program:
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f00000000c0)='./bus\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x81, 0x4433, &(0x7f00000088c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
fsetxattr(r1, &(0x7f0000000040)=@known='system.posix_acl_default\x00', &(0x7f0000000140)='#! ', 0x3, 0x1)
write$binfmt_script(r1, &(0x7f0000000200), 0xfea7)
copy_file_range(r1, &(0x7f00000001c0), r0, 0x0, 0xffffffffa003e45b, 0x700000000000000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
write(r2, &(0x7f0000000000)="240000005800410f9c00f4f90085b3a85c91fddf080001000501009f0800028001000000", 0x24)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@gettaction={0x14, 0x5a, 0x200}, 0x14}}, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)

[   68.250105][ T5305] Bluetooth: hci0: command tx timeout
[   68.414754][ T5326] loop0: detected capacity change from 0 to 32768
[   68.425907][ T5326] =======================================================
[   68.425907][ T5326] WARNING: The mand mount option has been deprecated and
[   68.425907][ T5326]          and is ignored by this kernel. Remove the mand
[   68.425907][ T5326]          option from the mount to silence this warning.
[   68.425907][ T5326] =======================================================
[   68.489682][ T5326] JBD2: Ignoring recovery information on journal
[   68.532589][ T5326] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   68.544705][ T5326] ==================================================================
[   68.548130][ T5326] BUG: KASAN: slab-use-after-free in ocfs2_claim_suballoc_bits+0x8b2/0x2450
[   68.551772][ T5326] Read of size 4 at addr ffff8880427ab000 by task syz.0.0/5326
[   68.554885][ T5326] 
[   68.555947][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.16.0-rc2-syzkaller-00269-g11313e2f7812 #0 PREEMPT(full) 
[   68.555962][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.555970][ T5326] Call Trace:
[   68.555978][ T5326]  <TASK>
[   68.555984][ T5326]  dump_stack_lvl+0x189/0x250
[   68.556004][ T5326]  ? __virt_addr_valid+0x1c8/0x5c0
[   68.556016][ T5326]  ? rcu_is_watching+0x15/0xb0
[   68.556031][ T5326]  ? __kasan_check_byte+0x12/0x40
[   68.556042][ T5326]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.556084][ T5326]  ? rcu_is_watching+0x15/0xb0
[   68.556100][ T5326]  ? lock_release+0x4b/0x3e0
[   68.556117][ T5326]  ? __virt_addr_valid+0x1c8/0x5c0
[   68.556128][ T5326]  ? __virt_addr_valid+0x4a5/0x5c0
[   68.556139][ T5326]  print_report+0xd2/0x2b0
[   68.556153][ T5326]  ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[   68.556166][ T5326]  kasan_report+0x118/0x150
[   68.556177][ T5326]  ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[   68.556192][ T5326]  ocfs2_claim_suballoc_bits+0x8b2/0x2450
[   68.556213][ T5326]  ? check_path+0x21/0x40
[   68.556226][ T5326]  ? __pfx_ocfs2_claim_suballoc_bits+0x10/0x10
[   68.556243][ T5326]  ? lockdep_unlock+0x89/0x120
[   68.556255][ T5326]  ? validate_chain+0x897/0x2140
[   68.556271][ T5326]  ? __lock_acquire+0xab9/0xd20
[   68.556288][ T5326]  ocfs2_claim_new_inode+0x332/0x7a0
[   68.556305][ T5326]  ? __pfx_ocfs2_claim_new_inode+0x10/0x10
[   68.556319][ T5326]  ? _raw_spin_lock_irq+0xae/0xf0
[   68.556382][ T5326]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[   68.556400][ T5326]  ocfs2_mknod_locked+0x100/0x250
