Warning: Permanently added '[localhost]:31500' (ECDSA) to the list of known hosts.
2025/09/01 11:09:15 fuzzer started
2025/09/01 11:09:16 dialing manager at localhost:35473
syzkaller login: [   59.396787] cgroup: Unknown subsys name 'net'
[   59.458248] cgroup: Unknown subsys name 'cpuset'
[   59.478821] cgroup: Unknown subsys name 'rlimit'
2025/09/01 11:09:27 syscalls: 2214
2025/09/01 11:09:27 code coverage: enabled
2025/09/01 11:09:27 comparison tracing: enabled
2025/09/01 11:09:27 extra coverage: enabled
2025/09/01 11:09:27 setuid sandbox: enabled
2025/09/01 11:09:27 namespace sandbox: enabled
2025/09/01 11:09:27 Android sandbox: enabled
2025/09/01 11:09:27 fault injection: enabled
2025/09/01 11:09:27 leak checking: enabled
2025/09/01 11:09:27 net packet injection: enabled
2025/09/01 11:09:27 net device setup: enabled
2025/09/01 11:09:27 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 11:09:27 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 11:09:27 USB emulation: enabled
2025/09/01 11:09:27 hci packet injection: enabled
2025/09/01 11:09:27 wifi device emulation: enabled
2025/09/01 11:09:27 802.15.4 emulation: enabled
2025/09/01 11:09:27 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 11:09:27 fetching corpus: 50, signal 22269/25838 (executing program)
2025/09/01 11:09:28 fetching corpus: 100, signal 33069/38075 (executing program)
2025/09/01 11:09:28 fetching corpus: 150, signal 41265/47496 (executing program)
2025/09/01 11:09:28 fetching corpus: 200, signal 46122/53701 (executing program)
2025/09/01 11:09:28 fetching corpus: 250, signal 51544/60286 (executing program)
2025/09/01 11:09:28 fetching corpus: 300, signal 58202/67872 (executing program)
2025/09/01 11:09:28 fetching corpus: 350, signal 62470/73225 (executing program)
2025/09/01 11:09:28 fetching corpus: 400, signal 66453/78126 (executing program)
2025/09/01 11:09:28 fetching corpus: 450, signal 69282/81962 (executing program)
2025/09/01 11:09:28 fetching corpus: 500, signal 72401/85952 (executing program)
2025/09/01 11:09:28 fetching corpus: 550, signal 77217/91385 (executing program)
2025/09/01 11:09:28 fetching corpus: 600, signal 79670/94701 (executing program)
2025/09/01 11:09:29 fetching corpus: 650, signal 83321/98968 (executing program)
2025/09/01 11:09:29 fetching corpus: 700, signal 85394/101830 (executing program)
2025/09/01 11:09:29 fetching corpus: 750, signal 89221/106067 (executing program)
2025/09/01 11:09:29 fetching corpus: 800, signal 91268/108768 (executing program)
2025/09/01 11:09:29 fetching corpus: 850, signal 92518/110808 (executing program)
2025/09/01 11:09:29 fetching corpus: 900, signal 94645/113561 (executing program)
2025/09/01 11:09:29 fetching corpus: 950, signal 95921/115574 (executing program)
2025/09/01 11:09:29 fetching corpus: 1000, signal 97705/117944 (executing program)
2025/09/01 11:09:29 fetching corpus: 1050, signal 99315/120136 (executing program)
2025/09/01 11:09:29 fetching corpus: 1100, signal 100791/122192 (executing program)
2025/09/01 11:09:29 fetching corpus: 1150, signal 102030/123993 (executing program)
2025/09/01 11:09:30 fetching corpus: 1200, signal 103981/126273 (executing program)
2025/09/01 11:09:30 fetching corpus: 1250, signal 106349/128862 (executing program)
2025/09/01 11:09:30 fetching corpus: 1300, signal 108124/130982 (executing program)
2025/09/01 11:09:30 fetching corpus: 1350, signal 108881/132345 (executing program)
2025/09/01 11:09:30 fetching corpus: 1400, signal 109754/133751 (executing program)
2025/09/01 11:09:30 fetching corpus: 1450, signal 110539/135152 (executing program)
2025/09/01 11:09:30 fetching corpus: 1500, signal 111754/136785 (executing program)
2025/09/01 11:09:30 fetching corpus: 1550, signal 112601/138162 (executing program)
2025/09/01 11:09:30 fetching corpus: 1600, signal 113894/139790 (executing program)
2025/09/01 11:09:30 fetching corpus: 1650, signal 114842/141172 (executing program)
2025/09/01 11:09:30 fetching corpus: 1700, signal 115748/142518 (executing program)
2025/09/01 11:09:30 fetching corpus: 1750, signal 116826/143989 (executing program)
2025/09/01 11:09:31 fetching corpus: 1800, signal 118075/145519 (executing program)
2025/09/01 11:09:31 fetching corpus: 1850, signal 118801/146718 (executing program)
2025/09/01 11:09:31 fetching corpus: 1900, signal 120350/148397 (executing program)
2025/09/01 11:09:31 fetching corpus: 1950, signal 121203/149628 (executing program)
2025/09/01 11:09:31 fetching corpus: 2000, signal 122399/150998 (executing program)
2025/09/01 11:09:31 fetching corpus: 2050, signal 123654/152368 (executing program)
2025/09/01 11:09:31 fetching corpus: 2100, signal 124547/153503 (executing program)
2025/09/01 11:09:31 fetching corpus: 2150, signal 125508/154691 (executing program)
2025/09/01 11:09:31 fetching corpus: 2200, signal 126260/155787 (executing program)
2025/09/01 11:09:31 fetching corpus: 2250, signal 127384/157076 (executing program)
2025/09/01 11:09:31 fetching corpus: 2300, signal 128509/158285 (executing program)
2025/09/01 11:09:31 fetching corpus: 2350, signal 129404/159376 (executing program)
