Warning: Permanently added '[localhost]:51439' (ECDSA) to the list of known hosts.
2025/09/01 08:48:36 fuzzer started
2025/09/01 08:48:36 dialing manager at localhost:35473
syzkaller login: [ 48.694836] cgroup: Unknown subsys name 'net'
[ 48.750512] cgroup: Unknown subsys name 'cpuset'
[ 48.761993] cgroup: Unknown subsys name 'rlimit'
2025/09/01 08:48:46 syscalls: 2214
2025/09/01 08:48:46 code coverage: enabled
2025/09/01 08:48:46 comparison tracing: enabled
2025/09/01 08:48:46 extra coverage: enabled
2025/09/01 08:48:46 setuid sandbox: enabled
2025/09/01 08:48:46 namespace sandbox: enabled
2025/09/01 08:48:46 Android sandbox: enabled
2025/09/01 08:48:46 fault injection: enabled
2025/09/01 08:48:46 leak checking: enabled
2025/09/01 08:48:46 net packet injection: enabled
2025/09/01 08:48:46 net device setup: enabled
2025/09/01 08:48:46 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 08:48:46 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 08:48:46 USB emulation: enabled
2025/09/01 08:48:46 hci packet injection: enabled
2025/09/01 08:48:46 wifi device emulation: enabled
2025/09/01 08:48:46 802.15.4 emulation: enabled
2025/09/01 08:48:46 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 08:48:46 fetching corpus: 50, signal 25300/28555 (executing program)
2025/09/01 08:48:46 fetching corpus: 100, signal 35998/40377 (executing program)
2025/09/01 08:48:46 fetching corpus: 150, signal 40822/46401 (executing program)
2025/09/01 08:48:47 fetching corpus: 200, signal 46659/53200 (executing program)
2025/09/01 08:48:47 fetching corpus: 250, signal 51093/58538 (executing program)
2025/09/01 08:48:47 fetching corpus: 300, signal 55801/64048 (executing program)
2025/09/01 08:48:47 fetching corpus: 350, signal 60551/69367 (executing program)
2025/09/01 08:48:47 fetching corpus: 400, signal 67456/76420 (executing program)
2025/09/01 08:48:47 fetching corpus: 450, signal 71200/80583 (executing program)
2025/09/01 08:48:47 fetching corpus: 500, signal 73250/83252 (executing program)
2025/09/01 08:48:47 fetching corpus: 550, signal 76762/87088 (executing program)
2025/09/01 08:48:47 fetching corpus: 600, signal 82066/92214 (executing program)
2025/09/01 08:48:48 fetching corpus: 650, signal 85244/95519 (executing program)
2025/09/01 08:48:48 fetching corpus: 700, signal 88088/98467 (executing program)
2025/09/01 08:48:48 fetching corpus: 750, signal 91104/101458 (executing program)
2025/09/01 08:48:48 fetching corpus: 800, signal 93888/104219 (executing program)
2025/09/01 08:48:48 fetching corpus: 850, signal 95350/105924 (executing program)
2025/09/01 08:48:48 fetching corpus: 900, signal 96812/107545 (executing program)
2025/09/01 08:48:48 fetching corpus: 950, signal 98721/109426 (executing program)
2025/09/01 08:48:48 fetching corpus: 1000, signal 101132/111673 (executing program)
2025/09/01 08:48:49 fetching corpus: 1050, signal 102234/112960 (executing program)
2025/09/01 08:48:49 fetching corpus: 1100, signal 103738/114436 (executing program)
2025/09/01 08:48:49 fetching corpus: 1150, signal 105499/116065 (executing program)
2025/09/01 08:48:49 fetching corpus: 1200, signal 107138/117532 (executing program)
2025/09/01 08:48:49 fetching corpus: 1250, signal 108124/118544 (executing program)
2025/09/01 08:48:49 fetching corpus: 1300, signal 109467/119762 (executing program)
2025/09/01 08:48:49 fetching corpus: 1350, signal 110525/120749 (executing program)
2025/09/01 08:48:49 fetching corpus: 1400, signal 111538/121676 (executing program)
2025/09/01 08:48:49 fetching corpus: 1450, signal 112461/122586 (executing program)
2025/09/01 08:48:50 fetching corpus: 1500, signal 113911/123738 (executing program)
2025/09/01 08:48:50 fetching corpus: 1550, signal 115026/124657 (executing program)
2025/09/01 08:48:50 fetching corpus: 1600, signal 116608/125787 (executing program)
2025/09/01 08:48:50 fetching corpus: 1650, signal 117171/126351 (executing program)
2025/09/01 08:48:50 fetching corpus: 1700, signal 118391/127219 (executing program)
2025/09/01 08:48:50 fetching corpus: 1750, signal 119256/127924 (executing program)
2025/09/01 08:48:50 fetching corpus: 1800, signal 120579/128759 (executing program)
2025/09/01 08:48:51 fetching corpus: 1850, signal 121812/129518 (executing program)
2025/09/01 08:48:51 fetching corpus: 1900, signal 123420/130414 (executing program)
2025/09/01 08:48:51 fetching corpus: 1950, signal 124727/131169 (executing program)
2025/09/01 08:48:51 fetching corpus: 2000, signal 125486/131622 (executing program)
2025/09/01 08:48:51 fetching corpus: 2050, signal 126699/132243 (executing program)
2025/09/01 08:48:51 fetching corpus: 2100, signal 127535/132677 (executing program)
2025/09/01 08:48:51 fetching corpus: 2150, signal 128741/133234 (executing program)
2025/09/01 08:48:51 fetching corpus: 2200, signal 130174/133853 (executing program)
2025/09/01 08:48:51 fetching corpus: 2250, signal 130729/134116 (executing program)
