Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:46655' (ECDSA) to the list of known hosts. 2025/09/01 08:12:52 fuzzer started 2025/09/01 08:12:52 dialing manager at localhost:35473 syzkaller login: [ 51.901673] cgroup: Unknown subsys name 'net' [ 51.972270] cgroup: Unknown subsys name 'cpuset' [ 51.990899] cgroup: Unknown subsys name 'rlimit' 2025/09/01 08:13:03 syscalls: 2214 2025/09/01 08:13:03 code coverage: enabled 2025/09/01 08:13:03 comparison tracing: enabled 2025/09/01 08:13:03 extra coverage: enabled 2025/09/01 08:13:03 setuid sandbox: enabled 2025/09/01 08:13:03 namespace sandbox: enabled 2025/09/01 08:13:03 Android sandbox: enabled 2025/09/01 08:13:03 fault injection: enabled 2025/09/01 08:13:03 leak checking: enabled 2025/09/01 08:13:03 net packet injection: enabled 2025/09/01 08:13:03 net device setup: enabled 2025/09/01 08:13:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 08:13:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 08:13:03 USB emulation: enabled 2025/09/01 08:13:03 hci packet injection: enabled 2025/09/01 08:13:03 wifi device emulation: enabled 2025/09/01 08:13:03 802.15.4 emulation: enabled 2025/09/01 08:13:03 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 08:13:03 fetching corpus: 49, signal 27908/30103 (executing program) 2025/09/01 08:13:03 fetching corpus: 99, signal 39931/41993 (executing program) 2025/09/01 08:13:03 fetching corpus: 149, signal 48938/50444 (executing program) 2025/09/01 08:13:04 fetching corpus: 199, signal 55815/56616 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59167 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59224 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59295 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59367 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59441 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59497 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59562 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59631 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59706 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59773 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59839 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59901 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/59963 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60033 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60101 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60166 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60236 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60310 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60366 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60423 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60475 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60555 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60618 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60677 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60751 (executing program) 2025/09/01 08:13:04 fetching corpus: 239, signal 58784/60751 (executing program) 2025/09/01 08:13:06 starting 8 fuzzer processes 08:13:06 executing program 0: openat$hpet(0xffffffffffffff9c, &(0x7f0000001900), 0x40000, 0x0) 08:13:06 executing program 2: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='fdinfo/4\x00') 08:13:06 executing program 1: io_uring_setup(0x7b5c, &(0x7f0000000340)) 08:13:06 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x43, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) 08:13:06 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:06 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0) 08:13:06 executing program 5: syz_emit_ethernet(0x6e, &(0x7f0000000100)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00', 0x0, 0x32, 0x0, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "16a3c9f25b1d6c23"}}}}}}}, 0x0) 08:13:07 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000180)={[{@memory_localevents}, {@memory_recursiveprot}]}) [ 66.030263] audit: type=1400 audit(1756714387.083:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 67.189033] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 67.191168] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 67.192862] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 67.197160] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 67.201288] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.338189] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 67.345062] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 67.349144] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.353637] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.355665] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.388922] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 67.394894] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 67.399177] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 67.414988] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 67.422468] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 67.425040] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 67.428832] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 67.430057] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 67.434866] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 67.438697] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 67.440542] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 67.446284] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 67.446717] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 67.450507] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 67.455118] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 67.456962] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 67.462515] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 67.466875] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 67.471070] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 67.471567] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 67.474495] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 67.478687] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 67.481938] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 67.486156] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 67.490075] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 67.494731] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 67.497179] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 67.508640] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 67.525747] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 67.534562] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 69.281784] Bluetooth: hci0: command tx timeout [ 69.409544] Bluetooth: hci1: command tx timeout [ 69.537523] Bluetooth: hci3: command tx timeout [ 69.538118] Bluetooth: hci5: command tx timeout [ 69.601743] Bluetooth: hci2: command tx timeout [ 69.602219] Bluetooth: hci7: command tx timeout [ 69.602713] Bluetooth: hci4: command tx timeout [ 69.603146] Bluetooth: hci6: command tx timeout [ 71.329599] Bluetooth: hci0: command tx timeout [ 71.457426] Bluetooth: hci1: command tx timeout [ 71.585512] Bluetooth: hci5: command tx timeout [ 71.585724] Bluetooth: hci3: command tx timeout [ 71.651447] Bluetooth: hci6: command tx timeout [ 71.651508] Bluetooth: hci4: command tx timeout [ 71.652279] Bluetooth: hci7: command tx timeout [ 71.652690] Bluetooth: hci2: command tx timeout [ 73.377579] Bluetooth: hci0: command tx timeout [ 73.505478] Bluetooth: hci1: command tx timeout [ 73.634071] Bluetooth: hci5: command tx timeout [ 73.634596] Bluetooth: hci3: command tx timeout [ 73.697461] Bluetooth: hci2: command tx timeout [ 73.697868] Bluetooth: hci7: command tx timeout [ 73.698250] Bluetooth: hci4: command tx timeout [ 73.698659] Bluetooth: hci6: command tx timeout [ 75.425461] Bluetooth: hci0: command tx timeout [ 75.553459] Bluetooth: hci1: command tx timeout [ 75.681523] Bluetooth: hci5: command tx timeout [ 75.681968] Bluetooth: hci3: command tx timeout [ 75.745578] Bluetooth: hci6: command tx timeout [ 75.745988] Bluetooth: hci4: command tx timeout [ 75.746089] Bluetooth: hci7: command tx timeout [ 75.746812] Bluetooth: hci2: command tx timeout [ 109.397860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.399292] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.607422] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.608045] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.894084] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.895003] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:13:51 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x43, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) [ 110.022688] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.023274] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:13:51 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x43, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) 08:13:51 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x43, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) [ 110.182922] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.183585] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.281011] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.282185] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:13:51 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) [ 110.324273] audit: type=1400 audit(1756714431.377:8): avc: denied { open } for pid=3867 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 110.325864] audit: type=1400 audit(1756714431.377:9): avc: denied { kernel } for pid=3867 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 110.365421] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.366034] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.386428] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.387009] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:13:51 executing program 2: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='fdinfo/4\x00') 08:13:51 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) 08:13:51 executing program 2: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='fdinfo/4\x00') [ 110.516881] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.517712] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:13:51 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) [ 110.645721] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.646309] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.700456] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.701109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.763818] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.764905] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.801262] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.801892] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.849734] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.850334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.889346] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.890174] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.929826] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.930422] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:13:52 executing program 0: openat$hpet(0xffffffffffffff9c, &(0x7f0000001900), 0x40000, 0x0) 08:13:52 executing program 1: io_uring_setup(0x7b5c, &(0x7f0000000340)) 08:13:52 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0) 08:13:52 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) 08:13:52 executing program 2: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='fdinfo/4\x00') 08:13:52 executing program 5: syz_emit_ethernet(0x6e, &(0x7f0000000100)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00', 0x0, 0x32, 0x0, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "16a3c9f25b1d6c23"}}}}}}}, 0x0) 08:13:52 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000180)={[{@memory_localevents}, {@memory_recursiveprot}]}) 08:13:52 executing program 5: syz_emit_ethernet(0x6e, &(0x7f0000000100)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00', 0x0, 0x32, 0x0, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "16a3c9f25b1d6c23"}}}}}}}, 0x0) 08:13:52 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0) 08:13:52 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000180)={[{@memory_localevents}, {@memory_recursiveprot}]}) 08:13:52 executing program 1: io_uring_setup(0x7b5c, &(0x7f0000000340)) 08:13:52 executing program 0: openat$hpet(0xffffffffffffff9c, &(0x7f0000001900), 0x40000, 0x0) 08:13:52 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0) 08:13:52 executing program 5: syz_emit_ethernet(0x6e, &(0x7f0000000100)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00', 0x0, 0x32, 0x0, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "16a3c9f25b1d6c23"}}}}}}}, 0x0) 08:13:52 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000180)={[{@memory_localevents}, {@memory_recursiveprot}]}) 08:13:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 1: io_uring_setup(0x7b5c, &(0x7f0000000340)) 08:13:52 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) 08:13:52 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) 08:13:52 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) 08:13:52 executing program 0: openat$hpet(0xffffffffffffff9c, &(0x7f0000001900), 0x40000, 0x0) 08:13:52 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) 08:13:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r3, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="28ca397630c0", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:13:52 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) 08:13:52 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x5446) close_range(r0, 0xffffffffffffffff, 0x0) 08:13:52 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="b353000000891741dcf91f"], 0x14}}, 0x0) 08:13:52 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000000)="a20e73f1b1812c8df69b7520cdbfb383417a9437ee7abadfd3289b311b4d", 0x1e}], 0x1) [ 111.654073] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#1] SMP KASAN NOPTI [ 111.654972] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197] [ 111.655636] CPU: 0 UID: 0 PID: 65 Comm: kworker/u8:1 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.656518] Tainted: [W]=WARN [ 111.657363] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.657372] Workqueue: ipv6_addrconf addrconf_dad_work [ 111.657401] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.657420] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.657432] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.657442] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.657450] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.657458] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.657467] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.657474] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.657484] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.657496] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.657504] CR2: 00007fc26a184000 CR3: 0000000041c5a000 CR4: 0000000000350ef0 [ 111.657512] Call Trace: [ 111.657516] [ 111.657523] ? __pfx_perf_tp_event+0x10/0x10 [ 111.657540] ? lock_acquire+0x15e/0x2f0 [ 111.657556] ? __asan_memcpy+0x3d/0x60 [ 111.657571] ? neigh_resolve_output+0x49a/0x7f0 [ 111.657589] ? ip6_finish_output2+0x968/0x1780 [ 111.657610] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.657627] perf_trace_run_bpf_submit+0xef/0x180 [ 111.657644] perf_trace_contention_begin+0x235/0x3e0 [ 111.657661] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.657675] ? lock_acquire+0x15e/0x2f0 [ 111.657688] ? addrconf_dad_work+0xf6/0x11a0 [ 111.657707] trace_contention_begin+0xae/0x110 [ 111.657723] __mutex_lock+0x14b/0x1020 [ 111.657742] ? addrconf_dad_work+0xf6/0x11a0 [ 111.657759] ? addrconf_dad_work+0xf6/0x11a0 [ 111.657777] ? look_up_lock_class+0x56/0x150 [ 111.657795] ? __pfx___mutex_lock+0x10/0x10 [ 111.657814] ? __lock_acquire+0xc65/0x1b70 [ 111.657829] addrconf_dad_work+0xf6/0x11a0 [ 111.657848] ? __pfx_addrconf_dad_work+0x10/0x10 [ 111.657866] ? lock_release+0xc8/0x290 [ 111.657880] process_one_work+0x8e1/0x19c0 [ 111.657898] ? __pfx_process_one_work+0x10/0x10 [ 111.657912] ? move_linked_works+0x172/0x270 [ 111.657930] ? assign_work+0x196/0x240 [ 111.657944] worker_thread+0x67e/0xe90 [ 111.657958] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 111.657973] ? __pfx_worker_thread+0x10/0x10 [ 111.657987] kthread+0x3c8/0x740 [ 111.658000] ? __pfx_kthread+0x10/0x10 [ 111.658012] ? ret_from_fork+0x23/0x430 [ 111.658031] ? lock_release+0xc8/0x290 [ 111.658044] ? __pfx_kthread+0x10/0x10 [ 111.658057] ret_from_fork+0x34b/0x430 [ 111.658074] ? __pfx_kthread+0x10/0x10 [ 111.658087] ret_from_fork_asm+0x1a/0x30 [ 111.658106] [ 111.658110] Modules linked in: [ 111.658231] ---[ end trace 0000000000000000 ]--- [ 111.658238] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.658255] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.658266] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.658276] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.658284] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.658292] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.658300] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.658307] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.658317] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.658328] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.658336] CR2: 00007fc26a184000 CR3: 0000000041c5a000 CR4: 0000000000350ef0 [ 111.658345] note: kworker/u8:1[65] exited with preempt_count 2 [ 111.658370] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#2] SMP KASAN NOPTI [ 111.658386] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197] [ 111.658397] CPU: 0 UID: 0 PID: 173 Comm: in:imklog Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.658416] Tainted: [D]=DIE, [W]=WARN [ 111.658420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.658426] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.658443] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.658454] RSP: 0018:ffff888017fef440 EFLAGS: 00010212 [ 111.658464] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.658471] RDX: ffff88800a2c5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.658479] RBP: ffff888017fef6b0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.658487] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.658494] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.658503] FS: 00007f76fdce0700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.658514] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.658522] CR2: 00007fc26a184000 CR3: 000000001435e000 CR4: 0000000000350ef0 [ 111.658530] Call Trace: [ 111.658533] [ 111.658539] ? __pfx_perf_tp_event+0x10/0x10 [ 111.658556] ? lock_acquire+0x15e/0x2f0 [ 111.658569] ? __is_insn_slot_addr+0x2e/0x290 [ 111.658588] ? find_held_lock+0x2b/0x80 [ 111.658605] ? __is_insn_slot_addr+0x136/0x290 [ 111.658623] ? lock_release+0xc8/0x290 [ 111.658637] ? __is_insn_slot_addr+0x140/0x290 [ 111.658655] ? kernel_text_address+0x5b/0xc0 [ 111.658669] ? lock_acquire+0x15e/0x2f0 [ 111.658682] ? __kernel_text_address+0xd/0x40 [ 111.658696] ? css_rstat_updated+0x1b8/0x4d0 [ 111.658714] ? lock_is_held_type+0x9e/0x120 [ 111.658731] ? update_se+0x1ba/0x670 [ 111.658746] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.658762] perf_trace_run_bpf_submit+0xef/0x180 [ 111.658780] perf_trace_contention_begin+0x235/0x3e0 [ 111.658795] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.658809] ? _prb_read_valid+0x6e9/0x830 [ 111.658824] ? lock_acquire+0x18c/0x2f0 [ 111.658838] trace_contention_begin+0xae/0x110 [ 111.658853] __mutex_lock+0x14b/0x1020 [ 111.658870] ? syslog_print+0x244/0x5c0 [ 111.658884] ? syslog_print+0x244/0x5c0 [ 111.658898] ? __pfx___mutex_lock+0x10/0x10 [ 111.658916] ? lock_acquire+0x15e/0x2f0 [ 111.658929] ? prb_read_valid+0x78/0xa0 [ 111.658943] ? __pfx_prb_read_valid+0x10/0x10 [ 111.658959] syslog_print+0x244/0x5c0 [ 111.658973] ? __pfx_syslog_print+0x10/0x10 [ 111.658988] ? __pfx_autoremove_wake_function+0x10/0x10 [ 111.659005] ? lock_acquire+0x15e/0x2f0 [ 111.659017] ? avc_has_perm_noaudit+0x59/0x3d0 [ 111.659038] ? find_held_lock+0x2b/0x80 [ 111.659055] ? avc_has_perm_noaudit+0x11b/0x3d0 [ 111.659074] do_syslog.part.0+0x20b/0x5b0 [ 111.659090] ? __pfx_do_syslog.part.0+0x10/0x10 [ 111.659106] ? avc_has_perm+0x12b/0x1d0 [ 111.659124] ? __pfx_avc_has_perm+0x10/0x10 [ 111.659146] do_syslog+0xcd/0x110 [ 111.659162] kmsg_read+0x8e/0xc0 [ 111.659174] ? __pfx_kmsg_read+0x10/0x10 [ 111.659185] proc_reg_read+0x120/0x310 [ 111.659202] ? __pfx_proc_reg_read+0x10/0x10 [ 111.659219] vfs_read+0x1eb/0xc70 [ 111.659233] ? __pfx_vfs_read+0x10/0x10 [ 111.659245] ? lock_release+0xc8/0x290 [ 111.659259] ? __fget_files+0x20d/0x3b0 [ 111.659273] ksys_read+0x121/0x240 [ 111.659285] ? __pfx_ksys_read+0x10/0x10 [ 111.659299] do_syscall_64+0xbf/0x360 [ 111.659312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.659323] RIP: 0033:0x7f76fe72308c [ 111.659333] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 89 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf fc ff ff 48 [ 111.659344] RSP: 002b:00007f76fdcbf4d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 111.659355] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f76fe72308c [ 111.659363] RDX: 0000000000001fa0 RSI: 00007f76fdcbfd00 RDI: 0000000000000005 [ 111.659371] RBP: 0000562da9f4b4c0 R08: 0000000000000000 R09: 0000562da9f47e88 [ 111.659378] R10: a3d70a3d70a3d70b R11: 0000000000000246 R12: 00007f76fdcbfd00 [ 111.659386] R13: 0000000000001fa0 R14: 00007f76fdcbfd00 R15: 00007f76fdcbfd9e [ 111.659397] [ 111.659401] Modules linked in: [ 111.659492] ---[ end trace 0000000000000000 ]--- [ 111.659498] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.659514] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.659526] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.659535] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.659543] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.659551] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.659559] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.659567] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.659576] FS: 00007f76fdce0700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.659587] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.659595] CR2: 00007fc26a184000 CR3: 000000001435e000 CR4: 0000000000350ef0 [ 111.659604] note: in:imklog[173] exited with preempt_count 2 [ 111.660025] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#3] SMP KASAN NOPTI [ 111.660038] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197] [ 111.660049] CPU: 0 UID: 0 PID: 3977 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.660068] Tainted: [D]=DIE, [W]=WARN [ 111.660072] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.660078] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.660095] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.660107] RSP: 0018:ffff88801743f540 EFLAGS: 00010212 [ 111.660116] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.660124] RDX: ffff888040c45280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.660132] RBP: ffff88801743f7b0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.660140] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.660147] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.660157] FS: 000055556edaf400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.660168] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.660176] CR2: 00007fd13750b718 CR3: 0000000041c5a000 CR4: 0000000000350ef0 [ 111.660184] Call Trace: [ 111.660187] [ 111.660194] ? __pfx_perf_tp_event+0x10/0x10 [ 111.660209] ? __kernel_text_address+0xd/0x40 [ 111.660224] ? arch_stack_walk+0x9c/0xf0 [ 111.660239] ? stack_trace_save+0x8e/0xc0 [ 111.660255] ? stack_depot_save_flags+0x2c/0xa20 [ 111.660269] ? lock_acquire+0x18c/0x2f0 [ 111.660282] ? lock_release+0x1c7/0x290 [ 111.660296] ? lock_acquire+0x18c/0x2f0 [ 111.660309] ? lock_acquire+0x18c/0x2f0 [ 111.660322] ? lock_release+0x1c7/0x290 [ 111.660336] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.660352] perf_trace_run_bpf_submit+0xef/0x180 [ 111.660370] perf_trace_contention_begin+0x235/0x3e0 [ 111.660390] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.660405] ? lock_acquire+0x18c/0x2f0 [ 111.660419] trace_contention_begin+0xae/0x110 [ 111.660434] __mutex_lock+0x14b/0x1020 [ 111.660451] ? freezer_fork+0xc1/0x500 [ 111.660464] ? freezer_fork+0xc1/0x500 [ 111.660476] ? delete_node+0x20e/0x730 [ 111.660493] ? __pfx___mutex_lock+0x10/0x10 [ 111.660512] ? __radix_tree_replace+0x117/0x300 [ 111.660529] ? lock_acquire+0x18c/0x2f0 [ 111.660550] ? do_raw_spin_lock+0x123/0x260 [ 111.660566] ? lock_release+0x1c7/0x290 [ 111.660580] freezer_fork+0xc1/0x500 [ 111.660593] cgroup_post_fork+0x31f/0x9a0 [ 111.660610] ? __pfx_cgroup_post_fork+0x10/0x10 [ 111.660625] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 111.660641] ? lock_release+0x1c7/0x290 [ 111.660655] copy_process+0x5e31/0x73c0 [ 111.660671] ? __pfx_copy_process+0x10/0x10 [ 111.660684] ? lock_acquire+0x18c/0x2f0 [ 111.660697] ? lock_release+0x1c7/0x290 [ 111.660712] kernel_clone+0xea/0x7f0 [ 111.660724] ? __pfx_kernel_clone+0x10/0x10 [ 111.660737] ? vma_start_read+0x304/0x8e0 [ 111.660751] ? __pfx___handle_mm_fault+0x10/0x10 [ 111.660769] ? css_rstat_updated+0x1b8/0x4d0 [ 111.660785] ? __pfx_css_rstat_updated+0x10/0x10 [ 111.660803] __do_sys_clone+0xce/0x120 [ 111.660815] ? __pfx___do_sys_clone+0x10/0x10 [ 111.660827] ? count_memcg_events+0x32b/0x420 [ 111.660848] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 111.660862] do_syscall_64+0xbf/0x360 [ 111.660873] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.660885] RIP: 0033:0x7fd139fb7f41 [ 111.660893] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00 [ 111.660904] RSP: 002b:00007ffd99278b08 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 111.660916] RAX: ffffffffffffffda RBX: 00007fd13750b700 RCX: 00007fd139fb7f41 [ 111.660924] RDX: 00007fd13750b9d0 RSI: 00007fd13750b2f0 RDI: 00000000003d0f00 [ 111.660932] RBP: 00007ffd99278d40 R08: 00007fd13750b700 R09: 00007fd13750b700 [ 111.660939] R10: 00007fd13750b9d0 R11: 0000000000000206 R12: 00007ffd99278bbe [ 111.660947] R13: 00007ffd99278bbf R14: 00007fd13750b300 R15: 0000000000022000 [ 111.660958] [ 111.660962] Modules linked in: [ 111.660986] ---[ end trace 0000000000000000 ]--- [ 111.660992] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.661009] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.661020] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.661029] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.661037] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.661045] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.661053] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.661061] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.661070] FS: 000055556edaf400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.661081] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.661089] CR2: 00007fd13750b718 CR3: 0000000041c5a000 CR4: 0000000000350ef0 [ 111.661097] note: syz-executor.4[3977] exited with preempt_count 2 [ 111.661140] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#4] SMP KASAN NOPTI [ 111.661152] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197] [ 111.661164] CPU: 0 UID: 0 PID: 3979 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.661182] Tainted: [D]=DIE, [W]=WARN [ 111.661187] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.661193] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.661210] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.661222] RSP: 0018:ffff8880415bf840 EFLAGS: 00010212 [ 111.661232] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: ffffc90005dbc000 [ 111.661240] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.661247] RBP: ffff8880415bfab0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.661256] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.661263] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.661273] FS: 00007fc2675ea700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.661284] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.661292] CR2: 00007fd13750b718 CR3: 0000000041feb000 CR4: 0000000000350ef0 [ 111.661300] Call Trace: [ 111.661303] [ 111.661310] ? __pfx_perf_tp_event+0x10/0x10 [ 111.661327] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10 [ 111.661341] ? kvm_sched_clock_read+0x16/0x30 [ 111.661357] ? local_clock_noinstr+0xf/0xc0 [ 111.661379] ? ctx_sched_in+0x134/0x9b0 [ 111.661391] ? __pfx_ctx_sched_in+0x10/0x10 [ 111.661402] ? lock_release+0x1c7/0x290 [ 111.661414] ? lock_acquire+0x18c/0x2f0 [ 111.661427] ? lock_release+0x1c7/0x290 [ 111.661440] ? lock_release+0x1c7/0x290 [ 111.661454] ? __perf_event_task_sched_in+0x235/0x5e0 [ 111.661467] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.661483] ? lock_release+0x1c7/0x290 [ 111.661496] perf_trace_run_bpf_submit+0xef/0x180 [ 