Debian GNU/Linux 11 syzkaller ttyS0
Warning: Permanently added '[localhost]:65326' (ECDSA) to the list of known hosts.
2025/09/01 09:11:42 fuzzer started
2025/09/01 09:11:42 dialing manager at localhost:35473
syzkaller login: [ 50.996820] cgroup: Unknown subsys name 'net'
[ 51.041942] cgroup: Unknown subsys name 'cpuset'
[ 51.051330] cgroup: Unknown subsys name 'rlimit'
2025/09/01 09:11:52 syscalls: 2214
2025/09/01 09:11:52 code coverage: enabled
2025/09/01 09:11:52 comparison tracing: enabled
2025/09/01 09:11:52 extra coverage: enabled
2025/09/01 09:11:52 setuid sandbox: enabled
2025/09/01 09:11:52 namespace sandbox: enabled
2025/09/01 09:11:52 Android sandbox: enabled
2025/09/01 09:11:52 fault injection: enabled
2025/09/01 09:11:52 leak checking: enabled
2025/09/01 09:11:52 net packet injection: enabled
2025/09/01 09:11:52 net device setup: enabled
2025/09/01 09:11:52 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 09:11:52 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 09:11:52 USB emulation: enabled
2025/09/01 09:11:52 hci packet injection: enabled
2025/09/01 09:11:52 wifi device emulation: enabled
2025/09/01 09:11:52 802.15.4 emulation: enabled
2025/09/01 09:11:52 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 09:11:52 fetching corpus: 50, signal 26331/29611 (executing program)
2025/09/01 09:11:52 fetching corpus: 100, signal 34194/38792 (executing program)
2025/09/01 09:11:52 fetching corpus: 150, signal 40674/46448 (executing program)
2025/09/01 09:11:52 fetching corpus: 200, signal 52229/58644 (executing program)
2025/09/01 09:11:53 fetching corpus: 250, signal 56994/64291 (executing program)
2025/09/01 09:11:53 fetching corpus: 300, signal 64158/72020 (executing program)
2025/09/01 09:11:53 fetching corpus: 350, signal 68384/76875 (executing program)
2025/09/01 09:11:53 fetching corpus: 400, signal 71897/81034 (executing program)
2025/09/01 09:11:53 fetching corpus: 450, signal 74082/83895 (executing program)
2025/09/01 09:11:53 fetching corpus: 500, signal 75860/86414 (executing program)
2025/09/01 09:11:53 fetching corpus: 550, signal 80046/90818 (executing program)
2025/09/01 09:11:53 fetching corpus: 600, signal 83163/94221 (executing program)
2025/09/01 09:11:53 fetching corpus: 650, signal 85077/96610 (executing program)
2025/09/01 09:11:54 fetching corpus: 700, signal 87394/99276 (executing program)
2025/09/01 09:11:54 fetching corpus: 750, signal 89599/101808 (executing program)
2025/09/01 09:11:54 fetching corpus: 800, signal 91411/103945 (executing program)
2025/09/01 09:11:54 fetching corpus: 850, signal 95651/107855 (executing program)
2025/09/01 09:11:54 fetching corpus: 900, signal 96977/109508 (executing program)
2025/09/01 09:11:54 fetching corpus: 950, signal 98678/111433 (executing program)
2025/09/01 09:11:54 fetching corpus: 1000, signal 99745/112875 (executing program)
2025/09/01 09:11:54 fetching corpus: 1050, signal 101179/114570 (executing program)
2025/09/01 09:11:55 fetching corpus: 1100, signal 102822/116292 (executing program)
2025/09/01 09:11:55 fetching corpus: 1150, signal 103611/117408 (executing program)
2025/09/01 09:11:55 fetching corpus: 1200, signal 105262/119087 (executing program)
2025/09/01 09:11:55 fetching corpus: 1250, signal 106871/120716 (executing program)
2025/09/01 09:11:55 fetching corpus: 1300, signal 107758/121832 (executing program)
2025/09/01 09:11:55 fetching corpus: 1350, signal 109691/123606 (executing program)
2025/09/01 09:11:55 fetching corpus: 1400, signal 110554/124625 (executing program)
2025/09/01 09:11:55 fetching corpus: 1450, signal 111612/125719 (executing program)
2025/09/01 09:11:55 fetching corpus: 1500, signal 112764/126864 (executing program)
2025/09/01 09:11:55 fetching corpus: 1550, signal 113657/127828 (executing program)
2025/09/01 09:11:55 fetching corpus: 1600, signal 114886/128952 (executing program)
2025/09/01 09:11:56 fetching corpus: 1650, signal 115935/129946 (executing program)
2025/09/01 09:11:56 fetching corpus: 1700, signal 116935/130874 (executing program)
2025/09/01 09:11:56 fetching corpus: 1750, signal 118115/131878 (executing program)
2025/09/01 09:11:56 fetching corpus: 1800, signal 119706/133046 (executing program)
2025/09/01 09:11:56 fetching corpus: 1850, signal 120998/134045 (executing program)
2025/09/01 09:11:56 fetching corpus: 1900, signal 121997/134848 (executing program)
2025/09/01 09:11:56 fetching corpus: 1950, signal 123211/135730 (executing program)
2025/09/01 09:11:56 fetching corpus: 2000, signal 124279/136485 (executing program)
2025/09/01 09:11:56 fetching corpus: 2050, signal 125071/137150 (executing program)
2025/09/01 09:11:57 fetching corpus: 2100, signal 125915/137854 (executing program)
2025/09/01 09:11:57 fetching corpus: 2150, signal 127220/138661 (executing program)
2025/09/01 09:11:57 fetching corpus: 2200, signal 128230/139323 (executing program)
2025/09/01 09:11:57 fetching corpus: 2250, signal 129076/139854 (executing program)
2025/09/01 09:11:57 fetching corpus: 2300, signal 129890/140387 (executing program)
2025/09/01 09:11:57 fetching corpus: 2350, signal 130502/140790 (executing program)
2025/09/01 09:11:57 fetching corpus: 2400, signal 131070/141182 (executing program)
2025/09/01 09:11:57 fetching corpus: 2450, signal 132239/141817 (executing program)
2025/09/01 09:11:57 fetching corpus: 2500, signal 133054/142260 (executing program)
2025/09/01 09:11:58 fetching corpus: 2550, signal 133866/142674 (executing program)
2025/09/01 09:11:58 fetching corpus: 2600, signal 134672/143083 (executing program)
2025/09/01 09:11:58 fetching corpus: 2650, signal 135390/143418 (executing program)
2025/09/01 09:11:58 fetching corpus: 2700, signal 135973/143688 (executing program)
2025/09/01 09:11:58 fetching corpus: 2750, signal 136787/143989 (executing program)
2025/09/01 09:11:58 fetching corpus: 2800, signal 137851/144378 (executing program)
