Warning: Permanently added '[localhost]:47036' (ECDSA) to the list of known hosts. 2025/09/01 10:19:00 fuzzer started syzkaller login: [ 50.797416] gcc (257) used greatest stack depth: 24576 bytes left 2025/09/01 10:19:01 dialing manager at localhost:35473 [ 51.011429] cgroup: Unknown subsys name 'net' [ 51.078115] cgroup: Unknown subsys name 'cpuset' [ 51.091687] cgroup: Unknown subsys name 'rlimit' 2025/09/01 10:19:12 syscalls: 2214 2025/09/01 10:19:12 code coverage: enabled 2025/09/01 10:19:12 comparison tracing: enabled 2025/09/01 10:19:12 extra coverage: enabled 2025/09/01 10:19:12 setuid sandbox: enabled 2025/09/01 10:19:12 namespace sandbox: enabled 2025/09/01 10:19:12 Android sandbox: enabled 2025/09/01 10:19:12 fault injection: enabled 2025/09/01 10:19:12 leak checking: enabled 2025/09/01 10:19:12 net packet injection: enabled 2025/09/01 10:19:12 net device setup: enabled 2025/09/01 10:19:12 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 10:19:12 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 10:19:12 USB emulation: enabled 2025/09/01 10:19:12 hci packet injection: enabled 2025/09/01 10:19:12 wifi device emulation: enabled 2025/09/01 10:19:12 802.15.4 emulation: enabled 2025/09/01 10:19:12 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 10:19:12 fetching corpus: 50, signal 19179/22741 (executing program) 2025/09/01 10:19:12 fetching corpus: 100, signal 29252/34255 (executing program) 2025/09/01 10:19:12 fetching corpus: 150, signal 39400/45582 (executing program) 2025/09/01 10:19:12 fetching corpus: 200, signal 44451/51856 (executing program) 2025/09/01 10:19:12 fetching corpus: 250, signal 52173/60531 (executing program) 2025/09/01 10:19:12 fetching corpus: 300, signal 57161/66515 (executing program) 2025/09/01 10:19:12 fetching corpus: 350, signal 63122/73255 (executing program) 2025/09/01 10:19:13 fetching corpus: 400, signal 67510/78393 (executing program) 2025/09/01 10:19:13 fetching corpus: 450, signal 70858/82560 (executing program) 2025/09/01 10:19:13 fetching corpus: 500, signal 73519/86106 (executing program) 2025/09/01 10:19:13 fetching corpus: 550, signal 76764/90030 (executing program) 2025/09/01 10:19:13 fetching corpus: 600, signal 79112/93182 (executing program) 2025/09/01 10:19:13 fetching corpus: 650, signal 82141/96730 (executing program) 2025/09/01 10:19:13 fetching corpus: 700, signal 84101/99418 (executing program) 2025/09/01 10:19:13 fetching corpus: 750, signal 85603/101693 (executing program) 2025/09/01 10:19:13 fetching corpus: 800, signal 87938/104553 (executing program) 2025/09/01 10:19:13 fetching corpus: 850, signal 89436/106725 (executing program) 2025/09/01 10:19:14 fetching corpus: 900, signal 91053/109026 (executing program) 2025/09/01 10:19:14 fetching corpus: 950, signal 93346/111748 (executing program) 2025/09/01 10:19:14 fetching corpus: 1000, signal 95126/114019 (executing program) 2025/09/01 10:19:14 fetching corpus: 1050, signal 97838/116899 (executing program) 2025/09/01 10:19:14 fetching corpus: 1100, signal 99158/118712 (executing program) 2025/09/01 10:19:14 fetching corpus: 1150, signal 100309/120401 (executing program) 2025/09/01 10:19:14 fetching corpus: 1200, signal 101150/121843 (executing program) 2025/09/01 10:19:14 fetching corpus: 1250, signal 102119/123398 (executing program) 2025/09/01 10:19:14 fetching corpus: 1300, signal 106480/127247 (executing program) 2025/09/01 10:19:14 fetching corpus: 1350, signal 109583/130103 (executing program) 2025/09/01 10:19:15 fetching corpus: 1400, signal 111164/131910 (executing program) 2025/09/01 10:19:15 fetching corpus: 1450, signal 112504/133503 (executing program) 2025/09/01 10:19:15 fetching corpus: 1500, signal 113695/134932 (executing program) 2025/09/01 10:19:15 fetching corpus: 1550, signal 114659/136262 (executing program) 2025/09/01 10:19:15 fetching corpus: 1600, signal 115784/137606 (executing program) 2025/09/01 10:19:15 fetching corpus: 1650, signal 116748/138839 (executing program) 2025/09/01 10:19:15 fetching corpus: 1700, signal 117740/140055 (executing program) 2025/09/01 10:19:15 fetching corpus: 1750, signal 118670/141257 (executing program) 2025/09/01 10:19:15 fetching corpus: 1800, signal 119575/142438 (executing program) 2025/09/01 10:19:15 fetching corpus: 1850, signal 120669/143678 (executing program) 2025/09/01 10:19:15 fetching corpus: 1900, signal 121772/144897 (executing program) 2025/09/01 10:19:16 fetching corpus: 1950, signal 122821/146100 (executing program) 2025/09/01 10:19:16 fetching corpus: 2000, signal 123561/147058 (executing program) 2025/09/01 10:19:16 fetching corpus: 2050, signal 124633/148181 (executing program) 2025/09/01 10:19:16 fetching corpus: 2100, signal 125906/149391 (executing program) 2025/09/01 10:19:16 fetching corpus: 2150, signal 127053/150511 (executing program) 2025/09/01 10:19:16 fetching corpus: 2200, signal 127543/151275 (executing program) 2025/09/01 10:19:16 fetching corpus: 2250, signal 128252/152139 (executing program) 2025/09/01 10:19:16 fetching corpus: 2300, signal 128837/152940 (executing program) 2025/09/01 10:19:16 fetching corpus: 2350, signal 129971/153951 (executing program) 2025/09/01 10:19:16 fetching corpus: 2400, signal 130476/154673 (executing program) 2025/09/01 10:19:16 fetching corpus: 2450, signal 131448/155582 (executing program) 2025/09/01 10:19:17 fetching corpus: 2500, signal 132076/156348 (executing program) 2025/09/01 10:19:17 fetching