./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor998787170
<...>
forked to background, child pid 4642
no interfaces have a carrier
[ 24.124905][ T4643] 8021q: adding VLAN 0 to HW filter on device bond0
[ 24.135123][ T4643] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
Warning: Permanently added '10.128.1.120' (ECDSA) to the list of known hosts.
execve("./syz-executor998787170", ["./syz-executor998787170"], 0x7ffd75af0be0 /* 10 vars */) = 0
brk(NULL) = 0x5555569ed000
brk(0x5555569edc40) = 0x5555569edc40
arch_prctl(ARCH_SET_FS, 0x5555569ed300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor998787170", 4096) = 27
brk(0x555556a0ec40) = 0x555556a0ec40
brk(0x555556a0f000) = 0x555556a0f000
mprotect(0x7faa7ecf0000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
getpid() = 5064
mkdir("./syzkaller.ePSiZ7", 0700) = 0
chmod("./syzkaller.ePSiZ7", 0777) = 0
chdir("./syzkaller.ePSiZ7") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555569ed5d0) = 5065
./strace-static-x86_64: Process 5065 attached
[pid 5065] chdir("./0") = 0
[pid 5065] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5065] setpgid(0, 0) = 0
[pid 5065] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5065] write(3, "1000", 4) = 4
[pid 5065] close(3) = 0
[pid 5065] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5065] memfd_create("syzkaller", 0) = 3
[pid 5065] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa7682f000
[pid 5065] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5065] munmap(0x7faa7682f000, 16777216) = 0
[pid 5065] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5065] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5065] close(3) = 0
[pid 5065] mkdir("./file0", 0777) = 0
syzkaller login: [ 48.689791][ T5065] loop0: detected capacity change from 0 to 32768
[ 48.701007][ T5065] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor998 (5065)
[ 48.719713][ T5065] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[ 48.728288][ T5065] BTRFS info (device loop0): using free space tree
[pid 5065] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5065] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5065] ioctl(4, LOOP_CLR_FD) = 0
[pid 5065] close(4) = 0
[pid 5065] fcntl(3, F_DUPFD, 3) = 4
[pid 5065] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[pid 5065] write(5, "17", 2) = 2
[ 48.748033][ T5065] BTRFS info (device loop0): enabling ssd optimizations
[ 48.755111][ T5065] BTRFS info (device loop0): auto enabling async discard
[ 48.774504][ T5065] FAULT_INJECTION: forcing a failure.
[ 48.774504][ T5065] name failslab, interval 1, probability 0, space 0, times 1
[ 48.787549][ T5065] CPU: 0 PID: 5065 Comm: syz-executor998 Not tainted 6.2.0-rc6-syzkaller-00239-g0136d86b7852 #0
[ 48.797991][ T5065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 48.808064][ T5065] Call Trace:
[ 48.811357][ T5065]
[ 48.814302][ T5065] dump_stack_lvl+0xd1/0x138
[ 48.818936][ T5065] should_fail_ex.cold+0x5/0xa
[ 48.823741][ T5065] ? start_transaction+0x345/0x1410
[ 48.828958][ T5065] should_failslab+0x9/0x20
[ 48.833494][ T5065] kmem_cache_alloc+0x5a/0x430
[ 48.838313][ T5065] ? btrfs_delayed_refs_rsv_refill+0xd5/0x1a0
[ 48.844456][ T5065] start_transaction+0x345/0x1410
[ 48.849528][ T5065] btrfs_mksubvol+0xbba/0x1550
[ 48.854335][ T5065] ? create_subvol+0x13f0/0x13f0
[ 48.859307][ T5065] btrfs_mksnapshot+0xaf/0xf0
[ 48.864026][ T5065] __btrfs_ioctl_snap_create+0x3c1/0x430
[ 48.869702][ T5065] btrfs_ioctl_snap_create_v2+0x24e/0x4d0
[ 48.875475][ T5065] btrfs_ioctl+0x34c9/0x5830
[ 48.880096][ T5065] ? tomoyo_path_number_perm+0x166/0x570
[ 48.885737][ T5065] ? tomoyo_execute_permission+0x4a0/0x4a0
