Warning: Permanently added '[localhost]:56986' (ECDSA) to the list of known hosts. 2025/08/29 12:12:26 fuzzer started 2025/08/29 12:12:27 dialing manager at localhost:43077 syzkaller login: [ 59.970198] cgroup: Unknown subsys name 'net' [ 60.041016] cgroup: Unknown subsys name 'cpuset' [ 60.067606] cgroup: Unknown subsys name 'rlimit' 2025/08/29 12:12:38 syscalls: 2214 2025/08/29 12:12:38 code coverage: enabled 2025/08/29 12:12:38 comparison tracing: enabled 2025/08/29 12:12:38 extra coverage: enabled 2025/08/29 12:12:38 setuid sandbox: enabled 2025/08/29 12:12:38 namespace sandbox: enabled 2025/08/29 12:12:38 Android sandbox: enabled 2025/08/29 12:12:38 fault injection: enabled 2025/08/29 12:12:38 leak checking: enabled 2025/08/29 12:12:38 net packet injection: enabled 2025/08/29 12:12:38 net device setup: enabled 2025/08/29 12:12:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 12:12:38 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 12:12:38 USB emulation: enabled 2025/08/29 12:12:38 hci packet injection: enabled 2025/08/29 12:12:38 wifi device emulation: enabled 2025/08/29 12:12:38 802.15.4 emulation: enabled 2025/08/29 12:12:38 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 12:12:38 fetching corpus: 50, signal 19654/23240 (executing program) 2025/08/29 12:12:38 fetching corpus: 100, signal 30033/35117 (executing program) 2025/08/29 12:12:38 fetching corpus: 150, signal 36885/43353 (executing program) 2025/08/29 12:12:38 fetching corpus: 200, signal 41718/49514 (executing program) 2025/08/29 12:12:38 fetching corpus: 250, signal 49415/58305 (executing program) 2025/08/29 12:12:38 fetching corpus: 300, signal 53603/63640 (executing program) 2025/08/29 12:12:38 fetching corpus: 350, signal 62498/73223 (executing program) 2025/08/29 12:12:38 fetching corpus: 400, signal 66996/78617 (executing program) 2025/08/29 12:12:38 fetching corpus: 450, signal 70226/82803 (executing program) 2025/08/29 12:12:38 fetching corpus: 500, signal 73628/87035 (executing program) 2025/08/29 12:12:39 fetching corpus: 550, signal 78065/92223 (executing program) 2025/08/29 12:12:39 fetching corpus: 600, signal 81264/96196 (executing program) 2025/08/29 12:12:39 fetching corpus: 650, signal 83170/98961 (executing program) 2025/08/29 12:12:39 fetching corpus: 700, signal 85493/102038 (executing program) 2025/08/29 12:12:39 fetching corpus: 750, signal 88155/105372 (executing program) 2025/08/29 12:12:39 fetching corpus: 800, signal 89771/107827 (executing program) 2025/08/29 12:12:39 fetching corpus: 850, signal 91863/110634 (executing program) 2025/08/29 12:12:39 fetching corpus: 900, signal 94939/114180 (executing program) 2025/08/29 12:12:39 fetching corpus: 950, signal 97756/117428 (executing program) 2025/08/29 12:12:39 fetching corpus: 1000, signal 98793/119224 (executing program) 2025/08/29 12:12:39 fetching corpus: 1050, signal 100311/121428 (executing program) 2025/08/29 12:12:39 fetching corpus: 1100, signal 102571/124143 (executing program) 2025/08/29 12:12:40 fetching corpus: 1150, signal 104074/126198 (executing program) 2025/08/29 12:12:40 fetching corpus: 1200, signal 105379/128093 (executing program) 2025/08/29 12:12:40 fetching corpus: 1250, signal 106971/130136 (executing program) 2025/08/29 12:12:40 fetching corpus: 1300, signal 108685/132288 (executing program) 2025/08/29 12:12:40 fetching corpus: 1350, signal 110757/134644 (executing program) 2025/08/29 12:12:40 fetching corpus: 1400, signal 111971/136330 (executing program) 2025/08/29 12:12:40 fetching corpus: 1450, signal 113119/137979 (executing program) 2025/08/29 12:12:40 fetching corpus: 1500, signal 114254/139577 (executing program) 2025/08/29 12:12:40 fetching corpus: 1550, signal 116113/141600 (executing program) 2025/08/29 12:12:40 fetching corpus: 1600, signal 117102/143021 (executing program) 2025/08/29 12:12:41 fetching corpus: 1650, signal 118179/144542 (executing program) 2025/08/29 12:12:41 fetching corpus: 1700, signal 119189/145968 (executing program) 2025/08/29 12:12:41 fetching corpus: 1750, signal 120154/147328 (executing program) 2025/08/29 12:12:41 fetching corpus: 1800, signal 121571/148964 (executing program) 2025/08/29 12:12:41 fetching corpus: 1850, signal 122575/150366 (executing program) 2025/08/29 12:12:41 fetching corpus: 1900, signal 123499/151643 (executing program) 2025/08/29 12:12:41 fetching corpus: 1950, signal 124031/152708 (executing program) 2025/08/29 12:12:41 fetching corpus: 2000, signal 124673/153842 (executing program) 2025/08/29 12:12:41 fetching corpus: 2050, signal 125602/155080 (executing program) 2025/08/29 12:12:41 fetching corpus: 2100, signal 126547/156292 (executing program) 2025/08/29 12:12:42 fetching corpus: 2150, signal 127244/157355 (executing program) 2025/08/29 12:12:42 fetching corpus: 2200, signal 127791/158358 (executing program) 2025/08/29 12:12:42 fetching corpus: 2250, signal 128423/159321 (executing program) 2025/08/29 12:12:42 fetching corpus: 2300, signal 129251/160422 (executing program) 2025/08/29 12:12:42 fetching corpus: 2350, signal 129930/161463 (executing program) 2025/08/29 12:12:42 fetching corpus: 2400, signal 130415/162381 (executing program) 2025/08/29 12:12:42 fetching corpus: 2450, signal 131107/163346 (executing program) 2025/08/29 12:12:42 fetching corpus: 2500, signal 131750/164279 (executing program) 2025/08/29 12:12:42 fetching corpus: 2550, signal 132477/165255 (executing program) 2025/08/29 12:12:42 fetching corpus: 2600, signal 132901/166105 (executing program) 2025/08/29 12:12:42 fetching corpus: 2650, signal 134134/167324 (executing program) 2025/08/29 12:12:43 fetching corpus: 