Warning: Permanently added '[localhost]:33785' (ECDSA) to the list of known hosts.
2025/09/01 10:00:44 fuzzer started
2025/09/01 10:00:44 dialing manager at localhost:35473
syzkaller login: [ 59.289205] cgroup: Unknown subsys name 'net'
[ 59.379362] cgroup: Unknown subsys name 'cpuset'
[ 59.413182] cgroup: Unknown subsys name 'rlimit'
2025/09/01 10:00:55 syscalls: 2214
2025/09/01 10:00:55 code coverage: enabled
2025/09/01 10:00:55 comparison tracing: enabled
2025/09/01 10:00:55 extra coverage: enabled
2025/09/01 10:00:55 setuid sandbox: enabled
2025/09/01 10:00:55 namespace sandbox: enabled
2025/09/01 10:00:55 Android sandbox: enabled
2025/09/01 10:00:55 fault injection: enabled
2025/09/01 10:00:55 leak checking: enabled
2025/09/01 10:00:55 net packet injection: enabled
2025/09/01 10:00:55 net device setup: enabled
2025/09/01 10:00:55 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 10:00:55 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 10:00:55 USB emulation: enabled
2025/09/01 10:00:55 hci packet injection: enabled
2025/09/01 10:00:55 wifi device emulation: enabled
2025/09/01 10:00:55 802.15.4 emulation: enabled
2025/09/01 10:00:55 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 10:00:55 fetching corpus: 50, signal 18910/22471 (executing program)
2025/09/01 10:00:55 fetching corpus: 100, signal 31210/36093 (executing program)
2025/09/01 10:00:56 fetching corpus: 150, signal 40199/46261 (executing program)
2025/09/01 10:00:56 fetching corpus: 200, signal 49047/56060 (executing program)
2025/09/01 10:00:56 fetching corpus: 250, signal 55436/63360 (executing program)
2025/09/01 10:00:56 fetching corpus: 300, signal 59380/68286 (executing program)
2025/09/01 10:00:56 fetching corpus: 350, signal 62704/72548 (executing program)
2025/09/01 10:00:56 fetching corpus: 400, signal 66995/77590 (executing program)
2025/09/01 10:00:56 fetching corpus: 450, signal 70250/81614 (executing program)
2025/09/01 10:00:56 fetching corpus: 500, signal 73181/85329 (executing program)
2025/09/01 10:00:56 fetching corpus: 550, signal 74998/87937 (executing program)
2025/09/01 10:00:56 fetching corpus: 600, signal 76853/90590 (executing program)
2025/09/01 10:00:57 fetching corpus: 650, signal 79234/93660 (executing program)
2025/09/01 10:00:57 fetching corpus: 700, signal 81176/96254 (executing program)
2025/09/01 10:00:57 fetching corpus: 750, signal 83505/99200 (executing program)
2025/09/01 10:00:57 fetching corpus: 800, signal 84716/101136 (executing program)
2025/09/01 10:00:57 fetching corpus: 850, signal 88191/104757 (executing program)
2025/09/01 10:00:57 fetching corpus: 900, signal 89843/106948 (executing program)
2025/09/01 10:00:57 fetching corpus: 950, signal 91143/108812 (executing program)
2025/09/01 10:00:57 fetching corpus: 1000, signal 95047/112619 (executing program)
2025/09/01 10:00:57 fetching corpus: 1050, signal 97209/115044 (executing program)
2025/09/01 10:00:57 fetching corpus: 1100, signal 98521/116816 (executing program)
2025/09/01 10:00:57 fetching corpus: 1150, signal 101290/119565 (executing program)
2025/09/01 10:00:58 fetching corpus: 1200, signal 102817/121464 (executing program)
2025/09/01 10:00:58 fetching corpus: 1250, signal 104098/123046 (executing program)
2025/09/01 10:00:58 fetching corpus: 1300, signal 105320/124599 (executing program)
2025/09/01 10:00:58 fetching corpus: 1350, signal 106089/125849 (executing program)
2025/09/01 10:00:58 fetching corpus: 1400, signal 107499/127446 (executing program)
2025/09/01 10:00:58 fetching corpus: 1450, signal 109294/129281 (executing program)
2025/09/01 10:00:58 fetching corpus: 1500, signal 110050/130428 (executing program)
2025/09/01 10:00:58 fetching corpus: 1550, signal 111358/131894 (executing program)
2025/09/01 10:00:58 fetching corpus: 1600, signal 113269/133658 (executing program)
2025/09/01 10:00:58 fetching corpus: 1650, signal 114414/135024 (executing program)
2025/09/01 10:00:59 fetching corpus: 1700, signal 115975/136517 (executing program)
2025/09/01 10:00:59 fetching corpus: 1750, signal 116852/137627 (executing program)
2025/09/01 10:00:59 fetching corpus: 1800, signal 117898/138736 (executing program)
2025/09/01 10:00:59 fetching corpus: 1850, signal 118835/139858 (executing program)
2025/09/01 10:00:59 fetching corpus: 1900, signal 119884/140955 (executing program)
2025/09/01 10:00:59 fetching corpus: 1950, signal 120841/141997 (executing program)
