Warning: Permanently added '[localhost]:45290' (ECDSA) to the list of known hosts. 2025/09/01 09:33:05 fuzzer started 2025/09/01 09:33:06 dialing manager at localhost:35473 syzkaller login: [ 59.505284] cgroup: Unknown subsys name 'net' [ 59.587898] cgroup: Unknown subsys name 'cpuset' [ 59.604305] cgroup: Unknown subsys name 'rlimit' 2025/09/01 09:33:17 syscalls: 2214 2025/09/01 09:33:17 code coverage: enabled 2025/09/01 09:33:17 comparison tracing: enabled 2025/09/01 09:33:17 extra coverage: enabled 2025/09/01 09:33:17 setuid sandbox: enabled 2025/09/01 09:33:17 namespace sandbox: enabled 2025/09/01 09:33:17 Android sandbox: enabled 2025/09/01 09:33:17 fault injection: enabled 2025/09/01 09:33:17 leak checking: enabled 2025/09/01 09:33:17 net packet injection: enabled 2025/09/01 09:33:17 net device setup: enabled 2025/09/01 09:33:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 09:33:17 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 09:33:17 USB emulation: enabled 2025/09/01 09:33:17 hci packet injection: enabled 2025/09/01 09:33:17 wifi device emulation: enabled 2025/09/01 09:33:17 802.15.4 emulation: enabled 2025/09/01 09:33:17 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 09:33:17 fetching corpus: 47, signal 20175/23665 (executing program) 2025/09/01 09:33:17 fetching corpus: 97, signal 30757/35541 (executing program) 2025/09/01 09:33:18 fetching corpus: 147, signal 43528/49222 (executing program) 2025/09/01 09:33:18 fetching corpus: 197, signal 48597/55413 (executing program) 2025/09/01 09:33:18 fetching corpus: 247, signal 54818/62472 (executing program) 2025/09/01 09:33:18 fetching corpus: 297, signal 58215/66838 (executing program) 2025/09/01 09:33:18 fetching corpus: 346, signal 61183/70750 (executing program) 2025/09/01 09:33:18 fetching corpus: 396, signal 64922/75207 (executing program) 2025/09/01 09:33:18 fetching corpus: 446, signal 67997/79055 (executing program) 2025/09/01 09:33:18 fetching corpus: 496, signal 70291/82098 (executing program) 2025/09/01 09:33:18 fetching corpus: 546, signal 72396/84934 (executing program) 2025/09/01 09:33:18 fetching corpus: 596, signal 74932/88118 (executing program) 2025/09/01 09:33:18 fetching corpus: 646, signal 77226/91006 (executing program) 2025/09/01 09:33:19 fetching corpus: 696, signal 81407/95300 (executing program) 2025/09/01 09:33:19 fetching corpus: 746, signal 84354/98619 (executing program) 2025/09/01 09:33:19 fetching corpus: 796, signal 89207/103274 (executing program) 2025/09/01 09:33:19 fetching corpus: 846, signal 90711/105192 (executing program) 2025/09/01 09:33:19 fetching corpus: 896, signal 91621/106679 (executing program) 2025/09/01 09:33:19 fetching corpus: 946, signal 93038/108529 (executing program) 2025/09/01 09:33:19 fetching corpus: 996, signal 95714/111239 (executing program) 2025/09/01 09:33:19 fetching corpus: 1046, signal 99872/114938 (executing program) 2025/09/01 09:33:20 fetching corpus: 1096, signal 101683/116903 (executing program) 2025/09/01 09:33:20 fetching corpus: 1144, signal 102929/118454 (executing program) 2025/09/01 09:33:20 fetching corpus: 1194, signal 104540/120175 (executing program) 2025/09/01 09:33:20 fetching corpus: 1243, signal 105766/121583 (executing program) 2025/09/01 09:33:20 fetching corpus: 1293, signal 107055/123044 (executing program) 2025/09/01 09:33:20 fetching corpus: 1343, signal 108732/124657 (executing program) 2025/09/01 09:33:20 fetching corpus: 1393, signal 110164/126096 (executing program) 2025/09/01 09:33:20 fetching corpus: 1443, signal 111471/127440 (executing program) 2025/09/01 09:33:20 fetching corpus: 1493, signal 112891/128814 (executing program) 2025/09/01 09:33:21 fetching corpus: 1543, signal 113946/130004 (executing program) 2025/09/01 09:33:21 fetching corpus: 1593, signal 114982/131134 (executing program) 2025/09/01 09:33:21 fetching corpus: 1643, signal 116149/132268 (executing program) 2025/09/01 09:33:21 fetching corpus: 1692, signal 117352/133416 (executing program) 2025/09/01 09:33:21 fetching corpus: 1742, signal 118772/134614 (executing program) 2025/09/01 09:33:21 fetching corpus: 1792, signal 119931/135632 (executing program) 2025/09/01 09:33:21 fetching corpus: 1842, signal 120979/136542 (executing program) 2025/09/01 09:33:21 fetching corpus: 1892, signal 121591/137246 (executing program) 2025/09/01 09:33:21 fetching corpus: 1942, signal 122549/138088 (executing program) 2025/09/01 09:33:21 fetching corpus: 1992, signal 123982/139142 (executing program) 2025/09/01 09:33:21 fetching corpus: 2042, signal 