corpus: 2550, signal 133104/157269 (executing program) 2025/09/01 10:19:17 fetching corpus: 2600, signal 134071/158136 (executing program) 2025/09/01 10:19:17 fetching corpus: 2650, signal 134869/158881 (executing program) 2025/09/01 10:19:17 fetching corpus: 2700, signal 135646/159572 (executing program) 2025/09/01 10:19:17 fetching corpus: 2750, signal 136422/160322 (executing program) 2025/09/01 10:19:17 fetching corpus: 2800, signal 136805/160957 (executing program) 2025/09/01 10:19:17 fetching corpus: 2850, signal 137530/161632 (executing program) 2025/09/01 10:19:17 fetching corpus: 2900, signal 138147/162204 (executing program) 2025/09/01 10:19:17 fetching corpus: 2950, signal 138804/162816 (executing program) 2025/09/01 10:19:18 fetching corpus: 3000, signal 139653/163476 (executing program) 2025/09/01 10:19:18 fetching corpus: 3050, signal 140205/164046 (executing program) 2025/09/01 10:19:18 fetching corpus: 3100, signal 141088/164712 (executing program) 2025/09/01 10:19:18 fetching corpus: 3150, signal 141730/165252 (executing program) 2025/09/01 10:19:18 fetching corpus: 3200, signal 142143/165701 (executing program) 2025/09/01 10:19:18 fetching corpus: 3250, signal 142998/166266 (executing program) 2025/09/01 10:19:18 fetching corpus: 3300, signal 143612/166741 (executing program) 2025/09/01 10:19:18 fetching corpus: 3350, signal 144242/167196 (executing program) 2025/09/01 10:19:18 fetching corpus: 3400, signal 144672/167661 (executing program) 2025/09/01 10:19:18 fetching corpus: 3450, signal 146516/168448 (executing program) 2025/09/01 10:19:18 fetching corpus: 3500, signal 146998/168830 (executing program) 2025/09/01 10:19:19 fetching corpus: 3550, signal 147711/169280 (executing program) 2025/09/01 10:19:19 fetching corpus: 3600, signal 148098/169680 (executing program) 2025/09/01 10:19:19 fetching corpus: 3650, signal 148549/170028 (executing program) 2025/09/01 10:19:19 fetching corpus: 3700, signal 149282/170376 (executing program) 2025/09/01 10:19:19 fetching corpus: 3750, signal 149817/170725 (executing program) 2025/09/01 10:19:19 fetching corpus: 3800, signal 150345/171106 (executing program) 2025/09/01 10:19:19 fetching corpus: 3850, signal 150866/171418 (executing program) 2025/09/01 10:19:19 fetching corpus: 3900, signal 151475/171729 (executing program) 2025/09/01 10:19:19 fetching corpus: 3950, signal 152115/172033 (executing program) 2025/09/01 10:19:20 fetching corpus: 4000, signal 152509/172291 (executing program) 2025/09/01 10:19:20 fetching corpus: 4050, signal 152851/172573 (executing program) 2025/09/01 10:19:20 fetching corpus: 4100, signal 153763/172834 (executing program) 2025/09/01 10:19:20 fetching corpus: 4150, signal 154127/173081 (executing program) 2025/09/01 10:19:20 fetching corpus: 4200, signal 154805/173321 (executing program) 2025/09/01 10:19:20 fetching corpus: 4250, signal 155190/173399 (executing program) 2025/09/01 10:19:20 fetching corpus: 4300, signal 155603/173400 (executing program) 2025/09/01 10:19:20 fetching corpus: 4350, signal 156035/173448 (executing program) 2025/09/01 10:19:20 fetching corpus: 4400, signal 156423/173467 (executing program) 2025/09/01 10:19:20 fetching corpus: 4450, signal 156787/173468 (executing program) 2025/09/01 10:19:21 fetching corpus: 4500, signal 157692/173574 (executing program) 2025/09/01 10:19:21 fetching corpus: 4550, signal 158179/173579 (executing program) 2025/09/01 10:19:21 fetching corpus: 4600, signal 159208/173614 (executing program) 2025/09/01 10:19:21 fetching corpus: 4650, signal 159656/173619 (executing program) 2025/09/01 10:19:21 fetching corpus: 4700, signal 160189/173650 (executing program) 2025/09/01 10:19:21 fetching corpus: 4750, signal 160438/173651 (executing program) 2025/09/01 10:19:21 fetching corpus: 4800, signal 160853/173672 (executing program) 2025/09/01 10:19:21 fetching corpus: 4850, signal 161215/173676 (executing program) 2025/09/01 10:19:21 fetching corpus: 4900, signal 161716/173680 (executing program) 2025/09/01 10:19:21 fetching corpus: 4950, signal 162053/173716 (executing program) 2025/09/01 10:19:21 fetching corpus: 5000, signal 162450/173720 (executing program) 2025/09/01 10:19:21 fetching corpus: 5050, signal 162875/173720 (executing program) 2025/09/01 10:19:22 fetching corpus: 5100, signal 163232/173736 (executing program) 2025/09/01 10:19:22 fetching corpus: 5150, signal 163693/173749 (executing program) 2025/09/01 10:19:22 fetching corpus: 5200, signal 164307/173750 (executing program) 2025/09/01 10:19:22 fetching corpus: 5250, signal 164717/173756 (executing program) 2025/09/01 10:19:22 fetching corpus: 5300, signal 165113/173786 (executing program) 2025/09/01 10:19:22 fetching corpus: 5350, signal 165423/173795 (executing program) 2025/09/01 10:19:22 fetching corpus: 5400, signal 165766/173801 (executing program) 2025/09/01 10:19:22 fetching corpus: 5450, signal 166210/173814 (executing program) 2025/09/01 10:19:22 fetching corpus: 5500, signal 166453/173838 (executing program) 2025/09/01 10:19:22 fetching corpus: 5550, signal 166798/173869 (executing program) 2025/09/01 10:19:22 fetching corpus: 5600, signal 167161/173869 (executing program) 2025/09/01 10:19:22 fetching corpus: 5650, signal 167575/173918 (executing program) 2025/09/01 10:19:22 fetching corpus: 5700, signal 167949/173931 (executing program) 2025/09/01 10:19:22 fetching corpus: 5750, signal 168413/173944 (executing program) 2025/09/01 10:19:23 