program:
r0 = socket(0x10, 0x803, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000540)={0x4, 0x0, [{0x8b}, {0xa02}, {0xa6b}, {0xa1d}]})
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/58, 0xfffffffffffffe46}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/190, 0xbe}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) (async)
ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) (async)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000600)={@local, @random="6a2ddcf6177a", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5}}}}}}, 0x0)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000780)='./file1\x00', 0x1000000, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x1, 0x444a, &(0x7f00000088c0)="$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")
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000006, 0x40032, 0xffffffffffffffff, 0x0)
userfaultfd(0x801) (async)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000100)) (async)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_UNREGISTER(r3, 0x8010aa01, &(0x7f0000000040)={&(0x7f0000006000/0x2000)=nil, 0x2000}) (async)
ioctl$UFFDIO_UNREGISTER(r3, 0x8010aa01, &(0x7f0000000040)={&(0x7f0000006000/0x2000)=nil, 0x2000})
r4 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x5c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0xb, 0x7, 0x1, 0x2, 0x8, 0x6, 0x1}}, {0x6, 0x2, [0x5]}}]}]}, 0x5c}}, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f00000000c0)='./bus\x00', 0x50, &(0x7f00000009c0)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES16, @ANYRESOCT, @ANYRES8=r3, @ANYRES16, @ANYRESOCT, @ANYBLOB="a60b8f2f94f38c9c515f0a49abc35b272f81737b1b8fb0591ebfcd504abdec6006007f2d3331275784d9e3d3e712d86ca48a7445f18ab74b", @ANYRES64=r6], 0x2, 0x64c, &(0x7f0000001fc0)="$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")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) (async)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0x89f1, &(0x7f0000000900)={'ip6tnl0\x00', @random="0600002000"})
fsetxattr$trusted_overlay_redirect(r7, &(0x7f0000000200), 0x0, 0x0, 0x0)
socket$inet(0x2, 0x3, 0x2) (async)
r9 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r9, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}}}}}}, 0x0)

[   72.185393][ T4670] Bluetooth: hci0: command tx timeout
[   72.478107][ T5330] loop0: detected capacity change from 0 to 32768
[   72.524702][ T5330] ==================================================================
[   72.527889][ T5330] BUG: KASAN: use-after-free in __ocfs2_find_path+0x203/0x7e0
[   72.530836][ T5330] Read of size 4 at addr ffff88805117f000 by task syz.0.0/5330
[   72.533644][ T5330] 
[   72.534579][ T5330] CPU: 0 UID: 0 PID: 5330 Comm: syz.0.0 Not tainted 6.12.0-rc7-syzkaller #0
[   72.537953][ T5330] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.542710][ T5330] Call Trace:
[   72.543979][ T5330]  <TASK>
[   72.545035][ T5330]  dump_stack_lvl+0x241/0x360
[   72.546999][ T5330]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.548957][ T5330]  ? __pfx__printk+0x10/0x10
[   72.550613][ T5330]  ? _printk+0xd5/0x120
[   72.552096][ T5330]  ? __virt_addr_valid+0x183/0x530
[   72.553945][ T5330]  ? __virt_addr_valid+0x183/0x530
[   72.556118][ T5330]  print_report+0x169/0x550
[   72.557867][ T5330]  ? __virt_addr_valid+0x183/0x530
