program:
r0 = syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f00000002c0)='./file1\x00', 0x8c0, &(0x7f0000000340)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119, @ANYBLOB="2d81167ce471c0ae99b4f078ccbec85d44f5f66d8256815bc9a0e02b4b1d31ee59ea9d8cdbbaf25b00ff37cd9445027bc0a305f4d989c5758e0b8ee488f581da6ba9b38fa615955cb56b9d4eb6954e931ad460a2afe3c17aa3eb8737be3915cc778b2e6943a6faf4fb1eb9c82cd5", @ANYRESHEX], 0x1, 0x443e, &(0x7f0000008940)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x1e3842, 0x101) (async)
ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x4010942a, &(0x7f0000000000)={0x0, 0xa5a}) (async)
r2 = open(&(0x7f0000000140)='./file1\x00', 0x60142, 0x0) (async)
r3 = creat(&(0x7f0000000040)='./bus\x00', 0x34)
pwrite64(r3, &(0x7f0000000180)='+', 0x1, 0x0) (async)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x117)
copy_file_range(r4, 0x0, r2, &(0x7f00000000c0)=0x10000, 0x6, 0x0) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0) (async)
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f00000000c0)=0xb0000) (async)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000000)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, &(0x7f0000000080)={{@hyper, 0x2}, @local, 0x0, 0x0, 0x5e, 0x200000000000, 0x100000000000006}) (async)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r6, 0x7a4, &(0x7f0000000040)={{@local, 0x2}, 0x5, 0x5, 0x3, 0x40}) (async)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000200), 0xfea7)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0xa0, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x78, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x40, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_DATA={0xc, 0x7, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "bb91"}]}, @NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x114}}, 0x0) (async)
copy_file_range(r5, 0x0, r1, 0x0, 0xffffffffa003e459, 0x700000000000000)

[   84.706724][ T5341] Bluetooth: hci0: command tx timeout
[   85.163733][ T5364] loop0: detected capacity change from 0 to 32768
[   85.170807][ T5364] =======================================================
[   85.170807][ T5364] WARNING: The mand mount option has been deprecated and
[   85.170807][ T5364]          and is ignored by this kernel. Remove the mand
[   85.170807][ T5364]          option from the mount to silence this warning.
[   85.170807][ T5364] =======================================================
[   85.223657][ T5364] JBD2: Ignoring recovery information on journal
[   85.284702][ T5364] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   85.311538][   T25] audit: type=1804 audit(1757933920.192:2): pid=5365 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.0" name="/newroot/0/file1/bus" dev="loop0" ino=17058 res=1 errno=0
[   85.327718][ T5364] ==================================================================
[   85.331011][ T5364] BUG: KASAN: use-after-free in ocfs2_reserve_suballoc_bits+0xdd0/0x4640
[   85.334384][ T5364] Read of size 4 at addr ffff888053d9e004 by task syz.0.0/5364
[   85.337531][ T5364] 
[   85.338577][ T5364] CPU: 0 UID: 0 PID: 5364 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.338591][ T5364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.338598][ T5364] Call Trace:
[   85.338605][ T5364]  <TASK>
[   85.338611][ T5364]  dump_stack_lvl+0x189/0x250
[   85.338628][ T5364]  ? __kasan_check_byte+0x12/0x40
[   85.338643][ T5364]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.338654][ T5364]  ? lock_release+0x4b/0x3e0