111.661513] perf_trace_contention_begin+0x235/0x3e0 [ 111.661528] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.661542] ? do_raw_spin_lock+0x123/0x260 [ 111.661558] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 111.661573] ? lock_acquire+0x18c/0x2f0 [ 111.661587] trace_contention_begin+0xae/0x110 [ 111.661602] __mutex_lock+0x14b/0x1020 [ 111.661619] ? __do_sys_perf_event_open+0xa4d/0x2c20 [ 111.661633] ? __do_sys_perf_event_open+0xa4d/0x2c20 [ 111.661648] ? lock_release+0x1c7/0x290 [ 111.661661] ? __pfx___mutex_lock+0x10/0x10 [ 111.661679] ? find_get_context+0x1d0/0x680 [ 111.661698] ? __pfx_find_get_context+0x10/0x10 [ 111.661717] ? security_capable+0x2f/0x90 [ 111.661732] __do_sys_perf_event_open+0xa4d/0x2c20 [ 111.661748] ? __ia32_sys_get_robust_list+0x380/0x400 [ 111.661763] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 111.661777] ? find_held_lock+0x2b/0x80 [ 111.661797] ? xfd_validate_state+0x55/0x180 [ 111.661816] do_syscall_64+0xbf/0x360 [ 111.661827] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.661839] RIP: 0033:0x7fc26a074b19 [ 111.661847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 111.661858] RSP: 002b:00007fc2675ea188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 111.661869] RAX: ffffffffffffffda RBX: 00007fc26a187f60 RCX: 00007fc26a074b19 [ 111.661877] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 111.661884] RBP: 00007fc26a0cef6d R08: 0000000000000000 R09: 0000000000000000 [ 111.661892] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 111.661899] R13: 00007fffc2ce2e9f R14: 00007fc2675ea300 R15: 0000000000022000 [ 111.661910] [ 111.661914] Modules linked in: [ 111.661935] ---[ end trace 0000000000000000 ]--- [ 111.661940] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.661957] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.661968] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.661977] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.661985] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.661993] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.662001] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.662008] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.662017] FS: 00007fc2675ea700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.662028] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.662036] CR2: 00007fd13750b718 CR3: 0000000041feb000 CR4: 0000000000350ef0 [ 111.662045] note: syz-executor.6[3979] exited with preempt_count 2 [ 111.665405] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#5] SMP KASAN NOPTI [ 111.665419] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197] [ 111.665430] CPU: 0 UID: 0 PID: 3983 Comm: syz-executor.5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.665449] Tainted: [D]=DIE, [W]=WARN [ 111.665453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.665459] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.665477] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.665489] RSP: 0018:ffff888041fff6c0 EFLAGS: 00010212 [ 111.665499] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.665506] RDX: ffff888041070000 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.665514] RBP: ffff888041fff930 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.665522] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.665530] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.665539] FS: 0000555556d65400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.665550] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.665558] CR2: 00007f274355a545 CR3: 0000000014285000 CR4: 0000000000350ef0 [ 111.665566] Call Trace: [ 111.665569] [ 111.665573] ? set_normalized_timespec64+0x69/0xc0 [ 111.665591] ? __pfx_perf_tp_event+0x10/0x10 [ 111.665608] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 111.665624] ? lock_acquire+0x18c/0x2f0 [ 111.665637] ? lock_release+0x1c7/0x290 [ 111.665650] ? lock_release+0x1c7/0x290 [ 111.665664] ? avc_has_perm_noaudit+0x150/0x3d0 [ 111.665683] ? lock_acquire+0x18c/0x2f0 [ 111.665696] ? avc_has_perm+0x12b/0x1d0 [ 111.665713] ? lock_acquire+0x18c/0x2f0 [ 111.665727] ? lock_release+0x1c7/0x290 [ 111.665740] ? lock_acquire+0x18c/0x2f0 [ 111.665753] ? lock_acquire+0x18c/0x2f0 [ 111.665766] ? lock_release+0x1c7/0x290 [ 111.665780] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.665797] ? kernel_text_address+0x5b/0xc0 [ 111.665811] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.665826] ? __kernel_text_address+0xd/0x40 [ 111.665839] perf_trace_run_bpf_submit+0xef/0x180 [ 111.665857] perf_trace_contention_begin+0x235/0x3e0 [ 111.665872] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.665887] ? stack_trace_save+0x8e/0xc0 [ 111.665901] ? lock_acquire+0x18c/0x2f0 [ 111.665915] trace_contention_begin+0xae/0x110 [ 111.665930] __mutex_lock+0x14b/0x1020 [ 111.665948] ? __set_oom_adj.isra.0+0x68/0xf40 [ 111.665962] ? __set_oom_adj.isra.0+0x68/0xf40 [ 111.665976] ? putname+0x3c/0x50 [ 111.665991] ? do_sys_openat2+0x13c/0x1b0 [ 111.666011] ? __x64_sys_openat+0x142/0x200 [ 111.666028] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.666041] ? __pfx___mutex_lock+0x10/0x10 [ 111.666060] ? lock_acquire+0x18c/0x2f0 [ 111.666073] ? do_symlinkat+0x216/0x300 [ 111.666086] ? lock_release+0x1c7/0x290 [ 111.666101] __set_oom_adj.isra.0+0x68/0xf40 [ 111.666117] oom_score_adj_write+0x1ba/0x200 [ 111.666131] ? __pfx_oom_score_adj_write+0x10/0x10 [ 111.666147] ? vfs_write+0x717/0x1150 [ 111.666160] vfs_write+0x2b7/0x1150 [ 111.666172] ? __pfx_oom_score_adj_write+0x10/0x10 [ 111.666189] ? __pfx_vfs_write+0x10/0x10 [ 111.666203] ? putname+0x3c/0x50 [ 111.666218] ? do_sys_openat2+0x141/0x1b0 [ 111.666235] ? __pfx_do_sys_openat2+0x10/0x10 [ 111.666253] ? putname.part.0+0x11b/0x160 [ 111.666270] ksys_write+0x121/0x240 [ 111.666283] ? __pfx_ksys_write+0x10/0x10 [ 111.666297] do_syscall_64+0xbf/0x360 [ 111.666309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.666320] RIP: 0033:0x7f274348d5ff [ 111.666329] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 111.666340] RSP: 002b:00007ffcaf11c010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 111.666351] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f274348d5ff [ 111.666359] RDX: 0000000000000004 RSI: 00007ffcaf11c060 RDI: 0000000000000003 [ 111.666367] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffcaf11bfb0 [ 111.666378] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f2743534ff5 [ 111.666385] R13: 00007ffcaf11c060 R14: 0000000000000000 R15: 00007ffcaf11c600 [ 111.666396] [ 111.666400] Modules linked in: [ 111.666427] ---[ end trace 0000000000000000 ]--- [ 111.666433] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.666449] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.666461] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.666470] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.666478] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.666486] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.666494] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.666501] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.666510] FS: 0000555556d65400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.666521] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.666530] CR2: 00007f274355a545 CR3: 0000000014285000 CR4: 0000000000350ef0 [ 111.666538] note: syz-executor.5[3983] exited with preempt_count 2 [ 111.667556] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#6] SMP KASAN NOPTI [ 111.667568] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 111.667580] CPU: 0 UID: 0 PID: 280 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.667598] Tainted: [D]=DIE, [W]=WARN [ 111.667602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.667609] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.667626] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.667638] RSP: 0018:ffff8880166f76c0 EFLAGS: 00010212 [ 111.667647] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 111.667655] RDX: ffff8880162e3700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 111.667663] RBP: ffff8880166f7930 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.667671] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.667678] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.667688] FS: 00005555823b0400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.667699] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.667707] CR2: 00007f274355a545 CR3: 0000000034a95000 CR4: 0000000000350ef0 [ 111.667714] Call Trace: [ 111.667718] [ 111.667722] ? kasan_save_stack+0x34/0x50 [ 111.667739] ? __do_wait+0x218/0x8f0 [ 111.667754] ? __pfx_perf_tp_event+0x10/0x10 [ 111.667771] ? delete_node+0x20e/0x730 [ 111.667788] ? __radix_tree_delete+0x13e/0x380 [ 111.667805] ? radix_tree_delete_item+0xef/0x230 [ 111.667822] ? lock_acquire+0x18c/0x2f0 [ 111.667835] ? lock_acquire+0x18c/0x2f0 [ 111.667848] ? lock_release+0x1c7/0x290 [ 111.667862] ? __virt_addr_valid+0x100/0x5d0 [ 111.667882] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 111.667895] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.667911] perf_trace_run_bpf_submit+0xef/0x180 [ 111.667929] perf_trace_contention_begin+0x235/0x3e0 [ 111.667944] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.667958] ? __pfx_release_task+0x10/0x10 [ 111.667973] ? lock_acquire+0x18c/0x2f0 [ 111.667986] ? lock_release+0x1c7/0x290 [ 111.667999] trace_contention_begin+0xae/0x110 [ 111.668014] __mutex_lock+0x14b/0x1020 [ 111.668031] ? anon_pipe_write+0x12a/0x1a80 [ 111.668044] ? anon_pipe_write+0x12a/0x1a80 [ 111.668056] ? avc_has_perm+0x12b/0x1d0 [ 111.668075] ? __pfx___mutex_lock+0x10/0x10 [ 111.668093] ? __pfx_wait_consider_task+0x10/0x10 [ 111.668107] ? lock_acquire+0x18c/0x2f0 [ 111.668121] ? inode_has_perm+0x170/0x1c0 [ 111.668134] anon_pipe_write+0x12a/0x1a80 [ 111.668148] ? lock_release+0x1c7/0x290 [ 111.668161] ? lock_acquire+0x18c/0x2f0 [ 111.668174] ? __pfx_anon_pipe_write+0x10/0x10 [ 111.668187] ? selinux_file_permission+0x99/0x600 [ 111.668204] ? security_file_permission+0x22/0x90 [ 111.668223] vfs_write+0xbe9/0x1150 [ 111.668236] ? __pfx_anon_pipe_write+0x10/0x10 [ 111.668249] ? __pfx_vfs_write+0x10/0x10 [ 111.668262] ? __do_sys_wait4+0xb3/0x150 [ 111.668278] ? common_nsleep+0xaa/0xd0 [ 111.668293] ksys_write+0x1ef/0x240 [ 111.668306] ? __pfx_ksys_write+0x10/0x10 [ 111.668320] do_syscall_64+0xbf/0x360 [ 111.668332] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.668343] RIP: 0033:0x7fd5c078e5ff [ 111.668351] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 111.668363] RSP: 002b:00007ffef2faf390 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 111.668379] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00007fd5c078e5ff [ 111.668386] RDX: 000000000000000c RSI: 00007ffef2faf480 RDI: 00000000000000f8 [ 111.668396] RBP: 00007ffef2faf41c R08: 0000000000000000 R09: 00007fd5c08cb000 [ 111.668404] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 111.668411] R13: 000000000001b391 R14: 0000000000000006 R15: 00007ffef2faf480 [ 111.668422] [ 111.668426] Modules linked in: [ 111.668477] ---[ end trace 0000000000000000 ]--- [ 111.668483] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.668500] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.668511] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.668521] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.668529] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.668537] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.668552] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.668559] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.668569] FS: 00005555823b0400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.668580] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.668588] CR2: 00007f274355a545 CR3: 0000000034a95000 CR4: 0000000000350ef0 [ 111.668597] note: syz-executor.2[280] exited with preempt_count 2 [ 111.669728] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#7] SMP KASAN NOPTI [ 111.669741] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 111.669753] CPU: 0 UID: 0 PID: 365 Comm: kworker/u9:5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.669771] Tainted: [D]=DIE, [W]=WARN [ 111.669775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.669782] Workqueue: events_unbound cfg80211_wiphy_work [ 111.669799] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.669816] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.669827] RSP: 0018:ffff88801615f700 EFLAGS: 00010212 [ 111.669836] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 111.669844] RDX: ffff8880161e0000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 111.669852] RBP: ffff88801615f970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.669859] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.669867] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.669877] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.669888] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.669896] CR2: 00007f274355a545 CR3: 0000000034a95000 CR4: 0000000000350ef0 [ 111.669904] Call Trace: [ 111.669907] [ 111.669913] ? __pfx_perf_tp_event+0x10/0x10 [ 111.669932] ? ret_from_fork_asm+0x1a/0x30 [ 111.669948] ? stack_trace_save+0x8e/0xc0 [ 111.669962] ? stack_depot_save_flags+0x2c/0xa20 [ 111.669976] ? kasan_save_stack+0x34/0x50 [ 111.669990] ? kasan_save_stack+0x24/0x50 [ 111.670003] ? kasan_save_track+0x14/0x30 [ 111.670017] ? __kasan_save_free_info+0x3a/0x60 [ 111.670029] ? __kasan_slab_free+0x3f/0x50 [ 111.670044] ? kmem_cache_free+0x2a1/0x540 [ 111.670055] ? kfree_skbmem+0x18a/0x1f0 [ 111.670069] ? sk_skb_reason_drop+0x10e/0x1b0 [ 111.670083] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.670099] perf_trace_run_bpf_submit+0xef/0x180 [ 111.670117] perf_trace_contention_begin+0x235/0x3e0 [ 111.670132] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.670146] ? __pick_eevdf+0x326/0x570 [ 111.670157] ? update_curr+0x71/0x500 [ 111.670169] ? lock_acquire+0x18c/0x2f0 [ 111.670183] trace_contention_begin+0xae/0x110 [ 111.670198] __mutex_lock+0x14b/0x1020 [ 111.670215] ? cfg80211_wiphy_work+0x7e/0x480 [ 111.670228] ? cfg80211_wiphy_work+0x7e/0x480 [ 111.670240] ? lock_release+0x1c7/0x290 [ 111.670253] ? lock_release+0x1c7/0x290 [ 111.670266] ? __pfx___mutex_lock+0x10/0x10 [ 111.670284] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 111.670302] ? __pfx_try_to_wake_up+0x10/0x10 [ 111.670319] ? trace_irq_enable.constprop.0+0x26/0x100 [ 111.670331] ? finish_task_switch.isra.0+0x206/0x840 [ 111.670351] ? finish_task_switch.isra.0+0x20f/0x840 [ 111.670370] cfg80211_wiphy_work+0x7e/0x480 [ 111.670389] process_one_work+0x8e1/0x19c0 [ 111.670405] ? __pfx_process_one_work+0x10/0x10 [ 111.670419] ? move_linked_works+0x172/0x270 [ 111.670436] ? assign_work+0x196/0x240 [ 111.670450] worker_thread+0x67e/0xe90 [ 111.670464] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 111.670477] ? __pfx_worker_thread+0x10/0x10 [ 111.670492] kthread+0x3c8/0x740 [ 111.670504] ? __pfx_kthread+0x10/0x10 [ 111.670516] ? ret_from_fork+0x23/0x430 [ 111.670533] ? lock_release+0xc8/0x290 [ 111.670546] ? __pfx_kthread+0x10/0x10 [ 111.670559] ret_from_fork+0x34b/0x430 [ 111.670576] ? __pfx_kthread+0x10/0x10 [ 111.670588] ret_from_fork_asm+0x1a/0x30 [ 111.670607] [ 111.670611] Modules linked in: [ 111.670629] ---[ end trace 0000000000000000 ]--- [ 111.670635] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.670651] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.670662] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.670672] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.670680] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.670688] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.670695] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.670703] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.670712] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.670723] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.670731] CR2: 00007f274355a545 CR3: 0000000034a95000 CR4: 0000000000350ef0 [ 111.670740] note: kworker/u9:5[365] exited with preempt_count 2 [ 111.670808] kworker/u9:5 (365) used greatest stack depth: 23968 bytes left [ 111.671043] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#8] SMP KASAN NOPTI [ 111.671057] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 111.671068] CPU: 0 UID: 0 PID: 3980 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.671087] Tainted: [D]=DIE, [W]=WARN [ 111.671091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.671097] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.671115] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.671126] RSP: 0018:ffff888009f57380 EFLAGS: 00010212 [ 111.671136] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90003dac000 [ 111.671144] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 111.671152] RBP: ffff888009f575f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.671160] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.671168] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.671179] FS: 00007fd13752c700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.671190] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.671198] CR2: 00007f274355a545 CR3: 0000000041c5a000 CR4: 0000000000350ef0 [ 111.671206] Call Trace: [ 111.671209] [ 111.671216] ? __pfx_perf_tp_event+0x10/0x10 [ 111.671232] ? find_held_lock+0x2b/0x80 [ 111.671249] ? __is_insn_slot_addr+0x136/0x290 [ 111.671267] ? lock_release+0xc8/0x290 [ 111.671281] ? __is_insn_slot_addr+0x140/0x290 [ 111.671299] ? kernel_text_address+0x5b/0xc0 [ 111.671313] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.671328] ? lock_acquire+0x18c/0x2f0 [ 111.671340] ? unwind_get_return_address+0x59/0xa0 [ 111.671359] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.671379] ? lock_release+0x1c7/0x290 [ 111.671392] ? lock_acquire+0x18c/0x2f0 [ 111.671405] ? lock_acquire+0x18c/0x2f0 [ 111.671418] ? lock_release+0x1c7/0x290 [ 111.671432] ? __is_insn_slot_addr+0x140/0x290 [ 111.671451] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.671467] ? unwind_get_return_address+0x59/0xa0 [ 111.671485] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.671500] ? arch_stack_walk+0x9c/0xf0 [ 111.671511] perf_trace_run_bpf_submit+0xef/0x180 [ 111.671529] perf_trace_contention_begin+0x235/0x3e0 [ 111.671544] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.671559] ? lock_acquire+0x18c/0x2f0 [ 111.671573] trace_contention_begin+0xae/0x110 [ 111.671588] __mutex_lock+0x14b/0x1020 [ 111.671605] ? genl_rcv_msg+0x54e/0x7e0 [ 111.671618] ? genl_rcv_msg+0x54e/0x7e0 [ 111.671631] ? __pfx___mutex_lock+0x10/0x10 [ 111.671649] ? __kernel_text_address+0xd/0x40 [ 111.671663] ? unwind_get_return_address+0x59/0xa0 [ 111.671681] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.671696] ? arch_stack_walk+0x9c/0xf0 [ 111.671707] ? __radix_tree_lookup+0x1f7/0x290 [ 111.671726] genl_rcv_msg+0x54e/0x7e0 [ 111.671741] ? stack_trace_save+0x8e/0xc0 [ 111.671755] ? __pfx_genl_rcv_msg+0x10/0x10 [ 111.671766] ? stack_depot_save_flags+0x2c/0xa20 [ 111.671778] ? stack_trace_save+0x8e/0xc0 [ 111.671793] ? do_raw_spin_lock+0x123/0x260 [ 111.671808] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 111.671823] netlink_rcv_skb+0x147/0x430 [ 111.671842] ? __pfx_genl_rcv_msg+0x10/0x10 [ 111.671854] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 111.671875] ? netlink_deliver_tap+0x1ae/0xce0 [ 111.671892] ? selinux_netlink_send+0x507/0x880 [ 111.671905] ? is_vmalloc_addr+0x86/0xa0 [ 111.671924] genl_rcv+0x28/0x40 [ 111.671934] netlink_unicast+0x5a7/0x870 [ 111.671953] ? __pfx_netlink_unicast+0x10/0x10 [ 111.671974] netlink_sendmsg+0x8ac/0xd80 [ 111.671993] ? __pfx_netlink_sendmsg+0x10/0x10 [ 111.672013] __sys_sendto+0x506/0x570 [ 111.672030] ? __pfx___sys_sendto+0x10/0x10 [ 111.672049] ? lock_release+0x1c7/0x290 [ 111.672063] ? fd_install+0x1f0/0x660 [ 111.672074] ? __sys_socket+0x9f/0x260 [ 111.672088] ? __pfx___sys_socket+0x10/0x10 [ 111.672102] ? xfd_validate_state+0x55/0x180 [ 111.672119] __x64_sys_sendto+0xe1/0x1c0 [ 111.672135] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 111.672148] do_syscall_64+0xbf/0x360 [ 111.672159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.672171] RIP: 0033:0x7fd139f698ac [ 111.672179] Code: fa fa ff ff 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 20 fb ff ff 48 8b [ 111.672193] RSP: 002b:00007fd13752b020 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 111.672205] RAX: ffffffffffffffda RBX: 00007fd13752b110 RCX: 00007fd139f698ac [ 111.672214] RDX: 0000000000000020 RSI: 00007fd13752b160 RDI: 0000000000000004 [ 111.672222] RBP: 0000000000000000 R08: 00007fd13752b074 R09: 000000000000000c [ 111.672229] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fd13752b0c8 [ 111.672236] R13: 00007fd13752b160 R14: 0000000000000004 R15: 0000000000000000 [ 111.672247] [ 111.672251] Modules linked in: [ 111.672408] ---[ end trace 0000000000000000 ]--- [ 111.672415] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.672432] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.672443] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.672452] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.672460] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.672468] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.672476] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.672484] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.672493] FS: 00007fd13752c700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.672504] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.672512] CR2: 00007f274355a545 CR3: 0000000041c5a000 CR4: 0000000000350ef0 [ 111.672521] note: syz-executor.4[3980] exited with preempt_count 2 [ 111.681516] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#9] SMP KASAN NOPTI [ 111.681531] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 111.681542] CPU: 0 UID: 0 PID: 252 Comm: syz-fuzzer Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.681561] Tainted: [D]=DIE, [W]=WARN [ 111.681565] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.681572] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.681590] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.681601] RSP: 0018:ffff88801b46f680 EFLAGS: 00010212 [ 111.681611] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 111.681618] RDX: ffff88800f5c9b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 111.681626] RBP: ffff88801b46f8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.681634] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.681642] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.681651] FS: 000000c000030410(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.681662] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.681670] CR2: 00007f274355a545 CR3: 000000000cd9e000 CR4: 0000000000350ef0 [ 111.681678] Call Trace: [ 111.681681] [ 111.681688] ? __pfx_perf_tp_event+0x10/0x10 [ 111.681704] ? __virt_addr_valid+0x2e8/0x5d0 [ 111.681722] ? lock_release+0xc8/0x290 [ 111.681737] ? mark_held_locks+0x49/0x80 [ 111.681751] ? trace_sched_set_need_resched_tp+0xd4/0x110 [ 111.681770] ? __resched_curr+0x2a2/0x330 [ 111.681787] ? kvm_sched_clock_read+0x16/0x30 [ 111.681803] ? sched_clock+0x37/0x60 [ 111.681819] ? sched_clock_cpu+0x6c/0x4e0 [ 111.681836] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.681852] perf_trace_run_bpf_submit+0xef/0x180 [ 111.681869] perf_trace_contention_begin+0x235/0x3e0 [ 111.681885] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.681900] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 111.681912] ? lock_acquire+0x18c/0x2f0 [ 111.681927] trace_contention_begin+0xae/0x110 [ 111.681941] __mutex_lock+0x14b/0x1020 [ 111.681959] ? ep_send_events+0xff/0xaa0 [ 111.681974] ? ep_send_events+0xff/0xaa0 [ 111.681989] ? __pfx___mutex_lock+0x10/0x10 [ 111.682008] ? lock_release+0x1c7/0x290 [ 111.682021] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 111.682033] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 111.682049] ? hrtimer_try_to_cancel.part.0+0x128/0x250 [ 111.682070] ep_send_events+0xff/0xaa0 [ 111.682084] ? schedule_hrtimeout_range_clock+0x1c0/0x310 [ 111.682100] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10 [ 111.682116] ? __pfx_ep_send_events+0x10/0x10 [ 111.682131] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 111.682149] ? read_tsc+0x9/0x20 [ 111.682162] ? ktime_get+0x16d/0x270 [ 111.682177] do_epoll_wait+0x42e/0xee0 [ 111.682192] ? security_file_permission+0x22/0x90 [ 111.682211] ? __pfx_do_epoll_wait+0x10/0x10 [ 111.682227] ? __pfx_ep_autoremove_wake_function+0x10/0x10 [ 111.682241] ? __pfx_timespec64_add_safe+0x10/0x10 [ 111.682259] ? lock_release+0xc8/0x290 [ 111.682272] ? set_user_sigmask+0x213/0x2a0 [ 111.682289] ? __pfx_set_user_sigmask+0x10/0x10 [ 111.682306] do_compat_epoll_pwait.part.0+0x29/0x1d0 [ 111.682322] __x64_sys_epoll_pwait+0x1de/0x320 [ 111.682339] ? __pfx___x64_sys_epoll_pwait+0x10/0x10 [ 111.682356] ? __pfx_ksys_read+0x10/0x10 [ 111.682370] do_syscall_64+0xbf/0x360 [ 111.682387] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.682401] RIP: 0033:0x4666e0 [ 111.682409] Code: 0f 05 89 44 24 20 c3 cc cc cc 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 44 8b 54 24 1c 49 c7 c0 00 00 00 00 b8 19 01 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc cc cc cc cc cc cc cc 8b 7c 24 08 48 c7 [ 111.682420] RSP: 002b:000000c0000417f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000119 [ 111.682432] RAX: ffffffffffffffda RBX: 000000000000033d RCX: 00000000004666e0 [ 111.682439] RDX: 0000000000000080 RSI: 000000c000041840 RDI: 0000000000000003 [ 111.682446] RBP: 000000c000041e40 R08: 0000000000000000 R09: 0000000000000000 [ 111.682454] R10: 000000000000033d R11: 0000000000000246 R12: 0000000000000003 [ 111.682461] R13: 000000c000000900 R14: 000000c0004d1800 R15: 0000000000000000 [ 111.682472] [ 111.682476] Modules linked in: [ 111.682502] ---[ end trace 0000000000000000 ]--- [ 111.682508] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.682524] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.682536] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.682545] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.682553] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.682561] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.682569] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.682576] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.682586] FS: 000000c000030410(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.682597] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.682605] CR2: 00007f274355a545 CR3: 000000000cd9e000 CR4: 0000000000350ef0 [ 111.682614] note: syz-fuzzer[252] exited with preempt_count 2 [ 111.690191] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#10] SMP KASAN NOPTI [ 111.690206] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 111.690217] CPU: 0 UID: 0 PID: 279 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.690236] Tainted: [D]=DIE, [W]=WARN [ 111.690240] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.690252] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.690270] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.690281] RSP: 0018:ffff8880165ef640 EFLAGS: 00010212 [ 111.690291] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 111.690299] RDX: ffff88801b673700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 111.690307] RBP: ffff8880165ef8b0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.690315] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 111.690322] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.690331] FS: 0000555571bf4400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.690342] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.690350] CR2: 00007f274355a545 CR3: 0000000033a64000 CR4: 0000000000350ef0 [ 111.690358] Call Trace: [ 111.690362] [ 111.690366] ? lock_acquire+0x18c/0x2f0 [ 111.690381] ? __pfx_perf_tp_event+0x10/0x10 [ 111.690396] ? lock_acquire+0x18c/0x2f0 [ 111.690410] ? lock_release+0x1c7/0x290 [ 111.690427] ? __is_insn_slot_addr+0x140/0x290 [ 111.690445] ? kernel_text_address+0x5b/0xc0 [ 111.690459] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.690474] ? __kernel_text_address+0xd/0x40 [ 111.690488] ? unwind_get_return_address+0x59/0xa0 [ 111.690505] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 111.690520] ? arch_stack_walk+0x9c/0xf0 [ 111.690534] ? stack_trace_save+0x8e/0xc0 [ 111.690548] ? stack_depot_save_flags+0x2c/0xa20 [ 111.690561] ? perf_trace_run_bpf_submit+0xef/0x180 [ 111.690577] ? kasan_save_stack+0x34/0x50 [ 111.690591] ? kasan_save_stack+0x24/0x50 [ 111.690605] ? kasan_save_track+0x14/0x30 [ 111.690619] perf_trace_run_bpf_submit+0xef/0x180 [ 111.690636] perf_trace_contention_begin+0x235/0x3e0 [ 111.690652] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 111.690666] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 111.690681] ? lock_acquire+0x18c/0x2f0 [ 111.690695] trace_contention_begin+0xae/0x110 [ 111.690710] __mutex_lock+0x14b/0x1020 [ 111.690727] ? perf_event_exit_task+0x46/0x510 [ 