124533/139756 (executing program) 2025/09/01 09:33:22 fetching corpus: 2091, signal 125332/140448 (executing program) 2025/09/01 09:33:22 fetching corpus: 2141, signal 126105/141151 (executing program) 2025/09/01 09:33:22 fetching corpus: 2191, signal 127271/141968 (executing program) 2025/09/01 09:33:22 fetching corpus: 2240, signal 127862/142492 (executing program) 2025/09/01 09:33:22 fetching corpus: 2290, signal 128658/143116 (executing program) 2025/09/01 09:33:22 fetching corpus: 2340, signal 129741/143828 (executing program) 2025/09/01 09:33:22 fetching corpus: 2390, signal 130352/144351 (executing program) 2025/09/01 09:33:22 fetching corpus: 2439, signal 130811/144835 (executing program) 2025/09/01 09:33:22 fetching corpus: 2489, signal 131500/145401 (executing program) 2025/09/01 09:33:22 fetching corpus: 2539, signal 132054/145809 (executing program) 2025/09/01 09:33:23 fetching corpus: 2589, signal 133084/146373 (executing program) 2025/09/01 09:33:23 fetching corpus: 2639, signal 133951/146890 (executing program) 2025/09/01 09:33:23 fetching corpus: 2689, signal 134480/147299 (executing program) 2025/09/01 09:33:23 fetching corpus: 2738, signal 135681/147839 (executing program) 2025/09/01 09:33:23 fetching corpus: 2788, signal 136769/148325 (executing program) 2025/09/01 09:33:23 fetching corpus: 2838, signal 137492/148686 (executing program) 2025/09/01 09:33:23 fetching corpus: 2888, signal 138067/148990 (executing program) 2025/09/01 09:33:23 fetching corpus: 2938, signal 138808/149340 (executing program) 2025/09/01 09:33:23 fetching corpus: 2988, signal 139432/149688 (executing program) 2025/09/01 09:33:23 fetching corpus: 3038, signal 140312/149991 (executing program) 2025/09/01 09:33:24 fetching corpus: 3088, signal 141103/150262 (executing program) 2025/09/01 09:33:24 fetching corpus: 3138, signal 141782/150524 (executing program) 2025/09/01 09:33:24 fetching corpus: 3188, signal 142532/150774 (executing program) 2025/09/01 09:33:24 fetching corpus: 3238, signal 142939/150943 (executing program) 2025/09/01 09:33:24 fetching corpus: 3288, signal 143681/151156 (executing program) 2025/09/01 09:33:24 fetching corpus: 3338, signal 144353/151335 (executing program) 2025/09/01 09:33:24 fetching corpus: 3388, signal 144731/151480 (executing program) 2025/09/01 09:33:24 fetching corpus: 3438, signal 145436/151608 (executing program) 2025/09/01 09:33:24 fetching corpus: 3488, signal 145989/151790 (executing program) 2025/09/01 09:33:24 fetching corpus: 3538, signal 146468/151885 (executing program) 2025/09/01 09:33:24 fetching corpus: 3588, signal 147167/152017 (executing program) 2025/09/01 09:33:24 fetching corpus: 3622, signal 149245/152117 (executing program) 2025/09/01 09:33:24 fetching corpus: 3623, signal 149247/152144 (executing program) 2025/09/01 09:33:24 fetching corpus: 3623, signal 149247/152144 (executing program) 2025/09/01 09:33:26 starting 8 fuzzer processes 09:33:26 executing program 0: setresuid(0xee01, 0xee00, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x808, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2030}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 09:33:26 executing program 5: ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000200)={0x0, 0x0, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff80000000, 0x9]}) r0 = syz_io_uring_setup(0x3a2d, &(0x7f0000000480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f0000000340)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)=""/56, 0x38}], 0x5) 09:33:26 executing program 1: ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/memory_tiering', 0x80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) 09:33:26 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x2000000) 09:33:27 executing program 7: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000240)=0x1, 0x4) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x1d, 0x0, &(0x7f0000000040)) 09:33:27 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) connect$802154_dgram(r0, &(0x7f00000000c0), 0x14) 09:33:27 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) fremovexattr(r0, &(0x7f0000000100)=@known='system.posix_acl_default\x00') 09:33:27 executing program 4: semtimedop(0x0, &(0x7f0000002140)=[{0x0, 0x6, 0x1000}, {}], 0x2, &(0x7f00000021c0)) [ 79.432465] audit: type=1400 audit(1756719207.116:7): avc: denied { execmem } for pid=273 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 