[   85.338670][ T5364]  ? __virt_addr_valid+0x4a5/0x5c0
[   85.338684][ T5364]  print_report+0xca/0x240
[   85.338694][ T5364]  ? ocfs2_reserve_suballoc_bits+0xdd0/0x4640
[   85.338704][ T5364]  kasan_report+0x118/0x150
[   85.338717][ T5364]  ? ocfs2_reserve_suballoc_bits+0xdd0/0x4640
[   85.338728][ T5364]  ocfs2_reserve_suballoc_bits+0xdd0/0x4640
[   85.338743][ T5364]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[   85.338796][ T5364]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   85.338812][ T5364]  ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[   85.338823][ T5364]  ? stack_depot_save_flags+0x41b/0x860
[   85.338838][ T5364]  ? kasan_save_track+0x4f/0x80
[   85.338847][ T5364]  ? kasan_save_track+0x3e/0x80
[   85.338855][ T5364]  ? __kasan_kmalloc+0x93/0xb0
[   85.338865][ T5364]  ? __kmalloc_cache_noprof+0x230/0x3d0
[   85.338877][ T5364]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[   85.338887][ T5364]  ? ocfs2_create_refcount_tree+0x284/0x1250
[   85.338898][ T5364]  ? ocfs2_reflink_remap_blocks+0x2ea/0x1930
[   85.338908][ T5364]  ? ocfs2_remap_file_range+0x4b7/0x730
[   85.338922][ T5364]  ? vfs_copy_file_range+0xd53/0x1310
[   85.338934][ T5364]  ? __se_sys_copy_file_range+0x2fb/0x470
[   85.338942][ T5364]  ? do_syscall_64+0xfa/0x3b0
[   85.338949][ T5364]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.338962][ T5364]  ? __kasan_kmalloc+0x93/0xb0
[   85.338969][ T5364]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[   85.338976][ T5364]  ocfs2_reserve_new_metadata_blocks+0x403/0x940
[   85.338982][ T5364]  ? is_bpf_text_address+0x292/0x2b0
[   85.338993][ T5364]  ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[   85.338999][ T5364]  ? __kernel_text_address+0xd/0x40
[   85.339009][ T5364]  ? unwind_get_return_address+0x4d/0x90
[   85.339017][ T5364]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.339025][ T5364]  ? arch_stack_walk+0xfc/0x150
[   85.339033][ T5364]  ? unwind_next_frame+0xa5/0x2390
[   85.339040][ T5364]  ? rcu_is_watching+0x15/0xb0
[   85.339046][ T5364]  ? __kasan_check_byte+0x12/0x40
[   85.339057][ T5364]  ocfs2_create_refcount_tree+0x284/0x1250
[   85.339068][ T5364]  ? __kasan_check_byte+0x12/0x40
[   85.339080][ T5364]  ? __pfx_ocfs2_create_refcount_tree+0x10/0x10
[   85.339090][ T5364]  ? lock_release+0x4b/0x3e0
[   85.339105][ T5364]  ? is_bpf_text_address+0x292/0x2b0
[   85.339118][ T5364]  ? is_bpf_text_address+0x26/0x2b0
[   85.339133][ T5364]  ? kernel_text_address+0xa5/0xe0
[   85.339144][ T5364]  ? __kernel_text_address+0xd/0x40
[   85.339158][ T5364]  ? unwind_get_return_address+0x4d/0x90
[   85.339169][ T5364]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.339180][ T5364]  ? arch_stack_walk+0xfc/0x150
[   85.339195][ T5364]  ocfs2_reflink_remap_blocks+0x2ea/0x1930
[   85.339208][ T5364]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[   85.339218][ T5364]  ? lockdep_unlock+0x89/0x120
[   85.339231][ T5364]  ? __pfx_ocfs2_reflink_remap_blocks+0x10/0x10
[   85.339248][ T5364]  ? __lock_acquire+0xab9/0xd20
[   85.339266][ T5364]  ? __pfx___generic_remap_file_range_prep+0x10/0x10
[   85.339278][ T5364]  ? down_write_nested+0x169/0x200
[   85.339285][ T5364]  ? __pfx_down_write_nested+0x10/0x10
[   85.339293][ T5364]  ? generic_remap_file_range_prep+0x3e/0x60
[   85.339300][ T5364]  ocfs2_remap_file_range+0x4b7/0x730
[   85.339309][ T5364]  ? __lock_acquire+0xab9/0xd20
[   85.339318][ T5364]  ? __pfx_ocfs2_remap_file_range+0x10/0x10