2025/09/01 08:48:52 fetching corpus: 2300, signal 131645/134430 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/134872 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/134909 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/134938 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/134971 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135011 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135042 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135068 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135110 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135142 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135186 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135231 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135270 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135305 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135351 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135395 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135432 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135470 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135504 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135548 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135584 (executing program)
2025/09/01 08:48:52 fetching corpus: 2346, signal 132984/135584 (executing program)
2025/09/01 08:48:54 starting 8 fuzzer processes
08:48:54 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
open$dir(0x0, 0x0, 0x0)
setpgid(0x0, 0x0)
getpid()
ptrace(0x10, 0x0)
08:48:54 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind(r0, &(0x7f0000001840)=@generic={0x0, "a25b5819e4136e09b9fbe6b95854e2566f8fb951c972409701abb8854bb795c30211d6005da99fbe81820fac00305c76e4d4968f8eab4721cc1620d19e9818604b1dff3b82f2dc23411cb543104e453c5b664ed5ae0482637732cf58b50d3f3df76ee7ac54eb33d9f748e32cf8728681176810d1a0996a308cbc48847000"}, 0x80)
08:48:54 executing program 2:
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000300))
08:48:54 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0xd3, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
rt_sigqueueinfo(r0, 0x0, &(0x7f00000000c0))
08:48:54 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)=' ', 0x1, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x7, 0x13, r2, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r3, 0x0, &(0x7f0000000000), 0x0, 0x4)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
syz_memcpy_off$IO_URING_METADATA_FLAGS(r3, 0x0, &(0x7f0000000080), 0x0, 0x4)
[ 66.874394] audit: type=1400 audit(1756716534.776:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:48:54 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x11000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000220000000000002200000000000000000000000000000000000000000000000000000000000000000100000101000001000808001800000000000018130000000000000000000015000000002200170000000000001700080000000008007809140b2a3a08020000010000010100202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202073797a6b616c6c65722020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202047454e49534f494d4147452049534f20393636302f4846532046494c4553595354454d2043524541544f5220284329203139393320452e594f554e4744414c452028432920313939372d32303036204a2e50454152534f4e2f4a2e534348494c4c494e472028432920323030362d32303037204344524b4954205445414d202066696c6533202020202020202020202020202020202020202020202020202020202020202066696c6531202020202020202020202020202020202020202020202020202020202020202066696c6532202020202020202020202020202020202020202020202020202020202020202032303230303932303131343235383030083230323030393230313134323538303008303030303030303030303030303030300032303230303932303131343235383030080100202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202000"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010700)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010800)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010900)="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", 0x380, 0xb800}, {&(0x7f0000010d00)="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", 0x200, 0xc000}, {&(0x7f0000010f00)="4552ed010a548701525249505f313939314154484520524f434b20524944474520494e5445524348414e47452050524f544f434f4c2050524f564944455320535550504f525420464f5220504f5349582046494c452053595354454d2053454d414e54494353504c4541534520434f4e544143542044495343205055424c495348455220464f522053504543494649434154494f4e20534f555243452e2020534545205055424c4953484552204944454e54494649455220494e205052494d41525920564f4c554d452044455343524950544f5220464f5220434f4e5441435420494e464f524d4154494f4e2e00"/256, 0x100, 0xc800}, {&(0x7f0000011000)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xd000}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0xd800}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x10800}], 0x0, &(0x7f0000011700))