111.690743] ? perf_event_exit_task+0x46/0x510 [ 111.690759] ? lock_release+0x1c7/0x290 [ 111.690772] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 111.690784] ? __pfx___mutex_lock+0x10/0x10 [ 111.690802] ? _raw_spin_unlock_irq+0x23/0x40 [ 111.690817] ? acct_collect+0x654/0x880 [ 111.690833] ? __pfx_acct_collect+0x10/0x10 [ 111.690849] ? taskstats_exit+0x8c/0xba0 [ 111.690861] perf_event_exit_task+0x46/0x510 [ 111.690879] do_exit+0x626/0x2970 [ 111.690893] ? lock_release+0x1c7/0x290 [ 111.690906] ? __pfx_do_exit+0x10/0x10 [ 111.690919] ? do_raw_spin_lock+0x123/0x260 [ 111.690935] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 111.690950] ? do_wait+0x2cb/0x560 [ 111.690965] do_group_exit+0xd3/0x2a0 [ 111.690982] get_signal+0x2315/0x2340 [ 111.691002] ? __pfx_get_signal+0x10/0x10 [ 111.691021] arch_do_signal_or_restart+0x80/0x790 [ 111.691038] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 111.691055] ? find_held_lock+0x2b/0x80 [ 111.691072] ? exc_page_fault+0xb0/0x180 [ 111.691088] ? lock_release+0xc8/0x290 [ 111.691100] ? access_error+0x17d/0x380 [ 111.691116] exit_to_user_mode_loop+0x8b/0x110 [ 111.691129] do_syscall_64+0x2f7/0x360 [ 111.691140] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.691152] RIP: 0033:0x7f3614d1cf76 [ 111.691161] Code: 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 49 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 14 48 89 74 24 [ 111.691172] RSP: 002b:00007fff25153aa8 EFLAGS: 00000246 ORIG_RAX: 000000000000003d [ 111.691183] RAX: fffffffffffffe00 RBX: 000000000000011e RCX: 00007f3614d1cf76 [ 111.691191] RDX: 0000000040000000 RSI: 00007fff25153abc RDI: 00000000ffffffff [ 111.691199] RBP: 00007fff25153abc R08: 0000000000000000 R09: 0000555571bf4400 [ 111.691206] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3614e32bf0 [ 111.691214] R13: 00007fff25153bb0 R14: 0000000000000000 R15: 00000000000000f8 [ 111.691225] [ 111.691230] Modules linked in: [ 111.691418] ---[ end trace 0000000000000000 ]--- [ 111.691425] RIP: 0010:perf_tp_event+0x175/0xe70 [ 111.691442] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 111.691453] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 111.691463] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 111.691471] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 111.691479] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 111.691487] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 111.691495] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 111.691504] FS: 0000555571bf4400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 111.691515] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.691523] CR2: 00007f274355a545 CR3: 0000000033a64000 CR4: 0000000000350ef0 [ 111.691532] note: syz-executor.3[279] exited with preempt_count 2 [ 111.691540] Fixing recursive fault but reboot is needed! [ 111.691544] BUG: scheduling while atomic: syz-executor.3/279/0x00000000 [ 111.691552] INFO: lockdep is turned off. [ 111.691555] Modules linked in: [ 111.691564] CPU: 0 UID: 0 PID: 279 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.691583] Tainted: [D]=DIE, [W]=WARN [ 111.691591] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.691597] Call Trace: [ 111.691600] [ 111.691604] dump_stack_lvl+0xfa/0x120 [ 111.691628] __schedule_bug+0xb9/0x100 [ 111.691640] __schedule+0x24f3/0x3590 [ 111.691656] ? __pfx_vprintk_emit+0x10/0x10 [ 111.691674] ? arch_do_signal_or_restart+0x80/0x790 [ 111.691690] ? __pfx___schedule+0x10/0x10 [ 111.691706] ? do_raw_spin_lock+0x123/0x260 [ 111.691721] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 111.691736] ? lock_acquire+0x18c/0x2f0 [ 111.691750] ? lock_release+0x1c7/0x290 [ 111.691763] ? do_task_dead+0x3e/0x110 [ 111.691776] do_task_dead+0xdc/0x110 [ 111.691790] make_task_dead+0x373/0x3b0 [ 111.691803] ? do_syscall_64+0x2f7/0x360 [ 111.691814] rewind_stack_and_make_dead+0x16/0x20 [ 111.691829] RIP: 0033:0x7f3614d1cf76 [ 111.691837] Code: 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 49 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 14 48 89 74 24 [ 111.691848] RSP: 002b:00007fff25153aa8 EFLAGS: 00000246 ORIG_RAX: 000000000000003d [ 111.691859] RAX: fffffffffffffe00 RBX: 000000000000011e RCX: 00007f3614d1cf76 [ 111.691866] RDX: 0000000040000000 RSI: 00007fff25153abc RDI: 00000000ffffffff [ 111.691874] RBP: 00007fff25153abc R08: 0000000000000000 R09: 0000555571bf4400 [ 111.691881] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3614e32bf0 [ 111.691888] R13: 00007fff25153bb0 R14: 0000000000000000 R15: 00000000000000f8 [ 111.691899] [ 111.694139] BUG: Bad page state in process ksoftirqd/0 pfn:165e9 [ 111.694154] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x165e9 [ 111.694167] flags: 0x100000000000000(node=0|zone=1) [ 111.694179] page_type: f9(unknown) [ 111.694191] raw: 0100000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 111.694203] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 111.694211] page dumped because: nonzero mapcount [ 111.694216] Modules linked in: [ 111.694229] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.694249] Tainted: [D]=DIE, [W]=WARN [ 111.694253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.694260] Call Trace: [ 111.694264] [ 111.694268] dump_stack_lvl+0xfa/0x120 [ 111.694293] bad_page+0x8c/0x1c0 [ 111.694306] __free_frozen_pages+0xaf9/0xe10 [ 111.694324] ? rcu_core+0x7c3/0x1800 [ 111.694339] rcu_core+0x7c8/0x1800 [ 111.694355] ? __pfx_rcu_core+0x10/0x10 [ 111.694370] ? __pfx___schedule+0x10/0x10 [ 111.694390] ? lock_release+0x1c7/0x290 [ 111.694406] handle_softirqs+0x1b1/0x770 [ 111.694426] ? __pfx_run_ksoftirqd+0x10/0x10 [ 111.694445] ? smpboot_thread_fn+0x371/0x9d0 [ 111.694465] run_ksoftirqd+0x2e/0x60 [ 111.694483] smpboot_thread_fn+0x41d/0x9d0 [ 111.694503] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 111.694522] kthread+0x3c8/0x740 [ 111.694535] ? __pfx_kthread+0x10/0x10 [ 111.694548] ? ret_from_fork+0x23/0x430 [ 111.694566] ? lock_release+0xc8/0x290 [ 111.694580] ? __pfx_kthread+0x10/0x10 [ 111.694593] ret_from_fork+0x34b/0x430 [ 111.694611] ? __pfx_kthread+0x10/0x10 [ 111.694624] ret_from_fork_asm+0x1a/0x30 [ 111.694643] [ 111.694815] BUG: Bad page state in process ksoftirqd/0 pfn:165ea [ 111.761892] kmemleak: Found object by alias at 0x607f1a63e9c4 [ 111.761912] CPU: 1 UID: 0 PID: 282 Comm: syz-executor.5 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.761933] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 111.761938] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.761945] Call Trace: [ 111.761949] [ 111.761953] dump_stack_lvl+0xca/0x120 [ 111.761984] __lookup_object+0x94/0xb0 [ 111.762002] delete_object_full+0x27/0x70 [ 111.762018] free_percpu+0x30/0x1160 [ 111.762035] ? arch_uprobe_clear_state+0x16/0x140 [ 111.762053] futex_hash_free+0x38/0xc0 [ 111.762068] mmput+0x2d3/0x390 [ 111.762086] do_exit+0x79d/0x2970 [ 111.762105] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 111.762123] ? __pfx_do_exit+0x10/0x10 [ 111.762136] ? do_raw_spin_lock+0x123/0x260 [ 111.762153] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 111.762170] do_group_exit+0xd3/0x2a0 [ 111.762183] get_signal+0x2315/0x2340 [ 111.762201] ? __hrtimer_setup+0x1a4/0x2c0 [ 111.762220] ? hrtimer_nanosleep+0x15d/0x340 [ 111.762232] ? __pfx_get_signal+0x10/0x10 [ 111.762249] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 111.762267] arch_do_signal_or_restart+0x80/0x790 [ 111.762285] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 111.762301] ? common_nsleep+0xaa/0xd0 [ 111.762315] ? __x64_sys_clock_nanosleep+0x342/0x470 [ 111.762335] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 111.762355] exit_to_user_mode_loop+0x8b/0x110 [ 111.762369] do_syscall_64+0x2f7/0x360 [ 111.762388] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.762400] RIP: 0033:0x7f27434ff8e1 [ 111.762409] Code: Unable to access opcode bytes at 0x7f27434ff8b7. [ 111.762414] RSP: 002b:00007ffcaf11c4d0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 111.762427] RAX: fffffffffffffdfc RBX: 000000000000000f RCX: 00007f27434ff8e1 [ 111.762434] RDX: 00007ffcaf11c510 RSI: 0000000000000000 RDI: 0000000000000000 [ 111.762442] RBP: 00007ffcaf11c59c R08: 0000000000000000 R09: 00007f27435ca000 [ 111.762449] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 111.762456] R13: 000000000001b3a8 R14: 0000000000000000 R15: 00007ffcaf11c600 [ 111.762467] [ 111.762471] kmemleak: Object (percpu) 0x607f1a63e9c0 (size 8): [ 111.762477] kmemleak: comm "syz-executor.6", pid 3979, jiffies 4294778435 [ 111.762485] kmemleak: min_count = 1 [ 111.762489] kmemleak: count = 0 [ 111.762492] kmemleak: flags = 0x21 [ 111.762496] kmemleak: checksum = 0 [ 111.762500] kmemleak: backtrace: [ 111.762503] pcpu_alloc_noprof+0x87a/0x1170 [ 111.762519] perf_trace_event_init+0x366/0xa10 [ 111.762534] perf_trace_init+0x1a4/0x2f0 [ 111.762547] perf_tp_event_init+0xa6/0x120 [ 111.762563] perf_try_init_event+0x140/0x9f0 [ 111.762577] perf_event_alloc.part.0+0x118e/0x45f0 [ 111.762595] __do_sys_perf_event_open+0x719/0x2c20 [ 111.762608] do_syscall_64+0xbf/0x360 [ 111.762618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.955840] kmemleak: Found object by alias at 0x607f1a63e9c4 [ 111.955861] CPU: 1 UID: 0 PID: 3983 Comm: syz-executor.5 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 111.955883] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 111.955887] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.955895] Call Trace: [ 111.955899] [ 111.955903] dump_stack_lvl+0xca/0x120 [ 111.955936] __lookup_object+0x94/0xb0 [ 111.955953] delete_object_full+0x27/0x70 [ 111.955969] free_percpu+0x30/0x1160 [ 111.955987] ? arch_uprobe_clear_state+0x16/0x140 [ 111.956005] futex_hash_free+0x38/0xc0 [ 111.956025] mmput+0x2d3/0x390 [ 111.956043] do_exit+0x79d/0x2970 [ 111.956057] ? _printk+0xbe/0xf0 [ 111.956071] ? __pfx__printk+0x10/0x10 [ 111.956084] ? __pfx_do_exit+0x10/0x10 [ 111.956097] ? __pfx_ksys_write+0x10/0x10 [ 111.956111] make_task_dead+0x174/0x3b0 [ 111.956124] ? do_syscall_64+0xbf/0x360 [ 111.956137] rewind_stack_and_make_dead+0x16/0x20 [ 111.956154] RIP: 0033:0x7f274348d5ff [ 111.956163] Code: Unable to access opcode bytes at 0x7f274348d5d5. [ 111.956169] RSP: 002b:00007ffcaf11c010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 111.956181] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f274348d5ff [ 111.956189] RDX: 0000000000000004 RSI: 00007ffcaf11c060 RDI: 0000000000000003 [ 111.956197] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffcaf11bfb0 [ 111.956204] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f2743534ff5 [ 111.956211] R13: 00007ffcaf11c060 R14: 0000000000000000 R15: 00007ffcaf11c600 [ 111.956222] [ 111.956226] kmemleak: Object (percpu) 0x607f1a63e9c0 (size 8): [ 111.956233] kmemleak: comm "syz-executor.6", pid 3979, jiffies 4294778435 [ 111.956240] kmemleak: min_count = 1 [ 111.956244] kmemleak: count = 0 [ 111.956248] kmemleak: flags = 0x21 [ 111.956252] kmemleak: checksum = 0 [ 111.956255] kmemleak: backtrace: [ 111.956259] pcpu_alloc_noprof+0x87a/0x1170 [ 111.956275] perf_trace_event_init+0x366/0xa10 [ 111.956290] perf_trace_init+0x1a4/0x2f0 [ 111.956302] perf_tp_event_init+0xa6/0x120 [ 111.956318] perf_try_init_event+0x140/0x9f0 [ 111.956333] perf_event_alloc.part.0+0x118e/0x45f0 [ 111.956350] __do_sys_perf_event_open+0x719/0x2c20 [ 111.956363] do_syscall_64+0xbf/0x360 [ 111.956373] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.142826] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x165ea [ 112.142846] flags: 0x100000000000000(node=0|zone=1) [ 112.142857] page_type: f9(unknown) [ 112.142869] raw: 0100000000000000 0000000000000000 ffffea0000597a90 0000000000000000 [ 112.142880] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.142886] page dumped because: nonzero mapcount [ 112.142891] Modules linked in: [ 112.142906] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.142926] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.142931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.142938] Call Trace: [ 112.142945] [ 112.142951] dump_stack_lvl+0xfa/0x120 [ 112.142980] bad_page+0x8c/0x1c0 [ 112.142994] __free_frozen_pages+0xaf9/0xe10 [ 112.143010] ? rcu_core+0x7c3/0x1800 [ 112.143025] rcu_core+0x7c8/0x1800 [ 112.143040] ? __pfx_rcu_core+0x10/0x10 [ 112.143053] ? __pfx___schedule+0x10/0x10 [ 112.143069] ? lock_release+0x1c7/0x290 [ 112.143087] handle_softirqs+0x1b1/0x770 [ 112.143110] ? __pfx_run_ksoftirqd+0x10/0x10 [ 112.143127] ? smpboot_thread_fn+0x371/0x9d0 [ 112.143144] run_ksoftirqd+0x2e/0x60 [ 112.143161] smpboot_thread_fn+0x41d/0x9d0 [ 112.143178] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 112.143195] kthread+0x3c8/0x740 [ 112.143208] ? __pfx_kthread+0x10/0x10 [ 112.143219] ? ret_from_fork+0x23/0x430 [ 112.143237] ? lock_release+0xc8/0x290 [ 112.143249] ? __pfx_kthread+0x10/0x10 [ 112.143261] ret_from_fork+0x34b/0x430 [ 112.143277] ? __pfx_kthread+0x10/0x10 [ 112.143289] ret_from_fork_asm+0x1a/0x30 [ 112.143308] [ 112.143313] BUG: Bad page state in process ksoftirqd/0 pfn:165eb [ 112.155999] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x165eb [ 112.156011] flags: 0x100000000000000(node=0|zone=1) [ 112.156019] page_type: f9(unknown) [ 112.156029] raw: 0100000000000000 0000000000000000 ffffea0000597ac8 0000000000000000 [ 112.156039] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.156045] page dumped because: nonzero mapcount [ 112.156050] Modules linked in: [ 112.156058] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.156077] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.156082] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.156088] Call Trace: [ 112.156091] [ 112.156096] dump_stack_lvl+0xfa/0x120 [ 112.156113] bad_page+0x8c/0x1c0 [ 112.156123] __free_frozen_pages+0xaf9/0xe10 [ 112.156138] ? rcu_core+0x7c3/0x1800 [ 112.156151] rcu_core+0x7c8/0x1800 [ 112.156165] ? __pfx_rcu_core+0x10/0x10 [ 112.156178] ? __pfx___schedule+0x10/0x10 [ 112.156192] ? lock_release+0x1c7/0x290 [ 112.156206] handle_softirqs+0x1b1/0x770 [ 112.156224] ? __pfx_run_ksoftirqd+0x10/0x10 [ 112.156241] ? smpboot_thread_fn+0x371/0x9d0 [ 112.156257] run_ksoftirqd+0x2e/0x60 [ 112.156273] smpboot_thread_fn+0x41d/0x9d0 [ 112.156290] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 112.156308] kthread+0x3c8/0x740 [ 112.156319] ? __pfx_kthread+0x10/0x10 [ 112.156330] ? ret_from_fork+0x23/0x430 [ 112.156346] ? lock_release+0xc8/0x290 [ 112.156358] ? __pfx_kthread+0x10/0x10 [ 112.156370] ret_from_fork+0x34b/0x430 [ 112.156390] ? __pfx_kthread+0x10/0x10 [ 112.156401] ret_from_fork_asm+0x1a/0x30 [ 112.156418] [ 112.156434] BUG: Bad page state in process ksoftirqd/0 pfn:165ec [ 112.169216] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x165ec [ 112.169855] flags: 0x100000000000000(node=0|zone=1) [ 112.170252] page_type: f9(unknown) [ 112.170554] raw: 0100000000000000 0000000000000000 ffffea0000597b08 0000000000000000 [ 112.171187] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.171804] page dumped because: nonzero mapcount [ 112.172183] Modules linked in: [ 112.172456] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.172475] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.172479] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.172485] Call Trace: [ 112.172488] [ 112.172492] dump_stack_lvl+0xfa/0x120 [ 112.172509] bad_page+0x8c/0x1c0 [ 112.172520] __free_frozen_pages+0xaf9/0xe10 [ 112.172535] ? rcu_core+0x7c3/0x1800 [ 112.172556] rcu_core+0x7c8/0x1800 [ 112.172574] ? __pfx_rcu_core+0x10/0x10 [ 112.172591] ? __pfx___schedule+0x10/0x10 [ 112.172609] ? lock_release+0x1c7/0x290 [ 112.172626] handle_softirqs+0x1b1/0x770 [ 112.172650] ? __pfx_run_ksoftirqd+0x10/0x10 [ 112.172672] ? smpboot_thread_fn+0x371/0x9d0 [ 112.172688] run_ksoftirqd+0x2e/0x60 [ 112.172704] smpboot_thread_fn+0x41d/0x9d0 [ 112.172721] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 112.172739] kthread+0x3c8/0x740 [ 112.172750] ? __pfx_kthread+0x10/0x10 [ 112.172761] ? ret_from_fork+0x23/0x430 [ 112.172778] ? lock_release+0xc8/0x290 [ 112.172790] ? __pfx_kthread+0x10/0x10 [ 112.172801] ret_from_fork+0x34b/0x430 [ 112.172818] ? __pfx_kthread+0x10/0x10 [ 112.172829] ret_from_fork_asm+0x1a/0x30 [ 112.172846] [ 112.172850] BUG: Bad page state in process ksoftirqd/0 pfn:165ed [ 112.182704] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x165ed [ 112.183325] flags: 0x100000000000000(node=0|zone=1) [ 112.183729] page_type: f9(unknown) [ 112.184019] raw: 0100000000000000 0000000000000000 ffffea0000597b48 0000000000000000 [ 112.184658] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.185261] page dumped because: nonzero mapcount [ 112.185651] Modules linked in: [ 112.185914] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.185933] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.185937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.185943] Call Trace: [ 112.185947] [ 112.185951] dump_stack_lvl+0xfa/0x120 [ 112.185968] bad_page+0x8c/0x1c0 [ 112.185978] __free_frozen_pages+0xaf9/0xe10 [ 112.185994] ? rcu_core+0x7c3/0x1800 [ 112.186006] rcu_core+0x7c8/0x1800 [ 112.186021] ? __pfx_rcu_core+0x10/0x10 [ 112.186033] ? __pfx___schedule+0x10/0x10 [ 112.186048] ? lock_release+0x1c7/0x290 [ 112.186062] handle_softirqs+0x1b1/0x770 [ 112.186080] ? __pfx_run_ksoftirqd+0x10/0x10 [ 112.186097] ? smpboot_thread_fn+0x371/0x9d0 [ 112.186113] run_ksoftirqd+0x2e/0x60 [ 112.186129] smpboot_thread_fn+0x41d/0x9d0 [ 112.186146] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 112.186163] kthread+0x3c8/0x740 [ 112.186175] ? __pfx_kthread+0x10/0x10 [ 112.186186] ? ret_from_fork+0x23/0x430 [ 112.186202] ? lock_release+0xc8/0x290 [ 112.186214] ? __pfx_kthread+0x10/0x10 [ 112.186226] ret_from_fork+0x34b/0x430 [ 112.186242] ? __pfx_kthread+0x10/0x10 [ 112.186253] ret_from_fork_asm+0x1a/0x30 [ 112.186271] [ 112.186275] BUG: Bad page state in process ksoftirqd/0 pfn:165ee [ 112.196117] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x165ee [ 112.196775] flags: 0x100000000000000(node=0|zone=1) [ 112.197170] page_type: f9(unknown) [ 112.197469] raw: 0100000000000000 0000000000000000 ffffea0000597b88 0000000000000000 [ 112.198077] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.198689] page dumped because: nonzero mapcount [ 112.199069] Modules linked in: [ 112.199335] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.199354] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.199358] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.199364] Call Trace: [ 112.199367] [ 112.199374] dump_stack_lvl+0xfa/0x120 [ 112.199392] bad_page+0x8c/0x1c0 [ 112.199402] __free_frozen_pages+0xaf9/0xe10 [ 112.199418] ? rcu_core+0x7c3/0x1800 [ 112.199430] rcu_core+0x7c8/0x1800 [ 112.199445] ? __pfx_rcu_core+0x10/0x10 [ 112.199457] ? __pfx___schedule+0x10/0x10 [ 112.199472] ? lock_release+0x1c7/0x290 [ 112.199486] handle_softirqs+0x1b1/0x770 [ 112.199503] ? __pfx_run_ksoftirqd+0x10/0x10 [ 112.199520] ? smpboot_thread_fn+0x371/0x9d0 [ 112.199536] run_ksoftirqd+0x2e/0x60 [ 112.199553] smpboot_thread_fn+0x41d/0x9d0 [ 112.199570] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 112.199587] kthread+0x3c8/0x740 [ 112.199598] ? __pfx_kthread+0x10/0x10 [ 112.199609] ? ret_from_fork+0x23/0x430 [ 112.199626] ? lock_release+0xc8/0x290 [ 112.199638] ? __pfx_kthread+0x10/0x10 [ 112.199650] ret_from_fork+0x34b/0x430 [ 112.199666] ? __pfx_kthread+0x10/0x10 [ 112.199677] ret_from_fork_asm+0x1a/0x30 [ 112.199695] [ 112.208992] BUG: Bad page state in process ksoftirqd/0 pfn:165ef [ 112.209487] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x165ef [ 112.210108] flags: 0x100000000000000(node=0|zone=1) [ 112.210514] page_type: f9(unknown) [ 112.210804] raw: 0100000000000000 0000000000000000 ffffea0000597bc8 0000000000000000 [ 112.211421] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.212021] page dumped because: nonzero mapcount [ 112.212409] Modules linked in: [ 112.212695] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.212714] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.212718] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.212724] Call Trace: [ 112.212727] [ 112.212731] dump_stack_lvl+0xfa/0x120 [ 112.212748] bad_page+0x8c/0x1c0 [ 112.212759] __free_frozen_pages+0xaf9/0xe10 [ 112.212774] ? rcu_core+0x7c3/0x1800 [ 112.212787] rcu_core+0x7c8/0x1800 [ 112.212801] ? __pfx_rcu_core+0x10/0x10 [ 112.212814] ? __pfx___schedule+0x10/0x10 [ 112.212828] ? lock_release+0x1c7/0x290 [ 112.212842] handle_softirqs+0x1b1/0x770 [ 112.212860] ? __pfx_run_ksoftirqd+0x10/0x10 [ 112.212877] ? smpboot_thread_fn+0x371/0x9d0 [ 112.212893] run_ksoftirqd+0x2e/0x60 [ 112.212909] smpboot_thread_fn+0x41d/0x9d0 [ 112.212926] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 112.212944] kthread+0x3c8/0x740 [ 112.212955] ? __pfx_kthread+0x10/0x10 [ 112.212966] ? ret_from_fork+0x23/0x430 [ 112.212983] ? lock_release+0xc8/0x290 [ 112.212995] ? __pfx_kthread+0x10/0x10 [ 112.213006] ret_from_fork+0x34b/0x430 [ 112.213023] ? __pfx_kthread+0x10/0x10 [ 112.213034] ret_from_fork_asm+0x1a/0x30 [ 112.213051] [ 112.224110] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#11] SMP KASAN NOPTI [ 112.225067] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.225791] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.226719] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.227129] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.227815] Workqueue: mld mld_dad_work [ 112.228159] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.228570] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.230082] RSP: 0018:ffff8880095e7700 EFLAGS: 00010212 [ 112.230529] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.231133] RDX: ffff8880095d8000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.231732] RBP: ffff8880095e7970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.232328] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.232951] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.233549] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.234225] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.234720] CR2: 00007f274355a545 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 112.235296] Call Trace: [ 112.235511] [ 112.235700] ? __dev_queue_xmit+0x9a2/0x3cc0 [ 112.236074] ? __pfx_perf_tp_event+0x10/0x10 [ 112.236453] ? __pfx_selinux_ip_postroute+0x10/0x10 [ 112.236898] ? __pfx___dev_queue_xmit+0x10/0x10 [ 112.237292] ? register_lock_class+0x41/0x560 [ 112.237669] ? __lock_acquire+0x694/0x1b70 [ 112.238024] ? __lock_acquire+0xc65/0x1b70 [ 112.238381] ? lock_acquire+0x15e/0x2f0 [ 112.238718] ? ipv6_chk_mcast_addr+0x38/0x990 [ 112.239105] ? lock_acquire+0x15e/0x2f0 [ 112.239447] ? lock_acquire+0x18c/0x2f0 [ 112.239780] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.240207] perf_trace_run_bpf_submit+0xef/0x180 [ 112.240649] perf_trace_contention_begin+0x235/0x3e0 [ 112.241082] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.241528] ? pick_task_fair+0xcd/0x270 [ 112.241859] ? lock_acquire+0x18c/0x2f0 [ 112.242181] trace_contention_begin+0xae/0x110 [ 112.242559] __mutex_lock+0x14b/0x1020 [ 112.242890] ? mld_dad_work+0x2a/0x1e0 [ 112.243205] ? mld_dad_work+0x2a/0x1e0 [ 112.243522] ? __pfx___mutex_lock+0x10/0x10 [ 112.243872] ? __pfx___schedule+0x10/0x10 [ 112.244208] ? srcu_invoke_callbacks+0x327/0x450 [ 112.244609] ? do_raw_spin_lock+0x123/0x260 [ 112.244963] ? lock_acquire+0x18c/0x2f0 [ 112.245287] mld_dad_work+0x2a/0x1e0 [ 112.245589] process_one_work+0x8e1/0x19c0 [ 112.245937] ? __pfx_process_one_work+0x10/0x10 [ 112.246312] ? move_linked_works+0x172/0x270 [ 112.246676] ? assign_work+0x196/0x240 [ 112.246994] worker_thread+0x67e/0xe90 [ 112.247309] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.247730] ? __pfx_worker_thread+0x10/0x10 [ 112.248088] kthread+0x3c8/0x740 [ 112.248364] ? __pfx_kthread+0x10/0x10 [ 112.248699] ? ret_from_fork+0x23/0x430 [ 112.249026] ? lock_release+0xc8/0x290 [ 112.249344] ? __pfx_kthread+0x10/0x10 [ 112.249658] ret_from_fork+0x34b/0x430 [ 112.249978] ? __pfx_kthread+0x10/0x10 [ 112.250290] ret_from_fork_asm+0x1a/0x30 [ 112.250621] [ 112.250813] Modules linked in: [ 112.251202] ---[ end trace 0000000000000000 ]--- [ 112.251670] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.252054] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.253614] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.254043] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.254692] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.255259] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.255889] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.256522] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.257112] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.257818] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.258282] CR2: 00007f274355a545 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 112.258918] note: kworker/0:0[9] exited with preempt_count 2 [ 112.259705] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#12] SMP KASAN NOPTI [ 112.260612] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.261301] CPU: 0 UID: 0 PID: 25 Comm: kworker/u9:0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.262218] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.262614] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.263263] Workqueue: events_unbound cfg80211_wiphy_work [ 112.263704] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.264087] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.265539] RSP: 0018:ffff88800976f700 EFLAGS: 00010212 [ 112.265963] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.266524] RDX: ffff888009751b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.267090] RBP: ffff88800976f970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.267652] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.268213] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.268794] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.269431] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.269891] CR2: 00007f274355a545 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 112.270456] Call Trace: [ 112.270663] [ 112.270852] ? __pfx_perf_tp_event+0x10/0x10 [ 112.271213] ? ret_from_fork_asm+0x1a/0x30 [ 112.271558] ? stack_trace_save+0x8e/0xc0 [ 112.271895] ? stack_depot_save_flags+0x2c/0xa20 [ 112.272278] ? kasan_save_stack+0x34/0x50 [ 112.272639] ? kasan_save_stack+0x24/0x50 [ 112.272974] ? kasan_save_track+0x14/0x30 [ 112.273310] ? __kasan_save_free_info+0x3a/0x60 [ 112.273686] ? __kasan_slab_free+0x3f/0x50 [ 112.274027] ? kmem_cache_free+0x2a1/0x540 [ 112.274366] ? kfree_skbmem+0x18a/0x1f0 [ 112.274689] ? sk_skb_reason_drop+0x10e/0x1b0 [ 112.275053] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.275455] perf_trace_run_bpf_submit+0xef/0x180 [ 112.275845] perf_trace_contention_begin+0x235/0x3e0 [ 112.276253] ? trace_pelt_cfs_tp+0xdf/0x130 [ 112.276621] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.277071] ? __pick_eevdf+0x326/0x570 [ 112.277390] ? update_curr+0x71/0x500 [ 112.277697] ? lock_acquire+0x18c/0x2f0 [ 112.278024] trace_contention_begin+0xae/0x110 [ 112.278395] __mutex_lock+0x14b/0x1020 [ 112.278718] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.279079] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.279443] ? lock_release+0x1c7/0x290 [ 112.279764] ? lock_release+0x1c7/0x290 [ 112.280086] ? __pfx___mutex_lock+0x10/0x10 [ 112.280449] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 112.280885] ? __pfx_try_to_wake_up+0x10/0x10 [ 112.281256] cfg80211_wiphy_work+0x7e/0x480 [ 112.281609] process_one_work+0x8e1/0x19c0 [ 112.281950] ? __pfx_process_one_work+0x10/0x10 [ 112.282326] ? move_linked_works+0x172/0x270 [ 112.282690] ? assign_work+0x196/0x240 [ 112.283005] worker_thread+0x67e/0xe90 [ 112.283320] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.283741] ? __pfx_worker_thread+0x10/0x10 [ 112.284100] kthread+0x3c8/0x740 [ 112.284379] ? __pfx_kthread+0x10/0x10 [ 112.284715] ? ret_from_fork+0x23/0x430 [ 112.285044] ? lock_release+0xc8/0x290 [ 112.285358] ? __pfx_kthread+0x10/0x10 [ 112.285677] ret_from_fork+0x34b/0x430 [ 112.285993] ? __pfx_kthread+0x10/0x10 [ 112.286311] ret_from_fork_asm+0x1a/0x30 [ 112.286642] [ 112.286835] Modules linked in: [ 112.287878] ---[ end trace 0000000000000000 ]--- [ 112.288261] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.289169] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.290651] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.291079] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.291660] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.292226] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.292827] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.293405] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.293973] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.294616] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.295082] CR2: 00007f274355a545 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 112.295664] note: kworker/u9:0[25] exited with preempt_count 2 [ 