[   85.339327][ T5364]  ? rcu_read_lock_any_held+0xb3/0x120
[   85.339335][ T5364]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   85.339343][ T5364]  ? __pfx_ocfs2_remap_file_range+0x10/0x10
[   85.339352][ T5364]  vfs_copy_file_range+0xd53/0x1310
[   85.339363][ T5364]  ? __pfx_vfs_copy_file_range+0x10/0x10
[   85.339373][ T5364]  __se_sys_copy_file_range+0x2fb/0x470
[   85.339383][ T5364]  ? __pfx___se_sys_copy_file_range+0x10/0x10
[   85.339392][ T5364]  ? rcu_is_watching+0x15/0xb0
[   85.339398][ T5364]  ? __x64_sys_copy_file_range+0x21/0xf0
[   85.339407][ T5364]  do_syscall_64+0xfa/0x3b0
[   85.339414][ T5364]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.339423][ T5364]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.339429][ T5364]  ? clear_bhb_loop+0x60/0xb0
[   85.339436][ T5364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.339443][ T5364] RIP: 0033:0x7fc56338eba9
[   85.339451][ T5364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.339456][ T5364] RSP: 002b:00007fc564242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000146
[   85.339464][ T5364] RAX: ffffffffffffffda RBX: 00007fc5635d5fa0 RCX: 00007fc56338eba9
[   85.339469][ T5364] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000007
[   85.339473][ T5364] RBP: 00007fc563411e19 R08: 0000000000000006 R09: 0000000000000000
[   85.339477][ T5364] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[   85.339481][ T5364] R13: 00007fc5635d6038 R14: 00007fc5635d5fa0 R15: 00007ffeeda9a918
[   85.339488][ T5364]  </TASK>
[   85.339491][ T5364] 
[   85.552450][ T5364] The buggy address belongs to the physical page:
[   85.555016][ T5364] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x7f898e3fd pfn:0x53d9e
[   85.558849][ T5364] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[   85.561625][ T5364] raw: 04fff00000000000 ffffea00014f6408 ffffea00014f67c8 0000000000000000
[   85.565117][ T5364] raw: 00000007f898e3fd 0000000000000000 00000000ffffffff 0000000000000000
[   85.568487][ T5364] page dumped because: kasan: bad access detected
[   85.571047][ T5364] page_owner tracks the page as freed
[   85.573276][ T5364] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|__GFP_COMP), pid 5337, tgid 5337 (udevd), ts 85220503132, free_ts 85290516519
[   85.580605][ T5364]  post_alloc_hook+0x240/0x2a0
[   85.583219][ T5364]  get_page_from_freelist+0x21e4/0x22c0
[   85.586280][ T5364]  __alloc_frozen_pages_noprof+0x181/0x370
[   85.589521][ T5364]  alloc_pages_mpol+0x232/0x4a0
[   85.592163][ T5364]  vma_alloc_folio_noprof+0xe4/0x200
[   85.595045][ T5364]  folio_prealloc+0x30/0x180
[   85.597301][ T5364]  __handle_mm_fault+0x2ab9/0x5440
[   85.599459][ T5364]  handle_mm_fault+0x40a/0x8e0
[   85.601474][ T5364]  do_user_addr_fault+0x764/0x1390
[   85.603552][ T5364]  exc_page_fault+0x76/0xf0
[   85.605400][ T5364]  asm_exc_page_fault+0x26/0x30
[   85.607446][ T5364] page last free pid 5337 tgid 5337 stack trace:
[   85.610201][ T5364]  free_unref_folios+0xdbd/0x1520
[   85.612355][ T5364]  folios_put_refs+0x559/0x640
[   85.614802][ T5364]  free_pages_and_swap_cache+0x4be/0x520
[   85.617781][ T5364]  tlb_flush_mmu+0x3a0/0x680
[   85.619782][ T5364]  tlb_finish_mmu+0xc3/0x1d0
[   85.621465][ T5364]  vms_clear_ptes+0x42c/0x540
[   85.623354][ T5364]  vms_complete_munmap_vmas+0x206/0x8a0
[   85.625736][ T5364]  do_vmi_align_munmap+0x358/0x420
[   85.627909][ T5364]  do_vmi_munmap+0x253/0x2e0
[   85.630104][ T5364]  __vm_munmap+0x23b/0x3d0
