./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3553189512
<...>
Warning: Permanently added '10.128.1.8' (ECDSA) to the list of known hosts.
execve("./syz-executor3553189512", ["./syz-executor3553189512"], 0x7ffc5b3dfa40 /* 10 vars */) = 0
brk(NULL) = 0x5555560fe000
brk(0x5555560fec40) = 0x5555560fec40
arch_prctl(ARCH_SET_FS, 0x5555560fe300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3553189512", 4096) = 28
brk(0x55555611fc40) = 0x55555611fc40
brk(0x555556120000) = 0x555556120000
mprotect(0x7fd4d18f7000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
getpid() = 5063
mkdir("./syzkaller.dEAB43", 0700) = 0
chmod("./syzkaller.dEAB43", 0777) = 0
chdir("./syzkaller.dEAB43") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555560fe5d0) = 5064
./strace-static-x86_64: Process 5064 attached
[pid 5064] chdir("./0") = 0
[pid 5064] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5064] setpgid(0, 0) = 0
[pid 5064] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5064] write(3, "1000", 4) = 4
[pid 5064] close(3) = 0
[pid 5064] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5064] creat("./file0", 000) = 3
[pid 5064] memfd_create("syzkaller", 0) = 4
[pid 5064] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd4c9431000
[pid 5064] write(4, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536) = 65536
[pid 5064] munmap(0x7fd4c9431000, 65536) = 0
[pid 5064] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid 5064] ioctl(5, LOOP_SET_FD, 4) = 0
[pid 5064] close(4) = 0
[pid 5064] mkdir("./file0", 0777) = -1 EEXIST (File exists)
[pid 5064] mount("/dev/loop0", "./file0", "sysv", 0, "\xe1\x31\x6e\x60\x0b\xf9\x13\x28\x1c\x06\x2c\x56\x9a\xab\xc3\xf8\xbc\x6b\xca\x58\xc9\xeb\x3e\x6c\xa7\x57\x16\x2e\x60\x73\x80\x94\xf9\xbe\x93\x11\x9a\x69\x6f\xa8\xbd\x33\x84\x29\x6f\xf5\xc1\x94\x78\x24\x0d\xed\xce\x22\xff\x4a\xb9\x6e\x91\x80\x7d\x66\xda\xb3\xd6\x17\xfc\x11\x3b\xe6\x8f\xd1\x06\xfe\x18\x4b\x33\x12\x10\x61\x01\x08\x2b\x2a\x86\x19\xe8\xeb\xb1\x1e\x53\x9a\xe8\x90\x13\x36\xbd\xf9\x19\x21"...) = 0
[pid 5064] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = -1 ENOTDIR (Not a directory)
[pid 5064] ioctl(5, LOOP_CLR_FD) = 0
[pid 5064] close(5) = 0
syzkaller login: [ 54.105201][ T5064] loop0: detected capacity change from 0 to 128
[ 54.115858][ T5064] VFS: Found a Xenix FS (block size = 1024) on device loop0
[ 54.129831][ T5064] sysv_free_block: flc_count > flc_size
[ 54.136681][ T5064] sysv_free_block: flc_count > flc_size
[ 54.143080][ T5064] sysv_free_block: flc_count > flc_size
[ 54.148932][ T5064] sysv_free_block: flc_count > flc_size
[pid 5064] creat("./file0", 000) = 4
[pid 5064] write(4, "\x00\x00\x00\x00\x18\x00\x00\xfa\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4294966853) = -1 ENOSPC (No space left on device)
[pid 5064] exit_group(0) = ?
