program:
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x553, &(0x7f0000001080)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYRESDEC=r0, @ANYRES32=0x0, @ANYBLOB="040000000000800008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x68042, 0x62)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
write$dsp(r1, &(0x7f0000000100)='n', 0x1)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000240)=0x2)
ftruncate(r2, 0x2007ffb)
sendfile(r1, r2, 0x0, 0x1000000201005)
write$binfmt_register(r1, &(0x7f0000000200)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x4, 0x3a, '', 0x3a, '!-$', 0x3a, './file1/file0', 0x3a, [0x43, 0x46, 0x43, 0x46, 0x4f, 0x4f, 0x50, 0x50, 0x50]}, 0x39)
openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x4400, 0x193)
syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0\x00', &(0x7f0000000680), &(0x7f00000006c0)=ANY=[], 0x835, 0x1)
lsetxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)
setresuid(0xee01, 0x0, 0x0)
keyctl$session_to_parent(0x12)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

[   75.255428][ T5317] Bluetooth: hci0: command tx timeout
[   75.328094][ T5337] loop0: detected capacity change from 0 to 1024
[   75.374545][ T5337] =======================================================
[   75.374545][ T5337] WARNING: The mand mount option has been deprecated and
[   75.374545][ T5337]          and is ignored by this kernel. Remove the mand
[   75.374545][ T5337]          option from the mount to silence this warning.
[   75.374545][ T5337] =======================================================
[   75.436772][ T5337] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.541065][ T5337] ==================================================================
[   75.544712][ T5337] BUG: KASAN: slab-out-of-bounds in ext4_find_extent+0xae6/0xcc0
[   75.548466][ T5337] Read of size 4 at addr ffff888000505018 by task syz.0.0/5337
[   75.551587][ T5337] 
[   75.552476][ T5337] CPU: 0 UID: 0 PID: 5337 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[   75.552488][ T5337] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.552496][ T5337] Call Trace:
[   75.552504][ T5337]  <TASK>
[   75.552510][ T5337]  dump_stack_lvl+0x189/0x250
[   75.552529][ T5337]  ? rcu_is_watching+0x15/0xb0
[   75.552544][ T5337]  ? __kasan_check_byte+0x12/0x40
[   75.552557][ T5337]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.552568][ T5337]  ? rcu_is_watching+0x15/0xb0
[   75.552581][ T5337]  ? lock_release+0x4b/0x3e0
[   75.552593][ T5337]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[   75.552658][ T5337]  ? __virt_addr_valid+0x1c8/0x5c0
[   75.552671][ T5337]  ? __virt_addr_valid+0x4a5/0x5c0
[   75.552681][ T5337]  print_report+0xd2/0x2b0
[   75.552690][ T5337]  ? ext4_find_extent+0xae6/0xcc0
[   75.552701][ T5337]  kasan_report+0x118/0x150
[   75.552711][ T5337]  ? ext4_find_extent+0xae6/0xcc0
[   75.552723][ T5337]  ext4_find_extent+0xae6/0xcc0
[   75.552734][ T5337]  ext4_ext_map_blocks+0x288/0x6ac0
[   75.552745][ T5337]  ? sched_clock_cpu+0x74/0x430
[   75.552757][ T5337]  ? __lock_acquire+0xab9/0xd20
[   75.552765][ T5337]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   75.552778][ T5337]  ? ext4_es_lookup_extent+0x622/0xa70