2025/09/01 11:09:32 fetching corpus: 2400, signal 130707/160587 (executing program)
2025/09/01 11:09:32 fetching corpus: 2450, signal 131776/161649 (executing program)
2025/09/01 11:09:32 fetching corpus: 2500, signal 132948/162788 (executing program)
2025/09/01 11:09:32 fetching corpus: 2550, signal 133915/163801 (executing program)
2025/09/01 11:09:32 fetching corpus: 2600, signal 134487/164630 (executing program)
2025/09/01 11:09:32 fetching corpus: 2650, signal 135181/165482 (executing program)
2025/09/01 11:09:32 fetching corpus: 2700, signal 135811/166318 (executing program)
2025/09/01 11:09:32 fetching corpus: 2750, signal 136665/167196 (executing program)
2025/09/01 11:09:32 fetching corpus: 2800, signal 137404/168097 (executing program)
2025/09/01 11:09:32 fetching corpus: 2850, signal 138361/169051 (executing program)
2025/09/01 11:09:32 fetching corpus: 2900, signal 138946/169804 (executing program)
2025/09/01 11:09:32 fetching corpus: 2950, signal 139913/170630 (executing program)
2025/09/01 11:09:33 fetching corpus: 3000, signal 140924/171523 (executing program)
2025/09/01 11:09:33 fetching corpus: 3050, signal 141486/172221 (executing program)
2025/09/01 11:09:33 fetching corpus: 3100, signal 142218/172965 (executing program)
2025/09/01 11:09:33 fetching corpus: 3150, signal 142671/173607 (executing program)
2025/09/01 11:09:33 fetching corpus: 3200, signal 143196/174265 (executing program)
2025/09/01 11:09:33 fetching corpus: 3250, signal 143576/174891 (executing program)
2025/09/01 11:09:33 fetching corpus: 3300, signal 144163/175588 (executing program)
2025/09/01 11:09:33 fetching corpus: 3350, signal 144779/176232 (executing program)
2025/09/01 11:09:33 fetching corpus: 3400, signal 145272/176881 (executing program)
2025/09/01 11:09:33 fetching corpus: 3450, signal 145755/177443 (executing program)
2025/09/01 11:09:33 fetching corpus: 3500, signal 146091/177978 (executing program)
2025/09/01 11:09:33 fetching corpus: 3550, signal 147243/178749 (executing program)
2025/09/01 11:09:33 fetching corpus: 3600, signal 147785/179314 (executing program)
2025/09/01 11:09:34 fetching corpus: 3650, signal 148473/179872 (executing program)
2025/09/01 11:09:34 fetching corpus: 3700, signal 148925/180375 (executing program)
2025/09/01 11:09:34 fetching corpus: 3750, signal 149317/180899 (executing program)
2025/09/01 11:09:34 fetching corpus: 3800, signal 149975/181474 (executing program)
2025/09/01 11:09:34 fetching corpus: 3850, signal 150498/181998 (executing program)
2025/09/01 11:09:34 fetching corpus: 3900, signal 150905/182429 (executing program)
2025/09/01 11:09:34 fetching corpus: 3950, signal 151399/182888 (executing program)
2025/09/01 11:09:34 fetching corpus: 4000, signal 152243/183378 (executing program)
2025/09/01 11:09:34 fetching corpus: 4050, signal 152770/183820 (executing program)
2025/09/01 11:09:34 fetching corpus: 4100, signal 153242/184260 (executing program)
2025/09/01 11:09:34 fetching corpus: 4150, signal 153660/184722 (executing program)
2025/09/01 11:09:35 fetching corpus: 4200, signal 154251/185171 (executing program)
2025/09/01 11:09:35 fetching corpus: 4250, signal 154673/185559 (executing program)
2025/09/01 11:09:35 fetching corpus: 4300, signal 155121/185964 (executing program)
2025/09/01 11:09:35 fetching corpus: 4350, signal 155652/186402 (executing program)
2025/09/01 11:09:35 fetching corpus: 4400, signal 156000/186740 (executing program)
2025/09/01 11:09:35 fetching corpus: 4450, signal 156431/187098 (executing program)
2025/09/01 11:09:35 fetching corpus: 4500, signal 157072/187469 (executing program)
2025/09/01 11:09:35 fetching corpus: 4550, signal 157618/187844 (executing program)
2025/09/01 11:09:35 fetching corpus: 4600, signal 157998/188048 (executing program)
2025/09/01 11:09:35 fetching corpus: 4650, signal 158535/188065 (executing program)
2025/09/01 11:09:35 fetching corpus: 4700, signal 158980/188080 (executing program)
2025/09/01 11:09:36 fetching corpus: 4750, signal 159444/188082 (executing program)
2025/09/01 11:09:36 fetching corpus: 4800, signal 159761/188084 (executing program)
2025/09/01 11:09:36 fetching corpus: 4850, signal 160065/188086 (executing program)
2025/09/01 11:09:36 fetching corpus: 4900, signal 160362/188089 (executing program)
2025/09/01 11:09:36 fetching corpus: 4950, signal 161042/188092 (executing program)
2025/09/01 11:09:36 fetching corpus: 5000, signal 161491/188101 (executing program)
2025/09/01 11:09:36 fetching corpus: 5050, signal 162209/188106 (executing program)
2025/09/01 11:09:36 fetching corpus: 5100, signal 162668/188167 (executing program)
2025/09/01 11:09:36 fetching corpus: 5150, signal 163116/188194 (executing program)
2025/09/01 11:09:36 fetching corpus: 5200, signal 163533/188206 (executing program)
2025/09/01 11:09:36 fetching corpus: 5250, signal 163926/188207 (executing program)
2025/09/01 11:09:37 fetching corpus: 5300, signal 164221/188217 (executing program)
2025/09/01 11:09:37 fetching corpus: 5350, signal 164641/188231 (executing program)