[ 48.891551][ T5065] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 48.897983][ T5065] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 48.903892][ T5065] ? do_vfs_ioctl+0x132/0x15b0
[ 48.908670][ T5065] ? vfs_fileattr_set+0xbe0/0xbe0
[ 48.913720][ T5065] ? find_held_lock+0x2d/0x110
[ 48.918494][ T5065] ? name_to_dev_t+0x111/0x990
[ 48.923433][ T5065] ? lock_downgrade+0x6e0/0x6e0
[ 48.928309][ T5065] ? bpf_lsm_file_ioctl+0x9/0x10
[ 48.933253][ T5065] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 48.939775][ T5065] __x64_sys_ioctl+0x197/0x210
[ 48.944554][ T5065] do_syscall_64+0x39/0xb0
[ 48.948980][ T5065] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 48.954881][ T5065] RIP: 0033:0x7faa7ec7ca29
[ 48.959298][ T5065] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 48.978916][ T5065] RSP: 002b:00007ffcdd8ca268 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 48.987341][ T5065] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007faa7ec7ca29
[pid 5065] ioctl(4, BTRFS_IOC_SNAP_CREATE_V2, {fd=4, flags=BTRFS_SUBVOL_QGROUP_INHERIT, size=72, qgroup_inherit={flags=0, num_qgroups=0, num_ref_copies=0, num_excl_copies=0, lim={flags=0, max_rfer=0, max_excl=0, rsv_rfer=0, rsv_excl=0}, ...}, name="\x05"}) = -1 ENOMEM (Cannot allocate memory)
[pid 5065] exit_group(0) = ?
[pid 5065] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5065, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=12 /* 0.12 s */} ---
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555569ee620 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./0/binderfs") = 0
[ 48.995313][ T5065] RDX: 0000000020002d40 RSI: 0000000050009417 RDI: 0000000000000004
[ 49.003284][ T5065] RBP: 00007ffcdd8ca290 R08: 0000000000000002 R09: 00007ffcdd8ca2a0
[ 49.011277][ T5065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 49.019251][ T5065] R13: 00007ffcdd8ca2d0 R14: 00007ffcdd8ca2b0 R15: 0000000000000000
[ 49.027246][ T5065]
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555569f6660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555569f6660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x5555569ee620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555569ed5d0) = 5087
./strace-static-x86_64: Process 5087 attached
[pid 5087] chdir("./1") = 0
[pid 5087] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5087] setpgid(0, 0) = 0
[pid 5087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5087] write(3, "1000", 4) = 4
[pid 5087] close(3) = 0
[pid 5087] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5087] memfd_create("syzkaller", 0) = 3
[pid 5087] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa7682f000
[pid 5087] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5087] munmap(0x7faa7682f000, 16777216) = 0
[pid 5087] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5087] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5087] close(3) = 0
[pid 5087] mkdir("./file0", 0777) = 0
[ 49.268602][ T5087] loop0: detected capacity change from 0 to 32768
[ 49.280256][ T5087] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[ 49.288789][ T5087] BTRFS info (device loop0): using free space tree
[ 49.306592][ T5087] BTRFS info (device loop0): enabling ssd optimizations
[pid 5087] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5087] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5087] ioctl(4, LOOP_CLR_FD) = 0
[pid 5087] close(4) = 0
[pid 5087] fcntl(3, F_DUPFD, 3) = 4
[pid 5087] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[pid 5087] write(5, "17", 2) = 2
[ 49.313728][ T5087] BTRFS info (device loop0): auto enabling async discard
[ 49.334055][ T5087] FAULT_INJECTION: forcing a failure.