2700, signal 134898/168247 (executing program) 2025/08/29 12:12:43 fetching corpus: 2750, signal 136062/169321 (executing program) 2025/08/29 12:12:43 fetching corpus: 2800, signal 137057/170346 (executing program) 2025/08/29 12:12:43 fetching corpus: 2850, signal 138066/171386 (executing program) 2025/08/29 12:12:43 fetching corpus: 2900, signal 138448/172151 (executing program) 2025/08/29 12:12:43 fetching corpus: 2950, signal 139326/173012 (executing program) 2025/08/29 12:12:43 fetching corpus: 3000, signal 140399/173978 (executing program) 2025/08/29 12:12:43 fetching corpus: 3050, signal 141022/174745 (executing program) 2025/08/29 12:12:43 fetching corpus: 3100, signal 141746/175525 (executing program) 2025/08/29 12:12:43 fetching corpus: 3150, signal 142187/176227 (executing program) 2025/08/29 12:12:43 fetching corpus: 3200, signal 142926/176991 (executing program) 2025/08/29 12:12:43 fetching corpus: 3250, signal 143312/177655 (executing program) 2025/08/29 12:12:44 fetching corpus: 3300, signal 144008/178355 (executing program) 2025/08/29 12:12:44 fetching corpus: 3350, signal 144755/179109 (executing program) 2025/08/29 12:12:44 fetching corpus: 3400, signal 145213/179734 (executing program) 2025/08/29 12:12:44 fetching corpus: 3450, signal 145833/180436 (executing program) 2025/08/29 12:12:44 fetching corpus: 3500, signal 146569/181153 (executing program) 2025/08/29 12:12:44 fetching corpus: 3550, signal 147093/181800 (executing program) 2025/08/29 12:12:44 fetching corpus: 3600, signal 147993/182489 (executing program) 2025/08/29 12:12:44 fetching corpus: 3650, signal 149076/183191 (executing program) 2025/08/29 12:12:44 fetching corpus: 3700, signal 149518/183763 (executing program) 2025/08/29 12:12:44 fetching corpus: 3750, signal 149998/184323 (executing program) 2025/08/29 12:12:45 fetching corpus: 3800, signal 150616/184887 (executing program) 2025/08/29 12:12:45 fetching corpus: 3850, signal 151384/185485 (executing program) 2025/08/29 12:12:45 fetching corpus: 3900, signal 151955/186017 (executing program) 2025/08/29 12:12:45 fetching corpus: 3950, signal 152551/186564 (executing program) 2025/08/29 12:12:45 fetching corpus: 4000, signal 153116/187040 (executing program) 2025/08/29 12:12:45 fetching corpus: 4050, signal 153592/187536 (executing program) 2025/08/29 12:12:45 fetching corpus: 4100, signal 154008/187953 (executing program) 2025/08/29 12:12:45 fetching corpus: 4150, signal 154542/188426 (executing program) 2025/08/29 12:12:45 fetching corpus: 4200, signal 155093/188904 (executing program) 2025/08/29 12:12:45 fetching corpus: 4250, signal 155408/189336 (executing program) 2025/08/29 12:12:45 fetching corpus: 4300, signal 155927/189791 (executing program) 2025/08/29 12:12:46 fetching corpus: 4350, signal 156423/190202 (executing program) 2025/08/29 12:12:46 fetching corpus: 4400, signal 157067/190647 (executing program) 2025/08/29 12:12:46 fetching corpus: 4450, signal 157637/191048 (executing program) 2025/08/29 12:12:46 fetching corpus: 4500, signal 158031/191458 (executing program) 2025/08/29 12:12:46 fetching corpus: 4550, signal 158408/191816 (executing program) 2025/08/29 12:12:46 fetching corpus: 4600, signal 159138/192288 (executing program) 2025/08/29 12:12:46 fetching corpus: 4650, signal 159634/192558 (executing program) 2025/08/29 12:12:46 fetching corpus: 4700, signal 160096/192568 (executing program) 2025/08/29 12:12:46 fetching corpus: 4750, signal 160668/192572 (executing program) 2025/08/29 12:12:46 fetching corpus: 4800, signal 161033/192581 (executing program) 2025/08/29 12:12:47 fetching corpus: 4850, signal 161540/192610 (executing program) 2025/08/29 12:12:47 fetching corpus: 4900, signal 161961/192624 (executing program) 2025/08/29 12:12:47 fetching corpus: 4950, signal 162427/192628 (executing program) 2025/08/29 12:12:47 fetching corpus: 5000, signal 162962/192677 (executing program) 2025/08/29 12:12:47 fetching corpus: 5050, signal 163387/192684 (executing program) 2025/08/29 12:12:47 fetching corpus: 5100, signal 164103/192762 (executing program) 2025/08/29 12:12:47 fetching corpus: 5150, signal 164567/192762 (executing program) 2025/08/29 12:12:47 fetching corpus: 5200, signal 164985/192768 (executing program) 2025/08/29 12:12:47 fetching corpus: 5250, signal 165393/192770 (executing program) 2025/08/29 12:12:47 fetching corpus: 5300, signal 165761/192802 (executing program) 2025/08/29 12:12:48 fetching corpus: 5350, signal 166273/192869 (executing program) 2025/08/29 12:12:48 fetching corpus: 5400, signal 166672/192869 (executing program) 2025/08/29 12:12:48 fetching corpus: 5450, signal 167031/192875 (executing program) 2025/08/29 12:12:48 fetching corpus: 5500, signal 167426/192880 (executing program) 2025/08/29 12:12:48 fetching corpus: 5550, signal 167704/192887 (executing program) 2025/08/29 12:12:48 fetching corpus: 5600, signal 168149/192889 (executing program) 2025/08/29 12:12:48 fetching corpus: 5650, signal 168494/192891 (executing program) 2025/08/29 12:12:48 fetching corpus: 5700, signal 169200/192895 (executing program) 2025/08/29 12:12:48 fetching corpus: 5750, signal 169689/192910 (executing program) 2025/08/29 12:12:48 fetching corpus: 5800, signal 170094/192914 (executing program) 2025/08/29 12:12:48 fetching corpus: 5850, signal 170417/192924 (executing program) 2025/08/29 12:12:48 fetching corpus: 5900, signal 170944/192934 (executing program) 2025/08/29 12:12:49 fetching corpus: 5950, signal 171371/192934 (executing program) 2025/08/29 12:12:49 fetching corpus: 6000, signal 171715/192935 (executing program) 2025/08/29 12:12:49 fetching corpus: 6050, signal 