Warning: Permanently added '[localhost]:65314' (ECDSA) to the list of known hosts. 2025/09/01 10:02:52 fuzzer started 2025/09/01 10:02:53 dialing manager at localhost:35473 syzkaller login: [ 58.972351] cgroup: Unknown subsys name 'net' [ 59.041970] cgroup: Unknown subsys name 'cpuset' [ 59.064874] cgroup: Unknown subsys name 'rlimit' 2025/09/01 10:03:04 syscalls: 2214 2025/09/01 10:03:04 code coverage: enabled 2025/09/01 10:03:04 comparison tracing: enabled 2025/09/01 10:03:04 extra coverage: enabled 2025/09/01 10:03:04 setuid sandbox: enabled 2025/09/01 10:03:04 namespace sandbox: enabled 2025/09/01 10:03:04 Android sandbox: enabled 2025/09/01 10:03:04 fault injection: enabled 2025/09/01 10:03:04 leak checking: enabled 2025/09/01 10:03:04 net packet injection: enabled 2025/09/01 10:03:04 net device setup: enabled 2025/09/01 10:03:04 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 10:03:04 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 10:03:04 USB emulation: enabled 2025/09/01 10:03:04 hci packet injection: enabled 2025/09/01 10:03:04 wifi device emulation: enabled 2025/09/01 10:03:04 802.15.4 emulation: enabled 2025/09/01 10:03:04 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 10:03:04 fetching corpus: 50, signal 28625/31908 (executing program) 2025/09/01 10:03:04 fetching corpus: 100, signal 36842/41459 (executing program) 2025/09/01 10:03:05 fetching corpus: 150, signal 46707/52383 (executing program) 2025/09/01 10:03:05 fetching corpus: 200, signal 53322/59997 (executing program) 2025/09/01 10:03:05 fetching corpus: 250, signal 58062/65793 (executing program) 2025/09/01 10:03:05 fetching corpus: 300, signal 62949/71536 (executing program) 2025/09/01 10:03:05 fetching corpus: 350, signal 65740/75280 (executing program) 2025/09/01 10:03:05 fetching corpus: 400, signal 68750/79158 (executing program) 2025/09/01 10:03:05 fetching corpus: 450, signal 72663/83736 (executing program) 2025/09/01 10:03:05 fetching corpus: 500, signal 77493/89005 (executing program) 2025/09/01 10:03:05 fetching corpus: 550, signal 80727/92859 (executing program) 2025/09/01 10:03:06 fetching corpus: 600, signal 82709/95549 (executing program) 2025/09/01 10:03:06 fetching corpus: 650, signal 85417/98778 (executing program) 2025/09/01 10:03:06 fetching corpus: 700, signal 88502/102272 (executing program) 2025/09/01 10:03:06 fetching corpus: 750, signal 90299/104580 (executing program) 2025/09/01 10:03:06 fetching corpus: 800, signal 91926/106735 (executing program) 2025/09/01 10:03:06 fetching corpus: 850, signal 93253/108630 (executing program) 2025/09/01 10:03:06 fetching corpus: 900, signal 94746/110635 (executing program) 2025/09/01 10:03:06 fetching corpus: 950, signal 96642/112974 (executing program) 2025/09/01 10:03:06 fetching corpus: 1000, signal 98081/114836 (executing program) 2025/09/01 10:03:06 fetching corpus: 1050, signal 99863/116961 (executing program) 2025/09/01 10:03:07 fetching corpus: 1100, signal 101880/119186 (executing program) 2025/09/01 10:03:07 fetching corpus: 1150, signal 103299/120980 (executing program) 2025/09/01 10:03:07 fetching corpus: 1200, signal 104493/122541 (executing program) 2025/09/01 10:03:07 fetching corpus: 1250, signal 105781/124152 (executing program) 2025/09/01 10:03:07 fetching corpus: 1300, signal 107460/125966 (executing program) 2025/09/01 10:03:07 fetching corpus: 1350, signal 109601/128077 (executing program) 2025/09/01 10:03:07 fetching corpus: 1400, signal 110900/129561 (executing program) 2025/09/01 10:03:07 fetching corpus: 1450, signal 112337/131115 (executing program) 2025/09/01 10:03:07 fetching corpus: 1500, signal 113659/132610 (executing program) 2025/09/01 10:03:07 fetching corpus: 1550, signal 114968/134067 (executing program) 2025/09/01 10:03:08 fetching corpus: 1600, signal 115720/135127 (executing program) 2025/09/01 10:03:08 fetching corpus: 1650, signal 116515/136214 (executing program) 2025/09/01 10:03:08 fetching corpus: 1700, signal 117371/137313 (executing program) 2025/09/01 10:03:08 fetching corpus: 1750, signal 119093/138843 (executing program) 2025/09/01 10:03:08 fetching corpus: 1800, signal 119986/139869 (executing program) 2025/09/01 10:03:08 fetching corpus: 1850, signal 121024/140931 (executing program) 2025/09/01 10:03:08 fetching corpus: 1900, signal 122570/142295 (executing program) 2025/09/01 10:03:08 fetching corpus: 1950, signal 123626/143434 (executing program) 2025/09/01 10:03:08 fetching corpus: 2000, signal 125036/144613 (executing program) 2025/09/01 10:03:09 fetching corpus: 2050, signal 125738/145442 (executing program) 2025/09/01 10:03:09 fetching corpus: 2100, signal 126895/146473 (executing program) 2025/09/01 10:03:09 fetching corpus: 2150, signal 127453/147171 (executing program) 2025/09/01 10:03:09 fetching corpus: 2200, signal 128271/147971 (executing program) 2025/09/01 10:03:09 fetching corpus: 2250, signal 129016/148721 (executing program) 2025/09/01 10:03:09 fetching corpus: 2300, signal 129948/149584 (executing program) 2025/09/01 10:03:09 fetching corpus: 2350, signal 130636/150322 (executing program) 2025/09/01 10:03:09 fetching corpus: 2400, signal 131506/151106 (executing program) 2025/09/01 10:03:09 fetching corpus: 2450, signal 132433/151895 (executing program) 2025/09/01 10:03:09 fetching corpus: 2500, signal 133011/152494 (executing program) 2025/09/01 10:03:09 fetching corpus: 2550, signal 134061/153306 (executing program) 2025/09/01 10:03:10 fetching corpus: 2600, signal 134699/153949 (executing program) 2025/09/01 10:03:10 fetching corpus: 2650, signal 135529/154632 (executing program) 2025/09/01 10:03:10 fetching corpus: 2700, signal 136571/155304 (executing program) 2025/09/01 10:03:10 fetching corpus: 2750, signal 137343/155897 (executing program) 2025/09/01 10:03:10 fetching corpus: 2800, signal 137772/156313 (executing program) 2025/09/01 10:03:10 fetching corpus: 2850, signal 138365/156828 (executing program) 2025/09/01 10:03:10 fetching corpus: 2900, signal 139016/157299 (executing program) 2025/09/01 10:03:10 fetching corpus: 2950, signal 139713/157774 (executing program) 2025/09/01 10:03:10 fetching corpus: 3000, signal 140458/158271 (executing program) 2025/09/01 10:03:10 fetching corpus: 3050, signal 141277/158778 (executing program) 2025/09/01 10:03:10 fetching corpus: 3100, signal 141955/159237 (executing program) 2025/09/01 10:03:11 fetching corpus: 3150, signal 142751/159667 (executing program) 2025/09/01 10:03:11 fetching corpus: 3200, signal 143362/160046 (executing program) 2025/09/01 10:03:11 fetching corpus: 3250, signal 144003/160473 (executing program) 2025/09/01 10:03:11 fetching corpus: 3300, signal 144756/160884 (executing program) 2025/09/01 10:03:11 fetching corpus: 3350, signal 145371/161262 (executing program) 2025/09/01 10:03:11 fetching corpus: 3400, signal 146396/161633 (executing program) 2025/09/01 10:03:11 fetching corpus: 3450, signal 146900/161914 (executing program) 2025/09/01 10:03:11 fetching corpus: 3500, signal 147500/162235 (executing program) 2025/09/01 10:03:11 fetching corpus: 3550, signal 148104/162545 (executing program) 2025/09/01 10:03:11 fetching corpus: 3600, signal 148713/162810 (executing program) 2025/09/01 10:03:11 fetching corpus: 3650, signal 149127/163039 (executing program) 2025/09/01 10:03:11 fetching corpus: 3700, signal 149561/163260 (executing program) 2025/09/01 10:03:12 fetching corpus: 3750, signal 150365/163498 (executing program) 2025/09/01 10:03:12 fetching corpus: 3800, signal 150781/163688 (executing program) 2025/09/01 10:03:12 fetching corpus: 3850, signal 151231/163871 (executing program) 2025/09/01 10:03:12 fetching corpus: 3900, signal 151902/164148 (executing program) 2025/09/01 10:03:12 fetching corpus: 3950, signal 152232/164306 (executing program) 2025/09/01 10:03:12 fetching corpus: 4000, signal 152680/164449 (executing program) 2025/09/01 10:03:12 fetching corpus: 4050, signal 153046/164458 (executing program) 2025/09/01 10:03:12 fetching corpus: 4100, signal 153450/164504 (executing program) 2025/09/01 10:03:12 fetching corpus: 4150, signal 153905/164510 (executing program) 2025/09/01 