2025/09/01 09:11:58 fetching corpus: 2850, signal 138896/144697 (executing program)
2025/09/01 09:11:58 fetching corpus: 2900, signal 139570/145045 (executing program)
2025/09/01 09:11:59 fetching corpus: 2950, signal 140835/145388 (executing program)
2025/09/01 09:11:59 fetching corpus: 3000, signal 141276/145539 (executing program)
2025/09/01 09:11:59 fetching corpus: 3050, signal 142156/145743 (executing program)
2025/09/01 09:11:59 fetching corpus: 3100, signal 142760/145879 (executing program)
2025/09/01 09:11:59 fetching corpus: 3150, signal 143651/146020 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146062 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146107 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146143 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146176 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146224 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146256 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146290 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146320 (executing program)
2025/09/01 09:11:59 fetching corpus: 3156, signal 143704/146320 (executing program)
2025/09/01 09:12:01 starting 8 fuzzer processes
09:12:01 executing program 0:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000002280)={[{@fat=@time_offset={'time_offset', 0x3d, 0xfffffffffffffc6c}}]})
09:12:01 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
09:12:01 executing program 7:
madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10)
mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000)
mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0)
madvise(&(0x7f00008b6000/0x3000)=nil, 0x3000, 0x12)
mlock(&(0x7f00007fd000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000c68000/0x1000)=nil, 0x1000)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
09:12:01 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f00000004c0)={[{@mode}]})
09:12:01 executing program 3:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1000000000})
unlink(&(0x7f00000000c0)='./file0\x00')
09:12:01 executing program 4:
syz_mount_image$nfs(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, 0x0, &(0x7f0000000540), 0x2000, &(0x7f0000000580))
[ 69.671276] audit: type=1400 audit(1756717921.682:8): avc: denied { execmem } for pid=271 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
09:12:01 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f00000002c0), 0x0, 0x0)
ioctl$EVIOCGABS20(r0, 0x80184560, 0x0)
09:12:01 executing program 6:
keyctl$negate(0xd, 0x0, 0x0, 0x0)
[ 70.846409] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 70.848435] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 70.851044] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 70.852916] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 70.857481] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 70.860133] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 70.867009] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 70.878039] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 70.888910] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 70.891948] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 70.917438] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 70.923166] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 70.928079] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 70.932102] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 70.934124] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 70.971505] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 70.976166] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 70.978312] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 70.980057] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 70.983735] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 70.986075] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 71.002579] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 71.009046] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 71.041470] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 71.043205] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 71.048967] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 71.051411] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 71.053425] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 71.054707] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 71.060966] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 71.061082] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 71.078761] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 71.105628] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 71.112332] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 71.117222] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 71.118383] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 71.122987] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 71.124210] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 71.174031] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 71.176902] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 72.878247] Bluetooth: hci0: command tx timeout
[ 72.943848] Bluetooth: hci2: command tx timeout
[ 72.944584] Bluetooth: hci1: command tx timeout
[ 73.005965] Bluetooth: hci4: command tx timeout
[ 73.133954] Bluetooth: hci3: command tx timeout
[ 73.198341] Bluetooth: hci6: command tx timeout
[ 73.199484] Bluetooth: hci5: command tx timeout
[ 73.261756] Bluetooth: hci7: command tx timeout
[ 74.927715] Bluetooth: hci0: command tx timeout
[ 74.989774] Bluetooth: hci1: command tx timeout
[ 74.990488] Bluetooth: hci2: command tx timeout
[ 75.053802] Bluetooth: hci4: command tx timeout
[ 75.181797] Bluetooth: hci3: command tx timeout
[ 75.245911] Bluetooth: hci6: command tx timeout
[ 75.246622] Bluetooth: hci5: command tx timeout
[ 75.310231] Bluetooth: hci7: command tx timeout