172125/192971 (executing program) 2025/08/29 12:12:49 fetching corpus: 6100, signal 172508/192971 (executing program) 2025/08/29 12:12:49 fetching corpus: 6150, signal 172860/192984 (executing program) 2025/08/29 12:12:49 fetching corpus: 6200, signal 173124/193006 (executing program) 2025/08/29 12:12:49 fetching corpus: 6250, signal 173440/193012 (executing program) 2025/08/29 12:12:49 fetching corpus: 6300, signal 173762/193055 (executing program) 2025/08/29 12:12:49 fetching corpus: 6350, signal 174125/193112 (executing program) 2025/08/29 12:12:49 fetching corpus: 6400, signal 174364/193131 (executing program) 2025/08/29 12:12:49 fetching corpus: 6450, signal 174916/193148 (executing program) 2025/08/29 12:12:50 fetching corpus: 6500, signal 175211/193158 (executing program) 2025/08/29 12:12:50 fetching corpus: 6550, signal 175493/193161 (executing program) 2025/08/29 12:12:50 fetching corpus: 6600, signal 175805/193191 (executing program) 2025/08/29 12:12:50 fetching corpus: 6650, signal 176136/193205 (executing program) 2025/08/29 12:12:50 fetching corpus: 6700, signal 176435/193209 (executing program) 2025/08/29 12:12:50 fetching corpus: 6750, signal 176862/193227 (executing program) 2025/08/29 12:12:50 fetching corpus: 6800, signal 177233/193257 (executing program) 2025/08/29 12:12:50 fetching corpus: 6850, signal 177531/193265 (executing program) 2025/08/29 12:12:50 fetching corpus: 6900, signal 178377/193285 (executing program) 2025/08/29 12:12:50 fetching corpus: 6950, signal 178626/193296 (executing program) 2025/08/29 12:12:50 fetching corpus: 7000, signal 178889/193326 (executing program) 2025/08/29 12:12:51 fetching corpus: 7050, signal 179280/193330 (executing program) 2025/08/29 12:12:51 fetching corpus: 7100, signal 179511/193336 (executing program) 2025/08/29 12:12:51 fetching corpus: 7150, signal 179814/193348 (executing program) 2025/08/29 12:12:51 fetching corpus: 7200, signal 180047/193353 (executing program) 2025/08/29 12:12:51 fetching corpus: 7250, signal 180414/193365 (executing program) 2025/08/29 12:12:51 fetching corpus: 7300, signal 180979/193393 (executing program) 2025/08/29 12:12:51 fetching corpus: 7350, signal 181228/193398 (executing program) 2025/08/29 12:12:51 fetching corpus: 7400, signal 181380/193402 (executing program) 2025/08/29 12:12:51 fetching corpus: 7450, signal 181614/193415 (executing program) 2025/08/29 12:12:51 fetching corpus: 7500, signal 181922/193426 (executing program) 2025/08/29 12:12:51 fetching corpus: 7550, signal 182170/193430 (executing program) 2025/08/29 12:12:52 fetching corpus: 7600, signal 182414/193431 (executing program) 2025/08/29 12:12:52 fetching corpus: 7650, signal 182666/193435 (executing program) 2025/08/29 12:12:52 fetching corpus: 7700, signal 182938/193444 (executing program) 2025/08/29 12:12:52 fetching corpus: 7750, signal 183237/193453 (executing program) 2025/08/29 12:12:52 fetching corpus: 7800, signal 183635/193461 (executing program) 2025/08/29 12:12:52 fetching corpus: 7850, signal 183986/193531 (executing program) 2025/08/29 12:12:52 fetching corpus: 7900, signal 184199/193535 (executing program) 2025/08/29 12:12:52 fetching corpus: 7950, signal 184448/193538 (executing program) 2025/08/29 12:12:52 fetching corpus: 8000, signal 184637/193546 (executing program) 2025/08/29 12:12:52 fetching corpus: 8050, signal 184944/193558 (executing program) 2025/08/29 12:12:52 fetching corpus: 8100, signal 185145/193564 (executing program) 2025/08/29 12:12:53 fetching corpus: 8150, signal 185415/193579 (executing program) 2025/08/29 12:12:53 fetching corpus: 8200, signal 185893/193584 (executing program) 2025/08/29 12:12:53 fetching corpus: 8250, signal 186092/193590 (executing program) 2025/08/29 12:12:53 fetching corpus: 8300, signal 186384/193591 (executing program) 2025/08/29 12:12:53 fetching corpus: 8350, signal 186678/193600 (executing program) 2025/08/29 12:12:53 fetching corpus: 8400, signal 187099/193691 (executing program) 2025/08/29 12:12:53 fetching corpus: 8450, signal 187347/193692 (executing program) 2025/08/29 12:12:53 fetching corpus: 8500, signal 187690/193694 (executing program) 2025/08/29 12:12:53 fetching corpus: 8550, signal 187973/193737 (executing program) 2025/08/29 12:12:54 fetching corpus: 8600, signal 188224/193753 (executing program) 2025/08/29 12:12:54 fetching corpus: 8650, signal 188535/193760 (executing program) 2025/08/29 12:12:54 fetching corpus: 8700, signal 188875/193761 (executing program) 2025/08/29 12:12:54 fetching corpus: 8750, signal 189176/193775 (executing program) 2025/08/29 12:12:54 fetching corpus: 8800, signal 189424/193782 (executing program) 2025/08/29 12:12:54 fetching corpus: 8850, signal 189751/193785 (executing program) 2025/08/29 12:12:54 fetching corpus: 8900, signal 190003/193792 (executing program) 2025/08/29 12:12:54 fetching corpus: 8931, signal 190207/193804 (executing program) 2025/08/29 12:12:54 fetching corpus: 8931, signal 190207/193804 (executing program) 2025/08/29 12:12:56 starting 8 fuzzer processes 12:12:56 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00') getdents64(r0, &(0x7f0000000180)=""/217, 0x18) 12:12:56 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000140)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 12:12:56 executing program 2: syz_io_uring_setup(0x3ece, &(0x7f00000005c0)={0x0, 0x0, 0x20}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000640), &(0x7f0000000680)) 12:12:56 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x4, &(0x7f0000000100)=[@timestamp={0x3}, @window, @mss, @sack_perm], 0x4) 12:12:56 executing program 3: r0 = memfd_create(&(0x7f0000000180)='($\x18\xe5=\x11c\x86g\x02\x00\x00\x00?