fetching corpus: 5800, signal 168707/173957 (executing program) 2025/09/01 10:19:23 fetching corpus: 5850, signal 169126/173980 (executing program) 2025/09/01 10:19:23 fetching corpus: 5900, signal 169501/173991 (executing program) 2025/09/01 10:19:23 fetching corpus: 5950, signal 169831/174003 (executing program) 2025/09/01 10:19:23 fetching corpus: 6000, signal 170211/174013 (executing program) 2025/09/01 10:19:23 fetching corpus: 6050, signal 170496/174027 (executing program) 2025/09/01 10:19:23 fetching corpus: 6100, signal 170750/174046 (executing program) 2025/09/01 10:19:23 fetching corpus: 6150, signal 171088/174047 (executing program) 2025/09/01 10:19:23 fetching corpus: 6191, signal 171258/174052 (executing program) 2025/09/01 10:19:23 fetching corpus: 6191, signal 171258/174052 (executing program) 2025/09/01 10:19:25 starting 8 fuzzer processes 10:19:25 executing program 0: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, 0x0) ioctl$CDROM_SELECT_DISK(0xffffffffffffffff, 0x5322, 0xfffffffc) mq_open(&(0x7f0000000140)='/dev/autofs\x00', 0x40, 0x0, 0x0) accept$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000580)={{0x80, 0x3}, 0x100, './file0\x00'}) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x559e82, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 10:19:25 executing program 3: syz_mount_image$tmpfs(&(0x7f00000007c0), &(0x7f0000000800)='./file0\x00', 0x0, 0x2, &(0x7f0000000ac0)=[{&(0x7f0000000840)="ab", 0x1}, {&(0x7f00000008c0)="1b", 0x1, 0x9}], 0x8, &(0x7f0000000b40)={[{@size={'size', 0x3d, [0x35, 0x0]}}], [{@uid_gt={'uid>', 0xffffffffffffffff}}]}) 10:19:25 executing program 5: timerfd_create(0x8, 0x0) 10:19:25 executing program 1: r0 = syz_io_uring_setup(0x4e0b, &(0x7f0000001780), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000001800), &(0x7f0000001840)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x17, &(0x7f0000003600)=[{0x0}], 0x1) 10:19:25 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCXONC(r0, 0x4b44, 0xf0ff1f00000000) 10:19:25 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x24}}, 0x0) 10:19:25 executing program 2: prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000001000)="87", 0x1) 10:19:25 executing program 6: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, 0x0) [ 75.101238] audit: type=1400 audit(1756721965.651:7): avc: denied { execmem } for pid=274 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 76.248984] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.252840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.254629] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.258218] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.261836] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.377823] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.379886] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.381380] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.385710] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.387881] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.395115] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.404870] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.411867] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.414931] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.416401] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.419620] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.423742] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 76.431795] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 76.432289] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 76.442333] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.443801] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 76.445340] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 76.450701] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 76.453102] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 76.457027] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 76.459365] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.460639] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 76.463335] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 76.466069] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 76.468025] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 76.468158] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 76.480789] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 76.490244] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.500322] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 76.503335] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 76.506659] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.510912] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 76.517360] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 76.531699] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 76.540939] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 78.278865] Bluetooth: hci0: command tx timeout [ 78.470595] Bluetooth: hci1: command tx timeout [ 78.534610] Bluetooth: hci2: command tx timeout [ 78.535305] Bluetooth: hci3: command tx timeout [ 78.535393] Bluetooth: hci6: command tx timeout [ 78.535892] Bluetooth: hci5: command tx timeout [ 78.598856] Bluetooth: hci4: command tx timeout [ 78.600080] Bluetooth: hci7: command tx timeout [ 80.326571] Bluetooth: hci0: command tx timeout [ 80.518583] Bluetooth: hci1: command tx timeout [ 80.582569] Bluetooth: hci3: command tx