80.569730] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.571917] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.573683] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.578322] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.580793] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 80.764269] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 80.766117] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.769449] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 80.771177] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 80.772016] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 80.773936] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 80.776762] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.779481] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 80.781305] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.784197] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.792826] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.796094] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 80.798630] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 80.805623] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.812472] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.839299] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 80.857134] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 80.858753] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 80.862335] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 80.863784] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 80.871687] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 80.874108] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 80.877213] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 80.880398] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 80.880424] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 80.887808] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 80.888272] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 80.893981] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 80.895988] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 80.899633] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 80.901251] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 80.905214] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 80.906471] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 80.914011] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 80.917724] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 82.605229] Bluetooth: hci0: command tx timeout [ 82.861897] Bluetooth: hci3: command tx timeout [ 82.862513] Bluetooth: hci1: command tx timeout [ 82.863038] Bluetooth: hci2: command tx timeout [ 82.926176] Bluetooth: hci4: command tx timeout [ 82.989899] Bluetooth: hci6: command tx timeout [ 82.990380] Bluetooth: hci7: command tx timeout [ 82.990822] Bluetooth: hci5: command tx timeout [ 84.654097] Bluetooth: hci0: command tx timeout [ 84.908977] Bluetooth: hci2: command tx timeout [ 84.909416] Bluetooth: hci1: command tx timeout [ 84.909795] Bluetooth: hci3: command tx timeout [ 84.974858] Bluetooth: hci4: command tx timeout [ 85.037052] Bluetooth: hci5: command tx timeout [ 85.037446] Bluetooth: hci7: command tx timeout [ 85.037821] Bluetooth: hci6: command tx timeout [ 86.700963] Bluetooth: hci0: command tx timeout [ 86.957953] Bluetooth: hci3: command tx timeout [ 86.958027] Bluetooth: hci1: command tx timeout [ 86.958500] Bluetooth: hci2: command tx timeout [ 87.021866] Bluetooth: hci4: command tx timeout [ 87.084935] Bluetooth: hci7: command tx timeout [ 87.085352] Bluetooth: hci5: command tx timeout [ 87.087291] Bluetooth: hci6: command tx timeout [ 88.749972] Bluetooth: hci0: command tx timeout [ 89.004914] Bluetooth: hci1: command tx timeout [ 89.005924] Bluetooth: hci3: command tx timeout [ 89.006310] Bluetooth: hci2: command tx timeout [ 89.069937] Bluetooth: hci4: command tx timeout [ 89.133943] Bluetooth: hci6: command tx timeout [ 89.134364] Bluetooth: hci5: command tx timeout [ 89.134425] Bluetooth: hci7: command tx timeout [ 118.349654] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.350339] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.570368] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.570972] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.889112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.889728] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.010802] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.012034] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:34:06 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) connect$802154_dgram(r0, &(0x7f00000000c0), 