\x00\x00\x00\a\x00\x00\x00S\xc8\xe8*\xcc\xff\x7f\xcb\x9e@G\x96\x1e>\xdb\xa1J\xab\xd0\xb7.k^mq\xc2\xc4Q{\x14J\xb3i\x82\xa18\xf6\x04\x7f\x14RT?\xd2\x01J\xf5E\xc1\xf8\x1f\x80(\x9b?\xb6\xac_l\x17\xd1\f \xbf\xb8\xf8\xfc\xb5\xf8\xf4\x0e\xc3\xd6\xdf\xa3 \x00\x00\x00\n>\xdfm\f\xd5\xc4?\x04\x00\x00\x00\x00\x00\x00\x00\xd6j\xe7\x00-Y\x99\x03\xdf\xcc(\xa7t\xf4)\xf5\xf9s8@U\xca$Jd\xf3G\xcd\xfdAno\xc7\b\x92\xa7\x18\xf09@\x10\xb3\xe4\xdd\x14\xbfoO', 0x5) ioctl$FS_IOC_RESVSP(r0, 0x40305829, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7fffffffffe00000}) 12:12:56 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_sco_SCO_CONNINFO(r0, 0x11, 0x2, 0x0, 0x0) [ 89.539673] audit: type=1400 audit(1756469576.827:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 12:12:56 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), r0) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01030000fbffffffffff20"], 0x28}}, 0x0) 12:12:56 executing program 6: clone3(&(0x7f0000000240)={0x61020100, &(0x7f00000056c0), 0x0, 0x0, {}, &(0x7f00000001c0)=""/96, 0x60, 0x0, 0x0}, 0x58) [ 90.696431] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 90.698076] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 90.699263] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 90.700547] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 90.701537] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 90.702755] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 90.705930] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 90.706675] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 90.708677] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 90.709851] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 90.757414] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 90.765025] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 90.768103] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 90.775627] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 90.784099] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 90.837548] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 90.839130] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 90.847438] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 90.848388] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 90.849159] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 90.850029] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 90.853132] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 90.856635] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 90.858123] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 90.859519] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 90.859660] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 90.863873] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 90.864496] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 90.867477] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 90.868288] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 90.873587] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 90.874232] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 90.876938] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 90.877503] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 90.883758] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 90.886921] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 90.892575] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 90.894127] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 90.903546] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 90.905127] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 92.731169] Bluetooth: hci0: command tx timeout [ 92.731943] Bluetooth: hci1: command tx timeout [ 92.860116] Bluetooth: hci3: command tx timeout [ 92.923063] Bluetooth: hci6: command tx timeout [ 92.923909] Bluetooth: hci4: command tx timeout [ 92.923938] Bluetooth: hci5: command tx timeout [ 92.988340] Bluetooth: hci2: command tx timeout [ 92.988345] Bluetooth: hci7: command tx timeout [ 94.779229] Bluetooth: hci1: command tx timeout [ 94.779645] Bluetooth: hci0: command tx timeout [ 94.906911] Bluetooth: hci3: command tx timeout [ 94.970875] Bluetooth: hci5: command tx timeout [ 94.971293] Bluetooth: hci4: command tx timeout [ 94.971396] Bluetooth: hci6: command tx timeout [ 95.034898] Bluetooth: hci2: command tx timeout [ 95.035360] Bluetooth: hci7: command tx timeout [ 96.826812] Bluetooth: hci0: command tx timeout [ 96.827291] Bluetooth: hci1: command tx timeout [ 96.955372] Bluetooth: hci3: command tx timeout [ 97.018876] Bluetooth: hci5: command tx timeout [ 97.019299] Bluetooth: hci4: command tx timeout [ 97.019682] Bluetooth: hci6: command tx timeout [ 97.082810] Bluetooth: hci2: command tx timeout [ 97.083221] Bluetooth: hci7: command tx timeout [ 98.874897] Bluetooth: hci0: command tx timeout [ 98.875351] Bluetooth: hci1: command tx timeout [ 99.002976] Bluetooth: hci3: command tx timeout [ 99.066843] Bluetooth: hci6: command tx timeout [ 99.067262] Bluetooth: hci4: command tx timeout [ 99.067647] Bluetooth: hci5: command tx timeout [ 99.130907] Bluetooth: hci7: command tx timeout [ 99.131329] Bluetooth: hci2: command tx timeout [ 126.580553] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.581249] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.804013] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.804638] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:13:34 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000140)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) [ 