2025/09/01 11:09:37 fetching corpus: 5400, signal 164967/188244 (executing program)
2025/09/01 11:09:37 fetching corpus: 5450, signal 165283/188245 (executing program)
2025/09/01 11:09:37 fetching corpus: 5500, signal 165777/188273 (executing program)
2025/09/01 11:09:37 fetching corpus: 5550, signal 166117/188353 (executing program)
2025/09/01 11:09:37 fetching corpus: 5600, signal 166560/188355 (executing program)
2025/09/01 11:09:37 fetching corpus: 5650, signal 167332/188356 (executing program)
2025/09/01 11:09:37 fetching corpus: 5700, signal 167764/188389 (executing program)
2025/09/01 11:09:37 fetching corpus: 5750, signal 168197/188406 (executing program)
2025/09/01 11:09:37 fetching corpus: 5800, signal 168908/188415 (executing program)
2025/09/01 11:09:38 fetching corpus: 5850, signal 169328/188437 (executing program)
2025/09/01 11:09:38 fetching corpus: 5900, signal 169603/188454 (executing program)
2025/09/01 11:09:38 fetching corpus: 5950, signal 170052/188456 (executing program)
2025/09/01 11:09:38 fetching corpus: 6000, signal 170488/188460 (executing program)
2025/09/01 11:09:38 fetching corpus: 6050, signal 171079/188593 (executing program)
2025/09/01 11:09:38 fetching corpus: 6100, signal 171607/188600 (executing program)
2025/09/01 11:09:38 fetching corpus: 6150, signal 171863/188612 (executing program)
2025/09/01 11:09:38 fetching corpus: 6200, signal 172127/188620 (executing program)
2025/09/01 11:09:38 fetching corpus: 6250, signal 172551/188624 (executing program)
2025/09/01 11:09:38 fetching corpus: 6300, signal 172900/188626 (executing program)
2025/09/01 11:09:38 fetching corpus: 6350, signal 173158/188640 (executing program)
2025/09/01 11:09:38 fetching corpus: 6400, signal 173470/188649 (executing program)
2025/09/01 11:09:38 fetching corpus: 6450, signal 173750/188662 (executing program)
2025/09/01 11:09:39 fetching corpus: 6500, signal 173969/188665 (executing program)
2025/09/01 11:09:39 fetching corpus: 6550, signal 174333/188669 (executing program)
2025/09/01 11:09:39 fetching corpus: 6600, signal 174634/188673 (executing program)
2025/09/01 11:09:39 fetching corpus: 6650, signal 174846/188681 (executing program)
2025/09/01 11:09:39 fetching corpus: 6700, signal 175097/188681 (executing program)
2025/09/01 11:09:39 fetching corpus: 6750, signal 175511/188703 (executing program)
2025/09/01 11:09:39 fetching corpus: 6800, signal 175757/188722 (executing program)
2025/09/01 11:09:39 fetching corpus: 6850, signal 176008/188742 (executing program)
2025/09/01 11:09:39 fetching corpus: 6900, signal 176244/188749 (executing program)
2025/09/01 11:09:39 fetching corpus: 6950, signal 176628/188770 (executing program)
2025/09/01 11:09:39 fetching corpus: 7000, signal 176858/188776 (executing program)
2025/09/01 11:09:39 fetching corpus: 7050, signal 177134/188777 (executing program)
2025/09/01 11:09:40 fetching corpus: 7100, signal 177653/188779 (executing program)
2025/09/01 11:09:40 fetching corpus: 7150, signal 177890/188780 (executing program)
2025/09/01 11:09:40 fetching corpus: 7200, signal 178172/188794 (executing program)
2025/09/01 11:09:40 fetching corpus: 7250, signal 178574/188830 (executing program)
2025/09/01 11:09:40 fetching corpus: 7300, signal 179113/188875 (executing program)
2025/09/01 11:09:40 fetching corpus: 7350, signal 179872/188885 (executing program)
2025/09/01 11:09:40 fetching corpus: 7400, signal 180143/188885 (executing program)
2025/09/01 11:09:40 fetching corpus: 7450, signal 180329/188885 (executing program)
2025/09/01 11:09:40 fetching corpus: 7500, signal 180547/188895 (executing program)
2025/09/01 11:09:40 fetching corpus: 7550, signal 180781/188919 (executing program)
2025/09/01 11:09:41 fetching corpus: 7600, signal 181230/188920 (executing program)
2025/09/01 11:09:41 fetching corpus: 7650, signal 181595/188943 (executing program)
2025/09/01 11:09:41 fetching corpus: 7700, signal 181869/188943 (executing program)
2025/09/01 11:09:41 fetching corpus: 7750, signal 182299/188945 (executing program)
2025/09/01 11:09:41 fetching corpus: 7800, signal 182530/188952 (executing program)
2025/09/01 11:09:41 fetching corpus: 7850, signal 184154/188957 (executing program)
2025/09/01 11:09:41 fetching corpus: 7900, signal 184573/188957 (executing program)
2025/09/01 11:09:41 fetching corpus: 7950, signal 184791/188963 (executing program)
2025/09/01 11:09:41 fetching corpus: 8000, signal 185017/188968 (executing program)
2025/09/01 11:09:42 fetching corpus: 8050, signal 185360/188973 (executing program)
2025/09/01 11:09:42 fetching corpus: 8100, signal 185678/188977 (executing program)
2025/09/01 11:09:42 fetching corpus: 8150, signal 186029/189013 (executing program)
2025/09/01 11:09:42 fetching corpus: 8200, signal 186279/189021 (executing program)
2025/09/01 11:09:42 fetching corpus: 8244, signal 186499/189021 (executing program)
2025/09/01 11:09:42 fetching corpus: 8244, signal 186499/189021 (executing program)
2025/09/01 11:09:44 starting 8 fuzzer processes
11:09:44 executing program 0:
quotactl(0x2000000000097, 0x0, 0x0, 0x0)