[ 76.976719] Bluetooth: hci0: command tx timeout
[ 77.038722] Bluetooth: hci2: command tx timeout
[ 77.039237] Bluetooth: hci1: command tx timeout
[ 77.101718] Bluetooth: hci4: command tx timeout
[ 77.229718] Bluetooth: hci3: command tx timeout
[ 77.294796] Bluetooth: hci5: command tx timeout
[ 77.295214] Bluetooth: hci6: command tx timeout
[ 77.357847] Bluetooth: hci7: command tx timeout
[ 79.023832] Bluetooth: hci0: command tx timeout
[ 79.086723] Bluetooth: hci1: command tx timeout
[ 79.087252] Bluetooth: hci2: command tx timeout
[ 79.150757] Bluetooth: hci4: command tx timeout
[ 79.280068] Bluetooth: hci3: command tx timeout
[ 79.342839] Bluetooth: hci6: command tx timeout
[ 79.343272] Bluetooth: hci5: command tx timeout
[ 79.405845] Bluetooth: hci7: command tx timeout
[ 107.490968] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.491618] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.658173] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.658817] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.822759] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.823376] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.928340] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.929178] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.009438] msdos: Bad value for 'time_offset'
[ 108.014249] msdos: Bad value for 'time_offset'
[ 108.108350] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.109226] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.110513] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.111131] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.247508] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.248101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.374355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.375239] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.480511] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.481158] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.680512] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.681172] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.807770] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.808399] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.865195] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.865910] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.889996] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.890582] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.943959] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.944533] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.983235] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.983899] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 109.025738] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 109.026336] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.028992] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 111.036027] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 111.038874] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 111.054970] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 111.058207] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 113.133731] Bluetooth: hci5: command tx timeout
[ 115.181777] Bluetooth: hci5: command tx timeout
[ 117.230780] Bluetooth: hci5: command tx timeout
[ 119.278808] Bluetooth: hci5: command tx timeout
[ 126.732102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.733298] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.797265] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.798362] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:12:58 executing program 4:
syz_mount_image$nfs(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, 0x0, &(0x7f0000000540), 0x2000, &(0x7f0000000580))
09:12:58 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x19, 0x0, 0x0)
09:12:58 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f00000004c0)={[{@mode}]})
09:12:58 executing program 0:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000002280)={[{@fat=@time_offset={'time_offset', 0x3d, 0xfffffffffffffc6c}}]})
09:12:58 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
09:12:58 executing program 6:
madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10)
mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000)
mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0)
madvise(&(0x7f00008b6000/0x3000)=nil, 0x3000, 0x12)
mlock(&(0x7f00007fd000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000c68000/0x1000)=nil, 0x1000)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
09:12:58 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f00000002c0), 0x0, 0x0)
ioctl$EVIOCGABS20(r0, 0x80184560, 0x0)
09:12:58 executing program 7:
madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10)
mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000)
mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0)
madvise(&(0x7f00008b6000/0x3000)=nil, 0x3000, 0x12)
mlock(&(0x7f00007fd000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000c68000/0x1000)=nil, 0x1000)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
[ 127.032191] msdos: Bad value for 'time_offset'
09:12:59 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x19, 0x0, 0x0)
09:12:59 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
09:12:59 executing program 4:
syz_mount_image$nfs(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, 0x0, &(0x7f0000000540), 0x2000, &(0x7f0000000580))
09:12:59 executing program 0:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000002280)={[{@fat=@time_offset={'time_offset', 0x3d, 0xfffffffffffffc6c}}]})
09:12:59 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f00000004c0)={[{@mode}]})
09:12:59 executing program 7:
madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10)
mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000)
mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0)