[   68.556414][ T5326]  ? __pfx_ocfs2_mknod_locked+0x10/0x10
[   68.556425][ T5326]  ? dquot_alloc_inode+0x216/0xa50
[   68.556442][ T5326]  ? ocfs2_block_signals+0x94/0xe0
[   68.556453][ T5326]  ? __pfx_ocfs2_block_signals+0x10/0x10
[   68.556464][ T5326]  ? ocfs2_init_security_get+0x139/0x1a0
[   68.556485][ T5326]  ocfs2_mknod+0x10c7/0x2050
[   68.556501][ T5326]  ? __pfx_ocfs2_mknod+0x10/0x10
[   68.556512][ T5326]  ? __pfx_ocfs2_find_entry+0x10/0x10
[   68.556527][ T5326]  ? __lock_acquire+0xab9/0xd20
[   68.556546][ T5326]  ? look_up_lock_class+0x74/0x170
[   68.556564][ T5326]  ? register_lock_class+0x51/0x320
[   68.556579][ T5326]  ? __lock_acquire+0xab9/0xd20
[   68.556596][ T5326]  ? __lock_acquire+0xab9/0xd20
[   68.556613][ T5326]  ? do_raw_spin_lock+0x121/0x290
[   68.556627][ T5326]  ? do_raw_spin_unlock+0x4d/0x240
[   68.556640][ T5326]  ? rcu_is_watching+0x15/0xb0
[   68.556655][ T5326]  ? ocfs2_lookup+0x4a0/0x990
[   68.556666][ T5326]  ocfs2_create+0x1a5/0x440
[   68.556677][ T5326]  ? __pfx_ocfs2_lookup+0x10/0x10
[   68.556686][ T5326]  ? from_kgid+0x1b0/0x650
[   68.556700][ T5326]  ? __pfx_ocfs2_create+0x10/0x10
[   68.556710][ T5326]  ? HAS_UNMAPPED_ID+0x11a/0x180
[   68.556722][ T5326]  ? inode_permission+0x149/0x470
[   68.556732][ T5326]  ? __pfx_ocfs2_permission+0x10/0x10
[   68.556741][ T5326]  ? bpf_lsm_inode_create+0x9/0x20
[   68.556755][ T5326]  ? __pfx_ocfs2_create+0x10/0x10
[   68.556765][ T5326]  path_openat+0x14f4/0x3830
[   68.556779][ T5326]  ? arch_stack_walk+0xfc/0x150
[   68.556797][ T5326]  ? __pfx_path_openat+0x10/0x10
[   68.556811][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.556826][ T5326]  do_filp_open+0x1fa/0x410
[   68.556840][ T5326]  ? __lock_acquire+0xab9/0xd20
[   68.556854][ T5326]  ? __pfx_do_filp_open+0x10/0x10
[   68.556873][ T5326]  ? _raw_spin_unlock+0x28/0x50
[   68.556886][ T5326]  ? alloc_fd+0x64c/0x6c0
[   68.556899][ T5326]  do_sys_openat2+0x121/0x1c0
[   68.556912][ T5326]  ? __pfx_do_sys_openat2+0x10/0x10
[   68.556927][ T5326]  ? rcu_is_watching+0x15/0xb0
[   68.556943][ T5326]  __x64_sys_openat+0x138/0x170
[   68.556957][ T5326]  do_syscall_64+0xfa/0x3b0
[   68.556967][ T5326]  ? lockdep_hardirqs_on+0x9c/0x150
[   68.556981][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.556991][ T5326]  ? clear_bhb_loop+0x60/0xb0
[   68.557001][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.557012][ T5326] RIP: 0033:0x7fe64758e929
[   68.557023][ T5326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.557032][ T5326] RSP: 002b:00007fe648496038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   68.557045][ T5326] RAX: ffffffffffffffda RBX: 00007fe6477b5fa0 RCX: 00007fe64758e929
[   68.557053][ T5326] RDX: 0000000000141842 RSI: 0000200000000200 RDI: ffffffffffffff9c
[   68.557061][ T5326] RBP: 00007fe647610b39 R08: 0000000000000000 R09: 0000000000000000
[   68.557069][ T5326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   68.557075][ T5326] R13: 0000000000000000 R14: 00007fe6477b5fa0 R15: 00007ffee0390828
[   68.557088][ T5326]  </TASK>
[   68.557091][ T5326] 
[   68.750767][ T5326] Allocated by task 5249:
[   68.752643][ T5326]  kasan_save_track+0x3e/0x80
[   68.754746][ T5326]  __kasan_slab_alloc+0x6c/0x80