[pid 5064] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5064, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555560ff620 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./0/binderfs") = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/file0", {st_mode=S_IFREG|000, st_size=0, ...}) = 0
unlink("./0/file0") = 0
getdents64(3, 0x5555560ff620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[ 54.154495][ T5064] sysv_free_block: flc_count > flc_size
[ 54.160153][ T5064] sysv_free_block: flc_count > flc_size
[ 54.165746][ T5064] sysv_free_block: flc_count > flc_size
[ 54.171487][ T5064] sysv_free_block: flc_count > flc_size
[ 54.177049][ T5064] sysv_free_block: flc_count > flc_size
[ 54.182954][ T5064] sysv_free_block: flc_count > flc_size
[ 54.190429][ T5064] sysv_new_block: new block -561436636 is not in data zone
[ 54.197974][ T5064] sysv_free_block: flc_count > flc_size
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555560fe5d0) = 5066
./strace-static-x86_64: Process 5066 attached
[pid 5066] chdir("./1") = 0
[pid 5066] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5066] setpgid(0, 0) = 0
[pid 5066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5066] write(3, "1000", 4) = 4
[pid 5066] close(3) = 0
[pid 5066] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5066] creat("./file0", 000) = 3
[pid 5066] memfd_create("syzkaller", 0) = 4
[pid 5066] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd4c9431000
[pid 5066] write(4, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536) = 65536
[pid 5066] munmap(0x7fd4c9431000, 65536) = 0
[pid 5066] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid 5066] ioctl(5, LOOP_SET_FD, 4) = 0
[pid 5066] close(4) = 0
[pid 5066] mkdir("./file0", 0777) = -1 EEXIST (File exists)
[pid 5066] mount("/dev/loop0", "./file0", "sysv", 0, "\xe1\x31\x6e\x60\x0b\xf9\x13\x28\x1c\x06\x2c\x56\x9a\xab\xc3\xf8\xbc\x6b\xca\x58\xc9\xeb\x3e\x6c\xa7\x57\x16\x2e\x60\x73\x80\x94\xf9\xbe\x93\x11\x9a\x69\x6f\xa8\xbd\x33\x84\x29\x6f\xf5\xc1\x94\x78\x24\x0d\xed\xce\x22\xff\x4a\xb9\x6e\x91\x80\x7d\x66\xda\xb3\xd6\x17\xfc\x11\x3b\xe6\x8f\xd1\x06\xfe\x18\x4b\x33\x12\x10\x61\x01\x08\x2b\x2a\x86\x19\xe8\xeb\xb1\x1e\x53\x9a\xe8\x90\x13\x36\xbd\xf9\x19\x21"...) = 0
[pid 5066] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = -1 ENOTDIR (Not a directory)
[pid 5066] ioctl(5, LOOP_CLR_FD) = 0
[pid 5066] close(5) = 0
[ 54.244862][ T5066] loop0: detected capacity change from 0 to 128
[ 54.253686][ T5066] VFS: Found a Xenix FS (block size = 1024) on device loop0
[ 54.265820][ T5066] sysv_free_block: flc_count > flc_size
[ 54.271982][ T5066] sysv_free_block: flc_count > flc_size
[ 54.278066][ T5066] sysv_free_block: flc_count > flc_size
[ 54.283643][ T5066] sysv_free_block: flc_count > flc_size
[ 54.289590][ T5066] sysv_free_block: flc_count > flc_size
[pid 5066] creat("./file0", 000) = 4
[ 54.295138][ T5066] sysv_free_block: flc_count > flc_size
[ 54.300783][ T5066] sysv_free_block: flc_count > flc_size
