program: r0 = syz_open_dev$usbfs(&(0x7f00000001c0), 0xad1d, 0x101301) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r0, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000140)={0x8d, 0x2, 0x1}) ioctl$vim2m_VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f0000000180)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0xfffff6be, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "00c37500"}, 0x0, 0x1, {0x0}}) (async) ioctl$vim2m_VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f0000000180)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0xfffff6be, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "00c37500"}, 0x0, 0x1, {0x0}}) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1817c1, 0x0) r3 = socket$nl_rdma(0x10, 0x3, 0x14) socket$nl_generic(0x10, 0x3, 0x10) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) socket$inet6_udplite(0xa, 0x2, 0x88) (async) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r5, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9a3}], @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0xb}]]}, 0x2c}}, 0x0) (async) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r5, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x9a3}], @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0xb}]]}, 0x2c}}, 0x0) r8 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="b80000001900674c0000000000000000fcf908fd334395b0376a5ac3774be9020000000000000000000000000700ac1e00010000000000000000000000000002000000028f470200200000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="070000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001fd579440000000000000000000000000000000000000000000100000000000000000000000000000101020000000000"], 0xb8}}, 0x0) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYBLOB="38000000031401002dad7000fedbdf250900020073797a3100000000080041007279650014003300626f6e6430"], 0x38}, 0x1, 0x0, 0x0, 0x40800}, 0x40) r9 = inotify_init() inotify_add_watch(r9, &(0x7f0000000000)='./file0\x00', 0xa000032a) (async) inotify_add_watch(r9, &(0x7f0000000000)='./file0\x00', 0xa000032a) syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file3\x00', 0xa08802, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRESDEC], 0x1, 0x693, &(0x7f0000000ec0)="$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") setxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f0000000240), &(0x7f0000001400)=ANY=[], 0x841, 0x0) (async) setxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f0000000240), &(0x7f0000001400)=ANY=[], 0x841, 0x0) lremovexattr(&(0x7f0000000240)='./file1\x00', &(0x7f00000000c0)=@known='trusted.overlay.upper\x00') writev(r2, &(0x7f00000000c0)=[{&(0x7f00000003c0)="2ac2", 0x2}], 0x1) (async) writev(r2, &(0x7f00000000c0)=[{&(0x7f00000003c0)="2ac2", 0x2}], 0x1) write$P9_RSYMLINK(r2, &(0x7f0000000080)={0x14, 0x11, 0x2, {0x2, 0x4, 0x3}}, 0x14) (async) write$P9_RSYMLINK(r2, &(0x7f0000000080)={0x14, 0x11, 0x2, {0x2, 0x4, 0x3}}, 0x14) socket$netlink(0x10, 0x3, 0x0) (async) socket$netlink(0x10, 0x3, 0x0) r10 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r10, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) connect$inet(r10, &(0x7f0000000340)={0x2, 0x4e24, @loopback}, 0x10) sendmmsg(r10, &(0x7f0000004380)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000740)="f5", 0x1}], 0x1}}], 0x1, 0x44810) (async) sendmmsg(r10, &(0x7f0000004380)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000740)="f5", 0x1}], 0x1}}], 0x1, 0x44810) recvmmsg(r10, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001a00)=""/4099, 0x1003}], 0x1}}], 0x1, 0x10122, 0x0) [ 73.890745][ T4685] Bluetooth: hci0: command tx timeout [ 74.056832][ T5336] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 74.104698][ T5336] loop0: detected capacity change from 0 to 1024 [ 74.154556][ T5336] hfsplus: request for