08:48:54 executing program 5:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140))
chdir(&(0x7f0000000000)='./file0\x00')
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r2 = dup(r1)
copy_file_range(r2, 0x0, r0, 0x0, 0x401, 0x0)
08:48:54 executing program 6:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000000), 0x4)
[ 68.075619] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 68.077811] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 68.080564] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 68.084424] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 68.087380] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 68.208800] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 68.212162] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 68.216160] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 68.224212] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 68.232749] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 68.265433] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 68.268261] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 68.274091] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 68.275452] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 68.278053] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 68.280234] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 68.282410] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 68.286438] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 68.293032] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 68.294863] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 68.297105] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 68.308306] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 68.311403] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 68.329531] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 68.332424] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 68.342790] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 68.349224] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 68.355721] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 68.359539] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 68.365388] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 68.368681] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 68.371337] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 68.381390] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 68.392891] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 68.395812] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 68.398682] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 68.401580] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 68.405481] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 68.422323] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 68.425528] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 70.168478] Bluetooth: hci0: command tx timeout
[ 70.296110] Bluetooth: hci1: command tx timeout
[ 70.360070] Bluetooth: hci2: command tx timeout
[ 70.360727] Bluetooth: hci4: command tx timeout
[ 70.424028] Bluetooth: hci3: command tx timeout
[ 70.424183] Bluetooth: hci6: command tx timeout
[ 70.489297] Bluetooth: hci7: command tx timeout
[ 70.553277] Bluetooth: hci5: command tx timeout
[ 72.216961] Bluetooth: hci0: command tx timeout
[ 72.344017] Bluetooth: hci1: command tx timeout
[ 72.408026] Bluetooth: hci4: command tx timeout
[ 72.408446] Bluetooth: hci2: command tx timeout
[ 72.472396] Bluetooth: hci6: command tx timeout
[ 72.472511] Bluetooth: hci3: command tx timeout
[ 72.537955] Bluetooth: hci7: command tx timeout
[ 72.599978] Bluetooth: hci5: command tx timeout
[ 74.264103] Bluetooth: hci0: command tx timeout
[ 74.392044] Bluetooth: hci1: command tx timeout
[ 74.455976] Bluetooth: hci2: command tx timeout
[ 74.455998] Bluetooth: hci4: command tx timeout
[ 74.520164] Bluetooth: hci6: command tx timeout
[ 74.520613] Bluetooth: hci3: command tx timeout
[ 74.585940] Bluetooth: hci7: command tx timeout
[ 74.648025] Bluetooth: hci5: command tx timeout
[ 76.312038] Bluetooth: hci0: command tx timeout
[ 76.440026] Bluetooth: hci1: command tx timeout
[ 76.504002] Bluetooth: hci2: command tx timeout
[ 76.504039] Bluetooth: hci4: command tx timeout
[ 76.568090] Bluetooth: hci3: command tx timeout
[ 76.568252] Bluetooth: hci6: command tx timeout
[ 76.631955] Bluetooth: hci7: command tx timeout
[ 76.697040] Bluetooth: hci5: command tx timeout
[ 104.232454] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.233143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.469639] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.470276] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.815277] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.815881] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:49:32 executing program 6:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000000), 0x4)