madvise(&(0x7f00008b6000/0x3000)=nil, 0x3000, 0x12)
mlock(&(0x7f00007fd000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000c68000/0x1000)=nil, 0x1000)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
09:12:59 executing program 6:
madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10)
mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000)
mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0)
madvise(&(0x7f00008b6000/0x3000)=nil, 0x3000, 0x12)
mlock(&(0x7f00007fd000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000c68000/0x1000)=nil, 0x1000)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
09:12:59 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f00000002c0), 0x0, 0x0)
ioctl$EVIOCGABS20(r0, 0x80184560, 0x0)
[ 127.244296] msdos: Bad value for 'time_offset'
09:12:59 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
09:12:59 executing program 4:
syz_mount_image$nfs(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, 0x0, &(0x7f0000000540), 0x2000, &(0x7f0000000580))
09:12:59 executing program 0:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000002280)={[{@fat=@time_offset={'time_offset', 0x3d, 0xfffffffffffffc6c}}]})
[ 127.406316] msdos: Bad value for 'time_offset'
09:12:59 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x19, 0x0, 0x0)
09:12:59 executing program 7:
madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10)
mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000)
mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0)
madvise(&(0x7f00008b6000/0x3000)=nil, 0x3000, 0x12)
mlock(&(0x7f00007fd000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000c68000/0x1000)=nil, 0x1000)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
09:12:59 executing program 6:
madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10)
mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000)
mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0)
madvise(&(0x7f00008b6000/0x3000)=nil, 0x3000, 0x12)
mlock(&(0x7f00007fd000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000c68000/0x1000)=nil, 0x1000)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
09:12:59 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f00000004c0)={[{@mode}]})
09:12:59 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f00000002c0), 0x0, 0x0)
ioctl$EVIOCGABS20(r0, 0x80184560, 0x0)
09:12:59 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)={0x18, 0x68, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=0xee01}]}, 0x18}], 0x1}, 0x0)
09:12:59 executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
getuid()
09:12:59 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)={0x18, 0x68, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=0xee01}]}, 0x18}], 0x1}, 0x0)
09:12:59 executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
getuid()
09:12:59 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x19, 0x0, 0x0)
09:12:59 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000900)="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", 0x1ba)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r2, 0x4, 0x44000)
sendfile(r2, r3, 0x0, 0xfdef)
sendfile(r0, r1, 0x0, 0xfdef)
09:12:59 executing program 4:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@fat=@sys_immutable}]})
09:12:59 executing program 6:
r0 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x7)
ftruncate(r0, 0x8800000)
read(r0, 0x0, 0xfe5f)
09:12:59 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f00000002c0)=""/239)
[ 127.747109] No source specified
[ 127.751378] No source specified
[ 127.752542] audit: type=1400 audit(1756717979.761:9): avc: denied { open } for pid=4404 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 127.767417] audit: type=1400 audit(1756717979.762:10): avc: denied { kernel } for pid=4404 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
09:12:59 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000240)={0x0, "77b1a369993c02fbf2c9cbe5119a8d6b3cd89916abbe60b4390d67b06aab738a3ddb5a33ea4d0c97bf5c542184e96b80adc2ee0526e68f289a5f8f91ec35ac88"}, 0x48, r0)
request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='{*]#\x00', r1)
09:12:59 executing program 4:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@fat=@sys_immutable}]})
[ 127.834811] No source specified
09:12:59 executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
getuid()
[ 127.863966] kmemleak: Found object by alias at 0x607f1a63e134
[ 127.863995] CPU: 0 UID: 0 PID: 4411 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 127.864028] Tainted: [W]=WARN
[ 127.864035] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 127.864047] Call Trace:
[ 127.864054]
[ 127.864062] dump_stack_lvl+0xca/0x120
[ 127.864111] __lookup_object+0x94/0xb0
[ 127.864142] delete_object_full+0x27/0x70
[ 127.864172] free_percpu+0x30/0x1160
[ 127.864201] ? arch_uprobe_clear_state+0x16/0x140
[ 127.864237] futex_hash_free+0x38/0xc0
[ 127.864263] mmput+0x2d3/0x390
[ 127.864296] do_exit+0x79d/0x2970
[ 127.864321] ? lock_release+0xc8/0x290
[ 127.864351] ? __pfx_do_exit+0x10/0x10
[ 127.864376] ? find_held_lock+0x2b/0x80
[ 127.864407] ? get_signal+0x835/0x2340
[ 127.864442] do_group_exit+0xd3/0x2a0
[ 127.864469] get_signal+0x2315/0x2340
[ 127.864510] ? __pfx_get_signal+0x10/0x10
[ 127.864539] ? do_futex+0x135/0x370
[ 127.864564] ? __pfx_do_futex+0x10/0x10
[ 127.864591] arch_do_signal_or_restart+0x80/0x790
[ 127.864623] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 127.864653] ? __x64_sys_futex+0x1c9/0x4d0
[ 127.864682] ? __x64_sys_futex+0x1d2/0x4d0
[ 127.864710] ? __pfx___x64_sys_futex+0x10/0x10
[ 127.864735] ? __sys_setsockopt+0x13f/0x1a0
[ 127.864773] exit_to_user_mode_loop+0x8b/0x110
[ 127.864796] do_syscall_64+0x2f7/0x360
[ 127.864819] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 127.864841] RIP: 0033:0x7feb95dd0b19
[ 127.864856] Code: Unable to access opcode bytes at 0x7feb95dd0aef.