[ 49.334055][ T5087] name failslab, interval 1, probability 0, space 0, times 0
[ 49.347268][ T5087] CPU: 0 PID: 5087 Comm: syz-executor998 Not tainted 6.2.0-rc6-syzkaller-00239-g0136d86b7852 #0
[ 49.357791][ T5087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 49.367851][ T5087] Call Trace:
[ 49.371130][ T5087]
[ 49.374062][ T5087] dump_stack_lvl+0xd1/0x138
[ 49.378669][ T5087] should_fail_ex.cold+0x5/0xa
[ 49.383449][ T5087] ? btrfs_mksubvol+0x9d9/0x1550
[ 49.388400][ T5087] should_failslab+0x9/0x20
[ 49.392924][ T5087] kmem_cache_alloc+0x5a/0x430
[ 49.397719][ T5087] btrfs_mksubvol+0x9d9/0x1550
[ 49.402499][ T5087] ? create_subvol+0x13f0/0x13f0
[ 49.407451][ T5087] btrfs_mksnapshot+0xaf/0xf0
[ 49.412137][ T5087] __btrfs_ioctl_snap_create+0x3c1/0x430
[ 49.417787][ T5087] btrfs_ioctl_snap_create_v2+0x24e/0x4d0
[ 49.423526][ T5087] btrfs_ioctl+0x34c9/0x5830
[ 49.428125][ T5087] ? tomoyo_path_number_perm+0x166/0x570
[ 49.433826][ T5087] ? tomoyo_execute_permission+0x4a0/0x4a0
[ 49.439765][ T5087] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 49.446201][ T5087] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 49.452125][ T5087] ? do_vfs_ioctl+0x132/0x15b0
[ 49.456917][ T5087] ? vfs_fileattr_set+0xbe0/0xbe0
[ 49.462008][ T5087] ? find_held_lock+0x2d/0x110
[ 49.466967][ T5087] ? name_to_dev_t+0x111/0x990
[ 49.471789][ T5087] ? lock_downgrade+0x6e0/0x6e0
[ 49.476662][ T5087] ? bpf_lsm_file_ioctl+0x9/0x10
[ 49.481612][ T5087] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 49.488043][ T5087] __x64_sys_ioctl+0x197/0x210
[ 49.492825][ T5087] do_syscall_64+0x39/0xb0
[ 49.497256][ T5087] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 49.503164][ T5087] RIP: 0033:0x7faa7ec7ca29
[ 49.507582][ T5087] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 49.527550][ T5087] RSP: 002b:00007ffcdd8ca268 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 49.535973][ T5087] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007faa7ec7ca29
[ 49.543951][ T5087] RDX: 0000000020002d40 RSI: 0000000050009417 RDI: 0000000000000004
[ 49.551925][ T5087] RBP: 00007ffcdd8ca290 R08: 0000000000000002 R09: 00007ffcdd8ca2a0
[ 49.559907][ T5087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[pid 5087] ioctl(4, BTRFS_IOC_SNAP_CREATE_V2, {fd=4, flags=BTRFS_SUBVOL_QGROUP_INHERIT, size=72, qgroup_inherit={flags=0, num_qgroups=0, num_ref_copies=0, num_excl_copies=0, lim={flags=0, max_rfer=0, max_excl=0, rsv_rfer=0, rsv_excl=0}, ...}, name="\x05"}) = -1 ENOMEM (Cannot allocate memory)
[pid 5087] exit_group(0) = ?
[pid 5087] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5087, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555569ee620 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./1/binderfs") = 0
[ 49.567885][ T5087] R13: 00007ffcdd8ca2d0 R14: 00007ffcdd8ca2b0 R15: 0000000000000001
[ 49.575881][ T5087]
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555569f6660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555569f6660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./1/file0") = 0
getdents64(3, 0x5555569ee620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./1") = 0
mkdir("./2", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555569ed5d0) = 5110
./strace-static-x86_64: Process 5110 attached
[pid 5110] chdir("./2") = 0
[pid 5110] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5110] setpgid(0, 0) = 0
[pid 5110] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5110] write(3, "1000", 4) = 4
[pid 5110] close(3) = 0
[pid 5110] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5110] memfd_create("syzkaller", 0) = 3
[pid 5110] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa7682f000
[pid 5110] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5110] munmap(0x7faa7682f000, 16777216) = 0
[pid 5110] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5110] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5110] close(3) = 0
[pid 5110] mkdir("./file0", 0777) = 0
[ 49.808581][ T5110] loop0: detected capacity change from 0 to 32768
[ 49.821370][ T5110] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[ 49.830150][ T5110] BTRFS info (device loop0): using free space tree
[ 49.847823][ T5110] BTRFS info (device loop0): enabling ssd optimizations
[pid 5110] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5110] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5110] ioctl(4, LOOP_CLR_FD) = 0
[pid 5110] close(4) = 0
[pid 5110] fcntl(3, F_DUPFD, 3) = 4
[pid 5110] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[pid 5110] write(5, "17", 2) = 2
[ 49.854816][ T5110] BTRFS info (device loop0): auto enabling async discard
[ 49.873730][ T5110] FAULT_INJECTION: forcing a failure.