08:49:32 executing program 6:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000000), 0x4)
[ 105.014036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.014667] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.053007] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.053616] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:49:32 executing program 6:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000000), 0x4)
08:49:33 executing program 6:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73668553b300080820000400008000f8000020004000030000000000000001", 0x25}, {&(0x7f0000010100)='RRaA', 0x4, 0x800}, {&(0x7f0000010200)='\x00\x00\x00\x00rrAa', 0x8, 0x9e0}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f00000000c0))
statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/18)
[ 105.185673] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.186535] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.189816] loop6: detected capacity change from 0 to 256
08:49:33 executing program 6:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73668553b300080820000400008000f8000020004000030000000000000001", 0x25}, {&(0x7f0000010100)='RRaA', 0x4, 0x800}, {&(0x7f0000010200)='\x00\x00\x00\x00rrAa', 0x8, 0x9e0}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f00000000c0))
statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/18)
[ 105.249004] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.249640] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:49:33 executing program 6:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73668553b300080820000400008000f8000020004000030000000000000001", 0x25}, {&(0x7f0000010100)='RRaA', 0x4, 0x800}, {&(0x7f0000010200)='\x00\x00\x00\x00rrAa', 0x8, 0x9e0}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f00000000c0))
statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/18)
[ 105.302894] loop6: detected capacity change from 0 to 256
08:49:33 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind(r0, &(0x7f0000001840)=@generic={0x0, "a25b5819e4136e09b9fbe6b95854e2566f8fb951c972409701abb8854bb795c30211d6005da99fbe81820fac00305c76e4d4968f8eab4721cc1620d19e9818604b1dff3b82f2dc23411cb543104e453c5b664ed5ae0482637732cf58b50d3f3df76ee7ac54eb33d9f748e32cf8728681176810d1a0996a308cbc48847000"}, 0x80)
[ 105.320207] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.320854] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:49:33 executing program 6:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73668553b300080820000400008000f8000020004000030000000000000001", 0x25}, {&(0x7f0000010100)='RRaA', 0x4, 0x800}, {&(0x7f0000010200)='\x00\x00\x00\x00rrAa', 0x8, 0x9e0}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f00000000c0))
statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/18)
[ 105.364719] loop6: detected capacity change from 0 to 256
[ 105.416699] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.417326] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.440449] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.441161] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.517674] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.517731] audit: type=1400 audit(1756716573.419:8): avc: denied { open } for pid=3891 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 105.518304] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.521669] audit: type=1400 audit(1756716573.419:9): avc: denied { kernel } for pid=3891 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 105.628693] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.629350] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.693999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.694620] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.737945] loop4: detected capacity change from 0 to 264
[ 105.812835] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.813504] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.825548] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.826412] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.889839] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.890484] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:49:33 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x11000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010700)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010800)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010900)="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", 0x380, 0xb800}, {&(0x7f0000010d00)="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", 0x200, 0xc000}, {&(0x7f0000010f00)="4552ed010a548701525249505f313939314154484520524f434b20524944474520494e5445524348414e47452050524f544f434f4c2050524f564944455320535550504f525420464f5220504f5349582046494c452053595354454d2053454d414e54494353504c4541534520434f4e544143542044495343205055424c495348455220464f522053504543494649434154494f4e20534f555243452e2020534545205055424c4953484552204944454e54494649455220494e205052494d41525920564f4c554d452044455343524950544f5220464f5220434f4e5441435420494e464f524d4154494f4e2e00"/256, 0x100, 0xc800}, {&(0x7f0000011000)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xd000}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0xd800}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x10800}], 0x0, &(0x7f0000011700))