[   72.562847][ T5330]  ? __virt_addr_valid+0x183/0x530
[   72.564804][ T5330]  ? __virt_addr_valid+0x45f/0x530
[   72.566698][ T5330]  ? __phys_addr+0xba/0x170
[   72.568498][ T5330]  ? __ocfs2_find_path+0x203/0x7e0
[   72.570392][ T5330]  kasan_report+0x143/0x180
[   72.572138][ T5330]  ? __ocfs2_find_path+0x203/0x7e0
[   72.574047][ T5330]  __ocfs2_find_path+0x203/0x7e0
[   72.575991][ T5330]  ? __pfx_find_leaf_ins+0x10/0x10
[   72.577843][ T5330]  ? __pfx___ocfs2_find_path+0x10/0x10
[   72.579825][ T5330]  ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[   72.582167][ T5330]  ocfs2_find_leaf+0xcf/0x230
[   72.583924][ T5330]  ? __pfx_ocfs2_find_leaf+0x10/0x10
[   72.585696][ T5330]  ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[   72.588032][ T5330]  ocfs2_get_clusters_nocache+0x1ad/0xbf0
[   72.590151][ T5330]  ? __pfx_ocfs2_get_clusters_nocache+0x10/0x10
[   72.592568][ T5330]  ? ocfs2_read_inode_block+0x14c/0x1e0
[   72.594690][ T5330]  ? __pfx_ocfs2_read_inode_block+0x10/0x10
[   72.596969][ T5330]  ? do_raw_spin_unlock+0x58/0x8b0
[   72.599027][ T5330]  ocfs2_get_clusters+0x5bd/0xbd0
[   72.601029][ T5330]  ? __pfx_ocfs2_get_clusters+0x10/0x10
[   72.603157][ T5330]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   72.605455][ T5330]  ? __pfx_lock_acquire+0x10/0x10
[   72.607355][ T5330]  ? unwind_get_return_address+0x4d/0x90
[   72.609372][ T5330]  ? arch_stack_walk+0xfd/0x150
[   72.611317][ T5330]  ocfs2_extent_map_get_blocks+0x24c/0x7d0
[   72.613522][ T5330]  ? __pfx_ocfs2_extent_map_get_blocks+0x10/0x10
[   72.615937][ T5330]  ? __pfx_check_noncircular+0x10/0x10
[   72.617938][ T5330]  ocfs2_read_virt_blocks+0x313/0xb20
[   72.620086][ T5330]  ? __pfx_ocfs2_validate_dir_block+0x10/0x10
[   72.622279][ T5330]  ? __pfx_ocfs2_read_virt_blocks+0x10/0x10
[   72.624433][ T5330]  ocfs2_find_entry+0x43b/0x2780
[   72.626202][ T5330]  ? __pfx_ocfs2_find_entry+0x10/0x10
[   72.628176][ T5330]  ? mark_lock+0x2ae/0x360
[   72.629797][ T5330]  ? __lock_acquire+0x1384/0x2050
[   72.631747][ T5330]  ? format_decode+0xc5f/0x1bb0
[   72.633505][ T5330]  ? __pfx_format_decode+0x10/0x10
[   72.635456][ T5330]  ? string+0x26a/0x2b0
[   72.637036][ T5330]  ? widen_string+0x3a/0x310
[   72.638783][ T5330]  ? string+0x26a/0x2b0
[   72.640485][ T5330]  ? vsnprintf+0x1ccd/0x1da0
[   72.642202][ T5330]  ocfs2_find_files_on_disk+0xff/0x360
[   72.644203][ T5330]  ocfs2_lookup_ino_from_name+0xb1/0x1e0
[   72.646302][ T5330]  ? __pfx_ocfs2_lookup_ino_from_name+0x10/0x10
[   72.648553][ T5330]  ? kasan_save_track+0x51/0x80
[   72.650311][ T5330]  ? kasan_save_track+0x3f/0x80
[   72.652179][ T5330]  ? __kasan_kmalloc+0x98/0xb0
[   72.653890][ T5330]  ? ocfs2_new_dlm_debug+0x97/0x200
[   72.655924][ T5330]  ocfs2_get_system_file_inode+0x305/0x7b0
[   72.657951][ T5330]  ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[   72.660161][ T5330]  ocfs2_init_global_system_inodes+0x32c/0x730
[   72.662403][ T5330]  ? __pfx_ocfs2_init_global_system_inodes+0x10/0x10
[   72.664735][ T5330]  ? __kmalloc_cache_noprof+0x19c/0x2c0
[   72.666686][ T5330]  ? ocfs2_new_dlm_debug+0xb5/0x200
[   72.668528][ T5330]  ? __pfx_ocfs2_new_dlm_debug+0x10/0x10
[   72.670527][ T5330]  ? rcu_is_watching+0x15/0xb0
[   72.672403][ T5330]  ? trace_ocfs2_initialize_super+0x9e/0x230
[   72.674831][ T5330]  ocfs2_fill_super+0x2f47/0x5750