10:03:12 fetching corpus: 4200, signal 154287/164526 (executing program) 2025/09/01 10:03:13 fetching corpus: 4250, signal 154890/164545 (executing program) 2025/09/01 10:03:13 fetching corpus: 4300, signal 155297/164584 (executing program) 2025/09/01 10:03:13 fetching corpus: 4350, signal 155654/164591 (executing program) 2025/09/01 10:03:13 fetching corpus: 4400, signal 156165/164591 (executing program) 2025/09/01 10:03:13 fetching corpus: 4450, signal 157110/164604 (executing program) 2025/09/01 10:03:13 fetching corpus: 4500, signal 157585/164644 (executing program) 2025/09/01 10:03:13 fetching corpus: 4550, signal 158200/164764 (executing program) 2025/09/01 10:03:13 fetching corpus: 4600, signal 158470/164794 (executing program) 2025/09/01 10:03:13 fetching corpus: 4650, signal 158973/164795 (executing program) 2025/09/01 10:03:13 fetching corpus: 4700, signal 159323/164817 (executing program) 2025/09/01 10:03:14 fetching corpus: 4750, signal 159775/164834 (executing program) 2025/09/01 10:03:14 fetching corpus: 4800, signal 160456/164842 (executing program) 2025/09/01 10:03:14 fetching corpus: 4850, signal 160907/164858 (executing program) 2025/09/01 10:03:14 fetching corpus: 4900, signal 161451/164861 (executing program) 2025/09/01 10:03:14 fetching corpus: 4950, signal 161933/164876 (executing program) 2025/09/01 10:03:14 fetching corpus: 4964, signal 162007/164878 (executing program) 2025/09/01 10:03:14 fetching corpus: 4964, signal 162007/164878 (executing program) 2025/09/01 10:03:16 starting 8 fuzzer processes 10:03:16 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r0, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) read(r0, 0x0, 0x40004) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 10:03:16 executing program 7: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0xc, 0x0, &(0x7f0000000840)) 10:03:16 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000dc0), 0x0, 0x2800) pread64(r0, 0x0, 0x0, 0x0) 10:03:16 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x81, 0x0, 0x27f}) 10:03:16 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000100)={{0x3}, 'port1\x00'}) 10:03:16 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc0bc5310, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) 10:03:16 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, &(0x7f0000000000)=0xcb, 0x4) 10:03:16 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[]) r1 = inotify_init() r2 = inotify_add_watch(r1, &(0x7f00000001c0)='./file0\x00', 0xd400080b) inotify_rm_watch(r1, r2) mknodat$loop(r0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) unlink(&(0x7f0000000080)='./file0/file0\x00') [ 82.234062] audit: type=1400 audit(1756720996.668:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 83.534515] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 83.538774] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 83.539812] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 83.541625] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 83.541900] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 83.543644] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 83.545060] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 83.548009] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 83.549490] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 83.552127] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 83.554028] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 83.555101] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 83.555461] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 83.557094] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 83.560530] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 83.563480] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 83.564907] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 83.566184] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 83.566256] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 83.574551] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 