Warning: Permanently added '[localhost]:32261' (ECDSA) to the list of known hosts. 2025/09/01 10:09:22 fuzzer started 2025/09/01 10:09:23 dialing manager at localhost:35473 syzkaller login: [ 51.085712] cgroup: Unknown subsys name 'net' [ 51.144577] cgroup: Unknown subsys name 'cpuset' [ 51.183549] cgroup: Unknown subsys name 'rlimit' 2025/09/01 10:09:34 syscalls: 2214 2025/09/01 10:09:34 code coverage: enabled 2025/09/01 10:09:34 comparison tracing: enabled 2025/09/01 10:09:34 extra coverage: enabled 2025/09/01 10:09:34 setuid sandbox: enabled 2025/09/01 10:09:34 namespace sandbox: enabled 2025/09/01 10:09:34 Android sandbox: enabled 2025/09/01 10:09:34 fault injection: enabled 2025/09/01 10:09:34 leak checking: enabled 2025/09/01 10:09:34 net packet injection: enabled 2025/09/01 10:09:34 net device setup: enabled 2025/09/01 10:09:34 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 10:09:34 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 10:09:34 USB emulation: enabled 2025/09/01 10:09:34 hci packet injection: enabled 2025/09/01 10:09:34 wifi device emulation: enabled 2025/09/01 10:09:34 802.15.4 emulation: enabled 2025/09/01 10:09:34 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 10:09:34 fetching corpus: 50, signal 24571/27999 (executing program) 2025/09/01 10:09:34 fetching corpus: 100, signal 32259/37131 (executing program) 2025/09/01 10:09:34 fetching corpus: 150, signal 41432/47505 (executing program) 2025/09/01 10:09:34 fetching corpus: 200, signal 48376/55519 (executing program) 2025/09/01 10:09:34 fetching corpus: 250, signal 54967/63098 (executing program) 2025/09/01 10:09:34 fetching corpus: 300, signal 59736/68793 (executing program) 2025/09/01 10:09:34 fetching corpus: 350, signal 63714/73675 (executing program) 2025/09/01 10:09:34 fetching corpus: 400, signal 66565/77457 (executing program) 2025/09/01 10:09:34 fetching corpus: 450, signal 69374/81131 (executing program) 2025/09/01 10:09:34 fetching corpus: 500, signal 73090/85537 (executing program) 2025/09/01 10:09:34 fetching corpus: 550, signal 75774/88954 (executing program) 2025/09/01 10:09:35 fetching corpus: 600, signal 77941/91928 (executing program) 2025/09/01 10:09:35 fetching corpus: 650, signal 79530/94332 (executing program) 2025/09/01 10:09:35 fetching corpus: 700, signal 81289/96842 (executing program) 2025/09/01 10:09:35 fetching corpus: 750, signal 82056/98522 (executing program) 2025/09/01 10:09:35 fetching corpus: 800, signal 83462/100688 (executing program) 2025/09/01 10:09:35 fetching corpus: 850, signal 85705/103463 (executing program) 2025/09/01 10:09:35 fetching corpus: 900, signal 86956/105450 (executing program) 2025/09/01 10:09:35 fetching corpus: 950, signal 88734/107747 (executing program) 2025/09/01 10:09:35 fetching corpus: 1000, signal 90847/110318 (executing program) 2025/09/01 10:09:35 fetching corpus: 1050, signal 92103/112203 (executing program) 2025/09/01 10:09:36 fetching corpus: 1100, signal 93554/114127 (executing program) 2025/09/01 10:09:36 fetching corpus: 1150, signal 95670/116499 (executing program) 2025/09/01 10:09:36 fetching corpus: 1200, signal 97531/118677 (executing program) 2025/09/01 10:09:36 fetching corpus: 1250, signal 99787/121035 (executing program) 2025/09/01 10:09:36 fetching corpus: 1300, signal 101499/123032 (executing program) 2025/09/01 10:09:36 fetching corpus: 1350, signal 102783/124700 (executing program) 2025/09/01 10:09:36 fetching corpus: 1400, signal 103930/126191 (executing program) 2025/09/01 10:09:36 fetching corpus: 1450, signal 105209/127779 (executing program) 2025/09/01 10:09:36 fetching corpus: 1500, signal 106287/129200 (executing program) 2025/09/01 10:09:36 fetching corpus: 1550, signal 107204/130501 (executing program) 2025/09/01 10:09:37 fetching corpus: 1600, signal 108135/131783 (executing program) 2025/09/01 10:09:37 fetching corpus: 1650, signal 109715/133424 (executing program) 2025/09/01 10:09:37 fetching corpus: 1700, signal 112146/135510 (executing program) 2025/09/01 10:09:37 fetching corpus: 1750, signal 113280/136793 (executing program) 2025/09/01 10:09:37 fetching corpus: 1800, signal 115431/138689 (executing program) 2025/09/01 10:09:37 fetching corpus: 1850, signal 116257/139743 (executing program) 2025/09/01 10:09:37 fetching corpus: 1900, signal 117690/141126 (executing program) 2025/09/01 10:09:37 fetching corpus: 1950, signal 118532/142185 (executing program) 2025/09/01 10:09:37 fetching corpus: 2000, signal 119476/143249 (executing program) 2025/09/01 10:09:37 fetching corpus: 2050, signal 121982/145108 (executing program) 2025/09/01 10:09:38 fetching corpus: 2100, signal 123594/146417 (executing program) 2025/09/01 10:09:38 fetching corpus: 2150, signal 124922/147585 (executing program) 2025/09/01 10:09:38 fetching corpus: 2200, signal 125828/148496 (executing program) 2025/09/01 10:09:38 fetching corpus: 2250, signal 127107/149581 (executing program) 2025/09/01 10:09:38 fetching corpus: 2300, signal 127681/150356 (executing program) 2025/09/01 10:09:38 fetching corpus: 2350, signal 128414/151208 (executing program) 2025/09/01 10:09:38 fetching corpus: 2400, signal 129383/152102 (executing program) 2025/09/01 10:09:38 fetching corpus: 