[   75.552791][ T5337]  ext4_map_blocks+0x931/0x18d0
[   75.552807][ T5337]  ? __pfx_ext4_map_blocks+0x10/0x10
[   75.552826][ T5337]  ? __lock_acquire+0xab9/0xd20
[   75.552839][ T5337]  _ext4_get_block+0x200/0x4c0
[   75.552856][ T5337]  ? __pfx__ext4_get_block+0x10/0x10
[   75.552869][ T5337]  ext4_get_block_unwritten+0x2e/0x100
[   75.552877][ T5337]  ext4_block_write_begin+0x6f8/0x14b0
[   75.552887][ T5337]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   75.552903][ T5337]  ? __pfx_ext4_block_write_begin+0x10/0x10
[   75.552914][ T5337]  ? folio_mapping+0x16f/0x240
[   75.552924][ T5337]  ? ext4_inode_journal_mode+0x18c/0x480
[   75.552938][ T5337]  ext4_write_begin+0xa4f/0x1680
[   75.552957][ T5337]  ? __pfx_ext4_write_begin+0x10/0x10
[   75.552974][ T5337]  ext4_da_write_begin+0x449/0xd20
[   75.552986][ T5337]  ? file_remove_privs_flags+0x3b1/0x5f0
[   75.552999][ T5337]  ? __pfx_ext4_da_write_begin+0x10/0x10
[   75.553011][ T5337]  generic_perform_write+0x2c7/0x910
[   75.553020][ T5337]  ? __pfx_generic_perform_write+0x10/0x10
[   75.553027][ T5337]  ? file_modified_flags+0x374/0x560
[   75.553035][ T5337]  ? ext4_write_checks+0x24b/0x2c0
[   75.553043][ T5337]  ext4_buffered_write_iter+0xce/0x3a0
[   75.553051][ T5337]  ext4_file_write_iter+0x298/0x1bc0
[   75.553062][ T5337]  ? splice_from_pipe_next+0x608/0x660
[   75.553072][ T5337]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   75.553081][ T5337]  ? __asan_memset+0x22/0x50
[   75.553090][ T5337]  iter_file_splice_write+0x93a/0x1000
[   75.553104][ T5337]  ? __pfx_iter_file_splice_write+0x10/0x10
[   75.553114][ T5337]  ? rcu_read_lock_any_held+0xb3/0x120
[   75.553124][ T5337]  ? direct_splice_actor+0x10c/0x160
[   75.553134][ T5337]  ? __pfx_iter_file_splice_write+0x10/0x10
[   75.553147][ T5337]  direct_splice_actor+0x101/0x160
[   75.553161][ T5337]  splice_direct_to_actor+0x5a5/0xcc0
[   75.553179][ T5337]  ? __pfx_direct_splice_actor+0x10/0x10
[   75.553192][ T5337]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   75.553201][ T5337]  ? __pfx_aa_file_perm+0x10/0x10
[   75.553209][ T5337]  do_splice_direct+0x181/0x270
[   75.553219][ T5337]  ? __pfx_do_splice_direct+0x10/0x10
[   75.553232][ T5337]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   75.553243][ T5337]  ? rw_verify_area+0x258/0x650
[   75.553252][ T5337]  do_sendfile+0x4da/0x7e0
[   75.553264][ T5337]  ? __pfx_do_sendfile+0x10/0x10
[   75.553304][ T5337]  ? rcu_is_watching+0x15/0xb0
[   75.553319][ T5337]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[   75.553334][ T5337]  __se_sys_sendfile64+0x13e/0x190
[   75.553346][ T5337]  ? __pfx___se_sys_sendfile64+0x10/0x10
[   75.553356][ T5337]  ? rcu_is_watching+0x15/0xb0
[   75.553366][ T5337]  ? do_syscall_64+0xbe/0x3b0
[   75.553375][ T5337]  do_syscall_64+0xfa/0x3b0
[   75.553383][ T5337]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.553402][ T5337]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.553410][ T5337]  ? clear_bhb_loop+0x60/0xb0
[   75.553419][ T5337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.553429][ T5337] RIP: 0033:0x7f189878e929
[   75.553438][ T5337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.553445][ T5337] RSP: 002b:00007f189965c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   75.553455][ T5337] RAX: ffffffffffffffda RBX: 00007f18989b5fa0 RCX: 00007f189878e929