83.577786] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 83.579033] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 83.588790] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 83.591427] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 83.592716] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 83.596961] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 83.597906] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.604704] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 83.611588] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 83.612925] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 83.630918] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 83.634440] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 83.635681] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 83.649444] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 83.651920] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 83.674395] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 83.680630] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 83.682536] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 83.687361] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 83.697057] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 85.595732] Bluetooth: hci2: command tx timeout [ 85.659293] Bluetooth: hci4: command tx timeout [ 85.659376] Bluetooth: hci0: command tx timeout [ 85.722304] Bluetooth: hci3: command tx timeout [ 85.722361] Bluetooth: hci6: command tx timeout [ 85.723067] Bluetooth: hci5: command tx timeout [ 85.724367] Bluetooth: hci1: command tx timeout [ 85.786628] Bluetooth: hci7: command tx timeout [ 87.642811] Bluetooth: hci2: command tx timeout [ 87.706366] Bluetooth: hci4: command tx timeout [ 87.706784] Bluetooth: hci0: command tx timeout [ 87.770358] Bluetooth: hci6: command tx timeout [ 87.770767] Bluetooth: hci5: command tx timeout [ 87.771162] Bluetooth: hci1: command tx timeout [ 87.771965] Bluetooth: hci3: command tx timeout [ 87.834330] Bluetooth: hci7: command tx timeout [ 89.690376] Bluetooth: hci2: command tx timeout [ 89.755777] Bluetooth: hci0: command tx timeout [ 89.756188] Bluetooth: hci4: command tx timeout [ 89.818464] Bluetooth: hci1: command tx timeout [ 89.818866] Bluetooth: hci5: command tx timeout [ 89.819429] Bluetooth: hci3: command tx timeout [ 89.819811] Bluetooth: hci6: command tx timeout [ 89.882275] Bluetooth: hci7: command tx timeout [ 91.738271] Bluetooth: hci2: command tx timeout [ 91.802511] Bluetooth: hci4: command tx timeout [ 91.802932] Bluetooth: hci0: command tx timeout [ 91.866405] Bluetooth: hci6: command tx timeout [ 91.866845] Bluetooth: hci3: command tx timeout [ 91.867420] Bluetooth: hci5: command tx timeout [ 91.867810] Bluetooth: hci1: command tx timeout [ 91.930264] Bluetooth: hci7: command tx timeout [ 121.599508] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.600158] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.791840] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.792436] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.962962] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.963604] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.158266] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.158909] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.306637] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.307547] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.461823] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.463245] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:03:57 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000100)={{0x3}, 'port1\x00'}) 10:03:57 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000100)={{0x3}, 'port1\x00'}) 10:03:57 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x81, 0x0, 0x27f}) 10:03:57 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000100)={{0x3}, 'port1\x00'}) 10:03:57 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x81, 0x0, 0x27f}) 10:03:57 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, &(0x7f0000000000)=0xcb, 