127.365812] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.366407] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:13:34 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000140)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) [ 127.465417] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.466034] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:13:34 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000140)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 12:13:35 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000240)={@remote, @private1, @empty, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1310018}) 12:13:35 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) read(r0, 0x0, 0x0) 12:13:35 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x20002, 0x0) pwritev(r0, &(0x7f0000001600)=[{&(0x7f00000000c0)="e3", 0x1}], 0x1, 0x0, 0x0) 12:13:35 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000140)) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x12, r0, 0x0) syz_memcpy_off$IO_URING_METADATA_FLAGS(r1, 0x0, &(0x7f0000000100), 0x0, 0x4) 12:13:35 executing program 3: pipe(&(0x7f0000000880)={0xffffffffffffffff}) close_range(r0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000380)=0x800, 0x4) [ 128.041125] audit: type=1400 audit(1756469615.328:8): avc: denied { open } for pid=3795 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 128.052204] audit: type=1400 audit(1756469615.328:9): avc: denied { kernel } for pid=3795 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 128.112835] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 128.113635] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 128.114340] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 128.115021] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 128.115627] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 2 [ 128.123613] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.124190] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.124927] Buffer I/O error on dev sr0, logical block 0, async page read [ 128.137888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.138314] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.139157] Buffer I/O error on dev sr0, logical block 1, async page read [ 128.154888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.155316] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.156114] Buffer I/O error on dev sr0, logical block 2, async page read [ 128.166912] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.167336] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.168074] Buffer I/O error on dev sr0, logical block 3, async page read [ 128.180437] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.180891] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.181510] Buffer I/O error on dev sr0, logical block 4, async page read [ 128.190183] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.190606] I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.191247] Buffer I/O error on dev sr0, logical block 5, async page read [ 128.202863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.203288] I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.203931] Buffer I/O error on dev sr0, logical block 6, async page read [ 128.215682] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.216142] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.216757] Buffer I/O error on dev sr0, logical block 7, async page read [ 128.231269] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.231967] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 128.232579] Buffer I/O error on dev sr0, logical block 0, async page read [ 128.248385] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.249194] Buffer I/O error on dev sr0, logical block 1, async page read [ 128.260891] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.261430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.262328] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.268345] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.271237] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.271965] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.327919] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.328521] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.341996] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.342544] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.357860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.358417] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.358988] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.368935] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.369587] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.370780] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.383125] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.383677] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.394909] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.395469] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.396085] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.396632] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.411972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.412537] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.422190] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.422738] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.428115] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.430961] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.431515] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.437858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 