timeout [ 80.583031] Bluetooth: hci5: command tx timeout [ 80.583416] Bluetooth: hci2: command tx timeout [ 80.584569] Bluetooth: hci6: command tx timeout [ 80.647600] Bluetooth: hci7: command tx timeout [ 80.648054] Bluetooth: hci4: command tx timeout [ 82.374619] Bluetooth: hci0: command tx timeout [ 82.567615] Bluetooth: hci1: command tx timeout [ 82.630657] Bluetooth: hci5: command tx timeout [ 82.631113] Bluetooth: hci6: command tx timeout [ 82.632282] Bluetooth: hci2: command tx timeout [ 82.632784] Bluetooth: hci3: command tx timeout [ 82.694543] Bluetooth: hci7: command tx timeout [ 82.694558] Bluetooth: hci4: command tx timeout [ 84.422746] Bluetooth: hci0: command tx timeout [ 84.614829] Bluetooth: hci1: command tx timeout [ 84.678639] Bluetooth: hci2: command tx timeout [ 84.678807] Bluetooth: hci3: command tx timeout [ 84.679603] Bluetooth: hci6: command tx timeout [ 84.679976] Bluetooth: hci5: command tx timeout [ 84.742595] Bluetooth: hci4: command tx timeout [ 84.744094] Bluetooth: hci7: command tx timeout [ 114.519058] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.519837] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.694210] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.694861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.879075] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.879724] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.013701] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.014317] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:20:05 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) [ 115.190316] audit: type=1400 audit(1756722005.740:8): avc: denied { open } for pid=3725 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 115.195262] audit: type=1400 audit(1756722005.740:9): avc: denied { kernel } for pid=3725 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 10:20:06 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x18) getdents64(r0, 0x0, 0x0) 10:20:06 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:06 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x18) getdents64(r0, 0x0, 0x0) 10:20:06 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x18) getdents64(r0, 0x0, 0x0) [ 115.895637] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.896235] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:20:06 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:06 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x18) getdents64(r0, 0x0, 0x0) [ 116.050279] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.051122] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:20:06 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) [ 116.226656] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.227262] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.372266] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.372897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.774558] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.775161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.849442] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.850114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.948601] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.949228] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.042984] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.043686] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.618712] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.619319] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.702173] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.703708] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.837521] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.838120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.863042] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.863751] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:20:08 executing program 2: prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000001000)="87", 0x1) 10:20:08 executing program 1: r0 = syz_io_uring_setup(0x4e0b, &(0x7f0000001780), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000001800), &(0x7f0000001840)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x17, &(0x7f0000003600)=[{0x0}], 0x1) 10:20:08 executing program 3: syz_mount_image$tmpfs(&(0x7f00000007c0), &(0x7f0000000800)='./file0\x00', 0x0, 0x2, &(0x7f0000000ac0)=[{&(0x7f0000000840)="ab", 0x1}, {&(0x7f00000008c0)="1b", 0x1, 0x9}], 0x8, &(0x7f0000000b40)={[{@size={'size', 0x3d, [0x35, 0x0]}}], [{@uid_gt={'uid>', 0xffffffffffffffff}}]}) 10:20:08 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:08 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:08 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x18) getdents64(r0, 0x0, 0x0) 10:20:08 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCXONC(r0, 0x4b44, 0xf0ff1f00000000) 10:20:08 executing program 0: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, 0x0) ioctl$CDROM_SELECT_DISK(0xffffffffffffffff, 0x5322, 0xfffffffc) mq_open(&(0x7f0000000140)='/dev/autofs\x00', 0x40, 0x0, 0x0) accept$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000580)={{0x80, 0x3}, 0x100, './file0\x00'}) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x559e82, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 10:20:08 executing program 3: syz_mount_image$tmpfs(&(0x7f00000007c0), &(0x7f0000000800)='./file0\x00', 0x0, 0x2, &(0x7f0000000ac0)=[{&(0x7f0000000840)="ab", 