11:09:44 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8)
io_setup(0x4, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001a80)=[&(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, r0, &(0x7f0000000200)="8a918fa171f2207bbe774e1841237201d86669d99203f6baf170857d7d95dfd6a8db2db27d89f939347ce541ddcd8396c04cf394ef48190ae1d08f81274b5e6d5e3abe3ce71cd86fc013374b66fa5e00c40c211c64b9fcf1f4ca5410ec2dd7bff608d2b242646f5de0183d764eee8a7ce9c3e51b6503913d025377f64b2b3ae7", 0x80}])

11:09:44 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x4d, &(0x7f0000000140)={{{@in6=@rand_addr=' \x01\x00', @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast1}}, 0x0, @in=@local}}, 0xe8)

[   88.002881] audit: type=1400 audit(1756724984.951:7): avc:  denied  { execmem } for  pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:09:44 executing program 4:
syz_80211_inject_frame(0x0, 0x0, 0x0)
syz_80211_inject_frame(0x0, 0x0, 0x0)

11:09:44 executing program 3:
r0 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ftruncate(r0, 0x8007)
finit_module(r0, 0x0, 0x5)

11:09:45 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$get_security(0x6, r0, 0x0, 0x0)

11:09:45 executing program 5:
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)="d9543038a1b282d50a0127a3fe787904192e30be12e051656ca28132eba1a51d12f95180d319eef8bb32a4a5275ed0721e7666ca07423b043d77f268a4db33451cf00ae47cb045f9bc4e0385ab12e07ac5", 0x51)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'wlan1\x00'})

11:09:45 executing program 6:
syz_mount_image$msdos(0x0, &(0x7f0000003b80)='./file0\x00', 0x0, 0x4, &(0x7f0000004140)=[{&(0x7f0000003bc0)="5c996b066ea98e79efac2805236c02a8e931b1817087906ee6716534bedb2bc7de9eb8d0c388e7edee1ca4622d664685d744b03b2c7f617d55c065f3f013b8c40b558fdef9a85a9ff4241978e91cc02154f6f8c6997d9675ff84de581f60011fb3e67edbca2a06101901e52445c952ec972931270a6fef8815a4b84edcd4c15194101101899afb973bdf9dc9fec509501fab7ee4d4aea37433c9993bdc365a2f44688464c4ca8e8ae4279c700d77d81d0535ea9164d1a6a6a0db9afb80c628cd875b992be50d5c9927300dc0288325655d63", 0xd2, 0x4}, {0x0}, {&(0x7f0000003f80)="fd", 0x1, 0xb31b}, {0x0, 0x0, 0xfffffffffffffff7}], 0x40000, &(0x7f0000004200)={[{@nodots}, {@nodots}], [{@uid_gt={'uid>', 0xee00}}, {@seclabel}, {@measure}, {@dont_appraise}, {@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x31, 0x0, 0x31, 0x39, 0x36, 0x62, 0x35, 0x64], 0x2d, [0x0, 0x0, 0x63], 0x2d, [0x39, 0x66, 0x34], 0x2d, [0x30, 0x61, 0x0, 0x39], 0x2d, [0x61, 0x33, 0x39, 0x38, 0x0, 0x33, 0x34, 0xe341d4807a1565e8]}}}]})

[   89.162891] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.167946] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.171394] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.175467] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.178008] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.223321] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   89.228163] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   89.231431] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   89.241000] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   89.246018] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   89.369139] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   89.382150] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   89.385059] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   89.404868] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   89.419635] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   89.423039] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   89.423923] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   89.427013] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   89.428006] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   89.429633] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   89.431373] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   89.436637] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   89.441008] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   89.464847] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   89.472576] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   89.484988] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   89.491316] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   89.502022] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   89.505063] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   89.507353] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   89.514530] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   89.522256] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   89.538140] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   89.539409] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   89.544215] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   89.547215] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   89.564004] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   89.565127] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   89.572117] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   89.588307] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   91.196569] Bluetooth: hci0: command tx timeout
[   91.322890] Bluetooth: hci1: command tx timeout
[   91.451243] Bluetooth: hci2: command tx timeout
[   91.514924] Bluetooth: hci4: command tx timeout
[   91.578965] Bluetooth: hci3: command tx timeout
[   91.643198] Bluetooth: hci6: command tx timeout
[   91.644159] Bluetooth: hci7: command tx timeout
[   91.644611] Bluetooth: hci5: command tx timeout
[   93.242786] Bluetooth: hci0: command tx timeout
[   93.370794] Bluetooth: hci1: command tx timeout
[   93.498828] Bluetooth: hci2: command tx timeout
[   93.562843] Bluetooth: hci4: command tx timeout
[   93.626944] Bluetooth: hci3: command tx timeout
[   93.692332] Bluetooth: hci5: command tx timeout
[   93.692768] Bluetooth: hci7: command tx timeout
[   93.692877] Bluetooth: hci6: command tx timeout
[   95.290819] Bluetooth: hci0: command tx timeout
[   95.418796] Bluetooth: hci1: command tx timeout
[   95.546902] Bluetooth: hci2: command tx timeout
[   95.611049] Bluetooth: hci4: command tx timeout
[   95.674804] Bluetooth: hci3: command tx timeout
[   95.739803] Bluetooth: hci5: command tx timeout
[   95.739871] Bluetooth: hci7: command tx timeout
[   95.740252] Bluetooth: hci6: command tx timeout
[   97.339859] Bluetooth: hci0: command tx timeout
[   97.467875] Bluetooth: hci1: command tx timeout
[   97.595806] Bluetooth: hci2: command tx timeout
[   97.660302] Bluetooth: hci4: command tx timeout
[   97.722798] Bluetooth: hci3: command tx timeout
[   97.786831] Bluetooth: hci7: command tx timeout
[   97.786922] Bluetooth: hci5: command tx timeout
[   97.787303] Bluetooth: hci6: command tx timeout
[  126.722041] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.722698] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.889438] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.890158] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.986363] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.987011] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.122576] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.123217] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.253410] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.254139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.323784] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.324389] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:10:24 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000daf4655fdaf4655f0100ffff53ef010001000000d9f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010300)="02000000030000000400000066000f000300040000000000000000000f007f5c", 0x20, 0x800}, {&(0x7f00000000c0)="ed41000000080000d9f4655fdaf4655fdaf4655f000000000000040004", 0x1d, 0x2200}], 0x0, &(0x7f0000000140)={[{@usrjquota}, {@grpjquota}]})

