Warning: Permanently added '[localhost]:38948' (ECDSA) to the list of known hosts. 2025/09/01 10:16:49 fuzzer started 2025/09/01 10:16:50 dialing manager at localhost:35473 syzkaller login: [ 59.482715] cgroup: Unknown subsys name 'net' [ 59.543444] cgroup: Unknown subsys name 'cpuset' [ 59.553756] cgroup: Unknown subsys name 'rlimit' 2025/09/01 10:17:00 syscalls: 2214 2025/09/01 10:17:00 code coverage: enabled 2025/09/01 10:17:00 comparison tracing: enabled 2025/09/01 10:17:00 extra coverage: enabled 2025/09/01 10:17:00 setuid sandbox: enabled 2025/09/01 10:17:00 namespace sandbox: enabled 2025/09/01 10:17:00 Android sandbox: enabled 2025/09/01 10:17:00 fault injection: enabled 2025/09/01 10:17:00 leak checking: enabled 2025/09/01 10:17:00 net packet injection: enabled 2025/09/01 10:17:00 net device setup: enabled 2025/09/01 10:17:00 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 10:17:00 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 10:17:00 USB emulation: enabled 2025/09/01 10:17:00 hci packet injection: enabled 2025/09/01 10:17:00 wifi device emulation: enabled 2025/09/01 10:17:00 802.15.4 emulation: enabled 2025/09/01 10:17:00 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 10:17:00 fetching corpus: 50, signal 25875/29287 (executing program) 2025/09/01 10:17:00 fetching corpus: 100, signal 34255/39075 (executing program) 2025/09/01 10:17:00 fetching corpus: 150, signal 41127/47256 (executing program) 2025/09/01 10:17:00 fetching corpus: 200, signal 48373/55534 (executing program) 2025/09/01 10:17:00 fetching corpus: 250, signal 53680/61866 (executing program) 2025/09/01 10:17:01 fetching corpus: 300, signal 58387/67561 (executing program) 2025/09/01 10:17:01 fetching corpus: 350, signal 61232/71465 (executing program) 2025/09/01 10:17:01 fetching corpus: 400, signal 65218/76327 (executing program) 2025/09/01 10:17:01 fetching corpus: 450, signal 67777/79850 (executing program) 2025/09/01 10:17:01 fetching corpus: 500, signal 72475/85108 (executing program) 2025/09/01 10:17:01 fetching corpus: 550, signal 76698/89852 (executing program) 2025/09/01 10:17:01 fetching corpus: 600, signal 78613/92585 (executing program) 2025/09/01 10:17:01 fetching corpus: 650, signal 80530/95223 (executing program) 2025/09/01 10:17:01 fetching corpus: 700, signal 82999/98347 (executing program) 2025/09/01 10:17:01 fetching corpus: 750, signal 85541/101463 (executing program) 2025/09/01 10:17:01 fetching corpus: 800, signal 87364/103878 (executing program) 2025/09/01 10:17:02 fetching corpus: 850, signal 89281/106359 (executing program) 2025/09/01 10:17:02 fetching corpus: 900, signal 90481/108234 (executing program) 2025/09/01 10:17:02 fetching corpus: 950, signal 92355/110603 (executing program) 2025/09/01 10:17:02 fetching corpus: 1000, signal 93913/112691 (executing program) 2025/09/01 10:17:02 fetching corpus: 1050, signal 96024/115160 (executing program) 2025/09/01 10:17:02 fetching corpus: 1100, signal 97765/117300 (executing program) 2025/09/01 10:17:02 fetching corpus: 1150, signal 99589/119459 (executing program) 2025/09/01 10:17:02 fetching corpus: 1200, signal 101419/121568 (executing program) 2025/09/01 10:17:02 fetching corpus: 1250, signal 103393/123761 (executing program) 2025/09/01 10:17:02 fetching corpus: 1300, signal 104484/125306 (executing program) 2025/09/01 10:17:03 fetching corpus: 1350, signal 105474/126773 (executing program) 2025/09/01 10:17:03 fetching corpus: 1400, signal 107775/129011 (executing program) 2025/09/01 10:17:03 fetching corpus: 1450, signal 108848/130483 (executing program) 2025/09/01 10:17:03 fetching corpus: 1500, signal 110796/132463 (executing program) 2025/09/01 10:17:03 fetching corpus: 1550, signal 112656/134389 (executing program) 2025/09/01 10:17:03 fetching corpus: 1600, signal 114309/136124 (executing program) 2025/09/01 10:17:03 fetching corpus: 1650, signal 115432/137433 (executing program) 2025/09/01 10:17:03 fetching corpus: 1700, signal 116394/138648 (executing program) 2025/09/01 10:17:03 fetching corpus: 1750, signal 117414/139903 (executing program) 2025/09/01 10:17:03 fetching corpus: 1800, signal 118359/141038 (executing program) 2025/09/01 10:17:04 fetching corpus: 1850, signal 119325/142235 (executing program) 2025/09/01 10:17:04 fetching corpus: 1900, signal 120465/143470 (executing program) 2025/09/01 10:17:04 fetching corpus: 1950, signal 121850/144790 (executing program) 2025/09/01 10:17:04 fetching corpus: 2000, signal 123343/146135 (executing program) 2025/09/01 10:17:04 fetching corpus: 2050, signal 124080/147062 (executing program) 2025/09/01 10:17:04 fetching corpus: 2100, signal 124930/148021 (executing program) 2025/09/01 10:17:04 fetching corpus: 2150, signal 125594/148876 (executing program) 2025/09/01 10:17:04 fetching corpus: 2200, signal 127012/150082 (executing program) 2025/09/01 10:17:04 fetching corpus: 2250, signal 127942/151026 (executing program) 2025/09/01 10:17:04 fetching corpus: 2300, signal 128760/151945 (executing program) 2025/09/01 10:17:05 fetching corpus: 2348, signal 129219/152663 (executing program) 2025/09/01 10:17:05 fetching corpus: 2397, signal 130079/153470 (executing program) 2025/09/01 10:17:05 fetching corpus: 2447, signal 130539/154167 (executing program) 2025/09/01 10:17:05 fetching corpus: 2497, signal 131085/154873 (executing program) 2025/09/01 10:17:05 fetching corpus: 2546, signal 132029/155786 (executing program) 2025/09/01 10:17:05 fetching corpus: 2596, signal 132663/156451 (executing program) 2025/09/01 10:17:05 fetching corpus: 2646, signal 133272/157144 (executing program) 2025/09/01 10:17:05 fetching corpus: 2696, signal 135341/158347 (executing program) 2025/09/01 10:17:05 fetching corpus: 2745, signal 136282/159129 (executing program) 2025/09/01 10:17:05 fetching corpus: 2795, signal 136783/159739 (executing program) 2025/09/01 10:17:06 fetching corpus: 2845, signal 137791/160454 (executing program) 2025/09/01 10:17:06 fetching corpus: 2895, signal 138339/161029 (executing program) 2025/09/01 10:17:06 fetching corpus: 2944, signal 139182/161708 (executing program) 2025/09/01 10:17:06 fetching corpus: 2994, signal 139969/162300 (executing program) 2025/09/01 10:17:06 fetching corpus: 3044, signal 140744/162846 (executing program) 2025/09/01 10:17:06 fetching corpus: 3094, signal 141385/163370 (executing program) 2025/09/01 10:17:06 fetching corpus: 3144, signal 142342/163936 (executing program) 2025/09/01 10:17:06 fetching corpus: 3194, signal 143001/164415 (executing program) 2025/09/01 10:17:06 fetching