112.296257] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#13] SMP KASAN NOPTI [ 112.297164] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.297852] CPU: 0 UID: 0 PID: 372 Comm: kworker/u9:7 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.298771] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.299169] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.299817] Workqueue: events_unbound cfg80211_wiphy_work [ 112.300257] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.300658] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.302091] RSP: 0018:ffff8880415a7700 EFLAGS: 00010212 [ 112.302513] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.303080] RDX: ffff888041543700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.303648] RBP: ffff8880415a7970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.304216] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.304803] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.305370] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.306002] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.306467] CR2: 00007f274355a545 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 112.307031] Call Trace: [ 112.307239] [ 112.307426] ? __pfx_perf_tp_event+0x10/0x10 [ 112.307791] ? lock_acquire+0x18c/0x2f0 [ 112.308114] ? lock_release+0x1c7/0x290 [ 112.308436] ? unwind_next_frame+0x3bc/0x2540 [ 112.308825] ? ret_from_fork_asm+0x1a/0x30 [ 112.309170] ? ret_from_fork_asm+0x1a/0x30 [ 112.309518] ? kernel_text_address+0x11/0xc0 [ 112.309877] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.310308] ? arch_stack_walk+0x86/0xf0 [ 112.310638] ? ret_from_fork_asm+0x1a/0x30 [ 112.310978] ? stack_trace_save+0x8e/0xc0 [ 112.311314] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.311715] ? do_raw_spin_lock+0x123/0x260 [ 112.312061] perf_trace_run_bpf_submit+0xef/0x180 [ 112.312453] perf_trace_contention_begin+0x235/0x3e0 [ 112.312889] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.313332] ? __pick_eevdf+0x326/0x570 [ 112.313651] ? update_curr+0x71/0x500 [ 112.313959] ? lock_acquire+0x18c/0x2f0 [ 112.314283] trace_contention_begin+0xae/0x110 [ 112.314655] __mutex_lock+0x14b/0x1020 [ 112.314977] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.315338] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.315702] ? lock_release+0x1c7/0x290 [ 112.316024] ? lock_release+0x1c7/0x290 [ 112.316346] ? __pfx___mutex_lock+0x10/0x10 [ 112.316722] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 112.317137] ? __virt_addr_valid+0x100/0x5d0 [ 112.317496] ? __pfx_try_to_wake_up+0x10/0x10 [ 112.317867] ? __call_rcu_common.constprop.0+0x4c1/0x960 [ 112.318298] cfg80211_wiphy_work+0x7e/0x480 [ 112.318646] process_one_work+0x8e1/0x19c0 [ 112.318989] ? __pfx_process_one_work+0x10/0x10 [ 112.319365] ? move_linked_works+0x172/0x270 [ 112.319733] ? assign_work+0x196/0x240 [ 112.320051] worker_thread+0x67e/0xe90 [ 112.320365] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.320807] ? __pfx_worker_thread+0x10/0x10 [ 112.321164] kthread+0x3c8/0x740 [ 112.321440] ? __pfx_kthread+0x10/0x10 [ 112.321754] ? ret_from_fork+0x23/0x430 [ 112.322080] ? lock_release+0xc8/0x290 [ 112.322395] ? __pfx_kthread+0x10/0x10 [ 112.322714] ret_from_fork+0x34b/0x430 [ 112.323033] ? __pfx_kthread+0x10/0x10 [ 112.323348] ret_from_fork_asm+0x1a/0x30 [ 112.323683] [ 112.323876] Modules linked in: [ 112.324189] ---[ end trace 0000000000000000 ]--- [ 112.324600] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.324989] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.326522] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.326950] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.327619] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.328187] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.328787] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.329352] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.329934] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.330582] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.331049] CR2: 00007f274355a545 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 112.331629] note: kworker/u9:7[372] exited with preempt_count 2 [ 112.332294] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#14] SMP KASAN NOPTI [ 112.333227] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.333919] CPU: 0 UID: 0 PID: 363 Comm: kworker/u9:4 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.334847] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.335246] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.335897] Workqueue: events_unbound cfg80211_wiphy_work [ 112.336340] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.336754] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.338191] RSP: 0018:ffff88800f5ef700 EFLAGS: 00010212 [ 112.338622] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.339189] RDX: ffff8880413dd280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.339752] RBP: ffff88800f5ef970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.340315] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.340899] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.341464] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.342097] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.342563] CR2: 00007f274355a545 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 112.343148] Call Trace: [ 112.343364] [ 112.343558] ? __pfx_perf_tp_event+0x10/0x10 [ 112.343936] ? ret_from_fork_asm+0x1a/0x30 [ 112.344291] ? stack_trace_save+0x8e/0xc0 [ 112.344660] ? stack_depot_save_flags+0x2c/0xa20 [ 112.345057] ? kasan_save_stack+0x34/0x50 [ 112.345403] ? kasan_save_stack+0x24/0x50 [ 112.345745] ? kasan_save_track+0x14/0x30 [ 112.346089] ? __kasan_save_free_info+0x3a/0x60 [ 112.346474] ? __kasan_slab_free+0x3f/0x50 [ 112.346823] ? kmem_cache_free+0x2a1/0x540 [ 112.347171] ? kfree_skbmem+0x18a/0x1f0 [ 112.347503] ? sk_skb_reason_drop+0x10e/0x1b0 [ 112.347874] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.348289] perf_trace_run_bpf_submit+0xef/0x180 [ 112.348724] perf_trace_contention_begin+0x235/0x3e0 [ 112.349148] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.349606] ? __pick_eevdf+0x326/0x570 [ 112.349935] ? update_curr+0x71/0x500 [ 112.350252] ? lock_acquire+0x18c/0x2f0 [ 112.350584] trace_contention_begin+0xae/0x110 [ 112.350968] __mutex_lock+0x14b/0x1020 [ 112.351300] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.351674] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.352048] ? lock_release+0x1c7/0x290 [ 112.352379] ? lock_release+0x1c7/0x290 [ 112.352727] ? __pfx___mutex_lock+0x10/0x10 [ 112.353091] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 112.353513] ? __pfx_try_to_wake_up+0x10/0x10 [ 112.353894] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.354327] cfg80211_wiphy_work+0x7e/0x480 [ 112.354686] process_one_work+0x8e1/0x19c0 [ 112.355043] ? __pfx_process_one_work+0x10/0x10 [ 112.355431] ? move_linked_works+0x172/0x270 [ 112.355806] ? assign_work+0x196/0x240 [ 112.356128] worker_thread+0x67e/0xe90 [ 112.356458] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.356922] ? __pfx_worker_thread+0x10/0x10 [ 112.357292] kthread+0x3c8/0x740 [ 112.357581] ? __pfx_kthread+0x10/0x10 [ 112.357906] ? ret_from_fork+0x23/0x430 [ 112.358244] ? lock_release+0xc8/0x290 [ 112.358569] ? __pfx_kthread+0x10/0x10 [ 112.358892] ret_from_fork+0x34b/0x430 [ 112.359223] ? __pfx_kthread+0x10/0x10 [ 112.359549] ret_from_fork_asm+0x1a/0x30 [ 112.359896] [ 112.360091] Modules linked in: [ 112.360407] ---[ end trace 0000000000000000 ]--- [ 112.360828] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.361222] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.362776] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.363215] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.363867] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.364598] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.365197] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.365804] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.366400] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.367057] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.367546] CR2: 00007f274355a545 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 112.368152] note: kworker/u9:4[363] exited with preempt_count 2 [ 112.370285] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#15] SMP KASAN NOPTI [ 112.371223] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.371929] CPU: 0 UID: 0 PID: 3904 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.372926] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.373343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.374011] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.374403] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.375895] RSP: 0018:ffff888040e0f900 EFLAGS: 00010212 [ 112.376320] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.376908] RDX: ffff8880191b1b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.377471] RBP: ffff888040e0fb70 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.378060] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.378641] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.379223] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.379891] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.380363] CR2: 00007f274355a545 CR3: 000000000a1c9000 CR4: 0000000000350ef0 [ 112.380943] Call Trace: [ 112.381157] [ 112.381341] ? lock_release+0x1c7/0x290 [ 112.381666] ? __pfx_perf_tp_event+0x10/0x10 [ 112.382037] ? __is_insn_slot_addr+0x140/0x290 [ 112.382423] ? kernel_text_address+0x5b/0xc0 [ 112.382791] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.383233] ? __kernel_text_address+0xd/0x40 [ 112.383606] ? unwind_get_return_address+0x59/0xa0 [ 112.384016] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.384460] ? arch_stack_walk+0x9c/0xf0 [ 112.384821] ? stack_trace_save+0x8e/0xc0 [ 112.385169] ? stack_depot_save_flags+0x2c/0xa20 [ 112.385560] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.385979] perf_trace_run_bpf_submit+0xef/0x180 [ 112.386383] perf_trace_contention_begin+0x235/0x3e0 [ 112.386802] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.387259] ? avc_has_perm+0x12b/0x1d0 [ 112.387599] ? __pfx_avc_has_perm+0x10/0x10 [ 112.387964] ? lock_acquire+0x18c/0x2f0 [ 112.388296] trace_contention_begin+0xae/0x110 [ 112.388699] __mutex_lock+0x14b/0x1020 [ 112.389030] ? inotify_update_watch+0x3a/0xad0 [ 112.389410] ? inotify_update_watch+0x3a/0xad0 [ 112.389789] ? __pfx___mutex_lock+0x10/0x10 [ 112.390147] ? __pfx_selinux_path_notify+0x10/0x10 [ 112.390554] ? lock_acquire+0x18c/0x2f0 [ 112.390884] ? lock_release+0x1c7/0x290 [ 112.391216] ? match_exception_partial+0x238/0x2d0 [ 112.391628] inotify_update_watch+0x3a/0xad0 [ 112.391993] ? security_path_notify+0x27/0xa0 [ 112.392373] __x64_sys_inotify_add_watch+0x2c5/0x360 [ 112.392818] ? __pfx___x64_sys_inotify_add_watch+0x10/0x10 [ 112.393278] ? __secure_computing+0x18d/0x290 [ 112.393655] do_syscall_64+0xbf/0x360 [ 112.393972] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.394394] RIP: 0033:0x7f4fa89268f7 [ 112.394709] Code: f0 ff ff 73 01 c3 48 8b 0d 96 f5 0b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 fe 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 69 f5 0b 00 f7 d8 64 89 01 48 [ 112.396179] RSP: 002b:00007ffcdd987cd8 EFLAGS: 00000202 ORIG_RAX: 00000000000000fe [ 112.396828] RAX: ffffffffffffffda RBX: 000055b4eb9e4270 RCX: 00007f4fa89268f7 [ 112.397407] RDX: 0000000000000008 RSI: 000055b4ec27d1d0 RDI: 0000000000000009 [ 112.397986] RBP: 000055b4ec251cc0 R08: 000055b4bd688660 R09: 0000000000000000 [ 112.398563] R10: 00007f4fa84676c0 R11: 0000000000000202 R12: 0000000000000000 [ 112.399143] R13: 0000000000000000 R14: 00000000000007b9 R15: 00007ffcdd987da0 [ 112.399730] [ 112.399927] Modules linked in: [ 112.401114] ---[ end trace 0000000000000000 ]--- [ 112.402247] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.402664] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.404153] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.404628] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.405406] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.406164] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.406885] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.407550] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.408344] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.409039] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.409526] CR2: 00007f274355a545 CR3: 000000000a1c9000 CR4: 0000000000350ef0 [ 112.410235] note: systemd-udevd[3904] exited with preempt_count 2 [ 112.410919] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#16] SMP KASAN NOPTI [ 112.411845] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.412680] CPU: 0 UID: 0 PID: 452 Comm: kworker/u9:8 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.413661] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.414070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.414743] Workqueue: events_unbound cfg80211_wiphy_work [ 112.415192] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.415578] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.417073] RSP: 0018:ffff888017e27700 EFLAGS: 00010212 [ 112.417512] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.418095] RDX: ffff888040e2b700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.418673] RBP: ffff888017e27970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.419250] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.419830] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.420409] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.421089] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.421565] CR2: 00007f274355a545 CR3: 000000000a1c9000 CR4: 0000000000350ef0 [ 112.422150] Call Trace: [ 112.422365] [ 112.422562] ? mark_held_locks+0x49/0x80 [ 112.422899] ? __pfx_perf_tp_event+0x10/0x10 [ 112.423266] ? do_raw_spin_lock+0x123/0x260 [ 112.423623] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 112.424011] ? timerqueue_add+0x1c2/0x330 [ 112.424356] ? trace_pelt_se_tp+0xdf/0x130 [ 112.424727] ? __update_load_avg_se+0x428/0xa40 [ 112.425123] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.425536] perf_trace_run_bpf_submit+0xef/0x180 [ 112.425940] perf_trace_contention_begin+0x235/0x3e0 [ 112.426359] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.426814] ? find_held_lock+0x2b/0x80 [ 112.427148] ? lock_is_held_type+0x9e/0x120 [ 112.427505] ? lock_acquire+0x18c/0x2f0 [ 112.427837] trace_contention_begin+0xae/0x110 [ 112.428219] __mutex_lock+0x14b/0x1020 [ 112.428545] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.428942] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.429318] ? lock_release+0x1c7/0x290 [ 112.429653] ? __pfx___mutex_lock+0x10/0x10 [ 112.430011] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 112.430429] ? __pfx_try_to_wake_up+0x10/0x10 [ 112.430789] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.431194] cfg80211_wiphy_work+0x7e/0x480 [ 112.431534] process_one_work+0x8e1/0x19c0 [ 112.431873] ? __pfx_process_one_work+0x10/0x10 [ 112.432238] ? move_linked_works+0x172/0x270 [ 112.432608] ? assign_work+0x196/0x240 [ 112.432926] worker_thread+0x67e/0xe90 [ 112.433234] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.433643] ? __pfx_worker_thread+0x10/0x10 [ 112.433992] kthread+0x3c8/0x740 [ 112.434263] ? __pfx_kthread+0x10/0x10 [ 112.434569] ? ret_from_fork+0x23/0x430 [ 112.434889] ? lock_release+0xc8/0x290 [ 112.435196] ? __pfx_kthread+0x10/0x10 [ 112.435504] ret_from_fork+0x34b/0x430 [ 112.435817] ? __pfx_kthread+0x10/0x10 [ 112.436123] ret_from_fork_asm+0x1a/0x30 [ 112.436447] [ 112.436654] Modules linked in: [ 112.436994] ---[ end trace 0000000000000000 ]--- [ 112.437488] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.437926] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.439610] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.440027] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.440690] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.441244] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.441984] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.442554] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.443107] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.443743] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.444199] CR2: 00007f274355a545 CR3: 000000000a1c9000 CR4: 0000000000350ef0 [ 112.444792] note: kworker/u9:8[452] exited with preempt_count 2 [ 112.445314] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#17] SMP KASAN NOPTI [ 112.446183] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.446849] CPU: 0 UID: 0 PID: 34 Comm: kworker/u9:1 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.447738] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.448125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.448789] Workqueue: events_unbound cfg80211_wiphy_work [ 112.449219] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.449589] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.451127] RSP: 0018:ffff888009a97700 EFLAGS: 00010212 [ 112.451537] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.452083] RDX: ffff888009a7b700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.452657] RBP: ffff888009a97970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.453206] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.453754] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.454305] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.454927] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.455377] CR2: 00007f274355a545 CR3: 000000000a1c9000 CR4: 0000000000350ef0 [ 112.455927] Call Trace: [ 112.456131] [ 112.456312] ? __pfx_perf_tp_event+0x10/0x10 [ 112.456685] ? ret_from_fork_asm+0x1a/0x30 [ 112.457023] ? stack_trace_save+0x8e/0xc0 [ 112.457354] ? stack_depot_save_flags+0x2c/0xa20 [ 112.457727] ? kasan_save_stack+0x34/0x50 [ 112.458055] ? kasan_save_stack+0x24/0x50 [ 112.458382] ? kasan_save_track+0x14/0x30 [ 112.458710] ? __kasan_save_free_info+0x3a/0x60 [ 112.459076] ? __kasan_slab_free+0x3f/0x50 [ 112.459411] ? kmem_cache_free+0x2a1/0x540 [ 112.459740] ? kfree_skbmem+0x18a/0x1f0 [ 112.460055] ? sk_skb_reason_drop+0x10e/0x1b0 [ 112.460403] ? ieee80211_iface_work+0x43c/0x1220 [ 112.460810] ? cfg80211_wiphy_work+0x245/0x480 [ 112.461172] ? process_one_work+0x8e1/0x19c0 [ 112.461521] ? worker_thread+0x67e/0xe90 [ 112.461844] ? kthread+0x3c8/0x740 [ 112.462125] ? ret_from_fork+0x34b/0x430 [ 112.462451] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.462843] perf_trace_run_bpf_submit+0xef/0x180 [ 112.463224] perf_trace_contention_begin+0x235/0x3e0 [ 112.463622] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.464059] ? __pick_eevdf+0x326/0x570 [ 112.464368] ? update_curr+0x71/0x500 [ 112.464688] ? lock_acquire+0x18c/0x2f0 [ 112.465003] trace_contention_begin+0xae/0x110 [ 112.465363] __mutex_lock+0x14b/0x1020 [ 112.465672] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.466044] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.466404] ? lock_release+0x1c7/0x290 [ 112.466728] ? lock_release+0x1c7/0x290 [ 112.467048] ? __pfx___mutex_lock+0x10/0x10 [ 112.467403] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 112.467816] ? __pfx_try_to_wake_up+0x10/0x10 [ 112.468186] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.468625] cfg80211_wiphy_work+0x7e/0x480 [ 112.468976] process_one_work+0x8e1/0x19c0 [ 112.469318] ? __pfx_process_one_work+0x10/0x10 [ 112.469694] ? move_linked_works+0x172/0x270 [ 112.470054] ? assign_work+0x196/0x240 [ 112.470369] worker_thread+0x67e/0xe90 [ 112.470687] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.471106] ? __pfx_worker_thread+0x10/0x10 [ 112.471460] kthread+0x3c8/0x740 [ 112.471737] ? __pfx_kthread+0x10/0x10 [ 112.472048] ? ret_from_fork+0x23/0x430 [ 112.472375] ? lock_release+0xc8/0x290 [ 112.472715] ? __pfx_kthread+0x10/0x10 [ 112.473032] ret_from_fork+0x34b/0x430 [ 112.473350] ? __pfx_kthread+0x10/0x10 [ 112.473663] ret_from_fork_asm+0x1a/0x30 [ 112.473995] [ 112.474185] Modules linked in: [ 112.474521] ---[ end trace 0000000000000000 ]--- [ 112.474961] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.475539] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.477102] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.477597] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.478163] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.478803] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.479368] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.480022] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.480661] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.481302] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.481832] CR2: 00007f274355a545 CR3: 000000000a1c9000 CR4: 0000000000350ef0 [ 112.483241] note: kworker/u9:1[34] exited with preempt_count 2 [ 112.484254] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#18] SMP KASAN NOPTI [ 112.485169] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.485855] CPU: 0 UID: 0 PID: 349 Comm: kworker/u9:3 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.486780] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.487177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.487835] Workqueue: events_unbound cfg80211_wiphy_work [ 112.488274] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.488677] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.490114] RSP: 0018:ffff8880412c7700 EFLAGS: 00010212 [ 112.490579] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.491241] RDX: ffff88804113d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.491804] RBP: ffff8880412c7970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.492366] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.492958] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.493522] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.494156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.494617] CR2: 00007f274355a545 CR3: 000000000a1c9000 CR4: 0000000000350ef0 [ 112.495183] Call Trace: [ 112.495391] [ 112.495578] ? mark_held_locks+0x49/0x80 [ 112.495908] ? __pfx_perf_tp_event+0x10/0x10 [ 112.496266] ? put_task_struct_rcu_user+0x75/0xc0 [ 112.496679] ? release_task+0xcd4/0x1870 [ 112.497010] ? __pfx_release_task+0x10/0x10 [ 112.497358] ? lock_acquire+0x15e/0x2f0 [ 112.497679] ? kvm_sched_clock_read+0x16/0x30 [ 112.498049] ? sched_clock+0x37/0x60 [ 112.498355] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.498759] perf_trace_run_bpf_submit+0xef/0x180 [ 112.499153] perf_trace_contention_begin+0x235/0x3e0 [ 112.499561] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.500006] ? __pick_eevdf+0x326/0x570 [ 112.500327] ? update_curr+0x71/0x500 [ 112.500657] ? lock_acquire+0x18c/0x2f0 [ 112.500983] trace_contention_begin+0xae/0x110 [ 112.501354] __mutex_lock+0x14b/0x1020 [ 112.501675] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.502039] ? cfg80211_wiphy_work+0x7e/0x480 [ 112.502401] ? lock_release+0x1c7/0x290 [ 112.502723] ? lock_release+0x1c7/0x290 [ 112.503046] ? __pfx___mutex_lock+0x10/0x10 [ 112.503395] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 112.503807] ? __pfx_try_to_wake_up+0x10/0x10 [ 112.504174] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.504611] cfg80211_wiphy_work+0x7e/0x480 [ 112.504959] process_one_work+0x8e1/0x19c0 [ 112.505303] ? __pfx_process_one_work+0x10/0x10 [ 112.505679] ? move_linked_works+0x172/0x270 [ 112.506044] ? assign_work+0x196/0x240 [ 112.506359] worker_thread+0x67e/0xe90 [ 112.506676] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.507097] ? __pfx_worker_thread+0x10/0x10 [ 112.507453] kthread+0x3c8/0x740 [ 112.507731] ? __pfx_kthread+0x10/0x10 [ 112.508045] ? ret_from_fork+0x23/0x430 [ 112.508370] ? lock_release+0xc8/0x290 [ 112.508709] ? __pfx_kthread+0x10/0x10 [ 112.509026] ret_from_fork+0x34b/0x430 [ 112.509345] ? __pfx_kthread+0x10/0x10 [ 112.509659] ret_from_fork_asm+0x1a/0x30 [ 112.509993] [ 112.510182] Modules linked in: [ 112.510517] ---[ end trace 0000000000000000 ]--- [ 112.510890] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.511269] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.512975] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.513417] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.513980] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.514556] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.515121] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.515696] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.516264] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.516937] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.517412] CR2: 00007f274355a545 CR3: 000000000a1c9000 CR4: 0000000000350ef0 [ 112.517978] note: kworker/u9:3[349] exited with preempt_count 2 [ 112.521801] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#19] SMP KASAN NOPTI [ 112.522711] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.523397] CPU: 0 UID: 0 PID: 3788 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.524336] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.524760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.525414] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.525796] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.527223] RSP: 0018:ffff88804218f6c0 EFLAGS: 00010212 [ 112.527645] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.528209] RDX: ffff888040dcb700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.528795] RBP: ffff88804218f930 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.529363] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.529925] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.530489] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.531259] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.531722] CR2: 00007f274355a545 CR3: 000000003f367000 CR4: 0000000000350ef0 [ 112.532289] Call Trace: [ 112.532499] [ 112.532706] ? __pfx_perf_tp_event+0x10/0x10 [ 112.533069] ? __create_object+0x59/0x80 [ 112.533402] ? __alloc_skb+0x161/0x370 [ 112.533720] ? __asan_memset+0x24/0x50 [ 112.534036] ? lock_acquire+0x18c/0x2f0 [ 112.534357] ? __build_skb_around+0x27f/0x3c0 [ 112.534720] ? lock_release+0x1c7/0x290 [ 112.535042] ? avc_has_perm_noaudit+0x150/0x3d0 [ 112.535423] ? lock_acquire+0x18c/0x2f0 [ 112.535747] ? lock_release+0x1c7/0x290 [ 112.536069] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.536470] perf_trace_run_bpf_submit+0xef/0x180 [ 112.536892] perf_trace_contention_begin+0x235/0x3e0 [ 112.537300] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.537748] ? __wake_up_common+0x138/0x1f0 [ 112.538103] ? lock_release+0x1c7/0x290 [ 112.538424] ? lock_acquire+0x18c/0x2f0 [ 112.538745] trace_contention_begin+0xae/0x110 [ 112.539115] __mutex_lock+0x14b/0x1020 [ 112.539433] ? ep_send_events+0xff/0xaa0 [ 112.539763] ? ep_send_events+0xff/0xaa0 [ 112.540092] ? __pfx___mutex_lock+0x10/0x10 [ 112.540443] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 112.540857] ? inode_has_perm+0x170/0x1c0 [ 112.541192] ep_send_events+0xff/0xaa0 [ 112.541512] ? sock_write_iter+0x334/0x5c0 [ 112.541856] ? __pfx_ep_send_events+0x10/0x10 [ 112.542223] do_epoll_wait+0x42e/0xee0 [ 112.542548] ? __pfx_sock_write_iter+0x10/0x10 [ 112.542922] ? __pfx_do_epoll_wait+0x10/0x10 [ 112.543285] ? populate_seccomp_data+0x213/0x540 [ 112.543677] ? __seccomp_filter+0x535/0xfa0 [ 112.544040] ? __pfx___seccomp_filter+0x10/0x10 [ 112.544417] __x64_sys_epoll_wait+0x15b/0x280 [ 112.544802] ? __pfx___x64_sys_epoll_wait+0x10/0x10 [ 112.545203] ? ksys_write+0x1a3/0x240 [ 112.545514] ? __secure_computing+0x18d/0x290 [ 112.545883] do_syscall_64+0xbf/0x360 [ 112.546188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.546602] RIP: 0033:0x7f4fa89260d6 [ 112.546912] Code: 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 18 48 89 74 24 [ 112.548349] RSP: 002b:00007ffcdd987df8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8 [ 112.548971] RAX: ffffffffffffffda RBX: 000055b4ec27b8f0 RCX: 00007f4fa89260d6 [ 112.549537] RDX: 0000000000000002 RSI: 000055b4ec285f60 RDI: 0000000000000003 [ 112.550097] RBP: ffffffffffffffff R08: 0000000000000002 R09: 0000000000000000 [ 112.550660] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 112.551224] R13: 0000000000000002 R14: 000055b4bd6792e6 R15: 0000000000000000 [ 112.551791] [ 112.551980] Modules linked in: [ 112.552414] ---[ end trace 0000000000000000 ]--- [ 112.553103] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.553728] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.555365] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.555908] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.556569] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.557311] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.558074] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.558858] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.559597] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.560401] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.561083] CR2: 