08:49:33 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
open$dir(0x0, 0x0, 0x0)
setpgid(0x0, 0x0)
getpid()
ptrace(0x10, 0x0)
08:49:33 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)=' ', 0x1, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x7, 0x13, r2, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r3, 0x0, &(0x7f0000000000), 0x0, 0x4)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
syz_memcpy_off$IO_URING_METADATA_FLAGS(r3, 0x0, &(0x7f0000000080), 0x0, 0x4)
08:49:33 executing program 2:
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000300))
08:49:33 executing program 5:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140))
chdir(&(0x7f0000000000)='./file0\x00')
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r2 = dup(r1)
copy_file_range(r2, 0x0, r0, 0x0, 0x401, 0x0)
08:49:33 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind(r0, &(0x7f0000001840)=@generic={0x0, "a25b5819e4136e09b9fbe6b95854e2566f8fb951c972409701abb8854bb795c30211d6005da99fbe81820fac00305c76e4d4968f8eab4721cc1620d19e9818604b1dff3b82f2dc23411cb543104e453c5b664ed5ae0482637732cf58b50d3f3df76ee7ac54eb33d9f748e32cf8728681176810d1a0996a308cbc48847000"}, 0x80)
08:49:33 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0xd3, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
rt_sigqueueinfo(r0, 0x0, &(0x7f00000000c0))
08:49:33 executing program 6:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73668553b300080820000400008000f8000020004000030000000000000001", 0x25}, {&(0x7f0000010100)='RRaA', 0x4, 0x800}, {&(0x7f0000010200)='\x00\x00\x00\x00rrAa', 0x8, 0x9e0}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f00000000c0))
statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/18)
08:49:33 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)=' ', 0x1, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x7, 0x13, r2, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r3, 0x0, &(0x7f0000000000), 0x0, 0x4)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
syz_memcpy_off$IO_URING_METADATA_FLAGS(r3, 0x0, &(0x7f0000000080), 0x0, 0x4)
[ 106.096125] loop6: detected capacity change from 0 to 256
[ 106.102749] loop4: detected capacity change from 0 to 264
08:49:34 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind(r0, &(0x7f0000001840)=@generic={0x0, "a25b5819e4136e09b9fbe6b95854e2566f8fb951c972409701abb8854bb795c30211d6005da99fbe81820fac00305c76e4d4968f8eab4721cc1620d19e9818604b1dff3b82f2dc23411cb543104e453c5b664ed5ae0482637732cf58b50d3f3df76ee7ac54eb33d9f748e32cf8728681176810d1a0996a308cbc48847000"}, 0x80)
08:49:34 executing program 5:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140))
chdir(&(0x7f0000000000)='./file0\x00')
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r2 = dup(r1)
copy_file_range(r2, 0x0, r0, 0x0, 0x401, 0x0)
08:49:34 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
open$dir(0x0, 0x0, 0x0)
setpgid(0x0, 0x0)
getpid()
ptrace(0x10, 0x0)
08:49:34 executing program 6:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73668553b300080820000400008000f8000020004000030000000000000001", 0x25}, {&(0x7f0000010100)='RRaA', 0x4, 0x800}, {&(0x7f0000010200)='\x00\x00\x00\x00rrAa', 0x8, 0x9e0}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f00000000c0))
statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/18)
08:49:34 executing program 2:
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000300))
08:49:34 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0xd3, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
rt_sigqueueinfo(r0, 0x0, &(0x7f00000000c0))
[ 106.250146] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[ 106.251095] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 106.251735] CPU: 1 UID: 0 PID: 3942 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 106.252602] Tainted: [W]=WARN
[ 106.253145] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 106.254930] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.255992] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.260133] RSP: 0018:ffff888016fdf780 EFLAGS: 00010012
[ 106.260561] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 106.261123] RDX: ffff888015c20000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 106.261678] RBP: ffff888016fdf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16b80
