Warning: Permanently added '[localhost]:10216' (ECDSA) to the list of known hosts. 2025/09/01 09:05:31 fuzzer started 2025/09/01 09:05:31 dialing manager at localhost:35473 syzkaller login: [ 52.256375] cgroup: Unknown subsys name 'net' [ 52.437455] cgroup: Unknown subsys name 'cpuset' [ 52.464192] cgroup: Unknown subsys name 'rlimit' 2025/09/01 09:05:42 syscalls: 2214 2025/09/01 09:05:42 code coverage: enabled 2025/09/01 09:05:42 comparison tracing: enabled 2025/09/01 09:05:42 extra coverage: enabled 2025/09/01 09:05:42 setuid sandbox: enabled 2025/09/01 09:05:42 namespace sandbox: enabled 2025/09/01 09:05:42 Android sandbox: enabled 2025/09/01 09:05:42 fault injection: enabled 2025/09/01 09:05:42 leak checking: enabled 2025/09/01 09:05:42 net packet injection: enabled 2025/09/01 09:05:42 net device setup: enabled 2025/09/01 09:05:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 09:05:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 09:05:42 USB emulation: enabled 2025/09/01 09:05:42 hci packet injection: enabled 2025/09/01 09:05:42 wifi device emulation: enabled 2025/09/01 09:05:42 802.15.4 emulation: enabled 2025/09/01 09:05:42 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 09:05:42 fetching corpus: 50, signal 24361/27692 (executing program) 2025/09/01 09:05:42 fetching corpus: 100, signal 34164/38740 (executing program) 2025/09/01 09:05:42 fetching corpus: 150, signal 41145/46817 (executing program) 2025/09/01 09:05:42 fetching corpus: 200, signal 46668/53379 (executing program) 2025/09/01 09:05:42 fetching corpus: 250, signal 57141/64319 (executing program) 2025/09/01 09:05:42 fetching corpus: 300, signal 61706/69626 (executing program) 2025/09/01 09:05:42 fetching corpus: 350, signal 66332/74876 (executing program) 2025/09/01 09:05:43 fetching corpus: 400, signal 70613/79663 (executing program) 2025/09/01 09:05:43 fetching corpus: 450, signal 73191/82957 (executing program) 2025/09/01 09:05:43 fetching corpus: 500, signal 76044/86373 (executing program) 2025/09/01 09:05:43 fetching corpus: 550, signal 78661/89525 (executing program) 2025/09/01 09:05:43 fetching corpus: 600, signal 80341/91815 (executing program) 2025/09/01 09:05:43 fetching corpus: 650, signal 83220/95045 (executing program) 2025/09/01 09:05:43 fetching corpus: 700, signal 86013/98078 (executing program) 2025/09/01 09:05:43 fetching corpus: 750, signal 88371/100754 (executing program) 2025/09/01 09:05:43 fetching corpus: 800, signal 91017/103598 (executing program) 2025/09/01 09:05:44 fetching corpus: 850, signal 94231/106768 (executing program) 2025/09/01 09:05:44 fetching corpus: 900, signal 96854/109396 (executing program) 2025/09/01 09:05:44 fetching corpus: 950, signal 98716/111431 (executing program) 2025/09/01 09:05:44 fetching corpus: 1000, signal 100555/113347 (executing program) 2025/09/01 09:05:44 fetching corpus: 1050, signal 102311/115188 (executing program) 2025/09/01 09:05:44 fetching corpus: 1100, signal 104042/116999 (executing program) 2025/09/01 09:05:44 fetching corpus: 1150, signal 105651/118722 (executing program) 2025/09/01 09:05:44 fetching corpus: 1200, signal 106768/120003 (executing program) 2025/09/01 09:05:45 fetching corpus: 1250, signal 108532/121690 (executing program) 2025/09/01 09:05:45 fetching corpus: 1300, signal 110614/123487 (executing program) 2025/09/01 09:05:45 fetching corpus: 1350, signal 112271/124929 (executing program) 2025/09/01 09:05:45 fetching corpus: 1400, signal 113295/125984 (executing program) 2025/09/01 09:05:45 fetching corpus: 1450, signal 114363/127054 (executing program) 2025/09/01 09:05:45 fetching corpus: 1500, signal 115075/127872 (executing program) 2025/09/01 09:05:45 fetching corpus: 1550, signal 116264/128974 (executing program) 2025/09/01 09:05:45 fetching corpus: 1600, signal 117265/129921 (executing program) 2025/09/01 09:05:45 fetching corpus: 1650, signal 119437/131447 (executing program) 2025/09/01 09:05:46 fetching corpus: 1700, signal 120801/132550 (executing program) 2025/09/01 09:05:46 fetching corpus: 1750, signal 121797/133455 (executing program) 2025/09/01 09:05:46 fetching corpus: 1800, signal 123135/134420 (executing program) 2025/09/01 09:05:46 fetching corpus: 1850, signal 124152/135217 (executing program) 2025/09/01 09:05:46 fetching corpus: 1900, signal 124902/135829 (executing program) 2025/09/01 09:05:46 fetching corpus: 1950, signal 126260/136806 (executing program) 2025/09/01 09:05:46 fetching corpus: 2000, signal 127286/137494 (executing program) 2025/09/01 09:05:46 fetching corpus: 2050, signal 128083/138058 (executing program) 2025/09/01 09:05:47 fetching corpus: 2100, signal 128928/138653 (executing program) 2025/09/01 09:05:47 fetching corpus: 2150, signal 129761/139209 (executing program) 2025/09/01 09:05:47 fetching corpus: 2200, signal 130350/139661 (executing program) 2025/09/01 09:05:47 fetching corpus: 