00007f274355a545 CR3: 000000003f367000 CR4: 0000000000350ef0 [ 112.561808] note: systemd-udevd[3788] exited with preempt_count 2 [ 112.562576] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#20] SMP KASAN NOPTI [ 112.563610] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.564296] CPU: 0 UID: 0 PID: 3 Comm: pool_workqueue_ Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.565245] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.565641] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.566290] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.566672] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.568104] RSP: 0018:ffff888009567880 EFLAGS: 00010212 [ 112.568524] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.569111] RDX: ffff8880094fb700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.569674] RBP: ffff888009567af0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.570236] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.570806] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.571367] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.572010] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.572497] CR2: 00007f274355a545 CR3: 000000003f367000 CR4: 0000000000350ef0 [ 112.573110] Call Trace: [ 112.573333] [ 112.573532] ? __pfx_perf_tp_event+0x10/0x10 [ 112.573909] ? find_held_lock+0x2b/0x80 [ 112.574257] ? unwind_next_frame+0x3b2/0x2540 [ 112.574644] ? lock_release+0xc8/0x290 [ 112.574977] ? __lock_acquire+0x694/0x1b70 [ 112.575335] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.575797] ? lock_acquire+0x15e/0x2f0 [ 112.576138] ? find_held_lock+0x2b/0x80 [ 112.576479] ? stack_depot_save_flags+0x42c/0xa20 [ 112.576911] ? lock_release+0xc8/0x290 [ 112.577247] ? lock_is_held_type+0x9e/0x120 [ 112.577618] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.578048] perf_trace_run_bpf_submit+0xef/0x180 [ 112.578458] perf_trace_contention_begin+0x235/0x3e0 [ 112.578885] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.579358] ? lock_is_held_type+0x9e/0x120 [ 112.579733] ? lock_acquire+0x18c/0x2f0 [ 112.580078] ? lock_acquire+0x18c/0x2f0 [ 112.580420] trace_contention_begin+0xae/0x110 [ 112.580827] __mutex_lock+0x14b/0x1020 [ 112.581162] ? pwq_release_workfn+0xb0/0x970 [ 112.581544] ? pwq_release_workfn+0xb0/0x970 [ 112.581920] ? __schedule+0xe91/0x3590 [ 112.582262] ? __pfx___mutex_lock+0x10/0x10 [ 112.582630] ? __pfx___schedule+0x10/0x10 [ 112.582986] ? lock_acquire+0x15e/0x2f0 [ 112.583327] pwq_release_workfn+0xb0/0x970 [ 112.583687] ? lock_release+0x1c7/0x290 [ 112.584029] kthread_worker_fn+0x2b5/0xad0 [ 112.584394] ? __pfx_pwq_release_workfn+0x10/0x10 [ 112.584823] ? __pfx_kthread_worker_fn+0x10/0x10 [ 112.585226] kthread+0x3c8/0x740 [ 112.585520] ? __pfx_kthread+0x10/0x10 [ 112.585855] ? ret_from_fork+0x23/0x430 [ 112.586200] ? lock_release+0xc8/0x290 [ 112.586538] ? __pfx_kthread+0x10/0x10 [ 112.586873] ret_from_fork+0x34b/0x430 [ 112.587215] ? __pfx_kthread+0x10/0x10 [ 112.587545] ret_from_fork_asm+0x1a/0x30 [ 112.587897] [ 112.588100] Modules linked in: [ 112.589244] ---[ end trace 0000000000000000 ]--- [ 112.590194] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.590695] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.592537] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.593202] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.593865] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.594550] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.595288] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.596040] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.596744] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.597436] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.598041] CR2: 00007f274355a545 CR3: 000000003f367000 CR4: 0000000000350ef0 [ 112.598742] note: pool_workqueue_[3] exited with preempt_count 2 [ 112.599894] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#21] SMP KASAN NOPTI [ 112.600861] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.601589] CPU: 0 UID: 0 PID: 3805 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.602584] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.603002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.603694] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.604095] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.605641] RSP: 0018:ffff8880409c7900 EFLAGS: 00010212 [ 112.606094] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.606691] RDX: ffff8880172f1b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.607289] RBP: ffff8880409c7b70 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.607885] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.608483] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.609100] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.609924] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.610419] CR2: 00007f274355a545 CR3: 0000000041eca000 CR4: 0000000000350ef0 [ 112.611020] Call Trace: [ 112.611238] [ 112.611430] ? lock_release+0x1c7/0x290 [ 112.611776] ? __pfx_perf_tp_event+0x10/0x10 [ 112.612157] ? __is_insn_slot_addr+0x140/0x290 [ 112.612544] ? kernel_text_address+0x5b/0xc0 [ 112.612940] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.613383] ? __kernel_text_address+0xd/0x40 [ 112.613754] ? unwind_get_return_address+0x59/0xa0 [ 112.614150] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.614585] ? arch_stack_walk+0x9c/0xf0 [ 112.614917] ? stack_trace_save+0x8e/0xc0 [ 112.615252] ? stack_depot_save_flags+0x2c/0xa20 [ 112.615635] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.616044] perf_trace_run_bpf_submit+0xef/0x180 [ 112.616436] perf_trace_contention_begin+0x235/0x3e0 [ 112.616872] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.617318] ? avc_has_perm+0x12b/0x1d0 [ 112.617646] ? __pfx_avc_has_perm+0x10/0x10 [ 112.617998] ? lock_acquire+0x18c/0x2f0 [ 112.618316] trace_contention_begin+0xae/0x110 [ 112.618683] __mutex_lock+0x14b/0x1020 [ 112.619004] ? inotify_update_watch+0x3a/0xad0 [ 112.619373] ? inotify_update_watch+0x3a/0xad0 [ 112.619743] ? __pfx___mutex_lock+0x10/0x10 [ 112.620103] ? __pfx_selinux_path_notify+0x10/0x10 [ 112.620500] ? lock_acquire+0x18c/0x2f0 [ 112.620849] ? lock_release+0x1c7/0x290 [ 112.621171] ? match_exception_partial+0x238/0x2d0 [ 112.621571] inotify_update_watch+0x3a/0xad0 [ 112.621929] ? security_path_notify+0x27/0xa0 [ 112.622297] __x64_sys_inotify_add_watch+0x2c5/0x360 [ 112.622704] ? __pfx___x64_sys_inotify_add_watch+0x10/0x10 [ 112.623149] ? __secure_computing+0x18d/0x290 [ 112.623517] do_syscall_64+0xbf/0x360 [ 112.623826] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.624236] RIP: 0033:0x7f4fa89268f7 [ 112.624534] Code: f0 ff ff 73 01 c3 48 8b 0d 96 f5 0b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 fe 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 69 f5 0b 00 f7 d8 64 89 01 48 [ 112.625981] RSP: 002b:00007ffcdd987cd8 EFLAGS: 00000202 ORIG_RAX: 00000000000000fe [ 112.626582] RAX: ffffffffffffffda RBX: 000055b4eb9e4270 RCX: 00007f4fa89268f7 [ 112.627154] RDX: 0000000000000008 RSI: 000055b4ec27c0f0 RDI: 0000000000000009 [ 112.627722] RBP: 000055b4ec28a070 R08: 000055b4bd688660 R09: 0000000000000000 [ 112.628291] R10: 00007f4fa84676c0 R11: 0000000000000202 R12: 0000000000000000 [ 112.628879] R13: 0000000000000000 R14: 00000000000007e2 R15: 00007ffcdd987da0 [ 112.629447] [ 112.629639] Modules linked in: [ 112.630123] ---[ end trace 0000000000000000 ]--- [ 112.630690] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.631209] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.632777] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.633208] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.633916] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.634548] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.635115] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.635727] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.636301] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.636979] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.637458] CR2: 00007f274355a545 CR3: 0000000041eca000 CR4: 0000000000350ef0 [ 112.638030] note: systemd-udevd[3805] exited with preempt_count 2 [ 112.641100] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#22] SMP KASAN NOPTI [ 112.642000] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.642686] CPU: 0 UID: 0 PID: 3994 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.643625] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.644025] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.644709] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.645092] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.646532] RSP: 0018:ffff888043af76c0 EFLAGS: 00010212 [ 112.646961] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.647528] RDX: ffff888016885280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.648099] RBP: ffff888043af7930 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.648687] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.649249] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.649812] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.650450] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.650918] CR2: 000055b4bd67b0a0 CR3: 0000000039c17000 CR4: 0000000000350ef0 [ 112.651481] Call Trace: [ 112.651691] [ 112.651874] ? set_normalized_timespec64+0x69/0xc0 [ 112.652273] ? __pfx_perf_tp_event+0x10/0x10 [ 112.652652] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 112.653029] ? lock_acquire+0x18c/0x2f0 [ 112.653349] ? lock_release+0x1c7/0x290 [ 112.653668] ? lock_release+0x1c7/0x290 [ 112.653990] ? avc_has_perm_noaudit+0x150/0x3d0 [ 112.654373] ? lock_acquire+0x18c/0x2f0 [ 112.654699] ? avc_has_perm+0x12b/0x1d0 [ 112.655031] ? lock_acquire+0x18c/0x2f0 [ 112.655350] ? lock_release+0x1c7/0x290 [ 112.655674] ? lock_acquire+0x18c/0x2f0 [ 112.655993] ? lock_acquire+0x18c/0x2f0 [ 112.656312] ? lock_release+0x1c7/0x290 [ 112.656655] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.657064] ? kernel_text_address+0x5b/0xc0 [ 112.657422] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.657853] ? __kernel_text_address+0xd/0x40 [ 112.658215] perf_trace_run_bpf_submit+0xef/0x180 [ 112.658608] perf_trace_contention_begin+0x235/0x3e0 [ 112.659019] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.659469] ? do_raw_spin_lock+0x123/0x260 [ 112.659822] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 112.660202] ? xas_find+0x2de/0x890 [ 112.660499] ? lock_acquire+0x18c/0x2f0 [ 112.660845] trace_contention_begin+0xae/0x110 [ 112.661215] __mutex_lock+0x14b/0x1020 [ 112.661537] ? __set_oom_adj.isra.0+0x68/0xf40 [ 112.661907] ? __set_oom_adj.isra.0+0x68/0xf40 [ 112.662278] ? lock_release+0x1c7/0x290 [ 112.662599] ? lock_release+0x1c7/0x290 [ 112.662925] ? __pfx___mutex_lock+0x10/0x10 [ 112.663278] ? lock_acquire+0x18c/0x2f0 [ 112.663604] ? lock_release+0x1c7/0x290 [ 112.663925] __set_oom_adj.isra.0+0x68/0xf40 [ 112.664288] oom_score_adj_write+0x1ba/0x200 [ 112.664669] ? __pfx_oom_score_adj_write+0x10/0x10 [ 112.665066] ? lock_acquire+0x18c/0x2f0 [ 112.665387] ? security_file_permission+0x22/0x90 [ 112.665784] vfs_write+0x2b7/0x1150 [ 112.666083] ? __pfx_oom_score_adj_write+0x10/0x10 [ 112.666482] ? __pfx_vfs_write+0x10/0x10 [ 112.666809] ? __seccomp_filter+0x535/0xfa0 [ 112.667159] ? __pfx___seccomp_filter+0x10/0x10 [ 112.667535] ksys_write+0x121/0x240 [ 112.667832] ? __pfx_ksys_write+0x10/0x10 [ 112.668164] ? __secure_computing+0x18d/0x290 [ 112.668532] do_syscall_64+0xbf/0x360 [ 112.668863] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.669284] RIP: 0033:0x7f4fa8916f33 [ 112.669585] Code: 8b 15 61 ef 0c 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 55 c3 0f 1f 40 00 48 83 ec 28 48 89 54 24 18 [ 112.671030] RSP: 002b:00007ffcdd987d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.671627] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4fa8916f33 [ 112.672192] RDX: 0000000000000002 RSI: 00007ffcdd987e80 RDI: 0000000000000010 [ 112.672780] RBP: 00007ffcdd987e80 R08: 0000000000000000 R09: 0000000000000001 [ 112.673340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.673907] R13: 000055b4ec2227c0 R14: 0000000000000002 R15: 00007f4fa89e78a0 [ 112.674474] [ 112.674664] Modules linked in: [ 112.675038] ---[ end trace 0000000000000000 ]--- [ 112.675493] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.675968] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.677701] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.678129] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.678785] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.679352] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.679992] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.680641] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.681217] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.681876] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.682343] CR2: 000055b4bd67b0a0 CR3: 0000000039c17000 CR4: 0000000000350ef0 [ 112.682926] note: systemd-udevd[3994] exited with preempt_count 2 [ 112.683644] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#23] SMP KASAN NOPTI [ 112.684543] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.685250] CPU: 0 UID: 0 PID: 3991 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.686193] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.686589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.687239] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.687618] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.689079] RSP: 0018:ffff8880439a7900 EFLAGS: 00010212 [ 112.689502] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.690069] RDX: ffff888041a93700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.690638] RBP: ffff8880439a7b70 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.691203] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.691772] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.692338] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.693001] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.693464] CR2: 000055b4bd67b0a0 CR3: 000000000d97c000 CR4: 0000000000350ef0 [ 112.694035] Call Trace: [ 112.694242] [ 112.694427] ? lock_release+0x1c7/0x290 [ 112.694754] ? __pfx_perf_tp_event+0x10/0x10 [ 112.695113] ? __is_insn_slot_addr+0x140/0x290 [ 112.695489] ? kernel_text_address+0x5b/0xc0 [ 112.695853] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.696282] ? __kernel_text_address+0xd/0x40 [ 112.696667] ? unwind_get_return_address+0x59/0xa0 [ 112.697067] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.697500] ? arch_stack_walk+0x9c/0xf0 [ 112.697832] ? stack_trace_save+0x8e/0xc0 [ 112.698171] ? stack_depot_save_flags+0x2c/0xa20 [ 112.698555] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.698960] perf_trace_run_bpf_submit+0xef/0x180 [ 112.699357] perf_trace_contention_begin+0x235/0x3e0 [ 112.699766] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.700217] ? avc_has_perm+0x12b/0x1d0 [ 112.700542] ? __pfx_avc_has_perm+0x10/0x10 [ 112.700918] ? lock_acquire+0x18c/0x2f0 [ 112.701239] trace_contention_begin+0xae/0x110 [ 112.701612] __mutex_lock+0x14b/0x1020 [ 112.701937] ? inotify_update_watch+0x3a/0xad0 [ 112.702305] ? inotify_update_watch+0x3a/0xad0 [ 112.702673] ? __pfx___mutex_lock+0x10/0x10 [ 112.703025] ? __pfx_selinux_path_notify+0x10/0x10 [ 112.703421] ? lock_acquire+0x18c/0x2f0 [ 112.703741] ? lock_release+0x1c7/0x290 [ 112.704072] ? match_exception_partial+0x238/0x2d0 [ 112.704484] inotify_update_watch+0x3a/0xad0 [ 112.704866] ? security_path_notify+0x27/0xa0 [ 112.705234] __x64_sys_inotify_add_watch+0x2c5/0x360 [ 112.705647] ? __pfx___x64_sys_inotify_add_watch+0x10/0x10 [ 112.706095] ? __secure_computing+0x18d/0x290 [ 112.706463] do_syscall_64+0xbf/0x360 [ 112.706775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.707185] RIP: 0033:0x7f4fa89268f7 [ 112.707483] Code: f0 ff ff 73 01 c3 48 8b 0d 96 f5 0b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 fe 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 69 f5 0b 00 f7 d8 64 89 01 48 [ 112.708943] RSP: 002b:00007ffcdd987cd8 EFLAGS: 00000202 ORIG_RAX: 00000000000000fe [ 112.709544] RAX: ffffffffffffffda RBX: 000055b4eb9e4270 RCX: 00007f4fa89268f7 [ 112.710113] RDX: 0000000000000008 RSI: 000055b4ec277040 RDI: 0000000000000009 [ 112.710675] RBP: 000055b4ec247170 R08: 000055b4bd688660 R09: 0000000000000000 [ 112.711238] R10: 00007f4fa84676c0 R11: 0000000000000202 R12: 0000000000000000 [ 112.711804] R13: 0000000000000000 R14: 00000000000007e3 R15: 00007ffcdd987da0 [ 112.712379] [ 112.712589] Modules linked in: [ 112.730784] ---[ end trace 0000000000000000 ]--- [ 112.731181] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.732187] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.736468] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.736927] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.738429] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.739017] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.739705] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.740295] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.740926] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.741596] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.742073] CR2: 000055b4bd67b0a0 CR3: 000000000d97c000 CR4: 0000000000350ef0 [ 112.742669] note: systemd-udevd[3991] exited with preempt_count 2 [ 112.743207] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#24] SMP KASAN NOPTI [ 112.744127] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.744852] CPU: 0 UID: 0 PID: 3797 Comm: systemd-rfkill Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.745819] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.746228] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.746896] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.747287] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.748790] RSP: 0018:ffff888040977380 EFLAGS: 00010212 [ 112.749221] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.749805] RDX: ffff8880167d1b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.750382] RBP: ffff8880409775f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.750959] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.751541] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.752122] FS: 00007fe8931ea900(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.752803] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.753295] CR2: 000055b4bd67b0a0 CR3: 000000000ce84000 CR4: 0000000000350ef0 [ 112.753875] Call Trace: [ 112.754087] [ 112.754274] ? __lock_acquire+0x694/0x1b70 [ 112.754629] ? __pfx_perf_tp_event+0x10/0x10 [ 112.755000] ? css_rstat_updated+0x1b8/0x4d0 [ 112.755371] ? __pfx_css_rstat_updated+0x10/0x10 [ 112.755770] ? lock_is_held_type+0x9e/0x120 [ 112.756134] ? trace_pelt_se_tp+0xdf/0x130 [ 112.756480] ? __update_load_avg_cfs_rq+0x636/0x950 [ 112.756929] ? lock_acquire+0x18c/0x2f0 [ 112.757263] ? __update_load_avg_se+0x428/0xa40 [ 112.757654] ? lock_release+0x1c7/0x290 [ 112.757985] ? __perf_event_task_sched_in+0x235/0x5e0 [ 112.758419] ? __pfx___perf_event_task_sched_in+0x10/0x10 [ 112.758870] ? lock_is_held_type+0x9e/0x120 [ 112.759230] ? lock_acquire+0x18c/0x2f0 [ 112.759562] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.759977] ? finish_task_switch.isra.0+0x294/0x840 [ 112.760408] perf_trace_run_bpf_submit+0xef/0x180 [ 112.760830] perf_trace_contention_begin+0x235/0x3e0 [ 112.761251] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.761709] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 112.762098] ? lock_acquire+0x18c/0x2f0 [ 112.762430] trace_contention_begin+0xae/0x110 [ 112.762814] __mutex_lock+0x14b/0x1020 [ 112.763144] ? rfkill_fop_poll+0x9a/0x110 [ 112.763494] ? rfkill_fop_poll+0x9a/0x110 [ 112.763840] ? hrtimer_cancel+0x56/0x70 [ 112.764178] ? __pfx___mutex_lock+0x10/0x10 [ 112.764542] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 112.764942] ? __pollwait+0x27b/0x4a0 [ 112.765275] rfkill_fop_poll+0x9a/0x110 [ 112.765612] ? __pfx_rfkill_fop_poll+0x10/0x10 [ 112.765997] do_sys_poll+0x548/0xd90 [ 112.766307] ? __pfx_do_sys_poll+0x10/0x10 [ 112.766657] ? __lock_acquire+0xc65/0x1b70 [ 112.767009] ? kernel_text_address+0x50/0xc0 [ 112.767381] ? unwind_get_return_address+0x59/0xa0 [ 112.767793] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 112.768240] ? __mutex_trylock_common+0xf9/0x260 [ 112.768656] ? __pfx___mutex_trylock_common+0x10/0x10 [ 112.769089] ? find_held_lock+0x2b/0x80 [ 112.769427] ? rfkill_fop_read+0x3cb/0x510 [ 112.769782] ? lock_release+0xc8/0x290 [ 112.770109] ? __pfx_pollwake+0x10/0x10 [ 112.770446] ? __x64_sys_access+0x5b/0x80 [ 112.770794] ? do_syscall_64+0xbf/0x360 [ 112.771123] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.771564] ? __lock_acquire+0x694/0x1b70 [ 112.771919] ? __lock_acquire+0xc65/0x1b70 [ 112.772272] ? __lock_acquire+0xc65/0x1b70 [ 112.772644] ? find_held_lock+0x2b/0x80 [ 112.772981] ? lock_acquire+0x15e/0x2f0 [ 112.773309] ? find_held_lock+0x2b/0x80 [ 112.773646] ? timespec64_add_safe+0x18c/0x210 [ 112.774034] ? __pfx_timespec64_add_safe+0x10/0x10 [ 112.774448] ? lock_release+0xc8/0x290 [ 112.774776] ? set_user_sigmask+0x213/0x2a0 [ 112.775141] ? __pfx_set_user_sigmask+0x10/0x10 [ 112.775536] __x64_sys_ppoll+0x229/0x2a0 [ 112.775873] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 112.776246] ? ksys_read+0x1a3/0x240 [ 112.776567] ? __pfx_ksys_read+0x10/0x10 [ 112.776922] do_syscall_64+0xbf/0x360 [ 112.777240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.777664] RIP: 0033:0x7fe893ad449b [ 112.777973] Code: f3 0f 6f 02 4c 8d 64 24 20 0f 11 44 24 20 64 8b 04 25 18 00 00 00 85 c0 75 35 41 b8 08 00 00 00 4c 89 e2 b8 0f 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 6d 48 8b 4c 24 38 64 48 2b 0c 25 28 00 00 00 [ 112.779450] RSP: 002b:00007fffad8d59a0 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 112.780065] RAX: ffffffffffffffda RBX: 00007fffad8d5a50 RCX: 00007fe893ad449b [ 112.780675] RDX: 00007fffad8d59c0 RSI: 0000000000000001 RDI: 00007fffad8d59f8 [ 112.781254] RBP: 0000561eec9ddc20 R08: 0000000000000008 R09: 0035326c6c696b66 [ 112.781834] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffad8d59c0 [ 112.782417] R13: 0000000000000001 R14: 000000000000000b R15: 0000561eec9dc072 [ 112.782996] [ 112.783192] Modules linked in: [ 112.783507] ---[ end trace 0000000000000000 ]--- [ 112.783897] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.784284] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.785892] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.786329] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.787025] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.787739] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.788327] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.788994] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.790371] FS: 00007fe8931ea900(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.791546] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.792024] CR2: 000055b4bd67b0a0 CR3: 000000000ce84000 CR4: 0000000000350ef0 [ 112.792645] note: systemd-rfkill[3797] exited with preempt_count 2 [ 112.793243] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#25] SMP KASAN NOPTI [ 112.794156] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 112.794860] CPU: 0 UID: 0 PID: 3997 Comm: journal-offline Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.795843] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.796254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.796940] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.797332] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.798813] RSP: 0018:ffff8880174ff880 EFLAGS: 00010212 [ 112.799247] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 112.799826] RDX: ffff888041541b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 112.800408] RBP: ffff8880174ffaf0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.801008] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 112.801590] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.802170] FS: 00007f38e823a700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.802824] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.803294] CR2: 000055b4bd67b0a0 CR3: 000000000c82d000 CR4: 0000000000350ef0 [ 112.803875] Call Trace: [ 112.804087] [ 112.804281] ? __pfx_perf_tp_event+0x10/0x10 [ 112.804669] ? zap_page_range_single_batched+0x384/0x5a0 [ 112.805122] ? __pfx_zap_page_range_single_batched+0x10/0x10 [ 112.805599] ? mtree_range_walk+0x74a/0xb90 [ 112.805964] ? madvise_vma_behavior+0x738/0x25d0 [ 112.806367] ? blk_mq_flush_plug_list+0x13e/0x5b0 [ 112.806767] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 112.807179] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 112.807605] ? perf_trace_run_bpf_submit+0xef/0x180 [ 112.808017] perf_trace_run_bpf_submit+0xef/0x180 [ 112.808422] perf_trace_contention_begin+0x235/0x3e0 [ 112.808859] ? __pfx_find_vma+0x10/0x10 [ 112.809197] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 112.809656] ? lock_acquire+0x18c/0x2f0 [ 112.809992] trace_contention_begin+0xae/0x110 [ 112.810375] __mutex_lock+0x14b/0x1020 [ 112.810703] ? perf_event_exit_task+0x46/0x510 [ 112.811088] ? perf_event_exit_task+0x46/0x510 [ 112.811470] ? do_raw_spin_lock+0x123/0x260 [ 112.811837] ? lock_acquire+0x18c/0x2f0 [ 112.812169] ? __pfx___mutex_lock+0x10/0x10 [ 112.812538] ? _raw_spin_unlock_irq+0x23/0x40 [ 112.812942] ? lock_release+0x1c7/0x290 [ 112.813273] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 112.813708] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 112.814129] ? taskstats_exit+0x8c/0xba0 [ 112.814465] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 112.814860] perf_event_exit_task+0x46/0x510 [ 112.815230] do_exit+0x626/0x2970 [ 112.815526] ? __pfx_do_exit+0x10/0x10 [ 112.815856] ? __secure_computing+0x18d/0x290 [ 112.816233] __x64_sys_exit+0x42/0x50 [ 112.816550] x64_sys_call+0x18ca/0x18d0 [ 112.816909] do_syscall_64+0xbf/0x360 [ 112.817228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.817652] RIP: 0033:0x7f38e9240f56 [ 112.817962] Code: 00 00 0f 84 3d 01 00 00 48 8b 44 24 08 f6 80 08 03 00 00 40 0f 85 41 01 00 00 ba 3c 00 00 00 0f 1f 44 00 00 31 ff 89 d0 0f 05 f8 ff d0 48 98 e9 46 ff ff ff 48 8b 44 24 08 45 31 d2 ba 01 00 [ 112.819452] RSP: 002b:00007f38e8239d40 EFLAGS: 00000246 ORIG_RAX: 000000000000003c [ 112.820068] RAX: ffffffffffffffda RBX: 00007f38e823a700 RCX: 00007f38e9240f56 [ 112.820664] RDX: 000000000000003c RSI: 00000000007fb000 RDI: 0000000000000000 [ 112.821247] RBP: 00007f38e7a3a000 R08: 00007f38e823a700 R09: 00007f38e823a700 [ 112.821830] R10: 0000000000000014 R11: 0000000000000246 R12: 00007fffb0c3a72e [ 112.822411] R13: 00007fffb0c3a72f R14: 00007f38e8239e00 R15: 0000559c6e44b240 [ 112.822993] [ 112.823188] Modules linked in: [ 112.823485] ---[ end trace 0000000000000000 ]--- [ 112.823872] RIP: 0010:perf_tp_event+0x175/0xe70 [ 112.824264] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 112.825852] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 112.826289] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 112.826903] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 112.827509] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 112.828094] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 112.828714] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 112.829298] FS: 00007f38e823a700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 112.829970] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.830459] CR2: 000055b4bd67b0a0 CR3: 000000000c82d000 CR4: 0000000000350ef0 [ 112.831045] note: journal-offline[3997] exited with preempt_count 2 [ 112.831571] Fixing recursive fault but reboot is needed! [ 112.832009] BUG: scheduling while atomic: journal-offline/3997/0x00000000 [ 112.832588] INFO: lockdep is turned off. [ 112.832924] Modules linked in: [ 112.833196] CPU: 0 UID: 0 PID: 3997 Comm: journal-offline Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.833216] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.833220] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.833226] Call Trace: [ 112.833230] [ 112.833234] dump_stack_lvl+0xfa/0x120 [ 112.833259] __schedule_bug+0xb9/0x100 [ 112.833271] __schedule+0x24f3/0x3590 [ 112.833287] ? __pfx_vprintk_emit+0x10/0x10 [ 112.833305] ? perf_event_exit_task+0x46/0x510 [ 112.833323] ? __pfx___schedule+0x10/0x10 [ 112.833338] ? do_raw_spin_lock+0x123/0x260 [ 112.833353] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 112.833368] ? lock_acquire+0x18c/0x2f0 [ 112.833385] ? __pfx_do_exit+0x10/0x10 [ 112.833398] ? lock_release+0x1c7/0x290 [ 112.833411] ? do_task_dead+0x3e/0x110 [ 112.833425] do_task_dead+0xdc/0x110 [ 112.833438] make_task_dead+0x373/0x3b0 [ 112.833451] ? do_syscall_64+0xbf/0x360 [ 112.833463] rewind_stack_and_make_dead+0x16/0x20 [ 112.833478] RIP: 0033:0x7f38e9240f56 [ 112.833487] Code: 00 00 0f 84 3d 01 