128.658665] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.659415] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.809848] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.810454] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.936172] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.936927] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.078834] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.079477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.201040] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.201651] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.313046] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.313664] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.472063] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.472681] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.591361] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.592207] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.708652] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.709321] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.843817] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.844453] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.849686] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.850320] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.869286] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.870042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.991185] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 129.994555] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. 12:13:37 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00') getdents64(r0, &(0x7f0000000180)=""/217, 0x18) 12:13:37 executing program 2: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000140)) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x12, r0, 0x0) syz_memcpy_off$IO_URING_METADATA_FLAGS(r1, 0x0, &(0x7f0000000100), 0x0, 0x4) 12:13:37 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_sco_SCO_CONNINFO(r0, 0x11, 0x2, 0x0, 0x0) 12:13:37 executing program 6: clone3(&(0x7f0000000240)={0x61020100, &(0x7f00000056c0), 0x0, 0x0, {}, &(0x7f00000001c0)=""/96, 0x60, 0x0, 0x0}, 0x58) 12:13:37 executing program 5: r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) 12:13:37 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x4, &(0x7f0000000100)=[@timestamp={0x3}, @window, @mss, @sack_perm], 0x4) 12:13:37 executing program 3: pipe(&(0x7f0000000880)={0xffffffffffffffff}) close_range(r0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000380)=0x800, 0x4) 12:13:37 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000140)) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x12, r0, 0x0) syz_memcpy_off$IO_URING_METADATA_FLAGS(r1, 0x0, &(0x7f0000000100), 0x0, 0x4) [ 130.107446] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 130.108263] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 130.108847] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 130.109369] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 130.132478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.134146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.134738] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.137381] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.138013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.140878] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.143865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.147733] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.153983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.156261] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.165012] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.166027] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.166628] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.167211] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.173909] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.174453] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.176977] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.177518] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.181576] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.183335] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.184730] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.191894] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.192445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.200999] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.201637] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.207875] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.208441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.209152] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.209711] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.211978] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 130.219372] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 12:13:37 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00') getdents64(r0, &(0x7f0000000180)=""/217, 0x18) 12:13:37 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_sco_SCO_CONNINFO(r0, 0x11, 0x2, 0x0, 0x0) 12:13:37 executing program 5: r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) 12:13:37 executing program 3: pipe(&(0x7f0000000880)={0xffffffffffffffff}) close_range(r0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000380)=0x800, 0x4) 12:13:37 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x4, &(0x7f0000000100)=[@timestamp={0x3}, @window, @mss, @sack_perm], 0x4) 12:13:37 executing program 6: clone3(&(0x7f0000000240)={0x61020100, &(0x7f00000056c0), 0x0, 0x0, {}, &(0x7f00000001c0)=""/96, 