[   68.756945][ T5326]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[   68.759345][ T5326]  vm_area_dup+0x2b/0x680
[   68.761105][ T5326]  dup_mmap+0x90c/0x1ac0
[   68.762954][ T5326]  copy_mm+0x13c/0x4b0
[   68.764762][ T5326]  copy_process+0x1706/0x3c00
[   68.766828][ T5326]  kernel_clone+0x21e/0x870
[   68.768791][ T5326]  __x64_sys_clone+0x18b/0x1e0
[   68.770860][ T5326]  do_syscall_64+0xfa/0x3b0
[   68.772823][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.775265][ T5326] 
[   68.776231][ T5326] Freed by task 15:
[   68.777869][ T5326]  kasan_save_track+0x3e/0x80
[   68.779975][ T5326]  kasan_save_free_info+0x46/0x50
[   68.782127][ T5326]  __kasan_slab_free+0x62/0x70
[   68.784115][ T5326]  slab_free_after_rcu_debug+0x129/0x2a0
[   68.786685][ T5326]  rcu_core+0xca5/0x1710
[   68.788600][ T5326]  handle_softirqs+0x286/0x870
[   68.790554][ T5326]  run_ksoftirqd+0x9b/0x100
[   68.792657][ T5326]  smpboot_thread_fn+0x53f/0xa60
[   68.794882][ T5326]  kthread+0x70e/0x8a0
[   68.796605][ T5326]  ret_from_fork+0x3f9/0x770
[   68.798579][ T5326]  ret_from_fork_asm+0x1a/0x30
[   68.800493][ T5326] 
[   68.801550][ T5326] Last potentially related work creation:
[   68.804118][ T5326]  kasan_save_stack+0x3e/0x60
[   68.806137][ T5326]  kasan_record_aux_stack+0xbd/0xd0
[   68.808551][ T5326]  kmem_cache_free+0x2f6/0x400
[   68.810568][ T5326]  exit_mmap+0x53f/0xb50
[   68.812619][ T5326]  __mmput+0x118/0x420
[   68.814416][ T5326]  exit_mm+0x1da/0x2c0
[   68.816286][ T5326]  do_exit+0x640/0x22e0
[   68.818146][ T5326]  do_group_exit+0x21c/0x2d0
[   68.820341][ T5326]  __x64_sys_exit_group+0x3f/0x40
[   68.822570][ T5326]  x64_sys_call+0x21ba/0x21c0
[   68.824539][ T5326]  do_syscall_64+0xfa/0x3b0
[   68.826457][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.828984][ T5326] 
[   68.830049][ T5326] The buggy address belongs to the object at ffff8880427ab000
[   68.830049][ T5326]  which belongs to the cache vm_area_struct of size 256
[   68.835886][ T5326] The buggy address is located 0 bytes inside of
[   68.835886][ T5326]  freed 256-byte region [ffff8880427ab000, ffff8880427ab100)
[   68.841537][ T5326] 
[   68.842572][ T5326] The buggy address belongs to the physical page:
[   68.845234][ T5326] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880427ab780 pfn:0x427ab
[   68.849303][ T5326] flags: 0x4fff00000000200(workingset|node=1|zone=1|lastcpupid=0x7ff)
[   68.852530][ T5326] page_type: f5(slab)
[   68.854264][ T5326] raw: 04fff00000000200 ffff88801b6dcb40 ffffea0001101110 ffffea00010d4650
[   68.857834][ T5326] raw: ffff8880427ab780 00000000000c0009 00000000f5000000 0000000000000000
[   68.861631][ T5326] page dumped because: kasan: bad access detected
[   68.864470][ T5326] page_owner tracks the page as allocated
[   68.867052][ T5326] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5014, tgid 5014 (sh), ts 42776666933, free_ts 40902303465
[   68.874816][ T5326]  post_alloc_hook+0x240/0x2a0
[   68.877064][ T5326]  get_page_from_freelist+0x21e4/0x22c0
[   68.879813][ T5326]  __alloc_frozen_pages_noprof+0x181/0x370
[   68.882465][ T5326]  alloc_pages_mpol+0x232/0x4a0
[   68.884570][ T5326]  allocate_slab+0x8a/0x3b0
[   68.886666][ T5326]  ___slab_alloc+0xbfc/0x1480
[   68.888581][ T5326]  kmem_cache_alloc_noprof+0x283/0x3c0
[   68.890933][ T5326]  vm_area_dup+0x2b/0x680
[   68.892695][ T5326]  __split_vma+0x1a9/0xa00