corpus: 3244, signal 143645/164943 (executing program) 2025/09/01 10:17:06 fetching corpus: 3294, signal 144100/165359 (executing program) 2025/09/01 10:17:07 fetching corpus: 3344, signal 144673/165769 (executing program) 2025/09/01 10:17:07 fetching corpus: 3394, signal 145253/166169 (executing program) 2025/09/01 10:17:07 fetching corpus: 3444, signal 145837/166560 (executing program) 2025/09/01 10:17:07 fetching corpus: 3494, signal 146369/166972 (executing program) 2025/09/01 10:17:07 fetching corpus: 3544, signal 146735/167311 (executing program) 2025/09/01 10:17:07 fetching corpus: 3594, signal 147367/167665 (executing program) 2025/09/01 10:17:07 fetching corpus: 3644, signal 147686/168003 (executing program) 2025/09/01 10:17:07 fetching corpus: 3694, signal 148337/168330 (executing program) 2025/09/01 10:17:07 fetching corpus: 3744, signal 149127/168710 (executing program) 2025/09/01 10:17:07 fetching corpus: 3794, signal 149802/169038 (executing program) 2025/09/01 10:17:08 fetching corpus: 3844, signal 150354/169325 (executing program) 2025/09/01 10:17:08 fetching corpus: 3894, signal 150929/169609 (executing program) 2025/09/01 10:17:08 fetching corpus: 3943, signal 151433/169925 (executing program) 2025/09/01 10:17:08 fetching corpus: 3993, signal 151756/170188 (executing program) 2025/09/01 10:17:08 fetching corpus: 4043, signal 152369/170427 (executing program) 2025/09/01 10:17:08 fetching corpus: 4093, signal 152885/170666 (executing program) 2025/09/01 10:17:08 fetching corpus: 4143, signal 153391/170904 (executing program) 2025/09/01 10:17:08 fetching corpus: 4193, signal 153968/170937 (executing program) 2025/09/01 10:17:08 fetching corpus: 4243, signal 154466/170961 (executing program) 2025/09/01 10:17:08 fetching corpus: 4293, signal 154877/170965 (executing program) 2025/09/01 10:17:08 fetching corpus: 4343, signal 155293/170978 (executing program) 2025/09/01 10:17:09 fetching corpus: 4393, signal 156013/170981 (executing program) 2025/09/01 10:17:09 fetching corpus: 4443, signal 156534/171011 (executing program) 2025/09/01 10:17:09 fetching corpus: 4493, signal 157023/171110 (executing program) 2025/09/01 10:17:09 fetching corpus: 4543, signal 157419/171110 (executing program) 2025/09/01 10:17:09 fetching corpus: 4593, signal 157674/171125 (executing program) 2025/09/01 10:17:09 fetching corpus: 4643, signal 157981/171133 (executing program) 2025/09/01 10:17:09 fetching corpus: 4693, signal 158647/171172 (executing program) 2025/09/01 10:17:09 fetching corpus: 4743, signal 159127/171179 (executing program) 2025/09/01 10:17:09 fetching corpus: 4793, signal 159476/171205 (executing program) 2025/09/01 10:17:09 fetching corpus: 4843, signal 159791/171208 (executing program) 2025/09/01 10:17:09 fetching corpus: 4893, signal 160388/171235 (executing program) 2025/09/01 10:17:09 fetching corpus: 4943, signal 160962/171246 (executing program) 2025/09/01 10:17:10 fetching corpus: 4993, signal 161439/171315 (executing program) 2025/09/01 10:17:10 fetching corpus: 5042, signal 161813/171318 (executing program) 2025/09/01 10:17:10 fetching corpus: 5092, signal 162230/171407 (executing program) 2025/09/01 10:17:10 fetching corpus: 5142, signal 162791/171445 (executing program) 2025/09/01 10:17:10 fetching corpus: 5192, signal 163180/171462 (executing program) 2025/09/01 10:17:10 fetching corpus: 5242, signal 163706/171493 (executing program) 2025/09/01 10:17:10 fetching corpus: 5291, signal 164267/171595 (executing program) 2025/09/01 10:17:10 fetching corpus: 5341, signal 164587/171627 (executing program) 2025/09/01 10:17:10 fetching corpus: 5391, signal 165047/171643 (executing program) 2025/09/01 10:17:10 fetching corpus: 5441, signal 165476/171645 (executing program) 2025/09/01 10:17:11 fetching corpus: 5491, signal 165891/171651 (executing program) 2025/09/01 10:17:11 fetching corpus: 5541, signal 166138/171665 (executing program) 2025/09/01 10:17:11 fetching corpus: 5591, signal 166911/171681 (executing program) 2025/09/01 10:17:11 fetching corpus: 5641, signal 167291/171700 (executing program) 2025/09/01 10:17:11 fetching corpus: 5691, signal 167618/171708 (executing program) 2025/09/01 10:17:11 fetching corpus: 5741, signal 167900/171723 (executing program) 2025/09/01 10:17:11 fetching corpus: 5791, signal 168263/171731 (executing program) 2025/09/01 10:17:11 fetching corpus: 5841, signal 168683/171741 (executing program) 2025/09/01 10:17:11 fetching corpus: 5891, signal 169018/171758 (executing program) 2025/09/01 10:17:11 fetching corpus: 5900, signal 169076/171758 (executing program) 2025/09/01 10:17:11 fetching corpus: 5900, signal 169076/171758 (executing program) 2025/09/01 10:17:14 starting 8 fuzzer processes 10:17:14 executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000000)={@remote}, 0x20) ioctl$TCSBRKP(r0, 0x5425, 0x0) 10:17:14 executing program 1: shmctl$SHM_STAT(0x0, 0xd, &(0x7f0000000540)) 10:17:14 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000680)={0x53, 0x0, 0xa, 0x0, @scatter={0x1, 0x0, &(0x7f0000000240)=[{0x0}]}, &(0x7f0000000000)="5b05090000000080004e", 0x0, 0x0, 0x0, 0x0, 0x0}) 10:17:14 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x4c, 0x0, 0x0) 10:17:14 executing program 7: r0 = getpid() migrate_pages(r0, 0x9, 0x0, &(0x7f0000000040)=0x4) 10:17:14 executing program 3: clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) setitimer(0x1, &(0x7f00000001c0)={{0x0, 0xea60}, {0x0, r0/1000+60000}}, 0x0) 10:17:14 executing program 5: timer_create(0x0, 0x0, &(0x7f0000000200)) timer_create(0x3, 0x0, &(0x7f0000000200)=0x0) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, r1+10000000}}, 0x0) timer_delete(r0) 10:17:14 executing program 6: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x17) [ 83.248660] audit: type=1400 audit(1756721834.249:7): avc: denied { execmem } for pid=275 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 84.542550] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 84.545264] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 84.549207] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 84.553369] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 84.556396] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 84.610264] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 84.617137] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 84.628532] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 84.635674] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 84.638699] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 