0x14) [ 119.145617] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.146569] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:34:06 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) connect$802154_dgram(r0, &(0x7f00000000c0), 0x14) [ 119.290356] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.291032] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:34:06 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) connect$802154_dgram(r0, &(0x7f00000000c0), 0x14) 09:34:07 executing program 3: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) fcntl$lock(r0, 0x6, &(0x7f00000002c0)={0x0, 0x0, 0xffffffffffff079b}) 09:34:07 executing program 3: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) fcntl$lock(r0, 0x6, &(0x7f00000002c0)={0x0, 0x0, 0xffffffffffff079b}) 09:34:07 executing program 3: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) fcntl$lock(r0, 0x6, &(0x7f00000002c0)={0x0, 0x0, 0xffffffffffff079b}) 09:34:07 executing program 5: ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000200)={0x0, 0x0, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff80000000, 0x9]}) r0 = syz_io_uring_setup(0x3a2d, &(0x7f0000000480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f0000000340)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)=""/56, 0x38}], 0x5) 09:34:07 executing program 4: semtimedop(0x0, &(0x7f0000002140)=[{0x0, 0x6, 0x1000}, {}], 0x2, &(0x7f00000021c0)) [ 119.763549] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.764273] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.867693] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.868346] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.692825] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.693505] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.733097] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.733648] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.880073] audit: type=1400 audit(1756719248.563:8): avc: denied { open } for pid=3855 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.886160] audit: type=1400 audit(1756719248.564:9): avc: denied { kernel } for pid=3855 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.273735] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.274412] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.298980] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.299533] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.366378] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.366958] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.395893] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.396419] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.684455] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.685552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.716557] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.717428] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:34:09 executing program 1: ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/memory_tiering', 0x80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) 09:34:09 executing program 0: setresuid(0xee01, 0xee00, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x808, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2030}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 09:34:09 executing program 5: ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000200)={0x0, 0x0, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff80000000, 0x9]}) r0 = syz_io_uring_setup(0x3a2d, &(0x7f0000000480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f0000000340)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)=""/56, 0x38}], 0x5) 09:34:09 executing program 3: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) fcntl$lock(r0, 0x6, &(0x7f00000002c0)={0x0, 0x0, 0xffffffffffff079b}) 09:34:09 executing program 4: semtimedop(0x0, &(0x7f0000002140)=[{0x0, 0x6, 0x1000}, {}], 0x2, &(0x7f00000021c0)) 09:34:09 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x2000000) 09:34:09 executing program 7: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000240)=0x1, 0x4) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x1d, 0x0, &(0x7f0000000040)) 09:34:09 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) fremovexattr(r0, &(0x7f0000000100)=@known='system.posix_acl_default\x00') 09:34:09 executing program 0: setresuid(0xee01, 0xee00, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x808, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2030}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 