2450, signal 130446/153035 (executing program) 2025/09/01 10:09:38 fetching corpus: 2500, signal 131455/153881 (executing program) 2025/09/01 10:09:38 fetching corpus: 2550, signal 132201/154599 (executing program) 2025/09/01 10:09:38 fetching corpus: 2600, signal 132988/155397 (executing program) 2025/09/01 10:09:39 fetching corpus: 2650, signal 133806/156153 (executing program) 2025/09/01 10:09:39 fetching corpus: 2700, signal 134595/156818 (executing program) 2025/09/01 10:09:39 fetching corpus: 2750, signal 135565/157562 (executing program) 2025/09/01 10:09:39 fetching corpus: 2800, signal 136079/158122 (executing program) 2025/09/01 10:09:39 fetching corpus: 2850, signal 136958/158777 (executing program) 2025/09/01 10:09:39 fetching corpus: 2900, signal 137568/159340 (executing program) 2025/09/01 10:09:39 fetching corpus: 2950, signal 137947/159852 (executing program) 2025/09/01 10:09:39 fetching corpus: 3000, signal 138295/160307 (executing program) 2025/09/01 10:09:39 fetching corpus: 3050, signal 138821/160830 (executing program) 2025/09/01 10:09:39 fetching corpus: 3100, signal 139235/161259 (executing program) 2025/09/01 10:09:39 fetching corpus: 3150, signal 140158/161835 (executing program) 2025/09/01 10:09:40 fetching corpus: 3200, signal 140704/162319 (executing program) 2025/09/01 10:09:40 fetching corpus: 3250, signal 141525/162866 (executing program) 2025/09/01 10:09:40 fetching corpus: 3300, signal 142278/163322 (executing program) 2025/09/01 10:09:40 fetching corpus: 3350, signal 142739/163744 (executing program) 2025/09/01 10:09:40 fetching corpus: 3400, signal 143519/164194 (executing program) 2025/09/01 10:09:40 fetching corpus: 3450, signal 144572/164628 (executing program) 2025/09/01 10:09:40 fetching corpus: 3500, signal 145336/165121 (executing program) 2025/09/01 10:09:40 fetching corpus: 3550, signal 145829/165502 (executing program) 2025/09/01 10:09:40 fetching corpus: 3600, signal 146314/165867 (executing program) 2025/09/01 10:09:40 fetching corpus: 3650, signal 146838/166222 (executing program) 2025/09/01 10:09:41 fetching corpus: 3700, signal 147324/166533 (executing program) 2025/09/01 10:09:41 fetching corpus: 3750, signal 147872/166875 (executing program) 2025/09/01 10:09:41 fetching corpus: 3800, signal 148229/167143 (executing program) 2025/09/01 10:09:41 fetching corpus: 3850, signal 149026/167438 (executing program) 2025/09/01 10:09:41 fetching corpus: 3900, signal 149595/167690 (executing program) 2025/09/01 10:09:41 fetching corpus: 3950, signal 149998/167988 (executing program) 2025/09/01 10:09:41 fetching corpus: 4000, signal 150752/168313 (executing program) 2025/09/01 10:09:41 fetching corpus: 4050, signal 151191/168554 (executing program) 2025/09/01 10:09:41 fetching corpus: 4100, signal 151631/168740 (executing program) 2025/09/01 10:09:41 fetching corpus: 4150, signal 152072/168802 (executing program) 2025/09/01 10:09:42 fetching corpus: 4200, signal 152399/168820 (executing program) 2025/09/01 10:09:42 fetching corpus: 4250, signal 153007/168828 (executing program) 2025/09/01 10:09:42 fetching corpus: 4300, signal 153518/168848 (executing program) 2025/09/01 10:09:42 fetching corpus: 4350, signal 153922/168923 (executing program) 2025/09/01 10:09:42 fetching corpus: 4400, signal 154542/168926 (executing program) 2025/09/01 10:09:42 fetching corpus: 4450, signal 155049/168945 (executing program) 2025/09/01 10:09:42 fetching corpus: 4500, signal 155426/168977 (executing program) 2025/09/01 10:09:42 fetching corpus: 4550, signal 155999/168981 (executing program) 2025/09/01 10:09:42 fetching corpus: 4600, signal 156693/168984 (executing program) 2025/09/01 10:09:42 fetching corpus: 4650, signal 157203/168987 (executing program) 2025/09/01 10:09:43 fetching corpus: 4700, signal 157563/168998 (executing program) 2025/09/01 10:09:43 fetching corpus: 4750, signal 158073/169002 (executing program) 2025/09/01 10:09:43 fetching corpus: 4800, signal 158512/169003 (executing program) 2025/09/01 10:09:43 fetching corpus: 4850, signal 159160/169044 (executing program) 2025/09/01 10:09:43 fetching corpus: 4900, signal 159551/169058 (executing program) 2025/09/01 10:09:43 fetching corpus: 4950, signal 159890/169064 (executing program) 2025/09/01 10:09:43 fetching corpus: 5000, signal 160891/169098 (executing program) 2025/09/01 10:09:43 fetching corpus: 5050, signal 161429/169103 (executing program) 2025/09/01 10:09:43 fetching corpus: 5100, signal 162081/169119 (executing program) 2025/09/01 10:09:43 fetching corpus: 5150, signal 162433/169124 (executing program) 2025/09/01 10:09:44 fetching corpus: 5200, signal 162749/169141 (executing program) 2025/09/01 10:09:44 fetching corpus: 5250, signal 163251/169207 (executing program) 2025/09/01 10:09:44 fetching corpus: 5300, signal 163818/169226 (executing program) 2025/09/01 10:09:44 fetching corpus: 5350, signal 164359/169231 (executing program) 2025/09/01 10:09:44 fetching corpus: 5400, signal 164709/169239 (executing program) 2025/09/01 10:09:44 fetching corpus: 5450, signal 165317/169357 (executing program) 2025/09/01 10:09:44 fetching corpus: 5500, signal 165726/169370 (executing program) 2025/09/01 10:09:44 fetching corpus: 5550, signal 