2025/09/01 10:00:59 fetching corpus: 2000, signal 121774/142983 (executing program)
2025/09/01 10:00:59 fetching corpus: 2050, signal 122705/143953 (executing program)
2025/09/01 10:00:59 fetching corpus: 2100, signal 123833/145019 (executing program)
2025/09/01 10:01:00 fetching corpus: 2150, signal 124809/145997 (executing program)
2025/09/01 10:01:00 fetching corpus: 2200, signal 125433/146791 (executing program)
2025/09/01 10:01:00 fetching corpus: 2250, signal 126611/147775 (executing program)
2025/09/01 10:01:00 fetching corpus: 2300, signal 127544/148661 (executing program)
2025/09/01 10:01:00 fetching corpus: 2350, signal 128579/149533 (executing program)
2025/09/01 10:01:00 fetching corpus: 2400, signal 129465/150296 (executing program)
2025/09/01 10:01:00 fetching corpus: 2450, signal 130587/151142 (executing program)
2025/09/01 10:01:00 fetching corpus: 2500, signal 131070/151739 (executing program)
2025/09/01 10:01:01 fetching corpus: 2550, signal 131614/152348 (executing program)
2025/09/01 10:01:01 fetching corpus: 2600, signal 132228/152967 (executing program)
2025/09/01 10:01:01 fetching corpus: 2650, signal 133193/153676 (executing program)
2025/09/01 10:01:01 fetching corpus: 2700, signal 134280/154424 (executing program)
2025/09/01 10:01:01 fetching corpus: 2750, signal 135108/155056 (executing program)
2025/09/01 10:01:01 fetching corpus: 2800, signal 135820/155665 (executing program)
2025/09/01 10:01:01 fetching corpus: 2850, signal 136705/156226 (executing program)
2025/09/01 10:01:01 fetching corpus: 2900, signal 137342/156723 (executing program)
2025/09/01 10:01:01 fetching corpus: 2950, signal 137902/157244 (executing program)
2025/09/01 10:01:01 fetching corpus: 3000, signal 138743/157759 (executing program)
2025/09/01 10:01:01 fetching corpus: 3050, signal 139350/158215 (executing program)
2025/09/01 10:01:02 fetching corpus: 3100, signal 140632/158843 (executing program)
2025/09/01 10:01:02 fetching corpus: 3150, signal 141279/159274 (executing program)
2025/09/01 10:01:02 fetching corpus: 3200, signal 141885/159663 (executing program)
2025/09/01 10:01:02 fetching corpus: 3250, signal 142553/160094 (executing program)
2025/09/01 10:01:02 fetching corpus: 3300, signal 143312/160487 (executing program)
2025/09/01 10:01:02 fetching corpus: 3350, signal 143702/160821 (executing program)
2025/09/01 10:01:02 fetching corpus: 3400, signal 144219/161141 (executing program)
2025/09/01 10:01:02 fetching corpus: 3450, signal 145046/161519 (executing program)
2025/09/01 10:01:02 fetching corpus: 3500, signal 145487/161849 (executing program)
2025/09/01 10:01:02 fetching corpus: 3550, signal 146019/162165 (executing program)
2025/09/01 10:01:02 fetching corpus: 3600, signal 146681/162516 (executing program)
2025/09/01 10:01:03 fetching corpus: 3650, signal 147095/162781 (executing program)
2025/09/01 10:01:03 fetching corpus: 3700, signal 147558/163033 (executing program)
2025/09/01 10:01:03 fetching corpus: 3750, signal 147968/163294 (executing program)
2025/09/01 10:01:03 fetching corpus: 3800, signal 148522/163591 (executing program)
2025/09/01 10:01:03 fetching corpus: 3850, signal 148975/163795 (executing program)
2025/09/01 10:01:03 fetching corpus: 3900, signal 149394/164031 (executing program)
2025/09/01 10:01:03 fetching corpus: 3950, signal 150103/164231 (executing program)
2025/09/01 10:01:03 fetching corpus: 4000, signal 150630/164389 (executing program)
2025/09/01 10:01:03 fetching corpus: 4050, signal 151079/164401 (executing program)
2025/09/01 10:01:03 fetching corpus: 4100, signal 151584/164401 (executing program)
2025/09/01 10:01:03 fetching corpus: 4150, signal 152553/164414 (executing program)
2025/09/01 10:01:04 fetching corpus: 4200, signal 153082/164453 (executing program)
2025/09/01 10:01:04 fetching corpus: 4250, signal 153725/164573 (executing program)
2025/09/01 10:01:04 fetching corpus: 4300, signal 154021/164593 (executing program)
2025/09/01 10:01:04 fetching corpus: 4350, signal 154470/164604 (executing program)
2025/09/01 10:01:04 fetching corpus: 4400, signal 154966/164626 (executing program)
2025/09/01 10:01:04 fetching corpus: 4450, signal 155317/164644 (executing program)
2025/09/01 10:01:04 fetching corpus: 4500, signal 155924/164652 (executing program)
2025/09/01 10:01:04 fetching corpus: 4550, signal 156604/164668 (executing program)
2025/09/01 10:01:04 fetching corpus: 4600, signal 157103/164671 (executing program)