[ 49.873730][ T5110] name failslab, interval 1, probability 0, space 0, times 0
[ 49.887069][ T5110] CPU: 0 PID: 5110 Comm: syz-executor998 Not tainted 6.2.0-rc6-syzkaller-00239-g0136d86b7852 #0
[ 49.897532][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 49.907616][ T5110] Call Trace:
[ 49.910925][ T5110]
[ 49.913872][ T5110] dump_stack_lvl+0xd1/0x138
[ 49.918496][ T5110] should_fail_ex.cold+0x5/0xa
[ 49.923294][ T5110] ? start_transaction+0x345/0x1410
[ 49.928524][ T5110] should_failslab+0x9/0x20
[ 49.933084][ T5110] kmem_cache_alloc+0x5a/0x430
[ 49.937903][ T5110] ? btrfs_delayed_refs_rsv_refill+0xd5/0x1a0
[ 49.944100][ T5110] start_transaction+0x345/0x1410
[ 49.949169][ T5110] btrfs_mksubvol+0xbba/0x1550
[ 49.953976][ T5110] ? create_subvol+0x13f0/0x13f0
[ 49.958954][ T5110] btrfs_mksnapshot+0xaf/0xf0
[ 49.963760][ T5110] __btrfs_ioctl_snap_create+0x3c1/0x430
[ 49.969697][ T5110] btrfs_ioctl_snap_create_v2+0x24e/0x4d0
[ 49.975460][ T5110] btrfs_ioctl+0x34c9/0x5830
[ 49.980256][ T5110] ? tomoyo_path_number_perm+0x166/0x570
[ 49.985979][ T5110] ? tomoyo_execute_permission+0x4a0/0x4a0
[ 49.991790][ T5110] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 49.998209][ T5110] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 50.004121][ T5110] ? do_vfs_ioctl+0x132/0x15b0
[ 50.008900][ T5110] ? vfs_fileattr_set+0xbe0/0xbe0
[ 50.014027][ T5110] ? find_held_lock+0x2d/0x110
[ 50.018801][ T5110] ? name_to_dev_t+0x111/0x990
[ 50.023562][ T5110] ? lock_downgrade+0x6e0/0x6e0
[ 50.028429][ T5110] ? bpf_lsm_file_ioctl+0x9/0x10
[ 50.033382][ T5110] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 50.039811][ T5110] __x64_sys_ioctl+0x197/0x210
[ 50.044586][ T5110] do_syscall_64+0x39/0xb0
[ 50.049012][ T5110] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 50.054923][ T5110] RIP: 0033:0x7faa7ec7ca29
[ 50.059333][ T5110] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 50.078984][ T5110] RSP: 002b:00007ffcdd8ca268 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 50.087406][ T5110] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007faa7ec7ca29
[ 50.095490][ T5110] RDX: 0000000020002d40 RSI: 0000000050009417 RDI: 0000000000000004
[pid 5110] ioctl(4, BTRFS_IOC_SNAP_CREATE_V2, {fd=4, flags=BTRFS_SUBVOL_QGROUP_INHERIT, size=72, qgroup_inherit={flags=0, num_qgroups=0, num_ref_copies=0, num_excl_copies=0, lim={flags=0, max_rfer=0, max_excl=0, rsv_rfer=0, rsv_excl=0}, ...}, name="\x05"}) = -1 ENOMEM (Cannot allocate memory)
[pid 5110] exit_group(0) = ?
[pid 5110] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5110, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=17 /* 0.17 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555569ee620 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./2/binderfs") = 0
[ 50.103551][ T5110] RBP: 00007ffcdd8ca290 R08: 0000000000000002 R09: 00007ffcdd8ca2a0
[ 50.111802][ T5110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 50.119809][ T5110] R13: 00007ffcdd8ca2d0 R14: 00007ffcdd8ca2b0 R15: 0000000000000002
[ 50.127829][ T5110]
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555569f6660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555569f6660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./2/file0") = 0
getdents64(3, 0x5555569ee620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./2") = 0
mkdir("./3", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555569ed5d0) = 5128
./strace-static-x86_64: Process 5128 attached
[pid 5128] chdir("./3") = 0
[pid 5128] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5128] setpgid(0, 0) = 0
[pid 5128] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5128] write(3, "1000", 4) = 4
[pid 5128] close(3) = 0
[pid 5128] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5128] memfd_create("syzkaller", 0) = 3
[pid 5128] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa7682f000
[pid 5128] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5128] munmap(0x7faa7682f000, 16777216) = 0
[pid 5128] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5128] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5128] close(3) = 0
[pid 5128] mkdir("./file0", 0777) = 0
[ 50.326507][ T5128] loop0: detected capacity change from 0 to 32768
[ 50.337886][ T5128] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[ 50.346865][ T5128] BTRFS info (device loop0): using free space tree
[ 50.368206][ T5128] BTRFS info (device loop0): enabling ssd optimizations
[pid 5128] mount("/dev/loop0", "./file0", "btrfs", 0, "") = 0
[pid 5128] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5128] ioctl(4, LOOP_CLR_FD) = 0
[pid 5128] close(4) = 0
[pid 5128] fcntl(3, F_DUPFD, 3) = 4
[pid 5128] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5
[pid 5128] write(5, "17", 2) = 2
[ 50.375273][ T5128] BTRFS info (device loop0): auto enabling async discard
[ 50.391518][ T5128] FAULT_INJECTION: forcing a failure.
