Warning: Permanently added '[localhost]:46566' (ECDSA) to the list of known hosts. 2025/09/01 08:08:50 fuzzer started 2025/09/01 08:08:51 dialing manager at localhost:35473 syzkaller login: [ 51.772105] cgroup: Unknown subsys name 'net' [ 51.933211] cgroup: Unknown subsys name 'cpuset' [ 51.966216] cgroup: Unknown subsys name 'rlimit' 2025/09/01 08:09:02 syscalls: 2214 2025/09/01 08:09:02 code coverage: enabled 2025/09/01 08:09:02 comparison tracing: enabled 2025/09/01 08:09:02 extra coverage: enabled 2025/09/01 08:09:02 setuid sandbox: enabled 2025/09/01 08:09:02 namespace sandbox: enabled 2025/09/01 08:09:02 Android sandbox: enabled 2025/09/01 08:09:02 fault injection: enabled 2025/09/01 08:09:02 leak checking: enabled 2025/09/01 08:09:02 net packet injection: enabled 2025/09/01 08:09:02 net device setup: enabled 2025/09/01 08:09:02 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 08:09:02 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 08:09:02 USB emulation: enabled 2025/09/01 08:09:02 hci packet injection: enabled 2025/09/01 08:09:02 wifi device emulation: enabled 2025/09/01 08:09:02 802.15.4 emulation: enabled 2025/09/01 08:09:02 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 08:09:02 fetching corpus: 50, signal 29605/31587 (executing program) 2025/09/01 08:09:02 fetching corpus: 100, signal 43198/44738 (executing program) 2025/09/01 08:09:02 fetching corpus: 150, signal 50398/51406 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56280 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56332 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56390 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56451 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56507 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56558 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56621 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56683 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56733 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56784 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56828 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56880 (executing program) 2025/09/01 08:09:02 fetching corpus: 192, signal 56029/56941 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/56991 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57054 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57109 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57166 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57227 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57309 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57368 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57426 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57474 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57526 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57581 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57613 (executing program) 2025/09/01 08:09:03 fetching corpus: 192, signal 56029/57613 (executing program) 2025/09/01 08:09:05 starting 8 fuzzer processes 08:09:05 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_script(r1, &(0x7f0000002040)={'#! ', './file0', [{0x20, '$\\'}, {0x20, '\''}, {0x20, '\''}, {0x20, '++-#\\[\'\xb5.+(\x95-'}]}, 0x20) recvmmsg(r0, &(0x7f0000005400)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) 08:09:05 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x572, &(0x7f0000000140)=0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) io_submit(r0, 0x1, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x8, 0x0, 0x0, r1, &(0x7f0000000000)='x', 0x1}]) 08:09:05 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)={0x28, r3, 0x1, 0x0, 0x0, {{0x11}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}}, 0x0) 08:09:05 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCOUTQ(r0, 0x541b, 0xfffffffffffffffe) 08:09:05 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_pts(r0, 0x0) close(r1) [ 65.663627] audit: type=1400 audit(1756714145.577:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 08:09:05 executing program 3: syz_usb_connect$hid(0x5, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a3, 0xcd0, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xff}}}}}]}}]}}, 0x0) 08:09:05 executing program 4: setresgid(0xee00, 0xffffffffffffffff, 0x0) setfsgid(0x0) 08:09:05 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff) write(r0, &(0x7f0000000080)="01010101", 0x4) read(r0, &(0x7f00000000c0)=""/4, 0x4) close(r0) [ 