program:
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000010, &(0x7f0000000280)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x81, 0x7a5, &(0x7f0000000f80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000200)='./file0\x00', 0x3200014, &(0x7f00000006c0)=ANY=[], 0x1, 0x625, &(0x7f0000002c40)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x121000, 0x51)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f00000002c0)={[{@stripe={'stripe', 0x3d, 0x5}}, {@test_dummy_encryption_v1}], [{@fowner_lt}, {@fowner_eq}, {@euid_lt}, {@hash}]}, 0x1, 0x246, &(0x7f00000007c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r2 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000003c0)={0x0, {}, 0x0, {}, 0x1000, 0xffffffffffffffff, 0x10e, 0x29, "22536a030000000000000043a52dbc3a9ae8b04fcca15548328cb3e74d938981061383375e1d61471a2d2dfe0000000000000000000000040000000000821700", "04106d0c31ef6c1f02a4aa6d0c5aa9263626c0240090f9db74161ccff2c5cf5e", [0x5, 0xff]})
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x4008, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000080)={0x8})
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x1, 0x80000)
fstat(r1, &(0x7f0000000100))
pwrite64(r0, &(0x7f0000000140)='3', 0x1, 0xfeca)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89b1, &(0x7f0000000000)={'macvlan0\x00'})
r4 = open(&(0x7f0000000200)='./file1\x00', 0x888042, 0x8)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r4, 0x9000)
open(&(0x7f0000000180)='./file1\x00', 0x66842, 0x2b)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="64000000020605000a0000000000000000000000100003006269746d61703a706f72740005000400010000000900020073797a3000000000050005000000000005000100060000001c0007800600044000000000060005400000000008000640"], 0x64}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002440)=ANY=[@ANYBLOB="34000000090605000a00000000000000000000000900020073797a300000000005000100060000000c00078006000440"], 0x34}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1ce2000007060108030000f26528eb000a000004050001000700000001030000ffff4a5521"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
sendmsg$NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f0000002100)={0x0, 0x0, 0x0}, 0x240040c4)
socket$netlink(0x10, 0x3, 0x15)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)

[  115.625470][ T4681] Bluetooth: hci0: command tx timeout
[  115.783036][ T5349] loop0: detected capacity change from 0 to 2048
[  115.912521][ T5349] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.052629][ T5349] overlayfs: conflicting lowerdir path
[  116.078463][ T5349] loop0: detected capacity change from 2048 to 2040
[  116.091663][ T5349] EXT4-fs error (device loop0): ext4_read_inline_dir:1494: inode #19: block 6: comm syz.0.0: path /: bad entry in directory: directory entry overrun - offset=24, inode=0, rec_len=2048, size=80 fake=0
[  116.119686][ T5349] EXT4-fs error (device loop0): ext4_read_inline_dir:1494: inode #19: block 6: comm syz.0.0: path /: bad entry in directory: directory entry overrun - offset=24, inode=0, rec_len=2048, size=80 fake=0
[  116.153949][ T5349] overlayfs: cleanup of 'bus/work' failed (-2)
[  116.166664][ T5350] ==================================================================
[  116.170376][ T5350] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x9c1/0x1e20
[  116.173803][ T5350] Read of size 18446744073709551600 at addr ffff888055d07eb8 by task syz.0.0/5350
[  116.177855][ T5350] 
[  116.179209][ T5350] CPU: 0 UID: 0 PID: 5350 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  116.179230][ T5350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  116.179240][ T5350] Call Trace:
[  116.179250][ T5350]  <TASK>
[  116.179258][ T5350]  dump_stack_lvl+0xe8/0x150
[  116.179286][ T5350]  print_address_description+0x55/0x1e0
[  116.179306][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.179325][ T5350]  print_report+0x58/0x70
[  116.179342][ T5350]  kasan_report+0x117/0x150
