program: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) (async, rerun: 32) sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=r3, @ANYBLOB="28000e00800000000802110000010802110000010802110000000000000000000000000064000000080026006c09000008000c006400000008000d"], 0x5c}}, 0x0) (rerun: 32) sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, r2, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0xf}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000824}, 0x4) (async) r4 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x2180, 0x0) ioctl$COMEDI_DEVCONFIG(r4, 0x40946400, &(0x7f0000000080)={'das16m1\x00', [0x2f00, 0x5, 0xd09a, 0x2, 0x0, 0xfffffffe, 0x1, 0x6, 0xffe, 0x1, 0xc, 0x1, 0x4, 0x4, 0xffff, 0x6, 0xffffffa7, 0x40000009, 0x832, 0x30000, 0x3ff, 0x9, 0x800, 0xe2df, 0x2, 0x1, 0x9, 0x3, 0x4, 0x5, 0x70f]}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async) syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0xa08006, &(0x7f0000000100)=ANY=[@ANYRES32=0x0], 0x1, 0x687, &(0x7f0000000fc0)="$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") r5 = inotify_init1(0x0) inotify_add_watch(r5, &(0x7f0000000080)='.\x00', 0x40000582) (async, rerun: 32) setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x0, 0x0, 0x0) (rerun: 32) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00') openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x70, r0, 0xd00, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x1000, 0x13}}}}, [@NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}, @NL80211_ATTR_IFTYPE={0x8}]}, 0x70}, 0x1, 0x0, 0x0, 0x200088c1}, 0x51) syz_emit_ethernet(0x6e, &(0x7f0000000080)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x7d0, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback, @local, [@srh]}}}}}}}, 0x0) (async, rerun: 32) syz_emit_ethernet(0x4a, &(0x7f0000000040)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "00fbff", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10}}}}}}}, 0x0) (rerun: 32) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x244000, 0x0) [ 74.471892][ T5316] Bluetooth: hci0: command tx timeout [ 74.615971][ T5338] loop0: detected capacity change from 0 to 1024 [ 74.663195][ T5338] hfsplus: request for non-existent node 134217728 in B*Tree [ 74.666526][ T5338] hfsplus: request for non-existent node 134217728 in B*Tree [ 74.676005][ T5338] ================================================================== [ 74.679492][ T5338] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0xc0/0x2a0 [ 74.682992][ T5338] Read of size 8 at addr ffff888043c393e0 by task syz.0.0/5338 [ 74.686196][ T5338] [ 74.687224][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 74.687239][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.687246][ T5338] Call Trace: [ 74.687254][ T5338] [ 74.687260][ T5338] dump_stack_lvl+0x189/0x250 [ 74.687276][ T5338] ? __virt_addr_valid+0x1c8/0x5c0 [ 74.687292][ T5338] ? rcu_is_watching+0x15/0xb0 [ 74.687304][ T5338] ? __kasan_check_byte+0x12/0x40 [ 74.687318][ T5338] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.687330][ T5338] ? rcu_is_watching+0x15/0xb0 [ 74.687341][ T5338] ? lock_release+0x4b/0x3e0 [ 74.687354][ T5338] ? __virt_addr_valid+0x1c8/0x5c0 [ 74.687368][ T5338] ? __virt_addr_valid+0x4a5/0x5c0 [ 74.687382][ T5338] print_report+0xca/0x230 [ 74.687393][ T5338] ? hfsplus_bnode_read+0xc0/0x2a0 [ 74.687427][ T5338] kasan_report+0x118/0x150 [ 74.687442][ T5338] ? hfsplus_bnode_read+0xc0/0x2a0 [ 74.687454][ T5338] hfsplus_bnode_read+0xc0/0x2a0 [ 74.687466][ T5338] hfsplus_bnode_dump+0x300/0x450 [ 74.687480][ T5338] ? __pfx_hfsplus_bnode_dump+0x10/0x10 [ 74.687491][ T5338] ? hfsplus_bnode_write_u16+0x8b/0xd0 [ 74.687503][ T5338] ? hfsplus_bnode_move+0x393/0xb90 [ 74.687513][ T5338] ? __pfx___hfsplus_brec_find+0x10/0x10 [ 74.687527][ T5338] hfsplus_brec_remove+0x480/0x550 [ 74.687543][ T5338] __hfsplus_delete_attr+0x1d4/0x360 [ 74.687559][ T5338] ? __pfx___hfsplus_delete_attr+0x10/0x10 [ 74.687574][ T5338] ? hfsplus_attr_build_key+0xee/0x260 [ 74.687586][ T5338] hfsplus_delete_attr+0x231/0x2d0 [ 74.687596][ T5338] ? __pfx_hfsplus_delete_attr+0x10/0x10 [ 74.687606][ T5338] ? hfsplus_find_init+0x8c/0x1d0 [ 74.687614][ T5338] ? hfsplus_find_init+0x15a/0x1d0 [ 74.687621][ T5338] __hfsplus_setxattr+0x37a/0x1f40 [ 74.687632][ T5338] ? is_bpf_text_address+0x26/0x2b0 [ 74.687645][ T5338] ? kernel_text_address+0xa5/0xe0 [ 74.687656][ T5338] ? unwind_get_return_address+0x4d/0x90 [ 74.687668][ T5338] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 74.687683][ T5338] ? arch_stack_walk+0xfc/0x150 [ 74.687697][ T5338] ? __pfx___hfsplus_setxattr+0x10/0x10 [ 74.687713][ T5338] ? stack_trace_save+0x9c/0xe0 [ 74.687741][ T5338] ? hfsplus_setxattr+0x68/0x180 [ 74.687754][ T5338] ? __kasan_kmalloc+0x93/0xb0 [ 74.687767][ T5338] ? hfsplus_setxattr+0x102/0x180 [ 74.687781][ T5338] hfsplus_setxattr+0x11e/0x180 [ 74.687796][ T5338] hfsplus_user_setxattr+0x40/0x60 [ 74.687811][ T5338] ? __pfx_hfsplus_user_setxattr+0x10/0x10 [ 74.687824][ T5338] __vfs_setxattr+0x439/0x480 [ 74.687841][ T5338] __vfs_setxattr_noperm+0x12d/0x660 [ 74.687857][ T5338] vfs_setxattr+0x16b/0x2f0 [ 74.687872][ T5338] ? __pfx_vfs_setxattr+0x10/0x10 [ 74.687884][ T5338] ? mnt_get_write_access+0x223/0x2a0 [ 74.687896][ T5338] filename_setxattr+0x274/0x600 [ 74.687913][ T5338] ? __pfx_filename_setxattr+0x10/0x10 [ 74.687928][ T5338] ? getname_flags+0x1e5/0x540 [ 74.687944][ T5338] path_setxattrat+0x364/0x3a0 [ 74.687958][ T5338] ? __pfx_path_setxattrat+0x10/0x10 [ 74.687974][ T5338] ? rcu_is_watching+0x15/0xb0 [ 74.687988][ T5338] __x64_sys_setxattr+0xbc/0xe0 [ 74.688002][ T5338] do_syscall_64+0xfa/0x3b0 [ 74.688068][ T5338] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.688085][ T5338] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.688096][ T5338] ? clear_bhb_loop+0x60/0xb0 [ 74.688109][ T5338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.688119][ T5338] RIP: 0033:0x7f17b158e929 [ 74.688132][ T5338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 74.688149][ T5338] RSP: 002b:00007f17b23f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 74.688163][ T5338] RAX: ffffffffffffffda RBX: 00007f17b17b6080 RCX: 00007f17b158e929 [ 74.688171][ T5338] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000200000000340 [ 74.688178][ T5338] RBP: 00007f17b1610b39 R08: 0000000000000000 R09: 0000000000000000 [ 74.688185][ T5338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.688191][ T5338] R13: 0000000000000000 R14: 00007f17b17b6080 R15: 00007ffc14609488 [ 74.688203][ T5338] [ 74.688208][ T5338] [ 74.868642][ T5338] Allocated by task 5338: [ 74.870713][ T5338] kasan_save_track+0x3e/0x80 [ 74.872922][ T5338] __kasan_kmalloc+0x93/0xb0 [ 74.874877][ T5338] __kmalloc_noprof+0x27a/0x4f0 [ 74.876900][ T5338] __hfs_bnode_create+0xf3/0x810 [ 74.879113][ T5338] hfsplus_bnode_find+0x224/0xd20 [ 74.881409][ T5338] hfsplus_brec_find+0x15c/0x500 [ 74.883980][ T5338] hfsplus_attr_exists+0x163/0x1d0 [ 74.886433][ T5338] __hfsplus_setxattr+0x33e/0x1f40 [ 74.889112][ T5338] hfsplus_setxattr+0x11e/0x180 [ 74.891279][ T5338] hfsplus_user_setxattr+0x40/0x60 [ 74.893502][ T5338] __vfs_setxattr+0x439/0x480 [ 74.895643][ T5338] __vfs_setxattr_noperm+0x12d/0x660 [ 74.898004][ T5338] vfs_setxattr+0x16b/0x2f0 [ 74.900070][ T5338] filename_setxattr+0x274/0x600 [ 74.902326][ T5338] path_setxattrat+0x364/0x3a0 [ 74.904457][ T5338] __x64_sys_setxattr+0xbc/0xe0 [ 74.906582][ T5338] do_syscall_64+0xfa/0x3b0 [ 