[ 50.391518][ T5128] name failslab, interval 1, probability 0, space 0, times 0
[ 50.405262][ T5128] CPU: 1 PID: 5128 Comm: syz-executor998 Not tainted 6.2.0-rc6-syzkaller-00239-g0136d86b7852 #0
[ 50.415753][ T5128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 50.425836][ T5128] Call Trace:
[ 50.429136][ T5128]
[ 50.432110][ T5128] dump_stack_lvl+0xd1/0x138
[ 50.436753][ T5128] should_fail_ex.cold+0x5/0xa
[ 50.441549][ T5128] ? btrfs_set_inode_index_count+0xd5/0x340
[ 50.447478][ T5128] should_failslab+0x9/0x20
[ 50.452018][ T5128] kmem_cache_alloc+0x5a/0x430
[ 50.456829][ T5128] btrfs_set_inode_index_count+0xd5/0x340
[ 50.462586][ T5128] ? get_extent_allocation_hint+0x130/0x130
[ 50.468555][ T5128] ? btrfs_get_delayed_node+0xfd/0x5b0
[ 50.474123][ T5128] ? ktime_get_resolution_ns+0x1f/0x1a0
[ 50.479720][ T5128] ? btrfs_async_run_delayed_root+0x720/0x720
[ 50.485830][ T5128] ? current_time+0x1fe/0x2c0
[ 50.490542][ T5128] btrfs_set_inode_index+0xe9/0x150
[ 50.495774][ T5128] create_pending_snapshot+0x877/0x2110
[ 50.501360][ T5128] ? btrfs_write_and_wait_transaction+0x280/0x280
[ 50.507828][ T5128] ? rcu_read_lock_sched_held+0x3e/0x70
[ 50.513514][ T5128] ? trace_contention_end+0x153/0x1e0
[ 50.518926][ T5128] ? __mutex_lock+0x231/0x1360
[ 50.523816][ T5128] ? btrfs_commit_transaction+0xa9e/0x36c0
[ 50.529685][ T5128] ? lock_release+0x810/0x810
[ 50.534403][ T5128] ? btrfs_commit_transaction+0x7ba/0x36c0
[ 50.540256][ T5128] create_pending_snapshots+0x174/0x2c0
[ 50.545863][ T5128] btrfs_commit_transaction+0xaa6/0x36c0
[ 50.551504][ T5128] ? wait_for_completion_io_timeout+0x20/0x20
[ 50.557607][ T5128] ? btrfs_commit_transaction_async+0x3f0/0x3f0
[ 50.563886][ T5128] ? start_transaction+0x2aa/0x1410
[ 50.569101][ T5128] btrfs_mksubvol+0xc09/0x1550
[ 50.573878][ T5128] ? create_subvol+0x13f0/0x13f0
[ 50.578856][ T5128] btrfs_mksnapshot+0xaf/0xf0
[ 50.583568][ T5128] __btrfs_ioctl_snap_create+0x3c1/0x430
[ 50.589245][ T5128] btrfs_ioctl_snap_create_v2+0x24e/0x4d0
[ 50.594989][ T5128] btrfs_ioctl+0x34c9/0x5830
[ 50.599601][ T5128] ? tomoyo_path_number_perm+0x166/0x570
[ 50.605246][ T5128] ? tomoyo_execute_permission+0x4a0/0x4a0
[ 50.611064][ T5128] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 50.617492][ T5128] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 50.623504][ T5128] ? do_vfs_ioctl+0x132/0x15b0
[ 50.628286][ T5128] ? vfs_fileattr_set+0xbe0/0xbe0
[ 50.633345][ T5128] ? find_held_lock+0x2d/0x110
[ 50.638154][ T5128] ? name_to_dev_t+0x111/0x990
[ 50.643007][ T5128] ? lock_downgrade+0x6e0/0x6e0
[ 50.647940][ T5128] ? bpf_lsm_file_ioctl+0x9/0x10
[ 50.652880][ T5128] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 50.659390][ T5128] __x64_sys_ioctl+0x197/0x210
[ 50.664164][ T5128] do_syscall_64+0x39/0xb0
[ 50.668584][ T5128] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 50.674493][ T5128] RIP: 0033:0x7faa7ec7ca29
