./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4259046399
<...>
DUID 00:04:e6:d8:3e:4c:c1:15:84:42:dc:00:60:8c:e3:5f:26:b4
forked to background, child pid 4659
[ 30.113088][ T4660] 8021q: adding VLAN 0 to HW filter on device bond0
[ 30.124605][ T4660] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
Warning: Permanently added '10.128.1.67' (ECDSA) to the list of known hosts.
execve("./syz-executor4259046399", ["./syz-executor4259046399"], 0x7ffd3fc01b60 /* 10 vars */) = 0
brk(NULL) = 0x5555570e5000
brk(0x5555570e5c40) = 0x5555570e5c40
arch_prctl(ARCH_SET_FS, 0x5555570e5300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor4259046399", 4096) = 28
brk(0x555557106c40) = 0x555557106c40
brk(0x555557107000) = 0x555557107000
mprotect(0x7f6dfa558000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
getpid() = 4990
mkdir("./syzkaller.FOmzJv", 0700) = 0
chmod("./syzkaller.FOmzJv", 0777) = 0
chdir("./syzkaller.FOmzJv") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570e55d0) = 4991
./strace-static-x86_64: Process 4991 attached
[pid 4991] chdir("./0") = 0
[pid 4991] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 4991] setpgid(0, 0) = 0
[pid 4991] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 4991] write(3, "1000", 4) = 4
[pid 4991] close(3) = 0
[pid 4991] symlink("/dev/binderfs", "./binderfs") = 0
[pid 4991] memfd_create("syzkaller", 0) = 3
[pid 4991] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6df207f000
[pid 4991] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\xf7\x9a\x81\x47\x2b\x73\xcf\x43\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid 4991] munmap(0x7f6df207f000, 2097152) = 0
[pid 4991] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 4991] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 4991] close(3) = 0
[pid 4991] mkdir("./file0", 0777) = 0
syzkaller login: [ 55.739369][ T4991] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4991 'syz-executor425'
[ 55.778431][ T4991] loop0: detected capacity change from 0 to 4096
[pid 4991] mount("/dev/loop0", "./file0", "ntfs", 0, "") = 0
[pid 4991] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 4991] chdir("./file0") = 0
[pid 4991] ioctl(4, LOOP_CLR_FD) = 0
[pid 4991] close(4) = 0
[pid 4991] exit_group(0) = ?
[pid 4991] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4991, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} ---
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555570e6620 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./0/binderfs") = 0
[ 55.809571][ T4991] ntfs: volume version 3.1.
[ 55.817005][ T4991] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Directory index record with vcn 0xd8bfffffc15e9e0 is corrupt. Corrupt inode 0x5. Run chkdsk.
[ 55.832220][ T4991] ntfs: (device loop0): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[ 55.843734][ T4991] ntfs: (device loop0): load_system_files(): Failed to determine if Windows is hibernated. Mounting read-only. Run chkdsk.
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555570ee660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555570ee660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x5555570e6620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 4993 attached
, child_tidptr=0x5555570e55d0) = 4993
[pid 4993] chdir("./1") = 0
[pid 4993] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 4993] setpgid(0, 0) = 0
[pid 4993] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 4993] write(3, "1000", 4) = 4
[pid 4993] close(3) = 0
[pid 4993] symlink("/dev/binderfs", "./binderfs") = 0
[pid 4993] memfd_create("syzkaller", 0) = 3
[pid 4993] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6df207f000
[pid 4993] write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x04\x00\x00\x00\xf7\x9a\x81\x47\x2b\x73\xcf\x43\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152
[pid 4993] munmap(0x7f6df207f000, 2097152) = 0
[pid 4993] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 4993] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 4993] close(3) = 0
[pid 4993] mkdir("./file0", 0777) = 0
[ 55.961297][ T4993] loop0: detected capacity change from 0 to 4096
[ 55.999398][ T4993] ntfs: volume version 3.1.
