ T5324] RSP: 002b:00007fc599c5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 69.514478][ T5324] RAX: ffffffffffffffda RBX: 00007fc598fb5fa0 RCX: 00007fc598d8e969 [ 69.518393][ T5324] RDX: 0000200000000180 RSI: 0000000000008990 RDI: 0000000000000009 [ 69.522130][ T5324] RBP: 00007fc598e10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 69.536148][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.540982][ T5324] R13: 0000000000000000 R14: 00007fc598fb5fa0 R15: 00007ffe180539a8 [ 69.545112][ T5324] [ 69.546897][ T5324] Kernel Offset: disabled [ 69.555006][ T5324] Rebooting in 86400 seconds..