[ 127.864866] RSP: 002b:00007feb93346218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 127.864886] RAX: fffffffffffffe00 RBX: 00007feb95ee3f68 RCX: 00007feb95dd0b19
[ 127.864900] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007feb95ee3f68
[ 127.864913] RBP: 00007feb95ee3f60 R08: 0000000000000000 R09: 0000000000000000
[ 127.864925] R10: 0000000000000000 R11: 0000000000000246 R12: 00007feb95ee3f6c
[ 127.864938] R13: 00007ffc6c8d83ef R14: 00007feb93346300 R15: 0000000000022000
[ 127.864965]
[ 127.864972] kmemleak: Object (percpu) 0x607f1a63e130 (size 8):
[ 127.864995] kmemleak: comm "syz-executor.5", pid 4407, jiffies 4294794393
[ 127.865007] kmemleak: min_count = 1
[ 127.865014] kmemleak: count = 0
[ 127.865021] kmemleak: flags = 0x21
[ 127.865028] kmemleak: checksum = 0
[ 127.865034] kmemleak: backtrace:
[ 127.865040] pcpu_alloc_noprof+0x87a/0x1170
[ 127.865068] perf_trace_event_init+0x366/0xa10
[ 127.865093] perf_trace_init+0x1a4/0x2f0
[ 127.865115] perf_tp_event_init+0xa6/0x120
[ 127.865143] perf_try_init_event+0x140/0x9f0
[ 127.865167] perf_event_alloc.part.0+0x118e/0x45f0
[ 127.865198] __do_sys_perf_event_open+0x719/0x2c20
[ 127.865221] do_syscall_64+0xbf/0x360
[ 127.865238] entry_SYSCALL_64_after_hwframe+0x77/0x7f
09:12:59 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000240)={0x0, "77b1a369993c02fbf2c9cbe5119a8d6b3cd89916abbe60b4390d67b06aab738a3ddb5a33ea4d0c97bf5c542184e96b80adc2ee0526e68f289a5f8f91ec35ac88"}, 0x48, r0)
request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='{*]#\x00', r1)
09:12:59 executing program 4:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@fat=@sys_immutable}]})
09:12:59 executing program 6:
r0 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x7)
ftruncate(r0, 0x8800000)
read(r0, 0x0, 0xfe5f)
09:12:59 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)={0x18, 0x68, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=0xee01}]}, 0x18}], 0x1}, 0x0)
09:12:59 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f00000002c0)=""/239)
09:13:00 executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
getuid()
09:13:00 executing program 6:
r0 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x7)
ftruncate(r0, 0x8800000)
read(r0, 0x0, 0xfe5f)
[ 128.049276] No source specified
09:13:00 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)={0x18, 0x68, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=0xee01}]}, 0x18}], 0x1}, 0x0)
09:13:00 executing program 3:
r0 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x7)
ftruncate(r0, 0x8800000)
read(r0, 0x0, 0xfe5f)
[ 128.193835] kmemleak: Found object by alias at 0x607f1a63e134
[ 128.193862] CPU: 0 UID: 0 PID: 4439 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 128.193889] Tainted: [W]=WARN
[ 128.193895] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 128.193905] Call Trace:
[ 128.193911]
[ 128.193917] dump_stack_lvl+0xca/0x120
[ 128.193961] __lookup_object+0x94/0xb0
[ 128.193987] delete_object_full+0x27/0x70
[ 128.194012] free_percpu+0x30/0x1160
[ 128.194037] ? arch_uprobe_clear_state+0x16/0x140
[ 128.194067] futex_hash_free+0x38/0xc0
[ 128.194089] mmput+0x2d3/0x390
[ 128.194117] do_exit+0x79d/0x2970
[ 128.194143] ? __pfx_do_exit+0x10/0x10
[ 128.194163] ? trace_irq_enable.constprop.0+0x26/0x100
[ 128.194184] ? _raw_spin_unlock_irq+0x23/0x40
[ 128.194212] do_group_exit+0xd3/0x2a0
[ 128.194234] __x64_sys_exit_group+0x3e/0x50
[ 128.194255] x64_sys_call+0x18c5/0x18d0
[ 128.194279] do_syscall_64+0xbf/0x360
[ 128.194298] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.194315] RIP: 0033:0x7feb95dd0b19
[ 128.194328] Code: Unable to access opcode bytes at 0x7feb95dd0aef.
[ 128.194336] RSP: 002b:00007ffc6c8d8618 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 128.194354] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007feb95dd0b19
[ 128.194365] RDX: 00007feb95d8372b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 128.194376] RBP: 0000000000000000 R08: 0000001b2d221d88 R09: 0000000000000000
[ 128.194386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 128.194396] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc6c8d8700
[ 128.194419]
[ 128.194425] kmemleak: Object (percpu) 0x607f1a63e130 (size 8):
[ 128.194435] kmemleak: comm "syz-executor.5", pid 4407, jiffies 4294794393
[ 128.194446] kmemleak: min_count = 1
[ 128.194452] kmemleak: count = 0
[ 128.194457] kmemleak: flags = 0x21
[ 128.194463] kmemleak: checksum = 0
[ 128.194469] kmemleak: backtrace:
[ 128.194475] pcpu_alloc_noprof+0x87a/0x1170
[ 128.194498] perf_trace_event_init+0x366/0xa10
[ 128.194518] perf_trace_init+0x1a4/0x2f0
[ 128.194536] perf_tp_event_init+0xa6/0x120
[ 128.194559] perf_try_init_event+0x140/0x9f0
[ 128.194580] perf_event_alloc.part.0+0x118e/0x45f0
[ 128.194605] __do_sys_perf_event_open+0x719/0x2c20
[ 128.194625] do_syscall_64+0xbf/0x360
[ 128.194639] entry_SYSCALL_64_after_hwframe+0x77/0x7f
09:13:00 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f00000002c0)=""/239)
09:13:00 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000240)={0x0, "77b1a369993c02fbf2c9cbe5119a8d6b3cd89916abbe60b4390d67b06aab738a3ddb5a33ea4d0c97bf5c542184e96b80adc2ee0526e68f289a5f8f91ec35ac88"}, 0x48, r0)