[ 56.007094][ T4993] ==================================================================
[ 56.015160][ T4993] BUG: KASAN: use-after-free in ntfs_lookup_inode_by_name+0xe86/0x2ca0
[ 56.023431][ T4993] Read of size 8 at addr ffff8880740de55a by task syz-executor425/4993
[ 56.031651][ T4993]
[ 56.033964][ T4993] CPU: 0 PID: 4993 Comm: syz-executor425 Not tainted 6.4.0-rc1-syzkaller-00109-gcc3c44c9fda2 #0
[ 56.044433][ T4993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 56.054575][ T4993] Call Trace:
[ 56.057842][ T4993]
[ 56.060766][ T4993] dump_stack_lvl+0x1e7/0x2d0
[ 56.065439][ T4993] ? nf_tcp_handle_invalid+0x650/0x650
[ 56.070890][ T4993] ? panic+0x770/0x770
[ 56.074957][ T4993] ? _printk+0xd5/0x120
[ 56.079101][ T4993] print_report+0x163/0x540
[ 56.083604][ T4993] ? __kasan_slab_alloc+0x66/0x70
[ 56.088621][ T4993] ? __virt_addr_valid+0x22f/0x2e0
[ 56.093732][ T4993] ? __phys_addr+0xba/0x170
[ 56.098252][ T4993] ? ntfs_lookup_inode_by_name+0xe86/0x2ca0
[ 56.104134][ T4993] kasan_report+0x176/0x1b0
[ 56.108629][ T4993] ? ntfs_lookup_inode_by_name+0xe86/0x2ca0
[ 56.114513][ T4993] ntfs_lookup_inode_by_name+0xe86/0x2ca0
[ 56.120239][ T4993] ? clear_nonspinnable+0x60/0x60
[ 56.125255][ T4993] check_windows_hibernation_status+0xf0/0x4c0
[ 56.131408][ T4993] ? load_and_check_logfile+0xd0/0xd0
[ 56.136789][ T4993] ? load_system_files+0x3519/0x4840
[ 56.142412][ T4993] ? rcu_is_watching+0x15/0xb0
[ 56.147163][ T4993] load_system_files+0x35db/0x4840
[ 56.152275][ T4993] ? ntfs_setup_allocators+0x2d0/0x2d0
[ 56.157726][ T4993] ? free_vm_area+0x50/0x50
[ 56.162222][ T4993] ? generate_default_upcase+0x8ed/0x940
[ 56.167842][ T4993] ntfs_fill_super+0x19b3/0x2bd0
[ 56.172846][ T4993] mount_bdev+0x274/0x3a0
[ 56.177173][ T4993] ? ntfs_mount+0x40/0x40
[ 56.181508][ T4993] legacy_get_tree+0xef/0x190
[ 56.186186][ T4993] ? ntfs_rl_punch_nolock+0x15b0/0x15b0
[ 56.191735][ T4993] vfs_get_tree+0x8c/0x270
[ 56.196154][ T4993] do_new_mount+0x28f/0xae0
[ 56.200661][ T4993] ? path_mount+0x5f2/0xf80
[ 56.205156][ T4993] ? do_move_mount_old+0x170/0x170
[ 56.210256][ T4993] ? user_path_at_empty+0x12f/0x180
[ 56.215533][ T4993] __se_sys_mount+0x2d9/0x3c0
[ 56.220200][ T4993] ? __x64_sys_mount+0xc0/0xc0
[ 56.224949][ T4993] ? syscall_enter_from_user_mode+0x32/0x230
[ 56.230917][ T4993] ? __x64_sys_mount+0x20/0xc0
[ 56.235670][ T4993] do_syscall_64+0x41/0xc0
[ 56.240079][ T4993] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 56.245974][ T4993] RIP: 0033:0x7f6dfa4cdd1a
[ 56.250374][ T4993] Code: 48 c7 c2 c0 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 56.269982][ T4993] RSP: 002b:00007ffe14fc0d68 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[ 56.278385][ T4993] RAX: ffffffffffffffda RBX: 00005555570e52c0 RCX: 00007f6dfa4cdd1a
[ 56.286434][ T4993] RDX: 000000002001ec80 RSI: 000000002001ecc0 RDI: 00007ffe14fc0db0
[ 56.294392][ T4993] RBP: 0000000000000000 R08: 00007ffe14fc0df0 R09: 000000000001ec63
[ 56.302349][ T4993] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000004
[ 56.310307][ T4993] R13: 00007ffe14fc0df0 R14: 0000000000000003 R15: 00007ffe14fc0db0
[ 56.318288][ T4993]
