syzkaller login: [   92.060935][   T31] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.117' (ED25519) to the list of known hosts.
2026/02/17 22:49:52 parsed 1 programs
[   99.392656][ T5801] cgroup: Unknown subsys name 'net'
[   99.634062][ T5801] cgroup: Unknown subsys name 'cpuset'
[   99.688895][ T5801] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  101.565568][ T5801] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  107.910852][ T5847] chnl_net:caif_netlink_parms(): no params data found
[  108.097539][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.099435][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.099855][ T5847] bridge_slave_0: entered allmulticast mode
[  108.106915][ T5847] bridge_slave_0: entered promiscuous mode
[  108.126654][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.126788][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.126898][ T5847] bridge_slave_1: entered allmulticast mode
[  108.141776][ T5847] bridge_slave_1: entered promiscuous mode
[  108.197516][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  108.271170][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  108.363134][ T5847] team0: Port device team_slave_0 added
[  108.375575][ T5847] team0: Port device team_slave_1 added
[  108.424863][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0
[  108.424880][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  108.424906][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  108.431129][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1
[  108.431175][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  108.431245][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  108.583541][ T5847] hsr_slave_0: entered promiscuous mode
[  108.584536][ T5847] hsr_slave_1: entered promiscuous mode
[  109.086131][ T5847] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  109.117475][ T5847] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  109.152645][ T5847] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  109.192281][ T5847] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  109.304505][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.330304][ T5847] 8021q: adding VLAN 0 to HW filter on device team0
[  109.336965][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.337825][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.371899][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.372068][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.593164][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.646615][ T5847] veth0_vlan: entered promiscuous mode
[  109.660111][ T5847] veth1_vlan: entered promiscuous mode
[  109.695914][ T5847] veth0_macvtap: entered promiscuous mode
[  109.705231][ T5847] veth1_macvtap: entered promiscuous mode
[  109.727114][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.743878][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.760605][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.762539][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.762833][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.762876][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.562924][   T57] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.816144][   T57] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.061127][   T57] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.305841][ T5881] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  111.310188][ T5881] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  111.322394][ T5881] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  111.323537][ T5881] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  111.324463][ T5881] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  111.842149][   T57] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  111.962666][ T3581] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.962688][ T3581] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.023430][ T3581] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.023453][ T3581] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.115443][   T57] bridge_slave_1: left allmulticast mode
[  113.115613][   T57] bridge_slave_1: left promiscuous mode