84.644688] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 84.647300] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 84.648403] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 84.650014] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 84.652080] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 84.653348] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 84.655821] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 84.657852] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 84.660586] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 84.661985] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 84.669547] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 84.671772] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 84.672832] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 84.674201] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 84.678867] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 84.703378] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 84.716156] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 84.720647] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 84.734779] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 84.741239] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 84.742824] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 84.744704] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 84.748440] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 84.749766] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 84.749891] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 84.756228] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 84.800223] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 84.805882] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 84.814775] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 84.825229] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 86.576800] Bluetooth: hci0: command tx timeout [ 86.703076] Bluetooth: hci3: command tx timeout [ 86.705702] Bluetooth: hci1: command tx timeout [ 86.768307] Bluetooth: hci2: command tx timeout [ 86.769426] Bluetooth: hci4: command tx timeout [ 86.832985] Bluetooth: hci5: command tx timeout [ 86.897197] Bluetooth: hci7: command tx timeout [ 86.898889] Bluetooth: hci6: command tx timeout [ 88.624639] Bluetooth: hci0: command tx timeout [ 88.751024] Bluetooth: hci3: command tx timeout [ 88.751482] Bluetooth: hci1: command tx timeout [ 88.816980] Bluetooth: hci4: command tx timeout [ 88.817433] Bluetooth: hci2: command tx timeout [ 88.879163] Bluetooth: hci5: command tx timeout [ 88.943017] Bluetooth: hci6: command tx timeout [ 88.943479] Bluetooth: hci7: command tx timeout [ 90.671972] Bluetooth: hci0: command tx timeout [ 90.799173] Bluetooth: hci1: command tx timeout [ 90.800255] Bluetooth: hci3: command tx timeout [ 90.863121] Bluetooth: hci2: command tx timeout [ 90.864122] Bluetooth: hci4: command tx timeout [ 90.927177] Bluetooth: hci5: command tx timeout [ 90.991304] Bluetooth: hci7: command tx timeout [ 90.992336] Bluetooth: hci6: command tx timeout [ 92.720016] Bluetooth: hci0: command tx timeout [ 92.848047] Bluetooth: hci3: command tx timeout [ 92.848527] Bluetooth: hci1: command tx timeout [ 92.911994] Bluetooth: hci4: command tx timeout [ 92.912410] Bluetooth: hci2: command tx timeout [ 92.975976] Bluetooth: hci5: command tx timeout [ 93.040047] Bluetooth: hci7: command tx timeout [ 93.040479] Bluetooth: hci6: command tx timeout [ 124.757606] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.758416] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.844554] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.845471] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.977389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.978070] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.049878] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.050975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.065570] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.066205] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.117344] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.118143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:17:56 executing program 6: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x17) [ 125.231085] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.231676] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.237270] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.237862] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:17:56 executing program 6: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x17) [ 125.330586] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.331216] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:17:56 executing program 1: shmctl$SHM_STAT(0x0, 0xd, &(0x7f0000000540)) [ 125.358381] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.359589] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:17:56 executing program 6: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x17) [ 125.369287] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.369868] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:17:56 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000300)=0x5, 0x4) 10:17:56 executing program 1: shmctl$SHM_STAT(0x0, 0xd, &(0x7f0000000540)) 10:17:56 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000300)=0x5, 0x4) [ 125.457189] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.457794] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:17:56 executing program 1: shmctl$SHM_STAT(0x0, 0xd, &(0x7f0000000540)) [ 125.524675] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.525420] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.554424] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.555122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.588686] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.589287] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.636506] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.637103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.713154] audit: type=1400 audit(1756721876.710:8): avc: denied { open } for pid=3901 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.718107] audit: type=1400 audit(1756721876.710:9): avc: denied { kernel } for pid=3901 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.760078] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list 10:17:57 executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000000)={@remote}, 0x20) ioctl$TCSBRKP(r0, 