[ 56.321296][ T4993]
[ 56.323608][ T4993] The buggy address belongs to the physical page:
[ 56.330003][ T4993] page:ffffea0001d03780 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x740de
[ 56.340138][ T4993] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 56.347246][ T4993] page_type: 0xffffffff()
[ 56.351569][ T4993] raw: 00fff00000000000 ffffea0001d172c8 ffffea0001d03748 0000000000000000
[ 56.360135][ T4993] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 56.368699][ T4993] page dumped because: kasan: bad access detected
[ 56.375111][ T4993] page_owner tracks the page as freed
[ 56.380475][ T4993] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 4991, tgid 4991 (syz-executor425), ts 55765013121, free_ts 55892914215
[ 56.398434][ T4993] post_alloc_hook+0x1e6/0x210
[ 56.403190][ T4993] get_page_from_freelist+0x321c/0x33a0
[ 56.408730][ T4993] __alloc_pages+0x255/0x670
[ 56.413312][ T4993] __folio_alloc+0x13/0x30
[ 56.417717][ T4993] vma_alloc_folio+0x48a/0x9a0
[ 56.422466][ T4993] shmem_alloc_and_acct_folio+0x5e7/0xe10
[ 56.428170][ T4993] shmem_get_folio_gfp+0x120f/0x3470
[ 56.433439][ T4993] shmem_write_begin+0x172/0x4e0
[ 56.438361][ T4993] generic_perform_write+0x300/0x5e0
[ 56.443631][ T4993] __generic_file_write_iter+0x17a/0x400
[ 56.449265][ T4993] generic_file_write_iter+0xaf/0x310
[ 56.454619][ T4993] vfs_write+0x790/0xb20
[ 56.458858][ T4993] ksys_write+0x1a0/0x2c0
[ 56.463178][ T4993] do_syscall_64+0x41/0xc0
[ 56.467585][ T4993] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 56.473464][ T4993] page last free stack trace:
[ 56.478387][ T4993] free_unref_page_prepare+0x903/0xa30
[ 56.483835][ T4993] free_unref_page_list+0x596/0x830
[ 56.489016][ T4993] release_pages+0x2193/0x2470
[ 56.493767][ T4993] __pagevec_release+0x84/0x100
[ 56.498604][ T4993] shmem_undo_range+0x6af/0x1ba0
[ 56.503552][ T4993] shmem_evict_inode+0x258/0x9f0
[ 56.508475][ T4993] evict+0x2a4/0x620
[ 56.512365][ T4993] __dentry_kill+0x436/0x650
[ 56.516940][ T4993] dentry_kill+0xbb/0x290
[ 56.521257][ T4993] dput+0x1f3/0x420
[ 56.525047][ T4993] __fput+0x5e4/0x890
[ 56.529015][ T4993] task_work_run+0x24a/0x300
[ 56.533675][ T4993] ptrace_notify+0x2cd/0x380
[ 56.538257][ T4993] syscall_exit_to_user_mode+0x157/0x280
[ 56.543886][ T4993] do_syscall_64+0x4d/0xc0
[ 56.548292][ T4993] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 56.554184][ T4993]
[ 56.556492][ T4993] Memory state around the buggy address:
[ 56.562106][ T4993] ffff8880740de400: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 56.570148][ T4993] ffff8880740de480: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 56.578194][ T4993] >ffff8880740de500: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 56.586239][ T4993] ^
[ 56.593153][ T4993] ffff8880740de580: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 56.601196][ T4993] ffff8880740de600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 56.609240][ T4993] ==================================================================
[ 56.617613][ T4993] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 56.624818][ T4993] CPU: 0 PID: 4993 Comm: syz-executor425 Not tainted 6.4.0-rc1-syzkaller-00109-gcc3c44c9fda2 #0