66.933138] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.937301] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.942392] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.944712] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.946318] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.949573] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.949809] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.951061] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.955012] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.955067] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.958015] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.959829] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.961623] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.970500] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.971720] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.061265] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 67.067218] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 67.072288] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 67.078085] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 67.079885] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 67.087607] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 67.102281] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 67.102381] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 67.105149] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 67.112429] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 67.115321] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 67.121076] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 67.122267] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 67.142075] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 67.144730] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 67.146531] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 67.158873] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 67.163548] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 67.173532] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 67.178922] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 67.182598] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 67.194135] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 67.203016] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 67.229930] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 67.243894] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 69.021300] Bluetooth: hci2: command tx timeout [ 69.021939] Bluetooth: hci1: command tx timeout [ 69.022433] Bluetooth: hci0: command tx timeout [ 69.211895] Bluetooth: hci5: command tx timeout [ 69.212064] Bluetooth: hci3: command tx timeout [ 69.275874] Bluetooth: hci7: command tx timeout [ 69.275946] Bluetooth: hci6: command tx timeout [ 69.276482] Bluetooth: hci4: command tx timeout [ 71.069717] Bluetooth: hci1: command tx timeout [ 71.070162] Bluetooth: hci0: command tx timeout [ 71.070537] Bluetooth: hci2: command tx timeout [ 71.259785] Bluetooth: hci3: command tx timeout [ 71.262725] Bluetooth: hci5: command tx timeout [ 71.323781] Bluetooth: hci4: command tx timeout [ 71.325041] Bluetooth: hci6: command tx timeout [ 71.325062] Bluetooth: hci7: command tx timeout [ 73.115899] Bluetooth: hci2: command tx timeout [ 73.115921] Bluetooth: hci0: command tx timeout [ 73.116345] Bluetooth: hci1: command tx timeout [ 73.309320] Bluetooth: hci5: command tx timeout [ 73.309465] Bluetooth: hci3: command tx timeout [ 73.372714] Bluetooth: hci7: command tx timeout [ 73.372795] Bluetooth: hci6: command tx timeout [ 73.373145] Bluetooth: hci4: command tx timeout [ 75.165756] Bluetooth: hci1: command tx timeout [ 75.166171] Bluetooth: hci0: command tx timeout [ 75.166524] Bluetooth: hci2: command tx timeout [ 75.355780] Bluetooth: hci3: command tx timeout [ 75.356213] Bluetooth: hci5: command tx timeout [ 75.419823] Bluetooth: hci6: command tx timeout [ 75.420242] Bluetooth: hci7: command tx timeout [ 75.421775] Bluetooth: hci4: command tx timeout [ 102.373118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.373743] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.511848] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.512410] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.600558] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.601158] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.681684] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.682298] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.773905] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.774467] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.830615] audit: type=1400 audit(1756714182.748:8): avc: denied { open } for pid=3845 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 102.832236] audit: type=1400 audit(1756714182.748:9): avc: denied { kernel } for pid=3845 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 