request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='{*]#\x00', r1)
09:13:00 executing program 6:
r0 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x7)
ftruncate(r0, 0x8800000)
read(r0, 0x0, 0xfe5f)
09:13:00 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000240)={0x0, "77b1a369993c02fbf2c9cbe5119a8d6b3cd89916abbe60b4390d67b06aab738a3ddb5a33ea4d0c97bf5c542184e96b80adc2ee0526e68f289a5f8f91ec35ac88"}, 0x48, r0)
request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='{*]#\x00', r1)
09:13:00 executing program 4:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@fat=@sys_immutable}]})
09:13:00 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_gettime(0x2, &(0x7f0000000500))
09:13:00 executing program 3:
r0 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x7)
ftruncate(r0, 0x8800000)
read(r0, 0x0, 0xfe5f)
09:13:00 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000900)="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", 0x1ba)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r2, 0x4, 0x44000)
sendfile(r2, r3, 0x0, 0xfdef)
sendfile(r0, r1, 0x0, 0xfdef)
[ 128.551984] No source specified
[ 128.563202] kmemleak: Found object by alias at 0x607f1a63e134
[ 128.563223] CPU: 1 UID: 0 PID: 4447 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 128.563242] Tainted: [W]=WARN
[ 128.563246] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 128.563253] Call Trace:
[ 128.563257]
[ 128.563263] dump_stack_lvl+0xca/0x120
[ 128.563295] __lookup_object+0x94/0xb0
[ 128.563313] delete_object_full+0x27/0x70
[ 128.563330] free_percpu+0x30/0x1160
[ 128.563347] ? arch_uprobe_clear_state+0x16/0x140
[ 128.563369] futex_hash_free+0x38/0xc0
[ 128.563385] mmput+0x2d3/0x390
[ 128.563404] do_exit+0x79d/0x2970
[ 128.563419] ? signal_wake_up_state+0x85/0x120
[ 128.563435] ? zap_other_threads+0x2b9/0x3a0
[ 128.563452] ? __pfx_do_exit+0x10/0x10
[ 128.563466] ? do_group_exit+0x1c3/0x2a0
[ 128.563480] ? lock_release+0xc8/0x290
[ 128.563499] do_group_exit+0xd3/0x2a0
[ 128.563514] __x64_sys_exit_group+0x3e/0x50
[ 128.563529] x64_sys_call+0x18c5/0x18d0
[ 128.563545] do_syscall_64+0xbf/0x360
[ 128.563559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.563571] RIP: 0033:0x7feb95dd0b19
[ 128.563580] Code: Unable to access opcode bytes at 0x7feb95dd0aef.
[ 128.563586] RSP: 002b:00007ffc6c8d8618 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 128.563598] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007feb95dd0b19
[ 128.563606] RDX: 00007feb95d8372b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 128.563614] RBP: 0000000000000000 R08: 0000001b2d221bcc R09: 0000000000000000
[ 128.563621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 128.563629] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc6c8d8700
[ 128.563646]
[ 128.563650] kmemleak: Object (percpu) 0x607f1a63e130 (size 8):
[ 128.563662] kmemleak: comm "syz-executor.1", pid 4452, jiffies 4294795190
[ 128.563669] kmemleak: min_count = 1
[ 128.563673] kmemleak: count = 0
[ 128.563677] kmemleak: flags = 0x21
[ 128.563681] kmemleak: checksum = 0
[ 128.563685] kmemleak: backtrace:
[ 128.563689] pcpu_alloc_noprof+0x87a/0x1170
[ 128.563705] perf_trace_event_init+0x366/0xa10
[ 128.563719] perf_trace_init+0x1a4/0x2f0
[ 128.563732] perf_tp_event_init+0xa6/0x120
[ 128.563748] perf_try_init_event+0x140/0x9f0
[ 128.563762] perf_event_alloc.part.0+0x118e/0x45f0
[ 128.563780] __do_sys_perf_event_open+0x719/0x2c20
[ 128.563794] do_syscall_64+0xbf/0x360
[ 128.563803] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.569439] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 128.585130] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 128.585816] CPU: 0 UID: 0 PID: 4457 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 128.587827] Tainted: [W]=WARN
[ 128.588574] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 128.590275] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.591641] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.595498] RSP: 0018:ffff88800f947800 EFLAGS: 00010212
[ 128.595980] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.596609] RDX: ffff888040508000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.597249] RBP: ffff88800f947a70 R08: ffff88806ce31340 R09: ffffe8ffffc16130
[ 128.597881] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 128.598512] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 128.599151] FS: 0000555555ddc400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 128.599865] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.600387] CR2: 0000555555dddc18 CR3: 00000000445a4000 CR4: 0000000000350ef0
[ 128.601040] Call Trace:
[ 128.601278]
[ 128.601489] ? arch_scale_cpu_capacity+0x17/0xa0
[ 128.601927] ? __pfx_perf_tp_event+0x10/0x10
[ 128.602325] ? __asan_memset+0x24/0x50
[ 128.602695] ? perf_trace_lock+0xb5/0x5d0
[ 128.603076] ? kvm_sched_clock_read+0x16/0x30
[ 128.603485] ? sched_clock+0x37/0x60
[ 128.603828] ? lock_is_held_type+0x9e/0x120
[ 128.604225] ? perf_trace_run_bpf_submit+0xef/0x180
[ 128.604678] perf_trace_run_bpf_submit+0xef/0x180