00 00 48 8b 44 24 08 f6 80 08 03 00 00 40 0f 85 41 01 00 00 ba 3c 00 00 00 0f 1f 44 00 00 31 ff 89 d0 0f 05 f8 ff d0 48 98 e9 46 ff ff ff 48 8b 44 24 08 45 31 d2 ba 01 00 [ 112.833498] RSP: 002b:00007f38e8239d40 EFLAGS: 00000246 ORIG_RAX: 000000000000003c [ 112.833508] RAX: ffffffffffffffda RBX: 00007f38e823a700 RCX: 00007f38e9240f56 [ 112.833516] RDX: 000000000000003c RSI: 00000000007fb000 RDI: 0000000000000000 [ 112.833523] RBP: 00007f38e7a3a000 R08: 00007f38e823a700 R09: 00007f38e823a700 [ 112.833531] R10: 0000000000000014 R11: 0000000000000246 R12: 00007fffb0c3a72e [ 112.833538] R13: 00007fffb0c3a72f R14: 00007f38e8239e00 R15: 0000559c6e44b240 [ 112.833549] [ 112.855393] BUG: Bad page state in process systemd-udevd pfn:174f9 [ 112.855930] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x174f9 [ 112.856603] flags: 0x100000000000000(node=0|zone=1) [ 112.857027] page_type: f9(unknown) [ 112.857330] raw: 0100000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 112.857983] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.858622] page dumped because: nonzero mapcount [ 112.859017] Modules linked in: [ 112.859292] CPU: 0 UID: 0 PID: 3994 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.859313] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.859318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.859325] Call Trace: [ 112.859329] [ 112.859333] dump_stack_lvl+0xfa/0x120 [ 112.859353] bad_page+0x8c/0x1c0 [ 112.859366] __free_frozen_pages+0xaf9/0xe10 [ 112.859388] ? rcu_core+0x7c3/0x1800 [ 112.859404] rcu_core+0x7c8/0x1800 [ 112.859420] ? __pfx_rcu_core+0x10/0x10 [ 112.859435] ? clockevents_program_event+0x135/0x360 [ 112.859453] ? tick_program_event+0xac/0x140 [ 112.859465] ? hrtimer_interrupt+0x652/0x830 [ 112.859477] handle_softirqs+0x1b1/0x770 [ 112.859498] __irq_exit_rcu+0xc4/0x100 [ 112.859517] irq_exit_rcu+0x9/0x20 [ 112.859527] sysvec_apic_timer_interrupt+0x70/0x80 [ 112.859545] [ 112.859549] [ 112.859553] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 112.859566] RIP: 0010:__kasan_check_read+0x8/0x20 [ 112.859582] Code: fb a3 ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 bf f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 112.859594] RSP: 0018:ffff888043af7908 EFLAGS: 00000293 [ 112.859603] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81aa4f0b [ 112.859612] RDX: ffff888016885280 RSI: 0000000000000008 RDI: ffffea0000624040 [ 112.859620] RBP: ffffea0000624040 R08: 0000000000000000 R09: fffff940000c4808 [ 112.859627] R10: 0000000000000001 R11: ffff88806ce3c540 R12: ffff888014273fc8 [ 112.859635] R13: ffffea0000624040 R14: 0000000000000000 R15: 00000000000001fd [ 112.859645] ? free_swap_cache+0x6b/0x2a0 [ 112.859664] free_swap_cache+0x6b/0x2a0 [ 112.859682] free_pages_and_swap_cache+0x156/0x420 [ 112.859701] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 112.859719] ? lock_release+0x1c7/0x290 [ 112.859741] ? lock_release+0x1c7/0x290 [ 112.859757] __tlb_batch_free_encoded_pages+0xfa/0x2b0 [ 112.859779] tlb_finish_mmu+0x16d/0x7e0 [ 112.859799] exit_mmap+0x3a4/0xaa0 [ 112.859816] ? __pfx_exit_mmap+0x10/0x10 [ 112.859833] ? __mutex_lock+0x166/0x1020 [ 112.859853] ? __pfx___mutex_lock+0x10/0x10 [ 112.859875] ? do_raw_spin_lock+0x123/0x260 [ 112.859891] ? arch_uprobe_clear_state+0x16/0x140 [ 112.859910] mmput+0xd5/0x390 [ 112.859929] do_exit+0x79d/0x2970 [ 112.859943] ? _printk+0xbe/0xf0 [ 112.859956] ? __pfx__printk+0x10/0x10 [ 112.859971] ? __pfx_do_exit+0x10/0x10 [ 112.859984] ? __pfx_ksys_write+0x10/0x10 [ 112.860000] make_task_dead+0x174/0x3b0 [ 112.860014] ? do_syscall_64+0xbf/0x360 [ 112.860026] rewind_stack_and_make_dead+0x16/0x20 [ 112.860042] RIP: 0033:0x7f4fa8916f33 [ 112.860051] Code: Unable to access opcode bytes at 0x7f4fa8916f09. [ 112.860056] RSP: 002b:00007ffcdd987d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.860067] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4fa8916f33 [ 112.860075] RDX: 0000000000000002 RSI: 00007ffcdd987e80 RDI: 0000000000000010 [ 112.860083] RBP: 00007ffcdd987e80 R08: 0000000000000000 R09: 0000000000000001 [ 112.860090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.860098] R13: 000055b4ec2227c0 R14: 0000000000000002 R15: 00007f4fa89e78a0 [ 112.860109] [ 112.884800] BUG: Bad page state in process systemd-udevd pfn:174fa [ 112.885316] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x174fa [ 112.885979] flags: 0x100000000000000(node=0|zone=1) [ 112.886410] page_type: f9(unknown) [ 112.886701] raw: 0100000000000000 0000000000000000 ffffea00005d3e90 0000000000000000 [ 112.887340] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.887983] page dumped because: nonzero mapcount [ 112.888372] Modules linked in: [ 112.888675] CPU: 0 UID: 0 PID: 3994 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.888696] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.888701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.888707] Call Trace: [ 112.888711] [ 112.888715] dump_stack_lvl+0xfa/0x120 [ 112.888735] bad_page+0x8c/0x1c0 [ 112.888747] __free_frozen_pages+0xaf9/0xe10 [ 112.888764] ? rcu_core+0x7c3/0x1800 [ 112.888778] rcu_core+0x7c8/0x1800 [ 112.888794] ? __pfx_rcu_core+0x10/0x10 [ 112.888808] ? clockevents_program_event+0x135/0x360 [ 112.888825] ? tick_program_event+0xac/0x140 [ 112.888837] ? hrtimer_interrupt+0x652/0x830 [ 112.888848] handle_softirqs+0x1b1/0x770 [ 112.888869] __irq_exit_rcu+0xc4/0x100 [ 112.888888] irq_exit_rcu+0x9/0x20 [ 112.888898] sysvec_apic_timer_interrupt+0x70/0x80 [ 112.888915] [ 112.888919] [ 112.888923] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 112.888936] RIP: 0010:__kasan_check_read+0x8/0x20 [ 112.888951] Code: fb a3 ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 bf f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 112.888962] RSP: 0018:ffff888043af7908 EFLAGS: 00000293 [ 112.888972] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81aa4f0b [ 112.888980] RDX: ffff888016885280 RSI: 0000000000000008 RDI: ffffea0000624040 [ 112.888988] RBP: ffffea0000624040 R08: 0000000000000000 R09: fffff940000c4808 [ 112.888996] R10: 0000000000000001 R11: ffff88806ce3c540 R12: ffff888014273fc8 [ 112.889003] R13: ffffea0000624040 R14: 0000000000000000 R15: 00000000000001fd [ 112.889013] ? free_swap_cache+0x6b/0x2a0 [ 112.889032] free_swap_cache+0x6b/0x2a0 [ 112.889049] free_pages_and_swap_cache+0x156/0x420 [ 112.889068] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 112.889086] ? lock_release+0x1c7/0x290 [ 112.889108] ? lock_release+0x1c7/0x290 [ 112.889124] __tlb_batch_free_encoded_pages+0xfa/0x2b0 [ 112.889145] tlb_finish_mmu+0x16d/0x7e0 [ 112.889164] exit_mmap+0x3a4/0xaa0 [ 112.889181] ? __pfx_exit_mmap+0x10/0x10 [ 112.889198] ? __mutex_lock+0x166/0x1020 [ 112.889218] ? __pfx___mutex_lock+0x10/0x10 [ 112.889240] ? do_raw_spin_lock+0x123/0x260 [ 112.889256] ? arch_uprobe_clear_state+0x16/0x140 [ 112.889274] mmput+0xd5/0x390 [ 112.889293] do_exit+0x79d/0x2970 [ 112.889306] ? _printk+0xbe/0xf0 [ 112.889320] ? __pfx__printk+0x10/0x10 [ 112.889334] ? __pfx_do_exit+0x10/0x10 [ 112.889347] ? __pfx_ksys_write+0x10/0x10 [ 112.889362] make_task_dead+0x174/0x3b0 [ 112.889381] ? do_syscall_64+0xbf/0x360 [ 112.889392] rewind_stack_and_make_dead+0x16/0x20 [ 112.889409] RIP: 0033:0x7f4fa8916f33 [ 112.889417] Code: Unable to access opcode bytes at 0x7f4fa8916f09. [ 112.889423] RSP: 002b:00007ffcdd987d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.889434] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4fa8916f33 [ 112.889442] RDX: 0000000000000002 RSI: 00007ffcdd987e80 RDI: 0000000000000010 [ 112.889449] RBP: 00007ffcdd987e80 R08: 0000000000000000 R09: 0000000000000001 [ 112.889457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.889464] R13: 000055b4ec2227c0 R14: 0000000000000002 R15: 00007f4fa89e78a0 [ 112.889476] [ 112.912856] BUG: Bad page state in process systemd-udevd pfn:174fb [ 112.913347] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x174fb [ 112.913969] flags: 0x100000000000000(node=0|zone=1) [ 112.914355] page_type: f9(unknown) [ 112.914649] raw: 0100000000000000 0000000000000000 ffffea00005d3ec8 0000000000000000 [ 112.915245] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.915848] page dumped because: nonzero mapcount [ 112.916217] Modules linked in: [ 112.916487] CPU: 0 UID: 0 PID: 3994 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.916509] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.916513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.916520] Call Trace: [ 112.916524] [ 112.916528] dump_stack_lvl+0xfa/0x120 [ 112.916548] bad_page+0x8c/0x1c0 [ 112.916569] __free_frozen_pages+0xaf9/0xe10 [ 112.916592] ? rcu_core+0x7c3/0x1800 [ 112.916610] rcu_core+0x7c8/0x1800 [ 112.916630] ? __pfx_rcu_core+0x10/0x10 [ 112.916644] ? clockevents_program_event+0x135/0x360 [ 112.916661] ? tick_program_event+0xac/0x140 [ 112.916673] ? hrtimer_interrupt+0x652/0x830 [ 112.916684] handle_softirqs+0x1b1/0x770 [ 112.916705] __irq_exit_rcu+0xc4/0x100 [ 112.916723] irq_exit_rcu+0x9/0x20 [ 112.916734] sysvec_apic_timer_interrupt+0x70/0x80 [ 112.916751] [ 112.916755] [ 112.916759] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 112.916772] RIP: 0010:__kasan_check_read+0x8/0x20 [ 112.916787] Code: fb a3 ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 bf f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 112.916798] RSP: 0018:ffff888043af7908 EFLAGS: 00000293 [ 112.916808] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81aa4f0b [ 112.916816] RDX: ffff888016885280 RSI: 0000000000000008 RDI: ffffea0000624040 [ 112.916824] RBP: ffffea0000624040 R08: 0000000000000000 R09: fffff940000c4808 [ 112.916832] R10: 0000000000000001 R11: ffff88806ce3c540 R12: ffff888014273fc8 [ 112.916840] R13: ffffea0000624040 R14: 0000000000000000 R15: 00000000000001fd [ 112.916849] ? free_swap_cache+0x6b/0x2a0 [ 112.916868] free_swap_cache+0x6b/0x2a0 [ 112.916885] free_pages_and_swap_cache+0x156/0x420 [ 112.916904] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 112.916922] ? lock_release+0x1c7/0x290 [ 112.916944] ? lock_release+0x1c7/0x290 [ 112.916960] __tlb_batch_free_encoded_pages+0xfa/0x2b0 [ 112.916981] tlb_finish_mmu+0x16d/0x7e0 [ 112.917000] exit_mmap+0x3a4/0xaa0 [ 112.917018] ? __pfx_exit_mmap+0x10/0x10 [ 112.917034] ? __mutex_lock+0x166/0x1020 [ 112.917054] ? __pfx___mutex_lock+0x10/0x10 [ 112.917076] ? do_raw_spin_lock+0x123/0x260 [ 112.917092] ? arch_uprobe_clear_state+0x16/0x140 [ 112.917111] mmput+0xd5/0x390 [ 112.917129] do_exit+0x79d/0x2970 [ 112.917142] ? _printk+0xbe/0xf0 [ 112.917156] ? __pfx__printk+0x10/0x10 [ 112.917170] ? __pfx_do_exit+0x10/0x10 [ 112.917183] ? __pfx_ksys_write+0x10/0x10 [ 112.917198] make_task_dead+0x174/0x3b0 [ 112.917212] ? do_syscall_64+0xbf/0x360 [ 112.917224] rewind_stack_and_make_dead+0x16/0x20 [ 112.917241] RIP: 0033:0x7f4fa8916f33 [ 112.917249] Code: Unable to access opcode bytes at 0x7f4fa8916f09. [ 112.917255] RSP: 002b:00007ffcdd987d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.917266] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4fa8916f33 [ 112.917273] RDX: 0000000000000002 RSI: 00007ffcdd987e80 RDI: 0000000000000010 [ 112.917281] RBP: 00007ffcdd987e80 R08: 0000000000000000 R09: 0000000000000001 [ 112.917289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.917296] R13: 000055b4ec2227c0 R14: 0000000000000002 R15: 00007f4fa89e78a0 [ 112.917307] [ 112.917312] BUG: Bad page state in process systemd-udevd pfn:174fc [ 112.941480] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x174fc [ 112.942090] flags: 0x100000000000000(node=0|zone=1) [ 112.942486] page_type: f9(unknown) [ 112.942766] raw: 0100000000000000 0000000000000000 ffffea00005d3f08 0000000000000000 [ 112.943359] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.943958] page dumped because: nonzero mapcount [ 112.944330] Modules linked in: [ 112.944616] CPU: 0 UID: 0 PID: 3994 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.944643] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.944649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.944657] Call Trace: [ 112.944662] [ 112.944667] dump_stack_lvl+0xfa/0x120 [ 112.944687] bad_page+0x8c/0x1c0 [ 112.944699] __free_frozen_pages+0xaf9/0xe10 [ 112.944716] ? rcu_core+0x7c3/0x1800 [ 112.944730] rcu_core+0x7c8/0x1800 [ 112.944746] ? __pfx_rcu_core+0x10/0x10 [ 112.944761] ? clockevents_program_event+0x135/0x360 [ 112.944777] ? tick_program_event+0xac/0x140 [ 112.944789] ? hrtimer_interrupt+0x652/0x830 [ 112.944800] handle_softirqs+0x1b1/0x770 [ 112.944821] __irq_exit_rcu+0xc4/0x100 [ 112.944840] irq_exit_rcu+0x9/0x20 [ 112.944850] sysvec_apic_timer_interrupt+0x70/0x80 [ 112.944867] [ 112.944871] [ 112.944875] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 112.944888] RIP: 0010:__kasan_check_read+0x8/0x20 [ 112.944902] Code: fb a3 ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 bf f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 112.944914] RSP: 0018:ffff888043af7908 EFLAGS: 00000293 [ 112.944924] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81aa4f0b [ 112.944932] RDX: ffff888016885280 RSI: 0000000000000008 RDI: ffffea0000624040 [ 112.944940] RBP: ffffea0000624040 R08: 0000000000000000 R09: fffff940000c4808 [ 112.944947] R10: 0000000000000001 R11: ffff88806ce3c540 R12: ffff888014273fc8 [ 112.944955] R13: ffffea0000624040 R14: 0000000000000000 R15: 00000000000001fd [ 112.944965] ? free_swap_cache+0x6b/0x2a0 [ 112.944984] free_swap_cache+0x6b/0x2a0 [ 112.945001] free_pages_and_swap_cache+0x156/0x420 [ 112.945020] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 112.945038] ? lock_release+0x1c7/0x290 [ 112.945060] ? lock_release+0x1c7/0x290 [ 112.945076] __tlb_batch_free_encoded_pages+0xfa/0x2b0 [ 112.945096] tlb_finish_mmu+0x16d/0x7e0 [ 112.945116] exit_mmap+0x3a4/0xaa0 [ 112.945133] ? __pfx_exit_mmap+0x10/0x10 [ 112.945150] ? __mutex_lock+0x166/0x1020 [ 112.945170] ? __pfx___mutex_lock+0x10/0x10 [ 112.945192] ? do_raw_spin_lock+0x123/0x260 [ 112.945207] ? arch_uprobe_clear_state+0x16/0x140 [ 112.945226] mmput+0xd5/0x390 [ 112.945244] do_exit+0x79d/0x2970 [ 112.945258] ? _printk+0xbe/0xf0 [ 112.945271] ? __pfx__printk+0x10/0x10 [ 112.945285] ? __pfx_do_exit+0x10/0x10 [ 112.945299] ? __pfx_ksys_write+0x10/0x10 [ 112.945313] make_task_dead+0x174/0x3b0 [ 112.945327] ? do_syscall_64+0xbf/0x360 [ 112.945339] rewind_stack_and_make_dead+0x16/0x20 [ 112.945356] RIP: 0033:0x7f4fa8916f33 [ 112.945364] Code: Unable to access opcode bytes at 0x7f4fa8916f09. [ 112.945369] RSP: 002b:00007ffcdd987d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.945385] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4fa8916f33 [ 112.945393] RDX: 0000000000000002 RSI: 00007ffcdd987e80 RDI: 0000000000000010 [ 112.945400] RBP: 00007ffcdd987e80 R08: 0000000000000000 R09: 0000000000000001 [ 112.945408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.945415] R13: 000055b4ec2227c0 R14: 0000000000000002 R15: 00007f4fa89e78a0 [ 112.945426] [ 112.968759] BUG: Bad page state in process systemd-udevd pfn:174fd [ 112.969248] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x174fd [ 112.969870] flags: 0x100000000000000(node=0|zone=1) [ 112.970256] page_type: f9(unknown) [ 112.970551] raw: 0100000000000000 0000000000000000 ffffea00005d3f48 0000000000000000 [ 112.971147] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 112.971748] page dumped because: nonzero mapcount [ 112.972122] Modules linked in: [ 112.972391] CPU: 0 UID: 0 PID: 3994 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 112.972412] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 112.972417] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 112.972423] Call Trace: [ 112.972427] [ 112.972432] dump_stack_lvl+0xfa/0x120 [ 112.972451] bad_page+0x8c/0x1c0 [ 112.972463] __free_frozen_pages+0xaf9/0xe10 [ 112.972480] ? rcu_core+0x7c3/0x1800 [ 112.972494] rcu_core+0x7c8/0x1800 [ 112.972510] ? __pfx_rcu_core+0x10/0x10 [ 112.972524] ? clockevents_program_event+0x135/0x360 [ 112.972541] ? tick_program_event+0xac/0x140 [ 112.972553] ? hrtimer_interrupt+0x652/0x830 [ 112.972576] handle_softirqs+0x1b1/0x770 [ 112.972601] __irq_exit_rcu+0xc4/0x100 [ 112.972624] irq_exit_rcu+0x9/0x20 [ 112.972637] sysvec_apic_timer_interrupt+0x70/0x80 [ 112.972660] [ 112.972664] [ 112.972668] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 112.972681] RIP: 0010:__kasan_check_read+0x8/0x20 [ 112.972695] Code: fb a3 ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 bf f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 112.972707] RSP: 0018:ffff888043af7908 EFLAGS: 00000293 [ 112.972717] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81aa4f0b [ 112.972724] RDX: ffff888016885280 RSI: 0000000000000008 RDI: ffffea0000624040 [ 112.972732] RBP: ffffea0000624040 R08: 0000000000000000 R09: fffff940000c4808 [ 112.972740] R10: 0000000000000001 R11: ffff88806ce3c540 R12: ffff888014273fc8 [ 112.972748] R13: ffffea0000624040 R14: 0000000000000000 R15: 00000000000001fd [ 112.972758] ? free_swap_cache+0x6b/0x2a0 [ 112.972776] free_swap_cache+0x6b/0x2a0 [ 112.972794] free_pages_and_swap_cache+0x156/0x420 [ 112.972813] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 112.972831] ? lock_release+0x1c7/0x290 [ 112.972853] ? lock_release+0x1c7/0x290 [ 112.972868] __tlb_batch_free_encoded_pages+0xfa/0x2b0 [ 112.972889] tlb_finish_mmu+0x16d/0x7e0 [ 112.972908] exit_mmap+0x3a4/0xaa0 [ 112.972925] ? __pfx_exit_mmap+0x10/0x10 [ 112.972942] ? __mutex_lock+0x166/0x1020 [ 112.972963] ? __pfx___mutex_lock+0x10/0x10 [ 112.972984] ? do_raw_spin_lock+0x123/0x260 [ 112.973000] ? arch_uprobe_clear_state+0x16/0x140 [ 112.973019] mmput+0xd5/0x390 [ 112.973037] do_exit+0x79d/0x2970 [ 112.973051] ? _printk+0xbe/0xf0 [ 112.973064] ? __pfx__printk+0x10/0x10 [ 112.973078] ? __pfx_do_exit+0x10/0x10 [ 112.973091] ? __pfx_ksys_write+0x10/0x10 [ 112.973106] make_task_dead+0x174/0x3b0 [ 112.973120] ? do_syscall_64+0xbf/0x360 [ 112.973132] rewind_stack_and_make_dead+0x16/0x20 [ 112.973149] RIP: 0033:0x7f4fa8916f33 [ 112.973157] Code: Unable to access opcode bytes at 0x7f4fa8916f09. [ 112.973162] RSP: 002b:00007ffcdd987d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.973173] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4fa8916f33 [ 112.973181] RDX: 0000000000000002 RSI: 00007ffcdd987e80 RDI: 0000000000000010 [ 112.973189] RBP: 00007ffcdd987e80 R08: 0000000000000000 R09: 0000000000000001 [ 112.973196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 112.973204] R13: 000055b4ec2227c0 R14: 0000000000000002 R15: 00007f4fa89e78a0 [ 112.973215] [ 112.973220] BUG: Bad page state in process systemd-udevd pfn:174fe [ 112.997706] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x174fe [ 112.998335] flags: 0x100000000000000(node=0|zone=1) [ 112.998744] page_type: f9(unknown) [ 112.999031] raw: 0100000000000000 0000000000000000 ffffea00005d3f88 0000000000000000 [ 112.999653] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 113.000265] page dumped because: nonzero mapcount [ 113.000677] Modules linked in: [ 113.000950] CPU: 0 UID: 0 PID: 3994 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.000971] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 113.000976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.000983] Call Trace: [ 113.000986] [ 113.000990] dump_stack_lvl+0xfa/0x120 [ 113.001010] bad_page+0x8c/0x1c0 [ 113.001022] __free_frozen_pages+0xaf9/0xe10 [ 113.001039] ? rcu_core+0x7c3/0x1800 [ 113.001053] rcu_core+0x7c8/0x1800 [ 113.001069] ? __pfx_rcu_core+0x10/0x10 [ 113.001084] ? clockevents_program_event+0x135/0x360 [ 113.001100] ? tick_program_event+0xac/0x140 [ 113.001112] ? hrtimer_interrupt+0x652/0x830 [ 113.001124] handle_softirqs+0x1b1/0x770 [ 113.001144] __irq_exit_rcu+0xc4/0x100 [ 113.001163] irq_exit_rcu+0x9/0x20 [ 113.001173] sysvec_apic_timer_interrupt+0x70/0x80 [ 113.001190] [ 113.001194] [ 113.001198] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 113.001211] RIP: 0010:__kasan_check_read+0x8/0x20 [ 113.001225] Code: fb a3 ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 bf f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 113.001237] RSP: 0018:ffff888043af7908 EFLAGS: 00000293 [ 113.001246] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81aa4f0b [ 113.001254] RDX: ffff888016885280 RSI: 0000000000000008 RDI: ffffea0000624040 [ 113.001262] RBP: ffffea0000624040 R08: 0000000000000000 R09: fffff940000c4808 [ 113.001269] R10: 0000000000000001 R11: ffff88806ce3c540 R12: ffff888014273fc8 [ 113.001277] R13: ffffea0000624040 R14: 0000000000000000 R15: 00000000000001fd [ 113.001287] ? free_swap_cache+0x6b/0x2a0 [ 113.001306] free_swap_cache+0x6b/0x2a0 [ 113.001323] free_pages_and_swap_cache+0x156/0x420 [ 113.001342] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 113.001360] ? lock_release+0x1c7/0x290 [ 113.001385] ? lock_release+0x1c7/0x290 [ 113.001401] __tlb_batch_free_encoded_pages+0xfa/0x2b0 [ 113.001422] tlb_finish_mmu+0x16d/0x7e0 [ 113.001441] exit_mmap+0x3a4/0xaa0 [ 113.001459] ? __pfx_exit_mmap+0x10/0x10 [ 113.001475] ? __mutex_lock+0x166/0x1020 [ 113.001495] ? __pfx___mutex_lock+0x10/0x10 [ 113.001517] ? do_raw_spin_lock+0x123/0x260 [ 113.001533] ? arch_uprobe_clear_state+0x16/0x140 [ 113.001551] mmput+0xd5/0x390 [ 113.001570] do_exit+0x79d/0x2970 [ 113.001583] ? _printk+0xbe/0xf0 [ 113.001596] ? __pfx__printk+0x10/0x10 [ 113.001611] ? __pfx_do_exit+0x10/0x10 [ 113.001624] ? __pfx_ksys_write+0x10/0x10 [ 113.001639] make_task_dead+0x174/0x3b0 [ 113.001653] ? do_syscall_64+0xbf/0x360 [ 113.001665] rewind_stack_and_make_dead+0x16/0x20 [ 113.001681] RIP: 0033:0x7f4fa8916f33 [ 113.001690] Code: Unable to access opcode bytes at 0x7f4fa8916f09. [ 113.001695] RSP: 002b:00007ffcdd987d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 113.001706] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4fa8916f33 [ 113.001714] RDX: 0000000000000002 RSI: 00007ffcdd987e80 RDI: 0000000000000010 [ 113.001722] RBP: 00007ffcdd987e80 R08: 0000000000000000 R09: 0000000000000001 [ 113.001730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 113.001737] R13: 000055b4ec2227c0 R14: 0000000000000002 R15: 00007f4fa89e78a0 [ 113.001748] [ 113.025585] BUG: Bad page state in process systemd-udevd pfn:174ff [ 113.026087] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x174ff [ 113.026722] flags: 0x100000000000000(node=0|zone=1) [ 113.027120] page_type: f9(unknown) [ 113.027420] raw: 0100000000000000 0000000000000000 ffffea00005d3fc8 0000000000000000 [ 113.028031] raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000 [ 113.028675] page dumped because: nonzero mapcount [ 113.029055] Modules linked in: [ 113.029317] CPU: 0 UID: 0 PID: 3994 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.029338] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 113.029342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.029349] Call Trace: [ 113.029352] [ 113.029357] dump_stack_lvl+0xfa/0x120 [ 113.029380] bad_page+0x8c/0x1c0 [ 113.029391] __free_frozen_pages+0xaf9/0xe10 [ 113.029409] ? rcu_core+0x7c3/0x1800 [ 113.029423] rcu_core+0x7c8/0x1800 [ 113.029439] ? __pfx_rcu_core+0x10/0x10 [ 113.029453] ? clockevents_program_event+0x135/0x360 [ 113.029470] ? tick_program_event+0xac/0x140 [ 113.029481] ? hrtimer_interrupt+0x652/0x830 [ 113.029493] handle_softirqs+0x1b1/0x770 [ 113.029513] __irq_exit_rcu+0xc4/0x100 [ 113.029532] irq_exit_rcu+0x9/0x20 [ 113.029542] sysvec_apic_timer_interrupt+0x70/0x80 [ 113.029560] [ 113.029563] [ 113.029568] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 113.029581] RIP: 0010:__kasan_check_read+0x8/0x20 [ 113.029595] Code: fb a3 ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 0c 24 <89> f6 31 d2 e9 bf f0 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f [ 113.029606] RSP: 0018:ffff888043af7908 EFLAGS: 00000293 [ 113.029616] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81aa4f0b [ 113.029623] RDX: ffff888016885280 RSI: 0000000000000008 RDI: ffffea0000624040 [ 113.029631] RBP: ffffea0000624040 R08: 0000000000000000 R09: fffff940000c4808 [ 113.029639] R10: 0000000000000001 R11: ffff88806ce3c540 R12: ffff888014273fc8 [ 113.029647] R13: ffffea0000624040 R14: 0000000000000000 R15: 00000000000001fd [ 113.029657] ? free_swap_cache+0x6b/0x2a0 [ 113.029675] free_swap_cache+0x6b/0x2a0 [ 113.029693] free_pages_and_swap_cache+0x156/0x420 [ 113.029712] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 113.029730] ? lock_release+0x1c7/0x290 [ 113.029752] ? lock_release+0x1c7/0x290 [ 113.029768] __tlb_batch_free_encoded_pages+0xfa/0x2b0 [ 113.029788] tlb_finish_mmu+0x16d/0x7e0 [ 113.029808] exit_mmap+0x3a4/0xaa0 [ 113.029825] ? __pfx_exit_mmap+0x10/0x10 [ 113.029842] ? __mutex_lock+0x166/0x1020 [ 113.029862] ? __pfx___mutex_lock+0x10/0x10 [ 113.029884] ? do_raw_spin_lock+0x123/0x260 [ 113.029900] ? arch_uprobe_clear_state+0x16/0x140 [ 113.029918] mmput+0xd5/0x390 [ 113.029936] do_exit+0x79d/0x2970 [ 113.029950] ? _printk+0xbe/0xf0 [ 113.029963] ? __pfx__printk+0x10/0x10 [ 113.029977] ? __pfx_do_exit+0x10/0x10 [ 113.029991] ? __pfx_ksys_write+0x10/0x10 [ 113.030006] make_task_dead+0x174/0x3b0 [ 113.030020] ? do_syscall_64+0xbf/0x360 [ 113.030032] rewind_stack_and_make_dead+0x16/0x20 [ 113.030048] RIP: 0033:0x7f4fa8916f33 [ 113.030057] Code: Unable to access opcode bytes at 0x7f4fa8916f09. [ 113.030062] RSP: 002b:00007ffcdd987d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 113.030073] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4fa8916f33 [ 113.030081] RDX: 0000000000000002 RSI: 00007ffcdd987e80 RDI: 0000000000000010 [ 113.030088] RBP: 00007ffcdd987e80 R08: 0000000000000000 R09: 0000000000000001 [ 113.030096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 113.030103] R13: 000055b4ec2227c0 R14: 0000000000000002 R15: 00007f4fa89e78a0 [ 113.030115] [ 113.056274] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#26] SMP KASAN NOPTI [ 113.057193] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.057883] CPU: 0 UID: 0 PID: 30 Comm: rcu_tasks_trace Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.058812] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 113.059206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.059854] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.060235] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.061683] RSP: 0018:ffff8880098b7840 EFLAGS: 00010212 [ 113.062107] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 113.062666] RDX: ffff8880097ab700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.063233] RBP: ffff8880098b7ab0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.063798] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 113.064361] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.064948] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.065583] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.066045] CR2: 000055b4bd67b0a0 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 113.066610] Call Trace: [ 113.066820] [ 113.067008] ? __pfx_perf_tp_event+0x10/0x10 [ 113.067375] ? __lock_acquire+0x694/0x1b70 [ 113.067714] ? lock_is_held_type+0x9e/0x120 [ 113.068066] ? kvm_sched_clock_read+0x16/0x30 [ 113.068428] ? sched_clock+0x37/0x60 [ 113.068757] ? sched_clock_cpu+0x6c/0x4e0 [ 113.069092] ? lock_is_held_type+0x9e/0x120 [ 113.069441] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.069846] perf_trace_run_bpf_submit+0xef/0x180 [ 113.070244] perf_trace_contention_begin+0x235/0x3e0 [ 113.070651] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 113.071096] ? finish_task_switch.isra.0+0x206/0x840 [ 113.071514] ? lock_acquire+0x18c/0x2f0 [ 113.071817] trace_contention_begin+0xae/0x110 [ 113.072185] __mutex_lock+0x14b/0x1020 [ 113.072504] ? rcu_tasks_one_gp+0x6be/0xcf0 [ 113.072881] ? rcu_tasks_one_gp+0x6be/0xcf0 [ 113.073228] ? __pfx___schedule+0x10/0x10 [ 113.073565] ? __pfx___mutex_lock+0x10/0x10 [ 113.073917] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 113.074293] ? lock_acquire+0x18c/0x2f0 [ 113.074614] ? lock_release+0xc8/0x290 [ 113.074931] ? lock_release+0x1c7/0x290 [ 113.075254] rcu_tasks_one_gp+0x6be/0xcf0 [ 113.075594] rcu_tasks_kthread+0x1a6/0x240 [ 113.075942] ? __pfx_rcu_tasks_kthread+0x10/0x10 [ 113.076327] kthread+0x3c8/0x740 [ 113.076618] ? __pfx_kthread+0x10/0x10 [ 113.076939] ? ret_from_fork+0x23/0x430 [ 113.077261] ? lock_release+0xc8/0x290 [ 113.077574] ? __pfx_kthread+0x10/0x10 [ 113.077890] ret_from_fork+0x34b/0x430 [ 113.078209] ? __pfx_kthread+0x10/0x10 [ 113.078524] ret_from_fork_asm+0x1a/0x30 [ 113.078862] [ 113.079053] Modules linked in: [ 113.079464] ---[ end trace 0000000000000000 ]--- [ 113.079845] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.080224] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.081793] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 113.082222] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 113.082888] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 113.084613] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.085191] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.087544] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.088111] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.089704] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.090170] CR2: 