0x5425, 0x0) 10:17:57 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000300)=0x5, 0x4) 10:17:57 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x38, &(0x7f0000000000)="a94a128f", 0x4) 10:17:57 executing program 3: clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) setitimer(0x1, &(0x7f00000001c0)={{0x0, 0xea60}, {0x0, r0/1000+60000}}, 0x0) 10:17:57 executing program 7: r0 = getpid() migrate_pages(r0, 0x9, 0x0, &(0x7f0000000040)=0x4) 10:17:57 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000680)={0x53, 0x0, 0xa, 0x0, @scatter={0x1, 0x0, &(0x7f0000000240)=[{0x0}]}, &(0x7f0000000000)="5b05090000000080004e", 0x0, 0x0, 0x0, 0x0, 0x0}) 10:17:57 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x4c, 0x0, 0x0) 10:17:57 executing program 5: timer_create(0x0, 0x0, &(0x7f0000000200)) timer_create(0x3, 0x0, &(0x7f0000000200)=0x0) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, r1+10000000}}, 0x0) timer_delete(r0) 10:17:57 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000300)=0x5, 0x4) 10:17:57 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x38, &(0x7f0000000000)="a94a128f", 0x4) 10:17:57 executing program 7: r0 = getpid() migrate_pages(r0, 0x9, 0x0, &(0x7f0000000040)=0x4) 10:17:57 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x4c, 0x0, 0x0) 10:17:57 executing program 3: clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) setitimer(0x1, &(0x7f00000001c0)={{0x0, 0xea60}, {0x0, r0/1000+60000}}, 0x0) [ 126.146137] kmemleak: Found object by alias at 0x607f1a63e1dc [ 126.146159] CPU: 0 UID: 0 PID: 3916 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.146178] Tainted: [W]=WARN [ 126.146182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.146189] Call Trace: [ 126.146193] [ 126.146198] dump_stack_lvl+0xca/0x120 [ 126.146225] __lookup_object+0x94/0xb0 [ 126.146242] delete_object_full+0x27/0x70 [ 126.146258] free_percpu+0x30/0x1160 [ 126.146276] ? arch_uprobe_clear_state+0x16/0x140 [ 126.146297] futex_hash_free+0x38/0xc0 [ 126.146311] mmput+0x2d3/0x390 [ 126.146331] do_exit+0x79d/0x2970 [ 126.146345] ? signal_wake_up_state+0x85/0x120 [ 126.146361] ? zap_other_threads+0x2b9/0x3a0 [ 126.146378] ? __pfx_do_exit+0x10/0x10 [ 126.146391] ? do_group_exit+0x1c3/0x2a0 [ 126.146405] ? lock_release+0xc8/0x290 [ 126.146422] do_group_exit+0xd3/0x2a0 [ 126.146438] __x64_sys_exit_group+0x3e/0x50 [ 126.146452] x64_sys_call+0x18c5/0x18d0 [ 126.146477] do_syscall_64+0xbf/0x360 [ 126.146490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.146502] RIP: 0033:0x7f70ca87ab19 [ 126.146510] Code: Unable to access opcode bytes at 0x7f70ca87aaef. [ 126.146516] RSP: 002b:00007fffd3e8bde8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 126.146527] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f70ca87ab19 [ 126.146535] RDX: 00007f70ca82d72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 126.146542] RBP: 0000000000000000 R08: 0000001b2d321ae4 R09: 0000000000000000 [ 126.146549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 126.146556] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffd3e8bed0 [ 126.146573] [ 126.146576] kmemleak: Object (percpu) 0x607f1a63e1d8 (size 16): [ 126.146583] kmemleak: comm "syz-executor.7", pid 290, jiffies 4294793037 [ 126.146590] kmemleak: min_count = 1 [ 126.146594] kmemleak: count = 0 [ 126.146598] kmemleak: flags = 0x21 [ 126.146601] kmemleak: checksum = 0 [ 126.146605] kmemleak: backtrace: [ 126.146608] pcpu_alloc_noprof+0x87a/0x1170 [ 126.146624] mm_init+0x99b/0x1170 [ 126.146632] copy_process+0x3ab7/0x73c0 [ 126.146642] kernel_clone+0xea/0x7f0 [ 126.146652] __do_sys_clone+0xce/0x120 [ 126.146662] do_syscall_64+0xbf/0x360 [ 126.146672] entry_SYSCALL_64_after_hwframe+0x77/0x7f 10:17:57 executing program 5: timer_create(0x0, 0x0, &(0x7f0000000200)) timer_create(0x3, 0x0, &(0x7f0000000200)=0x0) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, r1+10000000}}, 0x0) timer_delete(r0) 10:17:57 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000680)={0x53, 0x0, 0xa, 0x0, @scatter={0x1, 0x0, &(0x7f0000000240)=[{0x0}]}, &(0x7f0000000000)="5b05090000000080004e", 0x0, 0x0, 0x0, 0x0, 0x0}) 10:17:57 executing program 7: r0 = getpid() migrate_pages(r0, 0x9, 0x0, &(0x7f0000000040)=0x4) [ 126.287492] kmemleak: Found object by alias at 0x607f1a63e1e4 [ 126.287513] CPU: 0 UID: 0 PID: 3937 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.287532] Tainted: [W]=WARN [ 126.287535] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.287542] Call Trace: [ 126.287546] [ 126.287551] dump_stack_lvl+0xca/0x120 [ 126.287577] __lookup_object+0x94/0xb0 [ 126.287595] delete_object_full+0x27/0x70 [ 126.287612] free_percpu+0x30/0x1160 [ 126.287629] ? arch_uprobe_clear_state+0x16/0x140 [ 126.287650] futex_hash_free+0x38/0xc0 [ 126.287665] mmput+0x2d3/0x390 [ 126.287685] do_exit+0x79d/0x2970 [ 126.287703] ? __pfx_do_exit+0x10/0x10 [ 126.287718] ? find_held_lock+0x2b/0x80 [ 126.287737] ? get_signal+0x835/0x2340 [ 126.287757] do_group_exit+0xd3/0x2a0 [ 126.287773] get_signal+0x2315/0x2340 [ 126.287797] ? __pfx_get_signal+0x10/0x10 [ 126.287814] ? do_futex+0x135/0x370 [ 126.287828] ? __pfx_do_futex+0x10/0x10 [ 126.287844] arch_do_signal_or_restart+0x80/0x790 [ 126.287862] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 126.287879] ? __x64_sys_futex+0x1c9/0x4d0 [ 126.287892] ? __x64_sys_futex+0x1d2/0x4d0 [ 126.287908] ? __pfx___x64_sys_futex+0x10/0x10 [ 126.287926] ? __x64_sys_clock_gettime+0x16d/0x240 [ 126.287942] ? xfd_validate_state+0x55/0x180 [ 126.287964] exit_to_user_mode_loop+0x8b/0x110 [ 126.287978] do_syscall_64+0x2f7/0x360 [ 126.287990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.288003] RIP: 0033:0x7f5c14b27b19 [ 126.288012] Code: Unable to access opcode bytes at 0x7f5c14b27aef. [ 126.288017] RSP: 002b:00007f5c1209d218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.288029] RAX: fffffffffffffe00 RBX: 00007f5c14c3af68 RCX: 00007f5c14b27b19 [ 126.288037] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5c14c3af68 [ 126.288044] RBP: 00007f5c14c3af60 R08: 0000000000000000 R09: 0000000000000000 [ 126.288051] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5c14c3af6c [ 126.288058] R13: 00007fffe0146a7f R14: 00007f5c1209d300 R15: 0000000000022000 [ 126.288075] [ 126.288079] kmemleak: Object (percpu) 0x607f1a63e1d8 (size 16): [ 126.288086] kmemleak: comm "syz-executor.4", pid 288, jiffies 4294793162 [ 126.288093] kmemleak: min_count = 1 [ 126.288096] kmemleak: count = 0 [ 126.288100] kmemleak: flags = 0x21 [ 126.288104] kmemleak: checksum = 0 [ 126.288108] kmemleak: backtrace: [ 126.288111] pcpu_alloc_noprof+0x87a/0x1170 [ 126.288127] mm_init+0x99b/0x1170 [ 126.288135] copy_process+0x3ab7/0x73c0 [ 126.288145] kernel_clone+0xea/0x7f0 [ 126.288155] __do_sys_clone+0xce/0x120 [ 126.288166] do_syscall_64+0xbf/0x360 [ 126.288175] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.318328] kmemleak: Found object by alias at 0x607f1a63e1e0 [ 126.318340] CPU: 0 UID: 0 PID: 3938 Comm: syz-executor.1 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.318358] Tainted: [W]=WARN [ 126.318361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.318367] Call Trace: [ 126.318371] [ 126.318375] dump_stack_lvl+0xca/0x120 [ 126.318395] __lookup_object+0x94/0xb0 [ 126.318411] delete_object_full+0x27/0x70 [ 126.318428] free_percpu+0x30/0x1160 [ 126.318443] ? arch_uprobe_clear_state+0x16/0x140 [ 126.318470] futex_hash_free+0x38/0xc0 [ 126.318483] mmput+0x2d3/0x390 [ 126.318502] do_exit+0x79d/0x2970 [ 126.318520] ? __pfx_do_exit+0x10/0x10 [ 126.318535] ? find_held_lock+0x2b/0x80 [ 126.318552] ? get_signal+0x835/0x2340 [ 126.318571] do_group_exit+0xd3/0x2a0 [ 126.318587] get_signal+0x2315/0x2340 [ 126.318608] ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10 [ 126.318627] ? __pfx_get_signal+0x10/0x10 [ 126.318643] ? do_futex+0x135/0x370 [ 126.318658] ? __pfx_do_futex+0x10/0x10 [ 126.318674] arch_do_signal_or_restart+0x80/0x790 [ 126.318691] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 126.318708] ? __x64_sys_futex+0x1c9/0x4d0 [ 126.318720] ? __x64_sys_futex+0x1d2/0x4d0 [ 126.318736] ? __pfx___x64_sys_futex+0x10/0x10 [ 126.318750] ? __sys_setsockopt+0x13f/0x1a0 [ 126.318773] exit_to_user_mode_loop+0x8b/0x110 [ 126.318786] do_syscall_64+0x2f7/0x360 [ 126.318798] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.318810] RIP: 0033:0x7f36de3f1b19 [ 126.318818] Code: Unable to access opcode bytes at 0x7f36de3f1aef. [ 126.318823] RSP: 002b:00007f36db967218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.318834] RAX: fffffffffffffe00 RBX: 00007f36de504f68 RCX: 00007f36de3f1b19 [ 126.318842] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f36de504f68 [ 126.318849] RBP: 00007f36de504f60 R08: 0000000000000000 R09: 0000000000000000 [ 126.318856] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f36de504f6c [ 126.318863] R13: 00007ffd4258e4ef R14: 00007f36db967300 R15: 0000000000022000 [ 126.318881] [ 126.318885] kmemleak: Object (percpu) 0x607f1a63e1d8 (size 16): [ 126.318891] kmemleak: comm "syz-executor.4", pid 288, jiffies 4294793162 [ 126.318898] kmemleak: min_count = 1 [ 126.318902] kmemleak: count = 0 [ 126.318906] kmemleak: flags = 0x21 [ 126.318910] kmemleak: checksum = 0 [ 126.318913] kmemleak: backtrace: [ 126.318916] pcpu_alloc_noprof+0x87a/0x1170 [ 126.318936] mm_init+0x99b/0x1170 [ 126.318944] copy_process+0x3ab7/0x73c0 [ 126.318954] kernel_clone+0xea/0x7f0 [ 126.318964] __do_sys_clone+0xce/0x120 [ 126.318975] do_syscall_64+0xbf/0x360 [ 126.318984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.341785] kmemleak: Found object by alias at 0x607f1a63e1dc [ 126.341797] CPU: 0 UID: 0 PID: 3939 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.341814] Tainted: [W]=WARN [ 126.341818] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.341824] Call Trace: [ 126.341827] [ 126.341831] dump_stack_lvl+0xca/0x120 [ 126.341851] __lookup_object+0x94/0xb0 [ 126.341866] delete_object_full+0x27/0x70 [ 126.341883] free_percpu+0x30/0x1160 [ 126.341898] ? arch_uprobe_clear_state+0x16/0x140 [ 126.341918] futex_hash_free+0x38/0xc0 [ 126.341936] mmput+0x2d3/0x390 [ 126.341954] do_exit+0x79d/0x2970 [ 126.341968] ? signal_wake_up_state+0x85/0x120 [ 126.341983] ? zap_other_threads+0x2b9/0x3a0 [ 126.341999] ? __pfx_do_exit+0x10/0x10 [ 126.342012] ? do_group_exit+0x1c3/0x2a0 [ 126.342026] ? lock_release+0xc8/0x290 [ 126.342043] do_group_exit+0xd3/0x2a0 [ 126.342059] __x64_sys_exit_group+0x3e/0x50 [ 126.342073] x64_sys_call+0x18c5/0x18d0 [ 126.342088] do_syscall_64+0xbf/0x360 [ 126.342100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.342112] RIP: 0033:0x7f70ca87ab19 [ 126.342120] Code: Unable to access opcode bytes at 0x7f70ca87aaef. [ 126.342125] RSP: 002b:00007fffd3e8bde8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 126.342136] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f70ca87ab19 [ 126.342143] RDX: 00007f70ca82d72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 126.342151] RBP: 0000000000000000 R08: 0000001b2d32185c R09: 0000000000000000 [ 126.342157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 126.342164] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffd3e8bed0 [ 126.342181] [ 126.342185] kmemleak: Object (percpu) 0x607f1a63e1d8 (size 16): [ 126.342192] kmemleak: comm "syz-executor.4", pid 288, jiffies 4294793162 [ 126.342198] kmemleak: min_count = 1 [ 126.342202] kmemleak: count = 0 [ 126.342206] kmemleak: flags = 0x21 [ 126.342210] kmemleak: checksum = 0 [ 126.342213] kmemleak: backtrace: [ 126.342216] pcpu_alloc_noprof+0x87a/0x1170 [ 126.342232] mm_init+0x99b/0x1170 [ 126.342240] copy_process+0x3ab7/0x73c0 [ 126.342250] kernel_clone+0xea/0x7f0 [ 126.342260] __do_sys_clone+0xce/0x120 [ 126.342270] do_syscall_64+0xbf/0x360 [ 126.342280] entry_SYSCALL_64_after_hwframe+0x77/0x7f 10:17:57 executing program 5: timer_create(0x0, 0x0, &(0x7f0000000200)) timer_create(0x3, 0x0, &(0x7f0000000200)=0x0) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, r1+10000000}}, 0x0) timer_delete(r0) 10:17:57 executing program 6: timer_create(0x0, 0x0, &(0x7f0000000200)) timer_create(0x3, 0x0, &(0x7f0000000200)=0x0) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, r1+10000000}}, 0x0) timer_delete(r0) 10:17:57 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x4c, 0x0, 0x0) 10:17:57 executing program 3: clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) setitimer(0x1, &(0x7f00000001c0)={{0x0, 0xea60}, {0x0, r0/1000+60000}}, 0x0) 10:17:57 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x38, &(0x7f0000000000)="a94a128f", 0x4) 10:17:57 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1ff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x17e}) 10:17:57 executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000000)={@remote}, 0x20) ioctl$TCSBRKP(r0, 0x5425, 0x0) 10:17:57 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000680)={0x53, 0x0, 0xa, 0x0, @scatter={0x1, 0x0, &(0x7f0000000240)=[{0x0}]}, &(0x7f0000000000)="5b05090000000080004e", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 126.480738] kmemleak: Found object by alias at 