0x1}, {&(0x7f00000008c0)="1b", 0x1, 0x9}], 0x8, &(0x7f0000000b40)={[{@size={'size', 0x3d, [0x35, 0x0]}}], [{@uid_gt={'uid>', 0xffffffffffffffff}}]}) 10:20:08 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCXONC(r0, 0x4b44, 0xf0ff1f00000000) 10:20:08 executing program 2: prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000001000)="87", 0x1) 10:20:08 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x18) getdents64(r0, 0x0, 0x0) 10:20:08 executing program 1: r0 = syz_io_uring_setup(0x4e0b, &(0x7f0000001780), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000001800), &(0x7f0000001840)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x17, &(0x7f0000003600)=[{0x0}], 0x1) 10:20:08 executing program 3: syz_mount_image$tmpfs(&(0x7f00000007c0), &(0x7f0000000800)='./file0\x00', 0x0, 0x2, &(0x7f0000000ac0)=[{&(0x7f0000000840)="ab", 0x1}, {&(0x7f00000008c0)="1b", 0x1, 0x9}], 0x8, &(0x7f0000000b40)={[{@size={'size', 0x3d, [0x35, 0x0]}}], [{@uid_gt={'uid>', 0xffffffffffffffff}}]}) 10:20:08 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:08 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:08 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCXONC(r0, 0x4b44, 0xf0ff1f00000000) 10:20:08 executing program 0: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, 0x0) ioctl$CDROM_SELECT_DISK(0xffffffffffffffff, 0x5322, 0xfffffffc) mq_open(&(0x7f0000000140)='/dev/autofs\x00', 0x40, 0x0, 0x0) accept$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000580)={{0x80, 0x3}, 0x100, './file0\x00'}) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x559e82, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 10:20:08 executing program 2: prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000001000)="87", 0x1) 10:20:09 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x18) getdents64(r0, 0x0, 0x0) 10:20:09 executing program 1: r0 = syz_io_uring_setup(0x4e0b, &(0x7f0000001780), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000001800), &(0x7f0000001840)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x17, &(0x7f0000003600)=[{0x0}], 0x1) 10:20:09 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:09 executing program 3: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, 0x0) ioctl$CDROM_SELECT_DISK(0xffffffffffffffff, 0x5322, 0xfffffffc) mq_open(&(0x7f0000000140)='/dev/autofs\x00', 0x40, 0x0, 0x0) accept$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000580)={{0x80, 0x3}, 0x100, './file0\x00'}) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x559e82, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 10:20:09 executing program 0: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, 0x0) ioctl$CDROM_SELECT_DISK(0xffffffffffffffff, 0x5322, 0xfffffffc) mq_open(&(0x7f0000000140)='/dev/autofs\x00', 0x40, 0x0, 0x0) accept$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000580)={{0x80, 0x3}, 0x100, './file0\x00'}) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x559e82, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 10:20:09 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:09 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:09 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:09 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/snmp6\x00') pread64(r1, &(0x7f0000000040)=""/169, 0xa9, 0x8000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x6, 0x4, 0x0, 0x8, 0x1000, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x11890, 0x1f, 0x2006, 0x9, 0x6, 0x3ff, 0x9, 0x0, 0x6, 0x0, 0x1}, r0, 0x8, r1, 0x4) r2 = fork() ptrace(0x10, r2) wait4(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000240)) r3 = fork() ptrace(0x10, r3) kcmp(r2, r3, 0x4, 0xffffffffffffffff, 0xffffffffffffffff) sched_getaffinity(r2, 0x8, &(0x7f0000000180)) wait4(r0, 0x0, 0x0, 0x0) 10:20:09 executing program 7: pipe2(&(0x7f0000000400)={0xffffffffffffffff}, 0x0) ioctl$TCXONC(r0, 0x540a, 0x0) 10:20:09 executing program 3: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, 0x0) ioctl$CDROM_SELECT_DISK(0xffffffffffffffff, 0x5322, 0xfffffffc) mq_open(&(0x7f0000000140)='/dev/autofs\x00', 0x40, 0x0, 0x0) accept$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000580)={{0x80, 0x3}, 0x100, './file0\x00'}) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x559e82, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 10:20:09 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0xb) splice(r0, 0x0, r2, 0x0, 0x1ffff, 0x0) 10:20:09 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0xe, 0x0, &(0x7f0000005640)) [ 119.063808] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 119.065627] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 119.067204] CPU: 0 UID: 0 PID: 4011 Comm: syz-executor.0 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 119.074591] Tainted: [W]=WARN [ 119.075083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 119.076352] RIP: 0010:perf_tp_event+0x175/0xe70 [ 119.077100] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 119.079879] RSP: 0018:ffff88801c1a7800 EFLAGS: 00010212 [ 119.080700] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 119.081787] RDX: ffff888045915280 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 119.082877] RBP: ffff88801c1a7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16188 [ 119.083971] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 119.085060] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 119.086155] FS: 