[  113.117273][   T57] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.220765][   T57] bridge_slave_0: left allmulticast mode
[  113.220793][   T57] bridge_slave_0: left promiscuous mode
[  113.221295][   T57] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.609174][   T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  114.669037][   T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  114.691934][   T57] bond0 (unregistering): Released all slaves
[  115.069039][   T57] hsr_slave_0: left promiscuous mode
[  115.108421][   T57] hsr_slave_1: left promiscuous mode
[  115.109612][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.109688][   T57] batman_adv: batadv0: Removing interface: batadv_slave_0
[  115.170946][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  115.170975][   T57] batman_adv: batadv0: Removing interface: batadv_slave_1
[  115.320726][   T57] veth1_macvtap: left promiscuous mode
[  115.320943][   T57] veth0_macvtap: left promiscuous mode
[  115.321229][   T57] veth1_vlan: left promiscuous mode
[  115.321774][   T57] veth0_vlan: left promiscuous mode
2026/02/17 22:50:12 executed programs: 0
[  115.733958][ T5881] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  115.736066][ T5881] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  115.738422][ T5881] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  115.749773][ T5881] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  115.750870][ T5881] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  117.810072][ T5881] Bluetooth: hci0: command tx timeout
[  117.829230][   T57] team0 (unregistering): Port device team_slave_1 removed
[  118.018961][   T57] team0 (unregistering): Port device team_slave_0 removed
[  119.888734][ T5881] Bluetooth: hci0: command tx timeout
[  120.128994][ T5939] chnl_net:caif_netlink_parms(): no params data found
[  120.285314][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.285503][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.285688][ T5939] bridge_slave_0: entered allmulticast mode
[  120.308829][ T5939] bridge_slave_0: entered promiscuous mode
[  120.317935][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.318146][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.338670][ T5939] bridge_slave_1: entered allmulticast mode
[  120.341617][ T5939] bridge_slave_1: entered promiscuous mode
[  120.416125][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  120.425176][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  120.481308][ T5939] team0: Port device team_slave_0 added
[  120.485056][ T5939] team0: Port device team_slave_1 added
[  120.559710][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[  120.559728][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  120.559759][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  120.563853][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[  120.563868][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  120.563896][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  120.714752][ T5939] hsr_slave_0: entered promiscuous mode
[  120.717224][ T5939] hsr_slave_1: entered promiscuous mode
[  121.969413][ T5881] Bluetooth: hci0: command tx timeout
[  123.864492][ T5939] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  123.946747][ T5939] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  124.038721][ T5939] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  124.055019][ T5881] Bluetooth: hci0: command tx timeout
[  124.108674][ T5939] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  124.504480][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.563443][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[  124.587582][ T3636] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.587889][ T3636] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.626902][ T3581] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.627046][ T3581] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.987269][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.065741][ T5939] veth0_vlan: entered promiscuous mode
[  125.084433][ T5939] veth1_vlan: entered promiscuous mode