[ 50.678928][ T5128] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 50.698539][ T5128] RSP: 002b:00007ffcdd8ca268 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 50.706953][ T5128] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007faa7ec7ca29
[ 50.714918][ T5128] RDX: 0000000020002d40 RSI: 0000000050009417 RDI: 0000000000000004
[ 50.722885][ T5128] RBP: 00007ffcdd8ca290 R08: 0000000000000002 R09: 00007ffcdd8ca2a0
[ 50.730877][ T5128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 50.738943][ T5128] R13: 00007ffcdd8ca2d0 R14: 00007ffcdd8ca2b0 R15: 0000000000000003
[ 50.746944][ T5128]
[ 50.750640][ T5128] ------------[ cut here ]------------
[ 50.756114][ T5128] kernel BUG at fs/btrfs/transaction.c:1697!
[ 50.762152][ T5128] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 50.768209][ T5128] CPU: 1 PID: 5128 Comm: syz-executor998 Not tainted 6.2.0-rc6-syzkaller-00239-g0136d86b7852 #0
[ 50.778611][ T5128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 50.788651][ T5128] RIP: 0010:create_pending_snapshot+0x179f/0x2110
[ 50.795064][ T5128] Code: c1 84 d2 0f 95 c0 84 c1 0f 85 19 07 00 00 48 8b 85 40 fe ff ff 48 c7 80 3f 01 00 00 00 00 00 00 e9 c9 f4 ff ff e8 81 5d 1d fe <0f> 0b e8 7a 5d 1d fe 48 8b 95 f8 fd ff ff 45 89 f5 48 b8 00 00 00
[ 50.814670][ T5128] RSP: 0018:ffffc900041ff5d0 EFLAGS: 00010293
[ 50.820728][ T5128] RAX: 0000000000000000 RBX: ffff888029bfb200 RCX: 0000000000000000
[ 50.828686][ T5128] RDX: ffff8880220457c0 RSI: ffffffff8363955f RDI: 0000000000000005
[ 50.836644][ T5128] RBP: ffffc900041ff838 R08: 0000000000000005 R09: 0000000000000000
[ 50.844602][ T5128] R10: 00000000fffffff4 R11: 0000000000000000 R12: ffff8880724d92a0
[ 50.852560][ T5128] R13: 00000000fffffff4 R14: 0000000000000000 R15: ffff88807914e000
[ 50.860523][ T5128] FS: 00005555569ed300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 50.869442][ T5128] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 50.876017][ T5128] CR2: 0000000020002d48 CR3: 0000000027805000 CR4: 0000000000350ee0
[ 50.883978][ T5128] Call Trace:
[ 50.887244][ T5128]
[ 50.890165][ T5128] ? btrfs_write_and_wait_transaction+0x280/0x280
[ 50.896578][ T5128] ? rcu_read_lock_sched_held+0x3e/0x70
[ 50.902123][ T5128] ? trace_contention_end+0x153/0x1e0
[ 50.907492][ T5128] ? __mutex_lock+0x231/0x1360
[ 50.912254][ T5128] ? btrfs_commit_transaction+0xa9e/0x36c0
[ 50.918050][ T5128] ? lock_release+0x810/0x810
[ 50.922814][ T5128] ? btrfs_commit_transaction+0x7ba/0x36c0
[ 50.928616][ T5128] create_pending_snapshots+0x174/0x2c0
[ 50.934156][ T5128] btrfs_commit_transaction+0xaa6/0x36c0
[ 50.939782][ T5128] ? wait_for_completion_io_timeout+0x20/0x20
[ 50.945851][ T5128] ? btrfs_commit_transaction_async+0x3f0/0x3f0
[ 50.952092][ T5128] ? start_transaction+0x2aa/0x1410
[ 50.957304][ T5128] btrfs_mksubvol+0xc09/0x1550
[ 50.962117][ T5128] ? create_subvol+0x13f0/0x13f0
[ 50.967056][ T5128] btrfs_mksnapshot+0xaf/0xf0