[   75.553461][ T5337] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[   75.553466][ T5337] RBP: 00007f1898810b39 R08: 0000000000000000 R09: 0000000000000000
[   75.553471][ T5337] R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000000
[   75.553475][ T5337] R13: 0000000000000000 R14: 00007f18989b5fa0 R15: 00007ffdaa0cc348
[   75.553483][ T5337]  </TASK>
[   75.553486][ T5337] 
[   75.762015][ T5337] Allocated by task 4736:
[   75.764151][ T5337]  kasan_save_track+0x3e/0x80
[   75.766810][ T5337]  __kasan_slab_alloc+0x6c/0x80
[   75.769166][ T5337]  kmem_cache_alloc_lru_noprof+0x1c6/0x3d0
[   75.771599][ T5337]  __d_alloc+0x31/0x6f0
[   75.773628][ T5337]  d_alloc_parallel+0xe0/0x14e0
[   75.775917][ T5337]  __lookup_slow+0x116/0x3d0
[   75.778340][ T5337]  lookup_slow+0x53/0x70
[   75.780508][ T5337]  walk_component+0x2d2/0x400
[   75.782527][ T5337]  path_lookupat+0x163/0x430
[   75.784328][ T5337]  filename_lookup+0x212/0x570
[   75.786240][ T5337]  do_readlinkat+0xd9/0x500
[   75.787999][ T5337]  __x64_sys_readlink+0x7f/0x90
[   75.790008][ T5337]  do_syscall_64+0xfa/0x3b0
[   75.792040][ T5337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.794755][ T5337] 
[   75.795850][ T5337] The buggy address belongs to the object at ffff888000504eb0
[   75.795850][ T5337]  which belongs to the cache dentry of size 312
[   75.801579][ T5337] The buggy address is located 48 bytes to the right of
[   75.801579][ T5337]  allocated 312-byte region [ffff888000504eb0, ffff888000504fe8)
[   75.807732][ T5337] 
[   75.808815][ T5337] The buggy address belongs to the physical page:
[   75.811580][ T5337] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x504
[   75.815321][ T5337] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   75.819071][ T5337] flags: 0x7ff00000000040(head|node=0|zone=0|lastcpupid=0x7ff)
[   75.822239][ T5337] page_type: f5(slab)
[   75.824006][ T5337] raw: 007ff00000000040 ffff88803040b780 dead000000000122 0000000000000000
[   75.827695][ T5337] raw: 0000000000000000 0000000000150015 00000000f5000000 0000000000000000
[   75.831344][ T5337] head: 007ff00000000040 ffff88803040b780 dead000000000122 0000000000000000
[   75.835180][ T5337] head: 0000000000000000 0000000000150015 00000000f5000000 0000000000000000
[   75.838893][ T5337] head: 007ff00000000001 ffffea0000014101 00000000ffffffff 00000000ffffffff
[   75.842932][ T5337] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[   75.847150][ T5337] page dumped because: kasan: bad access detected
[   75.850326][ T5337] page_owner tracks the page as allocated
[   75.852732][ T5337] page last allocated via order 1, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4736, tgid 4736 (udevadm), ts 27573864531, free_ts 0
[   75.861650][ T5337]  post_alloc_hook+0x240/0x2a0
[   75.863847][ T5337]  get_page_from_freelist+0x21e4/0x22c0
[   75.866337][ T5337]  __alloc_frozen_pages_noprof+0x181/0x370
[   75.868996][ T5337]  alloc_pages_mpol+0x232/0x4a0
[   75.871246][ T5337]  allocate_slab+0x8a/0x3b0
[   75.873456][ T5337]  ___slab_alloc+0xbfc/0x1480
[   75.875803][ T5337]  kmem_cache_alloc_lru_noprof+0x288/0x3d0