[  125.127154][ T5939] veth0_macvtap: entered promiscuous mode
[  125.139843][ T5939] veth1_macvtap: entered promiscuous mode
[  125.167621][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.189736][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.211688][   T57] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.212360][   T57] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.212672][   T57] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.214707][   T57] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  125.408039][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.408061][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  125.456257][   T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.456279][   T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/17 22:50:22 executed programs: 2
[  125.804370][ T6067] loop0: detected capacity change from 0 to 32768
[  125.807963][ T6067] =======================================================
[  125.807963][ T6067] WARNING: The mand mount option has been deprecated and
[  125.807963][ T6067]          and is ignored by this kernel. Remove the mand
[  125.807963][ T6067]          option from the mount to silence this warning.
[  125.807963][ T6067] =======================================================
[  125.914445][ T6067] JBD2: Ignoring recovery information on journal
[  125.983341][ T6067] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  126.034671][ T6067] overlayfs: upper fs does not support tmpfile.
[  126.046400][ T6067] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  126.046892][ T6067] 
[  126.046897][ T6067] ======================================================
[  126.046903][ T6067] WARNING: possible circular locking dependency detected
[  126.046917][ T6067] syzkaller #0 Not tainted
[  126.046924][ T6067] ------------------------------------------------------
[  126.046930][ T6067] syz.0.17/6067 is trying to acquire lock:
[  126.046937][ T6067] ffff88805c288b80 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x11f/0x2610
[  126.046988][ T6067] 
[  126.046988][ T6067] but task is already holding lock:
[  126.046993][ T6067] ffff88805c28cb58 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x475/0x13e0
[  126.047029][ T6067] 
[  126.047029][ T6067] which lock already depends on the new lock.
[  126.047029][ T6067] 
[  126.047034][ T6067] 
[  126.047034][ T6067] the existing dependency chain (in reverse order) is:
[  126.047039][ T6067] 
[  126.047039][ T6067] -> #3 (&oi->ip_xattr_sem){+.+.}-{4:4}:
[  126.047058][ T6067]        down_write+0x3a/0x50
[  126.047078][ T6067]        ocfs2_xattr_set_handle+0x3e6/0x810
[  126.047096][ T6067]        ocfs2_init_security_set+0xbd/0xe0
[  126.047115][ T6067]        ocfs2_mknod+0x1481/0x2210
[  126.047129][ T6067]        ocfs2_mkdir+0x181/0x430
[  126.047148][ T6067]        vfs_mkdir+0x40b/0x630
[  126.047161][ T6067]        filename_mkdirat+0x289/0x520
[  126.047193][ T6067]        __se_sys_mkdirat+0x35/0x150
[  126.047208][ T6067]        do_syscall_64+0x14d/0xf80
[  126.047226][ T6067]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.047240][ T6067] 
[  126.047240][ T6067] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  126.047260][ T6067]        down_read+0x97/0x200
[  126.047279][ T6067]        ocfs2_start_trans+0x3ac/0x700
[  126.047297][ T6067]        ocfs2_reserve_suballoc_bits+0x7bb/0x4790
[  126.047314][ T6067]        ocfs2_reserve_new_metadata_blocks+0x415/0x9a0
[  126.047331][ T6067]        ocfs2_mknod+0xea3/0x2210
[  126.047345][ T6067]        ocfs2_mkdir+0x181/0x430
[  126.047358][ T6067]        vfs_mkdir+0x40b/0x630
[  126.047371][ T6067]        filename_mkdirat+0x289/0x520
[  126.047386][ T6067]        __se_sys_mkdirat+0x35/0x150
[  126.047400][ T6067]        do_syscall_64+0x14d/0xf80
[  126.047418][ T6067]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.047432][ T6067] 
[  126.047432][ T6067] -> #1 (sb_internal#2){.+.+}-{0:0}:
[  126.047454][ T6067]        ocfs2_start_trans+0x2ac/0x700
[  126.047472][ T6067]        ocfs2_mknod+0xf31/0x2210
[  126.047486][ T6067]        ocfs2_mkdir+0x181/0x430
[  126.047499][ T6067]        vfs_mkdir+0x40b/0x630