[ 106.262240] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[ 106.262794] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 106.263363] FS: 000055557fdb5400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 106.263991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.264446] CR2: 00007fd90fca4000 CR3: 000000000db3a000 CR4: 0000000000350ef0
[ 106.265002] Call Trace:
[ 106.265211]
[ 106.265397] ? __pfx_perf_tp_event+0x10/0x10
[ 106.265758] ? trace_mm_page_alloc+0xfc/0x150
[ 106.266121] ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 106.266546] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 106.267015] ? __lock_acquire+0x694/0x1b70
[ 106.267361] ? kvm_sched_clock_read+0x16/0x30
[ 106.267725] ? sched_clock+0x37/0x60
[ 106.268027] ? sched_clock_cpu+0x6c/0x4e0
[ 106.268362] ? lock_is_held_type+0x9e/0x120
[ 106.268710] ? perf_trace_run_bpf_submit+0xef/0x180
[ 106.269106] ? lock_is_held_type+0x9e/0x120
[ 106.269451] perf_trace_run_bpf_submit+0xef/0x180
[ 106.269837] perf_trace_preemptirq_template+0x259/0x430
[ 106.270253] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 106.270710] ? check_preempt_wakeup_fair+0x406/0x950
[ 106.271114] ? find_held_lock+0x2b/0x80
[ 106.271445] ? try_to_wake_up+0x8ae/0x11d0
[ 106.271788] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 106.272195] trace_irq_enable.constprop.0+0xa6/0x100
[ 106.272595] trace_hardirqs_on+0x26/0x40
[ 106.272918] _raw_spin_unlock_irqrestore+0x2c/0x50
[ 106.273312] try_to_wake_up+0x8ae/0x11d0
[ 106.273644] ? __pfx_try_to_wake_up+0x10/0x10
[ 106.274005] ? plist_del+0x122/0x270
[ 106.274305] ? find_held_lock+0x2b/0x80
[ 106.274625] ? futex_wake+0x474/0x540
[ 106.274934] wake_up_q+0xa1/0x130
[ 106.275219] futex_wake+0x47e/0x540
[ 106.275522] ? __pfx_futex_wake+0x10/0x10
[ 106.275855] ? __handle_mm_fault+0x753/0x3260
[ 106.276222] ? __lock_acquire+0x694/0x1b70
[ 106.276558] do_futex+0x26d/0x370
[ 106.276840] ? __pfx_do_futex+0x10/0x10
[ 106.277162] ? find_held_lock+0x2b/0x80
[ 106.277487] __x64_sys_futex+0x1c9/0x4d0
[ 106.277812] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 106.278275] ? __pfx___x64_sys_futex+0x10/0x10
[ 106.278643] do_syscall_64+0xbf/0x360
[ 106.278944] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.279356] RIP: 0033:0x7fd90fb94b19
[ 106.279650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 106.281064] RSP: 002b:00007fffaf5c26e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 106.281655] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd90fb94b19
[ 106.282210] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd90fca7f68
[ 106.282766] RBP: 00007fd90fca7f60 R08: 0000001b2d32001c R09: 0000000000000000
[ 106.283328] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd90fcac420
[ 106.283882] R13: 00007fffaf5c27f0 R14: 00007fd90fca7f60 R15: 0000000000019e9f
[ 106.284442]
[ 106.284631] Modules linked in:
[ 106.284893] ---[ end trace 0000000000000000 ]---
[ 106.284896] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 106.285260] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.286144] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 106.286500] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.287088] CPU: 0 UID: 0 PID: 288 Comm: syz-executor.5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 106.288496] RSP: 0018:ffff888016fdf780 EFLAGS: 00010012
[ 106.289406] Tainted: [D]=DIE, [W]=WARN
[ 106.289818] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 106.290116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 106.290671] RDX: ffff888015c20000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 106.291321] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.291871] RBP: ffff888016fdf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16b80
[ 106.292227] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.292782] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[ 106.294186] RSP: 0018:ffff8880170979c0 EFLAGS: 00010012
[ 106.294734] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 106.294746] FS: 000055557fdb5400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 106.295144] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 106.295700] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.296316] RDX: ffff8880162f0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 106.296868] CR2: 00007fd90fca4000 CR3: 000000000db3a000 CR4: 0000000000350ef0
[ 106.297318] RBP: ffff888017097c30 R08: ffff88806ce31340 R09: ffffe8ffffc16b80
[ 106.297874] note: syz-executor.6[3942] exited with irqs disabled
[ 106.298419] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 106.299994] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[ 106.300550] FS: 000055555de2b400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 106.301180] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.301636] CR2: 00007fff17538f08 CR3: 0000000042652000 CR4: 0000000000350ef0
[ 106.302192] Call Trace:
[ 106.302398]
[ 106.302584] ? __pfx_perf_tp_event+0x10/0x10
[ 106.302939] ? lock_acquire+0x18c/0x2f0
[ 106.303264] ? do_raw_spin_lock+0x123/0x260