[  127.436643] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.437339] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.439298] loop5: detected capacity change from 0 to 512
[  127.467203] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
11:10:24 executing program 5:
r0 = eventfd2(0x0, 0x0)
io_setup(0x2, &(0x7f0000000080)=<r1=>0x0)
io_submit(r1, 0x2, &(0x7f0000000140)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0xfffd, r0, 0x0, 0x0, 0x0, 0x0, 0x2}])

[  127.529863] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.600696] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.601333] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.659032] audit: type=1400 audit(1756725024.609:8): avc:  denied  { module_load } for  pid=3839 comm="syz-executor.3" path=2F6D656D66643A3A5E2F202864656C6574656429 dev="tmpfs" ino=4 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=system permissive=1
11:10:24 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{}]})
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145802, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000000)="fa", 0x3ffffe00}])

11:10:24 executing program 5:
r0 = eventfd2(0x0, 0x0)
io_setup(0x2, &(0x7f0000000080)=<r1=>0x0)
io_submit(r1, 0x2, &(0x7f0000000140)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0xfffd, r0, 0x0, 0x0, 0x0, 0x0, 0x2}])

[  127.704048] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.704624] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:10:24 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x1100)
setresuid(0x0, r0, 0x0)
r1 = add_key$keyring(&(0x7f0000000500), &(0x7f0000000540)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
r2 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, &(0x7f00000001c0)="91", 0x1, r1)
keyctl$chown(0x4, r2, 0x0, 0x0)

[  127.751341] audit: type=1400 audit(1756725024.702:9): avc:  denied  { open } for  pid=3850 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  127.754185] audit: type=1400 audit(1756725024.702:10): avc:  denied  { kernel } for  pid=3850 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
11:10:24 executing program 5:
r0 = eventfd2(0x0, 0x0)
io_setup(0x2, &(0x7f0000000080)=<r1=>0x0)
io_submit(r1, 0x2, &(0x7f0000000140)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0xfffd, r0, 0x0, 0x0, 0x0, 0x0, 0x2}])

[  127.817049] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.817848] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.818412] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.818664] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.818976] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00
[  127.819529] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.820145] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x4000 phys_seg 32 prio class 2
[  127.837806] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.838582] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.839154] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.839670] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 40 00 00 40 00
[  127.840310] I/O error, dev sr0, sector 256 op 0x0:(READ) flags 0x4000 phys_seg 31 prio class 2
[  127.856205] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.857243] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.857819] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.858350] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 80 00 00 40 00
[  127.858966] I/O error, dev sr0, sector 512 op 0x0:(READ) flags 0x4000 phys_seg 32 prio class 2
[  127.870656] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.871523] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.872193] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.872969] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 c0 00 00 40 00
[  127.873702] I/O error, dev sr0, sector 768 op 0x0:(READ) flags 0x4000 phys_seg 32 prio class 2
[  127.884349] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.885125] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
11:10:24 executing program 2:
clock_nanosleep(0xa, 0x0, 0x0, 0x0)

11:10:24 executing program 5:
r0 = eventfd2(0x0, 0x0)
io_setup(0x2, &(0x7f0000000080)=<r1=>0x0)
io_submit(r1, 0x2, &(0x7f0000000140)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0xfffd, r0, 0x0, 0x0, 0x0, 0x0, 0x2}])

[  127.885652] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.886411] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 01 00 00 00 40 00
[  127.887019] I/O error, dev sr0, sector 1024 op 0x0:(READ) flags 0x4000 phys_seg 32 prio class 2
[  127.894338] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.895214] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.895928] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.896577] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 01 40 00 00 40 00
[  127.897224] I/O error, dev sr0, sector 1280 op 0x0:(READ) flags 0x4000 phys_seg 32 prio class 2
[  127.905832] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.906573] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.907146] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.907648] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 01 80 00 00 40 00
[  127.908255] I/O error, dev sr0, sector 1536 op 0x0:(READ) flags 0x4000 phys_seg 28 prio class 2
[  127.915135] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.915874] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.916554] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.917495] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 01 c0 00 00 40 00
[  127.918437] I/O error, dev sr0, sector 1792 op 0x0:(READ) flags 0x4000 phys_seg 5 prio class 2
[  127.926851] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.927799] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.928473] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.929151] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 02 00 00 00 40 00
[  127.929895] I/O error, dev sr0, sector 2048 op 0x0:(READ) flags 0x4000 phys_seg 5 prio class 2
[  127.938228] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  127.939165] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  127.939866] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  127.940523] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 02 40 00 00 40 00
[  127.941275] I/O error, dev sr0, sector 2304 op 0x0:(READ) flags 0x4000 phys_seg 5 prio class 2
[  128.130021] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.130635] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.202812] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.203398] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.424176] loop6: detected capacity change from 0 to 16383
[  128.584556] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  128.889615] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  128.897971] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  129.053410] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.054093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.119282] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.119880] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.206997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.207580] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.241320] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.241924] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:10:26 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{}]})