[  126.047512][ T6067]        filename_mkdirat+0x289/0x520
[  126.047526][ T6067]        __se_sys_mkdirat+0x35/0x150
[  126.047541][ T6067]        do_syscall_64+0x14d/0xf80
[  126.047559][ T6067]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.047572][ T6067] 
[  126.047572][ T6067] -> #0 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  126.047593][ T6067]        __lock_acquire+0x15a5/0x2cf0
[  126.047612][ T6067]        lock_acquire+0x106/0x330
[  126.047631][ T6067]        down_write+0x3a/0x50
[  126.047650][ T6067]        ocfs2_reserve_local_alloc_bits+0x11f/0x2610
[  126.047663][ T6067]        ocfs2_reserve_clusters_with_limit+0x1b9/0xc20
[  126.047681][ T6067]        ocfs2_init_xattr_set_ctxt+0x375/0x710
[  126.047701][ T6067]        ocfs2_xattr_set+0xc42/0x13e0
[  126.047719][ T6067]        __vfs_setxattr+0x43c/0x480
[  126.047738][ T6067]        __vfs_setxattr_noperm+0x12d/0x660
[  126.047756][ T6067]        vfs_setxattr+0x163/0x370
[  126.047774][ T6067]        ovl_fill_super+0x4b50/0x5e60
[  126.047794][ T6067]        get_tree_nodev+0xbb/0x150
[  126.047805][ T6067]        vfs_get_tree+0x92/0x2a0
[  126.047818][ T6067]        do_new_mount+0x341/0xd30
[  126.047835][ T6067]        __se_sys_mount+0x31d/0x420
[  126.047854][ T6067]        do_syscall_64+0x14d/0xf80
[  126.047872][ T6067]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.047885][ T6067] 
[  126.047885][ T6067] other info that might help us debug this:
[  126.047885][ T6067] 
[  126.047890][ T6067] Chain exists of:
[  126.047890][ T6067]   &ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE] --> &journal->j_trans_barrier --> &oi->ip_xattr_sem
[  126.047890][ T6067] 
[  126.047915][ T6067]  Possible unsafe locking scenario:
[  126.047915][ T6067] 
[  126.047920][ T6067]        CPU0                    CPU1
[  126.047924][ T6067]        ----                    ----
[  126.047929][ T6067]   lock(&oi->ip_xattr_sem);
[  126.047938][ T6067]                                lock(&journal->j_trans_barrier);
[  126.047949][ T6067]                                lock(&oi->ip_xattr_sem);
[  126.047960][ T6067]   lock(&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]);
[  126.047971][ T6067] 
[  126.047971][ T6067]  *** DEADLOCK ***
[  126.047971][ T6067] 
[  126.047975][ T6067] 4 locks held by syz.0.17/6067:
[  126.047984][ T6067]  #0: ffff8880303f20d0 (&type->s_umount_key#56/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xac0
[  126.048043][ T6067]  #1: ffff8880295b2480 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  126.048078][ T6067]  #2: ffff88805c28ce80 (&sb->s_type->i_mutex_key#26){++++}-{4:4}, at: vfs_setxattr+0x13e/0x370
[  126.048120][ T6067]  #3: ffff88805c28cb58 (&oi->ip_xattr_sem){+.+.}-{4:4}, at: ocfs2_xattr_set+0x475/0x13e0
[  126.048163][ T6067] 
[  126.048163][ T6067] stack backtrace:
[  126.048177][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  126.048224][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  126.048244][ T6067] Call Trace:
[  126.048255][ T6067]  <TASK>
[  126.048263][ T6067]  dump_stack_lvl+0xe8/0x150
[  126.048293][ T6067]  print_circular_bug+0x2e1/0x300
[  126.048314][ T6067]  check_noncircular+0x12e/0x150
[  126.048336][ T6067]  __lock_acquire+0x15a5/0x2cf0
[  126.048367][ T6067]  ? ocfs2_get_system_file_inode+0x202/0x7e0
[  126.048392][ T6067]  ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[  126.048420][ T6067]  ? ocfs2_reserve_local_alloc_bits+0x11f/0x2610
[  126.048435][ T6067]  lock_acquire+0x106/0x330
[  126.048454][ T6067]  ? ocfs2_reserve_local_alloc_bits+0x11f/0x2610
[  126.048473][ T6067]  down_write+0x3a/0x50
[  126.048492][ T6067]  ? ocfs2_reserve_local_alloc_bits+0x11f/0x2610
[  126.048507][ T6067]  ocfs2_reserve_local_alloc_bits+0x11f/0x2610
[  126.048523][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.048544][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.048566][ T6067]  ? __pfx_ocfs2_reserve_local_alloc_bits+0x10/0x10
[  126.048582][ T6067]  ? do_raw_spin_lock+0x12b/0x2f0
[  126.048603][ T6067]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  126.048622][ T6067]  ? lockdep_hardirqs_on+0x7a/0x110