166152/169377 (executing program) 2025/09/01 10:09:44 fetching corpus: 5599, signal 166568/169388 (executing program) 2025/09/01 10:09:44 fetching corpus: 5599, signal 166568/169388 (executing program) 2025/09/01 10:09:46 starting 8 fuzzer processes 10:09:46 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r1, 0xb341daa0822653b3, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 10:09:46 executing program 1: syz_mount_image$tmpfs(&(0x7f0000001740), &(0x7f0000001780)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001f80)={[{@mpol={'mpol', 0x3d, {'local', '=relative', @void}}}]}) 10:09:46 executing program 7: r0 = fsopen(&(0x7f0000000040)='binfmt_misc\x00', 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000) setresuid(0x0, r1, 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x8, 0x0, 0x0, 0x0) 10:09:46 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x29, 0x49, &(0x7f0000000100), 0x4) fstat(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800, &(0x7f00000002c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_client}, {@version_L}, {@access_user}, {@cache_fscache}, {@afid={'afid', 0x3d, 0x1}}], [{@uid_lt}, {@fowner_lt={'fowner<', r1}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'user\x00'}}, {@obj_user={'obj_user', 0x3d, 'user\x00'}}]}}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) recvmmsg$unix(r4, &(0x7f0000000dc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x12000, 0x0) 10:09:46 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) fcntl$lock(r0, 0x25, 0x0) [ 74.612102] audit: type=1400 audit(1756721386.733:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:09:46 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/security', 0x0, 0x0) lseek(r0, 0x4, 0x0) lseek(r0, 0x0, 0x0) 10:09:46 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x25, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000003d00)=[{{0x0, 0x0, &(0x7f0000001580)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}}], 0x1, 0x0, 0x0) 10:09:46 executing program 6: r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc, 0x99, {0x9effffff}}}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@device_b}]}, 0x2c}}, 0x0) [ 75.864556] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 75.871849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 75.873882] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 75.876250] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.880376] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 75.882852] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 75.890290] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.893775] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.899831] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.902238] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.940005] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 75.942209] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 75.944134] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 75.944976] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 75.948712] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 75.950857] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 75.952631] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 75.957876] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 75.959783] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 75.961503] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 75.966034] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 75.967386] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 75.971965] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 75.987831] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 75.989409] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 75.992251] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 76.000910] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.002683] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.004017] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 76.008885] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 76.010756] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 76.012405] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 76.014895] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.020402] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 76.036889] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 76.038968] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 76.045059] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 76.054211] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 76.057274] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 76.070758] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 77.960971] Bluetooth: hci0: command tx timeout [ 77.960981] Bluetooth: hci1: command tx timeout [ 78.088571] Bluetooth: hci3: command tx timeout [ 78.088951] Bluetooth: hci4: command tx timeout [ 78.152644] Bluetooth: hci6: command tx timeout [ 78.152702] Bluetooth: hci7: command tx timeout [ 78.153381] Bluetooth: hci5: command tx timeout [ 78.154073] Bluetooth: hci2: command tx timeout [ 80.007531] Bluetooth: hci0: command tx timeout [ 80.008901] Bluetooth: hci1: command tx timeout [ 