0x607f1a63e1dc [ 126.480758] CPU: 1 UID: 0 PID: 3954 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.480777] Tainted: [W]=WARN [ 126.480781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.480788] Call Trace: [ 126.480792] [ 126.480797] dump_stack_lvl+0xca/0x120 [ 126.480829] __lookup_object+0x94/0xb0 [ 126.480847] delete_object_full+0x27/0x70 [ 126.480865] free_percpu+0x30/0x1160 [ 126.480882] ? arch_uprobe_clear_state+0x16/0x140 [ 126.480908] futex_hash_free+0x38/0xc0 [ 126.480924] mmput+0x2d3/0x390 [ 126.480944] do_exit+0x79d/0x2970 [ 126.480963] ? __pfx_do_exit+0x10/0x10 [ 126.480977] ? find_held_lock+0x2b/0x80 [ 126.480996] ? get_signal+0x835/0x2340 [ 126.481017] do_group_exit+0xd3/0x2a0 [ 126.481033] get_signal+0x2315/0x2340 [ 126.481051] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 126.481070] ? __pfx_get_signal+0x10/0x10 [ 126.481087] ? __schedule+0xe91/0x3590 [ 126.481110] arch_do_signal_or_restart+0x80/0x790 [ 126.481129] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 126.481146] ? __x64_sys_futex+0x1c9/0x4d0 [ 126.481159] ? __x64_sys_futex+0x1d2/0x4d0 [ 126.481173] ? posix_timer_unhash_and_free+0x27a/0x3d0 [ 126.481190] ? __pfx___x64_sys_futex+0x10/0x10 [ 126.481211] exit_to_user_mode_loop+0x8b/0x110 [ 126.481224] do_syscall_64+0x2f7/0x360 [ 126.481238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.481250] RIP: 0033:0x7f70ca87ab19 [ 126.481260] Code: Unable to access opcode bytes at 0x7f70ca87aaef. [ 126.481265] RSP: 002b:00007f70c7df0218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.481277] RAX: 0000000000000001 RBX: 00007f70ca98df68 RCX: 00007f70ca87ab19 [ 126.481284] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f70ca98df6c [ 126.481292] RBP: 00007f70ca98df60 R08: 000000000000000e R09: 0000000000000000 [ 126.481299] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f70ca98df6c [ 126.481306] R13: 00007fffd3e8bbbf R14: 00007f70c7df0300 R15: 0000000000022000 [ 126.481324] [ 126.481328] kmemleak: Object (percpu) 0x607f1a63e1d8 (size 16): [ 126.481335] kmemleak: comm "syz-executor.6", pid 285, jiffies 4294793317 [ 126.481342] kmemleak: min_count = 1 [ 126.481346] kmemleak: count = 0 [ 126.481350] kmemleak: flags = 0x21 [ 126.481354] kmemleak: checksum = 0 [ 126.481358] kmemleak: backtrace: [ 126.481362] pcpu_alloc_noprof+0x87a/0x1170 [ 126.481377] mm_init+0x99b/0x1170 [ 126.481386] copy_process+0x3ab7/0x73c0 [ 126.481396] kernel_clone+0xea/0x7f0 [ 126.481406] __do_sys_clone+0xce/0x120 [ 126.481417] do_syscall_64+0xbf/0x360 [ 126.481426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.488401] kmemleak: Found object by alias at 0x607f1a63e1e0 [ 126.488420] CPU: 0 UID: 0 PID: 3945 Comm: syz-executor.1 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.488439] Tainted: [W]=WARN [ 126.488443] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.488449] Call Trace: [ 126.488454] [ 126.488459] dump_stack_lvl+0xca/0x120 [ 126.488484] __lookup_object+0x94/0xb0 [ 126.488502] delete_object_full+0x27/0x70 [ 126.488519] free_percpu+0x30/0x1160 [ 126.488535] ? arch_uprobe_clear_state+0x16/0x140 [ 126.488557] futex_hash_free+0x38/0xc0 [ 126.488572] mmput+0x2d3/0x390 [ 126.488591] do_exit+0x79d/0x2970 10:17:57 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x38, &(0x7f0000000000)="a94a128f", 0x4) [ 126.488605] ? signal_wake_up_state+0x85/0x120 [ 126.488621] ? zap_other_threads+0x2b9/0x3a0 [ 126.488638] ? __pfx_do_exit+0x10/0x10 [ 126.488651] ? do_group_exit+0x1c3/0x2a0 [ 126.488665] ? lock_release+0xc8/0x290 [ 126.488683] do_group_exit+0xd3/0x2a0 [ 126.488699] __x64_sys_exit_group+0x3e/0x50 [ 126.488713] x64_sys_call+0x18c5/0x18d0 [ 126.488729] do_syscall_64+0xbf/0x360 [ 126.488743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.488754] RIP: 0033:0x7f36de3f1b19 [ 126.488763] Code: Unable to access opcode bytes at 0x7f36de3f1aef. [ 126.488768] RSP: 002b:00007ffd4258e718 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 126.488780] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f36de3f1b19 [ 126.488788] RDX: 00007f36de3a472b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 126.488795] RBP: 0000000000000000 R08: 0000001b2d02150c R09: 0000000000000000 [ 126.488802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 126.488809] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd4258e800 [ 126.488826] [ 126.488829] kmemleak: Object (percpu) 0x607f1a63e1d8 (size 16): [ 126.488837] kmemleak: comm "syz-executor.6", pid 285, jiffies 4294793317 [ 126.488844] kmemleak: min_count = 1 10:17:57 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1ff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x17e}) [ 126.488848] kmemleak: count = 0 [ 126.488852] kmemleak: flags = 0x21 [ 126.488857] kmemleak: checksum = 0 [ 126.488861] kmemleak: backtrace: [ 126.488865] pcpu_alloc_noprof+0x87a/0x1170 [ 126.488883] mm_init+0x99b/0x1170 [ 126.488891] copy_process+0x3ab7/0x73c0 [ 126.488901] kernel_clone+0xea/0x7f0 [ 126.488911] __do_sys_clone+0xce/0x120 [ 126.488927] do_syscall_64+0xbf/0x360 [ 126.488936] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.493637] kmemleak: Found object by alias at 0x607f1a63e1e4 [ 126.493649] CPU: 0 UID: 0 PID: 3948 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.493666] Tainted: [W]=WARN [ 126.493670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.493676] Call Trace: [ 126.493679] [ 126.493683] dump_stack_lvl+0xca/0x120 [ 126.493703] __lookup_object+0x94/0xb0 [ 126.493718] delete_object_full+0x27/0x70 [ 126.493735] free_percpu+0x30/0x1160 [ 126.493750] ? arch_uprobe_clear_state+0x16/0x140 [ 126.493770] futex_hash_free+0x38/0xc0 [ 126.493783] mmput+0x2d3/0x390 [ 126.493801] do_exit+0x79d/0x2970 [ 126.493815] ? signal_wake_up_state+0x85/0x120 [ 126.493830] ? zap_other_threads+0x2b9/0x3a0 [ 126.493846] ? __pfx_do_exit+0x10/0x10 [ 126.493859] ? do_group_exit+0x1c3/0x2a0 [ 126.493873] ? lock_release+0xc8/0x290 [ 126.493890] do_group_exit+0xd3/0x2a0 [ 126.493906] __x64_sys_exit_group+0x3e/0x50 [ 126.493925] x64_sys_call+0x18c5/0x18d0 [ 126.493940] do_syscall_64+0xbf/0x360 [ 126.493952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.493963] RIP: 0033:0x7f5c14b27b19 [ 126.493972] Code: Unable to access opcode bytes at 0x7f5c14b27aef. [ 126.493977] RSP: 002b:00007fffe0146ca8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 126.493987] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f5c14b27b19 [ 126.493995] RDX: 00007f5c14ada72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 126.494002] RBP: 0000000000000000 R08: 0000001b2d120f64 