[  126.048641][ T6067]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  126.048660][ T6067]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  126.048674][ T6067]  ? reacquire_held_locks+0x104/0x190
[  126.048696][ T6067]  ? rt_spin_lock+0x1e0/0x400
[  126.048711][ T6067]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  126.048726][ T6067]  ? rt_spin_unlock+0x14f/0x200
[  126.048742][ T6067]  ? rt_spin_unlock+0x160/0x200
[  126.048757][ T6067]  ? ocfs2_alloc_should_use_local+0x13e/0x2e0
[  126.048780][ T6067]  ? ocfs2_reserve_clusters_with_limit+0x160/0xc20
[  126.048799][ T6067]  ocfs2_reserve_clusters_with_limit+0x1b9/0xc20
[  126.048820][ T6067]  ? __pfx_ocfs2_reserve_clusters_with_limit+0x10/0x10
[  126.048841][ T6067]  ? __pfx_ocfs2_calc_xattr_set_need+0x10/0x10
[  126.048865][ T6067]  ? do_raw_spin_lock+0x12b/0x2f0
[  126.048886][ T6067]  ocfs2_init_xattr_set_ctxt+0x375/0x710
[  126.048906][ T6067]  ? lockdep_hardirqs_on+0x7a/0x110
[  126.048926][ T6067]  ? __pfx_ocfs2_init_xattr_set_ctxt+0x10/0x10
[  126.048947][ T6067]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  126.048970][ T6067]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  126.048989][ T6067]  ? lockdep_hardirqs_on+0x7a/0x110
[  126.049008][ T6067]  ocfs2_xattr_set+0xc42/0x13e0
[  126.049036][ T6067]  ? __pfx_ocfs2_xattr_set+0x10/0x10
[  126.049055][ T6067]  ? desc_update_last_finalized+0x193/0x1f0
[  126.049083][ T6067]  ? lockdep_hardirqs_on+0x7a/0x110
[  126.049104][ T6067]  ? smk_tskacc+0x311/0x3a0
[  126.049126][ T6067]  ? posix_xattr_acl+0x93/0xc0
[  126.049147][ T6067]  ? evm_protect_xattr+0x4d4/0xac0
[  126.049164][ T6067]  ? __pfx_evm_protect_xattr+0x10/0x10
[  126.049180][ T6067]  ? __pfx_ocfs2_xattr_trusted_set+0x10/0x10
[  126.049201][ T6067]  __vfs_setxattr+0x43c/0x480
[  126.049224][ T6067]  __vfs_setxattr_noperm+0x12d/0x660
[  126.049246][ T6067]  vfs_setxattr+0x163/0x370
[  126.049267][ T6067]  ? __pfx_vfs_setxattr+0x10/0x10
[  126.049286][ T6067]  ? __dentry_kill+0x4b2/0x5e0
[  126.049302][ T6067]  ? finish_dput+0xad/0x480
[  126.049321][ T6067]  ? finish_dput+0x3da/0x480
[  126.049341][ T6067]  ovl_fill_super+0x4b50/0x5e60
[  126.049361][ T6067]  ? unwind_get_return_address+0x4d/0x90
[  126.049407][ T6067]  ? __pfx_stack_trace_save+0x10/0x10
[  126.049429][ T6067]  ? __pfx_ovl_fill_super+0x10/0x10
[  126.049450][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.049473][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.049495][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.049517][ T6067]  ? do_raw_spin_lock+0x12b/0x2f0
[  126.049538][ T6067]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  126.049558][ T6067]  ? lockdep_hardirqs_on+0x7a/0x110
[  126.049577][ T6067]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  126.049597][ T6067]  ? rt_mutex_slowunlock+0x1cb/0x300
[  126.049613][ T6067]  ? __raw_spin_lock_init+0x45/0x100
[  126.049635][ T6067]  ? sget_fc+0x962/0xa40
[  126.049657][ T6067]  ? __pfx_set_anon_super_fc+0x10/0x10
[  126.049670][ T6067]  ? __pfx_ovl_fill_super+0x10/0x10
[  126.049691][ T6067]  get_tree_nodev+0xbb/0x150
[  126.049705][ T6067]  vfs_get_tree+0x92/0x2a0
[  126.049720][ T6067]  do_new_mount+0x341/0xd30
[  126.049738][ T6067]  ? safesetid_security_capable+0xa9/0x1a0
[  126.049764][ T6067]  ? __pfx_do_new_mount+0x10/0x10
[  126.049784][ T6067]  ? ns_capable+0x89/0xe0
[  126.049802][ T6067]  ? path_mount+0x690/0x10e0
[  126.049820][ T6067]  ? user_path_at+0xd4/0x160
[  126.049843][ T6067]  ? user_path_at+0xd4/0x160
[  126.049866][ T6067]  __se_sys_mount+0x31d/0x420
[  126.049888][ T6067]  ? __pfx___se_sys_mount+0x10/0x10
[  126.049910][ T6067]  ? __x64_sys_mount+0x20/0xc0
[  126.049930][ T6067]  do_syscall_64+0x14d/0xf80
[  126.049950][ T6067]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.049964][ T6067]  ? trace_irq_disable+0x37/0x100
[  126.049978][ T6067]  ? clear_bhb_loop+0x40/0x90
[  126.049995][ T6067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.050010][ T6067] RIP: 0033:0x7faa8a4fc629
[  126.050029][ T6067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  126.050042][ T6067] RSP: 002b:00007ffe8a0953b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  126.050057][ T6067] RAX: ffffffffffffffda RBX: 00007faa8a775fa0 RCX: 00007faa8a4fc629