[ 54.306329][ T5066] sysv_free_block: flc_count > flc_size
[ 54.311919][ T5066] sysv_free_block: flc_count > flc_size
[ 54.317540][ T5066] sysv_free_block: flc_count > flc_size
[ 54.324014][ T5066] ==================================================================
[ 54.332077][ T5066] BUG: KASAN: use-after-free in sysv_new_block+0x819/0x990
[ 54.339276][ T5066] Read of size 4 at addr ffff88807279b0c8 by task syz-executor355/5066
[ 54.347491][ T5066]
[ 54.349795][ T5066] CPU: 0 PID: 5066 Comm: syz-executor355 Not tainted 6.1.0-syzkaller-13139-gf9ff5644bcc0 #0
[ 54.359836][ T5066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 54.369875][ T5066] Call Trace:
[ 54.373132][ T5066]
[ 54.376043][ T5066] dump_stack_lvl+0xd1/0x138
[ 54.380624][ T5066] print_report+0x15e/0x45d
[ 54.385109][ T5066] ? __phys_addr+0xc8/0x140
[ 54.389597][ T5066] ? sysv_new_block+0x819/0x990
[ 54.394429][ T5066] kasan_report+0xbf/0x1f0
[ 54.398834][ T5066] ? sysv_new_block+0x819/0x990
[ 54.403706][ T5066] sysv_new_block+0x819/0x990
[ 54.408376][ T5066] ? mark_lock.part.0+0xe21/0x1910
[ 54.413475][ T5066] get_block+0x26b/0x1580
[ 54.417805][ T5066] ? free_branches+0x3d0/0x3d0
[ 54.422564][ T5066] ? create_page_buffers+0x440/0x640
[ 54.427845][ T5066] ? lock_downgrade+0x6e0/0x6e0
[ 54.432681][ T5066] ? folio_flags.constprop.0+0x53/0x150
[ 54.438224][ T5066] ? create_empty_buffers+0x37d/0xf30
[ 54.443589][ T5066] ? do_raw_spin_unlock+0x175/0x230
[ 54.448777][ T5066] __block_write_begin_int+0x3bd/0x14b0
[ 54.454313][ T5066] ? free_branches+0x3d0/0x3d0
[ 54.459071][ T5066] ? invalidate_bh_lrus_cpu+0x140/0x140
[ 54.464609][ T5066] ? PageHeadHuge+0x1a2/0x200
[ 54.469277][ T5066] ? free_branches+0x3d0/0x3d0
[ 54.474033][ T5066] block_write_begin+0xb9/0x4d0
[ 54.478872][ T5066] sysv_write_begin+0x31/0xd0
[ 54.483543][ T5066] generic_perform_write+0x256/0x570
[ 54.488821][ T5066] ? folio_add_wait_queue+0x1c0/0x1c0
[ 54.494182][ T5066] ? new_inode+0x280/0x280
[ 54.498594][ T5066] ? generic_write_checks+0x2c0/0x400
[ 54.503960][ T5066] __generic_file_write_iter+0x2ae/0x500
[ 54.509586][ T5066] generic_file_write_iter+0xe3/0x350
[ 54.514953][ T5066] vfs_write+0x9ed/0xdd0
[ 54.519189][ T5066] ? kernel_write+0x630/0x630
[ 54.523856][ T5066] ? find_held_lock+0x2d/0x110
[ 54.528633][ T5066] ? lock_downgrade+0x6e0/0x6e0
[ 54.533470][ T5066] ? __fget_light+0x20a/0x270
[ 54.538138][ T5066] ksys_write+0x12b/0x250
[ 54.542458][ T5066] ? __ia32_sys_read+0xb0/0xb0
[ 54.547210][ T5066] ? lockdep_hardirqs_on+0x7d/0x100
[ 54.552405][ T5066] ? _raw_spin_unlock_irq+0x2e/0x50
[ 54.557595][ T5066] ? ptrace_notify+0xfe/0x140
[ 54.562265][ T5066] do_syscall_64+0x39/0xb0
[ 54.566677][ T5066] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 54.572578][ T5066] RIP: 0033:0x7fd4d187e9a9
[ 54.576977][ T5066] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 54.596572][ T5066] RSP: 002b:00007ffcbc19ce68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 54.604973][ T5066] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007fd4d187e9a9