non-existent node 211 in B*Tree [ 74.157860][ T5336] hfsplus: request for non-existent node 211 in B*Tree [ 74.172963][ T5335] ================================================================== [ 74.176533][ T5335] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0xc0/0x2a0 [ 74.180023][ T5335] Read of size 8 at addr ffff888032c07ec8 by task syz.0.0/5335 [ 74.183288][ T5335] [ 74.184370][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted 6.16.0-rc6-syzkaller-00281-gf4a40a4282f4 #0 PREEMPT(full) [ 74.184385][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.184392][ T5335] Call Trace: [ 74.184400][ T5335] [ 74.184405][ T5335] dump_stack_lvl+0x189/0x250 [ 74.184423][ T5335] ? __virt_addr_valid+0x1c8/0x5c0 [ 74.184436][ T5335] ? rcu_is_watching+0x15/0xb0 [ 74.184450][ T5335] ? __kasan_check_byte+0x12/0x40 [ 74.184462][ T5335] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.184473][ T5335] ? rcu_is_watching+0x15/0xb0 [ 74.184485][ T5335] ? lock_release+0x4b/0x3e0 [ 74.184497][ T5335] ? __virt_addr_valid+0x1c8/0x5c0 [ 74.184508][ T5335] ? __virt_addr_valid+0x4a5/0x5c0 [ 74.184523][ T5335] print_report+0xca/0x230 [ 74.184532][ T5335] ? hfsplus_bnode_read+0xc0/0x2a0 [ 74.184541][ T5335] kasan_report+0x118/0x150 [ 74.184555][ T5335] ? hfsplus_bnode_read+0xc0/0x2a0 [ 74.184567][ T5335] hfsplus_bnode_read+0xc0/0x2a0 [ 74.184577][ T5335] hfsplus_bnode_dump+0x300/0x450 [ 74.184591][ T5335] ? __pfx_hfsplus_bnode_dump+0x10/0x10 [ 74.184601][ T5335] ? hfsplus_bnode_write_u16+0x8b/0xd0 [ 74.184611][ T5335] ? hfsplus_bnode_move+0x393/0xb90 [ 74.184624][ T5335] ? __pfx___hfsplus_brec_find+0x10/0x10 [ 74.184636][ T5335] hfsplus_brec_remove+0x480/0x550 [ 74.184650][ T5335] __hfsplus_delete_attr+0x1d4/0x360 [ 74.184665][ T5335] ? __pfx___hfsplus_delete_attr+0x10/0x10 [ 74.184678][ T5335] ? hfsplus_attr_build_key+0xee/0x260 [ 74.184692][ T5335] hfsplus_delete_attr+0x231/0x2d0 [ 74.184705][ T5335] ? __pfx_hfsplus_delete_attr+0x10/0x10 [ 74.184718][ T5335] ? hfsplus_find_init+0x8c/0x1d0 [ 74.184731][ T5335] ? hfsplus_find_init+0x15a/0x1d0 [ 74.184742][ T5335] __hfsplus_setxattr+0x71c/0x1f40 [ 74.184755][ T5335] ? do_raw_spin_lock+0x121/0x290 [ 74.184772][ T5335] ? _raw_spin_unlock_irqrestore+0x85/0x110 [ 74.184828][ T5335] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.184838][ T5335] ? __pfx___hfsplus_setxattr+0x10/0x10 [ 74.184849][ T5335] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 74.184880][ T5335] ? __kasan_kmalloc+0x93/0xb0 [ 74.184894][ T5335] ? hfsplus_setxattr+0x102/0x180 [ 74.184907][ T5335] hfsplus_setxattr+0x11e/0x180 [ 74.184921][ T5335] hfsplus_trusted_setxattr+0x40/0x60 [ 74.184940][ T5335] ? __pfx_hfsplus_trusted_setxattr+0x10/0x10 [ 74.184955][ T5335] __vfs_removexattr+0x42e/0x470 [ 74.184971][ T5335] __vfs_removexattr_locked+0x1ed/0x230 [ 74.184984][ T5335] vfs_removexattr+0x80/0x1b0 [ 74.184999][ T5335] path_removexattrat+0x35d/0x690 [ 74.185010][ T5335] ? __pfx_path_removexattrat+0x10/0x10 [ 74.185027][ T5335] ? rcu_is_watching+0x15/0xb0 [ 74.185040][ T5335] __x64_sys_lremovexattr+0x65/0x80 [ 74.185054][ T5335] do_syscall_64+0xfa/0x3b0 [ 74.185067][ T5335] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.185075][ T5335] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.185085][ T5335] ? clear_bhb_loop+0x60/0xb0 [ 74.185097][ T5335] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.185108][ T5335] RIP: 0033:0x7fb9ed58e9a9 [ 74.185118][ T5335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 74.185127][ T5335] RSP: 002b:00007fb9ee4cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c6 [ 74.185140][ T5335] RAX: ffffffffffffffda RBX: 00007fb9ed7b5fa0 RCX: 00007fb9ed58e9a9 [ 74.185147][ T5335] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000200000000240 [ 74.185154][ T5335] RBP: 00007fb9ed610d69 R08: 0000000000000000 