11:10:26 executing program 6:
mq_notify(0xffffffffffffffff, 0x0)

11:10:26 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)={0x48, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_WOL_HEADER={0x4}, @ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14}]}, @ETHTOOL_A_WOL_MODES={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x11, 0x4, "48d203e7a5451c196e1e743599"}]}]}, 0x48}}, 0x0)

11:10:26 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xffeffffe, 0x0, "e8b3d869771e1693a690553b8884f615420a34"})
ppoll(&(0x7f0000000040)=[{r0}], 0x1, &(0x7f00000000c0), 0x0, 0x0)

11:10:26 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8)
io_setup(0x4, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001a80)=[&(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, r0, &(0x7f0000000200)="8a918fa171f2207bbe774e1841237201d86669d99203f6baf170857d7d95dfd6a8db2db27d89f939347ce541ddcd8396c04cf394ef48190ae1d08f81274b5e6d5e3abe3ce71cd86fc013374b66fa5e00c40c211c64b9fcf1f4ca5410ec2dd7bff608d2b242646f5de0183d764eee8a7ce9c3e51b6503913d025377f64b2b3ae7", 0x80}])

11:10:26 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8)
io_setup(0x4, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001a80)=[&(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, r0, &(0x7f0000000200)="8a918fa171f2207bbe774e1841237201d86669d99203f6baf170857d7d95dfd6a8db2db27d89f939347ce541ddcd8396c04cf394ef48190ae1d08f81274b5e6d5e3abe3ce71cd86fc013374b66fa5e00c40c211c64b9fcf1f4ca5410ec2dd7bff608d2b242646f5de0183d764eee8a7ce9c3e51b6503913d025377f64b2b3ae7", 0x80}])

11:10:26 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$get_security(0x6, r0, 0x0, 0x0)

11:10:26 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000000)={0x28, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x1b, 0x0, 0x0, @ipv4=@empty}]}]}, 0x28}], 0x1}, 0x0)

11:10:26 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$get_security(0x6, r0, 0x0, 0x0)

11:10:26 executing program 3:
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x80003, 0xff)
getsockname(r0, 0x0, &(0x7f0000000200))

11:10:26 executing program 2:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$EXT4_IOC_GETSTATE(r1, 0x40086602, &(0x7f0000002a00))
write$binfmt_script(r0, &(0x7f0000000140)={'#! ', './file0'}, 0xb)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000440)={0x0, 0x1000})

11:10:26 executing program 6:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000700)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0), 0x4)
sendmmsg$inet6(r0, &(0x7f0000000580)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

11:10:26 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8)
io_setup(0x4, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001a80)=[&(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, r0, &(0x7f0000000200)="8a918fa171f2207bbe774e1841237201d86669d99203f6baf170857d7d95dfd6a8db2db27d89f939347ce541ddcd8396c04cf394ef48190ae1d08f81274b5e6d5e3abe3ce71cd86fc013374b66fa5e00c40c211c64b9fcf1f4ca5410ec2dd7bff608d2b242646f5de0183d764eee8a7ce9c3e51b6503913d025377f64b2b3ae7", 0x80}])

11:10:26 executing program 5:
mlockall(0x2)
r0 = shmget$private(0x0, 0xc00000, 0x0, &(0x7f0000400000/0xc00000)=nil)
shmat(r0, &(0x7f0000ffa000/0x4000)=nil, 0x6000)
shmat(r0, &(0x7f0000949000/0x2000)=nil, 0x5000)

11:10:26 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8)
io_setup(0x4, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001a80)=[&(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, r0, &(0x7f0000000200)="8a918fa171f2207bbe774e1841237201d86669d99203f6baf170857d7d95dfd6a8db2db27d89f939347ce541ddcd8396c04cf394ef48190ae1d08f81274b5e6d5e3abe3ce71cd86fc013374b66fa5e00c40c211c64b9fcf1f4ca5410ec2dd7bff608d2b242646f5de0183d764eee8a7ce9c3e51b6503913d025377f64b2b3ae7", 0x80}])