[  126.050068][ T6067] RDX: 0000200000000b80 RSI: 0000200000000000 RDI: 0000000000000000
[  126.050079][ T6067] RBP: 00007faa8a592b39 R08: 0000200000000180 R09: 0000000000000000
[  126.050089][ T6067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.050098][ T6067] R13: 00007faa8a775fac R14: 00007faa8a775fa0 R15: 00007faa8a775fa0
[  126.050115][ T6067]  </TASK>
[  126.075785][ T6067] ------------[ cut here ]------------
[  126.075814][ T6067] UBSAN: array-index-out-of-bounds in fs/ocfs2/xattr.c:1985:3
[  126.075862][ T6067] index 2 is out of range for type 'struct ocfs2_xattr_entry[] __counted_by(xh_count)' (aka 'struct ocfs2_xattr_entry[]')
[  126.075920][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  126.075980][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  126.076010][ T6067] Call Trace:
[  126.076031][ T6067]  <TASK>
[  126.076051][ T6067]  dump_stack_lvl+0xe8/0x150
[  126.076148][ T6067]  ubsan_epilogue+0xa/0x30
[  126.076201][ T6067]  __ubsan_handle_out_of_bounds+0xe8/0xf0
[  126.076290][ T6067]  ocfs2_xa_remove_entry+0x49e/0x670
[  126.076351][ T6067]  ocfs2_xa_set+0xdb2/0x2ec0
[  126.076426][ T6067]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  126.076489][ T6067]  ? try_to_take_rt_mutex+0x840/0xb00
[  126.076551][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.076629][ T6067]  ? __pfx_ocfs2_xa_set+0x10/0x10
[  126.076708][ T6067]  ? rtlock_slowlock_locked+0xfb/0x3c80
[  126.076766][ T6067]  ? do_raw_spin_lock+0x12b/0x2f0
[  126.076845][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.076942][ T6067]  ? unwind_next_frame+0xa5/0x23c0
[  126.077019][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.077100][ T6067]  ? unwind_next_frame+0xa5/0x23c0
[  126.077179][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.077256][ T6067]  ? unwind_next_frame+0xa5/0x23c0
[  126.077313][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.077386][ T6067]  ? is_bpf_text_address+0x26/0x2b0
[  126.077437][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.077523][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.077594][ T6067]  ? lock_release+0x4b/0x3a0
[  126.077663][ T6067]  ? lock_release+0x4b/0x3a0
[  126.077740][ T6067]  ? is_bpf_text_address+0x292/0x2b0
[  126.077772][ T6067]  ? rt_read_lock+0x277/0x4b0
[  126.077802][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.077885][ T6067]  ? lock_acquire+0x5f/0x330
[  126.077956][ T6067]  ocfs2_xattr_block_set+0x3e0/0x3350
[  126.078045][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.078122][ T6067]  ? lock_acquire+0x5f/0x330
[  126.078219][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.078262][ T6067]  ? __pfx_ocfs2_xattr_block_set+0x10/0x10
[  126.078346][ T6067]  ? start_this_handle+0x2135/0x2290
[  126.078432][ T6067]  ? __pfx_start_this_handle+0x10/0x10
[  126.078516][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.078628][ T6067]  __ocfs2_xattr_set_handle+0x262/0xf50
[  126.078732][ T6067]  ? __pfx___ocfs2_xattr_set_handle+0x10/0x10
[  126.078807][ T6067]  ? jbd2_journal_start+0x2a/0x40
[  126.078885][ T6067]  ? ocfs2_start_trans+0x4e2/0x700
[  126.078959][ T6067]  ? __pfx_ocfs2_start_trans+0x10/0x10
[  126.079040][ T6067]  ocfs2_xattr_set+0xf3f/0x13e0
[  126.079150][ T6067]  ? __pfx_ocfs2_xattr_set+0x10/0x10
[  126.079233][ T6067]  ? smk_tskacc+0x311/0x3a0
[  126.079295][ T6067]  ? smack_log+0xf5/0x3f0
[  126.079357][ T6067]  ? __pfx_smack_log+0x10/0x10
[  126.079430][ T6067]  ? smk_tskacc+0x311/0x3a0
[  126.079502][ T6067]  ? posix_xattr_acl+0x93/0xc0
[  126.079564][ T6067]  ? evm_protect_xattr+0x4d4/0xac0
[  126.079627][ T6067]  ? __pfx_evm_protect_xattr+0x10/0x10
[  126.079686][ T6067]  ? __pfx_ocfs2_xattr_trusted_set+0x10/0x10
[  126.079767][ T6067]  __vfs_removexattr+0x431/0x470
[  126.079852][ T6067]  __vfs_removexattr_locked+0xe2/0x280
[  126.079940][ T6067]  vfs_removexattr+0x7f/0x230
[  126.080045][ T6067]  ovl_fill_super+0x4c39/0x5e60
[  126.080141][ T6067]  ? unwind_get_return_address+0x4d/0x90
[  126.080236][ T6067]  ? __pfx_stack_trace_save+0x10/0x10
[  126.080311][ T6067]  ? __pfx_ovl_fill_super+0x10/0x10