09:34:09 executing program 5: ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000200)={0x0, 0x0, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff80000000, 0x9]}) r0 = syz_io_uring_setup(0x3a2d, &(0x7f0000000480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f0000000340)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)=""/56, 0x38}], 0x5) 09:34:09 executing program 4: semtimedop(0x0, &(0x7f0000002140)=[{0x0, 0x6, 0x1000}, {}], 0x2, &(0x7f00000021c0)) 09:34:09 executing program 1: ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/memory_tiering', 0x80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) 09:34:09 executing program 7: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000240)=0x1, 0x4) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x1d, 0x0, &(0x7f0000000040)) 09:34:09 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) fremovexattr(r0, &(0x7f0000000100)=@known='system.posix_acl_default\x00') 09:34:09 executing program 0: setresuid(0xee01, 0xee00, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x808, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2030}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 09:34:09 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x2000000) 09:34:09 executing program 4: r0 = io_uring_setup(0x5053, &(0x7f0000000140)) io_uring_register$IORING_REGISTER_FILES(r0, 0x12, &(0x7f0000000000), 0x0) 09:34:09 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000980)='fdinfo/3\x00') syz_open_procfs(0x0, &(0x7f0000000980)='fdinfo/3\x00') 09:34:09 executing program 5: ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000200)={0x0, 0x0, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff80000000, 0x9]}) r0 = syz_io_uring_setup(0x3a2d, &(0x7f0000000480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000280), &(0x7f0000000340)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)=""/56, 0x38}], 0x5) [ 122.152253] BUG: unable to handle page fault for address: ffffed1022c3d03e [ 122.153331] #PF: supervisor read access in kernel mode [ 122.154107] #PF: error_code(0x0000) - not-present page [ 122.155683] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 122.157656] Oops: Oops: 0000 [#1] SMP KASAN NOPTI [ 122.159144] CPU: 1 UID: 0 PID: 3947 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 122.163853] Tainted: [W]=WARN [ 122.164512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 122.165729] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.166446] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.169100] RSP: 0018:ffff888019f0f800 EFLAGS: 00010212 [ 122.169890] RAX: 1ffff11022c3d03e RBX: ffff8881161e8000 RCX: ffffc90003ca8000 [ 122.170939] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881161e81f0 [ 122.171986] RBP: ffff888019f0fa70 R08: ffff88806cf31340 R09: ffffe8ffffd16b88 [ 122.173039] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 122.174089] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 122.175143] FS: 00007f6a8f656700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 122.176322] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.177185] CR2: ffffed1022c3d03e CR3: 0000000043dfb000 CR4: 0000000000350ef0 [ 122.178241] Call Trace: [ 122.178629] [ 122.178982] ? __pfx_perf_tp_event+0x10/0x10 [ 122.179655] ? perf_swevent_event+0x63/0x3f0 [ 122.180323] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 122.181083] ? perf_swevent_event+0x63/0x3f0 [ 122.181754] ? perf_tp_event+0x807/0xe70 [ 122.182375] ? __pfx_perf_tp_event+0x10/0x10 [ 122.183052] ? __perf_install_in_context+0x503/0xb90 [ 122.183815] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 122.184685] ? do_raw_spin_unlock+0x53/0x220 [ 122.185374] ? perf_trace_run_bpf_submit+0xef/0x180 [ 122.186134] perf_trace_run_bpf_submit+0xef/0x180 [ 122.186875] perf_trace_lock+0x337/0x5d0 [ 122.187499] ? __pfx_perf_trace_lock+0x10/0x10 [ 122.188201] ? lock_acquire+0x15e/0x2f0 [ 122.188801] ? futex_ref_get+0x48/0x300 [ 122.189411] ? futex_ref_get+0x114/0x300 [ 122.190018] ? futex_hash+0x15c/0x390 [ 122.190596] lock_release+0x1ab/0x290 [ 122.191183] ? futex_hash+0x15c/0x390 [ 122.191758] futex_ref_get+0x119/0x300 [ 122.192349] ? futex_hash+0x15c/0x390 [ 122.192925] futex_hash+0x70/0x390 [ 122.193478] futex_wake+0x143/0x540 [ 122.194038] ? __pfx_perf_trace_lock+0x10/0x10 [ 122.194738] ? __pfx_futex_wake+0x10/0x10 [ 122.195372] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 122.196136] ? lock_release+0xc8/0x290 [ 122.196729] do_futex+0x26d/0x370 [ 122.197274] ? __pfx_do_futex+0x10/0x10 [ 122.197880] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 122.198675] ? find_held_lock+0x2b/0x80 [ 122.199289] __x64_sys_futex+0x1c9/0x4d0 [ 122.199906] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 122.200784] ? __pfx___x64_sys_futex+0x10/0x10 [ 122.201489] ? xfd_validate_state+0x55/0x180 [ 122.202173] do_syscall_64+0xbf/0x360 [ 122.202749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.203519] RIP: 0033:0x7f6a920e0b19 [ 122.204082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.206763] RSP: 002b:00007f6a8f656218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.207893] RAX: ffffffffffffffda RBX: 00007f6a921f3f68 RCX: 00007f6a920e0b19 [ 122.208948] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6a921f3f6c [ 122.210032] RBP: 00007f6a921f3f60 R08: 000000000000000e R09: 0000000000000000 [ 122.211115] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6a921f3f6c [ 122.212195] R13: 00007ffcf7b0f27f R14: 00007f6a8f656300 R15: 0000000000022000 [ 122.213299] [ 122.213664] Modules linked in: [ 122.214166] CR2: ffffed1022c3d03e [ 122.214699] ---[ end trace 0000000000000000 ]--- [ 122.215417] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.216149] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.218907] RSP: 0018:ffff888019f0f800 EFLAGS: 00010212 [ 122.219726] RAX: 1ffff11022c3d03e RBX: ffff8881161e8000 RCX: ffffc90003ca8000 [ 122.220812] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881161e81f0 [ 122.221911] RBP: ffff888019f0fa70 R08: ffff88806cf31340 R09: ffffe8ffffd16b88 [ 122.223001] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 122.224088] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 122.225179] FS: 00007f6a8f656700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 122.226384] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.227219] CR2: ffffed1022c3d03e CR3: 0000000043dfb000 CR4: 0000000000350ef0 [ 122.228240] note: syz-executor.6[3947] exited with irqs disabled [ 122.229156] BUG: unable to handle page fault for address: ffffed1022c3d03e [ 122.230146] #PF: supervisor read access in kernel mode [ 122.230886] #PF: error_code(0x0000) - not-present page [ 122.231631] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 122.232439] Oops: Oops: 0000 [#2] SMP KASAN NOPTI [ 122.233144] CPU: 1 UID: 0 PID: 3947 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 122.234831] Tainted: [D]=DIE, [W]=WARN [ 122.235383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 122.236559] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.237257] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.239832] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012 [ 122.240592] RAX: 1ffff11022c3d03e RBX: ffff8881161e8000 RCX: 0000000000000002 [ 122.241620] RDX: ffff888018d35280 RSI: ffffffff8189a4e7 RDI: ffff8881161e81f0 [ 122.242627] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd16b88 [ 122.243636] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000 [ 122.244657] R13: 0000000000000024 R14: ffff88806cf31490 R15: dffffc0000000000 [ 122.245680] FS: 00007f6a8f656700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 122.246832] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.247669] CR2: ffffed1022c3d03e CR3: 0000000043dfb000 CR4: 0000000000350ef0 [ 122.248709] Call Trace: [ 122.249098] [ 122.249430] ? __pfx_perf_tp_event+0x10/0x10 [ 122.250083] ? stack_trace_save+0x8e/0xc0 [ 122.250697] ? stack_depot_save_flags+0x2c/0xa20 [ 122.251387] ? __kasan_slab_free+0x3f/0x50 [ 122.252005] ? kfree+0x281/0x550 [ 122.252513] ? slab_free_after_rcu_debug+0x6f/0x290 [ 122.253248] ? rcu_core+0x7c8/0x1800 [ 122.253798] ? kasan_save_stack+0x34/0x50 [ 122.254405] ? kasan_save_stack+0x24/0x50 [ 122.255008] ? kasan_save_track+0x14/0x30 [ 122.255612] ? __kasan_save_free_info+0x3a/0x60 [ 122.256286] ? __kasan_slab_free+0x3f/0x50 [ 122.256905] ? slab_free_after_rcu_debug+0xd6/0x290 [ 122.257643] ? rcu_core+0x7c8/0x1800 [ 122.258186] ? handle_softirqs+0x1b1/0x770 [ 122.258806] ? __irq_exit_rcu+0xc4/0x100 [ 122.259407] ? irq_exit_rcu+0x9/0x20 [ 122.259950] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 122.260697] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 122.261484] ? __sanitizer_cov_trace_pc+0x8/0x80 [ 122.262178] ? perf_swevent_event+0x1b/0x3f0 [ 122.262824] ? perf_tp_event+0x497/0xe70 [ 122.263420] ? perf_trace_run_bpf_submit+0xef/0x180 [ 122.264139] ? perf_trace_lock+0x337/0x5d0 [ 122.264756] ? kvm_sched_clock_read+0x16/0x30 [ 122.265419] ? sched_clock+0x37/0x60 [ 122.265978] ? __pfx___resched_curr+0x10/0x10 [ 122.266646] ? perf_trace_run_bpf_submit+0xef/0x180 [ 122.267374] perf_trace_run_bpf_submit+0xef/0x180 [ 122.268086] perf_trace_lock+0x337/0x5d0 [ 122.268677] ? update_cfs_group+0x11d/0x260 [ 122.269310] ? kvm_sched_clock_read+0x16/0x30 [ 122.269972] ? __pfx_perf_trace_lock+0x10/0x10 [ 122.270641] ? check_preempt_wakeup_fair+0x6e/0x950 [ 122.271382] ? sched_ttwu_pending+0x2e0/0x4a0 [ 122.272049] lock_release+0x1ab/0x290 [ 122.272605] ? ttwu_do_activate+0x1a4/0x8a0 [ 122.273252] _raw_spin_unlock+0x16/0x40 [ 122.273838] sched_ttwu_pending+0x2e0/0x4a0 [ 122.274474] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 122.275189] __flush_smp_call_function_queue+0x434/0x740 [ 122.275980] __sysvec_call_function_single+0x6d/0x370 [ 122.276738] sysvec_call_function_single+0xa1/0xc0 [ 122.277469] [ 122.277800] [ 122.278133] asm_sysvec_call_function_single+0x1a/0x20 [ 122.278892] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 122.279575] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de [ 122.282167] RSP: 0018:ffff888019f0ff28 EFLAGS: 00000246 [ 122.282931] RAX: 0000000000000001 RBX: ffff888018d35280 RCX: ffffffff817c3ab6 [ 122.283942] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 122.284967] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000 [ 122.285985] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff888018d35280 [ 122.286997] R13: 0000000000000009 R14: ffff888019f0f7e0 R15: 0000000000000000 [ 122.288041] ? trace_irq_enable.constprop.0+0x26/0x100 [ 122.288837] ? make_task_dead+0x214/0x3b0 [ 122.289483] ? make_task_dead+0x214/0x3b0 [ 122.290120] ? do_syscall_64+0xbf/0x360 [ 122.290728] rewind_stack_and_make_dead+0x16/0x20 [ 122.291469] RIP: 0033:0x7f6a920e0b19 [ 122.292038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.294785] RSP: 002b:00007f6a8f656218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.295936] RAX: ffffffffffffffda RBX: 00007f6a921f3f68 RCX: 00007f6a920e0b19 [ 122.297018] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6a921f3f6c [ 122.298110] RBP: 00007f6a921f3f60 R08: 000000000000000e R09: 0000000000000000 [ 122.299191] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6a921f3f6c [ 122.300272] R13: 00007ffcf7b0f27f R14: 00007f6a8f656300 R15: 0000000000022000 [ 122.301377] [ 122.301740] Modules linked in: [ 122.302235] CR2: ffffed1022c3d03e [ 122.302771] ---[ end trace 0000000000000000 ]--- [ 122.303484] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.304203] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.306956] RSP: 0018:ffff888019f0f800 EFLAGS: 00010212 [ 122.307763] RAX: 1ffff11022c3d03e RBX: ffff8881161e8000 RCX: ffffc90003ca8000 [ 122.308849] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881161e81f0 [ 122.309943] RBP: ffff888019f0fa70 R08: ffff88806cf31340 R09: ffffe8ffffd16b88 [ 122.311020] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 122.312102] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 122.313188] FS: 00007f6a8f656700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 122.314403] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.315295] CR2: ffffed1022c3d03e CR3: 0000000043dfb000 CR4: 0000000000350ef0 [ 122.316376] Kernel panic - not syncing: Fatal exception in interrupt [ 122.317633] Kernel Offset: disabled [ 122.318190] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 09:34:09 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000002 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff85c1c760 RBP=ffffffff85c1c760 RSP=ffff888017007598 R8 =0000000000000000 R9 =0000000000000000 R10=000000000003bea3 R11=00000000000c5f1c R12=0000000000000002 R13=0000000000000000 R14=0000000000000000 R15=ffff888017007690 RIP=ffffffff815af285 RFL=00000247 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055558e750400 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe3b00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055558e759c58 CR3=000000003fcd1000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888019f0f010 R8 =0000000000000000 R9 =ffffed100139e046 R10=0000000000000000 R11=552031203a555043 R12=0000000000000005 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6a8f656700 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe5100000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=ffffed1022c3d03e CR3=0000000043dfb000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f6a921c77c000007f6a921c77c8 XMM02=00007f6a921c77e000007f6a921c77c0 XMM03=00007f6a921c77c800007f6a921c77c0 XMM04=ff000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000