[ 128.605122] perf_trace_lock+0x337/0x5d0
[ 128.605494] ? __pfx_perf_trace_lock+0x10/0x10
[ 128.605909] ? lock_acquire+0x15e/0x2f0
[ 128.606275] ? futex_ref_get+0x48/0x300
[ 128.606637] ? futex_ref_get+0x114/0x300
[ 128.607005] ? futex_hash+0x15c/0x390
[ 128.607352] lock_release+0x1ab/0x290
[ 128.607705] ? futex_hash+0x15c/0x390
[ 128.608048] futex_ref_get+0x119/0x300
[ 128.608398] ? futex_hash+0x15c/0x390
[ 128.608738] futex_hash+0x70/0x390
[ 128.609067] futex_wake+0x143/0x540
[ 128.609401] ? put_pid+0x1f/0x30
[ 128.609717] ? kernel_clone+0x204/0x7f0
[ 128.610082] ? __pfx_futex_wake+0x10/0x10
[ 128.610463] ? __pfx_kernel_clone+0x10/0x10
[ 128.610857] ? perf_trace_lock+0xb5/0x5d0
[ 128.611234] do_futex+0x26d/0x370
[ 128.611553] ? __pfx_do_futex+0x10/0x10
[ 128.611915] ? __pfx___do_sys_clone+0x10/0x10
[ 128.612318] ? find_held_lock+0x2b/0x80
[ 128.612688] __x64_sys_futex+0x1c9/0x4d0
[ 128.613062] ? __pfx___x64_sys_futex+0x10/0x10
[ 128.613482] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 128.613954] do_syscall_64+0xbf/0x360
[ 128.614297] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.614752] RIP: 0033:0x7fc653534b19
[ 128.615087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 128.616649] RSP: 002b:00007ffe6a760908 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 128.617319] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc653534b19
[ 128.617942] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc653647f68
[ 128.618564] RBP: 00007fc653647f60 R08: 00007fc650aaa700 R09: 0000000000000000
[ 128.619186] R10: 00007fc650aaa700 R11: 0000000000000246 R12: 00007fc65364ca68
[ 128.619809] R13: 00007ffe6a760a10 R14: 00007fc653647f60 R15: 000000000001f566
[ 128.620440]
[ 128.620653] Modules linked in:
[ 128.621002] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 128.621969] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 128.622624] CPU: 0 UID: 0 PID: 4457 Comm: syz-executor.5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 128.623673] Tainted: [D]=DIE, [W]=WARN
[ 128.624011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 128.624723] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.625149] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.626731] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012
[ 128.627193] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.627810] RDX: ffff888040508000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.628421] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16130
[ 128.629038] R10: 0000000000000000 R11: ffff88801e503498 R12: dffffc0000000000
[ 128.629648] R13: 0000000000000024 R14: ffff88806ce31490 R15: dffffc0000000000
[ 128.630269] FS: 0000555555ddc400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 128.630960] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.631466] CR2: 0000555555dddc18 CR3: 00000000445a4000 CR4: 0000000000350ef0
[ 128.632079] Call Trace:
[ 128.632304]
[ 128.632502] ? __pfx_perf_tp_event+0x10/0x10
[ 128.632894] ? sched_clock_cpu+0x6c/0x4e0
[ 128.633272] ? trace_pelt_se_tp+0xdf/0x130
[ 128.633647] ? __update_load_avg_se+0x428/0xa40
[ 128.634069] ? lock_is_held_type+0x9e/0x120
[ 128.634456] ? perf_trace_lock+0xb5/0x5d0
[ 128.634824] ? perf_trace_lock+0xb5/0x5d0
[ 128.635188] ? __resched_curr+0x2a2/0x330
[ 128.635559] ? kvm_sched_clock_read+0x16/0x30
[ 128.635953] ? sched_clock+0x37/0x60
[ 128.636285] ? sched_clock_cpu+0x6c/0x4e0
[ 128.636653] ? perf_trace_run_bpf_submit+0xef/0x180
[ 128.637098] perf_trace_run_bpf_submit+0xef/0x180
[ 128.637528] perf_trace_lock+0x337/0x5d0
[ 128.637886] ? update_cfs_group+0x11d/0x260
[ 128.638269] ? kvm_sched_clock_read+0x16/0x30
[ 128.638669] ? __pfx_perf_trace_lock+0x10/0x10
[ 128.639072] ? check_preempt_wakeup_fair+0x6e/0x950
[ 128.639507] ? sched_ttwu_pending+0x2e0/0x4a0
[ 128.639907] lock_release+0x1ab/0x290
[ 128.640241] ? ttwu_do_activate+0x1a4/0x8a0
[ 128.640620] _raw_spin_unlock+0x16/0x40
[ 128.640973] sched_ttwu_pending+0x2e0/0x4a0
[ 128.641366] ? __pfx_sched_ttwu_pending+0x10/0x10
[ 128.641793] ? hrtimer_interrupt+0x652/0x830
[ 128.642184] __flush_smp_call_function_queue+0x434/0x740
[ 128.642661] __sysvec_call_function_single+0x6d/0x370
[ 128.643116] sysvec_call_function_single+0xa1/0xc0
[ 128.643542]
[ 128.643741]
[ 128.643940] asm_sysvec_call_function_single+0x1a/0x20
[ 128.644394] RIP: 0010:oops_exit+0x0/0x50
[ 128.644751] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57
[ 128.646314] RSP: 0018:ffff88800f947690 EFLAGS: 00000202
[ 128.646765] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f
[ 128.647369] RDX: ffff888040508000 RSI: ffffffff812a3dca RDI: 0000000000000007
[ 128.647988] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690
[ 128.648595] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800f947758
[ 128.649206] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[ 128.649822] ? add_taint+0x5f/0xd0
[ 128.650142] ? oops_end+0x4a/0xe0
[ 128.650458] oops_end+0x65/0xe0
[ 128.650763] exc_general_protection+0x1a2/0x330
[ 128.651172] asm_exc_general_protection+0x26/0x30