2025/09/01 10:01:05 fetching corpus: 4650, signal 157617/164686 (executing program)
2025/09/01 10:01:05 fetching corpus: 4700, signal 159346/164699 (executing program)
2025/09/01 10:01:05 fetching corpus: 4750, signal 159913/164714 (executing program)
2025/09/01 10:01:05 fetching corpus: 4800, signal 160294/164728 (executing program)
2025/09/01 10:01:05 fetching corpus: 4850, signal 160843/164735 (executing program)
2025/09/01 10:01:05 fetching corpus: 4900, signal 161388/164762 (executing program)
2025/09/01 10:01:05 fetching corpus: 4950, signal 161965/164770 (executing program)
2025/09/01 10:01:05 fetching corpus: 4952, signal 161979/164770 (executing program)
2025/09/01 10:01:05 fetching corpus: 4952, signal 161979/164770 (executing program)
2025/09/01 10:01:07 starting 8 fuzzer processes
10:01:07 executing program 0:
openat$pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x410401, 0x0)
10:01:07 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10362}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x572, 0x0)
io_cancel(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
pwritev2(r0, &(0x7f0000001500)=[{0x0}, {&(0x7f0000000140)="1b12e4acfae801d6bf2198a74ecfaa58", 0x10}, {&(0x7f00000001c0)="e4433bbe8dfce4c8c9f9c2045773496c6836c6172a3055a54f67b2760a593a896fb101593d8d4c2c7bf2b9568946680fcbad203fb728879bddca05ea1929a99311da211c56f061e1b4dfacadc63cfbd5859e977027a9743a6a1f94148ab325ee3de4c760a773b9f1c008d1ef78d47c216b661eff7c333c866269bac1a4ecafaf795c", 0x82}, {&(0x7f0000000400)="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", 0x3b7}], 0x4, 0xb9e6, 0x0, 0x4)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
10:01:07 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSF(r0, 0x5404, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, "961276215bde308ccc45d6d4adf2c87432f75c"})
10:01:07 executing program 7:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0)
10:01:07 executing program 2:
r0 = socket$inet(0x2, 0x3, 0x5)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'lo\x00'})
write(0xffffffffffffffff, &(0x7f0000000000)="3bff899b7a8706ed9a51833b196ed4e2583d3d11d54276f2c920f2bf7f3797aa87f5df7e97a83a6eb481be101e5e141944d0b76ba7cc5bd9d1336a4635467873fd73cf727fc6cda203b87c6a792cc04a75", 0x51)
r1 = socket$inet(0x2, 0x3, 0x5)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreq(r2, 0x0, 0x23, &(0x7f0000000640)={@multicast2, @dev}, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'})
10:01:07 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
modify_ldt$write2(0x11, &(0x7f00000008c0), 0x10)
10:01:07 executing program 6:
close(0x3)
close(0x4)
close(0x5)
pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0)
close(0x3)
close(0x4)
close(0x5)
[ 82.555897] audit: type=1400 audit(1756720867.955:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
10:01:07 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x16}]})
[ 83.670796] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 83.674648] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 83.678549] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 83.683533] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 83.686726] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 83.791431] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 83.793394] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 83.796313] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 83.802977] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 83.804996] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 83.808635] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 83.811831] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 83.814384] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 83.823176] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 83.830355] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 83.866656] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 83.868772] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 83.874808] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 83.876636] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 83.878381] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 83.880032] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 83.881881] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 83.883430] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 83.886745] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 