0000555582be7400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 119.087388] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 119.088285] CR2: 0000001b2d628000 CR3: 0000000044e01000 CR4: 0000000000350ef0 [ 119.089377] Call Trace: [ 119.089784] [ 119.090151] ? arch_scale_cpu_capacity+0x17/0xa0 [ 119.090912] ? __pfx_perf_tp_event+0x10/0x10 [ 119.091617] ? __asan_memset+0x24/0x50 [ 119.092270] ? perf_trace_lock+0xb5/0x5d0 [ 119.092930] ? kvm_sched_clock_read+0x16/0x30 [ 119.093669] ? sched_clock+0x37/0x60 [ 119.094292] ? sched_clock_cpu+0x6c/0x4e0 [ 119.094964] ? lock_is_held_type+0x9e/0x120 [ 119.095697] ? perf_trace_run_bpf_submit+0xef/0x180 [ 119.096481] perf_trace_run_bpf_submit+0xef/0x180 [ 119.097257] perf_trace_lock+0x337/0x5d0 [ 119.097899] ? __pfx_perf_trace_lock+0x10/0x10 [ 119.098625] ? lock_acquire+0x15e/0x2f0 [ 119.099250] ? futex_ref_get+0x48/0x300 [ 119.099882] ? futex_ref_get+0x114/0x300 [ 119.100504] ? futex_hash+0x15c/0x390 [ 119.101098] lock_release+0x1ab/0x290 [ 119.101695] ? futex_hash+0x15c/0x390 [ 119.102285] futex_ref_get+0x119/0x300 [ 119.102889] ? futex_hash+0x15c/0x390 [ 119.103474] futex_hash+0x70/0x390 [ 119.104044] futex_wake+0x143/0x540 [ 119.104620] ? put_pid+0x1f/0x30 [ 119.105157] ? kernel_clone+0x204/0x7f0 [ 119.105795] ? __pfx_futex_wake+0x10/0x10 [ 119.106451] ? __pfx_kernel_clone+0x10/0x10 [ 119.107121] ? perf_trace_lock+0xb5/0x5d0 [ 119.107786] do_futex+0x26d/0x370 [ 119.108335] ? __pfx_do_futex+0x10/0x10 [ 119.108954] ? __pfx___do_sys_clone+0x10/0x10 [ 119.109652] ? find_held_lock+0x2b/0x80 [ 119.110283] __x64_sys_futex+0x1c9/0x4d0 [ 119.110920] ? __pfx___x64_sys_futex+0x10/0x10 [ 119.111637] ? xfd_validate_state+0x55/0x180 [ 119.112341] do_syscall_64+0xbf/0x360 [ 119.112940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.113729] RIP: 0033:0x7f8bf6d7db19 [ 119.114307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 119.117040] RSP: 002b:00007ffdef2b0be8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 119.118192] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8bf6d7db19 [ 119.119267] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8bf6e90f68 [ 119.120348] RBP: 00007f8bf6e90f60 R08: 00007f8bf42f3700 R09: 0000000000000000 [ 119.121420] R10: 00007f8bf42f3700 R11: 0000000000000246 R12: 00007f8bf6e95a68 [ 119.122499] R13: 00007ffdef2b0cf0 R14: 00007f8bf6e90f60 R15: 000000000001d053 [ 119.123599] [ 119.123964] Modules linked in: [ 119.124467] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 119.125339] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 119.126006] CPU: 1 UID: 0 PID: 3991 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 119.126925] Tainted: [D]=DIE, [W]=WARN [ 119.127223] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 119.127865] RIP: 0010:perf_tp_event+0x175/0xe70 [ 119.128236] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 119.129632] RSP: 0018:ffff888016df7800 EFLAGS: 00010212 [ 119.130053] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 119.130603] RDX: ffff88801756d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 119.131154] RBP: ffff888016df7a70 R08: ffff88806cf31340 R09: ffffe8ffffd16188 [ 119.131712] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 119.132263] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 119.132815] FS: 0000555582728400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 119.133437] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 119.133888] CR2: 00007ffb1fa18024 CR3: 000000000e5ae000 CR4: 0000000000350ef0 [ 119.134438] Call Trace: [ 119.134641] [ 119.134827] ? __pfx_perf_tp_event+0x10/0x10 [ 119.135183] ? perf_trace_lock_acquire+0xc9/0x700 [ 119.135570] ? __call_rcu_common.constprop.0+0x4c1/0x960 [ 119.136000] ? perf_trace_lock_acquire+0xc9/0x700 [ 119.136382] ? perf_trace_lock_acquire+0xc9/0x700 [ 119.136764] ? perf_trace_lock_acquire+0xc9/0x700 [ 119.137147] ? perf_trace_lock_acquire+0xc9/0x700 [ 119.137533] ? perf_trace_lock_acquire+0xc9/0x700 [ 119.137913] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 119.138327] ? perf_trace_lock+0xb5/0x5d0 [ 119.138655] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 119.139070] ? css_rstat_updated+0x1b8/0x4d0 [ 119.139426] ? perf_trace_run_bpf_submit+0xef/0x180 [ 119.139828] perf_trace_run_bpf_submit+0xef/0x180 [ 119.140215] perf_trace_lock+0x337/0x5d0 [ 119.140537] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 119.140951] ? __pfx_perf_trace_lock+0x10/0x10 [ 119.141314] ? do_wp_page+0xb30/0x3430 [ 119.141632] ? lock_acquire+0xc5/0x2f0 [ 119.141940] ? futex_ref_get+0x114/0x300 [ 119.142260] ? futex_hash+0x15c/0x390 [ 119.142562] lock_release+0x1ab/0x290 [ 119.142866] ? futex_hash+0x15c/0x390 [ 119.143167] futex_ref_get+0x119/0x300 [ 119.143474] ? futex_hash+0x15c/0x390 [ 119.143782] futex_hash+0x70/0x390 [ 119.144067] futex_wake+0x143/0x540 [ 119.144360] ? ___pte_offset_map+0x176/0x370 [ 119.144714] ? __pfx_futex_wake+0x10/0x10 [ 119.145046] ? __handle_mm_fault+0x753/0x3260 [ 119.145412] ? perf_trace_lock+0xb5/0x5d0 [ 119.145740] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 119.146150] ? __pfx___handle_mm_fault+0x10/0x10 [ 119.146531] do_futex+0x26d/0x370 [ 119.146810] ? __pfx_do_futex+0x10/0x10 [ 119.147126] ? __pfx_perf_trace_lock+0x10/0x10 [ 119.147487] ? handle_mm_fault+0x590/0x9b0 [ 119.147835] __x64_sys_futex+0x1c9/0x4d0 [ 119.148158] ? __pfx___x64_sys_futex+0x10/0x10 [ 119.148523] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 