0x4) 10:03:57 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x81, 0x0, 0x27f}) 10:03:57 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000140)=@ethtool_gstrings={0x1b, 0x4}}) [ 123.262258] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.263464] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.474241] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.475338] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.899481] audit: type=1400 audit(1756721038.331:8): avc: denied { open } for pid=3816 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.906423] audit: type=1400 audit(1756721038.332:9): avc: denied { kernel } for pid=3816 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.412810] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.413794] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.510444] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.511047] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.768268] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.768979] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.888998] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.889653] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.982941] audit: type=1400 audit(1756721039.417:10): avc: denied { watch_reads } for pid=3887 comm="syz-executor.6" path="/syzkaller-testdir197387836/syzkaller.CQakyk/0/file0" dev="tmpfs" ino=1 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1 [ 125.323912] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.324946] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.362765] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.363594] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.420302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.420928] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.441428] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.441988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.474026] serio: Serial port ptm0 [ 125.529619] serio: Serial port ptm0 10:04:00 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000140)=@ethtool_gstrings={0x1b, 0x4}}) 10:04:00 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r0, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) read(r0, 0x0, 0x40004) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 10:04:00 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc0bc5310, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) 10:04:00 executing program 7: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0xc, 0x0, &(0x7f0000000840)) 10:04:00 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, &(0x7f0000000000)=0xcb, 0x4) 10:04:00 executing program 2: clock_gettime(0x0, &(0x7f0000000500)={0x0, 0x0}) timer_create(0x3, 0x0, &(0x7f0000000400)) timer_settime(0x0, 0x0, &(0x7f0000000540)={{0x77359400}, {0x0, r0+60000000}}, 0x0) timer_gettime(0x0, &(0x7f0000000080)) 10:04:00 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[]) r1 = inotify_init() r2 = inotify_add_watch(r1, &(0x7f00000001c0)='./file0\x00', 0xd400080b) inotify_rm_watch(r1, r2) mknodat$loop(r0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) unlink(&(0x7f0000000080)='./file0/file0\x00') 10:04:00 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000dc0), 0x0, 0x2800) pread64(r0, 0x0, 0x0, 0x0) [ 125.677199] serio: Serial port ptm0 10:04:00 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000140)=@ethtool_gstrings={0x1b, 0x4}}) 10:04:00 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r0, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) read(r0, 0x0, 0x40004) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 10:04:00 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc0bc5310, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) 10:04:00 executing program 7: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0xc, 0x0, &(0x7f0000000840)) 10:04:00 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000dc0), 0x0, 0x2800) pread64(r0, 0x0, 0x0, 0x0) 10:04:00 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[]) r1 = inotify_init() r2 = inotify_add_watch(r1, &(0x7f00000001c0)='./file0\x00', 0xd400080b) inotify_rm_watch(r1, r2) mknodat$loop(r0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) unlink(&(0x7f0000000080)='./file0/file0\x00') 10:04:00 executing program 2: clock_gettime(0x0, &(0x7f0000000500)={0x0, 0x0}) timer_create(0x3, 0x0, &(0x7f0000000400)) timer_settime(0x0, 0x0, &(0x7f0000000540)={{0x77359400}, {0x0, r0+60000000}}, 0x0) timer_gettime(0x0, &(0x7f0000000080)) 10:04:00 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, &(0x7f0000000000)=0xcb, 0x4) [ 125.787686] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 125.788588] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 125.789278] CPU: 0 UID: 0 PID: 3947 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 125.790786] Tainted: [W]=WARN [ 125.791426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 125.793183] RIP: 0010:perf_tp_event+0x175/0xe70 [ 125.794180] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 125.798173] RSP: 0018:ffff888046247600 EFLAGS: 00010212 [ 125.799296] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90002ca0000 [ 125.800351] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 125.800909] RBP: ffff888046247870 R08: ffff88806ce31340 R09: ffffe8ffffc151d0 [ 125.801464] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 125.802022] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 125.802578] FS: 00007f48d0f77700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 125.803210] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 125.803682] CR2: 000055556beeec18 CR3: 00000000448a2000 CR4: 0000000000350ef0 [ 125.804245] Call Trace: [ 125.804454] [ 125.804641] ? __pfx_perf_tp_event+0x10/0x10 [ 125.805022] ? perf_trace_run_bpf_submit+0xef/0x180 [ 125.805425] perf_trace_run_bpf_submit+0xef/0x180 [ 125.805818] perf_trace_lock+0x337/0x5d0 [ 125.806148] ? __pfx_perf_trace_lock+0x10/0x10 [ 125.806519] ? lock_acquire+0x15e/0x2f0 [ 125.806840] ? futex_ref_get+0x48/0x300 [ 125.807155] ? futex_ref_get+0x114/0x300 [ 125.807486] ? futex_hash+0x15c/0x390 [ 125.807802] lock_release+0x1ab/0x290 [ 125.808109] ? futex_hash+0x15c/0x390 [ 125.808418] futex_ref_get+0x119/0x300 [ 125.808731] ? futex_hash+0x15c/0x390 [ 125.809034] futex_hash+0x70/0x390 [ 125.809322] futex_wait_setup+0xae/0x550 [ 125.809655] __futex_wait+0x151/0x300 [ 125.809964] ? __pfx___futex_wait+0x10/0x10 [ 125.810322] ? __pfx_futex_wake_mark+0x10/0x10 [ 125.810697] futex_wait+0xde/0x380 [ 125.810987] ? __pfx_futex_wait+0x10/0x10 [ 125.811328] ? perf_trace_lock+0xb5/0x5d0 [ 125.811674] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 125.812101] do_futex+0x2ee/0x370 [ 125.812389] ? __pfx_do_futex+0x10/0x10 [ 125.812717] ? do_raw_spin_lock+0x123/0x260 [ 125.813070] __x64_sys_futex+0x1c9/0x4d0 [ 125.813406] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 125.813828] ? __pfx___x64_sys_futex+0x10/0x10 [ 125.814205] ? kcov_ioctl+0x386/0x6c0 [ 125.814518] ? fput+0x6a/0x100 [ 125.814791] do_syscall_64+0xbf/0x360 [ 125.815102] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.815522] RIP: 0033:0x7f48d3a01b19 [ 125.815821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.817258] RSP: 002b:00007f48d0f77218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.817462] serio: Serial port ptm0 [ 125.817869] RAX: ffffffffffffffda RBX: 00007f48d3b14f68 RCX: 00007f48d3a01b19 [ 125.818771] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f48d3b14f68 [ 125.819341] RBP: 00007f48d3b14f60 R08: 00007f48d0f77700 R09: 0000000000000000 [ 125.819915] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f48d3b14f6c [ 125.820488] R13: 00007ffca6dd5c0f R14: 00007f48d0f77300 R15: 0000000000022000 [ 125.821060] [ 125.821252] Modules linked in: [ 125.821539] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 125.822423] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 125.823105] CPU: 0 UID: 0 PID: 3947 Comm: syz-executor.5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 125.824060] Tainted: [D]=DIE, [W]=WARN [ 125.824369] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 