[   85.632422][ T5364]  __x64_sys_munmap+0x60/0x70
[   85.634754][ T5364]  do_syscall_64+0xfa/0x3b0
[   85.636659][ T5364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.639057][ T5364] 
[   85.640076][ T5364] Memory state around the buggy address:
[   85.642363][ T5364]  ffff888053d9df00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   85.645728][ T5364]  ffff888053d9df80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   85.649081][ T5364] >ffff888053d9e000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   85.652501][ T5364]                    ^
[   85.654331][ T5364]  ffff888053d9e080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   85.657719][ T5364]  ffff888053d9e100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   85.661062][ T5364] ==================================================================
[   85.680942][ T5364] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   85.683829][ T5364] CPU: 0 UID: 0 PID: 5364 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.687784][ T5364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.692067][ T5364] Call Trace:
[   85.693411][ T5364]  <TASK>
[   85.694643][ T5364]  dump_stack_lvl+0x99/0x250
[   85.696574][ T5364]  ? __asan_memcpy+0x40/0x70
[   85.698394][ T5364]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.700556][ T5364]  ? __pfx__printk+0x10/0x10
[   85.702496][ T5364]  vpanic+0x281/0x750
[   85.704174][ T5364]  ? preempt_schedule+0xae/0xc0
[   85.706172][ T5364]  ? __pfx_vpanic+0x10/0x10
[   85.707944][ T5364]  ? preempt_schedule_common+0x83/0xd0
[   85.710251][ T5364]  ? preempt_schedule+0xae/0xc0
[   85.712194][ T5364]  ? __pfx_preempt_schedule+0x10/0x10
[   85.714213][ T5364]  panic+0xb9/0xc0
[   85.715779][ T5364]  ? __pfx_panic+0x10/0x10
[   85.717595][ T5364]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   85.720009][ T5364]  ? ocfs2_reserve_suballoc_bits+0xdd0/0x4640
[   85.722303][ T5364]  check_panic_on_warn+0x89/0xb0
[   85.724188][ T5364]  ? ocfs2_reserve_suballoc_bits+0xdd0/0x4640
[   85.726870][ T5364]  end_report+0x78/0x160
[   85.728714][ T5364]  kasan_report+0x129/0x150
[   85.730711][ T5364]  ? ocfs2_reserve_suballoc_bits+0xdd0/0x4640
[   85.733210][ T5364]  ocfs2_reserve_suballoc_bits+0xdd0/0x4640
[   85.735701][ T5364]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[   85.738004][ T5364]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   85.740478][ T5364]  ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[   85.742944][ T5364]  ? stack_depot_save_flags+0x41b/0x860
[   85.745319][ T5364]  ? kasan_save_track+0x4f/0x80
[   85.747198][ T5364]  ? kasan_save_track+0x3e/0x80
[   85.749091][ T5364]  ? __kasan_kmalloc+0x93/0xb0
[   85.751144][ T5364]  ? __kmalloc_cache_noprof+0x230/0x3d0
[   85.753514][ T5364]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[   85.756183][ T5364]  ? ocfs2_create_refcount_tree+0x284/0x1250
[   85.758866][ T5364]  ? ocfs2_reflink_remap_blocks+0x2ea/0x1930
[   85.761412][ T5364]  ? ocfs2_remap_file_range+0x4b7/0x730
[   85.763886][ T5364]  ? vfs_copy_file_range+0xd53/0x1310
[   85.766236][ T5364]  ? __se_sys_copy_file_range+0x2fb/0x470
[   85.768773][ T5364]  ? do_syscall_64+0xfa/0x3b0
[   85.770850][ T5364]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.773477][ T5364]  ? __kasan_kmalloc+0x93/0xb0
[   85.775569][ T5364]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[   85.778848][ T5364]  ocfs2_reserve_new_metadata_blocks+0x403/0x940
[   85.781523][ T5364]  ? is_bpf_text_address+0x292/0x2b0