[   72.676694][ T5330]  ? __pfx_ocfs2_fill_super+0x10/0x10
[   72.678651][ T5330]  ? __pfx_validate_chain+0x10/0x10
[   72.680626][ T5330]  ? __pfx_validate_chain+0x10/0x10
[   72.682807][ T5330]  ? validate_chain+0x11e/0x5920
[   72.684621][ T5330]  ? __lock_acquire+0x1384/0x2050
[   72.686619][ T5330]  ? __pfx_validate_chain+0x10/0x10
[   72.688431][ T5330]  ? string+0x26a/0x2b0
[   72.689907][ T5330]  ? widen_string+0x3a/0x310
[   72.691647][ T5330]  ? string+0x26a/0x2b0
[   72.693182][ T5330]  ? bdev_name+0x2b1/0x3c0
[   72.694860][ T5330]  ? pointer+0x703/0x1210
[   72.696475][ T5330]  ? __pfx_pointer+0x10/0x10
[   72.698142][ T5330]  ? __pfx_format_decode+0x10/0x10
[   72.700300][ T5330]  ? __lock_acquire+0x1384/0x2050
[   72.702447][ T5330]  ? vsnprintf+0x1ccd/0x1da0
[   72.704434][ T5330]  ? snprintf+0xda/0x120
[   72.706241][ T5330]  ? __pfx_lock_release+0x10/0x10
[   72.708237][ T5330]  ? do_raw_spin_lock+0x14f/0x370
[   72.710116][ T5330]  ? __pfx_snprintf+0x10/0x10
[   72.711889][ T5330]  ? set_blocksize+0x1f9/0x360
[   72.713645][ T5330]  ? sb_set_blocksize+0x98/0xf0
[   72.715470][ T5330]  ? setup_bdev_super+0x4e6/0x5d0
[   72.717324][ T5330]  mount_bdev+0x20a/0x2d0
[   72.718983][ T5330]  ? __pfx_ocfs2_fill_super+0x10/0x10
[   72.720982][ T5330]  ? __pfx_mount_bdev+0x10/0x10
[   72.722748][ T5330]  ? vfs_parse_fs_string+0x190/0x230
[   72.724672][ T5330]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[   72.726710][ T5330]  legacy_get_tree+0xee/0x190
[   72.728431][ T5330]  ? __pfx_ocfs2_mount+0x10/0x10
[   72.730144][ T5330]  vfs_get_tree+0x90/0x2b0
[   72.731722][ T5330]  do_new_mount+0x2be/0xb40
[   72.733285][ T5330]  ? __pfx_do_new_mount+0x10/0x10
[   72.735023][ T5330]  __se_sys_mount+0x2d6/0x3c0
[   72.736666][ T5330]  ? __pfx___se_sys_mount+0x10/0x10
[   72.738452][ T5330]  ? exc_page_fault+0x590/0x8c0
[   72.740383][ T5330]  ? __x64_sys_mount+0x20/0xc0
[   72.742195][ T5330]  do_syscall_64+0xf3/0x230
[   72.743895][ T5330]  ? clear_bhb_loop+0x35/0x90
[   72.745661][ T5330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.747967][ T5330] RIP: 0033:0x7f772097feba
[   72.749598][ T5330] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.757039][ T5330] RSP: 002b:00007f7721700e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   72.760229][ T5330] RAX: ffffffffffffffda RBX: 00007f7721700ef0 RCX: 00007f772097feba
[   72.763228][ T5330] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f7721700eb0
[   72.766133][ T5330] RBP: 0000000020004440 R08: 00007f7721700ef0 R09: 0000000001000000
[   72.769139][ T5330] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[   72.772163][ T5330] R13: 00007f7721700eb0 R14: 000000000000444a R15: 00000000200005c0
[   72.775040][ T5330]  </TASK>
[   72.776203][ T5330] 
[   72.777160][ T5330] The buggy address belongs to the physical page:
[   72.779499][ T5330] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5117f
[   72.782777][ T5330] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[   72.785474][ T5330] raw: 04fff00000000000 ffffea0001446008 ffff88801fc44cb0 0000000000000000
[   72.788755][ T5330] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   72.791977][ T5330] page dumped because: kasan: bad access detected
[   72.794355][ T5330] page_owner info is not present (never set?)