0x60, 0x0, 0x0}, 0x58) 12:13:37 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000140)) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x12, r0, 0x0) syz_memcpy_off$IO_URING_METADATA_FLAGS(r1, 0x0, &(0x7f0000000100), 0x0, 0x4) [ 130.309054] BUG: unable to handle page fault for address: ffffed1028d0b1ce [ 130.309645] #PF: supervisor read access in kernel mode [ 130.310070] #PF: error_code(0x0000) - not-present page [ 130.310488] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 130.310947] Oops: Oops: 0000 [#1] SMP KASAN NOPTI [ 130.311348] CPU: 1 UID: 0 PID: 3941 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 130.315830] Tainted: [W]=WARN [ 130.316083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 130.316738] RIP: 0010:perf_tp_event+0x175/0xe70 [ 130.317124] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 130.318549] RSP: 0018:ffff88800eb97780 EFLAGS: 00010012 [ 130.318971] RAX: 1ffff11028d0b1ce RBX: ffff888146858c80 RCX: ffffc90006abf000 [ 130.319532] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: ffff888146858e70 [ 130.320090] RBP: ffff88800eb979f0 R08: ffff88806cf31340 R09: ffffe8ffffd16268 [ 130.320659] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 130.321219] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 130.321781] FS: 00007f6c50c84700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 130.322417] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.322876] CR2: ffffed1028d0b1ce CR3: 000000000bcd6000 CR4: 0000000000350ef0 [ 130.323437] Call Trace: [ 130.323644] [ 130.323826] ? perf_pmu_nop_int+0x9/0x10 [ 130.324155] ? merge_sched_in+0xcb/0x1810 [ 130.324497] ? __pfx_perf_tp_event+0x10/0x10 [ 130.324857] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10 [ 130.325368] ? lock_is_held_type+0x9e/0x120 [ 130.325722] ? ctx_sched_in+0x134/0x9b0 [ 130.326041] ? __lock_acquire+0xc65/0x1b70 [ 130.326385] ? perf_trace_run_bpf_submit+0xef/0x180 [ 130.326782] perf_trace_run_bpf_submit+0xef/0x180 [ 130.327170] perf_trace_preemptirq_template+0x259/0x430 [ 130.327605] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 130.328076] ? _raw_spin_lock_irqsave+0x53/0x60 [ 130.328462] trace_irq_disable.constprop.0+0xa6/0x100 [ 130.328874] _raw_spin_lock_irqsave+0x53/0x60 [ 130.329238] try_to_wake_up+0xa0/0x11d0 [ 130.329564] ? __pfx_try_to_wake_up+0x10/0x10 [ 130.329926] ? plist_del+0x122/0x270 [ 130.330229] ? find_held_lock+0x2b/0x80 [ 130.330558] ? futex_wake+0x474/0x540 [ 130.330870] wake_up_q+0xa1/0x130 [ 130.331156] futex_wake+0x47e/0x540 [ 130.331452] ? __pfx_futex_wake+0x10/0x10 [ 130.331790] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 130.332202] ? lock_release+0xc8/0x290 [ 130.332515] do_futex+0x26d/0x370 [ 130.332797] ? __pfx_do_futex+0x10/0x10 [ 130.333115] ? perf_trace_run_bpf_submit+0xef/0x180 [ 130.333520] __x64_sys_futex+0x1c9/0x4d0 [ 130.333848] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 130.334316] ? __pfx___x64_sys_futex+0x10/0x10 [ 130.334686] do_syscall_64+0xbf/0x360 [ 130.334993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.335405] RIP: 0033:0x7f6c5370eb19 [ 130.335701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 130.337135] RSP: 002b:00007f6c50c84218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 130.337734] RAX: ffffffffffffffda RBX: 00007f6c53821f68 RCX: 00007f6c5370eb19 [ 130.338296] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6c53821f6c [ 130.338858] RBP: 00007f6c53821f60 R08: 000000000000000e R09: 0000000000000000 [ 130.339422] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6c53821f6c [ 130.339981] R13: 00007ffd49a9500f R14: 00007f6c50c84300 R15: 0000000000022000 [ 130.340551] [ 130.340740] Modules linked in: [ 130.340998] CR2: ffffed1028d0b1ce [ 130.341275] ---[ end trace 0000000000000000 ]--- [ 130.341641] RIP: 0010:perf_tp_event+0x175/0xe70 [ 130.342015] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 130.343437] RSP: 0018:ffff88800eb97780 EFLAGS: 00010012 [ 130.343853] RAX: 1ffff11028d0b1ce RBX: ffff888146858c80 RCX: ffffc90006abf000 [ 130.344420] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: ffff888146858e70 [ 130.344977] RBP: ffff88800eb979f0 R08: ffff88806cf31340 R09: ffffe8ffffd16268 [ 130.345541] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 130.346099] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 130.346660] FS: 00007f6c50c84700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 130.347293] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.347749] CR2: ffffed1028d0b1ce CR3: 000000000bcd6000 CR4: 0000000000350ef0 [ 130.348316] note: syz-executor.7[3941] exited with irqs disabled [ 130.348856] BUG: unable to handle page fault for address: ffffed1028d0b1ce [ 130.349406] #PF: supervisor read access in kernel mode [ 130.349820] #PF: error_code(0x0000) - not-present page [ 130.350228] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 130.350673] Oops: Oops: 0000 [#2] SMP KASAN NOPTI [ 130.351058] CPU: 1 UID: 0 PID: 3941 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 130.351993] Tainted: [D]=DIE, [W]=WARN [ 130.352306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 130.352951] RIP: 0010:perf_tp_event+0x175/0xe70 [ 130.353327] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 130.354742] RSP: 0018:ffff88806cf08ac0 EFLAGS: 00010012 [ 130.355159] RAX: 1ffff11028d0b1ce RBX: ffff888146858c80 RCX: 0000000000000002 [ 130.355713] RDX: ffff8880160c8000 RSI: ffffffff818995b7 RDI: ffff888146858e70 [ 130.356279] RBP: ffff88806cf08d30 R08: ffff88806cf313e8 R09: ffffe8ffffd16268 [ 130.356843] R10: 0000000000000000 R11: ffff888015f03898 R12: dffffc0000000000 [ 