[ 54.612949][ T5066] RDX: 00000000fffffe45 RSI: 00000000200000c0 RDI: 0000000000000004
[ 54.620909][ T5066] RBP: 0000000000000000 R08: 00007ffcbc19ce90 R09: 00007ffcbc19ce90
[ 54.628867][ T5066] R10: 00007ffcbc19cd30 R11: 0000000000000246 R12: 00007ffcbc19ce8c
[ 54.636843][ T5066] R13: 00007ffcbc19cec0 R14: 00007ffcbc19cea0 R15: 0000000000000001
[ 54.644808][ T5066]
[ 54.647812][ T5066]
[ 54.650116][ T5066] The buggy address belongs to the physical page:
[ 54.656506][ T5066] page:ffffea0001c9e6c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x7279b
[ 54.666815][ T5066] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 54.673916][ T5066] raw: 00fff00000000000 ffffea0001c9e708 ffffea0001c9e688 0000000000000000
[ 54.682486][ T5066] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 54.691050][ T5066] page dumped because: kasan: bad access detected
[ 54.697443][ T5066] page_owner tracks the page as freed
[ 54.702790][ T5066] page last allocated via order 0, migratetype Movable, gfp_mask 0x8(__GFP_MOVABLE), pid 1, tgid 1 (swapper/0), ts 11125023808, free_ts 11891297509
[ 54.717729][ T5066] split_map_pages+0x1ef/0x520
[ 54.722498][ T5066] isolate_freepages_range+0x313/0x350
[ 54.727951][ T5066] alloc_contig_range+0x2fa/0x4a0
[ 54.732968][ T5066] alloc_contig_pages+0x35e/0x4c0
[ 54.737984][ T5066] debug_vm_pgtable+0x899/0x296f
[ 54.742911][ T5066] do_one_initcall+0x141/0x790
[ 54.747669][ T5066] kernel_init_freeable+0x6f9/0x782
[ 54.752853][ T5066] kernel_init+0x1e/0x1d0
[ 54.757176][ T5066] ret_from_fork+0x1f/0x30
[ 54.761584][ T5066] page last free stack trace:
[ 54.766236][ T5066] free_pcp_prepare+0x65c/0xc00
[ 54.771077][ T5066] free_unref_page+0x1d/0x490
[ 54.775742][ T5066] free_contig_range+0xb5/0x180
[ 54.780583][ T5066] destroy_args+0xa8/0x64c
[ 54.784990][ T5066] debug_vm_pgtable+0x28de/0x296f
[ 54.790012][ T5066] do_one_initcall+0x141/0x790
[ 54.794771][ T5066] kernel_init_freeable+0x6f9/0x782
[ 54.799960][ T5066] kernel_init+0x1e/0x1d0
[ 54.804279][ T5066] ret_from_fork+0x1f/0x30
[ 54.808692][ T5066]
[ 54.811001][ T5066] Memory state around the buggy address:
[ 54.816612][ T5066] ffff88807279af80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 54.824661][ T5066] ffff88807279b000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 54.832711][ T5066] >ffff88807279b080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 54.840783][ T5066] ^
[ 54.847217][ T5066] ffff88807279b100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 54.855277][ T5066] ffff88807279b180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 54.863338][ T5066] ==================================================================
[ 54.872063][ T5066] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 54.879300][ T5066] CPU: 1 PID: 5066 Comm: syz-executor355 Not tainted 6.1.0-syzkaller-13139-gf9ff5644bcc0 #0
[ 54.889397][ T5066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 54.899486][ T5066] Call Trace:
[ 54.902786][ T5066]
[ 54.905714][ T5066] dump_stack_lvl+0xd1/0x138