[   72.796592][ T5330] 
[   72.797498][ T5330] Memory state around the buggy address:
[   72.799573][ T5330]  ffff88805117ef00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   72.802534][ T5330]  ffff88805117ef80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   72.805437][ T5330] >ffff88805117f000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   72.808436][ T5330]                    ^
[   72.809976][ T5330]  ffff88805117f080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   72.813034][ T5330]  ffff88805117f100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   72.815952][ T5330] ==================================================================
[   72.848405][ T5330] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   72.851099][ T5330] CPU: 0 UID: 0 PID: 5330 Comm: syz.0.0 Not tainted 6.12.0-rc7-syzkaller #0
[   72.854319][ T5330] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.858265][ T5330] Call Trace:
[   72.859528][ T5330]  <TASK>
[   72.860621][ T5330]  dump_stack_lvl+0x241/0x360
[   72.862414][ T5330]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.864374][ T5330]  ? __pfx__printk+0x10/0x10
[   72.865832][ T5330]  ? preempt_schedule+0xe1/0xf0
[   72.867423][ T5330]  ? vscnprintf+0x5d/0x90
[   72.868808][ T5330]  panic+0x349/0x880
[   72.870060][ T5330]  ? check_panic_on_warn+0x21/0xb0
[   72.871837][ T5330]  ? __pfx_panic+0x10/0x10
[   72.873523][ T5330]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[   72.875704][ T5330]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   72.877834][ T5330]  ? print_report+0x502/0x550
[   72.879480][ T5330]  check_panic_on_warn+0x86/0xb0
[   72.881212][ T5330]  ? __ocfs2_find_path+0x203/0x7e0
[   72.882997][ T5330]  end_report+0x77/0x160
[   72.884463][ T5330]  kasan_report+0x154/0x180
[   72.886018][ T5330]  ? __ocfs2_find_path+0x203/0x7e0
[   72.887920][ T5330]  __ocfs2_find_path+0x203/0x7e0
[   72.889807][ T5330]  ? __pfx_find_leaf_ins+0x10/0x10
[   72.891685][ T5330]  ? __pfx___ocfs2_find_path+0x10/0x10
[   72.893735][ T5330]  ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[   72.896108][ T5330]  ocfs2_find_leaf+0xcf/0x230
[   72.897950][ T5330]  ? __pfx_ocfs2_find_leaf+0x10/0x10
[   72.899960][ T5330]  ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[   72.902375][ T5330]  ocfs2_get_clusters_nocache+0x1ad/0xbf0
[   72.904534][ T5330]  ? __pfx_ocfs2_get_clusters_nocache+0x10/0x10
[   72.906798][ T5330]  ? ocfs2_read_inode_block+0x14c/0x1e0
[   72.908858][ T5330]  ? __pfx_ocfs2_read_inode_block+0x10/0x10
[   72.911060][ T5330]  ? do_raw_spin_unlock+0x58/0x8b0
[   72.912977][ T5330]  ocfs2_get_clusters+0x5bd/0xbd0
[   72.914830][ T5330]  ? __pfx_ocfs2_get_clusters+0x10/0x10
[   72.916866][ T5330]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   72.918838][ T5330]  ? __pfx_lock_acquire+0x10/0x10
[   72.920441][ T5330]  ? unwind_get_return_address+0x4d/0x90
[   72.922459][ T5330]  ? arch_stack_walk+0xfd/0x150
[   72.924287][ T5330]  ocfs2_extent_map_get_blocks+0x24c/0x7d0
[   72.926396][ T5330]  ? __pfx_ocfs2_extent_map_get_blocks+0x10/0x10
[   72.928819][ T5330]  ? __pfx_check_noncircular+0x10/0x10
[   72.930795][ T5330]  ocfs2_read_virt_blocks+0x313/0xb20
[   72.932704][ T5330]  ? __pfx_ocfs2_validate_dir_block+0x10/0x10
[   72.934886][ T5330]  ? __pfx_ocfs2_read_virt_blocks+0x10/0x10
[   72.937040][ T5330]  ocfs2_find_entry+0x43b/0x2780
[   72.938841][ T5330]  ? __pfx_ocfs2_find_entry+0x10/0x10
[   72.940811][ T5330]  ? mark_lock+0x2ae/0x360
[   72.942486][ T5330]  ? __lock_acquire+0x1384/0x2050
[   72.944363][ T5330]  ? format_decode+0xc5f/0x1bb0
[   72.946178][ T5330]  ? __pfx_format_decode+0x10/0x10
[   72.948071][ T5330]  ? string+0x26a/0x2b0
[   72.949493][ T5330]  ? widen_string+0x3a/0x310
[   72.951103][ T5330]  ? string+0x26a/0x2b0
[   72.952562][ T5330]  ? vsnprintf+0x1ccd/0x1da0