102.875778] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.876317] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.975427] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.976061] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.052500] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.053224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.127743] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.128315] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.190591] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.191186] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.226288] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.227090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.251226] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.251787] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.311527] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.312158] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.361496] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.362082] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.416557] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.417144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.461065] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.461618] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.648896] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 103.651909] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 104.158039] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 104.164616] misc raw-gadget: fail, usb_gadget_register_driver returned -16 08:09:44 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff) write(r0, &(0x7f0000000080)="01010101", 0x4) read(r0, &(0x7f00000000c0)=""/4, 0x4) close(r0) 08:09:44 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_script(r1, &(0x7f0000002040)={'#! ', './file0', [{0x20, '$\\'}, {0x20, '\''}, {0x20, '\''}, {0x20, '++-#\\[\'\xb5.+(\x95-'}]}, 0x20) recvmmsg(r0, &(0x7f0000005400)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) 08:09:44 executing program 3: syz_usb_connect$hid(0x5, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a3, 0xcd0, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xff}}}}}]}}]}}, 0x0) 08:09:44 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_pts(r0, 0x0) close(r1) 08:09:44 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x572, &(0x7f0000000140)=0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) io_submit(r0, 0x1, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x8, 0x0, 0x0, r1, &(0x7f0000000000)='x', 0x1}]) 08:09:44 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)={0x28, r3, 0x1, 0x0, 0x0, {{0x11}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}}, 0x0) 08:09:44 executing program 4: setresgid(0xee00, 0xffffffffffffffff, 0x0) setfsgid(0x0) 08:09:44 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCOUTQ(r0, 0x541b, 0xfffffffffffffffe) [ 104.323728] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 104.327520] misc raw-gadget: fail, usb_gadget_register_driver returned -16 08:09:44 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff) write(r0, &(0x7f0000000080)="01010101", 0x4) read(r0, &(0x7f00000000c0)=""/4, 0x4) close(r0) 08:09:44 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)={0x28, r3, 0x1, 0x0, 0x0, {{0x11}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}}, 0x0) 08:09:44 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCOUTQ(r0, 0x541b, 0xfffffffffffffffe) 08:09:44 executing program 4: setresgid(0xee00, 0xffffffffffffffff, 0x0) setfsgid(0x0) 08:09:44 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x572, &(0x7f0000000140)=0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) io_submit(r0, 0x1, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x8, 0x0, 0x0, r1, &(0x7f0000000000)='x', 0x1}]) 08:09:44 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_script(r1, &(0x7f0000002040)={'#! ', './file0', [{0x20, '$\\'}, {0x20, '\''}, {0x20, '\''}, {0x20, '++-#\\[\'\xb5.+(\x95-'}]}, 0x20) recvmmsg(r0, &(0x7f0000005400)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) 08:09:44 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCOUTQ(r0, 0x541b, 0xfffffffffffffffe) [ 104.445061] kmemleak: Found object by alias at 0x607f1a63dfcc [ 104.445081] CPU: 1 UID: 0 PID: 3911 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 104.445100] Tainted: [W]=WARN [ 104.445104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 104.445112] Call Trace: [ 104.445116] [ 104.445121] dump_stack_lvl+0xca/0x120 [ 104.445156] __lookup_object+0x94/0xb0 [ 104.445175] delete_object_full+0x27/0x70 [ 104.445192] free_percpu+0x30/0x1160 [ 104.445209] ? arch_uprobe_clear_state+0x16/0x140 [ 104.445230] futex_hash_free+0x38/0xc0 [ 104.445245] mmput+0x2d3/0x390 [ 104.445265] do_exit+0x79d/0x2970 [ 104.445279] ? signal_wake_up_state+0x85/0x120 [ 104.445295] ? zap_other_threads+0x2b9/0x3a0 [ 104.445311] ? __pfx_do_exit+0x10/0x10 [ 104.445324] ? do_group_exit+0x1c3/0x2a0 [ 104.445338] ? lock_release+0xc8/0x290 [ 104.445356] do_group_exit+0xd3/0x2a0 [ 104.445371] __x64_sys_exit_group+0x3e/0x50 [ 104.445386] x64_sys_call+0x18c5/0x18d0 [ 