[ 56.635233][ T4993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 56.645275][ T4993] Call Trace:
[ 56.648541][ T4993]
[ 56.651465][ T4993] dump_stack_lvl+0x1e7/0x2d0
[ 56.656138][ T4993] ? nf_tcp_handle_invalid+0x650/0x650
[ 56.661591][ T4993] ? panic+0x770/0x770
[ 56.665651][ T4993] ? vscnprintf+0x5d/0x80
[ 56.669975][ T4993] panic+0x30f/0x770
[ 56.673887][ T4993] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 56.680032][ T4993] ? check_panic_on_warn+0x21/0xa0
[ 56.685133][ T4993] ? __memcpy_flushcache+0x2b0/0x2b0
[ 56.690407][ T4993] ? _raw_spin_unlock_irqrestore+0x12c/0x140
[ 56.696372][ T4993] ? _raw_spin_unlock+0x40/0x40
[ 56.701211][ T4993] check_panic_on_warn+0x82/0xa0
[ 56.706146][ T4993] ? ntfs_lookup_inode_by_name+0xe86/0x2ca0
[ 56.712030][ T4993] end_report+0x63/0x110
[ 56.716264][ T4993] kasan_report+0x183/0x1b0
[ 56.720764][ T4993] ? ntfs_lookup_inode_by_name+0xe86/0x2ca0
[ 56.726648][ T4993] ntfs_lookup_inode_by_name+0xe86/0x2ca0
[ 56.732365][ T4993] ? clear_nonspinnable+0x60/0x60
[ 56.737381][ T4993] check_windows_hibernation_status+0xf0/0x4c0
[ 56.743523][ T4993] ? load_and_check_logfile+0xd0/0xd0
[ 56.748881][ T4993] ? load_system_files+0x3519/0x4840
[ 56.754157][ T4993] ? rcu_is_watching+0x15/0xb0
[ 56.758908][ T4993] load_system_files+0x35db/0x4840
[ 56.764017][ T4993] ? ntfs_setup_allocators+0x2d0/0x2d0
[ 56.769467][ T4993] ? free_vm_area+0x50/0x50
[ 56.773959][ T4993] ? generate_default_upcase+0x8ed/0x940
[ 56.779577][ T4993] ntfs_fill_super+0x19b3/0x2bd0
[ 56.784515][ T4993] mount_bdev+0x274/0x3a0
[ 56.788833][ T4993] ? ntfs_mount+0x40/0x40
[ 56.793153][ T4993] legacy_get_tree+0xef/0x190
[ 56.797907][ T4993] ? ntfs_rl_punch_nolock+0x15b0/0x15b0
[ 56.803444][ T4993] vfs_get_tree+0x8c/0x270
[ 56.807861][ T4993] do_new_mount+0x28f/0xae0
[ 56.812354][ T4993] ? path_mount+0x5f2/0xf80
[ 56.816933][ T4993] ? do_move_mount_old+0x170/0x170
[ 56.822032][ T4993] ? user_path_at_empty+0x12f/0x180
[ 56.827227][ T4993] __se_sys_mount+0x2d9/0x3c0
[ 56.831895][ T4993] ? __x64_sys_mount+0xc0/0xc0
[ 56.836647][ T4993] ? syscall_enter_from_user_mode+0x32/0x230
[ 56.842788][ T4993] ? __x64_sys_mount+0x20/0xc0
[ 56.847544][ T4993] do_syscall_64+0x41/0xc0
[ 56.851954][ T4993] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 56.857839][ T4993] RIP: 0033:0x7f6dfa4cdd1a
[ 56.862239][ T4993] Code: 48 c7 c2 c0 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 56.881831][ T4993] RSP: 002b:00007ffe14fc0d68 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[ 56.890232][ T4993] RAX: ffffffffffffffda RBX: 00005555570e52c0 RCX: 00007f6dfa4cdd1a
[ 56.898189][ T4993] RDX: 000000002001ec80 RSI: 000000002001ecc0 RDI: 00007ffe14fc0db0
[ 56.906153][ T4993] RBP: 0000000000000000 R08: 00007ffe14fc0df0 R09: 000000000001ec63
[ 56.914108][ T4993] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000004
[ 56.922068][ T4993] R13: 00007ffe14fc0df0 R14: 0000000000000003 R15: 00007ffe14fc0db0
[ 56.930034][ T4993]
[ 56.933210][ T4993] Kernel Offset: disabled
[ 56.937520][ T4993] Rebooting in 86400 seconds..