83.888011] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 83.889449] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 83.892184] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 83.892325] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 83.899485] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 83.901641] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 83.902815] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 83.904078] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 83.905610] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 83.906636] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 83.909358] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 83.913615] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 83.914666] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 83.919431] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 83.928394] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 83.929686] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 85.703788] Bluetooth: hci0: command tx timeout
[ 85.895311] Bluetooth: hci1: command tx timeout
[ 85.895926] Bluetooth: hci2: command tx timeout
[ 85.958428] Bluetooth: hci3: command tx timeout
[ 85.959708] Bluetooth: hci4: command tx timeout
[ 85.960303] Bluetooth: hci7: command tx timeout
[ 86.022299] Bluetooth: hci6: command tx timeout
[ 86.023137] Bluetooth: hci5: command tx timeout
[ 87.750745] Bluetooth: hci0: command tx timeout
[ 87.942810] Bluetooth: hci2: command tx timeout
[ 87.943422] Bluetooth: hci1: command tx timeout
[ 88.006413] Bluetooth: hci4: command tx timeout
[ 88.006812] Bluetooth: hci7: command tx timeout
[ 88.007166] Bluetooth: hci3: command tx timeout
[ 88.070273] Bluetooth: hci6: command tx timeout
[ 88.070675] Bluetooth: hci5: command tx timeout
[ 89.798357] Bluetooth: hci0: command tx timeout
[ 89.990283] Bluetooth: hci1: command tx timeout
[ 89.990731] Bluetooth: hci2: command tx timeout
[ 90.054508] Bluetooth: hci3: command tx timeout
[ 90.054921] Bluetooth: hci7: command tx timeout
[ 90.055640] Bluetooth: hci4: command tx timeout
[ 90.118568] Bluetooth: hci6: command tx timeout
[ 90.118968] Bluetooth: hci5: command tx timeout
[ 91.846379] Bluetooth: hci0: command tx timeout
[ 92.038350] Bluetooth: hci1: command tx timeout
[ 92.038800] Bluetooth: hci2: command tx timeout
[ 92.102565] Bluetooth: hci4: command tx timeout
[ 92.103057] Bluetooth: hci7: command tx timeout
[ 92.104300] Bluetooth: hci3: command tx timeout
[ 92.166284] Bluetooth: hci5: command tx timeout
[ 92.166761] Bluetooth: hci6: command tx timeout
[ 120.919687] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.920856] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.119615] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.120735] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.330871] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.331526] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.508681] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.509437] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.572456] audit: type=1400 audit(1756720906.969:8): avc: denied { open } for pid=3700 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 121.577885] audit: type=1400 audit(1756720906.969:9): avc: denied { kernel } for pid=3700 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
10:01:47 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
modify_ldt$write2(0x11, &(0x7f00000008c0), 0x10)
10:01:47 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
modify_ldt$write2(0x11, &(0x7f00000008c0), 0x10)
[ 121.908015] audit: type=1326 audit(1756720907.307:10): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3730 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f013a4e8b19 code=0x0
10:01:47 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
modify_ldt$write2(0x11, &(0x7f00000008c0), 0x10)
[ 121.956455] audit: type=1326 audit(1756720907.354:11): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3730 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=3 compat=0 ip=0x7f013a49b72b code=0x0
[ 121.996773] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.997398] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:01:47 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x16}]})
10:01:47 executing program 3:
io_uring_setup(0x4c51, &(0x7f0000000100)={0x0, 0x0, 0x2})
