Warning: Permanently added '[localhost]:42913' (ECDSA) to the list of known hosts. 2025/09/01 08:15:00 fuzzer started 2025/09/01 08:15:00 dialing manager at localhost:35473 syzkaller login: [ 59.185858] cgroup: Unknown subsys name 'net' [ 59.240184] cgroup: Unknown subsys name 'cpuset' [ 59.248672] cgroup: Unknown subsys name 'rlimit' 2025/09/01 08:15:12 syscalls: 2214 2025/09/01 08:15:12 code coverage: enabled 2025/09/01 08:15:12 comparison tracing: enabled 2025/09/01 08:15:12 extra coverage: enabled 2025/09/01 08:15:12 setuid sandbox: enabled 2025/09/01 08:15:12 namespace sandbox: enabled 2025/09/01 08:15:12 Android sandbox: enabled 2025/09/01 08:15:12 fault injection: enabled 2025/09/01 08:15:12 leak checking: enabled 2025/09/01 08:15:12 net packet injection: enabled 2025/09/01 08:15:12 net device setup: enabled 2025/09/01 08:15:12 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 08:15:12 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 08:15:12 USB emulation: enabled 2025/09/01 08:15:12 hci packet injection: enabled 2025/09/01 08:15:12 wifi device emulation: enabled 2025/09/01 08:15:12 802.15.4 emulation: enabled 2025/09/01 08:15:12 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 08:15:12 fetching corpus: 26, signal 15889/19009 (executing program) 2025/09/01 08:15:12 fetching corpus: 72, signal 31282/34433 (executing program) 2025/09/01 08:15:12 fetching corpus: 120, signal 41894/44668 (executing program) 2025/09/01 08:15:12 fetching corpus: 167, signal 46654/49409 (executing program) 2025/09/01 08:15:12 fetching corpus: 217, signal 53708/55691 (executing program) 2025/09/01 08:15:12 fetching corpus: 267, signal 58652/59897 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/62481 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/62547 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/62625 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/62704 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/62764 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/62845 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/62917 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/62999 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63058 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63136 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63201 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63270 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63333 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63417 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63500 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63593 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63659 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63743 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63817 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63889 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/63968 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/64039 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/64124 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/64205 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/64271 (executing program) 2025/09/01 08:15:13 fetching corpus: 293, signal 61867/64271 (executing program) 2025/09/01 08:15:15 starting 8 fuzzer processes 08:15:15 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfe, 0x4}, 0xc) 08:15:15 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001ac0)={0x28, r1, 0x5, 0x0, 0x0, {{0x15}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}}, 0x0) 08:15:15 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r2}) sendto$packet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) 08:15:15 executing program 3: r0 = getpid() process_vm_readv(r0, &(0x7f0000000200)=[{&(0x7f0000000080)=""/184, 0x7ffff000}, {&(0x7f0000000140)=""/178, 0xb2}], 0x2, &(0x7f0000000380)=[{0x0}, {0x0}, {0xfffffffffffffffc}, {&(0x7f00000039c0)=""/4095, 0xfff}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0x200000000000000}], 0x9, 0x0) fork() r1 = getpid() process_vm_readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000940)=""/4096, 0x1000}], 0x1, &(0x7f0000000380)=[{0x0}, {0x0}, {&(0x7f0000001940)=""/4095, 0xfff}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x8, 0x0) [ 74.595410] audit: type=1400 audit(1756714515.936:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 08:15:15 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)={@multicast1, @multicast1, 0x2}, 0x10) 08:15:16 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20}}}}}, 0x0) 08:15:16 executing program 7: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x7, 0x1, 0x801}, 0x14}}, 0x0) 08:15:16 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) [ 