[  116.179359][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.179376][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.179394][ T5350]  kasan_check_range+0x264/0x2c0
[  116.179409][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.179426][ T5350]  __asan_memmove+0x29/0x70
[  116.179446][ T5350]  ext4_xattr_set_entry+0x9c1/0x1e20
[  116.179471][ T5350]  ext4_xattr_ibody_set+0x254/0x6a0
[  116.179490][ T5350]  ext4_destroy_inline_data_nolock+0x23a/0x5e0
[  116.179506][ T5350]  ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10
[  116.179523][ T5350]  ? down_write+0x16d/0x200
[  116.179596][ T5350]  ? ext4_journal_check_start+0x1cf/0x2b0
[  116.179619][ T5350]  ext4_destroy_inline_data+0x83/0xe0
[  116.179633][ T5350]  ext4_do_writepages+0x51e/0x4670
[  116.179651][ T5350]  ? kernel_text_address+0xa5/0xe0
[  116.179669][ T5350]  ? unwind_get_return_address+0x4d/0x90
[  116.179684][ T5350]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  116.179703][ T5350]  ? arch_stack_walk+0xfb/0x150
[  116.179721][ T5350]  ? stack_trace_save+0xa9/0x100
[  116.179739][ T5350]  ? __pfx_stack_trace_save+0x10/0x10
[  116.179756][ T5350]  ? __pfx_hlock_conflict+0x10/0x10
[  116.179772][ T5350]  ? check_path+0x21/0x40
[  116.179787][ T5350]  ? add_lock_to_list+0xc7/0x100
[  116.179801][ T5350]  ? __pfx_ext4_do_writepages+0x10/0x10
[  116.179817][ T5350]  ? lockdep_unlock+0x5d/0xd0
[  116.179835][ T5350]  ? __lock_acquire+0x146e/0x2cf0
[  116.179862][ T5350]  ? ext4_writepages+0x205/0x3b0
[  116.179883][ T5350]  ? ext4_writepages+0x205/0x3b0
[  116.179915][ T5350]  ext4_writepages+0x241/0x3b0
[  116.179936][ T5350]  ? __lock_acquire+0x6b5/0x2cf0
[  116.179962][ T5350]  ? __pfx_ext4_writepages+0x10/0x10
[  116.179991][ T5350]  ? __pfx_ext4_writepages+0x10/0x10
[  116.180013][ T5350]  do_writepages+0x32e/0x550
[  116.180035][ T5350]  ? do_raw_spin_unlock+0x4d/0x210
[  116.180055][ T5350]  file_write_and_wait_range+0x36e/0x440
[  116.180080][ T5350]  ? __pfx_file_write_and_wait_range+0x10/0x10
[  116.180111][ T5350]  ? filemap_get_entry+0x378/0x3f0
[  116.180127][ T5350]  ? folio_mkclean+0x2c2/0x3d0
[  116.180144][ T5350]  mmb_fsync_noflush+0x76/0x1c0
[  116.180163][ T5350]  ext4_sync_file+0x437/0xd50
[  116.180188][ T5350]  ? __pfx_ext4_sync_file+0x10/0x10
[  116.180219][ T5350]  ? ext4_buffered_write_iter+0xd9/0x3a0
[  116.180237][ T5350]  ? sync_lazytime+0x5e/0x4c0
[  116.180258][ T5350]  ext4_buffered_write_iter+0x2ca/0x3a0
[  116.180279][ T5350]  ext4_file_write_iter+0x298/0x1bf0
[  116.180301][ T5350]  ? vfs_write+0x227/0xb90
[  116.180317][ T5350]  ? vfs_write+0x227/0xb90
[  116.180332][ T5350]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  116.180353][ T5350]  vfs_write+0x61d/0xb90
[  116.180371][ T5350]  ? __pfx_vfs_write+0x10/0x10
[  116.180389][ T5350]  ? __fget_files+0x2a/0x420
[  116.180415][ T5350]  __x64_sys_pwrite64+0x199/0x230
[  116.180433][ T5350]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  116.180453][ T5350]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.180470][ T5350]  do_syscall_64+0x15f/0xf80
[  116.180493][ T5350]  ? trace_irq_disable+0x3b/0x140
[  116.180512][ T5350]  ? clear_bhb_loop+0x40/0x90
[  116.180529][ T5350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.180545][ T5350] RIP: 0033:0x7f59f8f9c819
[  116.180560][ T5350] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  116.180572][ T5350] RSP: 002b:00007f59f9ddefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  116.180589][ T5350] RAX: ffffffffffffffda RBX: 00007f59f9216090 RCX: 00007f59f8f9c819
[  116.180600][ T5350] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000004
[  116.180610][ T5350] RBP: 00007f59f9032c91 R08: 0000000000000000 R09: 0000000000000000
[  116.180621][ T5350] R10: 000000000000feca R11: 0000000000000246 R12: 0000000000000000
[  116.180631][ T5350] R13: 00007f59f9216128 R14: 00007f59f9216090 R15: 00007ffd4fd38d88
[  116.180647][ T5350]  </TASK>
[  116.180652][ T5350] 
[  116.384776][ T5350] The buggy address belongs to the physical page:
[  116.387514][ T5350] page: refcount:3 mapcount:0 mapping:ffff88801cc25940 index:0x2 pfn:0x55d07
[  116.391644][ T5350] memcg:ffff88803ba88e00
[  116.393924][ T5350] aops:def_blk_aops ino:700000 dentry name(?):""
[  116.397277][ T5350] flags: 0x4fff18000004214(referenced|dirty|workingset|private|node=1|zone=1|lastcpupid=0x7ff)
[  116.402041][ T5350] raw: 04fff18000004214 0000000000000000 dead000000000122 ffff88801cc25940
[  116.406144][ T5350] raw: 0000000000000002 ffff888047e38d98 00000003ffffffff ffff88803ba88e00
[  116.410916][ T5350] page dumped because: kasan: bad access detected
[  116.413666][ T5350] page_owner tracks the page as allocated
[  116.416157][ T5350] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_MOVABLE|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL), pid 5350, tgid 5348 (syz.0.0), ts 116143395133, free_ts 116143283495
[  116.426205][ T5350]  post_alloc_hook+0x231/0x280
[  116.428535][ T5350]  get_page_from_freelist+0x24ba/0x2540
[  116.431121][ T5350]  __alloc_frozen_pages_noprof+0x18d/0x380
[  116.433869][ T5350]  alloc_pages_mpol+0x235/0x490
[  116.435978][ T5350]  alloc_pages_noprof+0xac/0x2a0
[  116.438583][ T5350]  folio_alloc_noprof+0x1e/0x30
[  116.441361][ T5350]  filemap_alloc_folio_noprof+0x111/0x470
[  116.444586][ T5350]  __filemap_get_folio_mpol+0x3fc/0xb00
[  116.446953][ T5350]  bdev_getblk+0x1f6/0x6e0
[  116.448928][ T5350]  __ext4_get_inode_loc+0x528/0xfa0
[  116.451249][ T5350]  ext4_reserve_inode_write+0x18b/0x360
[  116.453607][ T5350]  ext4_fileattr_set+0xba9/0x16d0
[  116.455832][ T5350]  vfs_fileattr_set+0x9f6/0xc90
[  116.458522][ T5350]  ioctl_fssetxattr+0x213/0x280
[  116.461600][ T5350]  do_vfs_ioctl+0x900/0x1530
[  116.463904][ T5350]  __se_sys_ioctl+0x82/0x170
[  116.466167][ T5350] page last free pid 5350 tgid 5348 stack trace:
[  116.468953][ T5350]  __free_frozen_pages+0xbc7/0xd30
[  116.471094][ T5350]  __folio_put+0x4a2/0x580
[  116.472971][ T5350]  migrate_pages_batch+0x3dac/0x4ca0
[  116.475127][ T5350]  migrate_pages+0x1e02/0x2a10
[  116.477240][ T5350]  migrate_misplaced_folio+0x273/0x720
[  116.479947][ T5350]  handle_mm_fault+0x20ea/0x3170
[  116.482894][ T5350]  do_user_addr_fault+0xa73/0x1340
[  116.485839][ T5350]  exc_page_fault+0x6a/0xc0
[  116.488014][ T5350]  asm_exc_page_fault+0x26/0x30
[  116.490276][ T5350] 
[  116.491287][ T5350] Memory state around the buggy address:
[  116.493746][ T5350]  ffff888055d07d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  116.497503][ T5350]  ffff888055d07e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  116.502007][ T5350] >ffff888055d07e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  116.505743][ T5350]                                         ^
[  116.508308][ T5350]  ffff888055d07f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  116.511473][ T5350]  ffff888055d07f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  116.515079][ T5350] ==================================================================
[  116.566675][ T5349] overlayfs: failed to create directory ./bus/work (errno: 17); mounting read-only
[  116.579641][ T5350] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  116.583592][ T5350] CPU: 0 UID: 0 PID: 5350 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  116.588099][ T5350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  116.593236][ T5350] Call Trace:
[  116.594816][ T5350]  <TASK>
[  116.596113][ T5350]  vpanic+0x56c/0xa60
[  116.597937][ T5350]  ? __pfx_vpanic+0x10/0x10
[  116.599961][ T5350]  ? __pfx___schedule+0x10/0x10
[  116.602482][ T5350]  panic+0xc5/0xd0
[  116.604400][ T5350]  ? __pfx_panic+0x10/0x10
[  116.606913][ T5350]  ? preempt_schedule_thunk+0x16/0x30
[  116.609617][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.611966][ T5350]  check_panic_on_warn+0x89/0xb0
[  116.614301][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.616937][ T5350]  end_report+0x73/0x170
[  116.619284][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.622206][ T5350]  kasan_report+0x128/0x150