80.135627] Bluetooth: hci4: command tx timeout [ 80.136108] Bluetooth: hci3: command tx timeout [ 80.200482] Bluetooth: hci2: command tx timeout [ 80.201032] Bluetooth: hci7: command tx timeout [ 80.202317] Bluetooth: hci6: command tx timeout [ 80.202844] Bluetooth: hci5: command tx timeout [ 82.056554] Bluetooth: hci1: command tx timeout [ 82.056730] Bluetooth: hci0: command tx timeout [ 82.184597] Bluetooth: hci3: command tx timeout [ 82.185047] Bluetooth: hci4: command tx timeout [ 82.247562] Bluetooth: hci7: command tx timeout [ 82.248026] Bluetooth: hci6: command tx timeout [ 82.248402] Bluetooth: hci2: command tx timeout [ 82.248824] Bluetooth: hci5: command tx timeout [ 84.103674] Bluetooth: hci0: command tx timeout [ 84.104127] Bluetooth: hci1: command tx timeout [ 84.231642] Bluetooth: hci4: command tx timeout [ 84.232093] Bluetooth: hci3: command tx timeout [ 84.297462] Bluetooth: hci5: command tx timeout [ 84.297913] Bluetooth: hci2: command tx timeout [ 84.298295] Bluetooth: hci6: command tx timeout [ 84.298850] Bluetooth: hci7: command tx timeout [ 111.718284] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.718958] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.854763] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.855375] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.896014] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.896652] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.932885] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.933499] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.964968] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.965920] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.028968] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.029672] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.045262] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.046174] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:10:24 executing program 7: r0 = fsopen(&(0x7f0000000040)='binfmt_misc\x00', 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000) setresuid(0x0, r1, 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x8, 0x0, 0x0, 0x0) [ 112.082302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.082857] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:10:24 executing program 7: r0 = fsopen(&(0x7f0000000040)='binfmt_misc\x00', 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000) setresuid(0x0, r1, 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x8, 0x0, 0x0, 0x0) 10:10:24 executing program 7: r0 = fsopen(&(0x7f0000000040)='binfmt_misc\x00', 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000) setresuid(0x0, r1, 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x8, 0x0, 0x0, 0x0) [ 112.168011] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.168711] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:10:24 executing program 7: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000), 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 112.203389] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.204085] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:10:24 executing program 7: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000), 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 10:10:24 executing program 7: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000), 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 112.274327] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.275073] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:10:24 executing program 7: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000), 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) [ 112.312575] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.313165] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:10:24 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, 0x0, 0x0) [ 112.391886] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.392465] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.483280] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.483900] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.570236] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.570901] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.641604] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.642253] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.760505] audit: type=1400 audit(1756721424.881:8): avc: denied { open } for pid=3906 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 112.762565] audit: type=1400 audit(1756721424.882:9): avc: denied { kernel } for pid=3906 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 112.788100] tmpfs: Bad value for 'mpol' [ 112.805405] tmpfs: Bad value for 'mpol' 10:10:24 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r1, 0xb341daa0822653b3, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 10:10:24 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, 0x0, 0x0) 10:10:24 executing program 6: r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc, 0x99, {0x9effffff}}}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@device_b}]}, 0x2c}}, 0x0) 10:10:24 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/security', 0x0, 0x0) lseek(r0, 