[  126.080387][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.080462][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.080554][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.080632][ T6067]  ? do_raw_spin_lock+0x12b/0x2f0
[  126.080703][ T6067]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  126.080771][ T6067]  ? lockdep_hardirqs_on+0x7a/0x110
[  126.080839][ T6067]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  126.080908][ T6067]  ? rt_mutex_slowunlock+0x1cb/0x300
[  126.080966][ T6067]  ? __raw_spin_lock_init+0x45/0x100
[  126.081043][ T6067]  ? sget_fc+0x962/0xa40
[  126.081115][ T6067]  ? __pfx_set_anon_super_fc+0x10/0x10
[  126.081164][ T6067]  ? __pfx_ovl_fill_super+0x10/0x10
[  126.081234][ T6067]  get_tree_nodev+0xbb/0x150
[  126.081284][ T6067]  vfs_get_tree+0x92/0x2a0
[  126.081342][ T6067]  do_new_mount+0x341/0xd30
[  126.081439][ T6067]  ? safesetid_security_capable+0xa9/0x1a0
[  126.081527][ T6067]  ? __pfx_do_new_mount+0x10/0x10
[  126.081597][ T6067]  ? ns_capable+0x89/0xe0
[  126.081658][ T6067]  ? path_mount+0x690/0x10e0
[  126.081720][ T6067]  ? user_path_at+0xd4/0x160
[  126.081799][ T6067]  ? user_path_at+0xd4/0x160
[  126.081877][ T6067]  __se_sys_mount+0x31d/0x420
[  126.081955][ T6067]  ? __pfx___se_sys_mount+0x10/0x10
[  126.082032][ T6067]  ? __x64_sys_mount+0x20/0xc0
[  126.082102][ T6067]  do_syscall_64+0x14d/0xf80
[  126.082179][ T6067]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.082231][ T6067]  ? trace_irq_disable+0x37/0x100
[  126.082265][ T6067]  ? clear_bhb_loop+0x40/0x90
[  126.082318][ T6067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.082376][ T6067] RIP: 0033:0x7faa8a4fc629
[  126.082419][ T6067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  126.082461][ T6067] RSP: 002b:00007ffe8a0953b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  126.082514][ T6067] RAX: ffffffffffffffda RBX: 00007faa8a775fa0 RCX: 00007faa8a4fc629
[  126.082562][ T6067] RDX: 0000200000000b80 RSI: 0000200000000000 RDI: 0000000000000000
[  126.082600][ T6067] RBP: 00007faa8a592b39 R08: 0000200000000180 R09: 0000000000000000
[  126.082632][ T6067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.082668][ T6067] R13: 00007faa8a775fac R14: 00007faa8a775fa0 R15: 00007faa8a775fa0
[  126.082728][ T6067]  </TASK>
[  126.116079][ T6067] ---[ end trace ]---
[  126.116121][ T6067] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  126.116189][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  126.116251][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  126.116305][ T6067] Call Trace:
[  126.116320][ T6067]  <TASK>
[  126.116341][ T6067]  vpanic+0x1e0/0x670
[  126.116448][ T6067]  panic+0xc5/0xd0
[  126.116523][ T6067]  ? __pfx_panic+0x10/0x10
[  126.116639][ T6067]  ? __pfx__printk+0x10/0x10
[  126.116716][ T6067]  check_panic_on_warn+0x89/0xb0
[  126.116769][ T6067]  __ubsan_handle_out_of_bounds+0xe8/0xf0
[  126.116852][ T6067]  ocfs2_xa_remove_entry+0x49e/0x670
[  126.116921][ T6067]  ocfs2_xa_set+0xdb2/0x2ec0
[  126.117004][ T6067]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  126.117066][ T6067]  ? try_to_take_rt_mutex+0x840/0xb00
[  126.117130][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.117222][ T6067]  ? __pfx_ocfs2_xa_set+0x10/0x10
[  126.117307][ T6067]  ? rtlock_slowlock_locked+0xfb/0x3c80
[  126.117367][ T6067]  ? do_raw_spin_lock+0x12b/0x2f0
[  126.117426][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.117500][ T6067]  ? unwind_next_frame+0xa5/0x23c0
[  126.117578][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.117656][ T6067]  ? unwind_next_frame+0xa5/0x23c0
[  126.117726][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.117804][ T6067]  ? unwind_next_frame+0xa5/0x23c0
[  126.117882][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.117974][ T6067]  ? is_bpf_text_address+0x26/0x2b0
[  126.118052][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.118132][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.118206][ T6067]  ? lock_release+0x4b/0x3a0
[  126.118232][ T6067]  ? lock_release+0x4b/0x3a0
[  126.118260][ T6067]  ? is_bpf_text_address+0x292/0x2b0
[  126.118283][ T6067]  ? rt_read_lock+0x277/0x4b0