75.734535] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.737973] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.741138] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.746325] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.749108] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.885966] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 75.892679] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 75.896089] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 75.909505] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 75.924550] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 75.985842] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 75.995887] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.003649] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.009858] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.015906] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.017931] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.022457] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.024674] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.030561] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.033217] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.065273] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 76.072545] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 76.085151] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 76.087092] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 76.089608] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 76.092346] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 76.096562] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 76.097826] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 76.098971] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 76.104701] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 76.106828] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 76.114888] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 76.121716] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 76.122007] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 76.125409] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 76.126750] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 76.142505] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 76.164519] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 76.175587] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 76.221647] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 77.829672] Bluetooth: hci0: command tx timeout [ 77.957332] Bluetooth: hci1: command tx timeout [ 78.086338] Bluetooth: hci2: command tx timeout [ 78.086364] Bluetooth: hci3: command tx timeout [ 78.150109] Bluetooth: hci5: command tx timeout [ 78.150240] Bluetooth: hci4: command tx timeout [ 78.213261] Bluetooth: hci6: command tx timeout [ 78.341267] Bluetooth: hci7: command tx timeout [ 79.880193] Bluetooth: hci0: command tx timeout [ 80.007208] Bluetooth: hci1: command tx timeout [ 80.133376] Bluetooth: hci2: command tx timeout [ 80.133434] Bluetooth: hci3: command tx timeout [ 80.197314] Bluetooth: hci4: command tx timeout [ 80.198956] Bluetooth: hci5: command tx timeout [ 80.261397] Bluetooth: hci6: command tx timeout [ 80.389251] Bluetooth: hci7: command tx timeout [ 81.925298] Bluetooth: hci0: command tx timeout [ 82.054308] Bluetooth: hci1: command tx timeout [ 82.183179] Bluetooth: hci2: command tx timeout [ 82.183218] Bluetooth: hci3: command tx timeout [ 82.246312] Bluetooth: hci5: command tx timeout [ 82.247138] Bluetooth: hci4: command tx timeout [ 82.310336] Bluetooth: hci6: command tx timeout [ 82.438195] Bluetooth: hci7: command tx timeout [ 83.974209] Bluetooth: hci0: command tx timeout [ 84.102272] Bluetooth: hci1: command tx timeout [ 84.231344] Bluetooth: hci3: command tx timeout [ 84.231800] Bluetooth: hci2: command tx timeout [ 84.293228] Bluetooth: hci4: command tx timeout [ 84.293249] Bluetooth: hci5: command tx timeout [ 84.358359] Bluetooth: hci6: command tx timeout [ 84.485252] Bluetooth: hci7: command tx timeout [ 112.674382] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.675036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.687288] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.687865] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.812253] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.812827] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.977933] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.979188] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.980124] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.982305] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.062037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.063321] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.099102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.099983] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.166796] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.167392] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.224969] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.225604] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.280473] ======================================================= [ 