program: r0 = creat(&(0x7f0000000440)='./file1\x00', 0xd) write$P9_RUNLINKAT(r0, &(0x7f00000000c0)={0x7, 0x4d, 0x1}, 0xfff2) write$cgroup_subtree(r0, &(0x7f00000013c0)={[{0x2d, 'rlimit'}]}, 0x8) ioctl$SNDCTL_DSP_GETFMTS(r0, 0x8004500b, &(0x7f0000000e00)=0x81) syz_mount_image$bcachefs(&(0x7f0000000040), &(0x7f0000005900)='./file1\x00', 0x10080, &(0x7f00000000c0)=ANY=[@ANYRESHEX=0x0, @ANYRES8, @ANYRES64=0xffffffffffffffff], 0xfe, 0x58f6, &(0x7f0000010b00)="$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") syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa80010, &(0x7f0000001f80)=ANY=[@ANYRESDEC=r1, @ANYRESDEC=0x0, @ANYRESHEX], 0x1, 0xc64, &(0x7f0000000140)="$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") r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/power/resume', 0x88102, 0x0) timer_create(0x3, 0x0, &(0x7f0000000040)=0x0) timer_settime(r3, 0x0, &(0x7f00000000c0)={{0x0, 0x3938700}, {0x77359400}}, 0x0) timer_gettime(r3, &(0x7f0000000180)) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) timer_settime(r3, 0x1, &(0x7f0000000080)={{0x0, 0x3938700}, {r4, r5+10000000}}, &(0x7f0000000dc0)) write$cgroup_int(r2, &(0x7f0000000040)=0x7ff, 0x12) [ 60.622561][ T5097] Bluetooth: hci0: command tx timeout [ 60.865051][ T5112] loop0: detected capacity change from 0 to 32768 [ 60.881439][ T5112] ================================================================== [ 60.884546][ T5112] BUG: KASAN: slab-out-of-bounds in journal_entry_dev_usage_to_text+0x12d/0x1d0 [ 60.888086][ T5112] Read of size 8 at addr ffff888040ffa000 by task syz.0.0/5112 [ 60.890901][ T5112] [ 60.891816][ T5112] CPU: 0 UID: 0 PID: 5112 Comm: syz.0.0 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0 [ 60.895795][ T5112] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 60.899875][ T5112] Call Trace: [ 60.901217][ T5112] [ 60.902331][ T5112] dump_stack_lvl+0x241/0x360 [ 60.904184][ T5112] ? __pfx_dump_stack_lvl+0x10/0x10 [ 60.906111][ T5112] ? __pfx__printk+0x10/0x10 [ 60.907848][ T5112] ? _printk+0xd5/0x120 [ 60.909369][ T5112] ? __virt_addr_valid+0x183/0x530 [ 60.911285][ T5112] ? __virt_addr_valid+0x183/0x530 [ 60.913197][ T5112] print_report+0x169/0x550 [ 60.914855][ T5112] ? __virt_addr_valid+0x183/0x530 [ 60.916757][ T5112] ? __virt_addr_valid+0x183/0x530 [ 60.918632][ T5112] ? __virt_addr_valid+0x45f/0x530 [ 60.920512][ T5112] ? __phys_addr+0xba/0x170 [ 60.922309][ T5112] ? journal_entry_dev_usage_to_text+0x12d/0x1d0 [ 60.924562][ T5112] kasan_report+0x143/0x180 [ 60.926279][ T5112] ? journal_entry_dev_usage_to_text+0x12d/0x1d0 [ 60.928588][ T5112] journal_entry_dev_usage_to_text+0x12d/0x1d0 [ 60.930697][ T5112] bch2_sb_clean_to_text+0x138/0x240 [ 60.932625][ T5112] bch2_sb_field_validate+0x201/0x2e0 [ 60.934675][ T5112] ? __pfx_bch2_sb_field_validate+0x10/0x10 [ 60.936805][ T5112] ? BCH_SB_BACKGROUND_COMPRESSION_TYPE+0x1b/0x80 [ 60.939175][ T5112] ? bch2_opt_validate+0x2ca/0x300 [ 60.941090][ T5112] bch2_sb_validate+0xbb1/0xf70 [ 60.942920][ T5112] ? blk_status_to_errno+0x22/0x80 [ 60.944753][ T5112] ? __pfx_bch2_sb_validate+0x10/0x10 [ 60.946520][ T5112] ? bch2_sb_compatible+0x493/0x850 [ 60.948487][ T5112] ? read_one_super+0x65a/0xf40 [ 60.950460][ T5112] ? read_one_super+0xe23/0xf40 [ 60.952248][ T5112] ? __pfx_read_one_super+0x10/0x10 [ 60.954295][ T5112] ? __pfx_bch2_sb_realloc+0x10/0x10 [ 60.956268][ T5112] ? bdev_file_open_by_path+0x382/0x480 [ 60.958250][ T5112] ? __pfx_bdev_file_open_by_path+0x10/0x10 [ 60.960456][ T5112] ? trace_kmalloc+0x1f/0xd0 [ 60.962173][ T5112] ? __asan_memcpy+0x40/0x70 [ 60.963874][ T5112] __bch2_read_super+0xc24/0x1380 [ 60.965844][ T5112] ? stack_depot_save_flags+0x6e4/0x830 [ 60.968008][ T5112] ? __pfx___bch2_read_super+0x10/0x10 [ 60.970047][ T5112] ? rcu_is_watching+0x15/0xb0 [ 60.971715][ T5112] ? __bch2_darray_resize_noprof+0x174/0x200 [ 60.973747][ T5112] ? kfree+0x4e/0x440 [ 60.975105][ T5112] ? __bch2_darray_resize_noprof+0x174/0x200 [ 60.977275][ T5112] bch2_fs_open+0x270/0x2f80 [ 60.978954][ T5112] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 60.981075][ T5112] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 60.983115][ T5112] ? lockdep_hardirqs_on+0x99/0x150 [ 60.985061][ T5112] ? __pfx_bch2_fs_open+0x10/0x10 [ 60.986918][ T5112] ? stack_trace_save+0x118/0x1d0 [ 60.988848][ T5112] ? kasan_save_track+0x51/0x80 [ 60.990757][ T5112] ? kasan_save_track+0x3f/0x80 [ 60.992566][ T5112] ? kasan_save_free_info+0x40/0x50 [ 60.994517][ T5112] ? __kasan_slab_free+0x59/0x70 [ 60.996397][ T5112] ? kfree+0x1a0/0x440 [ 60.998052][ T5112] ? sget+0x2b8/0x620 [ 60.999585][ T5112] ? bch2_fs_get_tree+0x683/0x1710 [ 61.001482][ T5112] ? vfs_get_tree+0x90/0x2b0 [ 61.003190][ T5112] ? do_new_mount+0x2be/0xb40 [ 61.004884][ T5112] ? __se_sys_mount+0x2d6/0x3c0 [ 61.006663][ T5112] ? do_syscall_64+0xf3/0x230 [ 61.008443][ T5112] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.010744][ T5112] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 61.012926][ T5112] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 61.015225][ T5112] ? kasan_quarantine_put+0xdc/0x230 [ 61.017168][ T5112] ? lockdep_hardirqs_on+0x99/0x150 [ 61.019115][ T5112] ? sget+0x2b8/0x620 [ 61.020607][ T5112] ? __pfx_bch2_test_super+0x10/0x10 [ 61.022685][ T5112] ? sget+0x2b8/0x620 [ 61.024208][ T5112] ? __pfx_bch2_noset_super+0x10/0x10 [ 61.026208][ T5112] bch2_fs_get_tree+0x738/0x1710 [ 61.028057][ T5112] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 61.030012][ T5112] ? generic_parse_monolithic+0x387/0x400 [ 61.032026][ T5112] ? apparmor_capable+0x13b/0x1b0 [ 61.033925][ T5112] vfs_get_tree+0x90/0x2b0 [ 61.035632][ T5112] do_new_mount+0x2be/0xb40 [ 61.037321][ T5112] ? __pfx_do_new_mount+0x10/0x10 [ 61.039134][ T5112] __se_sys_mount+0x2d6/0x3c0 [ 61.040886][ T5112] ? __pfx___se_sys_mount+0x10/0x10 [ 61.042897][ T5112] ? exc_page_fault+0x590/0x8c0 [ 61.044669][ T5112] ? __x64_sys_mount+0x20/0xc0 [ 61.046467][ T5112] do_syscall_64+0xf3/0x230 [ 61.048035][ T5112] ? clear_bhb_loop+0x35/0x90 [ 61.049668][ T5112] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.051681][ T5112] RIP: 0033:0x7fb3ce77f79a [ 61.053172][ T5112] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 61.059895][ T5112] RSP: 002b:00007fb3ce5fee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 61.062618][ T5112] RAX: ffffffffffffffda RBX: 00007fb3ce5feef0 RCX: 00007fb3ce77f79a [ 61.065343][ T5112] RDX: 0000000020000040 RSI: 0000000020005900 RDI: 00007fb3ce5feeb0 [ 61.068351][ T5112] RBP: 0000000020000040 R08: 00007fb3ce5feef0 R09: 0000000000010080 [ 61.071377][ T5112] R10: 0000000000010080 R11: 0000000000000246 R12: 0000000020005900 [ 61.074349][ T5112] R13: 00007fb3ce5feeb0 R14: 00000000000058f6 R15: 