[ 54.910310][ T5066] panic+0x2cc/0x626
[ 54.914210][ T5066] ? panic_print_sys_info.part.0+0x110/0x110
[ 54.920201][ T5066] ? preempt_schedule_thunk+0x1a/0x20
[ 54.925587][ T5066] ? preempt_schedule_common+0x59/0xc0
[ 54.931141][ T5066] check_panic_on_warn.cold+0x19/0x35
[ 54.936521][ T5066] end_report.part.0+0x36/0x73
[ 54.941294][ T5066] ? sysv_new_block+0x819/0x990
[ 54.946153][ T5066] kasan_report.cold+0xa/0xf
[ 54.950752][ T5066] ? sysv_new_block+0x819/0x990
[ 54.955627][ T5066] sysv_new_block+0x819/0x990
[ 54.960347][ T5066] ? mark_lock.part.0+0xe21/0x1910
[ 54.965477][ T5066] get_block+0x26b/0x1580
[ 54.969866][ T5066] ? free_branches+0x3d0/0x3d0
[ 54.974664][ T5066] ? create_page_buffers+0x440/0x640
[ 54.979959][ T5066] ? lock_downgrade+0x6e0/0x6e0
[ 54.984813][ T5066] ? folio_flags.constprop.0+0x53/0x150
[ 54.990456][ T5066] ? create_empty_buffers+0x37d/0xf30
[ 54.995832][ T5066] ? do_raw_spin_unlock+0x175/0x230
[ 55.001029][ T5066] __block_write_begin_int+0x3bd/0x14b0
[ 55.006576][ T5066] ? free_branches+0x3d0/0x3d0
[ 55.011348][ T5066] ? invalidate_bh_lrus_cpu+0x140/0x140
[ 55.016901][ T5066] ? PageHeadHuge+0x1a2/0x200
[ 55.021590][ T5066] ? free_branches+0x3d0/0x3d0
[ 55.026481][ T5066] block_write_begin+0xb9/0x4d0
[ 55.031351][ T5066] sysv_write_begin+0x31/0xd0
[ 55.036056][ T5066] generic_perform_write+0x256/0x570
[ 55.041350][ T5066] ? folio_add_wait_queue+0x1c0/0x1c0
[ 55.046733][ T5066] ? new_inode+0x280/0x280
[ 55.051229][ T5066] ? generic_write_checks+0x2c0/0x400
[ 55.056634][ T5066] __generic_file_write_iter+0x2ae/0x500
[ 55.062295][ T5066] generic_file_write_iter+0xe3/0x350
[ 55.067761][ T5066] vfs_write+0x9ed/0xdd0
[ 55.072007][ T5066] ? kernel_write+0x630/0x630
[ 55.076681][ T5066] ? find_held_lock+0x2d/0x110
[ 55.081475][ T5066] ? lock_downgrade+0x6e0/0x6e0
[ 55.086353][ T5066] ? __fget_light+0x20a/0x270
[ 55.091038][ T5066] ksys_write+0x12b/0x250
[ 55.095398][ T5066] ? __ia32_sys_read+0xb0/0xb0
[ 55.100188][ T5066] ? lockdep_hardirqs_on+0x7d/0x100
[ 55.105386][ T5066] ? _raw_spin_unlock_irq+0x2e/0x50
[ 55.110597][ T5066] ? ptrace_notify+0xfe/0x140
[ 55.115297][ T5066] do_syscall_64+0x39/0xb0
[ 55.119746][ T5066] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 55.125638][ T5066] RIP: 0033:0x7fd4d187e9a9
[ 55.130060][ T5066] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 55.149704][ T5066] RSP: 002b:00007ffcbc19ce68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 55.158191][ T5066] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007fd4d187e9a9
[ 55.166180][ T5066] RDX: 00000000fffffe45 RSI: 00000000200000c0 RDI: 0000000000000004
[ 55.174183][ T5066] RBP: 0000000000000000 R08: 00007ffcbc19ce90 R09: 00007ffcbc19ce90
[ 55.182153][ T5066] R10: 00007ffcbc19cd30 R11: 0000000000000246 R12: 00007ffcbc19ce8c
[ 55.190127][ T5066] R13: 00007ffcbc19cec0 R14: 00007ffcbc19cea0 R15: 0000000000000001
[ 55.198112][ T5066]
[ 55.201896][ T5066] Kernel Offset: disabled
[ 55.206219][ T5066] Rebooting in 86400 seconds..