000055b4bd67b0a0 CR3: 0000000005a88000 CR4: 0000000000350ef0 [ 113.092595] note: rcu_tasks_trace[30] exited with preempt_count 2 [ 113.099955] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#27] SMP KASAN NOPTI [ 113.100875] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.101563] CPU: 0 UID: 0 PID: 3998 Comm: (d-rfkill) Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.102483] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 113.102881] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.103530] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.103910] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.105360] RSP: 0018:ffff888040f0f480 EFLAGS: 00010212 [ 113.105783] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 113.106346] RDX: ffff888041545280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.106913] RBP: ffff888040f0f6f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.107479] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 113.108044] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.108626] FS: 00007f7699bc4900(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.109264] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.109723] CR2: 00007f769a430c28 CR3: 00000000406ea000 CR4: 0000000000350ef0 [ 113.110291] Call Trace: [ 113.110499] [ 113.110683] ? kernel_text_address+0x5b/0xc0 [ 113.111044] ? lock_release+0x1c7/0x290 [ 113.111367] ? __pfx_perf_tp_event+0x10/0x10 [ 113.111727] ? stack_trace_save+0x8e/0xc0 [ 113.112067] ? stack_depot_save_flags+0x2c/0xa20 [ 113.112449] ? lock_acquire+0x18c/0x2f0 [ 113.112798] ? lock_release+0x1c7/0x290 [ 113.113121] ? lock_acquire+0x18c/0x2f0 [ 113.113440] ? lock_acquire+0x18c/0x2f0 [ 113.113764] ? lock_release+0x1c7/0x290 [ 113.114085] ? __is_insn_slot_addr+0x140/0x290 [ 113.114466] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.114868] perf_trace_run_bpf_submit+0xef/0x180 [ 113.115261] perf_trace_contention_begin+0x235/0x3e0 [ 113.115668] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 113.116116] ? stack_depot_save_flags+0x2c/0xa20 [ 113.116497] ? lock_acquire+0x18c/0x2f0 [ 113.116838] ? lock_acquire+0x18c/0x2f0 [ 113.117163] trace_contention_begin+0xae/0x110 [ 113.117533] __mutex_lock+0x14b/0x1020 [ 113.117852] ? kernfs_fop_open+0x6bd/0xdd0 [ 113.118191] ? kernfs_fop_open+0x6bd/0xdd0 [ 113.118532] ? __memcg_slab_post_alloc_hook+0x4ac/0x9d0 [ 113.118957] ? __pfx___mutex_lock+0x10/0x10 [ 113.119308] ? __create_object+0x59/0x80 [ 113.119640] ? lockdep_init_map_type+0x4b/0x240 [ 113.120020] ? __raw_spin_lock_init+0x3a/0x110 [ 113.120396] ? lockdep_init_map_type+0x4b/0x240 [ 113.120790] ? debug_mutex_init+0x37/0x70 [ 113.121128] kernfs_fop_open+0x6bd/0xdd0 [ 113.121454] do_dentry_open+0x71c/0x1420 [ 113.121780] ? __pfx_kernfs_fop_open+0x10/0x10 [ 113.122145] ? inode_permission+0x134/0x610 [ 113.122497] vfs_open+0x82/0x3f0 [ 113.122781] ? may_open+0x1f3/0x420 [ 113.123081] path_openat+0x1c3f/0x2880 [ 113.123396] ? stack_trace_save+0x8e/0xc0 [ 113.123731] ? __pfx_path_openat+0x10/0x10 [ 113.124071] ? stack_depot_save_flags+0x2c/0xa20 [ 113.124451] do_filp_open+0x1e8/0x450 [ 113.124779] ? __pfx_do_filp_open+0x10/0x10 [ 113.125128] ? lock_acquire+0x18c/0x2f0 [ 113.125451] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 113.125827] ? lock_release+0x1c7/0x290 [ 113.126149] ? alloc_fd+0x2c1/0x560 [ 113.126446] do_sys_openat2+0x104/0x1b0 [ 113.126773] ? __pfx_do_sys_openat2+0x10/0x10 [ 113.127138] ? count_memcg_events+0x32b/0x420 [ 113.127504] ? lock_release+0x1c7/0x290 [ 113.127825] __x64_sys_openat+0x142/0x200 [ 113.128160] ? __pfx___x64_sys_openat+0x10/0x10 [ 113.128539] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.128981] do_syscall_64+0xbf/0x360 [ 113.129288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.129702] RIP: 0033:0x7f769a391c64 [ 113.130003] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 36 61 f9 ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 68 61 f9 ff 8b 44 [ 113.131450] RSP: 002b:00007ffd5b590de0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 113.132052] RAX: ffffffffffffffda RBX: 0000000000000040 RCX: 00007f769a391c64 [ 113.132777] RDX: 0000000000080101 RSI: 000055a2249aa420 RDI: 00000000ffffff9c [ 113.134044] RBP: 000055a2249aa420 R08: 0000000000000000 R09: 00007ffd5b590d50 [ 113.135292] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000080101 [ 113.136532] R13: 00007ffd5b590eca R14: 000055a22491c700 R15: 0000000000000000 [ 113.137498] [ 113.137763] Modules linked in: [ 113.138346] ---[ end trace 0000000000000000 ]--- [ 113.138975] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.141908] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.147235] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 113.152407] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 113.153206] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 113.158408] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.159193] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.164312] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.169680] FS: 00007f7699bc4900(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.172917] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.173667] CR2: 00007f769a430c28 CR3: 00000000406ea000 CR4: 0000000000350ef0 [ 113.174602] note: (d-rfkill)[3998] exited with preempt_count 2 [ 113.177692] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#28] SMP KASAN NOPTI [ 113.178927] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.179877] CPU: 0 UID: 0 PID: 17 Comm: rcu_exp_gp_kthr Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.181175] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 113.181728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.182630] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.183165] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.185144] RSP: 0018:ffff88800963f7c0 EFLAGS: 00010212 [ 113.185731] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 113.186506] RDX: ffff888009630000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.187284] RBP: ffff88800963fa30 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.188063] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 113.188846] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.189627] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.190502] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.191140] CR2: 00007f769a430c28 CR3: 00000000406ea000 CR4: 0000000000350ef0 [ 113.191926] Call Trace: [ 113.192215] [ 113.192470] ? __lock_acquire+0xc65/0x1b70 [ 113.192959] ? __pfx_perf_tp_event+0x10/0x10 [ 113.193460] ? kvm_sched_clock_read+0x16/0x30 [ 113.193976] ? __dequeue_entity+0x9b1/0x1900 [ 113.194471] ? lock_acquire+0x18c/0x2f0 [ 113.194916] ? __update_load_avg_se+0x428/0xa40 [ 113.195442] ? lock_release+0x1c7/0x290 [ 113.195889] ? __perf_event_task_sched_in+0x235/0x5e0 [ 113.196460] ? __pfx___perf_event_task_sched_in+0x10/0x10 [ 113.197064] ? dequeue_entities+0x369/0x2130 [ 113.197558] ? lock_acquire+0x18c/0x2f0 [ 113.198003] ? lock_release+0x1c7/0x290 [ 113.198448] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.199005] perf_trace_run_bpf_submit+0xef/0x180 [ 113.199545] perf_trace_contention_begin+0x235/0x3e0 [ 113.200109] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 113.200729] ? lock_release+0x1c7/0x290 [ 113.201175] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.201753] ? lock_acquire+0x18c/0x2f0 [ 113.202200] trace_contention_begin+0xae/0x110 [ 113.202711] __mutex_lock+0x14b/0x1020 [ 113.203154] ? rcu_exp_wait_wake+0x129/0x1390 [ 113.203666] ? rcu_exp_wait_wake+0x129/0x1390 [ 113.204177] ? do_raw_spin_lock+0x123/0x260 [ 113.204669] ? __pfx___mutex_lock+0x10/0x10 [ 113.205154] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 113.205676] ? lock_acquire+0x18c/0x2f0 [ 113.206122] ? lock_acquire+0x18c/0x2f0 [ 113.206570] ? lock_release+0x1c7/0x290 [ 113.207015] ? lock_release+0x1c7/0x290 [ 113.207500] ? finish_swait+0xca/0x230 [ 113.207937] rcu_exp_wait_wake+0x129/0x1390 [ 113.208427] ? _raw_spin_lock_irqsave+0x42/0x60 [ 113.208963] ? __sync_rcu_exp_select_node_cpus+0x739/0xb20 [ 113.209591] ? __sync_rcu_exp_select_node_cpus+0x739/0xb20 [ 113.210213] ? __pfx_rcu_exp_wait_wake+0x10/0x10 [ 113.210750] ? sync_rcu_exp_select_cpus+0x3e3/0x940 [ 113.211315] ? lock_release+0x1c7/0x290 [ 113.211764] kthread_worker_fn+0x2b5/0xad0 [ 113.212234] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 113.212761] ? __pfx_kthread_worker_fn+0x10/0x10 [ 113.213290] kthread+0x3c8/0x740 [ 113.213674] ? __pfx_kthread+0x10/0x10 [ 113.214112] ? ret_from_fork+0x23/0x430 [ 113.214567] ? lock_release+0xc8/0x290 [ 113.215002] ? __pfx_kthread+0x10/0x10 [ 113.215438] ret_from_fork+0x34b/0x430 [ 113.215879] ? __pfx_kthread+0x10/0x10 [ 113.216315] ret_from_fork_asm+0x1a/0x30 [ 113.216786] [ 113.217050] Modules linked in: [ 113.218561] ---[ end trace 0000000000000000 ]--- [ 113.219090] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.220471] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.222559] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 113.223147] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 113.224014] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 113.224922] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.225792] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.226664] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.227535] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.228510] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.229160] CR2: 00007f769a430c28 CR3: 00000000406ea000 CR4: 0000000000350ef0 [ 113.230041] note: rcu_exp_gp_kthr[17] exited with preempt_count 2 [ 113.697506] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#29] SMP KASAN NOPTI [ 113.699181] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.700432] CPU: 0 UID: 0 PID: 40 Comm: kworker/u9:2 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.702091] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 113.702809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.703984] Workqueue: events_unbound linkwatch_event [ 113.704754] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.705443] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.708017] RSP: 0018:ffff88800a07f740 EFLAGS: 00010212 [ 113.708791] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 113.709812] RDX: ffff888009ce9b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.710827] RBP: ffff88800a07f9b0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.711843] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 113.712868] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.713894] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.715041] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.715872] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 113.716897] Call Trace: [ 113.717276] [ 113.717610] ? mark_held_locks+0x49/0x80 [ 113.718204] ? __call_rcu_common.constprop.0+0x4c1/0x960 [ 113.718988] ? __pfx_perf_tp_event+0x10/0x10 [ 113.719642] ? release_task+0xcd4/0x1870 [ 113.720236] ? __pfx_release_task+0x10/0x10 [ 113.720873] ? lock_acquire+0x15e/0x2f0 [ 113.721458] ? kvm_sched_clock_read+0x16/0x30 [ 113.722122] ? sched_clock+0x37/0x60 [ 113.722674] ? lock_is_held_type+0x9e/0x120 [ 113.723305] ? trace_pelt_se_tp+0xdf/0x130 [ 113.723920] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.724655] perf_trace_run_bpf_submit+0xef/0x180 [ 113.725364] perf_trace_contention_begin+0x235/0x3e0 [ 113.726104] ? update_curr+0x71/0x500 [ 113.726664] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 113.727472] ? lock_is_held_type+0x9e/0x120 [ 113.728104] ? lock_acquire+0x18c/0x2f0 [ 113.728698] trace_contention_begin+0xae/0x110 [ 113.729366] __mutex_lock+0x14b/0x1020 [ 113.729949] ? linkwatch_event+0xf/0x70 [ 113.730529] ? linkwatch_event+0xf/0x70 [ 113.731104] ? __perf_event_task_sched_in+0x235/0x5e0 [ 113.731849] ? __pfx___mutex_lock+0x10/0x10 [ 113.732482] ? lock_acquire+0x18c/0x2f0 [ 113.733073] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.733833] ? lock_acquire+0x18c/0x2f0 [ 113.734420] ? lock_release+0x1c7/0x290 [ 113.735002] linkwatch_event+0xf/0x70 [ 113.735557] process_one_work+0x8e1/0x19c0 [ 113.736180] ? __pfx_process_one_work+0x10/0x10 [ 113.736870] ? move_linked_works+0x172/0x270 [ 113.737532] ? assign_work+0x196/0x240 [ 113.738102] worker_thread+0x67e/0xe90 [ 113.738672] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.739430] ? __pfx_worker_thread+0x10/0x10 [ 113.740077] kthread+0x3c8/0x740 [ 113.740595] ? __pfx_kthread+0x10/0x10 [ 113.741162] ? ret_from_fork+0x23/0x430 [ 113.741754] ? lock_release+0xc8/0x290 [ 113.742323] ? __pfx_kthread+0x10/0x10 [ 113.742892] ret_from_fork+0x34b/0x430 [ 113.743467] ? __pfx_kthread+0x10/0x10 [ 113.744035] ret_from_fork_asm+0x1a/0x30 [ 113.744659] [ 113.745005] Modules linked in: [ 113.747562] ---[ end trace 0000000000000000 ]--- [ 113.748263] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.750262] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.752912] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 113.753710] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 113.754754] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 113.755806] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.756863] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.757910] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.758954] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.760126] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.760992] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 113.762040] note: kworker/u9:2[40] exited with preempt_count 2 [ 113.815622] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#30] SMP KASAN NOPTI [ 113.817307] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.818548] CPU: 0 UID: 0 PID: 344 Comm: kworker/u10:6 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.820230] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 113.820960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.822136] Workqueue: events_unbound cfg80211_wiphy_work [ 113.822939] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.823622] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.826212] RSP: 0018:ffff8880411b7700 EFLAGS: 00010212 [ 113.826978] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 113.827997] RDX: ffff88801c84d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.829023] RBP: ffff8880411b7970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.830043] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 113.831058] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.832079] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.833266] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.834105] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 113.835124] Call Trace: [ 113.835503] [ 113.835841] ? __pfx_perf_tp_event+0x10/0x10 [ 113.836494] ? kvm_sched_clock_read+0x16/0x30 [ 113.837186] ? sched_clock+0x37/0x60 [ 113.837746] ? sched_clock_cpu+0x6c/0x4e0 [ 113.838353] ? lock_acquire+0x18c/0x2f0 [ 113.838939] ? lock_release+0x1c7/0x290 [ 113.839521] ? __perf_event_task_sched_in+0x235/0x5e0 [ 113.840264] ? __pfx___perf_event_task_sched_in+0x10/0x10 [ 113.841061] ? update_load_avg+0x17d/0x1ef0 [ 113.841690] ? lock_acquire+0x18c/0x2f0 [ 113.842270] ? xfd_validate_state+0x55/0x180 [ 113.842921] ? lock_release+0x1c7/0x290 [ 113.843505] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.844270] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.845004] perf_trace_run_bpf_submit+0xef/0x180 [ 113.845717] perf_trace_contention_begin+0x235/0x3e0 [ 113.846458] ? __pfx___schedule+0x10/0x10 [ 113.847069] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 113.847882] ? lock_acquire+0x18c/0x2f0 [ 113.848466] trace_contention_begin+0xae/0x110 [ 113.849146] __mutex_lock+0x14b/0x1020 [ 113.849731] ? cfg80211_wiphy_work+0x7e/0x480 [ 113.850389] ? cfg80211_wiphy_work+0x7e/0x480 [ 113.851051] ? lock_release+0x1c7/0x290 [ 113.851632] ? lock_release+0x1c7/0x290 [ 113.852212] ? __pfx___mutex_lock+0x10/0x10 [ 113.852857] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 113.853604] ? __pfx_try_to_wake_up+0x10/0x10 [ 113.854269] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.855027] cfg80211_wiphy_work+0x7e/0x480 [ 113.855655] process_one_work+0x8e1/0x19c0 [ 113.856280] ? __pfx_process_one_work+0x10/0x10 [ 113.856977] ? move_linked_works+0x172/0x270 [ 113.857636] ? assign_work+0x196/0x240 [ 113.858205] worker_thread+0x67e/0xe90 [ 113.858778] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.859532] ? __pfx_worker_thread+0x10/0x10 [ 113.860184] kthread+0x3c8/0x740 [ 113.860692] ? __pfx_kthread+0x10/0x10 [ 113.861262] ? ret_from_fork+0x23/0x430 [ 113.861858] ? lock_release+0xc8/0x290 [ 113.862427] ? __pfx_kthread+0x10/0x10 [ 113.862998] ret_from_fork+0x34b/0x430 [ 113.863578] ? __pfx_kthread+0x10/0x10 [ 113.864147] ret_from_fork_asm+0x1a/0x30 [ 113.864761] [ 113.865104] Modules linked in: [ 113.865679] ---[ end trace 0000000000000000 ]--- [ 113.866363] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.867079] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.869690] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 113.870481] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 113.871520] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 113.872560] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 113.873622] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.874663] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.875711] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.876900] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.877764] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 113.878927] note: kworker/u10:6[344] exited with preempt_count 2 [ 115.170262] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#31] SMP KASAN NOPTI [ 115.171947] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 115.173200] CPU: 0 UID: 0 PID: 2 Comm: kthreadd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.174811] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 115.175529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.176710] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.177402] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.179990] RSP: 0018:ffff88800955f640 EFLAGS: 00010212 [ 115.180766] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 115.181785] RDX: ffff8880094f9b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 115.182803] RBP: ffff88800955f8b0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.183817] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 115.184842] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.185861] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.187002] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.187834] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.188859] Call Trace: [ 115.189242] [ 115.189574] ? stack_depot_save_flags+0x2c/0xa20 [ 115.190279] ? __pfx_perf_tp_event+0x10/0x10 [ 115.190930] ? lock_release+0x1c7/0x290 [ 115.191513] ? unwind_next_frame+0x3bc/0x2540 [ 115.192181] ? ret_from_fork_asm+0x1a/0x30 [ 115.192812] ? ret_from_fork_asm+0x1a/0x30 [ 115.193428] ? kernel_text_address+0x11/0xc0 [ 115.194072] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 115.194859] ? arch_stack_walk+0x86/0xf0 [ 115.195449] ? lock_acquire+0x18c/0x2f0 [ 115.196031] ? __pfx_call_function_single_prep_ipi+0x10/0x10 [ 115.196877] ? trace_ipi_send_cpu.constprop.0+0x158/0x1c0 [ 115.197697] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.198436] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 115.199123] perf_trace_run_bpf_submit+0xef/0x180 [ 115.199849] perf_trace_contention_begin+0x235/0x3e0 [ 115.200606] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 115.201423] ? lock_acquire+0x18c/0x2f0 [ 115.202006] ? __pfx_idr_replace+0x10/0x10 [ 115.202630] ? lock_release+0x1c7/0x290 [ 115.203222] trace_contention_begin+0xcd/0x140 [ 115.203901] __percpu_down_read+0xd5/0x140 [ 115.204521] cgroup_can_fork+0xef0/0x13c0 [ 115.205149] ? __raw_spin_lock_init+0x3a/0x110 [ 115.205826] ? lockdep_init_map_type+0x4b/0x240 [ 115.206510] ? debug_mutex_init+0x37/0x70 [ 115.207128] copy_process+0x4d95/0x73c0 [ 115.207726] ? __pfx_copy_process+0x10/0x10 [ 115.208366] ? __update_load_avg_se+0x428/0xa40 [ 115.209063] ? lock_release+0x1c7/0x290 [ 115.209648] kernel_clone+0xea/0x7f0 [ 115.210201] ? lock_is_held_type+0x9e/0x120 [ 115.210843] ? __pfx_kernel_clone+0x10/0x10 [ 115.211465] ? lock_release+0x1c7/0x290 [ 115.212054] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.212830] ? finish_task_switch.isra.0+0x206/0x840 [ 115.213584] ? trace_sched_exit_tp+0xbf/0x100 [ 115.214246] ? __pfx_kthread+0x10/0x10 [ 115.214819] kernel_thread+0xd7/0x120 [ 115.215377] ? __pfx_kernel_thread+0x10/0x10 [ 115.216024] ? __pfx_kthread+0x10/0x10 [ 115.216603] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 115.217317] ? lock_release+0xc8/0x290 [ 115.217889] ? lock_release+0x1c7/0x290 [ 115.218479] kthreadd+0x4ab/0x760 [ 115.219000] ? lock_release+0xc8/0x290 [ 115.219575] ? __pfx_kthreadd+0x10/0x10 [ 115.220163] ret_from_fork+0x34b/0x430 [ 115.220756] ? __pfx_kthreadd+0x10/0x10 [ 115.221339] ret_from_fork_asm+0x1a/0x30 [ 115.221944] [ 115.222286] Modules linked in: [ 115.222841] ---[ end trace 0000000000000000 ]--- [ 115.223567] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.224255] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.227496] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 115.228460] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 115.229663] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 115.230909] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.232112] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.233343] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.234854] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.236432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.237594] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.238661] note: kthreadd[2] exited with preempt_count 2 [ 115.249460] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#32] SMP KASAN NOPTI [ 115.251328] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 115.252569] CPU: 0 UID: 0 PID: 342 Comm: kworker/u10:5 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.254282] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 115.255000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.256179] Workqueue: events_unbound cfg80211_wiphy_work [ 115.256991] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.257687] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.260289] RSP: 0018:ffff8880411af700 EFLAGS: 00010212 [ 115.261065] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 115.262095] RDX: ffff888041075280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 115.263117] RBP: ffff8880411af970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.264150] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 115.265179] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.266210] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.267361] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.268193] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.269243] Call Trace: [ 115.269620] [ 115.269959] ? __pfx_perf_tp_event+0x10/0x10 [ 115.270614] ? arch_stack_walk+0x86/0xf0 [ 115.271215] ? ret_from_fork_asm+0x1a/0x30 [ 115.271839] ? stack_trace_save+0x8e/0xc0 [ 115.272445] ? stack_depot_save_flags+0x2c/0xa20 [ 115.273144] ? kasan_save_stack+0x34/0x50 [ 115.273753] ? kasan_save_stack+0x24/0x50 [ 115.274366] ? kasan_save_track+0x14/0x30 [ 115.274972] ? __kasan_save_free_info+0x3a/0x60 [ 115.275654] ? __kasan_slab_free+0x3f/0x50 [ 115.276274] ? kmem_cache_free+0x2a1/0x540 [ 115.276892] ? ext4_end_io_end+0x13f/0x4b0 [ 115.277523] ? ext4_end_io_rsv_work+0x1b9/0x310 [ 115.278208] ? process_one_work+0x8e1/0x19c0 [ 115.278856] ? worker_thread+0x67e/0xe90 [ 115.279450] ? kthread+0x3c8/0x740 [ 115.279979] ? ret_from_fork+0x34b/0x430 [ 115.280585] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.281334] perf_trace_run_bpf_submit+0xef/0x180 [ 115.282054] perf_trace_contention_begin+0x235/0x3e0 [ 115.282791] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 115.283605] ? lock_acquire+0x18c/0x2f0 [ 115.284200] trace_contention_begin+0xae/0x110 [ 115.284896] __mutex_lock+0x14b/0x1020 [ 115.285475] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.286150] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.286803] ? lock_release+0x1c7/0x290 [ 115.287392] ? __pfx___mutex_lock+0x10/0x10 [ 115.288027] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 115.288787] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.289547] ? __pfx_try_to_wake_up+0x10/0x10 [ 115.290223] ? do_raw_spin_lock+0x123/0x260 [ 115.290862] cfg80211_wiphy_work+0x7e/0x480 [ 115.291492] process_one_work+0x8e1/0x19c0 [ 115.292115] ? __pfx_process_one_work+0x10/0x10 [ 115.292804] ? move_linked_works+0x172/0x270 [ 115.293454] ? assign_work+0x196/0x240 [ 115.294024] worker_thread+0x67e/0xe90 [ 115.294595] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.295351] ? __pfx_worker_thread+0x10/0x10 [ 115.296009] kthread+0x3c8/0x740 [ 115.296522] ? __pfx_kthread+0x10/0x10 [ 115.297094] ? ret_from_fork+0x23/0x430 [ 115.297688] ? lock_release+0xc8/0x290 [ 115.298262] ? __pfx_kthread+0x10/0x10 [ 115.298827] ret_from_fork+0x34b/0x430 [ 115.299404] ? __pfx_kthread+0x10/0x10 [ 115.299972] ret_from_fork_asm+0x1a/0x30 [ 115.300577] [ 115.300938] Modules linked in: [ 115.301537] ---[ end trace 0000000000000000 ]--- [ 115.302332] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.303278] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.306289] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 115.307082] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 115.308129] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 115.309183] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.310226] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.311278] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.312329] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.313529] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.314368] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.315437] note: kworker/u10:5[342] exited with preempt_count 2 [ 115.351557] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#33] SMP KASAN NOPTI [ 115.353175] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 115.354408] CPU: 0 UID: 0 PID: 236 Comm: kworker/u10:3 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.356078] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 115.356802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.358016] Workqueue: events_unbound cfg80211_wiphy_work [ 115.358833] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.359520] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.362281] RSP: 0018:ffff88800f64f700 EFLAGS: 00010212 [ 115.363248] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 115.364275] RDX: ffff88801c849b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 115.365320] RBP: ffff88800f64f970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.366348] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 115.367386] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.368419] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.369586] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.370434] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.371463] Call Trace: [ 115.371848] [ 115.372193] ? __pfx_perf_tp_event+0x10/0x10 [ 115.372868] ? arch_stack_walk+0x86/0xf0 [ 115.373467] ? ret_from_fork_asm+0x1a/0x30 [ 115.374095] ? stack_trace_save+0x8e/0xc0 [ 115.374711] ? stack_depot_save_flags+0x2c/0xa20 [ 115.375410] ? kasan_save_stack+0x34/0x50 [ 115.376022] ? kasan_save_stack+0x24/0x50 [ 115.376634] ? kasan_save_track+0x14/0x30 [ 115.377237] ? __kasan_save_free_info+0x3a/0x60 [ 115.377914] ? __kasan_slab_free+0x3f/0x50 [ 115.378542] ? kmem_cache_free+0x2a1/0x540 [ 115.379158] ? ext4_end_io_end+0x13f/0x4b0 [ 115.379781] ? ext4_end_io_rsv_work+0x1b9/0x310 [ 115.380476] ? process_one_work+0x8e1/0x19c0 [ 115.381137] ? worker_thread+0x67e/0xe90 [ 115.381741] ? kthread+0x3c8/0x740 [ 115.382261] ? ret_from_fork+0x34b/0x430 [ 115.382867] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.383608] perf_trace_run_bpf_submit+0xef/0x180 [ 115.384322] perf_trace_contention_begin+0x235/0x3e0 [ 115.385077] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 115.385892] ? lock_acquire+0x18c/0x2f0 [ 115.386478] trace_contention_begin+0xae/0x110 [ 115.387152] __mutex_lock+0x14b/0x1020 [ 115.387739] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.388404] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.389074] ? lock_release+0x1c7/0x290 [ 115.389663] ? __pfx___mutex_lock+0x10/0x10 [ 115.390303] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 115.391051] ? __pfx_try_to_wake_up+0x10/0x10 [ 115.391716] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.392479] cfg80211_wiphy_work+0x7e/0x480 [ 115.393118] process_one_work+0x8e1/0x19c0 [ 115.393740] ? __pfx_process_one_work+0x10/0x10 [ 115.394432] ? move_linked_works+0x172/0x270 [ 115.395088] ? assign_work+0x196/0x240 [ 115.395665] worker_thread+0x67e/0xe90 [ 115.396247] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.397020] ? __pfx_worker_thread+0x10/0x10 [ 115.397665] kthread+0x3c8/0x740 [ 115.398166] ? __pfx_kthread+0x10/0x10 [ 115.398734] ? ret_from_fork+0x23/0x430 [ 115.399320] ? lock_release+0xc8/0x290 [ 115.399889] ? __pfx_kthread+0x10/0x10 [ 115.400458] ret_from_fork+0x34b/0x430 [ 115.401053] ? __pfx_kthread+0x10/0x10 [ 115.401628] ret_from_fork_asm+0x1a/0x30 [ 115.402228] [ 115.402573] Modules linked in: [ 115.403161] ---[ end trace 0000000000000000 ]--- [ 115.403907] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.404627] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.407239] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 115.408038] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 115.409094] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 115.410136] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.411204] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.412236] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.413304] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.414483] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.415334] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.416395] note: kworker/u10:3[236] exited with preempt_count 2 [ 115.453956] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#34] SMP KASAN NOPTI [ 115.455583] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 115.456849] CPU: 0 UID: 0 PID: 2660 Comm: kworker/u10:8 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.458549] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 115.459272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.460457] Workqueue: events_unbound cfg80211_wiphy_work [ 115.461278] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.461973] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.464603] RSP: 0018:ffff888040fbf700 EFLAGS: 00010212 [ 115.465369] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 115.466400] RDX: ffff88801c18b700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 115.467432] RBP: ffff888040fbf970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.468465] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 115.469518] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.470561] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.471717] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.472567] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.473611] Call Trace: [ 115.474001] [ 115.474341] ? __pfx_perf_tp_event+0x10/0x10 [ 115.475014] ? ret_from_fork_asm+0x1a/0x30 [ 115.475644] ? stack_trace_save+0x8e/0xc0 [ 115.476266] ? stack_depot_save_flags+0x2c/0xa20 [ 115.476978] ? kasan_save_stack+0x34/0x50 [ 115.477594] ? kasan_save_stack+0x24/0x50 [ 115.478218] ? kasan_save_track+0x14/0x30 [ 115.478833] ? __kasan_save_free_info+0x3a/0x60 [ 115.479524] ? __kasan_slab_free+0x3f/0x50 [ 115.480157] ? kmem_cache_free+0x2a1/0x540 [ 115.480786] ? kfree_skbmem+0x18a/0x1f0 [ 115.481382] ? sk_skb_reason_drop+0x10e/0x1b0 [ 115.482059] ? ieee80211_iface_work+0x43c/0x1220 [ 115.482763] ? cfg80211_wiphy_work+0x245/0x480 [ 115.483441] ? process_one_work+0x8e1/0x19c0 [ 115.484101] ? worker_thread+0x67e/0xe90 [ 115.484711] ? kthread+0x3c8/0x740 [ 115.485240] ? ret_from_fork+0x34b/0x430 [ 115.485868] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.486622] perf_trace_run_bpf_submit+0xef/0x180 [ 115.487344] perf_trace_contention_begin+0x235/0x3e0 [ 115.488101] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 115.488944] ? lock_acquire+0x18c/0x2f0 [ 115.489539] trace_contention_begin+0xae/0x110 [ 115.490228] __mutex_lock+0x14b/0x1020 [ 115.490822] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.491487] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.492164] ? lock_release+0x1c7/0x290 [ 115.492775] ? __pfx___mutex_lock+0x10/0x10 [ 115.493426] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 115.494189] ? __pfx_try_to_wake_up+0x10/0x10 [ 115.494859] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.495630] cfg80211_wiphy_work+0x7e/0x480 [ 115.496272] process_one_work+0x8e1/0x19c0 [ 115.496915] ? __pfx_process_one_work+0x10/0x10 [ 115.497612] ? move_linked_works+0x172/0x270 [ 115.498281] ? assign_work+0x196/0x240 [ 115.498878] worker_thread+0x67e/0xe90 [ 115.499469] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.500242] ? __pfx_worker_thread+0x10/0x10 [ 115.500910] kthread+0x3c8/0x740 [ 115.501423] ? __pfx_kthread+0x10/0x10 [ 115.502020] ? ret_from_fork+0x23/0x430 [ 115.502634] ? lock_release+0xc8/0x290 [ 115.503225] ? __pfx_kthread+0x10/0x10 [ 115.503823] ret_from_fork+0x34b/0x430 [ 115.504417] ? __pfx_kthread+0x10/0x10 [ 115.505017] ret_from_fork_asm+0x1a/0x30 [ 115.505627] [ 115.505983] Modules linked in: [ 115.506518] ---[ end trace 0000000000000000 ]--- [ 115.507222] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.507946] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.510620] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 115.511425] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 115.512506] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 115.513578] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.514638] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.515713] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.516792] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.517999] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.518893] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.519972] note: kworker/u10:8[2660] exited with preempt_count 2 [ 115.556471] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#35] SMP KASAN NOPTI [ 115.558143] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 115.559406] CPU: 0 UID: 0 PID: 338 Comm: kworker/u10:4 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.561156] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 115.561886] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.563093] Workqueue: events_unbound cfg80211_wiphy_work [ 115.563896] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.564581] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.567181] RSP: 0018:ffff888041197700 EFLAGS: 00010212 [ 115.567948] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 115.568980] RDX: ffff888041073700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 115.570000] RBP: ffff888041197970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.571025] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 115.572038] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.573068] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.574215] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.575048] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.576079] Call Trace: [ 115.576469] [ 115.576815] ? __pfx_perf_tp_event+0x10/0x10 [ 115.577468] ? ret_from_fork_asm+0x1a/0x30 [ 115.578094] ? stack_trace_save+0x8e/0xc0 [ 115.578702] ? stack_depot_save_flags+0x2c/0xa20 [ 115.579398] ? kasan_save_stack+0x34/0x50 [ 115.580003] ? kasan_save_stack+0x24/0x50 [ 115.580625] ? kasan_save_track+0x14/0x30 [ 115.581239] ? __kasan_save_free_info+0x3a/0x60 [ 115.581917] ? __kasan_slab_free+0x3f/0x50 [ 115.582535] ? kmem_cache_free+0x2a1/0x540 [ 115.583146] ? kfree_skbmem+0x18a/0x1f0 [ 115.583723] ? sk_skb_reason_drop+0x10e/0x1b0 [ 115.584379] ? ieee80211_iface_work+0x43c/0x1220 [ 115.585100] ? cfg80211_wiphy_work+0x245/0x480 [ 115.585763] ? process_one_work+0x8e1/0x19c0 [ 115.586425] ? worker_thread+0x67e/0xe90 [ 115.587031] ? kthread+0x3c8/0x740 [ 115.587552] ? ret_from_fork+0x34b/0x430 [ 115.588165] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.588897] ? queued_spin_lock_slowpath+0xe8/0xb60 [ 115.589624] perf_trace_run_bpf_submit+0xef/0x180 [ 115.590329] perf_trace_contention_begin+0x235/0x3e0 [ 115.591077] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 115.591887] ? lock_acquire+0x18c/0x2f0 [ 115.592482] trace_contention_begin+0xae/0x110 [ 115.593159] __mutex_lock+0x14b/0x1020 [ 115.593735] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.594386] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.595050] ? lock_release+0x1c7/0x290 [ 115.595635] ? __pfx___mutex_lock+0x10/0x10 [ 115.596270] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 115.597021] ? __pfx_try_to_wake_up+0x10/0x10 [ 115.597685] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.598443] cfg80211_wiphy_work+0x7e/0x480 [ 115.599072] process_one_work+0x8e1/0x19c0 [ 115.599687] ? __pfx_process_one_work+0x10/0x10 [ 115.600377] ? move_linked_works+0x172/0x270 [ 115.601050] ? assign_work+0x196/0x240 [ 115.601639] worker_thread+0x67e/0xe90 [ 115.602215] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.602970] ? __pfx_worker_thread+0x10/0x10 [ 115.603625] kthread+0x3c8/0x740 [ 115.604135] ? __pfx_kthread+0x10/0x10 [ 115.604704] ? ret_from_fork+0x23/0x430 [ 115.605307] ? lock_release+0xc8/0x290 [ 115.605885] ? __pfx_kthread+0x10/0x10 [ 115.606461] ret_from_fork+0x34b/0x430 [ 115.607036] ? __pfx_kthread+0x10/0x10 [ 115.607603] ret_from_fork_asm+0x1a/0x30 [ 115.608206] [ 115.608550] Modules linked in: [ 115.609073] ---[ end trace 0000000000000000 ]--- [ 115.609791] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.610502] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.613142] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 115.613947] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 115.615003] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 115.616052] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.617135] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.618193] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.619243] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.620430] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.621282] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.622334] note: kworker/u10:4[338] exited with preempt_count 2 [ 115.659298] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#36] SMP KASAN NOPTI [ 115.660969] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 115.662232] CPU: 0 UID: 0 PID: 49 Comm: kworker/u10:2 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.663922] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 115.664647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.665832] Workqueue: events_unbound cfg80211_wiphy_work [ 115.666622] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.667314] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.669909] RSP: 0018:ffff88800afdf700 EFLAGS: 00010212 [ 115.670665] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 115.671715] RDX: ffff88800aecb700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 115.672742] RBP: ffff88800afdf970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.673764] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 115.674780] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.675798] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.676956] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.677788] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.678816] Call Trace: [ 115.679201] [ 115.679538] ? mark_held_locks+0x49/0x80 [ 115.680147] ? __pfx_perf_tp_event+0x10/0x10 [ 115.680833] ? put_task_struct_rcu_user+0x75/0xc0 [ 115.681540] ? release_task+0xcd4/0x1870 [ 115.682134] ? __lock_acquire+0xc65/0x1b70 [ 115.682755] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.683492] perf_trace_run_bpf_submit+0xef/0x180 [ 115.684205] perf_trace_contention_begin+0x235/0x3e0 [ 115.684962] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 115.685766] ? lock_acquire+0x18c/0x2f0 [ 115.686351] trace_contention_begin+0xae/0x110 [ 115.687038] __mutex_lock+0x14b/0x1020 [ 115.687619] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.688283] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.688964] ? lock_release+0x1c7/0x290 [ 115.689549] ? __pfx___mutex_lock+0x10/0x10 [ 115.690185] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 115.690930] ? __pfx_try_to_wake_up+0x10/0x10 [ 115.691593] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.692367] cfg80211_wiphy_work+0x7e/0x480 [ 115.693001] process_one_work+0x8e1/0x19c0 [ 115.693620] ? __pfx_process_one_work+0x10/0x10 [ 115.694299] ? move_linked_works+0x172/0x270 [ 115.694950] ? assign_work+0x196/0x240 [ 115.695523] worker_thread+0x67e/0xe90 [ 115.696100] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.696871] ? __pfx_worker_thread+0x10/0x10 [ 115.697522] kthread+0x3c8/0x740 [ 115.698021] ? __pfx_kthread+0x10/0x10 [ 115.698592] ? ret_from_fork+0x23/0x430 [ 115.699186] ? lock_release+0xc8/0x290 [ 115.699760] ? __pfx_kthread+0x10/0x10 [ 115.700327] ret_from_fork+0x34b/0x430 [ 115.700922] ? __pfx_kthread+0x10/0x10 [ 115.701489] ret_from_fork_asm+0x1a/0x30 [ 115.702091] [ 115.702443] Modules linked in: [ 115.703478] ---[ end trace 0000000000000000 ]--- [ 115.704184] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.705142] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.707770] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 115.708559] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 115.709618] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 115.710676] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.711728] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.712781] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.713832] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.715011] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.715894] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.716965] note: kworker/u10:2[49] exited with preempt_count 2 [ 115.761520] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#37] SMP KASAN NOPTI [ 115.763131] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 115.764369] CPU: 0 UID: 0 PID: 44 Comm: kworker/u10:1 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.766056] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 115.766789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.767970] Workqueue: events_unbound cfg80211_wiphy_work [ 115.768779] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.769461] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.772056] RSP: 0018:ffff88800a4af700 EFLAGS: 00010212 [ 115.772837] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 115.773853] RDX: ffff88800a3f9b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 115.774867] RBP: ffff88800a4af970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.775883] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 115.776904] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.777933] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.779079] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.779912] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.780944] Call Trace: [ 115.781326] [ 115.781663] ? __pfx_perf_tp_event+0x10/0x10 [ 115.782317] ? lock_release+0x1c7/0x290 [ 115.782902] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.783660] ? lock_acquire+0x18c/0x2f0 [ 115.784248] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 115.784996] ? fprop_reflect_period_percpu.isra.0+0x4b/0x300 [ 115.785855] ? fprop_fraction_percpu+0x1da/0x340 [ 115.786542] ? do_raw_spin_lock+0x123/0x260 [ 115.787172] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 115.787857] ? lock_acquire+0x18c/0x2f0 [ 115.788436] ? __wb_calc_thresh+0x309/0x4b0 [ 115.789078] ? _raw_spin_lock_irqsave+0x42/0x60 [ 115.789759] ? lock_release+0x1c7/0x290 [ 115.790337] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.791070] ? __mod_timer+0x874/0xcc0 [ 115.791649] perf_trace_run_bpf_submit+0xef/0x180 [ 115.792358] perf_trace_contention_begin+0x235/0x3e0 [ 115.793109] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 115.793924] ? lock_acquire+0x18c/0x2f0 [ 115.794509] trace_contention_begin+0xae/0x110 [ 115.795183] __mutex_lock+0x14b/0x1020 [ 115.795774] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.796432] ? cfg80211_wiphy_work+0x7e/0x480 [ 115.797110] ? lock_release+0x1c7/0x290 [ 115.797692] ? __pfx___mutex_lock+0x10/0x10 [ 115.798332] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 115.799086] ? __pfx_try_to_wake_up+0x10/0x10 [ 115.799761] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.800525] cfg80211_wiphy_work+0x7e/0x480 [ 115.801177] process_one_work+0x8e1/0x19c0 [ 115.801820] ? __pfx_process_one_work+0x10/0x10 [ 115.802517] ? move_linked_works+0x172/0x270 [ 115.803180] ? assign_work+0x196/0x240 [ 115.803770] worker_thread+0x67e/0xe90 [ 115.804365] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 115.805161] ? __pfx_worker_thread+0x10/0x10 [ 115.805833] kthread+0x3c8/0x740 [ 115.806353] ? __pfx_kthread+0x10/0x10 [ 115.806936] ? ret_from_fork+0x23/0x430 [ 115.807549] ? lock_release+0xc8/0x290 [ 115.808139] ? __pfx_kthread+0x10/0x10 [ 115.808733] ret_from_fork+0x34b/0x430 [ 115.809326] ? __pfx_kthread+0x10/0x10 [ 115.809916] ret_from_fork_asm+0x1a/0x30 [ 115.810535] [ 115.810887] Modules linked in: [ 115.811409] ---[ end trace 0000000000000000 ]--- [ 115.812110] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.812857] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.815567] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 115.816349] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 115.817441] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 115.818513] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.819597] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.820665] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.821747] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.822957] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.823839] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.824922] note: kworker/u10:1[44] exited with preempt_count 2 [ 115.966320] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#38] SMP KASAN NOPTI [ 115.968039] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 115.969334] CPU: 0 UID: 0 PID: 26 Comm: kworker/u10:0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.971063] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 115.971816] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.973037] Workqueue: events_unbound cfg80211_wiphy_work [ 115.973869] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.974571] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.977250] RSP: 0018:ffff888009777700 EFLAGS: 00010212 [ 115.978027] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 115.979076] RDX: ffff888009753700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 115.980124] RBP: ffff888009777970 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 115.981184] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 115.982224] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.983278] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.984458] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.985328] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 115.986360] Call Trace: [ 115.986756] [ 115.987110] ? __pfx_perf_tp_event+0x10/0x10 [ 115.987788] ? ret_from_fork_asm+0x1a/0x30 [ 115.988418] ? stack_trace_save+0x8e/0xc0 [ 115.989064] ? stack_depot_save_flags+0x2c/0xa20 [ 115.989769] ? kasan_save_stack+0x34/0x50 [ 115.990401] ? kasan_save_stack+0x24/0x50 [ 115.991022] ? kasan_save_track+0x14/0x30 [ 115.991652] ? __kasan_save_free_info+0x3a/0x60 [ 115.992343] ? __kasan_slab_free+0x3f/0x50 [ 115.992984] ? kmem_cache_free+0x2a1/0x540 [ 115.993618] ? kfree_skbmem+0x18a/0x1f0 [ 115.994216] ? sk_skb_reason_drop+0x10e/0x1b0 [ 115.994891] ? ieee80211_iface_work+0x43c/0x1220 [ 115.995599] ? cfg80211_wiphy_work+0x245/0x480 [ 115.996289] ? process_one_work+0x8e1/0x19c0 [ 115.996972] ? worker_thread+0x67e/0xe90 [ 115.997581] ? kthread+0x3c8/0x740 [ 115.998118] ? ret_from_fork+0x34b/0x430 [ 115.998734] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.999488] perf_trace_run_bpf_submit+0xef/0x180 [ 116.000208] perf_trace_contention_begin+0x235/0x3e0 [ 116.000978] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 116.001809] ? ieee80211_sta_last_active+0x123/0x240 [ 116.002563] ? lock_acquire+0x18c/0x2f0 [ 116.003158] ? trace_pelt_se_tp+0xdf/0x130 [ 116.003785] trace_contention_begin+0xae/0x110 [ 116.004460] __mutex_lock+0x14b/0x1020 [ 116.005062] ? cfg80211_wiphy_work+0x7e/0x480 [ 116.005724] ? cfg80211_wiphy_work+0x7e/0x480 [ 116.006389] ? __pfx___mutex_lock+0x10/0x10 [ 116.007035] ? __pfx___perf_event_task_sched_in+0x10/0x10 [ 116.007849] ? lock_acquire+0x18c/0x2f0 [ 116.008436] ? lock_release+0x1c7/0x290 [ 116.009039] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 116.009807] cfg80211_wiphy_work+0x7e/0x480 [ 116.010438] process_one_work+0x8e1/0x19c0 [ 116.011068] ? __pfx_process_one_work+0x10/0x10 [ 116.011754] ? move_linked_works+0x172/0x270 [ 116.012416] ? assign_work+0x196/0x240 [ 116.013006] worker_thread+0x67e/0xe90 [ 116.013579] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 116.014340] ? __pfx_worker_thread+0x10/0x10 [ 116.015002] kthread+0x3c8/0x740 [ 116.015510] ? __pfx_kthread+0x10/0x10 [ 116.016080] ? ret_from_fork+0x23/0x430 [ 116.016696] ? lock_release+0xc8/0x290 [ 116.017269] ? __pfx_kthread+0x10/0x10 [ 116.017846] ret_from_fork+0x34b/0x430 [ 116.018435] ? __pfx_kthread+0x10/0x10 [ 116.019009] ret_from_fork_asm+0x1a/0x30 [ 116.019616] [ 116.019962] Modules linked in: [ 116.020502] ---[ end trace 0000000000000000 ]--- [ 116.021218] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.021938] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.024570] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 116.025358] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 116.026428] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 116.027468] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 116.028511] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 116.029571] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 116.030627] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 116.031803] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.032677] CR2: 00007f769a430c28 CR3: 000000003d6f4000 CR4: 0000000000350ef0 [ 116.033740] note: kworker/u10:0[26] exited with preempt_count 2 [ 117.096613] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#39] SMP KASAN NOPTI [ 117.098801] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 117.100436] CPU: 0 UID: 0 PID: 3996 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.102634] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 117.103566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.105094] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.105985] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.109336] RSP: 0018:ffff888042fd76c0 EFLAGS: 00010212 [ 117.110325] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 117.111640] RDX: ffff888041540000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 117.112963] RBP: ffff888042fd7930 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 117.114276] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 117.115597] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.116928] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.118412] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.119509] CR2: 00007f769a430c28 CR3: 0000000040725000 CR4: 0000000000350ef0 [ 117.120918] Call Trace: [ 117.121441] [ 117.121907] ? check_preempt_wakeup_fair+0x406/0x950 [ 117.122919] ? __pfx_perf_tp_event+0x10/0x10 [ 117.123816] ? lock_release+0x1c7/0x290 [ 117.124613] ? lock_release+0x1c7/0x290 [ 117.125421] ? do_raw_spin_unlock+0x53/0x220 [ 117.126313] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 117.127335] ? try_to_wake_up+0x8ae/0x11d0 [ 117.128188] ? __pfx_try_to_wake_up+0x10/0x10 [ 117.129110] ? css_rstat_updated+0x1b8/0x4d0 [ 117.130004] ? __pfx_css_rstat_updated+0x10/0x10 [ 117.130954] ? ep_autoremove_wake_function+0x32/0x140 [ 117.131980] ? trace_pelt_se_tp+0xdf/0x130 [ 117.132828] ? __update_load_avg_se+0x428/0xa40 [ 117.133777] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.134779] perf_trace_run_bpf_submit+0xef/0x180 [ 117.135749] perf_trace_contention_begin+0x235/0x3e0 [ 117.136771] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.137875] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.138915] ? lock_acquire+0x18c/0x2f0 [ 117.139716] trace_contention_begin+0xae/0x110 [ 117.140644] __mutex_lock+0x14b/0x1020 [ 117.141440] ? ep_send_events+0xff/0xaa0 [ 117.142250] ? ep_send_events+0xff/0xaa0 [ 117.143062] ? __pfx___mutex_lock+0x10/0x10 [ 117.143926] ? lock_acquire+0x18c/0x2f0 [ 117.144726] ? lock_release+0x1c7/0x290 [ 117.145521] ep_send_events+0xff/0xaa0 [ 117.146296] ? schedule_hrtimeout_range_clock+0x1c0/0x310 [ 117.147377] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10 [ 117.148541] ? __pfx_ep_send_events+0x10/0x10 [ 117.149445] ? do_raw_write_lock+0x11c/0x3a0 [ 117.150325] ? __pfx_do_raw_write_lock+0x10/0x10 [ 117.151270] ? lock_release+0x1c7/0x290 [ 117.152060] do_epoll_wait+0x42e/0xee0 [ 117.152850] ? __pfx_sock_write_iter+0x10/0x10 [ 117.153759] ? __pfx_do_epoll_wait+0x10/0x10 [ 117.154641] ? populate_seccomp_data+0x213/0x540 [ 117.155577] ? __pfx_ep_autoremove_wake_function+0x10/0x10 [ 117.156678] ? __pfx___seccomp_filter+0x10/0x10 [ 117.157607] __x64_sys_epoll_wait+0x15b/0x280 [ 117.158501] ? __pfx___x64_sys_epoll_wait+0x10/0x10 [ 117.159492] ? ksys_write+0x1a3/0x240 [ 117.160258] ? __secure_computing+0x18d/0x290 [ 117.161169] do_syscall_64+0xbf/0x360 [ 117.161927] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.162933] RIP: 0033:0x7f4fa89260d6 [ 117.163658] Code: 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 18 48 89 74 24 [ 117.167111] RSP: 002b:00007ffcdd987df8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8 [ 117.168574] RAX: ffffffffffffffda RBX: 000055b4ec250f10 RCX: 00007f4fa89260d6 [ 117.169947] RDX: 0000000000000002 RSI: 000055b4ec285b00 RDI: 0000000000000003 [ 117.171298] RBP: ffffffffffffffff R08: 000055b4ec285b00 R09: 0000000000000000 [ 117.172662] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 117.173939] R13: 0000000000000002 R14: 000055b4bd6792e6 R15: 0000000000000000 [ 117.175084] [ 117.175465] Modules linked in: [ 117.176129] ---[ end trace 0000000000000000 ]--- [ 117.176932] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.177726] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.180656] RSP: 0018:ffff88800a9ff680 EFLAGS: 00010212 [ 117.181532] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002 [ 117.182726] RDX: ffff88800b5d5280 RSI: ffffffff8189a4e7 RDI: 0000000200000190 [ 117.183865] RBP: ffff88800a9ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc169c0 [ 117.185019] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.186166] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.187320] FS: 00007f4fa84678c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.188607] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.189571] CR2: 00007f769a430c28 CR3: 0000000040725000 CR4: 0000000000350ef0 [ 117.190711] note: systemd-udevd[3996] exited with preempt_count 2 VM DIAGNOSIS: 08:13:52 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=0000000000000000 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff85cff1c0 RBP=ffffffff85cff1c0 RSP=ffff88801743fab0 R8 =0000000000000001 R9 =0000000000000000 R10=ffff88801743fbb8 R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=ffffffff81b35c0b RIP=ffffffff8151dc57 RFL=00000247 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 000055556edaf400 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe4f00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd13750b718 CR3=0000000041c5a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=000000000000000000000000000000ff XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007fd13a09d7c800007fd13a09d7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffff8880000bf100 RBX=ffff888008cd1000 RCX=0000000000000000 RDX=0000000000000f00 RSI=ffff8880000b8f00 RDI=ffff8880000c0000 RBP=ffff8880000b8000 RSP=ffff8880169cf700 R8 =ffff8880000b8f00 R9 =ffffed1000017fff R10=ffff8880000bfff8 R11=0720072007200720 R12=0000000000000001 R13=ffff8880000b8000 R14=ffff888008cd13d8 R15=00000000000000a0 RIP=ffffffff84bbf361 RFL=00010212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3612294700 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe4500000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000200000c0 CR3=0000000041fed000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffff00ffffffffffffffff XMM02=7269762f736563697665642f7379732f XMM03=6c622f6c6175747269762f7365636976 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055b4ec271380000055b4ec27d1d0 XMM06=00000000000000000000000300000004 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000020000000000000002000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000