R09: 0000000000000000 [ 74.185160][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.185166][ T5335] R13: 0000000000000000 R14: 00007fb9ed7b5fa0 R15: 00007ffed1e9acd8 [ 74.185177][ T5335] [ 74.185181][ T5335] [ 74.342387][ T5335] Allocated by task 5335: [ 74.344244][ T5335] kasan_save_track+0x3e/0x80 [ 74.346347][ T5335] __kasan_kmalloc+0x93/0xb0 [ 74.348311][ T5335] __kmalloc_noprof+0x27a/0x4f0 [ 74.350582][ T5335] __hfs_bnode_create+0xf3/0x810 [ 74.352877][ T5335] hfsplus_bnode_find+0x224/0xd20 [ 74.355242][ T5335] hfsplus_brec_find+0x15c/0x500 [ 74.357205][ T5335] hfsplus_attr_exists+0x163/0x1d0 [ 74.359280][ T5335] __hfsplus_setxattr+0x33e/0x1f40 [ 74.361498][ T5335] hfsplus_setxattr+0x11e/0x180 [ 74.363583][ T5335] hfsplus_trusted_setxattr+0x40/0x60 [ 74.366005][ T5335] __vfs_setxattr+0x43c/0x480 [ 74.368098][ T5335] __vfs_setxattr_noperm+0x12d/0x660 [ 74.370484][ T5335] vfs_setxattr+0x16b/0x2f0 [ 74.372456][ T5335] filename_setxattr+0x274/0x600 [ 74.374569][ T5335] path_setxattrat+0x364/0x3a0 [ 74.376635][ T5335] __x64_sys_setxattr+0xbc/0xe0 [ 74.378727][ T5335] do_syscall_64+0xfa/0x3b0 [ 74.380696][ T5335] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.383211][ T5335] [ 74.384269][ T5335] The buggy address belongs to the object at ffff888032c07e00 [ 74.384269][ T5335] which belongs to the cache kmalloc-192 of size 192 [ 74.390249][ T5335] The buggy address is located 48 bytes to the right of [ 74.390249][ T5335] allocated 152-byte region [ffff888032c07e00, ffff888032c07e98) [ 74.396157][ T5335] [ 74.397298][ T5335] The buggy address belongs to the physical page: [ 74.400075][ T5335] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x32c07 [ 74.403651][ T5335] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 74.406485][ T5335] page_type: f5(slab) [ 74.408240][ T5335] raw: 04fff00000000000 ffff88801a4413c0 ffffea0000d97580 dead000000000003 [ 74.411968][ T5335] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 74.415833][ T5335] page dumped because: kasan: bad access detected [ 74.418883][ T5335] page_owner tracks the page as allocated [ 74.421338][ T5335] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 10158708269, free_ts 0 [ 74.428957][ T5335] post_alloc_hook+0x240/0x2a0 [ 74.431486][ T5335] get_page_from_freelist+0x21e4/0x22c0 [ 74.434254][ T5335] __alloc_frozen_pages_noprof+0x181/0x370 [ 74.436961][ T5335] alloc_pages_mpol+0x232/0x4a0 [ 74.439008][ T5335] allocate_slab+0x8a/0x3b0 [ 74.441177][ T5335] ___slab_alloc+0xbfc/0x1480 [ 74.443179][ T5335] __kmalloc_cache_noprof+0x296/0x3d0 [ 74.445437][ T5335] call_usermodehelper_setup+0x8e/0x270 [ 74.447943][ T5335] kobject_uevent_env+0x65c/0x8c0 [ 74.450317][ T5335] tty_register_device_attr+0x541/0x8f0 [ 74.452798][ T5335] tty_register_driver+0x5a8/0xb20 [ 74.455044][ T5335] legacy_pty_init+0x3b6/0x620 [ 74.457312][ T5335] pty_init+0xe/0x20 [ 74.458799][ T5335] do_one_initcall+0x233/0x820 [ 74.460789][ T5335] do_initcall_level+0x137/0x1f0 [ 74.462931][ T5335] do_initcalls+0x69/0xd0 [ 74.464614][ T5335] page_owner free stack trace missing [ 74.467073][ T5335] [ 74.468224][ T5335] Memory state around the buggy address: [ 74.470842][ T5335] ffff888032c07d80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc [ 74.474286][ T5335] ffff888032c07e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 74.477593][ T5335] >ffff888032c07e80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc [ 74.481025][ T5335] ^ [ 74.483623][ T5335] ffff888032c07f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 74.487093][ T5335] ffff888032c07f80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 74.490417][ T5335] ================================================================== [ 74.534659][ T5335] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 