74.908693][ T5338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.911215][ T5338] [ 74.912476][ T5338] The buggy address belongs to the object at ffff888043c39300 [ 74.912476][ T5338] which belongs to the cache kmalloc-192 of size 192 [ 74.919517][ T5338] The buggy address is located 72 bytes to the right of [ 74.919517][ T5338] allocated 152-byte region [ffff888043c39300, ffff888043c39398) [ 74.926802][ T5338] [ 74.928096][ T5338] The buggy address belongs to the physical page: [ 74.931048][ T5338] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x43c39 [ 74.935821][ T5338] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 74.939685][ T5338] page_type: f5(slab) [ 74.941574][ T5338] raw: 04fff00000000000 ffff88801a4413c0 dead000000000122 0000000000000000 [ 74.945325][ T5338] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 74.949142][ T5338] page dumped because: kasan: bad access detected [ 74.951974][ T5338] page_owner tracks the page as allocated [ 74.954432][ T5338] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 5338, tgid 5336 (syz.0.0), ts 74636617140, free_ts 74614045131 [ 74.962765][ T5338] post_alloc_hook+0x240/0x2a0 [ 74.964893][ T5338] get_page_from_freelist+0x21e4/0x22c0 [ 74.967280][ T5338] __alloc_frozen_pages_noprof+0x181/0x370 [ 74.969855][ T5338] allocate_slab+0x65/0x3b0 [ 74.971965][ T5338] ___slab_alloc+0xbfc/0x1480 [ 74.974060][ T5338] __kmalloc_node_noprof+0x2fd/0x4e0 [ 74.976445][ T5338] alloc_slab_obj_exts+0x39/0xa0 [ 74.978705][ T5338] __memcg_slab_post_alloc_hook+0x31e/0x7f0 [ 74.981492][ T5338] kmem_cache_alloc_noprof+0x2bf/0x3c0 [ 74.983859][ T5338] alloc_buffer_head+0x2a/0x270 [ 74.986033][ T5338] folio_alloc_buffers+0x32d/0x640 [ 74.988303][ T5338] create_empty_buffers+0x3a/0x530 [ 74.990812][ T5338] block_read_full_folio+0x116/0x830 [ 74.993225][ T5338] filemap_read_folio+0x114/0x380 [ 74.995339][ T5338] do_read_cache_folio+0x350/0x590 [ 74.997589][ T5338] read_cache_page+0x5d/0x170 [ 74.999778][ T5338] page last free pid 5313 tgid 5313 stack trace: [ 75.002830][ T5338] __free_frozen_pages+0xc71/0xe70 [ 75.005072][ T5338] __slab_free+0x326/0x400 [ 75.007056][ T5338] qlist_free_all+0x97/0x140 [ 75.009207][ T5338] kasan_quarantine_reduce+0x148/0x160 [ 75.011724][ T5338] __kasan_slab_alloc+0x22/0x80 [ 75.013855][ T5338] kmem_cache_alloc_noprof+0x1c1/0x3c0 [ 75.016189][ T5338] getname_flags+0xb8/0x540 [ 75.018208][ T5338] do_sys_openat2+0xbc/0x1c0 [ 75.020394][ T5338] __x64_sys_openat+0x138/0x170 [ 75.022712][ T5338] do_syscall_64+0xfa/0x3b0 [ 75.024809][ T5338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.027161][ T5338] [ 75.028330][ T5338] Memory state around the buggy address: [ 75.030762][ T5338] ffff888043c39280: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 75.034246][ T5338] ffff888043c39300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 75.037756][ T5338] >ffff888043c39380: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc [ 75.041270][ T5338] ^ [ 75.044676][ T5338] ffff888043c39400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 75.048542][ T5338] ffff888043c39480: 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc [ 75.052061][ T5338] ================================================================== [ 75.072507][ T5338] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 75.075970][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 75.081116][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.086020][ T5338] Call Trace: [ 75.087554][ T5338] [ 75.088842][ T5338] dump_stack_lvl+0x99/0x250 [ 75.090841][ T5338] ? __asan_memcpy+0x40/0x70 [ 75.092896][ T5338] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.095442][ T5338] ? __pfx__printk+0x10/0x10 [ 75.097795][ T5338] panic+0x2db/0x790 [ 75.099685][ T5338] ? __pfx_preempt_schedule+0x10/0x10 [ 75.102215][ T5338] ? __pfx_panic+0x10/0x10 [ 75.104216][ T5338] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 75.106834][ T5338] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 75.109703][ T5338] ? hfsplus_bnode_read+0xc0/0x2a0 [ 75.112055][ T5338] check_panic_on_warn+0x89/0xb0 [ 75.114482][ T5338] ? hfsplus_bnode_read+0xc0/0x2a0 [ 75.117154][ T5338] end_report+0x78/0x160 [ 75.119178][ T5338] kasan_report+0x129/0x150 [ 75.121258][ T5338] ? hfsplus_bnode_read+0xc0/0x2a0 [ 75.123500][ T5338] hfsplus_bnode_read+0xc0/0x2a0 [ 75.125658][ T5338] hfsplus_bnode_dump+0x300/0x450 [ 75.127863][ T5338] ? __pfx_hfsplus_bnode_dump+0x10/0x10 [ 75.130386][ T5338] ? hfsplus_bnode_write_u16+0x8b/0xd0 [ 75.132766][ T5338] ? hfsplus_bnode_move+0x393/0xb90 [ 75.135041][ T5338] ? __pfx___hfsplus_brec_find+0x10/0x10 [ 75.137569][ T5338] hfsplus_brec_remove+0x480/0x550 [ 75.139846][ T5338] __hfsplus_delete_attr+0x1d4/0x360 [ 75.142159][ T5338] ? __pfx___hfsplus_delete_attr+0x10/0x10 [ 75.144688][ T5338] ? hfsplus_attr_build_key+0xee/0x260 [ 75.147094][ T5338] hfsplus_delete_attr+0x231/0x2d0 [ 75.149493][ T5338] ? __pfx_hfsplus_delete_attr+0x10/0x10 [ 75.152774][ T5338] ? hfsplus_find_init+0x8c/0x1d0 [ 75.155136][ T5338] ? hfsplus_find_init+0x15a/0x1d0 [ 75.157424][ T5338] __hfsplus_setxattr+0x37a/0x1f40 [ 75.159762][ T5338] ? is_bpf_text_address+0x26/0x2b0 [ 75.162108][ T5338] ? kernel_text_address+0xa5/0xe0 [ 75.164516][ T5338] ? unwind_get_return_address+0x4d/0x90 [ 75.167114][ T5338] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 75.169926][ T5338] ? arch_stack_walk+0xfc/0x150 [ 75.172080][ T5338] ? __pfx___hfsplus_setxattr+0x10/0x10 [ 75.174408][ T5338] ? stack_trace_save+0x9c/0xe0 [ 75.176579][ T5338] ? hfsplus_setxattr+0x68/0x180 [ 75.178734][ T5338] ? __kasan_kmalloc+0x93/0xb0 [ 75.180852][ T5338] ? hfsplus_setxattr+0x102/0x180 [ 75.183078][ T5338] hfsplus_setxattr+0x11e/0x180 [ 75.185224][ T5338] hfsplus_user_setxattr+0x40/0x60 [ 75.187519][ T5338] ? __pfx_hfsplus_user_setxattr+0x10/0x10 [ 75.190080][ T5338] __vfs_setxattr+0x439/0x480 [ 75.192292][ T5338] __vfs_setxattr_noperm+0x12d/0x660 [ 75.194577][ T5338] vfs_setxattr+0x16b/0x2f0 [ 75.196634][ T5338] ? __pfx_vfs_setxattr+0x10/0x10 [ 75.198870][ T5338] ? mnt_get_write_access+0x223/0x2a0 [ 75.201231][ T5338] filename_setxattr+0x274/0x600 [ 75.203339][ T5338] ? __pfx_filename_setxattr+0x10/0x10 [ 75.205748][ T5338] ? getname_flags+0x1e5/0x540 [ 75.208013][ T5338] path_setxattrat+0x364/0x3a0 [ 75.210293][ T5338] ? __pfx_path_setxattrat+0x10/0x10 [ 75.212859][ T5338] ? rcu_is_watching+0x15/0xb0 [ 75.215026][ T5338] __x64_sys_setxattr+0xbc/0xe0 [ 75.217165][ T5338] do_syscall_64+0xfa/0x3b0 [ 75.219251][ T5338] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.221542][ T5338] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.224162][ T5338] ? clear_bhb_loop+0x60/0xb0 [ 75.226252][ T5338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.228782][ T5338] RIP: 0033:0x7f17b158e929 [ 75.230761][ T5338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.239448][ T5338] RSP: 002b:00007f17b23f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 75.243397][ T5338] RAX: ffffffffffffffda RBX: 00007f17b17b6080 RCX: 00007f17b158e929 [ 75.247054][ T5338] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000200000000340 [ 75.250480][ T5338] RBP: 00007f17b1610b39 R08: 0000000000000000 R09: 0000000000000000 [ 75.253987][ T5338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 75.257433][ T5338] R13: 0000000000000000 R14: 00007f17b17b6080 R15: 00007ffc14609488 [ 75.260943][ T5338] [ 75.262900][ T5338] Kernel Offset: disabled [ 75.264936][ T5338] Rebooting in 86400 seconds..