2250, signal 131151/140179 (executing program) 2025/09/01 09:05:47 fetching corpus: 2300, signal 132140/140794 (executing program) 2025/09/01 09:05:47 fetching corpus: 2350, signal 132707/141162 (executing program) 2025/09/01 09:05:47 fetching corpus: 2400, signal 133616/141629 (executing program) 2025/09/01 09:05:47 fetching corpus: 2450, signal 134315/141986 (executing program) 2025/09/01 09:05:47 fetching corpus: 2500, signal 134882/142319 (executing program) 2025/09/01 09:05:47 fetching corpus: 2550, signal 135704/142709 (executing program) 2025/09/01 09:05:48 fetching corpus: 2600, signal 136540/143072 (executing program) 2025/09/01 09:05:48 fetching corpus: 2650, signal 137119/143349 (executing program) 2025/09/01 09:05:48 fetching corpus: 2700, signal 137659/143582 (executing program) 2025/09/01 09:05:48 fetching corpus: 2750, signal 138550/143879 (executing program) 2025/09/01 09:05:48 fetching corpus: 2800, signal 139198/144118 (executing program) 2025/09/01 09:05:48 fetching corpus: 2850, signal 140036/144384 (executing program) 2025/09/01 09:05:48 fetching corpus: 2900, signal 140632/144589 (executing program) 2025/09/01 09:05:48 fetching corpus: 2950, signal 141387/144861 (executing program) 2025/09/01 09:05:48 fetching corpus: 3000, signal 141892/145022 (executing program) 2025/09/01 09:05:48 fetching corpus: 3050, signal 142759/145181 (executing program) 2025/09/01 09:05:48 fetching corpus: 3076, signal 143029/145251 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145285 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145327 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145368 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145404 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145434 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145465 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145497 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145538 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145552 (executing program) 2025/09/01 09:05:49 fetching corpus: 3076, signal 143029/145552 (executing program) 2025/09/01 09:05:51 starting 8 fuzzer processes 09:05:51 executing program 0: syz_mount_image$tmpfs(&(0x7f00000014c0), &(0x7f0000001500)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0)={[{@mpol={'mpol', 0x3d, {'interleave', '', @val={0x3a, [0x2d, 0x0]}}}}]}) 09:05:51 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x12) 09:05:51 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x3, 0x6, @link_local}, 0x10) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000100)={r5, 0x3, 0x6, @link_local}, 0x10) 09:05:51 executing program 2: r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[]) mknodat$loop(r0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) fchownat(r0, &(0x7f00000002c0)='./file0\x00', 0x0, 0xee01, 0x0) 09:05:51 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x12, 0x0, &(0x7f0000000300)) 09:05:51 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)={0x20, r1, 0x1, 0x0, 0x0, {0x5}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0) 09:05:51 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000040)=0xfffffff9, 0x4) sendmsg$inet(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x0) 09:05:51 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 71.804431] audit: type=1400 audit(1756717551.767:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 73.065119] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.070032] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.072989] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.076955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.079491] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.082809] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.085152] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.087114] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.092046] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.093787] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.097209] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.105752] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.109841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 73.111258] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.128088] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.130032] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.135833] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.143392] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.151107] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.158895] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.191191] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 73.201586] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 73.203360] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 73.205550] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.210884] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 