[ 128.651583] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.651984] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.653512] RSP: 0018:ffff88800f947800 EFLAGS: 00010212
[ 128.653961] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.654562] RDX: ffff888040508000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.655166] RBP: ffff88800f947a70 R08: ffff88806ce31340 R09: ffffe8ffffc16130
[ 128.655768] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 128.656369] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 128.656982] ? perf_tp_event+0x167/0xe70
[ 128.657349] ? arch_scale_cpu_capacity+0x17/0xa0
[ 128.657760] ? __pfx_perf_tp_event+0x10/0x10
[ 128.658137] ? __asan_memset+0x24/0x50
[ 128.658488] ? perf_trace_lock+0xb5/0x5d0
[ 128.658850] ? kvm_sched_clock_read+0x16/0x30
[ 128.659241] ? sched_clock+0x37/0x60
[ 128.659566] ? lock_is_held_type+0x9e/0x120
[ 128.659942] ? perf_trace_run_bpf_submit+0xef/0x180
[ 128.660372] perf_trace_run_bpf_submit+0xef/0x180
[ 128.660794] perf_trace_lock+0x337/0x5d0
[ 128.661161] ? __pfx_perf_trace_lock+0x10/0x10
[ 128.661558] ? lock_acquire+0x15e/0x2f0
[ 128.661910] ? futex_ref_get+0x48/0x300
[ 128.662259] ? futex_ref_get+0x114/0x300
[ 128.662606] ? futex_hash+0x15c/0x390
[ 128.662935] lock_release+0x1ab/0x290
[ 128.663262] ? futex_hash+0x15c/0x390
[ 128.663583] futex_ref_get+0x119/0x300
[ 128.663915] ? futex_hash+0x15c/0x390
[ 128.664243] futex_hash+0x70/0x390
[ 128.664549] futex_wake+0x143/0x540
[ 128.664868] ? put_pid+0x1f/0x30
[ 128.665167] ? kernel_clone+0x204/0x7f0
[ 128.665509] ? __pfx_futex_wake+0x10/0x10
[ 128.665868] ? __pfx_kernel_clone+0x10/0x10
[ 128.666236] ? perf_trace_lock+0xb5/0x5d0
[ 128.666599] do_futex+0x26d/0x370
[ 128.666905] ? __pfx_do_futex+0x10/0x10
[ 128.667251] ? __pfx___do_sys_clone+0x10/0x10
[ 128.667633] ? find_held_lock+0x2b/0x80
[ 128.667984] __x64_sys_futex+0x1c9/0x4d0
[ 128.668338] ? __pfx___x64_sys_futex+0x10/0x10
[ 128.668734] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 128.669188] do_syscall_64+0xbf/0x360
[ 128.669516] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.669956] RIP: 0033:0x7fc653534b19
[ 128.670274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 128.671803] RSP: 002b:00007ffe6a760908 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 128.672446] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc653534b19
[ 128.673055] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc653647f68
[ 128.673657] RBP: 00007fc653647f60 R08: 00007fc650aaa700 R09: 0000000000000000
[ 128.674258] R10: 00007fc650aaa700 R11: 0000000000000246 R12: 00007fc65364ca68
[ 128.674858] R13: 00007ffe6a760a10 R14: 00007fc653647f60 R15: 000000000001f566
[ 128.675454]
[ 128.675656] Modules linked in:
[ 128.675934] ---[ end trace 0000000000000000 ]---
[ 128.676332] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.676729] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.678239] RSP: 0018:ffff88800f947800 EFLAGS: 00010212
[ 128.678686] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.679277] RDX: ffff888040508000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.679866] RBP: ffff88800f947a70 R08: ffff88806ce31340 R09: ffffe8ffffc16130
[ 128.680464] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 128.681073] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 128.681692] FS: 0000555555ddc400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 128.682384] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.682895] CR2: 0000555555dddc18 CR3: 00000000445a4000 CR4: 0000000000350ef0
[ 128.683512] Kernel panic - not syncing: Fatal exception in interrupt
[ 128.684155] Kernel Offset: disabled
[ 128.684482] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
09:13:00 Registers:
info registers vcpu 0
RAX=000000000000002b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88800f947158
R8 =0000000000000000 R9 =ffffed1001e71046 R10=000000000000002b R11=30376578302f4952
R12=000000000000002b R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555ddc400 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe6a00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000555555dddc18 CR3=00000000445a4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007fc65361b7c000007fc65361b7c8
XMM02=00007fc65361b7e000007fc65361b7c0 XMM03=00007fc65361b7c800007fc65361b7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88806ce3de20 RCX=ffffffff816880fc RDX=ffff88804050b700
RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88803f31f988
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1
R12=ffffed100d9c7bc5 R13=ffff88806ce3de28 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555558182400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe4900000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2cd24000 CR3=000000000e397000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000ff0000000000000000000000 XMM01=ff00ff00010000000000000000000000
XMM02=7463656a6e695f31313230385f7a7973 XMM03=88ac35ec918f5f9a288fe62605eec2ad
XMM04=88ac35ec918f5f9a288fe62605eec2ad XMM05=806be98421545cbf970c4dea335adb3d
XMM06=8a73ab6ab0670d39b460beab1699d83c XMM07=6b8d9a11e5cbc9f2fb023c9969a3b177
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000