[ 106.303611] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 106.303980] ? lock_release+0x1c7/0x290
[ 106.304297] ? do_raw_spin_unlock+0x53/0x220
[ 106.304648] ? _raw_spin_unlock+0x1e/0x40
[ 106.304985] ? lock_release+0x1c7/0x290
[ 106.305302] ? try_to_unlazy+0x2ab/0x660
[ 106.305631] ? mntput+0x10/0x90
[ 106.305908] ? perf_trace_run_bpf_submit+0xef/0x180
[ 106.306306] perf_trace_run_bpf_submit+0xef/0x180
[ 106.306692] perf_trace_preemptirq_template+0x259/0x430
[ 106.307117] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 106.307581] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 106.307953] ? lock_acquire+0x18c/0x2f0
[ 106.308271] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 106.308673] trace_irq_enable.constprop.0+0xa6/0x100
[ 106.309074] trace_hardirqs_on+0x26/0x40
[ 106.309394] _raw_spin_unlock_irqrestore+0x2c/0x50
[ 106.309784] delete_object_full+0x46/0x70
[ 106.310121] kmem_cache_free+0x33a/0x540
[ 106.310447] ? putname.part.0+0x11b/0x160
[ 106.310779] putname.part.0+0x11b/0x160
[ 106.311103] user_path_at+0x70/0x90
[ 106.311404] __x64_sys_umount+0xf8/0x190
[ 106.311727] ? __pfx___x64_sys_umount+0x10/0x10
[ 106.312099] do_syscall_64+0xbf/0x360
[ 106.312403] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.312811] RIP: 0033:0x7f857ebadf87
[ 106.313103] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 106.314516] RSP: 002b:00007fff17539648 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 106.315104] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f857ebadf87
[ 106.315671] RDX: 00007fff17539719 RSI: 000000000000000a RDI: 00007fff17539710
[ 106.316228] RBP: 00007fff17539710 R08: 00000000ffffffff R09: 00007fff175394e0
[ 106.316783] R10: 000055555de2cc7b R11: 0000000000000246 R12: 00007f857ec06105
[ 106.317341] R13: 00007fff1753a7d0 R14: 000055555de2cc20 R15: 00007fff1753a810
[ 106.317897]
[ 106.318090] Modules linked in:
[ 106.318350] ---[ end trace 0000000000000000 ]---
[ 106.318351] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#3] SMP KASAN NOPTI
[ 106.318718] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.319593] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 106.319952] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.320623] CPU: 1 UID: 0 PID: 3942 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 106.322016] RSP: 0018:ffff888016fdf780 EFLAGS: 00010012
[ 106.322935] Tainted: [D]=DIE, [W]=WARN
[ 106.323344] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 106.323646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 106.324195] RDX: ffff888015c20000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 106.324832] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.325380] RBP: ffff888016fdf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16b80
[ 106.325740] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.326289] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[ 106.327695] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[ 106.328245] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 106.328256] FS: 000055555de2b400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 106.328661] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 106.329211] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.329825] RDX: ffff888015c20000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 106.330376] CR2: 00007fff17538f08 CR3: 0000000042652000 CR4: 0000000000350ef0
[ 106.330823] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd16b80
[ 106.331382] note: syz-executor.5[288] exited with irqs disabled
[ 106.331926] R10: 0000000000000000 R11: ffff88801b1adc98 R12: dffffc0000000000
[ 106.333486] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 106.334049] FS: 000055557fdb5400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 106.334675] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.335136] CR2: 00007fd90fca4000 CR3: 000000000db3a000 CR4: 0000000000350ef0
[ 106.335699] Call Trace:
[ 106.335906]
[ 106.336087] ? __pfx_perf_tp_event+0x10/0x10
[ 106.336445] ? enqueue_task_fair+0xded/0x1e00
[ 106.336811] ? check_preempt_wakeup_fair+0x6e/0x950
[ 106.337210] ? wakeup_preempt+0x140/0x2a0
[ 106.337539] ? lock_release+0x1c7/0x290
[ 106.337856] ? lock_release+0x1c7/0x290
[ 106.338181] ? do_raw_spin_unlock+0x53/0x220
[ 106.338541] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 106.338947] ? try_to_wake_up+0x8ae/0x11d0
[ 106.339296] ? do_raw_spin_lock+0x123/0x260
[ 106.339643] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 106.340025] ? perf_trace_run_bpf_submit+0xef/0x180
[ 106.340422] perf_trace_run_bpf_submit+0xef/0x180
[ 106.340810] perf_trace_preemptirq_template+0x259/0x430
[ 106.341247] ? read_tsc+0x9/0x20
[ 106.341530] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 106.341992] ? clockevents_program_event+0x135/0x360
[ 106.342407] ? tick_program_event+0xac/0x140
[ 106.342760] ? handle_softirqs+0x16e/0x770
[ 106.343107] trace_irq_enable.constprop.0+0xa6/0x100