00000000200000c0 [ 61.077334][ T5112] [ 61.078554][ T5112] [ 61.079540][ T5112] Allocated by task 5112: [ 61.081190][ T5112] kasan_save_track+0x3f/0x80 [ 61.082973][ T5112] __kasan_kmalloc+0x98/0xb0 [ 61.084705][ T5112] __kmalloc_node_track_caller_noprof+0x225/0x440 [ 61.087057][ T5112] krealloc_noprof+0x88/0x120 [ 61.088852][ T5112] bch2_sb_realloc+0x2d2/0x660 [ 61.090749][ T5112] read_one_super+0x73b/0xf40 [ 61.092512][ T5112] __bch2_read_super+0x87c/0x1380 [ 61.094376][ T5112] bch2_fs_open+0x270/0x2f80 [ 61.096051][ T5112] bch2_fs_get_tree+0x738/0x1710 [ 61.097890][ T5112] vfs_get_tree+0x90/0x2b0 [ 61.099503][ T5112] do_new_mount+0x2be/0xb40 [ 61.101176][ T5112] __se_sys_mount+0x2d6/0x3c0 [ 61.103023][ T5112] do_syscall_64+0xf3/0x230 [ 61.104783][ T5112] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.107101][ T5112] [ 61.108048][ T5112] The buggy address belongs to the object at ffff888040ff8000 [ 61.108048][ T5112] which belongs to the cache kmalloc-8k of size 8192 [ 61.113232][ T5112] The buggy address is located 0 bytes to the right of [ 61.113232][ T5112] allocated 8192-byte region [ffff888040ff8000, ffff888040ffa000) [ 61.118638][ T5112] [ 61.119578][ T5112] The buggy address belongs to the physical page: [ 61.122079][ T5112] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40ff8 [ 61.125083][ T5112] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 61.128171][ T5112] anon flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff) [ 61.131608][ T5112] page_type: f5(slab) [ 61.133265][ T5112] raw: 04fff00000000040 ffff88801ac42280 ffffea0001035600 0000000000000005 [ 61.136717][ T5112] raw: 0000000000000000 0000000000020002 00000001f5000000 0000000000000000 [ 61.140592][ T5112] head: 04fff00000000040 ffff88801ac42280 ffffea0001035600 0000000000000005 [ 61.144382][ T5112] head: 0000000000000000 0000000000020002 00000001f5000000 0000000000000000 [ 61.147564][ T5112] head: 04fff00000000003 ffffea000103fe01 ffffffffffffffff 0000000000000000 [ 61.150733][ T5112] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000 [ 61.153974][ T5112] page dumped because: kasan: bad access detected [ 61.156110][ T5112] page_owner tracks the page as allocated [ 61.158033][ T5112] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5092, tgid 5092 (sh), ts 56994988985, free_ts 56991822891 [ 61.164833][ T5112] post_alloc_hook+0x1f3/0x230 [ 61.166393][ T5112] get_page_from_freelist+0x3045/0x3190 [ 61.168236][ T5112] __alloc_pages_noprof+0x292/0x710 [ 61.170060][ T5112] alloc_pages_mpol_noprof+0x3e8/0x680 [ 61.171818][ T5112] alloc_slab_page+0x6a/0x120 [ 61.173404][ T5112] allocate_slab+0x5a/0x2f0 [ 61.175003][ T5112] ___slab_alloc+0xcd1/0x14b0 [ 61.176722][ T5112] __slab_alloc+0x58/0xa0 [ 61.178230][ T5112] __kmalloc_cache_noprof+0x1d5/0x2c0 [ 61.180327][ T5112] tomoyo_init_log+0x11cd/0x2050 [ 61.182263][ T5112] tomoyo_supervisor+0x38a/0x11f0 [ 61.184261][ T5112] tomoyo_env_perm+0x178/0x210 [ 61.186157][ T5112] tomoyo_find_next_domain+0x146e/0x1d40 [ 61.188355][ T5112] tomoyo_bprm_check_security+0x114/0x180 [ 61.190640][ T5112] security_bprm_check+0x86/0x250 [ 61.192695][ T5112] bprm_execve+0xa56/0x1770 [ 61.194748][ T5112] page last free pid 5092 tgid 5092 stack trace: [ 61.197657][ T5112] free_unref_page+0xcfb/0xf20 [ 61.199419][ T5112] __put_partials+0xeb/0x130 [ 61.200994][ T5112] put_cpu_partial+0x17c/0x250 [ 61.202639][ T5112] __slab_free+0x2ea/0x3d0 [ 61.204229][ T5112] qlist_free_all+0x9a/0x140 [ 61.205922][ T5112] kasan_quarantine_reduce+0x14f/0x170 [ 61.207744][ T5112] __kasan_slab_alloc+0x23/0x80 [ 61.209470][ T5112] __kmalloc_cache_noprof+0x132/0x2c0 [ 61.211252][ T5112] tomoyo_init_log+0x1ca/0x2050 [ 61.212993][ T5112] tomoyo_supervisor+0x38a/0x11f0 [ 61.214774][ T5112] tomoyo_path_permission+0x243/0x360 [ 61.216690][ T5112] tomoyo_path_perm+0x480/0x740 [ 61.218500][ T5112] security_inode_getattr+0x130/0x330 [ 61.220489][ T5112] vfs_getattr+0x45/0x430 [ 61.222151][ T5112] vfs_statx+0x199/0x490 [ 61.223717][ T5112] vfs_fstatat+0x145/0x190 [ 61.225568][ T5112] [ 61.226509][ T5112] Memory state around the buggy address: [ 61.228702][ T5112] ffff888040ff9f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 61.231702][ T5112] ffff888040ff9f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 61.234689][ T5112] >ffff888040ffa000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 61.237641][ T5112] ^ [ 61.239174][ T5112] ffff888040ffa080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 61.242130][ T5112] ffff888040ffa100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 61.245314][ T5112] ================================================================== [ 61.277498][ T5112] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 61.280191][ T5112] CPU: 0 UID: 0 PID: 5112 Comm: syz.0.0 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0 [ 61.283962][ T5112] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 61.287526][ T5112] Call Trace: [ 61.288845][ T5112] [ 61.289949][ T5112] dump_stack_lvl+0x241/0x360 [ 61.291748][ T5112] ? __pfx_dump_stack_lvl+0x10/0x10 [ 61.293536][ T5112] ? __pfx__printk+0x10/0x10 [ 61.295139][ T5112] ? preempt_schedule+0xe1/0xf0 [ 61.296996][ T5112] ? vscnprintf+0x5d/0x90 [ 61.298651][ T5112] panic+0x349/0x880 [ 61.300142][ T5112] ? check_panic_on_warn+0x21/0xb0 [ 61.302170][ T5112] ? __pfx_panic+0x10/0x10 [ 61.303756][ T5112] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 61.305990][ T5112] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 61.308462][ T5112] ? print_report+0x502/0x550 [ 61.310256][ T5112] check_panic_on_warn+0x86/0xb0 [ 61.312313][ T5112] ? journal_entry_dev_usage_to_text+0x12d/0x1d0 [ 61.314774][ T5112] end_report+0x77/0x160 [ 61.316409][ T5112] kasan_report+0x154/0x180 [ 61.318167][ T5112] ? journal_entry_dev_usage_to_text+0x12d/0x1d0 [ 61.320342][ T5112] journal_entry_dev_usage_to_text+0x12d/0x1d0 [ 61.322504][ T5112] bch2_sb_clean_to_text+0x138/0x240 [ 61.324406][ T5112] bch2_sb_field_validate+0x201/0x2e0 [ 61.326294][ T5112] ? __pfx_bch2_sb_field_validate+0x10/0x10 [ 61.328293][ T5112] ? BCH_SB_BACKGROUND_COMPRESSION_TYPE+0x1b/0x80 [ 61.330601][ T5112] ? bch2_opt_validate+0x2ca/0x300 [ 61.332442][ T5112] bch2_sb_validate+0xbb1/0xf70 [ 61.334384][ T5112] ? blk_status_to_errno+0x22/0x80 [ 61.336020][ T5112] ? __pfx_bch2_sb_validate+0x10/0x10 [ 61.337959][ T5112] ? bch2_sb_compatible+0x493/0x850 [ 61.339631][ T5112] ? read_one_super+0x65a/0xf40 [ 61.341331][ T5112] ? read_one_super+0xe23/0xf40 [ 61.343022][ T5112] ? __pfx_read_one_super+0x10/0x10 [ 61.344747][ T5112] ? __pfx_bch2_sb_realloc+0x10/0x10 [ 61.346699][ T5112] ? bdev_file_open_by_path+0x382/0x480 [ 61.348767][ T5112] ? __pfx_bdev_file_open_by_path+0x10/0x10 [ 61.350796][ T5112] ? trace_kmalloc+0x1f/0xd0 [ 61.352391][ T5112] ? __asan_memcpy+0x40/0x70 [ 61.354067][ T5112] __bch2_read_super+0xc24/0x1380 [ 61.355824][ T5112] ? stack_depot_save_flags+0x6e4/0x830 [ 61.357839][ T5112] ? __pfx___bch2_read_super+0x10/0x10 [ 61.359697][ T5112] ? rcu_is_watching+0x15/0xb0 [ 61.361364][ T5112] ? __bch2_darray_resize_noprof+0x174/0x200 [ 61.363367][ T5112] ? kfree+0x4e/0x440 [ 61.364748][ T5112] ? __bch2_darray_resize_noprof+0x174/0x200 [ 61.366851][ T5112] bch2_fs_open+0x270/0x2f80 [ 61.368430][ T5112] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 61.370417][ T5112] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 61.372744][ T5112] ? lockdep_hardirqs_on+0x99/0x150 [ 61.374633][ T5112] ? __pfx_bch2_fs_open+0x10/0x10 [ 61.376381][ T5112] ? stack_trace_save+0x118/0x1d0 [ 61.378153][ T5112] ? kasan_save_track+0x51/0x80 [ 61.379858][ T5112] ? kasan_save_track+0x3f/0x80 [ 61.381609][ T5112] ? kasan_save_free_info+0x40/0x50 [ 61.383604][ T5112] ? __kasan_slab_free+0x59/0x70 [ 61.385550][ T5112] ? kfree+0x1a0/0x440 [ 61.386970][ T5112] ? sget+0x2b8/0x620 [ 61.388387][ T5112] ? bch2_fs_get_tree+0x683/0x1710 [ 61.390263][ T5112] ? vfs_get_tree+0x90/0x2b0 [ 61.392010][ T5112] ? do_new_mount+0x2be/0xb40 [ 61.393769][ T5112] ? __se_sys_mount+0x2d6/0x3c0 [ 61.395460][ T5112] ? do_syscall_64+0xf3/0x230 [ 61.397272][ T5112] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.399389][ T5112] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 61.401333][ T5112] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 61.403373][ T5112] ? kasan_quarantine_put+0xdc/0x230 [ 61.405141][ T5112] ? lockdep_hardirqs_on+0x99/0x150 [ 61.406895][ T5112] ? sget+0x2b8/0x620 [ 61.408414][ T5112] ? __pfx_bch2_test_super+0x10/0x10 [ 61.410554][ T5112] ? sget+0x2b8/0x620 [ 61.411999][ T5112] ? __pfx_bch2_noset_super+0x10/0x10 [ 61.413930][ T5112] bch2_fs_get_tree+0x738/0x1710 [ 61.415693][ T5112] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 61.417763][ T5112] ? generic_parse_monolithic+0x387/0x400 [ 61.419936][ T5112] ? apparmor_capable+0x13b/0x1b0 [ 61.421878][ T5112] vfs_get_tree+0x90/0x2b0 [ 61.423582][ T5112] do_new_mount+0x2be/0xb40 [ 61.425244][ T5112] ? __pfx_do_new_mount+0x10/0x10 [ 61.427138][ T5112] __se_sys_mount+0x2d6/0x3c0 [ 61.428931][ T5112] ? __pfx___se_sys_mount+0x10/0x10 [ 61.430857][ T5112] ? exc_page_fault+0x590/0x8c0 [ 61.432568][ T5112] ? __x64_sys_mount+0x20/0xc0 [ 61.434566][ T5112] do_syscall_64+0xf3/0x230 [ 61.436338][ T5112] ? clear_bhb_loop+0x35/0x90 [ 61.438048][ T5112] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.440305][ T5112] RIP: 0033:0x7fb3ce77f79a [ 61.441946][ T5112] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 61.449294][ T5112] RSP: 002b:00007fb3ce5fee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 61.452302][ T5112] RAX: ffffffffffffffda RBX: 00007fb3ce5feef0 RCX: 00007fb3ce77f79a [ 61.455303][ T5112] RDX: 0000000020000040 RSI: 0000000020005900 RDI: 00007fb3ce5feeb0 [ 61.458269][ T5112] RBP: 0000000020000040 R08: 00007fb3ce5feef0 R09: 0000000000010080 [ 61.461107][ T5112] R10: 0000000000010080 R11: 0000000000000246 R12: 0000000020005900 [ 61.464028][ T5112] R13: 00007fb3ce5feeb0 R14: 00000000000058f6 R15: 00000000200000c0 [ 61.466855][ T5112] [ 61.468177][ T5112] Kernel Offset: disabled [ 61.469734][ T5112] Rebooting in 86400 seconds..