74.537281][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted 6.16.0-rc6-syzkaller-00281-gf4a40a4282f4 #0 PREEMPT(full) [ 74.541855][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.546408][ T5335] Call Trace: [ 74.547945][ T5335] [ 74.549333][ T5335] dump_stack_lvl+0x99/0x250 [ 74.551514][ T5335] ? __asan_memcpy+0x40/0x70 [ 74.553687][ T5335] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.555918][ T5335] ? __pfx__printk+0x10/0x10 [ 74.558000][ T5335] panic+0x2db/0x790 [ 74.559700][ T5335] ? __pfx_preempt_schedule+0x10/0x10 [ 74.562010][ T5335] ? __pfx_panic+0x10/0x10 [ 74.563901][ T5335] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 74.566522][ T5335] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 74.569260][ T5335] ? hfsplus_bnode_read+0xc0/0x2a0 [ 74.571556][ T5335] check_panic_on_warn+0x89/0xb0 [ 74.573850][ T5335] ? hfsplus_bnode_read+0xc0/0x2a0 [ 74.576750][ T5335] end_report+0x78/0x160 [ 74.578736][ T5335] kasan_report+0x129/0x150 [ 74.580655][ T5335] ? hfsplus_bnode_read+0xc0/0x2a0 [ 74.582542][ T5335] hfsplus_bnode_read+0xc0/0x2a0 [ 74.584215][ T5335] hfsplus_bnode_dump+0x300/0x450 [ 74.585984][ T5335] ? __pfx_hfsplus_bnode_dump+0x10/0x10 [ 74.587919][ T5335] ? hfsplus_bnode_write_u16+0x8b/0xd0 [ 74.590058][ T5335] ? hfsplus_bnode_move+0x393/0xb90 [ 74.592384][ T5335] ? __pfx___hfsplus_brec_find+0x10/0x10 [ 74.594737][ T5335] hfsplus_brec_remove+0x480/0x550 [ 74.596805][ T5335] __hfsplus_delete_attr+0x1d4/0x360 [ 74.599082][ T5335] ? __pfx___hfsplus_delete_attr+0x10/0x10 [ 74.601645][ T5335] ? hfsplus_attr_build_key+0xee/0x260 [ 74.604111][ T5335] hfsplus_delete_attr+0x231/0x2d0 [ 74.606461][ T5335] ? __pfx_hfsplus_delete_attr+0x10/0x10 [ 74.608981][ T5335] ? hfsplus_find_init+0x8c/0x1d0 [ 74.611075][ T5335] ? hfsplus_find_init+0x15a/0x1d0 [ 74.613576][ T5335] __hfsplus_setxattr+0x71c/0x1f40 [ 74.617134][ T5335] ? do_raw_spin_lock+0x121/0x290 [ 74.619735][ T5335] ? _raw_spin_unlock_irqrestore+0x85/0x110 [ 74.622252][ T5335] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.624422][ T5335] ? __pfx___hfsplus_setxattr+0x10/0x10 [ 74.626679][ T5335] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 74.629193][ T5335] ? __kasan_kmalloc+0x93/0xb0 [ 74.631201][ T5335] ? hfsplus_setxattr+0x102/0x180 [ 74.633271][ T5335] hfsplus_setxattr+0x11e/0x180 [ 74.635124][ T5335] hfsplus_trusted_setxattr+0x40/0x60 [ 74.637417][ T5335] ? __pfx_hfsplus_trusted_setxattr+0x10/0x10 [ 74.639837][ T5335] __vfs_removexattr+0x42e/0x470 [ 74.641909][ T5335] __vfs_removexattr_locked+0x1ed/0x230 [ 74.644449][ T5335] vfs_removexattr+0x80/0x1b0 [ 74.646498][ T5335] path_removexattrat+0x35d/0x690 [ 74.648824][ T5335] ? __pfx_path_removexattrat+0x10/0x10 [ 74.651497][ T5335] ? rcu_is_watching+0x15/0xb0 [ 74.654177][ T5335] __x64_sys_lremovexattr+0x65/0x80 [ 74.657038][ T5335] do_syscall_64+0xfa/0x3b0 [ 74.659339][ T5335] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.661653][ T5335] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.664389][ T5335] ? clear_bhb_loop+0x60/0xb0 [ 74.666501][ T5335] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.669108][ T5335] RIP: 0033:0x7fb9ed58e9a9 [ 74.671126][ T5335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 74.679082][ T5335] RSP: 002b:00007fb9ee4cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c6 [ 74.682222][ T5335] RAX: ffffffffffffffda RBX: 00007fb9ed7b5fa0 RCX: 00007fb9ed58e9a9 [ 74.685213][ T5335] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000200000000240 [ 74.688474][ T5335] RBP: 00007fb9ed610d69 R08: 0000000000000000 R09: 0000000000000000 [ 74.691830][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.695243][ T5335] R13: 0000000000000000 R14: 00007fb9ed7b5fa0 R15: 00007ffed1e9acd8 [ 74.698425][ T5335] [ 74.700090][ T5335] Kernel Offset: disabled [ 74.701856][ T5335] Rebooting in 86400 seconds..