[ 106.343517] trace_hardirqs_on+0x26/0x40
[ 106.343839] handle_softirqs+0x16e/0x770
[ 106.344175] __irq_exit_rcu+0xc4/0x100
[ 106.344493] irq_exit_rcu+0x9/0x20
[ 106.344776] sysvec_apic_timer_interrupt+0x70/0x80
[ 106.345175]
[ 106.345358]
[ 106.345542] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 106.345960] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 106.346343] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[ 106.347766] RSP: 0018:ffff888016fdff28 EFLAGS: 00000246
[ 106.348191] RAX: 0000000000000001 RBX: ffff888015c20000 RCX: ffffffff817c3ab6
[ 106.348755] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 106.349316] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 106.349879] R10: ffffffff8643b457 R11: 3838666666662052 R12: ffff888015c20000
[ 106.350452] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[ 106.351015] ? trace_irq_enable.constprop.0+0x26/0x100
[ 106.351447] ? make_task_dead+0x214/0x3b0
[ 106.351781] ? make_task_dead+0x214/0x3b0
[ 106.352119] ? do_syscall_64+0xbf/0x360
[ 106.352436] rewind_stack_and_make_dead+0x16/0x20
[ 106.352831] RIP: 0033:0x7fd90fb94b19
[ 106.353128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 106.354580] RSP: 002b:00007fffaf5c26e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 106.355177] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd90fb94b19
[ 106.355745] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd90fca7f68
[ 106.356316] RBP: 00007fd90fca7f60 R08: 0000001b2d32001c R09: 0000000000000000
[ 106.356883] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd90fcac420
[ 106.357446] R13: 00007fffaf5c27f0 R14: 00007fd90fca7f60 R15: 0000000000019e9f
[ 106.358012]
[ 106.358205] Modules linked in:
[ 106.358468] ---[ end trace 0000000000000000 ]---
[ 106.358469] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#4] SMP KASAN NOPTI
[ 106.358845] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.359715] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 106.360085] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.360676] CPU: 0 UID: 0 PID: 288 Comm: syz-executor.5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 106.362098] RSP: 0018:ffff888016fdf780 EFLAGS: 00010012
[ 106.363024] Tainted: [D]=DIE, [W]=WARN
[ 106.363449] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 106.363752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 106.364315] RDX: ffff888015c20000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 106.364957] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.365524] RBP: ffff888016fdf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16b80
[ 106.365888] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.366448] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[ 106.367873] RSP: 0018:ffff88806ce08b80 EFLAGS: 00010012
[ 106.368431] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 106.368850] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 106.369409] FS: 000055557fdb5400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 106.369960] RDX: ffff8880162f0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 106.370597] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.371157] RBP: ffff88806ce08df0 R08: ffff88806ce313e8 R09: ffffe8ffffc16b80
[ 106.371620] CR2: 00007fd90fca4000 CR3: 000000000db3a000 CR4: 0000000000350ef0
[ 106.372173] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000
[ 106.372737] Kernel panic - not syncing: Fatal exception in interrupt
[ 107.419163] Shutting down cpus with NMI
[ 107.420238] Kernel Offset: disabled
[ 107.420531] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
08:49:34 Registers:
info registers vcpu 0
RAX=fffffbfff0f0f608 RBX=fffffbfff0f0f609 RCX=ffffffff84be3c0e RDX=fffffbfff0f0f609
RSI=0000000000000004 RDI=ffffffff8787b044 RBP=fffffbfff0f0f608 RSP=ffff888017097750
R8 =0000000000000000 R9 =fffffbfff0f0f608 R10=ffffffff8787b047 R11=202c746c75616620
R12=1ffff11002e12eef R13=0000000000000007 R14=fffffbfff0f0f608 R15=ffff8880170977a8
RIP=ffffffff81b00961 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555de2b400 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe5300000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fff17538f08 CR3=0000000042652000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000ff000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888016fdf070
R8 =0000000000000000 R9 =ffffed1001758046 R10=0000000000000066 R11=0000000065646f43
R12=0000000000000066 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055557fdb5400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe4500000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd90fca4000 CR3=000000000db3a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000ff0000000000ff000000000000 XMM01=000000010000000000010000000000ff
XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007fd90fc7b7c800007fd90fc7b7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000