73.210971] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 73.214428] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 73.216141] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.218197] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.222330] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.233127] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.240861] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 73.243937] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 73.246231] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 73.247863] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 73.250200] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 73.251830] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 73.256446] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 73.258095] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 73.269276] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 75.159825] Bluetooth: hci2: command tx timeout [ 75.160356] Bluetooth: hci1: command tx timeout [ 75.160574] Bluetooth: hci0: command tx timeout [ 75.222769] Bluetooth: hci3: command tx timeout [ 75.286751] Bluetooth: hci4: command tx timeout [ 75.287512] Bluetooth: hci5: command tx timeout [ 75.352706] Bluetooth: hci7: command tx timeout [ 75.353451] Bluetooth: hci6: command tx timeout [ 77.206728] Bluetooth: hci1: command tx timeout [ 77.206768] Bluetooth: hci2: command tx timeout [ 77.207916] Bluetooth: hci0: command tx timeout [ 77.272775] Bluetooth: hci3: command tx timeout [ 77.335090] Bluetooth: hci4: command tx timeout [ 77.335515] Bluetooth: hci5: command tx timeout [ 77.398784] Bluetooth: hci7: command tx timeout [ 77.398814] Bluetooth: hci6: command tx timeout [ 79.254768] Bluetooth: hci1: command tx timeout [ 79.254822] Bluetooth: hci0: command tx timeout [ 79.255224] Bluetooth: hci2: command tx timeout [ 79.319687] Bluetooth: hci3: command tx timeout [ 79.382730] Bluetooth: hci5: command tx timeout [ 79.384083] Bluetooth: hci4: command tx timeout [ 79.446749] Bluetooth: hci7: command tx timeout [ 79.447228] Bluetooth: hci6: command tx timeout [ 81.302787] Bluetooth: hci0: command tx timeout [ 81.302834] Bluetooth: hci1: command tx timeout [ 81.303876] Bluetooth: hci2: command tx timeout [ 81.369699] Bluetooth: hci3: command tx timeout [ 81.430826] Bluetooth: hci4: command tx timeout [ 81.430871] Bluetooth: hci5: command tx timeout [ 81.494707] Bluetooth: hci6: command tx timeout [ 81.494758] Bluetooth: hci7: command tx timeout [ 109.895800] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.896469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.140876] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.141504] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.346751] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.347397] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.512060] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.512716] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:06:30 executing program 2: r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[]) mknodat$loop(r0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) fchownat(r0, &(0x7f00000002c0)='./file0\x00', 0x0, 0xee01, 0x0) 09:06:30 executing program 2: r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[]) mknodat$loop(r0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) fchownat(r0, &(0x7f00000002c0)='./file0\x00', 0x0, 0xee01, 0x0) [ 110.695153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.695769] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:06:30 executing program 2: r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[]) mknodat$loop(r0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) fchownat(r0, &(0x7f00000002c0)='./file0\x00', 0x0, 0xee01, 0x0) [ 110.961938] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.963109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:06:30 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000bc0)={0x0, 0x0, 0x40800}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000c40), &(0x7f0000000c80)) 09:06:31 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000bc0)={0x0, 0x0, 0x40800}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000c40), &(0x7f0000000c80)) [ 111.176748] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.177357] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:06:31 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000bc0)={0x0, 0x0, 0x40800}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000c40), &(0x7f0000000c80)) [ 111.344425] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.345382] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:06:31 executing program 2: syz_io_uring_setup(0x0, &(0x7f0000000bc0)={0x0, 0x0, 0x40800}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000c40), &(0x7f0000000c80)) 