[   75.878491][ T5337]  __d_alloc+0x31/0x6f0
[   75.880349][ T5337]  d_alloc_parallel+0xe0/0x14e0
[   75.882485][ T5337]  __lookup_slow+0x116/0x3d0
[   75.884546][ T5337]  lookup_slow+0x53/0x70
[   75.886439][ T5337]  walk_component+0x2d2/0x400
[   75.888450][ T5337]  path_lookupat+0x163/0x430
[   75.890452][ T5337]  filename_lookup+0x212/0x570
[   75.892614][ T5337]  do_readlinkat+0xd9/0x500
[   75.895103][ T5337]  __x64_sys_readlink+0x7f/0x90
[   75.897794][ T5337] page_owner free stack trace missing
[   75.900164][ T5337] 
[   75.901306][ T5337] Memory state around the buggy address:
[   75.903769][ T5337]  ffff888000504f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   75.907323][ T5337]  ffff888000504f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc
[   75.910653][ T5337] >ffff888000505000: fc fc fc fc fc 00 00 00 00 00 00 00 00 00 00 00
[   75.914120][ T5337]                             ^
[   75.916206][ T5337]  ffff888000505080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   75.919517][ T5337]  ffff888000505100: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc
[   75.922902][ T5337] ==================================================================
[   75.945867][ T5337] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   75.948845][ T5337] CPU: 0 UID: 0 PID: 5337 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[   75.953552][ T5337] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.957587][ T5337] Call Trace:
[   75.958948][ T5337]  <TASK>
[   75.960154][ T5337]  dump_stack_lvl+0x99/0x250
[   75.962223][ T5337]  ? __asan_memcpy+0x40/0x70
[   75.964480][ T5337]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.966831][ T5337]  ? __pfx__printk+0x10/0x10
[   75.968938][ T5337]  panic+0x2db/0x790
[   75.970702][ T5337]  ? __pfx_preempt_schedule+0x10/0x10
[   75.973392][ T5337]  ? __pfx_panic+0x10/0x10
[   75.975468][ T5337]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   75.977971][ T5337]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   75.980848][ T5337]  ? ext4_find_extent+0xae6/0xcc0
[   75.983095][ T5337]  check_panic_on_warn+0x89/0xb0
[   75.985266][ T5337]  ? ext4_find_extent+0xae6/0xcc0
[   75.987482][ T5337]  end_report+0x78/0x160
[   75.989310][ T5337]  kasan_report+0x129/0x150
[   75.991284][ T5337]  ? ext4_find_extent+0xae6/0xcc0
[   75.993425][ T5337]  ext4_find_extent+0xae6/0xcc0
[   75.995796][ T5337]  ext4_ext_map_blocks+0x288/0x6ac0
[   75.997994][ T5337]  ? sched_clock_cpu+0x74/0x430
[   76.000088][ T5337]  ? __lock_acquire+0xab9/0xd20
[   76.002289][ T5337]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   76.004730][ T5337]  ? ext4_es_lookup_extent+0x622/0xa70
[   76.007166][ T5337]  ext4_map_blocks+0x931/0x18d0
[   76.009529][ T5337]  ? __pfx_ext4_map_blocks+0x10/0x10
[   76.012117][ T5337]  ? __lock_acquire+0xab9/0xd20
[   76.014373][ T5337]  _ext4_get_block+0x200/0x4c0
[   76.016478][ T5337]  ? __pfx__ext4_get_block+0x10/0x10
[   76.018796][ T5337]  ext4_get_block_unwritten+0x2e/0x100
[   76.021141][ T5337]  ext4_block_write_begin+0x6f8/0x14b0
[   76.023505][ T5337]  ? __pfx_ext4_get_block_unwritten+0x10/0x10
[   76.026260][ T5337]  ? __pfx_ext4_block_write_begin+0x10/0x10
[   76.028900][ T5337]  ? folio_mapping+0x16f/0x240