[ 122.092818] audit: type=1326 audit(1756720907.492:12): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3748 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f013a4e8b19 code=0x0
[ 122.101563] audit: type=1326 audit(1756720907.495:13): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3748 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f013a4e8b19 code=0x0
10:01:47 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x16}]})
10:01:47 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x4c, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}})
[ 122.252249] audit: type=1326 audit(1756720907.649:14): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3764 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f013a4e8b19 code=0x0
[ 122.262420] audit: type=1326 audit(1756720907.649:15): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3764 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f013a4e8b19 code=0x0
[ 122.307009] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.307618] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:01:47 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x4c, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}})
[ 122.395782] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.397280] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.481539] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.482140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.254726] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.255431] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.328625] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.329182] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.477829] audit: type=1400 audit(1756720908.877:16): avc: denied { read } for pid=3869 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 123.804358] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.804948] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.847259] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.847834] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.944728] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.945478] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.973403] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.974073] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 124.038183] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.039371] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 124.059426] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.060024] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:01:49 executing program 7:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0)
10:01:49 executing program 2:
r0 = socket$inet(0x2, 0x3, 0x5)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'lo\x00'})
write(0xffffffffffffffff, &(0x7f0000000000)="3bff899b7a8706ed9a51833b196ed4e2583d3d11d54276f2c920f2bf7f3797aa87f5df7e97a83a6eb481be101e5e141944d0b76ba7cc5bd9d1336a4635467873fd73cf727fc6cda203b87c6a792cc04a75", 0x51)
r1 = socket$inet(0x2, 0x3, 0x5)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreq(r2, 0x0, 0x23, &(0x7f0000000640)={@multicast2, @dev}, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'})
10:01:49 executing program 0:
openat$pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x410401, 0x0)
10:01:49 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x16}]})
10:01:49 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x4c, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}})
10:01:49 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSF(r0, 0x5404, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, "961276215bde308ccc45d6d4adf2c87432f75c"})
10:01:49 executing program 6:
r0 = socket$inet(0x2, 0x3, 0x5)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'lo\x00'})
write(0xffffffffffffffff, &(0x7f0000000000)="3bff899b7a8706ed9a51833b196ed4e2583d3d11d54276f2c920f2bf7f3797aa87f5df7e97a83a6eb481be101e5e141944d0b76ba7cc5bd9d1336a4635467873fd73cf727fc6cda203b87c6a792cc04a75", 0x51)
r1 = socket$inet(0x2, 0x3, 0x5)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreq(r2, 0x0, 0x23, &(0x7f0000000640)={@multicast2, @dev}, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'})
10:01:49 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10362}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x572, 0x0)
io_cancel(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