0x4, 0x0) lseek(r0, 0x0, 0x0) 10:10:24 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) fcntl$lock(r0, 0x25, 0x0) 10:10:24 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x25, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000003d00)=[{{0x0, 0x0, &(0x7f0000001580)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}}], 0x1, 0x0, 0x0) 10:10:24 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x29, 0x49, &(0x7f0000000100), 0x4) fstat(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800, &(0x7f00000002c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_client}, {@version_L}, {@access_user}, {@cache_fscache}, {@afid={'afid', 0x3d, 0x1}}], [{@uid_lt}, {@fowner_lt={'fowner<', r1}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'user\x00'}}, {@obj_user={'obj_user', 0x3d, 'user\x00'}}]}}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) recvmmsg$unix(r4, &(0x7f0000000dc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x12000, 0x0) 10:10:24 executing program 1: syz_mount_image$tmpfs(&(0x7f0000001740), &(0x7f0000001780)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001f80)={[{@mpol={'mpol', 0x3d, {'local', '=relative', @void}}}]}) [ 112.899203] tmpfs: Bad value for 'mpol' 10:10:25 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/security', 0x0, 0x0) lseek(r0, 0x4, 0x0) lseek(r0, 0x0, 0x0) 10:10:25 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x25, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000003d00)=[{{0x0, 0x0, &(0x7f0000001580)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}}], 0x1, 0x0, 0x0) 10:10:25 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, 0x0, 0x0) 10:10:25 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) fcntl$lock(r0, 0x25, 0x0) 10:10:25 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x29, 0x49, &(0x7f0000000100), 0x4) fstat(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800, &(0x7f00000002c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_client}, {@version_L}, {@access_user}, {@cache_fscache}, {@afid={'afid', 0x3d, 0x1}}], [{@uid_lt}, {@fowner_lt={'fowner<', r1}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'user\x00'}}, {@obj_user={'obj_user', 0x3d, 'user\x00'}}]}}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) recvmmsg$unix(r4, &(0x7f0000000dc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x12000, 0x0) 10:10:25 executing program 6: r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc, 0x99, {0x9effffff}}}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@device_b}]}, 0x2c}}, 0x0) 10:10:25 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r1, 0xb341daa0822653b3, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 10:10:25 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x25, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000003d00)=[{{0x0, 0x0, &(0x7f0000001580)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}}], 0x1, 0x0, 0x0) 10:10:25 executing program 1: syz_mount_image$tmpfs(&(0x7f0000001740), &(0x7f0000001780)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001f80)={[{@mpol={'mpol', 0x3d, {'local', '=relative', @void}}}]}) 10:10:25 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/security', 0x0, 0x0) lseek(r0, 0x4, 0x0) lseek(r0, 0x0, 0x0) 10:10:25 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, 0x0, 0x0) 10:10:25 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) fcntl$lock(r0, 0x25, 0x0) 10:10:25 executing program 6: r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc, 0x99, {0x9effffff}}}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@device_b}]}, 0x2c}}, 0x0) 10:10:25 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x29, 0x49, &(0x7f0000000100), 0x4) fstat(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800, &(0x7f00000002c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_client}, {@version_L}, {@access_user}, {@cache_fscache}, {@afid={'afid', 0x3d, 0x1}}], [{@uid_lt}, {@fowner_lt={'fowner<', r1}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'user\x00'}}, {@obj_user={'obj_user', 0x3d, 'user\x00'}}]}}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) recvmmsg$unix(r4, &(0x7f0000000dc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x12000, 0x0) [ 113.072509] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 113.073522] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 113.074240] CPU: 0 UID: 0 PID: 3941 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.076026] Tainted: [W]=WARN [ 113.076487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.077670] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.078398] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.080837] RSP: 0018:ffff888017407780 EFLAGS: 00010012 [ 113.081604] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 113.082621] RDX: ffff888015b09b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 113.083994] RBP: ffff8880174079f0 R08: ffff88806ce31340 R09: ffffe8ffffc16278 [ 113.084992] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.086017] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.087016] FS: 000055556c61e400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.088119] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.088942] CR2: 