[  116.624310][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.626666][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.628959][ T5350]  kasan_check_range+0x264/0x2c0
[  116.631295][ T5350]  ? ext4_xattr_set_entry+0x9c1/0x1e20
[  116.633892][ T5350]  __asan_memmove+0x29/0x70
[  116.636535][ T5350]  ext4_xattr_set_entry+0x9c1/0x1e20
[  116.639393][ T5350]  ext4_xattr_ibody_set+0x254/0x6a0
[  116.641741][ T5350]  ext4_destroy_inline_data_nolock+0x23a/0x5e0
[  116.644429][ T5350]  ? __pfx_ext4_destroy_inline_data_nolock+0x10/0x10
[  116.647358][ T5350]  ? down_write+0x16d/0x200
[  116.649541][ T5350]  ? ext4_journal_check_start+0x1cf/0x2b0
[  116.652762][ T5350]  ext4_destroy_inline_data+0x83/0xe0
[  116.655865][ T5350]  ext4_do_writepages+0x51e/0x4670
[  116.658378][ T5350]  ? kernel_text_address+0xa5/0xe0
[  116.660721][ T5350]  ? unwind_get_return_address+0x4d/0x90
[  116.663381][ T5350]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  116.666232][ T5350]  ? arch_stack_walk+0xfb/0x150
[  116.668607][ T5350]  ? stack_trace_save+0xa9/0x100
[  116.671428][ T5350]  ? __pfx_stack_trace_save+0x10/0x10
[  116.674745][ T5350]  ? __pfx_hlock_conflict+0x10/0x10
[  116.677177][ T5350]  ? check_path+0x21/0x40
[  116.679068][ T5350]  ? add_lock_to_list+0xc7/0x100
[  116.681203][ T5350]  ? __pfx_ext4_do_writepages+0x10/0x10
[  116.683574][ T5350]  ? lockdep_unlock+0x5d/0xd0
[  116.685702][ T5350]  ? __lock_acquire+0x146e/0x2cf0
[  116.688069][ T5350]  ? ext4_writepages+0x205/0x3b0
[  116.690873][ T5350]  ? ext4_writepages+0x205/0x3b0
[  116.694970][ T5350]  ext4_writepages+0x241/0x3b0
[  116.697715][ T5350]  ? __lock_acquire+0x6b5/0x2cf0
[  116.699792][ T5350]  ? __pfx_ext4_writepages+0x10/0x10
[  116.702104][ T5350]  ? __pfx_ext4_writepages+0x10/0x10
[  116.704365][ T5350]  do_writepages+0x32e/0x550
[  116.706605][ T5350]  ? do_raw_spin_unlock+0x4d/0x210
[  116.709066][ T5350]  file_write_and_wait_range+0x36e/0x440
[  116.711732][ T5350]  ? __pfx_file_write_and_wait_range+0x10/0x10
[  116.714733][ T5350]  ? filemap_get_entry+0x378/0x3f0
[  116.717785][ T5350]  ? folio_mkclean+0x2c2/0x3d0
[  116.720752][ T5350]  mmb_fsync_noflush+0x76/0x1c0
[  116.723307][ T5350]  ext4_sync_file+0x437/0xd50
[  116.725434][ T5350]  ? __pfx_ext4_sync_file+0x10/0x10
[  116.727611][ T5350]  ? ext4_buffered_write_iter+0xd9/0x3a0
[  116.730058][ T5350]  ? sync_lazytime+0x5e/0x4c0
[  116.732108][ T5350]  ext4_buffered_write_iter+0x2ca/0x3a0
[  116.734762][ T5350]  ext4_file_write_iter+0x298/0x1bf0
[  116.738005][ T5350]  ? vfs_write+0x227/0xb90
[  116.740670][ T5350]  ? vfs_write+0x227/0xb90
[  116.742779][ T5350]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  116.745295][ T5350]  vfs_write+0x61d/0xb90
[  116.747233][ T5350]  ? __pfx_vfs_write+0x10/0x10
[  116.749512][ T5350]  ? __fget_files+0x2a/0x420
[  116.752157][ T5350]  __x64_sys_pwrite64+0x199/0x230
[  116.755090][ T5350]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  116.758087][ T5350]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.760895][ T5350]  do_syscall_64+0x15f/0xf80
[  116.763005][ T5350]  ? trace_irq_disable+0x3b/0x140
[  116.765239][ T5350]  ? clear_bhb_loop+0x40/0x90
[  116.767384][ T5350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.770086][ T5350] RIP: 0033:0x7f59f8f9c819
[  116.772690][ T5350] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  116.781431][ T5350] RSP: 002b:00007f59f9ddefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  116.785263][ T5350] RAX: ffffffffffffffda RBX: 00007f59f9216090 RCX: 00007f59f8f9c819
[  116.789402][ T5350] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000004
[  116.793920][ T5350] RBP: 00007f59f9032c91 R08: 0000000000000000 R09: 0000000000000000
[  116.797345][ T5350] R10: 000000000000feca R11: 0000000000000246 R12: 0000000000000000
[  116.800713][ T5350] R13: 00007f59f9216128 R14: 00007f59f9216090 R15: 00007ffd4fd38d88
[  116.804216][ T5350]  </TASK>
[  116.806004][ T5350] Kernel Offset: disabled
[  116.808265][ T5350] Rebooting in 86400 seconds..