[  130.049077] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[  130.049985] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  130.050689] CPU: 0 UID: 0 PID: 3945 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  130.052323] Tainted: [W]=WARN
[  130.053080] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  130.054863] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.056420] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.060151] RSP: 0018:ffff88804728f7c0 EFLAGS: 00010212
[  130.060584] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  130.061163] RDX: ffff888016d5d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  130.061738] RBP: ffff88804728fa30 R08: ffff88806ce31340 R09: ffffe8ffffc15ef8
[  130.062310] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000
[  130.062894] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[  130.063475] FS:  0000555555f8c400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  130.064120] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.064590] CR2: 0000555555f8dc18 CR3: 0000000044e52000 CR4: 0000000000350ef0
[  130.065167] Call Trace:
[  130.065380]  <TASK>
[  130.065569]  ? __pfx_perf_tp_event+0x10/0x10
[  130.065929]  ? cpu_util.constprop.0+0x17d/0x340
[  130.066308]  ? __asan_memset+0x24/0x50
[  130.066622]  ? sched_balance_find_dst_group+0xa9a/0x1c00
[  130.067059]  ? lock_release+0xc8/0x290
[  130.067379]  ? __pfx_sched_balance_find_dst_group+0x10/0x10
[  130.067824]  ? __lock_acquire+0x694/0x1b70
[  130.068167]  ? perf_trace_run_bpf_submit+0xef/0x180
[  130.068567]  perf_trace_run_bpf_submit+0xef/0x180
[  130.068959]  perf_trace_lock_acquire+0x3c2/0x700
[  130.069347]  ? __pfx_perf_trace_lock_acquire+0x10/0x10
[  130.069770]  ? lock_acquire+0x15e/0x2f0
[  130.070092]  lock_acquire+0xc5/0x2f0
[  130.070392]  ? futex_private_hash_put+0x4c/0x2d0
[  130.070773]  ? futex_hash+0x2d8/0x390
[  130.071079]  ? lock_release+0xc8/0x290
[  130.071390]  futex_private_hash_put+0x5d/0x2d0
[  130.071756]  ? futex_private_hash_put+0x4c/0x2d0
[  130.072131]  futex_hash_put+0x3f/0x50
[  130.072438]  futex_wake+0x1bb/0x540
[  130.072736]  ? kernel_clone+0x204/0x7f0
[  130.073055]  ? __pfx_futex_wake+0x10/0x10
[  130.073389]  ? __pfx_kernel_clone+0x10/0x10
[  130.073734]  ? __lock_acquire+0x694/0x1b70
[  130.074074]  do_futex+0x26d/0x370
[  130.074358]  ? __pfx_do_futex+0x10/0x10
[  130.074678]  ? __pfx___do_sys_clone+0x10/0x10
[  130.075045]  ? find_held_lock+0x2b/0x80
[  130.075372]  __x64_sys_futex+0x1c9/0x4d0
[  130.075703]  ? __pfx___x64_sys_futex+0x10/0x10
[  130.076075]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  130.076493]  do_syscall_64+0xbf/0x360
[  130.076802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.077211] RIP: 0033:0x7fbd90880b19
[  130.077508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.078931] RSP: 002b:00007ffe476f7788 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.079524] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbd90880b19
[  130.080080] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbd90993f68
[  130.080638] RBP: 00007fbd90993f60 R08: 00007fbd8ddf6700 R09: 0000000000000000
[  130.081199] R10: 00007fbd8ddf6700 R11: 0000000000000246 R12: 00007fbd90998a68
[  130.081761] R13: 00007ffe476f7890 R14: 00007fbd90993f60 R15: 000000000001fb8e
[  130.082328]  </TASK>
[  130.082516] Modules linked in:
[  130.082803] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[  130.083670] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  130.084342] CPU: 0 UID: 0 PID: 3945 Comm: syz-executor.4 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  130.085272] Tainted: [D]=DIE, [W]=WARN
[  130.085577] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  130.086218] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.086597] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.088020] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012
[  130.088437] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  130.088995] RDX: ffff888016d5d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  130.089555] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc15ef8
[  130.090113] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000
[  130.090669] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000
[  130.091230] FS:  0000555555f8c400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  130.091857] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.092315] CR2: 0000555555f8dc18 CR3: 0000000044e52000 CR4: 0000000000350ef0
[  130.092872] Call Trace:
[  130.093078]  <IRQ>
[  130.093252]  ? arch_stack_walk+0x9c/0xf0
[  130.093583]  ? __pfx_perf_tp_event+0x10/0x10
[  130.093940]  ? sched_clock_cpu+0x6c/0x4e0
[  130.094274]  ? trace_pelt_se_tp+0xdf/0x130
[  130.094610]  ? __update_load_avg_se+0x428/0xa40
[  130.094994]  ? lock_is_held_type+0x9e/0x120
[  130.095346]  ? __pick_eevdf+0x326/0x570
[  130.095663]  ? update_curr+0x1b9/0x500
[  130.095976]  ? perf_trace_lock_acquire+0xc9/0x700
[  130.096365]  ? perf_trace_run_bpf_submit+0xef/0x180
[  130.096762]  ? perf_trace_lock_acquire+0xc9/0x700
[  130.097146]  perf_trace_run_bpf_submit+0xef/0x180
[  130.097543]  perf_trace_lock_acquire+0x3c2/0x700
[  130.097922]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  130.098298]  ? __pfx_perf_trace_lock_acquire+0x10/0x10
[  130.098715]  ? lock_acquire+0x15e/0x2f0
[  130.099043]  ? find_held_lock+0x2b/0x80
[  130.099368]  ? clockevents_program_event+0x14f/0x360
[  130.099777]  ? lock_release+0xc8/0x290
[  130.100094]  lock_acquire+0xc5/0x2f0
[  130.100394]  ? hrtimer_interrupt+0xd6/0x830
[  130.100739]  ? __pfx_lapic_next_deadline+0x10/0x10
[  130.101135]  _raw_spin_lock_irqsave+0x3a/0x60
[  130.101498]  ? hrtimer_interrupt+0xd6/0x830
[  130.101837]  hrtimer_interrupt+0xd6/0x830
[  130.102167]  ? __pfx_flush_tlb_func+0x10/0x10
[  130.102527]  ? trace_csd_function_exit+0x134/0x190
[  130.102930]  ? __flush_smp_call_function_queue+0x28c/0x740