[   76.030872][ T5337]  ? ext4_inode_journal_mode+0x18c/0x480
[   76.033216][ T5337]  ext4_write_begin+0xa4f/0x1680
[   76.035448][ T5337]  ? __pfx_ext4_write_begin+0x10/0x10
[   76.037709][ T5337]  ext4_da_write_begin+0x449/0xd20
[   76.039887][ T5337]  ? file_remove_privs_flags+0x3b1/0x5f0
[   76.042381][ T5337]  ? __pfx_ext4_da_write_begin+0x10/0x10
[   76.044795][ T5337]  generic_perform_write+0x2c7/0x910
[   76.047105][ T5337]  ? __pfx_generic_perform_write+0x10/0x10
[   76.049776][ T5337]  ? file_modified_flags+0x374/0x560
[   76.052204][ T5337]  ? ext4_write_checks+0x24b/0x2c0
[   76.054524][ T5337]  ext4_buffered_write_iter+0xce/0x3a0
[   76.057031][ T5337]  ext4_file_write_iter+0x298/0x1bc0
[   76.059480][ T5337]  ? splice_from_pipe_next+0x608/0x660
[   76.061946][ T5337]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   76.064464][ T5337]  ? __asan_memset+0x22/0x50
[   76.066434][ T5337]  iter_file_splice_write+0x93a/0x1000
[   76.068728][ T5337]  ? __pfx_iter_file_splice_write+0x10/0x10
[   76.071347][ T5337]  ? rcu_read_lock_any_held+0xb3/0x120
[   76.073934][ T5337]  ? direct_splice_actor+0x10c/0x160
[   76.076440][ T5337]  ? __pfx_iter_file_splice_write+0x10/0x10
[   76.079212][ T5337]  direct_splice_actor+0x101/0x160
[   76.081510][ T5337]  splice_direct_to_actor+0x5a5/0xcc0
[   76.083983][ T5337]  ? __pfx_direct_splice_actor+0x10/0x10
[   76.086666][ T5337]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   76.089450][ T5337]  ? __pfx_aa_file_perm+0x10/0x10
[   76.091815][ T5337]  do_splice_direct+0x181/0x270
[   76.094094][ T5337]  ? __pfx_do_splice_direct+0x10/0x10
[   76.096370][ T5337]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   76.098903][ T5337]  ? rw_verify_area+0x258/0x650
[   76.101062][ T5337]  do_sendfile+0x4da/0x7e0
[   76.103078][ T5337]  ? __pfx_do_sendfile+0x10/0x10
[   76.105371][ T5337]  ? rcu_is_watching+0x15/0xb0
[   76.107636][ T5337]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[   76.110432][ T5337]  __se_sys_sendfile64+0x13e/0x190
[   76.112721][ T5337]  ? __pfx___se_sys_sendfile64+0x10/0x10
[   76.115221][ T5337]  ? rcu_is_watching+0x15/0xb0
[   76.117259][ T5337]  ? do_syscall_64+0xbe/0x3b0
[   76.119351][ T5337]  do_syscall_64+0xfa/0x3b0
[   76.121400][ T5337]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.123516][ T5337]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.126076][ T5337]  ? clear_bhb_loop+0x60/0xb0
[   76.128115][ T5337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.130631][ T5337] RIP: 0033:0x7f189878e929
[   76.132612][ T5337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.140901][ T5337] RSP: 002b:00007f189965c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   76.144356][ T5337] RAX: ffffffffffffffda RBX: 00007f18989b5fa0 RCX: 00007f189878e929
[   76.147811][ T5337] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004
[   76.151165][ T5337] RBP: 00007f1898810b39 R08: 0000000000000000 R09: 0000000000000000
[   76.154670][ T5337] R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000000
[   76.158998][ T5337] R13: 0000000000000000 R14: 00007f18989b5fa0 R15: 00007ffdaa0cc348
[   76.162534][ T5337]  </TASK>
[   76.164217][ T5337] Kernel Offset: disabled
[   76.166120][ T5337] Rebooting in 86400 seconds..