125.825022] RIP: 0010:perf_tp_event+0x175/0xe70 [ 125.825404] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 125.826856] RSP: 0018:ffff88806ce08900 EFLAGS: 00010012 [ 125.827280] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 125.827854] RDX: ffff88800e0f5280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 125.828419] RBP: ffff88806ce08b70 R08: ffff88806ce31490 R09: ffffe8ffffc151d0 [ 125.828985] R10: 0000000000000000 R11: 6b636f6c2e646576 R12: dffffc0000000000 [ 125.829555] R13: 0000000000000034 R14: ffff88806ce31490 R15: dffffc0000000000 [ 125.830127] FS: 00007f48d0f77700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 125.830762] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 125.831226] CR2: 000055556beeec18 CR3: 00000000448a2000 CR4: 0000000000350ef0 [ 125.831799] Call Trace: [ 125.832009] [ 125.832196] ? kernel_text_address+0x5b/0xc0 [ 125.832557] ? __pfx_perf_tp_event+0x10/0x10 [ 125.832925] ? stack_trace_save+0x8e/0xc0 [ 125.833267] ? stack_depot_save_flags+0x2c/0xa20 [ 125.833655] ? kasan_save_stack+0x34/0x50 [ 125.833992] ? kasan_save_stack+0x24/0x50 [ 125.834330] ? kasan_save_track+0x14/0x30 [ 125.834668] ? __kasan_save_free_info+0x3a/0x60 [ 125.835042] ? __kasan_slab_free+0x3f/0x50 [ 125.835385] ? kfree+0x281/0x550 [ 125.835674] ? bio_endio+0x5ad/0x6b0 [ 125.835980] ? trace_pelt_se_tp+0xdf/0x130 [ 125.836320] ? __update_load_avg_se+0x428/0xa40 [ 125.836701] ? lock_is_held_type+0x9e/0x120 [ 125.837054] ? perf_trace_run_bpf_submit+0xef/0x180 [ 125.837459] ? perf_trace_lock+0xb5/0x5d0 [ 125.837798] perf_trace_run_bpf_submit+0xef/0x180 [ 125.838193] perf_trace_lock+0x337/0x5d0 [ 125.838527] ? find_held_lock+0x2b/0x80 [ 125.838858] ? __pfx_perf_trace_lock+0x10/0x10 [ 125.839228] ? do_raw_spin_lock+0x123/0x260 [ 125.839605] ? update_load_avg+0xa2a/0x1ef0 [ 125.839951] lock_release+0x1ab/0x290 [ 125.840261] _raw_spin_unlock+0x16/0x40 [ 125.840588] update_load_avg+0xa2a/0x1ef0 [ 125.840921] ? kvm_sched_clock_read+0x16/0x30 [ 125.841295] enqueue_task_fair+0x2d8/0x1e00 [ 125.841656] enqueue_task+0x70/0x200 [ 125.841962] ttwu_do_activate+0x128/0x8a0 [ 125.842304] sched_ttwu_pending+0x24a/0x4a0 [ 125.842659] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 125.843051] ? flush_tlb_func+0x24d/0x560 [ 125.843390] __flush_smp_call_function_queue+0x434/0x740 [ 125.843839] __sysvec_call_function_single+0x6d/0x370 [ 125.844260] sysvec_call_function_single+0xa1/0xc0 [ 125.844662] [ 125.844846] [ 125.845030] asm_sysvec_call_function_single+0x1a/0x20 [ 125.845451] RIP: 0010:oops_exit+0x0/0x50 [ 125.845784] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 125.847222] RSP: 0018:ffff888046247490 EFLAGS: 00000202 [ 125.847652] RAX: 0000000000027e27 RBX: 0000000000000216 RCX: ffffc90002ca0000 [ 125.848224] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 125.848787] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 125.849347] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888046247558 [ 125.849906] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000 [ 125.850475] ? oops_end+0x4a/0xe0 [ 125.850766] oops_end+0x65/0xe0 [ 125.851044] exc_general_protection+0x1a2/0x330 [ 125.851423] asm_exc_general_protection+0x26/0x30 [ 125.851814] RIP: 0010:perf_tp_event+0x175/0xe70 [ 125.852190] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 125.853624] RSP: 0018:ffff888046247600 EFLAGS: 00010212 [ 125.854046] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90002ca0000 [ 125.854608] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 125.855170] RBP: ffff888046247870 R08: ffff88806ce31340 R09: ffffe8ffffc151d0 [ 125.855737] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 125.856297] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 125.856867] ? perf_tp_event+0x167/0xe70 [ 125.857217] ? __pfx_perf_tp_event+0x10/0x10 [ 125.857598] ? perf_trace_run_bpf_submit+0xef/0x180 [ 125.857998] perf_trace_run_bpf_submit+0xef/0x180 [ 125.858394] perf_trace_lock+0x337/0x5d0 [ 125.858727] ? __pfx_perf_trace_lock+0x10/0x10 [ 125.859100] ? lock_acquire+0x15e/0x2f0 [ 125.859424] ? futex_ref_get+0x48/0x300 [ 125.859755] ? futex_ref_get+0x114/0x300 [ 125.860080] ? futex_hash+0x15c/0x390 [ 125.860392] lock_release+0x1ab/0x290 [ 125.860703] ? futex_hash+0x15c/0x390 [ 125.861008] futex_ref_get+0x119/0x300 [ 125.861319] ? futex_hash+0x15c/0x390 [ 125.861624] futex_hash+0x70/0x390 [ 125.861915] futex_wait_setup+0xae/0x550 [ 125.862250] __futex_wait+0x151/0x300 [ 125.862563] ? __pfx___futex_wait+0x10/0x10 [ 125.862916] ? __pfx_futex_wake_mark+0x10/0x10 [ 125.863295] futex_wait+0xde/0x380 [ 125.863597] ? __pfx_futex_wait+0x10/0x10 [ 125.863934] ? perf_trace_lock+0xb5/0x5d0 [ 125.864276] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 125.864699] do_futex+0x2ee/0x370 [ 125.864983] ? __pfx_do_futex+0x10/0x10 [ 125.865306] ? do_raw_spin_lock+0x123/0x260 [ 125.865660] __x64_sys_futex+0x1c9/0x4d0 [ 125.865990] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 125.866405] ? __pfx___x64_sys_futex+0x10/0x10 [ 125.866775] ? kcov_ioctl+0x386/0x6c0 [ 125.867085] ? fput+0x6a/0x100 [ 125.867356] do_syscall_64+0xbf/0x360 [ 125.867668] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.868078] RIP: 0033:0x7f48d3a01b19 [ 125.868375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.869797] RSP: 002b:00007f48d0f77218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.870394] RAX: ffffffffffffffda RBX: 00007f48d3b14f68 RCX: 00007f48d3a01b19 [ 125.870956] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f48d3b14f68 [ 125.871524] RBP: 00007f48d3b14f60 R08: 00007f48d0f77700 R09: 0000000000000000 [ 125.872081] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f48d3b14f6c [ 125.872652] R13: 00007ffca6dd5c0f R14: 00007f48d0f77300 R15: 0000000000022000 [ 125.873219] [ 125.873409] Modules linked in: [ 125.873668] ---[ end trace 0000000000000000 ]--- [ 125.874037] RIP: 0010:perf_tp_event+0x175/0xe70 [ 125.874418] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 125.875847] RSP: 0018:ffff888046247600 EFLAGS: 00010212 [ 125.876271] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90002ca0000 [ 125.876829] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 125.877392] RBP: ffff888046247870 R08: ffff88806ce31340 R09: ffffe8ffffc151d0 [ 125.877952] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 125.878511] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 125.879076] FS: 00007f48d0f77700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 125.879716] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 125.880174] CR2: 000055556beeec18 CR3: 00000000448a2000 CR4: 0000000000350ef0 [ 125.880737] Kernel panic - not syncing: Fatal exception in interrupt [ 126.926760] Shutting down cpus with NMI [ 126.927233] Kernel Offset: disabled [ 126.927535] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 10:04:00 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888046246ef0 R8 =0000000000000000 R9 =ffffed10014f2046 R10=0000000000000020 R11=0000000065646f43 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f48d0f77700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe5800000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055556beeec18 CR3=00000000448a2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f48d3ae87c000007f48d3ae87c8 XMM02=00007f48d3ae87e000007f48d3ae87c0 XMM03=00007f48d3ae87c800007f48d3ae87c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000004 RBX=ffff88806cf36ec0 RCX=0000000000000000 RDX=ffff88800972d280 RSI=0000001d4a3b214d RDI=ffff88800972d2ac RBP=0000000000003d0d RSP=ffff88800974fc10 R8 =ffff88806cf379c0 R9 =ffffed10012e9f7e R10=0000000000000000 R11=0000000000000001 R12=ffff88806cf37a68 R13=ffffffff8643c034 R14=ffff88806cf37978 R15=ffff88806cf37980 RIP=ffffffff81472bc1 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe3d00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d325000 CR3=0000000044950000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=ffffffffffffffffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff XMM04=ffffffffffffffffffffffffffffffff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000