09:06:31 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)={0x14, 0x16, 0xffffffffffffffff, 0x0, 0x0, "", [@generic="02"]}, 0x14}], 0x1}, 0x0) [ 111.693307] audit: type=1400 audit(1756717591.655:8): avc: denied { open } for pid=3843 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 111.701055] audit: type=1400 audit(1756717591.656:9): avc: denied { kernel } for pid=3843 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 111.827543] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.828568] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.938739] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.939860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.042356] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.043008] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.099377] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.101587] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.688983] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.689598] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.773609] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.774267] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.875121] tmpfs: Bad value for 'mpol' [ 112.876598] tmpfs: Bad value for 'mpol' [ 113.019096] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.019822] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.041852] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.042432] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.142375] lo: entered promiscuous mode [ 113.145007] lo: left promiscuous mode [ 113.148011] lo: entered promiscuous mode [ 113.152860] lo: left promiscuous mode 09:06:33 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x3, 0x6, @link_local}, 0x10) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000100)={r5, 0x3, 0x6, @link_local}, 0x10) 09:06:33 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x12, 0x0, &(0x7f0000000300)) 09:06:33 executing program 0: syz_mount_image$tmpfs(&(0x7f00000014c0), &(0x7f0000001500)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0)={[{@mpol={'mpol', 0x3d, {'interleave', '', @val={0x3a, [0x2d, 0x0]}}}}]}) 09:06:33 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000040)=0xfffffff9, 0x4) sendmsg$inet(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x0) 09:06:33 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)={0x14, 0x16, 0xffffffffffffffff, 0x0, 0x0, "", [@generic="02"]}, 0x14}], 0x1}, 0x0) 09:06:33 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000000), &(0x7f0000000040)=0x4) 09:06:33 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000040)=0xfffffff9, 0x4) sendmsg$inet(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x0) 09:06:33 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x12) [ 113.248592] tmpfs: Bad value for 'mpol' 09:06:33 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000040)=0xfffffff9, 0x4) sendmsg$inet(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x0) 09:06:33 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000040)=0xfffffff9, 0x4) sendmsg$inet(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x0) [ 113.290445] lo: entered promiscuous mode 09:06:33 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000000), &(0x7f0000000040)=0x4) 09:06:33 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)={0x14, 0x16, 0xffffffffffffffff, 0x0, 0x0, "", [@generic="02"]}, 0x14}], 0x1}, 0x0) 09:06:33 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x12, 0x0, &(0x7f0000000300)) 09:06:33 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x12) [ 113.311229] lo: left promiscuous mode 09:06:33 executing program 0: syz_mount_image$tmpfs(&(0x7f00000014c0), &(0x7f0000001500)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0)={[{@mpol={'mpol', 0x3d, {'interleave', '', @val={0x3a, [0x2d, 0x0]}}}}]}) 09:06:33 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000040)=0xfffffff9, 0x4) sendmsg$inet(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x0) [ 113.395898] tmpfs: Bad value for 'mpol' 09:06:33 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x3, 0x6, @link_local}, 0x10) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000100)={r5, 0x3, 0x6, @link_local}, 0x10) 09:06:33 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000000), &(0x7f0000000040)=0x4) 09:06:33 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x12, 0x0, &(0x7f0000000300)) 09:06:33 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x12) 09:06:33 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000040)=0xfffffff9, 0x4) sendmsg$inet(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0}, 0x0) 09:06:33 executing program 0: syz_mount_image$tmpfs(&(0x7f00000014c0), &(0x7f0000001500)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0)={[{@mpol={'mpol', 0x3d, {'interleave', '', @val={0x3a, [0x2d, 0x0]}}}}]}) 09:06:33 