pwritev2(r0, &(0x7f0000001500)=[{0x0}, {&(0x7f0000000140)="1b12e4acfae801d6bf2198a74ecfaa58", 0x10}, {&(0x7f00000001c0)="e4433bbe8dfce4c8c9f9c2045773496c6836c6172a3055a54f67b2760a593a896fb101593d8d4c2c7bf2b9568946680fcbad203fb728879bddca05ea1929a99311da211c56f061e1b4dfacadc63cfbd5859e977027a9743a6a1f94148ab325ee3de4c760a773b9f1c008d1ef78d47c216b661eff7c333c866269bac1a4ecafaf795c", 0x82}, {&(0x7f0000000400)="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", 0x3b7}], 0x4, 0xb9e6, 0x0, 0x4)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
[ 124.310920] audit: type=1326 audit(1756720909.702:17): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3920 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f013a4e8b19 code=0x0
10:01:49 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSF(r0, 0x5404, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, "961276215bde308ccc45d6d4adf2c87432f75c"})
10:01:49 executing program 0:
openat$pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x410401, 0x0)
10:01:49 executing program 6:
r0 = socket$inet(0x2, 0x3, 0x5)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'lo\x00'})
write(0xffffffffffffffff, &(0x7f0000000000)="3bff899b7a8706ed9a51833b196ed4e2583d3d11d54276f2c920f2bf7f3797aa87f5df7e97a83a6eb481be101e5e141944d0b76ba7cc5bd9d1336a4635467873fd73cf727fc6cda203b87c6a792cc04a75", 0x51)
r1 = socket$inet(0x2, 0x3, 0x5)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreq(r2, 0x0, 0x23, &(0x7f0000000640)={@multicast2, @dev}, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'})
10:01:49 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x4c, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}})
10:01:49 executing program 2:
r0 = socket$inet(0x2, 0x3, 0x5)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'lo\x00'})
write(0xffffffffffffffff, &(0x7f0000000000)="3bff899b7a8706ed9a51833b196ed4e2583d3d11d54276f2c920f2bf7f3797aa87f5df7e97a83a6eb481be101e5e141944d0b76ba7cc5bd9d1336a4635467873fd73cf727fc6cda203b87c6a792cc04a75", 0x51)
r1 = socket$inet(0x2, 0x3, 0x5)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreq(r2, 0x0, 0x23, &(0x7f0000000640)={@multicast2, @dev}, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'})
[ 124.415411] Oops: general protection fault, probably for non-canonical address 0xdffffc001fffffff: 0000 [#1] SMP KASAN NOPTI
[ 124.416274] KASAN: probably user-memory-access in range [0x00000000fffffff8-0x00000000ffffffff]
[ 124.416963] CPU: 0 UID: 0 PID: 3934 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.419994] Tainted: [W]=WARN
[ 124.421438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.424607] RIP: 0010:dst_dev_put+0x21/0x250
[ 124.426261] Code: 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 41 54 55 53 48 89 fb e8 f0 9a a8 fd 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 b5 01 00 00 48 8d 7b 3a 48 8b 2b 48 b8 00 00 00
[ 124.428845] RSP: 0018:ffff88806ce08d78 EFLAGS: 00010217
[ 124.429619] RAX: dffffc0000000000 RBX: 00000000ffffffff RCX: ffffffff841077c1
[ 124.430657] RDX: 000000001fffffff RSI: ffffffff83cb5bc0 RDI: 00000000ffffffff
[ 124.431680] RBP: dffffc0000000000 R08: 0000000000000000 R09: fffffbfff0c8768a
[ 124.432725] R10: 0000000000000001 R11: 0000000000000001 R12: fffffbfff0b0a4ac
[ 124.433748] R13: 0000607f1a63ec10 R14: 0000607f1a63ec10 R15: 0000000000000001
[ 124.434769] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 124.435920] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 124.436762] CR2: 0000001b2d52a000 CR3: 000000004290b000 CR4: 0000000000350ef0
[ 124.437796] Call Trace:
[ 124.438179]
[ 124.438504] rt_fibinfo_free_cpus.part.0+0xdb/0x1a0
[ 124.439242] fib_nh_common_release+0xa8/0x2c0
[ 124.439912] ? rcu_core+0x723/0x1800
[ 124.440464] free_fib_info_rcu+0x1cd/0x430
[ 124.441083] ? rcu_core+0x7c3/0x1800
[ 124.441630] rcu_core+0x7c8/0x1800
[ 124.442169] ? __pfx_rcu_core+0x10/0x10
[ 124.442764] ? clockevents_program_event+0x135/0x360
[ 124.443510] ? mark_held_locks+0x49/0x80
[ 124.444103] handle_softirqs+0x1b1/0x770
[ 124.444712] __irq_exit_rcu+0xc4/0x100
[ 124.445302] irq_exit_rcu+0x9/0x20
[ 124.445826] sysvec_apic_timer_interrupt+0x70/0x80
[ 124.446706]
[ 124.447029]
[ 124.447350] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 124.448089] RIP: 0010:unmap_page_range+0xc2c/0x36d0
[ 124.448795] Code: 8b 38 48 c1 e8 03 80 3c 08 00 0f 85 12 25 00 00 48 8b 04 24 48 c7 00 00 00 00 00 49 bc 40 00 00 00 00 00 00 04 e8 64 f2 d6 ff <4d> 21 fc 31 ff 4c 89 e6 e8 b7 ed d6 ff 4d 85 e4 0f 85 25 12 00 00