[   72.954264][ T5330]  ocfs2_find_files_on_disk+0xff/0x360
[   72.956202][ T5330]  ocfs2_lookup_ino_from_name+0xb1/0x1e0
[   72.958252][ T5330]  ? __pfx_ocfs2_lookup_ino_from_name+0x10/0x10
[   72.960554][ T5330]  ? kasan_save_track+0x51/0x80
[   72.962330][ T5330]  ? kasan_save_track+0x3f/0x80
[   72.964144][ T5330]  ? __kasan_kmalloc+0x98/0xb0
[   72.965957][ T5330]  ? ocfs2_new_dlm_debug+0x97/0x200
[   72.967906][ T5330]  ocfs2_get_system_file_inode+0x305/0x7b0
[   72.970052][ T5330]  ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[   72.972391][ T5330]  ocfs2_init_global_system_inodes+0x32c/0x730
[   72.974659][ T5330]  ? __pfx_ocfs2_init_global_system_inodes+0x10/0x10
[   72.977187][ T5330]  ? __kmalloc_cache_noprof+0x19c/0x2c0
[   72.979259][ T5330]  ? ocfs2_new_dlm_debug+0xb5/0x200
[   72.981283][ T5330]  ? __pfx_ocfs2_new_dlm_debug+0x10/0x10
[   72.983383][ T5330]  ? rcu_is_watching+0x15/0xb0
[   72.985318][ T5330]  ? trace_ocfs2_initialize_super+0x9e/0x230
[   72.987627][ T5330]  ocfs2_fill_super+0x2f47/0x5750
[   72.989555][ T5330]  ? __pfx_ocfs2_fill_super+0x10/0x10
[   72.991620][ T5330]  ? __pfx_validate_chain+0x10/0x10
[   72.993596][ T5330]  ? __pfx_validate_chain+0x10/0x10
[   72.995652][ T5330]  ? validate_chain+0x11e/0x5920
[   72.997590][ T5330]  ? __lock_acquire+0x1384/0x2050
[   72.999569][ T5330]  ? __pfx_validate_chain+0x10/0x10
[   73.001690][ T5330]  ? string+0x26a/0x2b0
[   73.003410][ T5330]  ? widen_string+0x3a/0x310
[   73.005327][ T5330]  ? string+0x26a/0x2b0
[   73.007014][ T5330]  ? bdev_name+0x2b1/0x3c0
[   73.008911][ T5330]  ? pointer+0x703/0x1210
[   73.010608][ T5330]  ? __pfx_pointer+0x10/0x10
[   73.012440][ T5330]  ? __pfx_format_decode+0x10/0x10
[   73.014483][ T5330]  ? __lock_acquire+0x1384/0x2050
[   73.016445][ T5330]  ? vsnprintf+0x1ccd/0x1da0
[   73.018264][ T5330]  ? snprintf+0xda/0x120
[   73.019929][ T5330]  ? __pfx_lock_release+0x10/0x10
[   73.022042][ T5330]  ? do_raw_spin_lock+0x14f/0x370
[   73.023848][ T5330]  ? __pfx_snprintf+0x10/0x10
[   73.025437][ T5330]  ? set_blocksize+0x1f9/0x360
[   73.027108][ T5330]  ? sb_set_blocksize+0x98/0xf0
[   73.028866][ T5330]  ? setup_bdev_super+0x4e6/0x5d0
[   73.030593][ T5330]  mount_bdev+0x20a/0x2d0
[   73.032252][ T5330]  ? __pfx_ocfs2_fill_super+0x10/0x10
[   73.034099][ T5330]  ? __pfx_mount_bdev+0x10/0x10
[   73.036009][ T5330]  ? vfs_parse_fs_string+0x190/0x230
[   73.038059][ T5330]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[   73.040194][ T5330]  legacy_get_tree+0xee/0x190
[   73.041908][ T5330]  ? __pfx_ocfs2_mount+0x10/0x10
[   73.043740][ T5330]  vfs_get_tree+0x90/0x2b0
[   73.045456][ T5330]  do_new_mount+0x2be/0xb40
[   73.047064][ T5330]  ? __pfx_do_new_mount+0x10/0x10
[   73.048805][ T5330]  __se_sys_mount+0x2d6/0x3c0
[   73.050448][ T5330]  ? __pfx___se_sys_mount+0x10/0x10
[   73.052327][ T5330]  ? exc_page_fault+0x590/0x8c0
[   73.054000][ T5330]  ? __x64_sys_mount+0x20/0xc0
[   73.055863][ T5330]  do_syscall_64+0xf3/0x230
[   73.057605][ T5330]  ? clear_bhb_loop+0x35/0x90
[   73.059430][ T5330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.061744][ T5330] RIP: 0033:0x7f772097feba
[   73.063456][ T5330] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.070583][ T5330] RSP: 002b:00007f7721700e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   73.073851][ T5330] RAX: ffffffffffffffda RBX: 00007f7721700ef0 RCX: 00007f772097feba
[   73.076809][ T5330] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f7721700eb0
[   73.079762][ T5330] RBP: 0000000020004440 R08: 00007f7721700ef0 R09: 0000000001000000
[   73.082689][ T5330] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[   73.085676][ T5330] R13: 00007f7721700eb0 R14: 000000000000444a R15: 00000000200005c0
[   73.088673][ T5330]  </TASK>
[   73.090126][ T5330] Kernel Offset: disabled
[   73.091782][ T5330] Rebooting in 86400 seconds..