[   68.894563][ T5326]  vms_gather_munmap_vmas+0x2de/0x12b0
[   68.896992][ T5326]  mmap_region+0x678/0x1f30
[   68.898960][ T5326]  do_mmap+0xc45/0x10d0
[   68.900785][ T5326]  vm_mmap_pgoff+0x31b/0x4c0
[   68.902933][ T5326]  ksys_mmap_pgoff+0x51f/0x760
[   68.904968][ T5326]  do_syscall_64+0xfa/0x3b0
[   68.906807][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.909258][ T5326] page last free pid 15 tgid 15 stack trace:
[   68.912031][ T5326]  __free_frozen_pages+0xc71/0xe70
[   68.914229][ T5326]  __tlb_remove_table+0x2d2/0x3b0
[   68.916339][ T5326]  tlb_remove_table_rcu+0x85/0x100
[   68.918452][ T5326]  rcu_core+0xca5/0x1710
[   68.920002][ T5326]  handle_softirqs+0x286/0x870
[   68.922291][ T5326]  run_ksoftirqd+0x9b/0x100
[   68.924221][ T5326]  smpboot_thread_fn+0x53f/0xa60
[   68.926187][ T5326]  kthread+0x70e/0x8a0
[   68.928001][ T5326]  ret_from_fork+0x3f9/0x770
[   68.930174][ T5326]  ret_from_fork_asm+0x1a/0x30
[   68.932213][ T5326] 
[   68.933310][ T5326] Memory state around the buggy address:
[   68.935689][ T5326]  ffff8880427aaf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   68.939256][ T5326]  ffff8880427aaf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   68.942702][ T5326] >ffff8880427ab000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   68.946221][ T5326]                    ^
[   68.948095][ T5326]  ffff8880427ab080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   68.951652][ T5326]  ffff8880427ab100: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00
[   68.955282][ T5326] ==================================================================
[   68.970784][ T5326] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   68.974120][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.16.0-rc2-syzkaller-00269-g11313e2f7812 #0 PREEMPT(full) 
[   68.979326][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.984033][ T5326] Call Trace:
[   68.985583][ T5326]  <TASK>
[   68.986943][ T5326]  dump_stack_lvl+0x99/0x250
[   68.989042][ T5326]  ? __asan_memcpy+0x40/0x70
[   68.991087][ T5326]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.993305][ T5326]  ? __pfx__printk+0x10/0x10
[   68.995316][ T5326]  panic+0x2db/0x790
[   68.997186][ T5326]  ? __pfx_panic+0x10/0x10
[   68.999158][ T5326]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   69.001731][ T5326]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   69.004586][ T5326]  ? print_memory_metadata+0x314/0x400
[   69.006873][ T5326]  ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[   69.009416][ T5326]  check_panic_on_warn+0x89/0xb0
[   69.011696][ T5326]  ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[   69.014287][ T5326]  end_report+0x78/0x160
[   69.016131][ T5326]  kasan_report+0x129/0x150
[   69.018044][ T5326]  ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[   69.020607][ T5326]  ocfs2_claim_suballoc_bits+0x8b2/0x2450
[   69.023109][ T5326]  ? check_path+0x21/0x40
[   69.025038][ T5326]  ? __pfx_ocfs2_claim_suballoc_bits+0x10/0x10
[   69.027646][ T5326]  ? lockdep_unlock+0x89/0x120
[   69.029697][ T5326]  ? validate_chain+0x897/0x2140
[   69.031769][ T5326]  ? __lock_acquire+0xab9/0xd20
[   69.033877][ T5326]  ocfs2_claim_new_inode+0x332/0x7a0
[   69.036117][ T5326]  ? __pfx_ocfs2_claim_new_inode+0x10/0x10