104.445402] do_syscall_64+0xbf/0x360 [ 104.445416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.445428] RIP: 0033:0x7fbf15481b19 [ 104.445437] Code: Unable to access opcode bytes at 0x7fbf15481aef. [ 104.445443] RSP: 002b:00007ffcc0872408 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 104.445454] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fbf15481b19 [ 104.445462] RDX: 00007fbf1543472b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 104.445470] RBP: 0000000000000000 R08: 0000001b2cf25590 R09: 0000000000000000 [ 104.445478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 104.445485] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffcc08724f0 [ 104.445500] [ 104.445504] kmemleak: Object (percpu) 0x607f1a63dfc8 (size 16): [ 104.445511] kmemleak: comm "syz-executor.1", pid 282, jiffies 4294771349 [ 104.445519] kmemleak: min_count = 1 [ 104.445523] kmemleak: count = 0 [ 104.445526] kmemleak: flags = 0x21 [ 104.445530] kmemleak: checksum = 0 [ 104.445534] kmemleak: backtrace: [ 104.445537] pcpu_alloc_noprof+0x87a/0x1170 [ 104.445553] mm_init+0x99b/0x1170 [ 104.445562] copy_process+0x3ab7/0x73c0 [ 104.445572] kernel_clone+0xea/0x7f0 [ 104.445582] __do_sys_clone+0xce/0x120 [ 104.445593] do_syscall_64+0xbf/0x360 [ 104.445602] entry_SYSCALL_64_after_hwframe+0x77/0x7f 08:09:44 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_pts(r0, 0x0) close(r1) [ 104.478880] kmemleak: Found object by alias at 0x607f1a63dfd4 [ 104.478907] CPU: 0 UID: 0 PID: 3910 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 104.478941] Tainted: [W]=WARN [ 104.478948] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 104.478960] Call Trace: [ 104.478967] [ 104.478975] dump_stack_lvl+0xca/0x120 [ 104.479017] __lookup_object+0x94/0xb0 [ 104.479048] delete_object_full+0x27/0x70 [ 104.479079] free_percpu+0x30/0x1160 [ 104.479109] ? arch_uprobe_clear_state+0x16/0x140 [ 104.479146] futex_hash_free+0x38/0xc0 [ 104.479172] mmput+0x2d3/0x390 [ 104.479206] do_exit+0x79d/0x2970 [ 104.479232] ? signal_wake_up_state+0x85/0x120 [ 104.479261] ? zap_other_threads+0x2b9/0x3a0 [ 104.479291] ? __pfx_do_exit+0x10/0x10 [ 104.479315] ? do_group_exit+0x1c3/0x2a0 [ 104.479341] ? lock_release+0xc8/0x290 [ 104.479372] do_group_exit+0xd3/0x2a0 [ 104.479400] __x64_sys_exit_group+0x3e/0x50 [ 104.479426] x64_sys_call+0x18c5/0x18d0 [ 104.479455] do_syscall_64+0xbf/0x360 [ 104.479479] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.479508] RIP: 0033:0x7f07ae38ab19 [ 104.479524] Code: Unable to access opcode bytes at 0x7f07ae38aaef. [ 104.479534] RSP: 002b:00007ffcb971ede8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 104.479555] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f07ae38ab19 [ 104.479569] RDX: 00007f07ae33d72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 104.479582] RBP: 0000000000000000 R08: 0000001b2d32054c R09: 0000000000000000 [ 104.479595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 104.479607] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffcb971eed0 [ 104.479636] [ 104.479643] kmemleak: Object (percpu) 0x607f1a63dfc8 (size 16): [ 104.479655] kmemleak: comm "syz-executor.1", pid 282, jiffies 4294771349 [ 104.479668] kmemleak: min_count = 1 [ 104.479675] kmemleak: count = 0 [ 104.479682] kmemleak: flags = 0x21 [ 104.479689] kmemleak: checksum = 0 [ 104.479696] kmemleak: backtrace: [ 104.479702] pcpu_alloc_noprof+0x87a/0x1170 [ 104.479731] mm_init+0x99b/0x1170 [ 104.479746] copy_process+0x3ab7/0x73c0 [ 104.479765] kernel_clone+0xea/0x7f0 [ 104.479784] __do_sys_clone+0xce/0x120 [ 104.479803] do_syscall_64+0xbf/0x360 [ 104.479820] entry_SYSCALL_64_after_hwframe+0x77/0x7f 08:09:44 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)={0x28, r3, 0x1, 0x0, 0x0, {{0x11}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}}, 0x0) 08:09:44 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x572, &(0x7f0000000140)=0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) io_submit(r0, 0x1, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x8, 0x0, 0x0, r1, &(0x7f0000000000)='x', 0x1}]) [ 104.534802] Oops: general protection fault, probably for non-canonical address 0xdffffc030ad83c89: 0000 [#1] SMP KASAN NOPTI [ 104.536522] KASAN: probably user-memory-access in range [0x0000001856c1e448-0x0000001856c1e44f] [ 104.538577] CPU: 0 UID: 0 PID: 15 Comm: rcu_preempt Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 104.541756] Tainted: [W]=WARN [ 104.542608] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 104.544520] RIP: 0010:perf_tp_event+0x175/0xe70 [ 104.546495] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 104.551044] RSP: 0018:ffff888009627640 EFLAGS: 00010012 [ 104.552186] RAX: 000000030ad83c89 RBX: 0000001856c1e258 RCX: 0000000000000002 [ 104.553281] RDX: ffff888009603700 RSI: ffffffff8189a4e7 RDI: 0000001856c1e448 [ 104.554360] RBP: ffff8880096278b0 R08: ffff88806ce31340 R09: ffffe8ffffc15fc8 [ 104.555452] R10: 0000000000000000 R11: 1ffff1100d9c6f7b R12: dffffc0000000000 [ 104.556533] R13: 0000000000000024 R14: ffff88806ce31340 R15: dffffc0000000000 [ 104.557629] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 104.558846] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 104.559733] CR2: 00007fcea061e000 CR3: 000000001d831000 CR4: 0000000000350ef0 [ 104.560817] Call Trace: [ 104.561229] [ 104.561592] ? __pfx_perf_tp_event+0x10/0x10 [ 104.562285] ? __lock_acquire+0xc65/0x1b70 [ 104.562954] ? do_raw_spin_lock+0x123/0x260 [ 104.563624] ? perf_trace_lock+0xb5/0x5d0 [ 104.564266] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 104.565001] ? __pfx_perf_trace_lock+0x10/0x10 [ 104.565715] ? __pfx_perf_trace_lock+0x10/0x10 [ 104.566432] ? perf_trace_lock+0xb5/0x5d0 [ 104.567083] ? perf_trace_run_bpf_submit+0xef/0x180 [ 104.567858] ? sched_clock_cpu+0x6c/0x4e0 [ 104.568504] ? lock_is_held_type+0x9e/0x120 [ 104.569186] perf_trace_run_bpf_submit+0xef/0x180 [ 104.569943] perf_trace_lock+0x337/0x5d0 [ 104.570584] ? __pfx_perf_trace_lock+0x10/0x10 [ 104.571298] ? mm_cid_get.isra.0+0x46c/0x570 [ 104.571990] ? set_next_entity+0x331/0x940 [ 104.572650] ? __schedule+0xe4b/0x3590 [ 104.573274] lock_release+0x1ab/0x290 [ 104.573870] ? lock_unpin_lock+0x9f/0x140 [ 104.574521] __schedule+0xe50/0x3590 [ 104.575117] ? __pfx___schedule+0x10/0x10 [ 104.575768] ? lock_acquire+0x15e/0x2f0 [ 104.576387] ? find_held_lock+0x2b/0x80 [ 104.577021] ? schedule+0x2c7/0x390 [ 104.577593] ? lock_release+0xc8/0x290 [ 104.578205] schedule+0xdb/0x390 [ 104.578745] schedule_timeout+0x11a/0x280 [ 104.579389] ? __pfx_schedule_timeout+0x10/0x10 [ 104.580112] ? __pfx_process_timeout+0x10/0x10 [ 104.580825] ? 0xffffffff81000000 [ 104.581372] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 104.582164] ? prepare_to_swait_event+0xf6/0x380 [ 104.582907] rcu_gp_fqs_loop+0x1a7/0xa60 [ 104.583543] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 104.584252] ? rcu_gp_kthread+0x2ee/0x390 [ 104.584907] ? lock_release+0xc8/0x290 [ 104.585512] ? finish_swait+0xca/0x230 [ 104.586121] rcu_gp_kthread+0x289/0x390 [ 104.586736] ? lock_release+0xc8/0x290 [ 104.587342] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 104.588046] ? __kthread_parkme+0x1a7/0x250 [ 104.588722] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 104.589431] kthread+0x3c8/0x740 [ 104.589972] ? __pfx_kthread+0x10/0x10 [ 104.590577] ? ret_from_fork+0x23/0x430 [ 104.591206] ? lock_release+0xc8/0x290 [ 104.591814] ? __pfx_kthread+0x10/0x10 [ 104.592426] ret_from_fork+0x34b/0x430 [ 104.593048] ? __pfx_kthread+0x10/0x10 [ 104.593653] ret_from_fork_asm+0x1a/0x30 [ 104.594300] [ 104.594664] Modules linked in: [ 104.595169] ---[ end trace 0000000000000000 ]--- [ 104.595886] RIP: 0010:perf_tp_event+0x175/0xe70 [ 104.596612] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 104.599380] RSP: 0018:ffff888009627640 EFLAGS: 00010012 [ 104.600193] RAX: 000000030ad83c89 RBX: 0000001856c1e258 RCX: 0000000000000002 [ 104.601280] RDX: ffff888009603700 RSI: ffffffff8189a4e7 RDI: 0000001856c1e448 [ 104.602370] RBP: ffff8880096278b0 R08: ffff88806ce31340 R09: ffffe8ffffc15fc8 [ 104.603457] R10: 0000000000000000 R11: 1ffff1100d9c6f7b R12: dffffc0000000000 [ 104.604543] R13: 0000000000000024 R14: ffff88806ce31340 R15: dffffc0000000000 [ 104.605635] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 104.606853] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 104.607741] CR2: 00007fcea061e000 CR3: 000000001d831000 CR4: 0000000000350ef0 [ 104.608830] note: rcu_preempt[15] exited with irqs disabled VM DIAGNOSIS: 08:09:44 Registers: info registers vcpu 0 RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff828e5070 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888009626fa0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=30376578302f4952 R12=0000000000000033 R13=ffffffff88729290 R14=ffffffff88729240 R15=ffffffff88729500 RIP=ffffffff828e50c5 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe2300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fcea061e000 CR3=000000001d831000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000001f020 RBX=ffff88806ce3de20 RCX=ffffc900007dd000 RDX=0000000000040000 RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880435e75a8 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1 R12=ffffed100d9c7bc5 R13=ffff88806ce3de28 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff816880d8 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f03ce69a700 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe1600000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f03d1238018 CR3=000000001fbfd000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f03d120b7c000007f03d120b7c8 XMM02=00007f03d120b7e000007f03d120b7c0 XMM03=00007f03d120b7c800007f03d120b7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000