[ 50.971731][ T5128] __btrfs_ioctl_snap_create+0x3c1/0x430
[ 50.977365][ T5128] btrfs_ioctl_snap_create_v2+0x24e/0x4d0
[ 50.983084][ T5128] btrfs_ioctl+0x34c9/0x5830
[ 50.987674][ T5128] ? tomoyo_path_number_perm+0x166/0x570
[ 50.993306][ T5128] ? tomoyo_execute_permission+0x4a0/0x4a0
[ 50.999109][ T5128] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 51.005518][ T5128] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 51.011415][ T5128] ? do_vfs_ioctl+0x132/0x15b0
[ 51.016181][ T5128] ? vfs_fileattr_set+0xbe0/0xbe0
[ 51.021214][ T5128] ? find_held_lock+0x2d/0x110
[ 51.025981][ T5128] ? name_to_dev_t+0x111/0x990
[ 51.030742][ T5128] ? lock_downgrade+0x6e0/0x6e0
[ 51.035599][ T5128] ? bpf_lsm_file_ioctl+0x9/0x10
[ 51.040534][ T5128] ? btrfs_ioctl_get_supported_features+0x50/0x50
[ 51.046945][ T5128] __x64_sys_ioctl+0x197/0x210
[ 51.051711][ T5128] do_syscall_64+0x39/0xb0
[ 51.056120][ T5128] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 51.062020][ T5128] RIP: 0033:0x7faa7ec7ca29
[ 51.066420][ T5128] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 51.086042][ T5128] RSP: 002b:00007ffcdd8ca268 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 51.094457][ T5128] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007faa7ec7ca29
[ 51.102421][ T5128] RDX: 0000000020002d40 RSI: 0000000050009417 RDI: 0000000000000004
[ 51.110559][ T5128] RBP: 00007ffcdd8ca290 R08: 0000000000000002 R09: 00007ffcdd8ca2a0
[ 51.118787][ T5128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 51.126835][ T5128] R13: 00007ffcdd8ca2d0 R14: 00007ffcdd8ca2b0 R15: 0000000000000003
[ 51.134808][ T5128]
[ 51.137815][ T5128] Modules linked in:
[ 51.142096][ T5128] ---[ end trace 0000000000000000 ]---
[ 51.147683][ T5128] RIP: 0010:create_pending_snapshot+0x179f/0x2110
[ 51.154201][ T5128] Code: c1 84 d2 0f 95 c0 84 c1 0f 85 19 07 00 00 48 8b 85 40 fe ff ff 48 c7 80 3f 01 00 00 00 00 00 00 e9 c9 f4 ff ff e8 81 5d 1d fe <0f> 0b e8 7a 5d 1d fe 48 8b 95 f8 fd ff ff 45 89 f5 48 b8 00 00 00
[ 51.173943][ T5128] RSP: 0018:ffffc900041ff5d0 EFLAGS: 00010293
[ 51.180055][ T5128] RAX: 0000000000000000 RBX: ffff888029bfb200 RCX: 0000000000000000
[ 51.188080][ T5128] RDX: ffff8880220457c0 RSI: ffffffff8363955f RDI: 0000000000000005
[ 51.196080][ T5128] RBP: ffffc900041ff838 R08: 0000000000000005 R09: 0000000000000000
[ 51.204110][ T5128] R10: 00000000fffffff4 R11: 0000000000000000 R12: ffff8880724d92a0
[ 51.212142][ T5128] R13: 00000000fffffff4 R14: 0000000000000000 R15: ffff88807914e000
[ 51.220162][ T5128] FS: 00005555569ed300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 51.229128][ T5128] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 51.235882][ T5128] CR2: 0000000020002d48 CR3: 0000000027805000 CR4: 0000000000350ee0
[ 51.243885][ T5128] Kernel panic - not syncing: Fatal exception
[ 51.250779][ T5128] Kernel Offset: disabled
[ 51.255091][ T5128] Rebooting in 86400 seconds..