[   69.038548][ T5326]  ? _raw_spin_lock_irq+0xae/0xf0
[   69.040700][ T5326]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[   69.042985][ T5326]  ocfs2_mknod_locked+0x100/0x250
[   69.045177][ T5326]  ? __pfx_ocfs2_mknod_locked+0x10/0x10
[   69.047513][ T5326]  ? dquot_alloc_inode+0x216/0xa50
[   69.049657][ T5326]  ? ocfs2_block_signals+0x94/0xe0
[   69.051936][ T5326]  ? __pfx_ocfs2_block_signals+0x10/0x10
[   69.054393][ T5326]  ? ocfs2_init_security_get+0x139/0x1a0
[   69.056912][ T5326]  ocfs2_mknod+0x10c7/0x2050
[   69.058935][ T5326]  ? __pfx_ocfs2_mknod+0x10/0x10
[   69.061153][ T5326]  ? __pfx_ocfs2_find_entry+0x10/0x10
[   69.063329][ T5326]  ? __lock_acquire+0xab9/0xd20
[   69.065429][ T5326]  ? look_up_lock_class+0x74/0x170
[   69.067628][ T5326]  ? register_lock_class+0x51/0x320
[   69.069824][ T5326]  ? __lock_acquire+0xab9/0xd20
[   69.071925][ T5326]  ? __lock_acquire+0xab9/0xd20
[   69.074107][ T5326]  ? do_raw_spin_lock+0x121/0x290
[   69.076322][ T5326]  ? do_raw_spin_unlock+0x4d/0x240
[   69.078502][ T5326]  ? rcu_is_watching+0x15/0xb0
[   69.080642][ T5326]  ? ocfs2_lookup+0x4a0/0x990
[   69.082652][ T5326]  ocfs2_create+0x1a5/0x440
[   69.084636][ T5326]  ? __pfx_ocfs2_lookup+0x10/0x10
[   69.086796][ T5326]  ? from_kgid+0x1b0/0x650
[   69.088756][ T5326]  ? __pfx_ocfs2_create+0x10/0x10
[   69.090985][ T5326]  ? HAS_UNMAPPED_ID+0x11a/0x180
[   69.093151][ T5326]  ? inode_permission+0x149/0x470
[   69.095280][ T5326]  ? __pfx_ocfs2_permission+0x10/0x10
[   69.097590][ T5326]  ? bpf_lsm_inode_create+0x9/0x20
[   69.099685][ T5326]  ? __pfx_ocfs2_create+0x10/0x10
[   69.101691][ T5326]  path_openat+0x14f4/0x3830
[   69.103628][ T5326]  ? arch_stack_walk+0xfc/0x150
[   69.105593][ T5326]  ? __pfx_path_openat+0x10/0x10
[   69.107626][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.110413][ T5326]  do_filp_open+0x1fa/0x410
[   69.112548][ T5326]  ? __lock_acquire+0xab9/0xd20
[   69.114595][ T5326]  ? __pfx_do_filp_open+0x10/0x10
[   69.116638][ T5326]  ? _raw_spin_unlock+0x28/0x50
[   69.118820][ T5326]  ? alloc_fd+0x64c/0x6c0
[   69.120700][ T5326]  do_sys_openat2+0x121/0x1c0
[   69.122858][ T5326]  ? __pfx_do_sys_openat2+0x10/0x10
[   69.125248][ T5326]  ? rcu_is_watching+0x15/0xb0
[   69.127553][ T5326]  __x64_sys_openat+0x138/0x170
[   69.129891][ T5326]  do_syscall_64+0xfa/0x3b0
[   69.132123][ T5326]  ? lockdep_hardirqs_on+0x9c/0x150
[   69.134311][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.136712][ T5326]  ? clear_bhb_loop+0x60/0xb0
[   69.138788][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.141262][ T5326] RIP: 0033:0x7fe64758e929
[   69.143186][ T5326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.151122][ T5326] RSP: 002b:00007fe648496038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   69.154751][ T5326] RAX: ffffffffffffffda RBX: 00007fe6477b5fa0 RCX: 00007fe64758e929
[   69.158310][ T5326] RDX: 0000000000141842 RSI: 0000200000000200 RDI: ffffffffffffff9c
[   69.161643][ T5326] RBP: 00007fe647610b39 R08: 0000000000000000 R09: 0000000000000000
[   69.165085][ T5326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   69.168632][ T5326] R13: 0000000000000000 R14: 00007fe6477b5fa0 R15: 00007ffee0390828
[   69.172033][ T5326]  </TASK>
[   69.173809][ T5326] Kernel Offset: disabled
[   69.175877][ T5326] Rebooting in 86400 seconds..