00005555578f0c18 CR3: 000000004646a000 CR4: 0000000000350ef0 [ 113.089968] Call Trace: [ 113.090653] [ 113.090859] ? __pfx_perf_tp_event+0x10/0x10 [ 113.091263] ? arch_scale_cpu_capacity+0x17/0xa0 [ 113.091695] ? cpu_util.constprop.0+0x17d/0x340 [ 113.092119] ? __asan_memset+0x24/0x50 [ 113.092471] ? sched_balance_find_dst_group+0xa9a/0x1c00 [ 113.092956] ? css_rstat_updated+0x1b8/0x4d0 [ 113.093362] ? __pfx_css_rstat_updated+0x10/0x10 [ 113.093787] ? lock_is_held_type+0x9e/0x120 [ 113.094194] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.094647] ? lock_is_held_type+0x9e/0x120 [ 113.095040] perf_trace_run_bpf_submit+0xef/0x180 [ 113.095481] perf_trace_preemptirq_template+0x259/0x430 [ 113.095957] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 113.096480] ? lock_is_held_type+0x9e/0x120 [ 113.096871] ? find_held_lock+0x2b/0x80 [ 113.097231] ? try_to_wake_up+0x8ae/0x11d0 [ 113.097612] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 113.098078] trace_irq_enable.constprop.0+0xa6/0x100 [ 113.098533] trace_hardirqs_on+0x26/0x40 [ 113.098892] _raw_spin_unlock_irqrestore+0x2c/0x50 [ 113.099336] try_to_wake_up+0x8ae/0x11d0 [ 113.099704] ? __pfx_try_to_wake_up+0x10/0x10 [ 113.100108] ? plist_del+0x122/0x270 [ 113.100447] ? find_held_lock+0x2b/0x80 [ 113.100806] ? futex_wake+0x474/0x540 [ 113.101156] wake_up_q+0xa1/0x130 [ 113.101476] futex_wake+0x47e/0x540 [ 113.101807] ? __pfx_futex_wake+0x10/0x10 [ 113.102201] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.102666] ? finish_task_switch.isra.0+0x206/0x840 [ 113.103126] do_futex+0x26d/0x370 [ 113.103440] ? __pfx_do_futex+0x10/0x10 [ 113.103797] ? __pfx___schedule+0x10/0x10 [ 113.104169] __x64_sys_futex+0x1c9/0x4d0 [ 113.104534] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 113.105052] ? __pfx___x64_sys_futex+0x10/0x10 [ 113.105462] ? xfd_validate_state+0x55/0x180 [ 113.105868] do_syscall_64+0xbf/0x360 [ 113.106225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.106679] RIP: 0033:0x7fb17195cb19 [ 113.107012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.108603] RSP: 002b:00007fff4322bf78 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 113.109274] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb17195cb19 [ 113.109904] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb171a6ff68 [ 113.111158] RBP: 00007fb171a6ff60 R08: 00007fb16eed2700 R09: 0000000000000000 [ 113.112389] R10: 00007fb16eed2700 R11: 0000000000000246 R12: 00007fb171a740b0 [ 113.113613] R13: 00007fff4322c080 R14: 00007fb171a6ff60 R15: 000000000001b936 [ 113.114859] [ 113.115232] Modules linked in: [ 113.115738] ---[ end trace 0000000000000000 ]--- [ 113.115741] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 113.116462] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.117396] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.118108] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.118832] CPU: 1 UID: 0 PID: 3947 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.121576] RSP: 0018:ffff888017407780 EFLAGS: 00010012 [ 113.122557] Tainted: [D]=DIE, [W]=WARN [ 113.122564] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.123359] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 113.123677] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.124897] RDX: ffff888015b09b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 113.125453] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.126145] RBP: ffff8880174079f0 R08: ffff88806ce31340 R09: ffffe8ffffc16278 [ 113.126700] RSP: 0018:ffff88801903f780 EFLAGS: 00010012 [ 113.129395] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.129953] [ 113.129958] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 113.130752] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.131304] RDX: ffff88804627b700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.131566] FS: 000055556c61e400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.132115] RBP: ffff88801903f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16278 [ 113.133181] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.133730] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 113.134953] CR2: 00005555578f0c18 CR3: 000000004646a000 CR4: 0000000000350ef0 [ 113.135499] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 113.136370] note: syz-executor.4[3941] exited with irqs disabled [ 113.136918] FS: 0000555586f9f400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 113.139632] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.140092] CR2: 0000555586fa0c18 CR3: 0000000016e37000 CR4: 0000000000350ef0 [ 113.140653] Call Trace: [ 113.140860] [ 113.141042] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.141465] ? refill_stock+0x2e3/0x690 [ 113.141792] ? __pfx_perf_tp_event+0x10/0x10 [ 113.142163] ? __mutex_trylock_common+0xf9/0x260 [ 113.142548] ? arch_scale_cpu_capacity+0x17/0xa0 [ 113.142935] ? cpu_util.constprop.0+0x17d/0x340 [ 113.143313] ? __asan_memset+0x24/0x50 [ 113.143626] ? sched_balance_find_dst_group+0xa9a/0x1c00 [ 113.144055] ? lock_release+0x1c7/0x290 [ 113.144376] ? __pfx___mutex_lock+0x10/0x10 [ 113.144725] ? __pfx_sched_balance_find_dst_group+0x10/0x10 [ 113.145169] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 