[  130.103378]  __sysvec_apic_timer_interrupt+0xbb/0x330
[  130.103790]  sysvec_apic_timer_interrupt+0x6b/0x80
[  130.104181]  </IRQ>
[  130.104364]  <TASK>
[  130.104546]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  130.104957] RIP: 0010:oops_exit+0x0/0x50
[  130.105284] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57
[  130.106695] RSP: 0018:ffff88804728f650 EFLAGS: 00000202
[  130.107116] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f
[  130.107673] RDX: ffff888016d5d280 RSI: ffffffff812a3dca RDI: 0000000000000007
[  130.108224] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690
[  130.108781] R10: 0000000000000000 R11: 000000000000002c R12: ffff88804728f718
[  130.109336] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[  130.109894]  ? add_taint+0x5f/0xd0
[  130.110183]  ? oops_end+0x4a/0xe0
[  130.110476]  oops_end+0x65/0xe0
[  130.110751]  exc_general_protection+0x1a2/0x330
[  130.111138]  asm_exc_general_protection+0x26/0x30
[  130.111518] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.111891] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.113296] RSP: 0018:ffff88804728f7c0 EFLAGS: 00010212
[  130.113721] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  130.114276] RDX: ffff888016d5d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  130.114838] RBP: ffff88804728fa30 R08: ffff88806ce31340 R09: ffffe8ffffc15ef8
[  130.115392] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000
[  130.115945] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[  130.116507]  ? perf_tp_event+0x167/0xe70
[  130.116841]  ? __pfx_perf_tp_event+0x10/0x10
[  130.117198]  ? cpu_util.constprop.0+0x17d/0x340
[  130.117574]  ? __asan_memset+0x24/0x50
[  130.117887]  ? sched_balance_find_dst_group+0xa9a/0x1c00
[  130.118313]  ? lock_release+0xc8/0x290
[  130.118628]  ? __pfx_sched_balance_find_dst_group+0x10/0x10
[  130.119080]  ? __lock_acquire+0x694/0x1b70
[  130.119422]  ? perf_trace_run_bpf_submit+0xef/0x180
[  130.119825]  perf_trace_run_bpf_submit+0xef/0x180
[  130.120215]  perf_trace_lock_acquire+0x3c2/0x700
[  130.120597]  ? __pfx_perf_trace_lock_acquire+0x10/0x10
[  130.121016]  ? lock_acquire+0x15e/0x2f0
[  130.121336]  lock_acquire+0xc5/0x2f0
[  130.121634]  ? futex_private_hash_put+0x4c/0x2d0
[  130.122012]  ? futex_hash+0x2d8/0x390
[  130.122316]  ? lock_release+0xc8/0x290
[  130.122634]  futex_private_hash_put+0x5d/0x2d0
[  130.123001]  ? futex_private_hash_put+0x4c/0x2d0
[  130.123377]  futex_hash_put+0x3f/0x50
[  130.123682]  futex_wake+0x1bb/0x540
[  130.123978]  ? kernel_clone+0x204/0x7f0
[  130.124295]  ? __pfx_futex_wake+0x10/0x10
[  130.124626]  ? __pfx_kernel_clone+0x10/0x10
[  130.124967]  ? __lock_acquire+0x694/0x1b70
[  130.125305]  do_futex+0x26d/0x370
[  130.125584]  ? __pfx_do_futex+0x10/0x10
[  130.125902]  ? __pfx___do_sys_clone+0x10/0x10
[  130.126260]  ? find_held_lock+0x2b/0x80
[  130.126586]  __x64_sys_futex+0x1c9/0x4d0
[  130.126922]  ? __pfx___x64_sys_futex+0x10/0x10
[  130.127295]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  130.127715]  do_syscall_64+0xbf/0x360
[  130.128026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.128438] RIP: 0033:0x7fbd90880b19
[  130.128740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.130167] RSP: 002b:00007ffe476f7788 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.130771] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbd90880b19
[  130.131333] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbd90993f68
[  130.131896] RBP: 00007fbd90993f60 R08: 00007fbd8ddf6700 R09: 0000000000000000
[  130.132456] R10: 00007fbd8ddf6700 R11: 0000000000000246 R12: 00007fbd90998a68
[  130.133023] R13: 00007ffe476f7890 R14: 00007fbd90993f60 R15: 000000000001fb8e
[  130.133592]  </TASK>
[  130.133785] Modules linked in:
[  130.134049] ---[ end trace 0000000000000000 ]---
[  130.134418] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.134801] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.136229] RSP: 0018:ffff88804728f7c0 EFLAGS: 00010212
[  130.136648] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  130.137212] RDX: ffff888016d5d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  130.137774] RBP: ffff88804728fa30 R08: ffff88806ce31340 R09: ffffe8ffffc15ef8
[  130.138334] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000
[  130.138907] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[  130.139470] FS:  0000555555f8c400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  130.140104] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.140563] CR2: 0000555555f8dc18 CR3: 0000000044e52000 CR4: 0000000000350ef0
[  130.141126] Kernel panic - not syncing: Fatal exception in interrupt
[  130.141745] Kernel Offset: disabled
[  130.142035] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
11:10:27  Registers:
info registers vcpu 0
RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88804728f118
R8 =0000000000000000 R9 =ffffed10016ce046 R10=0000000000000000 R11=000000000000002c
R12=000000000000000d R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555f8c400 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe5100000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555555f8dc18 CR3=0000000044e52000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007fbd909677c000007fbd909677c8
XMM02=00007fbd909677e000007fbd909677c0 XMM03=00007fbd909677c800007fbd909677c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88806ce3de20 RCX=ffffffff816880fc RDX=ffff88801541d280
RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880184e76f8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1
R12=ffffed100d9c7bc5 R13=ffff88806ce3de28 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055556eb02400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe2c00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000561573bd17a8 CR3=00000000436ec000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000