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)={0x14, 0x16, 0xffffffffffffffff, 0x0, 0x0, "", [@generic="02"]}, 0x14}], 0x1}, 0x0) 09:06:33 executing program 4: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x3, 0x6, @link_local}, 0x10) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000100)={r5, 0x3, 0x6, @link_local}, 0x10) [ 113.489694] tmpfs: Bad value for 'mpol' [ 113.489916] lo: entered promiscuous mode [ 113.499892] lo: left promiscuous mode [ 113.519768] lo: entered promiscuous mode [ 113.540533] lo: left promiscuous mode 09:06:33 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x3, 0x6, @link_local}, 0x10) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000100)={r5, 0x3, 0x6, @link_local}, 0x10) 09:06:33 executing program 4: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x3, 0x6, @link_local}, 0x10) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000100)={r5, 0x3, 0x6, @link_local}, 0x10) 09:06:33 executing program 1: request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x1}, &(0x7f0000000100)='user\x00', 0xffffffffffffffff) 09:06:33 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f00000007c0)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)="be61", 0x2}], 0x1, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev}}}], 0x20}}, {{0x0, 0x0, 0x0}}], 0x2, 0x8040) 09:06:33 executing program 3: r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fsopen(&(0x7f00000000c0)='sockfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x6, 0x0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 09:06:33 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000080)) setreuid(0x0, 0x0) 09:06:33 executing program 1: request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x1}, &(0x7f0000000100)='user\x00', 0xffffffffffffffff) 09:06:33 executing program 2: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) shutdown(r1, 0x0) splice(r1, 0x0, r0, 0x0, 0xaffff7ffffc, 0x0) 09:06:33 executing program 7: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38010000100001000000000000000000ff020000000000000000000000000001fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc02000000000000000000000000000000000000320000007f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000004800010077703531322d67656e657269630000000000000000000000000000000000f20000000000000000000000000000000000000000000000000000000028647156008a"], 0x138}}, 0x0) [ 113.617903] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 113.618851] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.619554] CPU: 0 UID: 0 PID: 3966 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.621105] Tainted: [W]=WARN [ 113.621688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.622847] lo: entered promiscuous mode [ 113.623729] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.626218] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.629981] RSP: 0018:ffff8880434df800 EFLAGS: 00010212 [ 113.630422] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90004c13000 [ 113.630990] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.631555] RBP: ffff8880434dfa70 R08: ffff88806ce31340 R09: ffffe8ffffc151d8 [ 113.632125] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.632691] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.633259] FS: 00007f95ef414700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.633896] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.634371] CR2: 0000001b2d120000 CR3: 0000000044f6e000 CR4: 0000000000350ef0 [ 113.634942] Call Trace: [ 113.635155] [ 113.635339] ? kernel_text_address+0x5b/0xc0 [ 113.635709] ? __pfx_perf_tp_event+0x10/0x10 [ 113.636076] ? perf_trace_lock+0xb5/0x5d0 [ 113.636415] ? __mutex_add_waiter+0x202/0x220 [ 113.636784] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.637158] ? lock_acquire+0x15e/0x2f0 [ 113.637485] ? __is_insn_slot_addr+0x2e/0x290 [ 113.637860] ? find_held_lock+0x2b/0x80 [ 113.638195] ? __is_insn_slot_addr+0x136/0x290 [ 113.638599] ? lock_release+0xc8/0x290 [ 113.638925] ? __is_insn_slot_addr+0x140/0x290 [ 113.639308] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.639716] perf_trace_run_bpf_submit+0xef/0x180 [ 113.640110] perf_trace_lock+0x337/0x5d0 [ 113.640444] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.640822] ? lock_acquire+0x15e/0x2f0 [ 113.641145] ? futex_ref_get+0x48/0x300 [ 113.641466] ? futex_ref_get+0x114/0x300 [ 113.641794] ? futex_hash+0x15c/0x390 [ 113.642110] lock_release+0x1ab/0x290 [ 113.642421] ? futex_hash+0x15c/0x390 [ 113.642733] futex_ref_get+0x119/0x300 [ 113.643050] ? futex_hash+0x15c/0x390 [ 113.643360] futex_hash+0x70/0x390 [ 113.643652] futex_wake+0x143/0x540 [ 113.643953] ? trace_kmem_cache_alloc+0x1f/0xb0 [ 113.644333] ? kmem_cache_alloc_noprof+0x264/0x690 [ 113.644728] ? __pfx_futex_wake+0x10/0x10 [ 113.645070] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.645447] do_futex+0x26d/0x370 [ 113.645735] ? __pfx_do_futex+0x10/0x10 [ 113.646067] ? lock_release+0xc8/0x290 [ 113.646387] __x64_sys_futex+0x1c9/0x4d0 [ 113.646716] ? __sys_socket+0x9f/0x260 [ 113.647039] ? __pfx___x64_sys_futex+0x10/0x10 [ 113.647411] ? xfd_validate_state+0x55/0x180 [ 113.647786] do_syscall_64+0xbf/0x360 [ 113.648098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.648510] RIP: 0033:0x7f95f1e9eb19 [ 113.648817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.650265] RSP: 002b:00007f95ef414218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 113.650871] RAX: ffffffffffffffda RBX: 00007f95f1fb1f68 RCX: 00007f95f1e9eb19 [ 113.651437] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f95f1fb1f6c [ 113.652006] RBP: 00007f95f1fb1f60 R08: 000000000000000e R09: 0000000000000000 [ 113.652572] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f95f1fb1f6c [ 113.653131] R13: 00007ffd2bd6697f R14: 00007f95ef414300 R15: 0000000000022000 [ 113.653699] [ 113.653894] Modules linked in: [ 113.654194] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 113.655064] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.655745] CPU: 0 UID: 0 PID: 3966 Comm: syz-executor.5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.656684] Tainted: [D]=DIE, [W]=WARN [ 113.656989] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.657634] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.658018] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.659442] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 113.659863] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 113.660419] RDX: ffff888017688000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.660979] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc151d8 [ 113.661543] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000 [ 113.662109] R13: 0000000000000024 R14: ffff88806ce31490 R15: dffffc0000000000 [ 113.662670] FS: 00007f95ef414700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.663298] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.663756] CR2: 0000001b2d120000 CR3: 0000000044f6e000 CR4: 0000000000350ef0 [ 113.664320] Call Trace: [ 113.664527] [ 113.664709] ? __pfx_perf_tp_event+0x10/0x10 [ 113.665069] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.665441] ? do_raw_spin_lock+0x123/0x260 [ 113.665792] ? perf_trace_lock+0xb5/0x5d0 [ 113.666130] ? mark_held_locks+0x49/0x80 [ 113.666455] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.666823] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 113.667238] ? kvm_sched_clock_read+0x16/0x30 [ 113.667602] ? sched_clock+0x37/0x60 [ 113.667909] ? sched_clock_cpu+0x6c/0x4e0 [ 113.668247] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.668651] perf_trace_run_bpf_submit+0xef/0x180 [ 113.669042] perf_trace_lock+0x337/0x5d0 [ 113.669367] ? update_cfs_group+0x11d/0x260 [ 113.669712] ? kvm_sched_clock_read+0x16/0x30 [ 113.670088] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.670460] ? check_preempt_wakeup_fair+0x6e/0x950 [ 113.670858] ? sched_ttwu_pending+0x2e0/0x4a0 [ 113.671225] lock_release+0x1ab/0x290 [ 113.671530] ? ttwu_do_activate+0x1a4/0x8a0 [ 113.671878] _raw_spin_unlock+0x16/0x40 [ 113.672197] sched_ttwu_pending+0x2e0/0x4a0 [ 113.672547] ? run_timer_softirq+0x11f/0x210 [ 113.672904] ? lock_release+0xc8/0x290 [ 113.673217] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 113.673611] __flush_smp_call_function_queue+0x434/0x740 [ 113.674055] __sysvec_call_function_single+0x6d/0x370 [ 113.674472] sysvec_call_function_single+0xa1/0xc0 [ 113.674866] [ 113.675048] [ 113.675232] asm_sysvec_call_function_single+0x1a/0x20 [ 113.675648] RIP: 0010:oops_exit+0x0/0x50 [ 113.675976] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 113.677393] RSP: 0018:ffff8880434df690 EFLAGS: 00000202 [ 113.677814] RAX: 000000000002f3ba RBX: 0000000000000212 RCX: ffffc90004c13000 [ 113.678379] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 113.678941] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 113.679499] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880434df758 [ 113.680057] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000 [ 113.680618] ? oops_end+0x4a/0xe0 [ 113.680907] oops_end+0x65/0xe0 [ 113.681179] exc_general_protection+0x1a2/0x330 [ 113.681559] asm_exc_general_protection+0x26/0x30 [ 113.681944] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.682326] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.683748] RSP: 0018:ffff8880434df800 EFLAGS: 00010212 [ 113.684167] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90004c13000 [ 113.684722] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.685277] RBP: ffff8880434dfa70 R08: ffff88806ce31340 R09: ffffe8ffffc151d8 [ 113.685836] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.686406] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.686968] ? perf_tp_event+0x167/0xe70 [ 113.687301] ? kernel_text_address+0x5b/0xc0 [ 113.687662] ? __pfx_perf_tp_event+0x10/0x10 [ 113.688019] ? perf_trace_lock+0xb5/0x5d0 [ 113.688349] ? __mutex_add_waiter+0x202/0x220 [ 113.688709] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.689078] ? lock_acquire+0x15e/0x2f0 [ 113.689395] ? __is_insn_slot_addr+0x2e/0x290 [ 113.689759] ? find_held_lock+0x2b/0x80 [ 113.690091] ? __is_insn_slot_addr+0x136/0x290 [ 113.690461] ? lock_release+0xc8/0x290 [ 113.690775] ? __is_insn_slot_addr+0x140/0x290 [ 113.691149] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.691549] perf_trace_run_bpf_submit+0xef/0x180 [ 113.691938] perf_trace_lock+0x337/0x5d0 [ 113.692265] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.692634] ? lock_acquire+0x15e/0x2f0 [ 113.692954] ? futex_ref_get+0x48/0x300 [ 113.693276] ? futex_ref_get+0x114/0x300 [ 113.693598] ? futex_hash+0x15c/0x390 [ 113.693902] lock_release+0x1ab/0x290 [ 113.694217] ? futex_hash+0x15c/0x390 [ 113.694521] futex_ref_get+0x119/0x300 [ 113.694829] ? futex_hash+0x15c/0x390 [ 113.695132] futex_hash+0x70/0x390 [ 113.695421] futex_wake+0x143/0x540 [ 113.695717] ? trace_kmem_cache_alloc+0x1f/0xb0 [ 113.696091] ? kmem_cache_alloc_noprof+0x264/0x690 [ 113.696494] ? __pfx_futex_wake+0x10/0x10 [ 113.696831] ? __pfx_perf_trace_lock+0x10/0x10 [ 113.697201] do_futex+0x26d/0x370 [ 113.697483] ? __pfx_do_futex+0x10/0x10 [ 113.697801] ? lock_release+0xc8/0x290 [ 113.698121] __x64_sys_futex+0x1c9/0x4d0 [ 113.698449] ? __sys_socket+0x9f/0x260 [ 113.698764] ? __pfx___x64_sys_futex+0x10/0x10 [ 113.699127] ? xfd_validate_state+0x55/0x180 [ 113.699487] do_syscall_64+0xbf/0x360 [ 113.699793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.700201] RIP: 0033:0x7f95f1e9eb19 [ 113.700495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.701909] RSP: 002b:00007f95ef414218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 113.702513] RAX: ffffffffffffffda RBX: 00007f95f1fb1f68 RCX: 00007f95f1e9eb19 [ 113.703067] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f95f1fb1f6c [ 113.703623] RBP: 00007f95f1fb1f60 R08: 000000000000000e R09: 0000000000000000 [ 113.704177] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f95f1fb1f6c [ 113.704732] R13: 00007ffd2bd6697f R14: 00007f95ef414300 R15: 0000000000022000 [ 113.705293] [ 113.705480] Modules linked in: [ 113.705740] ---[ end trace 0000000000000000 ]--- [ 113.706115] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.706487] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.707898] RSP: 0018:ffff8880434df800 EFLAGS: 00010212 [ 113.708318] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90004c13000 [ 113.708874] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.709435] RBP: ffff8880434dfa70 R08: ffff88806ce31340 R09: ffffe8ffffc151d8 [ 113.709997] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.710561] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.711124] FS: 00007f95ef414700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.711756] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.712216] CR2: 0000001b2d120000 CR3: 0000000044f6e000 CR4: 0000000000350ef0 [ 113.712784] Kernel panic - not syncing: Fatal exception in interrupt [ 114.798442] Shutting down cpus with NMI [ 114.799207] Kernel Offset: disabled [ 114.799729] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 09:06:33 Registers: info registers vcpu 0 RAX=0000000000000074 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff8880434df158 R8 =0000000000000000 R9 =ffffed10015fd046 R10=0000000000000074 R11=30376578302f4952 R12=0000000000000074 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f95ef414700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe5100000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d120000 CR3=0000000044f6e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f95f1f857c000007f95f1f857c8 XMM02=00007f95f1f857e000007f95f1f857c0 XMM03=00007f95f1f857c800007f95f1f857c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffffffff816087b0 RCX=000000000000000d RDX=1ffff11002da0f3e RSI=ffffffff81b89e2b RDI=ffff888016d07a60 RBP=ffff888016d07a30 RSP=ffff888016d07990 R8 =ffffffff84c93ca0 R9 =ffff888016d079d8 R10=000000000003bea3 R11=00000000000233e2 R12=ffff888016d07a60 R13=0000000000000000 R14=ffff88800d1db700 R15=ffffea0001157400 RIP=ffffffff816087be RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f4cbbe368c0 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe5300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d725000 CR3=000000000ae41000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=32706f6f6c2f6b636f6c622f6c617574 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00005607fbae303000005607fbae7eb0 XMM06=00005607fbae7ef00000000400000002 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000020000000000000002000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000