program: r0 = syz_usb_connect$cdc_ecm(0x2, 0x5b, &(0x7f0000000580)=ANY=[@ANYBLOB="12010000020000082505a1a4400001020301090249000101000000090400080302060000052406000005240000000d240f0106800000ff0f040000052401020709058103000208070409058202"], 0x0) r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x10000001d, 0x8041) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) getresuid(0x0, 0x0, &(0x7f0000000380)) setreuid(0x0, 0x0) r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3) ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYRESHEX=r2, @ANYRES32=r5, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x10000}, 0x0) write$nci(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="610302070102e50512c71dcc80b3c4f576ebda506287a4ebf7e501021a"], 0x1c) syz_usb_control_io(r0, 0x0, 0x0) ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000080)={0x2, 0xe, 0x5, 0x2, 0x0, 0x5, 0x0}) r6 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x2, 0x4, 0x6, 0x6, 0x7, 0x0, 0x70bd2c, 0x25dfdbfb, [@sadb_x_sec_ctx={0x3, 0x18, 0x10, 0xb, 0xf, "4ebf8bc3ffb463428167dbdc1b8bf7"}, @sadb_x_nat_t_port={0x1, 0x15, 0x4e24}, @sadb_x_nat_t_type={0x1, 0x14, 0x3}]}, 0x38}}, 0x4040480) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x40c8, &(0x7f0000000280)={[{@grpjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}]}, 0xfb, 0x496, &(0x7f0000000f40)="$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") chdir(&(0x7f0000000340)='./file0\x00') syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000040)={[{@nobarrier}, {@resuid}, {@barrier_val={'barrier', 0x3d, 0x9}}]}, 0x1, 0x4b0, &(0x7f0000000b80)="$eJzs3c1rXOUaAPBnZpo0SXNvP+7l0vbCbaEXej9oJh9cmlzduFIXBbHgRqHGZBprJpmQmdQmdJHqrgsXoiiIC/f+BW7syiKIa92LC6lojaCCMHLOzKT5mjhompGc3w9Oc97zTs/zvhmel3Pec05OAJl1NvknFzEYEZ9GxNFGcfMHzjZ+rN2/OZUsuajXL3+TSz+XlFsfbf2/IxGxGhF9EfH04xEv5LbHrS6vzE6Wy6XFZrlYm1soVpdXLlybm5wpzZTmR8YvTkyMD4+NTuxZX2+/9tLtSx882fv+D6/eu/v6Rx8mzRps1m3sx15qdL0njm/YdigiHn0Ywbqg0OxPf7cbwm+SfH9/iYhzaf4fjUL6bQJZUK/X6z/XD7erXq0DB1Y+PQbO5YciorGezw8NNY7h/xoD+XKlWvvv1crS/HTjWPlY9OSvXiuXhpvnCseiJ5eUR9L1B+XRLeWxiPQY+I1Cf1oemqqUp/d3qAO2ONLM//5m/n9faOQ/kBE7n/K3PSkADhBTfpBd8h+yS/5Ddsl/yC75D9kl/yG75D9kl/yH7JL/kF3yHzLpqUuXkqXeev59+vry0mzl+oXpUnV2aG5pamiqsrgwNFOpzKTP7Mz92v7KlcrCyP9i6UaxVqrWitXllStzlaX52pX0uf4rpZ596RXQieNn7nyei4jV//enS6K3WSdX4WCr13PR7WeQge4odHsAArrG1B9kl3N8YIc/0btJX7uKhb1vC7A/8t1uANA150+5/gdZZf4fssv8P2SXY3zA/D9kj/l/yK7BNu//+tOGd3cNR8SfI+KzQs/h1ru+gIMg/1UuIp8c/58/+s/BrbW9uR/TSwS9EfHyO5ffujFZqy2OJNu/Xd9ee7u5fbQb7Qc61crTVh4DANm1dv/mVGvZz7hfP9a4CWF7/EPNucm+9BrlwFpu070KuT26d2H1VkSc3Cl+rvm+88aVj4G1wrb4J5o/c41dpO09lL43fX/in9oQ/x8b4p/+3b8VyIY7yfgzvFP+5dOcjvX82zz+DO7RvRPtx7/8+vhXaDP+nekwxovvvvJl2/i3Ik7vGL8Vry+NtTV+0rbznYXP3Xvumb+1q6y/19jPTvHXdxARxdrcQrG6vHIh/TtyM6X5kfGLExPjw2OjE8V0jrrYmqne7pGTn9zdrf8DbeLv1v9k278763/89PePnz27S/x/ndv5+z+xS/z+iPhPh/G/G/3i+XZ1SfzpNv3P7xI/2TbWYfzqm094lzgA/IFUl1dmJ8vl0qIVK1asrK90e2QCHrYHSd/tlgAAAAAAAAAAAACd2o/bibvdRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAg+CXAAAA///8zdZA") r7 = open(&(0x7f0000000180)='./bus\x00', 0x4a37e, 0x4) r8 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0) ftruncate(r8, 0x2008002) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r7, 0x1000000) r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0) io_setup(0x1, &(0x7f00000004c0)=0x0) io_submit(r10, 0xca, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x0, 0x0, r9, &(0x7f0000000000)="98", 0x3e8000072a, 0x1000000, 0x0, 0x10}]) creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) syz_mount_image$jfs(&(0x7f0000000240), &(0x7f0000000040)='./file1\x00', 0x1010006, &(0x7f0000000140)=ANY=[@ANYBLOB="71756f74612c646973636172643d3078303030303030303030303030616666392c696f636861727365743d6e6f6e652c696f636861727365743d6d6163677265656b2c696f63686140f7beca3d69736f383835392d312c696e746567726974792c6e6f646973636172642c6e6f71756f74612c696f636861727365743d63703837342c00"], 0x24, 0x6208, &(0x7f0000013980)="$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") r11 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db) writev(r11, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1) socket$nl_route(0x10, 0x3, 0x0) [ 75.471782][ T5315] Bluetooth: hci0: command tx timeout [ 75.791547][ T9] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 75.943807][ T9] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 75.947917][ T9] usb 5-1: config 1 interface 0 altsetting 8 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 75.952653][ T9] usb 5-1: config 1 interface 0 altsetting 8 endpoint 0x82 has invalid wMaxPacketSize 0 [ 75.957075][ T9] usb 5-1: config 1 interface 0 altsetting 8 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 75.963878][ T9] usb 5-1: config 1 interface 0 has no altsetting 0 [ 75.968905][ T9] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 75.973329][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 75.976902][ T9] usb 5-1: Product: syz [ 75.978671][ T9] usb 5-1: Manufacturer: syz [ 75.980632][ T9] usb 5-1: SerialNumber: syz [ 75.996923][ T5337] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 76.004993][ T9] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22 [ 76.354786][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.357638][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.592370][ T5338] usb 5-1: check_ctrlrecip: process 5338 (syz.0.0) requesting ep 02 but needs 82 [ 76.596653][ T5338] usb 5-1: usbfs: process 5338 (syz.0.0) did not claim interface 0 before use [ 76.611103][ T5338] loop0: detected capacity change from 0 to 512 [ 76.617338][ T5338] ======================================================= [ 76.617338][ T5338] WARNING: The mand mount option has been deprecated and [ 76.617338][ T5338] and is ignored by this kernel. Remove the mand [ 76.617338][ T5338] option from the mount to silence this warning. [ 76.617338][ T5338] ======================================================= [ 76.676994][ T5338] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #17: comm syz.0.0: iget: bogus i_mode (0) [ 76.683652][ T5338] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.0: couldn't read orphan inode 17 (err -117) [ 76.689823][ T5338] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.716021][ T5338] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2857: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 76.833437][ T5348] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.0: bg 0: block 7: invalid block bitmap [ 76.852084][ T5337] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.0: bg 0: block 7: invalid block bitmap [ 76.872958][ T1047] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 96 with error 28 [ 76.878865][ T1047] EXT4-fs (loop0): This should not happen!! Data will be lost [ 76.878865][ T1047] [ 76.891987][ T1047] EXT4-fs (loop0): Total free blocks count 0 [ 76.894725][ T1047] EXT4-fs (loop0): Free/Dirty block details [ 76.897234][ T1047] EXT4-fs (loop0): free_blocks=0 [ 76.899376][ T1047] EXT4-fs (loop0): dirty_blocks=96 [ 76.904475][ T1047] EXT4-fs (loop0): Block reservation details [ 76.907600][ T1047] EXT4-fs (loop0): i_reserved_data_blocks=96 [ 76.929820][ T5348] ------------[ cut here ]------------ [ 76.932317][ T5348] WARNING: fs/ext4/inode.c:3965 at ext4_dirty_folio+0x167/0x1b0, CPU#0: syz.0.0/5348 [ 76.935969][ T5348] Modules linked in: [ 76.937486][ T5348] CPU: 0 UID: 0 PID: 5348 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 76.940791][ T5348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.945053][ T5348] RIP: 0010:ext4_dirty_folio+0x167/0x1b0 [ 76.947461][ T5348] Code: af ba ab ff 49 83 3f 00 74 1a e8 04 10 44 ff 4c 89 e7 48 89 de 5b 41 5c 41 5d 41 5e 41 5f 5d e9 1f ef cf ff e8 ea 0f 44 ff 90 <0f> 0b 90 eb e0 e8 df 0f 44 ff 90 0f 0b 90 eb a7 e8 d4 0f 44 ff 48 [ 76.955352][ T5348] RSP: 0018:ffffc9000b2b7538 EFLAGS: 00010283 [ 76.957961][ T5348] RAX: ffffffff827cf776 RBX: ffffea00008c04c0 RCX: 0000000000100000 [ 76.961139][ T5348] RDX: ffffc90021a24000 RSI: 000000000000861e RDI: 000000000000861f [ 76.964033][ T5348] RBP: 1ffffd4000118098 R08: ffffea00008c04c7 R09: 1ffffd4000118098 [ 76.967255][ T5348] R10: dffffc0000000000 R11: fffff94000118099 R12: ffff8880475dab38 [ 76.970741][ T5348] R13: 1ffffd4000118099 R14: 0000000000000001 R15: ffffea00008c04e8 [ 76.974234][ T5348] FS: 00007f8e5c1d46c0(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000 [ 76.978506][ T5348] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.981921][ T5348] CR2: 00007ffc2bc50f52 CR3: 0000000043e21000 CR4: 0000000000352ef0 [ 76.985413][ T5348] Call Trace: [ 76.986958][ T5348] [ 76.988297][ T5348] bio_set_pages_dirty+0xf3/0x170 [ 76.990558][ T5348] __blkdev_direct_IO+0x846/0xf80 [ 76.992863][ T5348] ? __pfx_aio_complete_rw+0x10/0x10 [ 76.995089][ T5348] ? __pfx___blkdev_direct_IO+0x10/0x10 [ 76.997711][ T5348] ? __lock_acquire+0x6b6/0x2cf0 [ 76.999897][ T5348] blkdev_direct_IO+0x127e/0x1800 [ 77.002263][ T5348] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 77.004323][ T5348] ? reacquire_held_locks+0x104/0x190 [ 77.006461][ T5348] ? __mark_inode_dirty+0x6a8/0x1330 [ 77.008426][ T5348] ? blkdev_read_iter+0x210/0x440 [ 77.010715][ T5348] ? touch_atime+0x384/0x6d0 [ 77.012752][ T5348] ? blkdev_read_iter+0x210/0x440 [ 77.014559][ T5348] blkdev_read_iter+0x23d/0x440 [ 77.016486][ T5348] aio_read+0x311/0x470 [ 77.018347][ T5348] ? __pfx_aio_read+0x10/0x10 [ 77.020475][ T5348] ? __might_fault+0xb0/0x130 [ 77.022752][ T5348] io_submit_one+0x755/0x1430 [ 77.024678][ T5348] ? irqentry_exit+0x5e8/0x670 [ 77.026728][ T5348] ? __pfx_io_submit_one+0x10/0x10 [ 77.029003][ T5348] ? __might_fault+0xb0/0x130 [ 77.031065][ T5348] ? __might_fault+0xb0/0x130 [ 77.033236][ T5348] __se_sys_io_submit+0x185/0x320 [ 77.035514][ T5348] ? __pfx___se_sys_io_submit+0x10/0x10 [ 77.038109][ T5348] do_syscall_64+0xec/0xf80 [ 77.040128][ T5348] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.042805][ T5348] ? trace_irq_disable+0x37/0x100 [ 77.044898][ T5348] ? clear_bhb_loop+0x60/0xb0 [ 77.046868][ T5348] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.049459][ T5348] RIP: 0033:0x7f8e5fd8f7c9 [ 77.051514][ T5348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 77.059534][ T5348] RSP: 002b:00007f8e5c1d4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 77.062930][ T5348] RAX: ffffffffffffffda RBX: 00007f8e5ffe6180 RCX: 00007f8e5fd8f7c9 [ 77.066660][ T5348] RDX: 00002000000000c0 RSI: 00000000000000ca RDI: 00007f8e60b1f000 [ 77.070179][ T5348] RBP: 00007f8e5fe13f91 R08: 0000000000000000 R09: 0000000000000000 [ 77.073688][ T5348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 77.077134][ T5348] R13: 00007f8e5ffe6218 R14: 00007f8e5ffe6180 R15: 00007ffe9f75d318 [ 77.080576][ T5348] [ 77.081937][ T5348] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 77.084969][ T5348] CPU: 0 UID: 0 PID: 5348 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 77.088825][ T5348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 77.093473][ T5348] Call Trace: [ 77.095015][ T5348] [ 77.096413][ T5348] vpanic+0x1e0/0x670 [ 77.098248][ T5348] panic+0xb9/0xc0 [ 77.100017][ T5348] ? __pfx_panic+0x10/0x10 [ 77.102170][ T5348] __warn+0x317/0x4b0 [ 77.103656][ T5348] ? ext4_dirty_folio+0x167/0x1b0 [ 77.106054][ T5348] ? ext4_dirty_folio+0x167/0x1b0 [ 77.108415][ T5348] __report_bug+0x288/0x500 [ 77.110563][ T5348] ? ext4_dirty_folio+0x167/0x1b0 [ 77.112765][ T5348] ? __pfx___report_bug+0x10/0x10 [ 77.115086][ T5348] ? pin_user_pages_fast+0x4d/0xb0 [ 77.117339][ T5348] ? iov_iter_extract_pages+0x43b/0x5e0 [ 77.119845][ T5348] ? ext4_dirty_folio+0x167/0x1b0 [ 77.122067][ T5348] report_bug+0x16a/0x220 [ 77.123995][ T5348] ? ext4_dirty_folio+0x167/0x1b0 [ 77.126218][ T5348] ? ext4_dirty_folio+0x169/0x1b0 [ 77.128521][ T5348] handle_bug+0x98/0x200 [ 77.130371][ T5348] exc_invalid_op+0x1a/0x50 [ 77.132062][ T5348] asm_exc_invalid_op+0x1a/0x20 [ 77.133925][ T5348] RIP: 0010:ext4_dirty_folio+0x167/0x1b0 [ 77.136252][ T5348] Code: af ba ab ff 49 83 3f 00 74 1a e8 