R09: 0000000000000000 [ 126.494009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 126.494016] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffe0146d90 [ 126.494033] [ 126.494036] kmemleak: Object (percpu) 0x607f1a63e1d8 (size 16): [ 126.494043] kmemleak: comm "syz-executor.6", pid 285, jiffies 4294793317 [ 126.494050] kmemleak: min_count = 1 [ 126.494054] kmemleak: count = 0 [ 126.494057] kmemleak: flags = 0x21 [ 126.494061] kmemleak: checksum = 0 [ 126.494065] kmemleak: backtrace: [ 126.494068] pcpu_alloc_noprof+0x87a/0x1170 [ 126.494083] mm_init+0x99b/0x1170 [ 126.494091] copy_process+0x3ab7/0x73c0 [ 126.494101] kernel_clone+0xea/0x7f0 [ 126.494111] __do_sys_clone+0xce/0x120 [ 126.494121] do_syscall_64+0xbf/0x360 [ 126.494131] entry_SYSCALL_64_after_hwframe+0x77/0x7f 10:17:57 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1ff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x17e}) 10:17:57 executing program 6: timer_create(0x0, 0x0, &(0x7f0000000200)) timer_create(0x3, 0x0, &(0x7f0000000200)=0x0) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, r1+10000000}}, 0x0) timer_delete(r0) 10:17:57 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r1, 0x6, 0x10, &(0x7f0000000000), 0x4) [ 126.603836] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 126.604727] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 126.605404] CPU: 0 UID: 0 PID: 3964 Comm: syz-executor.2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.606758] Tainted: [W]=WARN [ 126.607502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.609140] RIP: 0010:perf_tp_event+0x175/0xe70 [ 126.610509] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 126.613896] RSP: 0018:ffff888046317800 EFLAGS: 00010212 [ 126.614294] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 126.614829] RDX: ffff888018010000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 126.615359] RBP: ffff888046317a70 R08: ffff88806ce31340 R09: ffffe8ffffc16b18 [ 126.615890] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 126.616417] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 126.616940] FS: 000055556c88f400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 126.617531] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.617962] CR2: 000055556c890c18 CR3: 000000000c1ca000 CR4: 0000000000350ef0 [ 126.618494] Call Trace: [ 126.618695] [ 126.618874] ? arch_scale_cpu_capacity+0x17/0xa0 [ 126.619244] ? __pfx_perf_tp_event+0x10/0x10 [ 126.619579] ? __asan_memset+0x24/0x50 [ 126.619886] ? perf_trace_lock+0xb5/0x5d0 [ 126.620214] ? kvm_sched_clock_read+0x16/0x30 [ 126.620562] ? sched_clock+0x37/0x60 [ 126.620849] ? sched_clock_cpu+0x6c/0x4e0 [ 126.621166] ? lock_is_held_type+0x9e/0x120 [ 126.621494] ? perf_trace_run_bpf_submit+0xef/0x180 [ 126.621875] perf_trace_run_bpf_submit+0xef/0x180 [ 126.622246] perf_trace_lock+0x337/0x5d0 [ 126.622806] ? __pfx_perf_trace_lock+0x10/0x10 [ 126.623670] ? lock_acquire+0x15e/0x2f0 [ 126.624392] ? futex_ref_get+0x48/0x300 [ 126.625095] ? futex_ref_get+0x114/0x300 [ 126.625798] ? futex_hash+0x15c/0x390 [ 126.626493] lock_release+0x1ab/0x290 [ 126.627168] ? futex_hash+0x15c/0x390 [ 126.627726] futex_ref_get+0x119/0x300 [ 126.628303] ? futex_hash+0x15c/0x390 [ 126.628857] futex_hash+0x70/0x390 [ 126.629397] futex_wake+0x143/0x540 [ 126.629944] ? put_pid+0x1f/0x30 [ 126.630441] ? kernel_clone+0x204/0x7f0 [ 126.631031] ? __pfx_futex_wake+0x10/0x10 [ 126.631636] ? __pfx_kernel_clone+0x10/0x10 [ 126.632269] ? perf_trace_lock+0xb5/0x5d0 [ 126.632886] do_futex+0x26d/0x370 [ 126.633413] ? __pfx_do_futex+0x10/0x10 [ 126.634002] ? __pfx___do_sys_clone+0x10/0x10 [ 126.634665] ? find_held_lock+0x2b/0x80 [ 126.635272] __x64_sys_futex+0x1c9/0x4d0 [ 126.635870] ? __pfx___x64_sys_futex+0x10/0x10 [ 126.636552] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 126.637318] do_syscall_64+0xbf/0x360 [ 126.637886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.638643] RIP: 0033:0x7f07b773eb19 [ 126.639194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.641783] RSP: 002b:00007ffc8d57efc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.642887] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f07b773eb19 [ 126.643913] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f07b7851f68 [ 126.644934] RBP: 00007f07b7851f60 R08: 00007f07b4cb4700 R09: 0000000000000000 [ 126.645949] R10: 00007f07b4cb4700 R11: 0000000000000246 R12: 00007f07b78560a0 [ 126.646977] R13: 00007ffc8d57f0d0 R14: 00007f07b7851f60 R15: 000000000001ee22 [ 126.648006] [ 126.648350] Modules linked in: [ 126.648887] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 126.650681] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 126.651924] CPU: 0 UID: 0 PID: 3964 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 126.653630] Tainted: [D]=DIE, [W]=WARN [ 126.654192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.655379] RIP: 0010:perf_tp_event+0x175/0xe70 [ 126.656071] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 126.658680] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 126.659451] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 126.660474] RDX: ffff888018010000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 126.661502] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16b18 [ 126.662533] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 126.663571] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000 [ 126.664607] FS: 000055556c88f400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 126.665750] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.666614] CR2: 000055556c890c18 CR3: 000000000c1ca000 CR4: 0000000000350ef0 [ 126.667631] Call Trace: [ 126.668018] [ 126.668352] ? __pfx_perf_tp_event+0x10/0x10 [ 126.669019] ? trace_pelt_se_tp+0xdf/0x130 [ 126.669632] ? __update_load_avg_se+0x428/0xa40 [ 126.670332] ? lock_is_held_type+0x9e/0x120 [ 126.670986] ? perf_trace_lock+0xb5/0x5d0 [ 126.671589] ? perf_trace_lock+0xb5/0x5d0 [ 126.672209] ? __pfx_perf_trace_lock+0x10/0x10 [ 126.672879] ? __pfx_perf_trace_lock+0x10/0x10 [ 126.673556] ? check_preempt_wakeup_fair+0x406/0x950 [ 126.674311] ? perf_trace_run_bpf_submit+0xef/0x180 [ 126.675048] perf_trace_run_bpf_submit+0xef/0x180 [ 126.675768] perf_trace_lock+0x337/0x5d0 [ 126.676370] ? __pfx_perf_trace_lock+0x10/0x10 [ 126.677052] ? find_held_lock+0x2b/0x80 [ 126.677649] ? hrtimer_interrupt+0x114/0x830 [ 126.678301] lock_release+0x1ab/0x290 [ 126.678885] ktime_get_update_offsets_now+0xab/0x3c0 [ 126.679647] ? hrtimer_interrupt+0x114/0x830 [ 126.680299] ? __pfx_lapic_next_deadline+0x10/0x10 [ 126.681039] hrtimer_interrupt+0x114/0x830 [ 126.681664] ? __pfx_flush_tlb_func+0x10/0x10 [ 126.682333] ? trace_csd_function_exit+0x134/0x190 [ 126.683081] ? __flush_smp_call_function_queue+0x28c/0x740 [ 126.683914] __sysvec_apic_timer_interrupt+0xbb/0x330 [ 126.684673] sysvec_apic_timer_interrupt+0x6b/0x80 [ 126.685409] [ 126.685746] [ 126.686080] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 126.686843] RIP: 0010:oops_exit+0x0/0x50 [ 126.687442] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 126.690028] RSP: 0018:ffff888046317690 EFLAGS: 00000202 [ 126.690797] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f [ 126.691814] RDX: ffff888018010000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 126.692834] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 126.693853] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888046317758 [ 126.694879] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000 [ 126.695904] ? add_taint+0x5f/0xd0 [ 126.696434] ? oops_end+0x4a/0xe0 [ 126.696958] oops_end+0x65/0xe0 [ 126.697460] exc_general_protection+0x1a2/0x330 [ 126.698146] asm_exc_general_protection+0x26/0x30 [ 126.698847] RIP: 0010:perf_tp_event+0x175/0xe70 [ 126.699530] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 126.702099] RSP: 0018:ffff888046317800 EFLAGS: 00010212 [ 126.702870] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 126.703884] RDX: ffff888018010000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 126.704894] RBP: ffff888046317a70 R08: ffff88806ce31340 R09: ffffe8ffffc16b18 [ 126.705926] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 126.706944] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 126.707971] ? perf_tp_event+0x167/0xe70 [ 126.708578] ? arch_scale_cpu_capacity+0x17/0xa0 [ 126.709289] ? __pfx_perf_tp_event+0x10/0x10 [ 126.709938] ? __asan_memset+0x24/0x50 [ 126.710547] ? perf_trace_lock+0xb5/0x5d0 [ 126.711163] ? kvm_sched_clock_read+0x16/0x30 [ 126.711822] ? sched_clock+0x37/0x60 [ 126.712376] ? sched_clock_cpu+0x6c/0x4e0 [ 126.712979] ? lock_is_held_type+0x9e/0x120 [ 126.713620] ? perf_trace_run_bpf_submit+0xef/0x180 [ 126.714353] perf_trace_run_bpf_submit+0xef/0x180 [ 126.715071] perf_trace_lock+0x337/0x5d0 [ 126.715677] ? __pfx_perf_trace_lock+0x10/0x10 [ 126.716351] ? lock_acquire+0x15e/0x2f0 [ 126.716930] ? futex_ref_get+0x48/0x300 [ 126.717504] ? futex_ref_get+0x114/0x300 [ 126.718090] ? futex_hash+0x15c/0x390 [ 126.718660] lock_release+0x1ab/0x290 [ 126.719224] ? futex_hash+0x15c/0x390 [ 126.719786] futex_ref_get+0x119/0x300 [ 126.720354] ? futex_hash+0x15c/0x390 [ 126.720912] futex_hash+0x70/0x390 [ 126.721434] futex_wake+0x143/0x540 [ 126.721977] ? put_pid+0x1f/0x30 [ 126.722482] ? kernel_clone+0x204/0x7f0 [ 126.723064] ? __pfx_futex_wake+0x10/0x10 [ 126.723677] ? __pfx_kernel_clone+0x10/0x10 [ 126.724309] ? perf_trace_lock+0xb5/0x5d0 [ 126.724917] do_futex+0x26d/0x370 [ 126.725433] ? __pfx_do_futex+0x10/0x10 [ 126.726017] ? __pfx___do_sys_clone+0x10/0x10 [ 126.726681] ? find_held_lock+0x2b/0x80 [ 126.727285] __x64_sys_futex+0x1c9/0x4d0 [ 126.727888] ? __pfx___x64_sys_futex+0x10/0x10 [ 126.728561] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 126.729321] do_syscall_64+0xbf/0x360 [ 126.729890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.730652] RIP: 0033:0x7f07b773eb19 [ 126.731201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.733828] RSP: 002b:00007ffc8d57efc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.734933] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f07b773eb19 [ 126.735985] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f07b7851f68 [ 126.737020] RBP: 00007f07b7851f60 R08: 00007f07b4cb4700 R09: 0000000000000000 [ 126.738068] R10: 00007f07b4cb4700 R11: 0000000000000246 R12: 00007f07b78560a0 [ 126.739125] R13: 00007ffc8d57f0d0 R14: 00007f07b7851f60 R15: 000000000001ee22 [ 126.740177] [ 126.740541] Modules linked in: [ 126.741037] ---[ end trace 0000000000000000 ]--- [ 126.741732] RIP: 0010:perf_tp_event+0x175/0xe70 [ 126.742444] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 126.745131] RSP: 0018:ffff888046317800 EFLAGS: 00010212 [ 126.745911] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 126.746954] RDX: ffff888018010000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 126.748012] RBP: ffff888046317a70 R08: ffff88806ce31340 R09: ffffe8ffffc16b18 [ 126.749074] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 126.750117] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 126.751211] FS: 000055556c88f400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 126.752411] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.753284] CR2: 000055556c890c18 CR3: 000000000c1ca000 CR4: 0000000000350ef0 [ 126.754330] Kernel panic - not syncing: Fatal exception in interrupt [ 126.755498] Kernel Offset: disabled [ 126.756050] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 10:17:57 Registers: info registers vcpu 0 RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888046317158 R8 =0000000000000000 R9 =ffffed10016d5046 R10=0000000000000037 R11=30376578302f4952 R12=0000000000000037 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055556c88f400 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe0100000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055556c890c18 CR3=000000000c1ca000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f07b78257c000007f07b78257c8 XMM02=00007f07b78257e000007f07b78257c0 XMM03=00007f07b78257c800007f07b78257c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=00000000fffffffc RCX=ffffffff84b828e2 RDX=ffff888015b38000 RSI=ffffffff84b8297f RDI=0000000000000005 RBP=0000000000000000 RSP=ffff888015b37750 R8 =0000000000000448 R9 =00000000078a114f R10=0000000000000000 R11=fffffffffffd0ee8 R12=0000000000000000 R13=0000000000000001 R14=ffff88800f7ae8f8 R15=ffff88800f7ae0f8 RIP=ffffffff8173f6b8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f9970def900 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe0e00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f9970362008 CR3=0000000009f7a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=540f3ada56caff9406450c35f404a71a XMM02=6b1e99b806172e3b00000000000aea28 XMM03=ac8bc31478ec851100000000000aefa0 XMM04=485feef7c61f8ef600000000001512a0 XMM05=d3fdd5f48436fbd700000000000aead0 XMM06=f83f87cb4e6400d100000000000ae988 XMM07=a1fcdcf819d7e1e500000000000ae728 XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000 XMM10=00000000000000000020200000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000