[   85.783801][ T5364]  ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[   85.786705][ T5364]  ? __kernel_text_address+0xd/0x40
[   85.788946][ T5364]  ? unwind_get_return_address+0x4d/0x90
[   85.791421][ T5364]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.794191][ T5364]  ? arch_stack_walk+0xfc/0x150
[   85.796269][ T5364]  ? unwind_next_frame+0xa5/0x2390
[   85.798513][ T5364]  ? rcu_is_watching+0x15/0xb0
[   85.800484][ T5364]  ? __kasan_check_byte+0x12/0x40
[   85.802644][ T5364]  ocfs2_create_refcount_tree+0x284/0x1250
[   85.805369][ T5364]  ? __kasan_check_byte+0x12/0x40
[   85.807594][ T5364]  ? __pfx_ocfs2_create_refcount_tree+0x10/0x10
[   85.810373][ T5364]  ? lock_release+0x4b/0x3e0
[   85.812374][ T5364]  ? is_bpf_text_address+0x292/0x2b0
[   85.814776][ T5364]  ? is_bpf_text_address+0x26/0x2b0
[   85.817121][ T5364]  ? kernel_text_address+0xa5/0xe0
[   85.819389][ T5364]  ? __kernel_text_address+0xd/0x40
[   85.821589][ T5364]  ? unwind_get_return_address+0x4d/0x90
[   85.824199][ T5364]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   85.827027][ T5364]  ? arch_stack_walk+0xfc/0x150
[   85.829127][ T5364]  ocfs2_reflink_remap_blocks+0x2ea/0x1930
[   85.831718][ T5364]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[   85.834452][ T5364]  ? lockdep_unlock+0x89/0x120
[   85.836491][ T5364]  ? __pfx_ocfs2_reflink_remap_blocks+0x10/0x10
[   85.839140][ T5364]  ? __lock_acquire+0xab9/0xd20
[   85.841205][ T5364]  ? __pfx___generic_remap_file_range_prep+0x10/0x10
[   85.844059][ T5364]  ? down_write_nested+0x169/0x200
[   85.846269][ T5364]  ? __pfx_down_write_nested+0x10/0x10
[   85.848682][ T5364]  ? generic_remap_file_range_prep+0x3e/0x60
[   85.851275][ T5364]  ocfs2_remap_file_range+0x4b7/0x730
[   85.853617][ T5364]  ? __lock_acquire+0xab9/0xd20
[   85.855683][ T5364]  ? __pfx_ocfs2_remap_file_range+0x10/0x10
[   85.858274][ T5364]  ? rcu_read_lock_any_held+0xb3/0x120
[   85.860618][ T5364]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   85.863047][ T5364]  ? __pfx_ocfs2_remap_file_range+0x10/0x10
[   85.865556][ T5364]  vfs_copy_file_range+0xd53/0x1310
[   85.867665][ T5364]  ? __pfx_vfs_copy_file_range+0x10/0x10
[   85.870012][ T5364]  __se_sys_copy_file_range+0x2fb/0x470
[   85.872193][ T5364]  ? __pfx___se_sys_copy_file_range+0x10/0x10
[   85.874967][ T5364]  ? rcu_is_watching+0x15/0xb0
[   85.877468][ T5364]  ? __x64_sys_copy_file_range+0x21/0xf0
[   85.880323][ T5364]  do_syscall_64+0xfa/0x3b0
[   85.882561][ T5364]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.885413][ T5364]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.888238][ T5364]  ? clear_bhb_loop+0x60/0xb0
[   85.890227][ T5364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.892706][ T5364] RIP: 0033:0x7fc56338eba9
[   85.894643][ T5364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.902354][ T5364] RSP: 002b:00007fc564242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000146
[   85.905700][ T5364] RAX: ffffffffffffffda RBX: 00007fc5635d5fa0 RCX: 00007fc56338eba9
[   85.908864][ T5364] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000007
[   85.912182][ T5364] RBP: 00007fc563411e19 R08: 0000000000000006 R09: 0000000000000000
[   85.915558][ T5364] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[   85.918852][ T5364] R13: 00007fc5635d6038 R14: 00007fc5635d5fa0 R15: 00007ffeeda9a918
[   85.922123][ T5364]  </TASK>
[   85.923744][ T5364] Kernel Offset: disabled
[   85.925607][ T5364] Rebooting in 86400 seconds..