[ 124.451311] RSP: 0018:ffff88801bb27880 EFLAGS: 00000293
[ 124.452048] RAX: 0000000000000000 RBX: ffffea0000ff14c0 RCX: dffffc0000000000
[ 124.453027] RDX: ffff888045ced280 RSI: ffffffff819d044c RDI: 0000000000000001
[ 124.454016] RBP: 0000000000000000 R08: 0000000000000000 R09: fffff940001fe298
[ 124.455012] R10: 0000000000000001 R11: 0000000000000001 R12: 0400000000000040
[ 124.456000] R13: 00007fd61e196000 R14: ffff88801bb27ce0 R15: 800000003fc53007
[ 124.456985] ? unmap_page_range+0xc2c/0x36d0
[ 124.457622] ? lock_is_held_type+0x9e/0x120
[ 124.458243] ? __pfx_unmap_page_range+0x10/0x10
[ 124.458902] ? mas_next_slot+0x13cc/0x1ac0
[ 124.459494] ? uprobe_munmap+0x20/0x600
[ 124.460060] unmap_single_vma.constprop.0+0x153/0x230
[ 124.460782] unmap_vmas+0x1d6/0x430
[ 124.461298] ? __pfx_unmap_vmas+0x10/0x10
[ 124.461903] exit_mmap+0x181/0xaa0
[ 124.462427] ? uprobe_clear_state+0xfc/0x410
[ 124.463059] ? __pfx_exit_mmap+0x10/0x10
[ 124.463643] ? __pfx___mutex_lock+0x10/0x10
[ 124.464263] ? arch_uprobe_clear_state+0x16/0x140
[ 124.464953] mmput+0xd5/0x390
[ 124.465414] do_exit+0x79d/0x2970
[ 124.465917] ? signal_wake_up_state+0x85/0x120
[ 124.466582] ? zap_other_threads+0x2b9/0x3a0
[ 124.467216] ? __pfx_do_exit+0x10/0x10
[ 124.467775] ? do_group_exit+0x1c3/0x2a0
[ 124.468343] ? lock_release+0xc8/0x290
[ 124.468891] do_group_exit+0xd3/0x2a0
[ 124.469437] __x64_sys_exit_group+0x3e/0x50
[ 124.470059] x64_sys_call+0x18c5/0x18d0
[ 124.470628] do_syscall_64+0xbf/0x360
[ 124.471161] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.471871] RIP: 0033:0x7fd61fd3cb19
[ 124.472394] Code: Unable to access opcode bytes at 0x7fd61fd3caef.
[ 124.473240] RSP: 002b:00007ffdea240da8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 124.474288] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fd61fd3cb19
[ 124.475279] RDX: 00007fd61fcef72b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 124.476252] RBP: 0000000000000000 R08: 0000001b2d226dc0 R09: 0000000000000000
[ 124.477224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 124.478211] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffdea240e90
[ 124.479197]
[ 124.479527] Modules linked in:
[ 124.480166] ---[ end trace 0000000000000000 ]---
[ 124.480855] RIP: 0010:dst_dev_put+0x21/0x250
[ 124.481511] Code: 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 41 54 55 53 48 89 fb e8 f0 9a a8 fd 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 b5 01 00 00 48 8d 7b 3a 48 8b 2b 48 b8 00 00 00
[ 124.484055] RSP: 0018:ffff88806ce08d78 EFLAGS: 00010217
[ 124.484820] RAX: dffffc0000000000 RBX: 00000000ffffffff RCX: ffffffff841077c1
[ 124.485829] RDX: 000000001fffffff RSI: ffffffff83cb5bc0 RDI: 00000000ffffffff
[ 124.486840] RBP: dffffc0000000000 R08: 0000000000000000 R09: fffffbfff0c8768a
[ 124.487840] R10: 0000000000000001 R11: 0000000000000001 R12: fffffbfff0b0a4ac
[ 124.488846] R13: 0000607f1a63ec10 R14: 0000607f1a63ec10 R15: 0000000000000001
[ 124.489855] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 124.491001] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 124.491831] CR2: 0000001b2d52a000 CR3: 000000004290b000 CR4: 0000000000350ef0
[ 124.492855] Kernel panic - not syncing: Fatal exception in interrupt
[ 124.493849] Kernel Offset: disabled
[ 124.494364] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
10:01:50 Registers:
info registers vcpu 0
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff828e5070 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88806ce08710
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=6572617764726148
R12=000000000000005f R13=ffffffff88729290 R14=ffffffff88729240 R15=ffffffff88729500
RIP=ffffffff828e50c5 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe6000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d52a000 CR3=000000004290b000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000099 RCX=ffffffff819d0152 RDX=ffff88801a318000
RSI=0000000000000000 RDI=0000000000000007 RBP=ffff88800d3919f8 RSP=ffff888018d2f878
R8 =0000000000000000 R9 =fffff940001cbe5e R10=0000000000000000 R11=1ffff1100d9e6f7b
R12=0000000000000099 R13=0000000000000099 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8173f6b0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe6a00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f148b1afd18 CR3=00000000423ea000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000