130.357399] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000 [ 130.357956] FS: 00007f6c50c84700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 130.358587] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.359041] CR2: ffffed1028d0b1ce CR3: 000000000bcd6000 CR4: 0000000000350ef0 [ 130.359603] Call Trace: [ 130.359812] [ 130.359988] ? enqueue_task_fair+0xded/0x1e00 [ 130.360363] ? __pfx_perf_tp_event+0x10/0x10 [ 130.360722] ? trace_pelt_se_tp+0xdf/0x130 [ 130.361061] ? __update_load_avg_se+0x428/0xa40 [ 130.361440] ? __cgroup_account_cputime+0x30/0xc0 [ 130.361831] ? update_load_avg+0x17d/0x1ef0 [ 130.362174] ? update_cfs_group+0x11d/0x260 [ 130.362519] ? kvm_sched_clock_read+0x16/0x30 [ 130.362883] ? enqueue_task_fair+0xded/0x1e00 [ 130.363244] ? check_preempt_wakeup_fair+0x6e/0x950 [ 130.363645] ? wakeup_preempt+0x140/0x2a0 [ 130.363978] ? lock_release+0x1c7/0x290 [ 130.364303] ? lock_release+0x1c7/0x290 [ 130.364622] ? perf_trace_run_bpf_submit+0xef/0x180 [ 130.365022] perf_trace_run_bpf_submit+0xef/0x180 [ 130.365412] perf_trace_preemptirq_template+0x259/0x430 [ 130.365848] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 130.366319] ? lock_acquire+0x18c/0x2f0 [ 130.366640] ? sched_balance_update_blocked_averages+0xff6/0x18f0 [ 130.367131] trace_irq_disable.constprop.0+0xa6/0x100 [ 130.367538] sched_balance_update_blocked_averages+0xff6/0x18f0 [ 130.368012] ? ktime_get+0x16d/0x270 [ 130.368322] ? __pfx_lapic_next_deadline+0x10/0x10 [ 130.368724] ? clockevents_program_event+0x135/0x360 [ 130.369135] ? tick_program_event+0xac/0x140 [ 130.369487] sched_balance_softirq+0xc6/0x150 [ 130.369852] handle_softirqs+0x1b1/0x770 [ 130.370190] __irq_exit_rcu+0xc4/0x100 [ 130.370510] irq_exit_rcu+0x9/0x20 [ 130.370793] sysvec_apic_timer_interrupt+0x70/0x80 [ 130.371193] [ 130.371377] [ 130.371560] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 130.371978] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 130.372360] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de [ 130.373777] RSP: 0018:ffff88800eb97f28 EFLAGS: 00000246 [ 130.374198] RAX: 0000000000000001 RBX: ffff8880160c8000 RCX: ffffffff817c2b86 [ 130.374754] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 130.375312] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000 [ 130.375875] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff8880160c8000 [ 130.376439] R13: 0000000000000009 R14: ffff88800eb97760 R15: 0000000000000000 [ 130.376998] ? trace_irq_enable.constprop.0+0x26/0x100 [ 130.377415] ? make_task_dead+0x214/0x3b0 [ 130.377750] ? make_task_dead+0x214/0x3b0 [ 130.378082] ? do_syscall_64+0xbf/0x360 [ 130.378399] rewind_stack_and_make_dead+0x16/0x20 [ 130.378789] RIP: 0033:0x7f6c5370eb19 [ 130.379081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 130.380512] RSP: 002b:00007f6c50c84218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 130.381106] RAX: ffffffffffffffda RBX: 00007f6c53821f68 RCX: 00007f6c5370eb19 [ 130.381668] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6c53821f6c [ 130.382225] RBP: 00007f6c53821f60 R08: 000000000000000e R09: 0000000000000000 [ 130.382783] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6c53821f6c [ 130.383338] R13: 00007ffd49a9500f R14: 00007f6c50c84300 R15: 0000000000022000 [ 130.383900] [ 130.384088] Modules linked in: [ 130.384353] CR2: ffffed1028d0b1ce [ 130.384631] ---[ end trace 0000000000000000 ]--- [ 130.385003] RIP: 0010:perf_tp_event+0x175/0xe70 [ 130.385383] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 130.386800] RSP: 0018:ffff88800eb97780 EFLAGS: 00010012 [ 130.387217] RAX: 1ffff11028d0b1ce RBX: ffff888146858c80 RCX: ffffc90006abf000 [ 130.387779] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: ffff888146858e70 [ 130.388344] RBP: ffff88800eb979f0 R08: ffff88806cf31340 R09: ffffe8ffffd16268 [ 130.388900] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 130.389460] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 130.390020] FS: 00007f6c50c84700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 130.390648] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.391109] CR2: ffffed1028d0b1ce CR3: 000000000bcd6000 CR4: 0000000000350ef0 [ 130.391676] Kernel panic - not syncing: Fatal exception in interrupt [ 130.392389] Kernel Offset: disabled [ 130.392679] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 12:13:37 Registers: info registers vcpu 0 RAX=00000055f9e1c554 RBX=0000000000000000 RCX=00000000000006e0 RDX=0000000000000055 RSI=ffff88806ce238c0 RDI=00000000000149c4 RBP=ffff88806ce238c0 RSP=ffff88806ce08ed8 R8 =0000000000000001 R9 =0000000000000000 R10=000000000003aff7 R11=ffff88806ce08ff8 R12=00000000000149c4 R13=0000000000000000 R14=0000000000000000 R15=ffff88806ce28080 RIP=ffffffff81327f55 RFL=00000017 [----APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f62e17b88c0 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe5800000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fcd595cb3a4 CR3=0000000013748000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000bfe62e42fefa39ef XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88800eb96f90 R8 =0000000000000000 R9 =ffffed1001490046 R10=0000000000000020 R11=552031203a555043 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6c50c84700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe0b00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=ffffed1028d0b1ce CR3=000000000bcd6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f6c537f57c000007f6c537f57c8 XMM02=00007f6c537f57e000007f6c537f57c0 XMM03=00007f6c537f57c800007f6c537f57c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000