[  126.118303][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.118377][ T6067]  ? lock_acquire+0x5f/0x330
[  126.118458][ T6067]  ocfs2_xattr_block_set+0x3e0/0x3350
[  126.118540][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.118613][ T6067]  ? lock_acquire+0x5f/0x330
[  126.118683][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.118738][ T6067]  ? __pfx_ocfs2_xattr_block_set+0x10/0x10
[  126.118792][ T6067]  ? start_this_handle+0x2135/0x2290
[  126.118894][ T6067]  ? __pfx_start_this_handle+0x10/0x10
[  126.119022][ T6067]  ? rcu_is_watching+0x15/0xb0
[  126.119092][ T6067]  __ocfs2_xattr_set_handle+0x262/0xf50
[  126.119192][ T6067]  ? __pfx___ocfs2_xattr_set_handle+0x10/0x10
[  126.119275][ T6067]  ? jbd2_journal_start+0x2a/0x40
[  126.119365][ T6067]  ? ocfs2_start_trans+0x4e2/0x700
[  126.119454][ T6067]  ? __pfx_ocfs2_start_trans+0x10/0x10
[  126.119542][ T6067]  ocfs2_xattr_set+0xf3f/0x13e0
[  126.119644][ T6067]  ? __pfx_ocfs2_xattr_set+0x10/0x10
[  126.119727][ T6067]  ? smk_tskacc+0x311/0x3a0
[  126.119791][ T6067]  ? smack_log+0xf5/0x3f0
[  126.119861][ T6067]  ? __pfx_smack_log+0x10/0x10
[  126.119936][ T6067]  ? smk_tskacc+0x311/0x3a0
[  126.120009][ T6067]  ? posix_xattr_acl+0x93/0xc0
[  126.120072][ T6067]  ? evm_protect_xattr+0x4d4/0xac0
[  126.120142][ T6067]  ? __pfx_evm_protect_xattr+0x10/0x10
[  126.120198][ T6067]  ? __pfx_ocfs2_xattr_trusted_set+0x10/0x10
[  126.120282][ T6067]  __vfs_removexattr+0x431/0x470
[  126.120372][ T6067]  __vfs_removexattr_locked+0xe2/0x280
[  126.120458][ T6067]  vfs_removexattr+0x7f/0x230
[  126.120534][ T6067]  ovl_fill_super+0x4c39/0x5e60
[  126.120620][ T6067]  ? unwind_get_return_address+0x4d/0x90
[  126.120729][ T6067]  ? __pfx_stack_trace_save+0x10/0x10
[  126.120820][ T6067]  ? __pfx_ovl_fill_super+0x10/0x10
[  126.120885][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.120964][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.121042][ T6067]  ? __lock_acquire+0x6b5/0x2cf0
[  126.121113][ T6067]  ? do_raw_spin_lock+0x12b/0x2f0
[  126.121195][ T6067]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  126.121272][ T6067]  ? lockdep_hardirqs_on+0x7a/0x110
[  126.121328][ T6067]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  126.121397][ T6067]  ? rt_mutex_slowunlock+0x1cb/0x300
[  126.121444][ T6067]  ? __raw_spin_lock_init+0x45/0x100
[  126.121523][ T6067]  ? sget_fc+0x962/0xa40
[  126.121596][ T6067]  ? __pfx_set_anon_super_fc+0x10/0x10
[  126.121645][ T6067]  ? __pfx_ovl_fill_super+0x10/0x10
[  126.121723][ T6067]  get_tree_nodev+0xbb/0x150
[  126.121765][ T6067]  vfs_get_tree+0x92/0x2a0
[  126.121786][ T6067]  do_new_mount+0x341/0xd30
[  126.121811][ T6067]  ? safesetid_security_capable+0xa9/0x1a0
[  126.121844][ T6067]  ? __pfx_do_new_mount+0x10/0x10
[  126.121863][ T6067]  ? ns_capable+0x89/0xe0
[  126.121880][ T6067]  ? path_mount+0x690/0x10e0
[  126.121917][ T6067]  ? user_path_at+0xd4/0x160
[  126.121941][ T6067]  ? user_path_at+0xd4/0x160
[  126.121964][ T6067]  __se_sys_mount+0x31d/0x420
[  126.121986][ T6067]  ? __pfx___se_sys_mount+0x10/0x10
[  126.122009][ T6067]  ? __x64_sys_mount+0x20/0xc0
[  126.122030][ T6067]  do_syscall_64+0x14d/0xf80
[  126.122062][ T6067]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.122077][ T6067]  ? trace_irq_disable+0x37/0x100
[  126.122090][ T6067]  ? clear_bhb_loop+0x40/0x90
[  126.122106][ T6067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.122121][ T6067] RIP: 0033:0x7faa8a4fc629
[  126.122135][ T6067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  126.122147][ T6067] RSP: 002b:00007ffe8a0953b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  126.122163][ T6067] RAX: ffffffffffffffda RBX: 00007faa8a775fa0 RCX: 00007faa8a4fc629
[  126.122174][ T6067] RDX: 0000200000000b80 RSI: 0000200000000000 RDI: 0000000000000000
[  126.122189][ T6067] RBP: 00007faa8a592b39 R08: 0000200000000180 R09: 0000000000000000
[  126.122199][ T6067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.122208][ T6067] R13: 00007faa8a775fac R14: 00007faa8a775fa0 R15: 00007faa8a775fa0
[  126.122224][ T6067]  </TASK>
[  126.122842][ T6067] Kernel Offset: disabled