119.148942] do_syscall_64+0xbf/0x360 [ 119.149246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.149646] RIP: 0033:0x7ffb1f904b19 [ 119.149937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 119.151330] RSP: 002b:00007ffe0701c288 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 119.151919] RAX: ffffffffffffffda RBX: 00007ffb1fa1802c RCX: 00007ffb1f904b19 [ 119.152467] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ffb1fa1802c [ 119.153016] RBP: 00007ffb1fa18020 R08: 00007ffb1fa140d0 R09: 0000000000000000 [ 119.153567] R10: 00007ffb1fe1c000 R11: 0000000000000246 R12: 00007ffb1fa1d788 [ 119.154119] R13: 00007ffe0701c390 R14: 00007ffb1fa17f60 R15: 0000000000000001 [ 119.154678] [ 119.154870] Modules linked in: [ 119.155127] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI [ 119.156808] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 119.157953] CPU: 0 UID: 0 PID: 4011 Comm: syz-executor.0 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 119.159752] Tainted: [D]=DIE, [W]=WARN [ 119.160337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 119.161581] RIP: 0010:perf_tp_event+0x175/0xe70 [ 119.162306] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 119.165032] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 119.165845] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 119.166925] RDX: ffff888045915280 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 119.168023] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16188 [ 119.169103] R10: 0000000000000000 R11: ffff88800eb43098 R12: dffffc0000000000 [ 119.170173] R13: 0000000000000024 R14: ffff88806ce31490 R15: dffffc0000000000 [ 119.171254] FS: 0000555582be7400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 119.172474] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 119.173352] CR2: 0000001b2d628000 CR3: 0000000044e01000 CR4: 0000000000350ef0 [ 119.174434] Call Trace: [ 119.174833] [ 119.175188] ? __pfx_perf_tp_event+0x10/0x10 [ 119.175891] ? stack_depot_save_flags+0x2c/0xa20 [ 119.176628] ? kasan_save_stack+0x34/0x50 [ 119.177266] ? kasan_save_stack+0x24/0x50 [ 119.177907] ? kasan_save_track+0x14/0x30 [ 119.178548] ? __kasan_save_free_info+0x3a/0x60 [ 119.179264] ? __kasan_slab_free+0x3f/0x50 [ 119.179929] ? kmem_cache_free+0x2a1/0x540 [ 119.180576] ? rcu_core+0x7c8/0x1800 [ 119.181157] ? handle_softirqs+0x1b1/0x770 [ 119.181819] ? __irq_exit_rcu+0xc4/0x100 [ 119.182450] ? irq_exit_rcu+0x9/0x20 [ 119.183027] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 119.183820] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 119.184641] ? strlen+0x63/0xa0 [ 119.185161] ? perf_trace_lock_acquire+0xc9/0x700 [ 119.185916] ? lock_acquire+0xc5/0x2f0 [ 119.186524] ? _raw_spin_lock+0x2b/0x40 [ 119.187158] ? copy_process+0x21c2/0x73c0 [ 119.187817] ? kernel_clone+0xea/0x7f0 [ 119.188414] ? __do_sys_clone+0xce/0x120 [ 119.189045] ? do_syscall_64+0xbf/0x360 [ 119.189651] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.190463] ? kvm_sched_clock_read+0x16/0x30 [ 119.191160] ? sched_clock+0x37/0x60 [ 119.191753] ? sched_clock_cpu+0x6c/0x4e0 [ 119.192398] ? perf_trace_run_bpf_submit+0xef/0x180 [ 119.193168] perf_trace_run_bpf_submit+0xef/0x180 [ 119.193938] perf_trace_lock+0x337/0x5d0 [ 119.194564] ? place_entity+0x300/0x410 [ 119.195180] ? kvm_sched_clock_read+0x16/0x30 [ 119.195896] ? __pfx_perf_trace_lock+0x10/0x10 [ 119.196606] ? check_preempt_wakeup_fair+0x6e/0x950 [ 119.197382] ? sched_ttwu_pending+0x2e0/0x4a0 [ 119.198087] lock_release+0x1ab/0x290 [ 119.198676] ? ttwu_do_activate+0x1a4/0x8a0 [ 119.199358] _raw_spin_unlock+0x16/0x40 [ 119.199992] sched_ttwu_pending+0x2e0/0x4a0 [ 119.200668] ? lock_release+0xc8/0x290 [ 119.201283] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 119.202050] __flush_smp_call_function_queue+0x434/0x740 [ 119.202904] __sysvec_call_function_single+0x6d/0x370 [ 119.203721] sysvec_call_function_single+0xa1/0xc0 [ 119.204498] [ 119.204859] [ 119.205226] asm_sysvec_call_function_single+0x1a/0x20 [ 119.206031] RIP: 0010:oops_exit+0x0/0x50 [ 119.206668] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 119.209439] RSP: 0018:ffff88801c1a7690 EFLAGS: 00000202 [ 119.210264] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f [ 119.211353] RDX: ffff888045915280 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 119.212459] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 119.213555] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801c1a7758 [ 119.214644] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 119.215754] ? add_taint+0x5f/0xd0 [ 119.216319] ? oops_end+0x4a/0xe0 [ 119.216879] oops_end+0x65/0xe0 [ 119.217411] exc_general_protection+0x1a2/0x330 [ 119.218159] asm_exc_general_protection+0x26/0x30 [ 119.218906] RIP: 0010:perf_tp_event+0x175/0xe70 [ 119.219646] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 119.222414] RSP: 0018:ffff88801c1a7800 EFLAGS: 00010212 [ 119.223234] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 119.224321] RDX: ffff888045915280 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 119.225413] RBP: ffff88801c1a7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16188 [ 119.226507] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 119.227606] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 119.228699] ? perf_tp_event+0x167/0xe70 [ 119.229352] ? arch_scale_cpu_capacity+0x17/0xa0 [ 119.230104] ? __pfx_perf_tp_event+0x10/0x10 [ 119.230793] ? __asan_memset+0x24/0x50 [ 119.231435] ? perf_trace_lock+0xb5/0x5d0 [ 119.232097] ? kvm_sched_clock_read+0x16/0x30 [ 119.232797] ? sched_clock+0x37/0x60 [ 119.233379] ? sched_clock_cpu+0x6c/0x4e0 [ 119.234022] ? lock_is_held_type+0x9e/0x120 [ 119.234708] ? perf_trace_run_bpf_submit+0xef/0x180 [ 119.235485] perf_trace_run_bpf_submit+0xef/0x180 [ 119.236255] perf_trace_lock+0x337/0x5d0 [ 119.236899] ? __pfx_perf_trace_lock+0x10/0x10 [ 119.237613] ? lock_acquire+0x15e/0x2f0 [ 119.238234] ? futex_ref_get+0x48/0x300 [ 119.238858] ? futex_ref_get+0x114/0x300 [ 119.239490] ? futex_hash+0x15c/0x390 [ 119.240092] lock_release+0x1ab/0x290 [ 119.240698] ? futex_hash+0x15c/0x390 [ 119.241287] futex_ref_get+0x119/0x300 [ 119.241895] ? futex_hash+0x15c/0x390 [ 119.242499] futex_hash+0x70/0x390 [ 119.243058] futex_wake+0x143/0x540 [ 119.243639] ? put_pid+0x1f/0x30 [ 119.244174] ? kernel_clone+0x204/0x7f0 [ 119.244795] ? __pfx_futex_wake+0x10/0x10 [ 119.245444] ? __pfx_kernel_clone+0x10/0x10 [ 119.246118] ? perf_trace_lock+0xb5/0x5d0 [ 119.246767] do_futex+0x26d/0x370 [ 119.247318] ? __pfx_do_futex+0x10/0x10 [ 119.247952] ? __pfx___do_sys_clone+0x10/0x10 [ 119.248647] ? find_held_lock+0x2b/0x80 [ 119.249291] __x64_sys_futex+0x1c9/0x4d0 [ 119.249928] ? __pfx___x64_sys_futex+0x10/0x10 [ 119.250639] ? xfd_validate_state+0x55/0x180 [ 119.251346] do_syscall_64+0xbf/0x360 [ 119.251949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.252748] RIP: 0033:0x7f8bf6d7db19 [ 119.253323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 119.256090] RSP: 002b:00007ffdef2b0be8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 119.257235] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8bf6d7db19 [ 119.258336] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8bf6e90f68 [ 119.259429] RBP: 00007f8bf6e90f60 R08: 00007f8bf42f3700 R09: 0000000000000000 [ 119.260531] R10: 00007f8bf42f3700 R11: 0000000000000246 R12: 00007f8bf6e95a68 [ 119.261608] R13: 00007ffdef2b0cf0 R14: 00007f8bf6e90f60 R15: 000000000001d053 [ 119.262714] [ 119.263078] Modules linked in: [ 119.263586] ---[ end trace 0000000000000000 ]--- [ 119.263586] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#4] SMP KASAN NOPTI [ 119.263599] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 119.264295] RIP: 0010:perf_tp_event+0x175/0xe70 [ 119.265155] CPU: 1 UID: 0 PID: 3991 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 119.266454] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 119.266814] Tainted: [D]=DIE, [W]=WARN [ 119.268577] RSP: 0018:ffff88801c1a7800 EFLAGS: 00010212 [ 119.269996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 119.270574] [ 119.270982] RIP: 0010:perf_tp_event+0x175/0xe70 [ 119.272229] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 119.272367] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 119.273061] RDX: ffff888045915280 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 119.273613] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012 [ 119.276366] RBP: ffff88801c1a7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16188 [ 119.276920] [ 119.276924] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 119.277714] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 119.278264] RDX: ffff88801756d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 119.278527] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 119.279076] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd16188 [ 119.280151] FS: 0000555582be7400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 119.280695] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 119.281765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 119.282316] R13: 000000000000002c R14: ffff88806cf31490 R15: dffffc0000000000 [ 119.283520] CR2: 0000001b2d628000 CR3: 0000000044e01000 CR4: 0000000000350ef0 [ 119.284079] FS: 0000555582728400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 119.284955] Kernel panic - not syncing: Fatal exception in interrupt [ 120.367437] Shutting down cpus with NMI [ 120.371755] Kernel Offset: disabled [ 120.372344] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 10:20:09 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88801c1a7160 R8 =0000000000000000 R9 =ffffed10015e1046 R10=0000000000000020 R11=552030203a555043 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555582be7400 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe6d00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d628000 CR3=0000000044e01000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f8bf6e647c000007f8bf6e647c8 XMM02=00007f8bf6e647e000007f8bf6e647c0 XMM03=00007f8bf6e647c800007f8bf6e647c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff81b363fd RBX=ffffffff816087b0 RCX=000000000000000d RDX=1ffff1100378de0e RSI=ffffffff81b363fd RDI=ffff88801bc6f0e0 RBP=ffff88801bc6f0b0 RSP=ffff88801bc6f010 R8 =ffffffff84c93ca0 R9 =ffff88801bc6f058 R10=000000000003bea3 R11=0000000000025c33 R12=ffff88801bc6f0e0 R13=0000000000000000 R14=ffff888015f38000 R15=0000000000092c40 RIP=ffffffff816087b4 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555745ea400 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe2300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055558c463c58 CR3=000000003f4d1000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000a60ce07b00000000cec3662e XMM01=000000000000000003515b82db34ca11 XMM02=0000000000000000333bebdfd0a6a21d XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000