113.145588] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.146000] ? sched_clock+0x37/0x60 [ 113.146303] ? sched_clock_cpu+0x6c/0x4e0 [ 113.146635] perf_trace_run_bpf_submit+0xef/0x180 [ 113.147025] perf_trace_preemptirq_template+0x259/0x430 [ 113.147445] ? __pick_eevdf+0x326/0x570 [ 113.147762] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 113.148220] ? update_curr+0x39e/0x500 [ 113.148533] ? check_preempt_wakeup_fair+0x406/0x950 [ 113.148941] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 113.149345] trace_irq_enable.constprop.0+0xa6/0x100 [ 113.149748] trace_hardirqs_on+0x26/0x40 [ 113.150083] _raw_spin_unlock_irqrestore+0x2c/0x50 [ 113.150486] try_to_wake_up+0x8ae/0x11d0 [ 113.150814] ? __pfx_try_to_wake_up+0x10/0x10 [ 113.151178] ? plist_del+0x122/0x270 [ 113.151481] ? __futex_unqueue+0xda/0x1c0 [ 113.151813] wake_up_q+0xa1/0x130 [ 113.152100] futex_wake+0x47e/0x540 [ 113.152397] ? __pfx_futex_wake+0x10/0x10 [ 113.152730] ? xfd_validate_state+0x55/0x180 [ 113.153093] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 113.153506] ? finish_task_switch.isra.0+0x206/0x840 [ 113.153929] do_futex+0x26d/0x370 [ 113.154211] ? __pfx_do_futex+0x10/0x10 [ 113.154529] ? __pfx___schedule+0x10/0x10 [ 113.154862] __x64_sys_futex+0x1c9/0x4d0 [ 113.155187] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 113.155648] ? __pfx___x64_sys_futex+0x10/0x10 [ 113.156017] ? xfd_validate_state+0x55/0x180 [ 113.156375] do_syscall_64+0xbf/0x360 [ 113.156681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.157086] RIP: 0033:0x7f69ce9d6b19 [ 113.157381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.158805] RSP: 002b:00007ffd5981fa48 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 113.159400] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f69ce9d6b19 [ 113.159956] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f69ceae9f68 [ 113.160517] RBP: 00007f69ceae9f60 R08: 00007f69cbf4c700 R09: 0000000000000000 [ 113.161073] R10: 00007f69cbf4c700 R11: 0000000000000246 R12: 00007f69ceaee060 [ 113.161631] R13: 00007ffd5981fb50 R14: 00007f69ceae9f60 R15: 000000000001b937 [ 113.162200] [ 113.162391] Modules linked in: [ 113.162651] ---[ end trace 0000000000000000 ]--- [ 113.162652] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI [ 113.163018] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.164680] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 113.165057] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.166225] CPU: 0 UID: 0 PID: 3941 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.167714] RSP: 0018:ffff888017407780 EFLAGS: 00010012 [ 113.169523] Tainted: [D]=DIE, [W]=WARN [ 113.169959] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 113.170552] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.171140] RDX: ffff888015b09b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 113.172402] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.172981] RBP: ffff8880174079f0 R08: ffff88806ce31340 R09: ffffe8ffffc16278 [ 113.173698] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.174291] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.177086] RSP: 0018:ffff88806ce08b80 EFLAGS: 00010012 [ 113.177670] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.177674] [ 113.177683] FS: 0000555586f9f400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 113.178499] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 113.179081] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.179349] RDX: ffff888015b09b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 113.180014] CR2: 0000555586fa0c18 CR3: 0000000016e37000 CR4: 0000000000350ef0 [ 113.181102] RBP: ffff88806ce08df0 R08: ffff88806ce313e8 R09: ffffe8ffffc16278 [ 113.181587] note: syz-executor.3[3947] exited with irqs disabled [ 113.182684] R10: 0000000000000000 R11: ffff888019e13098 R12: dffffc0000000000 [ 113.186377] R13: 0000000000000014 R14: ffff88806ce313e8 R15: dffffc0000000000 [ 113.187486] FS: 000055556c61e400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.188739] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.189644] CR2: 00005555578f0c18 CR3: 000000004646a000 CR4: 0000000000350ef0 [ 113.190757] Call Trace: [ 113.191167] [ 113.191523] ? __pfx_perf_tp_event+0x10/0x10 [ 113.192235] ? enqueue_task_fair+0xded/0x1e00 [ 113.192954] ? check_preempt_wakeup_fair+0x6e/0x950 [ 113.193745] ? wakeup_preempt+0x140/0x2a0 [ 113.194407] ? lock_release+0x1c7/0x290 [ 113.195045] ? lock_release+0x1c7/0x290 [ 113.195676] ? do_raw_spin_unlock+0x53/0x220 [ 113.196385] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 113.197195] ? try_to_wake_up+0x8ae/0x11d0 [ 113.197873] ? do_raw_spin_lock+0x123/0x260 [ 113.198572] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 113.199318] ? perf_trace_run_bpf_submit+0xef/0x180 [ 113.200112] perf_trace_run_bpf_submit+0xef/0x180 [ 113.200887] perf_trace_preemptirq_template+0x259/0x430 [ 113.201724] ? read_tsc+0x9/0x20 [ 113.202292] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 113.203204] ? clockevents_program_event+0x135/0x360 [ 113.204010] ? tick_program_event+0xac/0x140 [ 113.204707] ? handle_softirqs+0x16e/0x770 [ 113.205385] trace_irq_enable.constprop.0+0xa6/0x100 [ 113.206198] trace_hardirqs_on+0x26/0x40 [ 113.206838] handle_softirqs+0x16e/0x770 [ 113.207497] __irq_exit_rcu+0xc4/0x100 [ 113.208127] irq_exit_rcu+0x9/0x20 [ 113.208691] sysvec_apic_timer_interrupt+0x70/0x80 [ 113.209472] [ 113.209837] [ 113.210211] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 113.211035] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 113.211775] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de [ 113.214589] RSP: 0018:ffff888017407f28 EFLAGS: 00000246 [ 113.215417] RAX: 0000000000000001 RBX: ffff888015b09b80 RCX: ffffffff817c3ab6 [ 113.216523] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 113.217625] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 113.218733] R10: ffffffff8643b457 R11: 3030303030302043 R12: ffff888015b09b80 [ 113.219838] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 113.220949] ? trace_irq_enable.constprop.0+0x26/0x100 [ 113.221773] ? make_task_dead+0x214/0x3b0 [ 113.222448] ? make_task_dead+0x214/0x3b0 [ 113.223106] ? do_syscall_64+0xbf/0x360 [ 113.223737] rewind_stack_and_make_dead+0x16/0x20 [ 113.224510] RIP: 0033:0x7fb17195cb19 [ 113.225093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.227905] RSP: 002b:00007fff4322bf78 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 113.229076] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb17195cb19 [ 113.230191] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb171a6ff68 [ 113.231292] RBP: 00007fb171a6ff60 R08: 00007fb16eed2700 R09: 0000000000000000 [ 113.232397] R10: 00007fb16eed2700 R11: 0000000000000246 R12: 00007fb171a740b0 [ 113.233499] R13: 00007fff4322c080 R14: 00007fb171a6ff60 R15: 000000000001b936 [ 113.234617] [ 113.234990] Modules linked in: [ 113.235502] ---[ end trace 0000000000000000 ]--- [ 113.235503] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#4] SMP KASAN NOPTI [ 113.236229] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.237141] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 113.237851] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.238564] CPU: 1 UID: 0 PID: 3947 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 113.241345] RSP: 0018:ffff888017407780 EFLAGS: 00010012 [ 113.242331] Tainted: [D]=DIE, [W]=WARN [ 113.242339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 113.243142] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 113.243464] RIP: 0010:perf_tp_event+0x175/0xe70 [ 113.244727] RDX: ffff888015b09b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 113.245303] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 113.246018] RBP: ffff8880174079f0 R08: ffff88806ce31340 R09: ffffe8ffffc16278 [ 113.246576] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012 [ 113.249033] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 113.249585] [ 113.249591] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 113.250308] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 113.250867] RDX: ffff88804627b700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 113.251110] FS: 000055556c61e400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 113.251666] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd16278 [ 113.252628] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.253182] R10: 0000000000000000 R11: ffff88801e4f9498 R12: dffffc0000000000 [ 113.254287] CR2: 00005555578f0c18 CR3: 000000004646a000 CR4: 0000000000350ef0 [ 113.254837] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000 [ 113.255624] Kernel panic - not syncing: Fatal exception in interrupt [ 114.366158] Shutting down cpus with NMI [ 114.369701] Kernel Offset: disabled [ 114.370229] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 10:10:25 Registers: info registers vcpu 0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff828e5070 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888017407098 R8 =0000000000000000 R9 =ffffed10013bd046 R10=00000000000fe503 R11=6666666666662052 R12=0000000000000823 R13=0000000000000020 R14=fffffbfff10e52a2 R15=dffffc0000000000 RIP=ffffffff828e50c5 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055556c61e400 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe6300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005555578f0c18 CR3=000000004646a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fb171a437c000007fb171a437c8 XMM02=00007fb171a437e000007fb171a437c0 XMM03=00007fb171a437c800007fb171a437c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=0000000000000001 RCX=ffffffff84be3c0e RDX=fffffbfff0f0f609 RSI=0000000000000004 RDI=ffffffff8787b044 RBP=ffffffff8787b044 RSP=ffff88801903f530 R8 =0000000000000000 R9 =fffffbfff0f0f608 R10=ffffffff8787b047 R11=202c746c75616620 R12=1ffff11003207ea7 R13=0000000000000007 R14=fffffbfff0f0f608 R15=ffff88801903f568 RIP=ffffffff84be3da0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555586f9f400 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe6d00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555586fa0c18 CR3=0000000016e37000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f69ceabd7c000007f69ceabd7c8 XMM02=00007f69ceabd7e000007f69ceabd7c0 XMM03=00007f69ceabd7c800007f69ceabd7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000