113.280473] WARNING: The mand mount option has been deprecated and [ 113.280473] and is ignored by this kernel. Remove the mand [ 113.280473] option from the mount to silence this warning. [ 113.280473] ======================================================= 08:15:54 executing program 3: r0 = getpid() process_vm_readv(r0, &(0x7f0000000200)=[{&(0x7f0000000080)=""/184, 0x7ffff000}, {&(0x7f0000000140)=""/178, 0xb2}], 0x2, &(0x7f0000000380)=[{0x0}, {0x0}, {0xfffffffffffffffc}, {&(0x7f00000039c0)=""/4095, 0xfff}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0x200000000000000}], 0x9, 0x0) fork() r1 = getpid() process_vm_readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000940)=""/4096, 0x1000}], 0x1, &(0x7f0000000380)=[{0x0}, {0x0}, {&(0x7f0000001940)=""/4095, 0xfff}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x8, 0x0) [ 113.312285] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.312885] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:15:54 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) 08:15:54 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) [ 113.379872] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.380486] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:15:54 executing program 7: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x7, 0x1, 0x801}, 0x14}}, 0x0) 08:15:54 executing program 3: r0 = getpid() process_vm_readv(r0, &(0x7f0000000200)=[{&(0x7f0000000080)=""/184, 0x7ffff000}, {&(0x7f0000000140)=""/178, 0xb2}], 0x2, &(0x7f0000000380)=[{0x0}, {0x0}, {0xfffffffffffffffc}, {&(0x7f00000039c0)=""/4095, 0xfff}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0x200000000000000}], 0x9, 0x0) fork() r1 = getpid() process_vm_readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000940)=""/4096, 0x1000}], 0x1, &(0x7f0000000380)=[{0x0}, {0x0}, {&(0x7f0000001940)=""/4095, 0xfff}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x8, 0x0) [ 113.428189] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.428799] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:15:54 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) 08:15:54 executing program 7: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x7, 0x1, 0x801}, 0x14}}, 0x0) 08:15:54 executing program 7: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x7, 0x1, 0x801}, 0x14}}, 0x0) [ 113.520934] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.521893] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.587971] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.588702] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.606327] audit: type=1400 audit(1756714554.946:8): avc: denied { open } for pid=3904 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 113.611237] audit: type=1400 audit(1756714554.946:9): avc: denied { kernel } for pid=3904 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 113.624972] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.625618] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.680811] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.681531] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:15:55 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfe, 0x4}, 0xc) 08:15:55 executing program 7: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) 08:15:55 executing program 3: r0 = getpid() process_vm_readv(r0, &(0x7f0000000200)=[{&(0x7f0000000080)=""/184, 0x7ffff000}, {&(0x7f0000000140)=""/178, 0xb2}], 0x2, &(0x7f0000000380)=[{0x0}, {0x0}, {0xfffffffffffffffc}, {&(0x7f00000039c0)=""/4095, 0xfff}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0x200000000000000}], 0x9, 0x0) fork() r1 = getpid() process_vm_readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000940)=""/4096, 0x1000}], 0x1, &(0x7f0000000380)=[{0x0}, {0x0}, {&(0x7f0000001940)=""/4095, 0xfff}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x8, 0x0) 08:15:55 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) 08:15:55 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)={@multicast1, @multicast1, 0x2}, 0x10) 08:15:55 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20}}}}}, 0x0) 08:15:55 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r2}) sendto$packet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) 08:15:55 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r2}) sendto$packet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) 08:15:55 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r2}) sendto$packet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) 08:15:55 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) 08:15:55 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20}}}}}, 0x0) [ 113.984066] kmemleak: Found object by alias at 0x607f1a639c9c [ 113.984091] CPU: 0 UID: 0 PID: 3936 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.984110] Tainted: [W]=WARN [ 113.984114] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.984122] Call Trace: [ 113.984126] [ 113.984132] dump_stack_lvl+0xca/0x120 [ 113.984170] __lookup_object+0x94/0xb0 [ 113.984189] delete_object_full+0x27/0x70 [ 113.984206] free_percpu+0x30/0x1160 [ 113.984223] ? arch_uprobe_clear_state+0x16/0x140 [ 113.984244] futex_hash_free+0x38/0xc0 [ 113.984260] mmput+0x2d3/0x390 [ 113.984279] do_exit+0x79d/0x2970 [ 113.984293] ? signal_wake_up_state+0x85/0x120 [ 113.984310] ? zap_other_threads+0x2b9/0x3a0 [ 113.984327] ? __pfx_do_exit+0x10/0x10 [ 113.984340] ? do_group_exit+0x1c3/0x2a0 [ 113.984354] ? lock_release+0xc8/0x290 [ 113.984372] do_group_exit+0xd3/0x2a0 [ 113.984387] __x64_sys_exit_group+0x3e/0x50 [ 113.984401] x64_sys_call+0x18c5/0x18d0 [ 113.984418] do_syscall_64+0xbf/0x360 [ 113.984431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.984444] RIP: 0033:0x7f72614cbb19 [ 113.984453] Code: Unable to access opcode bytes at 0x7f72614cbaef. [ 113.984458] RSP: 002b:00007ffd32c3bb58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 113.984471] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f72614cbb19 [ 113.984479] RDX: 00007f726147e72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 113.984486] RBP: 0000000000000000 R08: 0000001b2d721abc R09: 0000000000000000 [ 113.984494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 113.984501] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd32c3bc40 [ 113.984517] [ 113.984521] kmemleak: Object (percpu) 0x607f1a639c98 (size 8): [ 113.984528] kmemleak: comm "syz-executor.1", pid 3934, jiffies 4294780760 [ 113.984535] kmemleak: min_count = 1 [ 113.984539] kmemleak: count = 0 [ 113.984543] kmemleak: flags = 0x21 [ 113.984548] kmemleak: checksum = 0 [ 113.984551] kmemleak: backtrace: [ 113.984555] pcpu_alloc_noprof+0x87a/0x1170 [ 113.984571] perf_trace_event_init+0x366/0xa10 [ 113.984586] perf_trace_init+0x1a4/0x2f0 [ 113.984598] perf_tp_event_init+0xa6/0x120 [ 113.984615] perf_try_init_event+0x140/0x9f0 [ 113.984629] perf_event_alloc.part.0+0x118e/0x45f0 [ 113.984646] __do_sys_perf_event_open+0x719/0x2c20 [ 113.984660] do_syscall_64+0xbf/0x360 [ 113.984670] entry_SYSCALL_64_after_hwframe+0x77/0x7f 08:15:55 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)={@multicast1, @multicast1, 0x2}, 0x10) 08:15:55 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfe, 0x4}, 0xc) 08:15:55 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20}}}}}, 0x0) 08:15:55 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20}}}}}, 0x0) 08:15:55 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) 08:15:55 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r2}) sendto$packet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) 08:15:55 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r2}) sendto$packet(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) 08:15:55 executing program 7: syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0xe, 0x0, 0x20084d0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x0) [ 114.054850] Oops: general protection fault, probably for non-canonical address 0xf2fffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 114.055795] KASAN: maybe wild-memory-access in range [0x9800000000000190-0x9800000000000197] [ 114.056420] CPU: 0 UID: 0 PID: 3945 Comm: syz-executor.2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 114.057880] Tainted: [W]=WARN [ 114.058642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 114.060636] RIP: 0010:perf_tp_event+0x175/0xe70 [ 114.061745] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 114.063342] RSP: 0018:ffff888045337800 EFLAGS: 00010212 [ 114.063750] RAX: 1300000000000032 RBX: 97ffffffffffffa0 RCX: ffffc90004cb0000 [ 114.064274] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 9800000000000190 [ 114.064795] RBP: ffff888045337a70 R08: ffff88806ce31340 R09: ffffe8ffffc11c98 [ 114.065320] R10: 0000000000000000 R11: 0000000000000024 R12: dffffc0000000000 [ 114.065841] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 114.066366] FS: 00007f6390405700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 114.066953] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.067382] CR2: 00007f6392fa3018 CR3: 000000000efed000 CR4: 0000000000350ef0 [ 114.067913] Call Trace: [ 114.068110] [ 114.068296] ? __pfx_perf_tp_event+0x10/0x10 [ 114.068635] ? perf_tp_event+0x807/0xe70 [ 114.068946] ? __pfx_perf_tp_event+0x10/0x10 [ 114.069283] ? __pfx_ctx_sched_in+0x10/0x10 [ 114.069603] ? arch_stack_walk+0x9c/0xf0 [ 114.069912] ? find_held_lock+0x2b/0x80 [ 114.070222] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.070599] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.070979] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.071356] perf_trace_run_bpf_submit+0xef/0x180 [ 114.071730] perf_trace_lock_acquire+0x3c2/0x700 [ 114.072091] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 114.072487] ? futex_ref_get+0x48/0x300 [ 114.072786] ? find_held_lock+0x2b/0x80 [ 114.073092] lock_acquire+0xc5/0x2f0 [ 114.073377] ? futex_wake+0x228/0x540 [ 114.073670] _raw_spin_lock+0x2b/0x40 [ 114.073963] ? futex_wake+0x228/0x540 [ 114.074255] futex_wake+0x228/0x540 [ 114.074536] ? __pfx_futex_wake+0x10/0x10 [ 114.074851] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 114.075231] ? lock_release+0xc8/0x290 [ 114.075530] do_futex+0x26d/0x370 [ 114.075803] ? __pfx_do_futex+0x10/0x10 [ 114.076106] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 114.076504] ? find_held_lock+0x2b/0x80 [ 114.076810] __x64_sys_futex+0x1c9/0x4d0 [ 114.077118] ? __pfx___x64_sys_futex+0x10/0x10 [ 114.077466] ? xfd_validate_state+0x55/0x180 [ 114.077813] do_syscall_64+0xbf/0x360 [ 114.078103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.078486] RIP: 0033:0x7f6392e8fb19 [ 114.078764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.080091] RSP: 002b:00007f6390405218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 114.080649] RAX: ffffffffffffffda RBX: 00007f6392fa2f68 RCX: 00007f6392e8fb19 [ 114.081170] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6392fa2f6c [ 114.081691] RBP: 00007f6392fa2f60 R08: 000000000000000e R09: 0000000000000000 [ 114.082210] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6392fa2f6c [ 114.082729] R13: 00007fffc6b1abff R14: 00007f6390405300 R15: 0000000000022000 [ 114.083257] [ 114.083434] Modules linked in: [ 114.083706] Oops: general protection fault, probably for non-canonical address 0xf2fffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 114.084512] KASAN: maybe wild-memory-access in range [0x9800000000000190-0x9800000000000197] [ 114.085130] CPU: 0 UID: 0 PID: 3945 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 114.085999] Tainted: [D]=DIE, [W]=WARN [ 114.086282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 114.086879] RIP: 0010:perf_tp_event+0x175/0xe70 [ 114.087230] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 114.088563] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 114.088954] RAX: 1300000000000032 RBX: 97ffffffffffffa0 RCX: ffffffff818998a3 [ 114.089643] RDX: ffff88801b539b80 RSI: ffffffff8189a4e7 RDI: 9800000000000190 [ 114.090168] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc11c98 [ 114.090690] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000 [ 114.091215] R13: 0000000000000000 R14: ffff88806ce31490 R15: dffffc0000000000 [ 114.091746] FS: 00007f6390405700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 114.092333] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.092758] CR2: 00007f6392fa3018 CR3: 000000000efed000 CR4: 0000000000350ef0 [ 114.093277] Call Trace: [ 114.093470] [ 114.093685] ? __pfx_perf_tp_event+0x10/0x10 [ 114.094022] ? lock_is_held_type+0x9e/0x120 [ 114.094350] ? lock_is_held_type+0x9e/0x120 [ 114.094679] ? __pick_eevdf+0x326/0x570 [ 114.094984] ? update_curr+0x39e/0x500 [ 114.095278] ? perf_trace_lock_acquire+0xc9/0x700 [ 114.095641] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.096022] ? perf_trace_lock_acquire+0xc9/0x700 [ 114.096381] perf_trace_run_bpf_submit+0xef/0x180 [ 114.096744] perf_trace_lock_acquire+0x3c2/0x700 [ 114.097099] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 114.097453] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 114.097844] ? lock_acquire+0x15e/0x2f0 [ 114.098142] ? find_held_lock+0x2b/0x80 [ 114.098443] ? clockevents_program_event+0x14f/0x360 [ 114.098824] ? lock_release+0xc8/0x290 [ 114.099117] lock_acquire+0xc5/0x2f0 [ 114.099400] ? hrtimer_interrupt+0xd6/0x830 [ 114.099726] ? __pfx_lapic_next_deadline+0x10/0x10 [ 114.100102] _raw_spin_lock_irqsave+0x3a/0x60 [ 114.100440] ? hrtimer_interrupt+0xd6/0x830 [ 114.100759] hrtimer_interrupt+0xd6/0x830 [ 114.101074] __sysvec_apic_timer_interrupt+0xbb/0x330 [ 114.101460] sysvec_apic_timer_interrupt+0x6b/0x80 [ 114.101832] [ 114.102002] [ 114.102174] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 114.102560] RIP: 0010:oops_exit+0x0/0x50 [ 114.102867] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 114.104204] RSP: 0018:ffff888045337690 EFLAGS: 00000202 [ 114.104593] RAX: 0000000000028f8c RBX: 0000000000000216 RCX: ffffc90004cb0000 [ 114.105110] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 114.105628] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 114.106144] R10: 0000000000000000 R11: 000000000000002c R12: ffff888045337758 [ 114.106660] R13: 0000000000000000 R14: f2fffc0000000032 R15: 0000000000000000 [ 114.107187] ? oops_end+0x4a/0xe0 [ 114.107458] oops_end+0x65/0xe0 [ 114.107720] exc_general_protection+0x1a2/0x330 [ 114.108072] asm_exc_general_protection+0x26/0x30 [ 114.108429] RIP: 0010:perf_tp_event+0x175/0xe70 [ 114.108776] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 114.110088] RSP: 0018:ffff888045337800 EFLAGS: 00010212 [ 114.110477] RAX: 1300000000000032 RBX: 97ffffffffffffa0 RCX: ffffc90004cb0000 [ 114.110999] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 9800000000000190 [ 114.111516] RBP: ffff888045337a70 R08: ffff88806ce31340 R09: ffffe8ffffc11c98 [ 114.112038] R10: 0000000000000000 R11: 0000000000000024 R12: dffffc0000000000 [ 114.112555] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 114.113076] ? perf_tp_event+0x167/0xe70 [ 114.113388] ? __pfx_perf_tp_event+0x10/0x10 [ 114.113720] ? perf_tp_event+0x807/0xe70 [ 114.114034] ? __pfx_perf_tp_event+0x10/0x10 [ 114.114368] ? __pfx_ctx_sched_in+0x10/0x10 [ 114.114685] ? arch_stack_walk+0x9c/0xf0 [ 114.114989] ? find_held_lock+0x2b/0x80 [ 114.115295] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.115668] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.116050] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.116422] perf_trace_run_bpf_submit+0xef/0x180 [ 114.116785] perf_trace_lock_acquire+0x3c2/0x700 [ 114.117143] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 114.117533] ? futex_ref_get+0x48/0x300 [ 114.117830] ? find_held_lock+0x2b/0x80 [ 114.118133] lock_acquire+0xc5/0x2f0 [ 114.118414] ? futex_wake+0x228/0x540 [ 114.118706] _raw_spin_lock+0x2b/0x40 [ 114.118994] ? futex_wake+0x228/0x540 [ 114.119281] futex_wake+0x228/0x540 [ 114.119560] ? __pfx_futex_wake+0x10/0x10 [ 114.119885] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 114.120266] ? lock_release+0xc8/0x290 [ 114.120561] do_futex+0x26d/0x370 [ 114.120825] ? __pfx_do_futex+0x10/0x10 [ 114.121122] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 114.121514] ? find_held_lock+0x2b/0x80 [ 114.121816] __x64_sys_futex+0x1c9/0x4d0 [ 114.122121] ? __pfx___x64_sys_futex+0x10/0x10 [ 114.122462] ? xfd_validate_state+0x55/0x180 [ 114.122803] do_syscall_64+0xbf/0x360 [ 114.123088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.123466] RIP: 0033:0x7f6392e8fb19 [ 114.123751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.125062] RSP: 002b:00007f6390405218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 114.125615] RAX: ffffffffffffffda RBX: 00007f6392fa2f68 RCX: 00007f6392e8fb19 [ 114.126133] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6392fa2f6c [ 114.126650] RBP: 00007f6392fa2f60 R08: 000000000000000e R09: 0000000000000000 [ 114.127166] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6392fa2f6c [ 114.127687] R13: 00007fffc6b1abff R14: 00007f6390405300 R15: 0000000000022000 [ 114.128213] [ 114.128389] Modules linked in: [ 114.128633] ---[ end trace 0000000000000000 ]--- [ 114.128979] RIP: 0010:perf_tp_event+0x175/0xe70 [ 114.129331] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 114.130649] RSP: 0018:ffff888045337800 EFLAGS: 00010212 [ 114.131040] RAX: 1300000000000032 RBX: 97ffffffffffffa0 RCX: ffffc90004cb0000 [ 114.131561] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 9800000000000190 [ 114.132086] RBP: ffff888045337a70 R08: ffff88806ce31340 R09: ffffe8ffffc11c98 [ 114.132607] R10: 0000000000000000 R11: 0000000000000024 R12: dffffc0000000000 [ 114.133130] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 114.133653] FS: 00007f6390405700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 114.134240] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.134668] CR2: 00007f6392fa3018 CR3: 000000000efed000 CR4: 0000000000350ef0 [ 114.135190] Kernel panic - not syncing: Fatal exception in interrupt [ 114.135750] Kernel Offset: disabled [ 114.136027] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 08:15:55 Registers: info registers vcpu 0 RAX=0000000000000058 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888045337198 R8 =0000000000000000 R9 =ffffed10013e6046 R10=0000000000000058 R11=000000000000002c R12=0000000000000058 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6390405700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe2f00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6392fa3018 CR3=000000000efed000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f6392f767c000007f6392f767c8 XMM02=00007f6392f767e000007f6392f767c0 XMM03=00007f6392f767c800007f6392f767c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffffea0000fd9680 RCX=ffffffff819d0593 RDX=ffff88801734d280 RSI=ffffffff819d12fc RDI=0000000000000001 RBP=0000000000000000 RSP=ffff88804541f668 R8 =0000000000000000 R9 =fffff940001fb2d0 R10=0000000000000000 R11=1ffff1100d9e6f7b R12=0000000000000000 R13=00007f100b399000 R14=ffff88804541fad0 R15=800000003f65a007 RIP=ffffffff8173f6b8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe4500000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d426000 CR3=000000004149d000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000