04 10 44 ff 4c 89 e7 48 89 de 5b 41 5c 41 5d 41 5e 41 5f 5d e9 1f ef cf ff e8 ea 0f 44 ff 90 <0f> 0b 90 eb e0 e8 df 0f 44 ff 90 0f 0b 90 eb a7 e8 d4 0f 44 ff 48 [ 77.144595][ T5348] RSP: 0018:ffffc9000b2b7538 EFLAGS: 00010283 [ 77.147719][ T5348] RAX: ffffffff827cf776 RBX: ffffea00008c04c0 RCX: 0000000000100000 [ 77.152054][ T5348] RDX: ffffc90021a24000 RSI: 000000000000861e RDI: 000000000000861f [ 77.156150][ T5348] RBP: 1ffffd4000118098 R08: ffffea00008c04c7 R09: 1ffffd4000118098 [ 77.160727][ T5348] R10: dffffc0000000000 R11: fffff94000118099 R12: ffff8880475dab38 [ 77.164188][ T5348] R13: 1ffffd4000118099 R14: 0000000000000001 R15: ffffea00008c04e8 [ 77.167695][ T5348] ? ext4_dirty_folio+0x166/0x1b0 [ 77.169962][ T5348] ? ext4_dirty_folio+0x166/0x1b0 [ 77.172073][ T5348] bio_set_pages_dirty+0xf3/0x170 [ 77.174219][ T5348] __blkdev_direct_IO+0x846/0xf80 [ 77.176483][ T5348] ? __pfx_aio_complete_rw+0x10/0x10 [ 77.178863][ T5348] ? __pfx___blkdev_direct_IO+0x10/0x10 [ 77.181377][ T5348] ? __lock_acquire+0x6b6/0x2cf0 [ 77.183594][ T5348] blkdev_direct_IO+0x127e/0x1800 [ 77.185824][ T5348] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 77.188248][ T5348] ? reacquire_held_locks+0x104/0x190 [ 77.190679][ T5348] ? __mark_inode_dirty+0x6a8/0x1330 [ 77.192983][ T5348] ? blkdev_read_iter+0x210/0x440 [ 77.195287][ T5348] ? touch_atime+0x384/0x6d0 [ 77.197374][ T5348] ? blkdev_read_iter+0x210/0x440 [ 77.199361][ T5348] blkdev_read_iter+0x23d/0x440 [ 77.201526][ T5348] aio_read+0x311/0x470 [ 77.203302][ T5348] ? __pfx_aio_read+0x10/0x10 [ 77.205452][ T5348] ? __might_fault+0xb0/0x130 [ 77.207604][ T5348] io_submit_one+0x755/0x1430 [ 77.209772][ T5348] ? irqentry_exit+0x5e8/0x670 [ 77.211898][ T5348] ? __pfx_io_submit_one+0x10/0x10 [ 77.214165][ T5348] ? __might_fault+0xb0/0x130 [ 77.216282][ T5348] ? __might_fault+0xb0/0x130 [ 77.218324][ T5348] __se_sys_io_submit+0x185/0x320 [ 77.220713][ T5348] ? __pfx___se_sys_io_submit+0x10/0x10 [ 77.223209][ T5348] do_syscall_64+0xec/0xf80 [ 77.225233][ T5348] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.227930][ T5348] ? trace_irq_disable+0x37/0x100 [ 77.230177][ T5348] ? clear_bhb_loop+0x60/0xb0 [ 77.232210][ T5348] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.234900][ T5348] RIP: 0033:0x7f8e5fd8f7c9 [ 77.236806][ T5348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 77.244174][ T5348] RSP: 002b:00007f8e5c1d4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 77.247162][ T5348] RAX: ffffffffffffffda RBX: 00007f8e5ffe6180 RCX: 00007f8e5fd8f7c9 [ 77.250633][ T5348] RDX: 00002000000000c0 RSI: 00000000000000ca RDI: 00007f8e60b1f000 [ 77.253710][ T5348] RBP: 00007f8e5fe13f91 R08: 0000000000000000 R09: 0000000000000000 [ 77.257105][ T5348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 77.260665][ T5348] R13: 00007f8e5ffe6218 R14: 00007f8e5ffe6180 R15: 00007ffe9f75d318 [ 77.264120][ T5348] [ 77.265807][ T5348] Kernel Offset: disabled [ 77.267760][ T5348] Rebooting in 86400 seconds..