Warning: Permanently added '[localhost]:64354' (ECDSA) to the list of known hosts. 2025/09/01 11:48:43 fuzzer started 2025/09/01 11:48:43 dialing manager at localhost:35473 syzkaller login: [ 50.682899] cgroup: Unknown subsys name 'net' [ 50.812765] cgroup: Unknown subsys name 'cpuset' [ 50.838098] cgroup: Unknown subsys name 'rlimit' 2025/09/01 11:48:54 syscalls: 2214 2025/09/01 11:48:54 code coverage: enabled 2025/09/01 11:48:54 comparison tracing: enabled 2025/09/01 11:48:54 extra coverage: enabled 2025/09/01 11:48:54 setuid sandbox: enabled 2025/09/01 11:48:54 namespace sandbox: enabled 2025/09/01 11:48:54 Android sandbox: enabled 2025/09/01 11:48:54 fault injection: enabled 2025/09/01 11:48:54 leak checking: enabled 2025/09/01 11:48:54 net packet injection: enabled 2025/09/01 11:48:54 net device setup: enabled 2025/09/01 11:48:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 11:48:54 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 11:48:54 USB emulation: enabled 2025/09/01 11:48:54 hci packet injection: enabled 2025/09/01 11:48:54 wifi device emulation: enabled 2025/09/01 11:48:54 802.15.4 emulation: enabled 2025/09/01 11:48:54 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 11:48:54 fetching corpus: 50, signal 20335/23939 (executing program) 2025/09/01 11:48:54 fetching corpus: 100, signal 29115/34211 (executing program) 2025/09/01 11:48:54 fetching corpus: 150, signal 39874/46223 (executing program) 2025/09/01 11:48:54 fetching corpus: 200, signal 47274/54849 (executing program) 2025/09/01 11:48:54 fetching corpus: 250, signal 52702/61424 (executing program) 2025/09/01 11:48:54 fetching corpus: 300, signal 57253/67107 (executing program) 2025/09/01 11:48:54 fetching corpus: 350, signal 62261/73114 (executing program) 2025/09/01 11:48:54 fetching corpus: 400, signal 65244/77173 (executing program) 2025/09/01 11:48:55 fetching corpus: 450, signal 68178/81142 (executing program) 2025/09/01 11:48:55 fetching corpus: 500, signal 72680/86413 (executing program) 2025/09/01 11:48:55 fetching corpus: 550, signal 76681/91158 (executing program) 2025/09/01 11:48:55 fetching corpus: 600, signal 78872/94263 (executing program) 2025/09/01 11:48:55 fetching corpus: 650, signal 80668/96982 (executing program) 2025/09/01 11:48:55 fetching corpus: 700, signal 83127/100255 (executing program) 2025/09/01 11:48:55 fetching corpus: 750, signal 85239/103168 (executing program) 2025/09/01 11:48:55 fetching corpus: 800, signal 86945/105666 (executing program) 2025/09/01 11:48:55 fetching corpus: 850, signal 88189/107738 (executing program) 2025/09/01 11:48:56 fetching corpus: 900, signal 90296/110480 (executing program) 2025/09/01 11:48:56 fetching corpus: 950, signal 92215/113076 (executing program) 2025/09/01 11:48:56 fetching corpus: 1000, signal 95466/116646 (executing program) 2025/09/01 11:48:56 fetching corpus: 1050, signal 96630/118556 (executing program) 2025/09/01 11:48:56 fetching corpus: 1100, signal 98512/120985 (executing program) 2025/09/01 11:48:56 fetching corpus: 1150, signal 100239/123302 (executing program) 2025/09/01 11:48:56 fetching corpus: 1200, signal 101469/125207 (executing program) 2025/09/01 11:48:56 fetching corpus: 1250, signal 103055/127403 (executing program) 2025/09/01 11:48:56 fetching corpus: 1300, signal 104734/129571 (executing program) 2025/09/01 11:48:56 fetching corpus: 1350, signal 106269/131675 (executing program) 2025/09/01 11:48:57 fetching corpus: 1400, signal 108118/133874 (executing program) 2025/09/01 11:48:57 fetching corpus: 1450, signal 108902/135285 (executing program) 2025/09/01 11:48:57 fetching corpus: 1500, signal 110347/137165 (executing program) 2025/09/01 11:48:57 fetching corpus: 1550, signal 111725/139008 (executing program) 2025/09/01 11:48:57 fetching corpus: 1600, signal 114005/141303 (executing program) 2025/09/01 11:48:57 fetching corpus: 1650, signal 115337/143018 (executing program) 2025/09/01 11:48:57 fetching corpus: 1700, signal 116191/144428 (executing program) 2025/09/01 11:48:57 fetching corpus: 1750, signal 117152/145833 (executing program) 2025/09/01 11:48:57 fetching corpus: 1800, signal 117962/147106 (executing program) 2025/09/01 11:48:58 fetching corpus: 1850, signal 118431/148185 (executing program) 2025/09/01 11:48:58 fetching corpus: 1900, signal 119299/149528 (executing program) 2025/09/01 11:48:58 fetching corpus: 1950, signal 120348/150915 (executing program) 2025/09/01 11:48:58 fetching corpus: 2000, signal 121375/152205 (executing program) 2025/09/01 11:48:58 fetching corpus: 2050, signal 122241/153421 (executing program) 2025/09/01 11:48:58 fetching corpus: 2100, signal 123026/154591 (executing program) 2025/09/01 11:48:58 fetching corpus: 2150, signal 124717/156210 (executing program) 2025/09/01 11:48:58 fetching corpus: 2200, signal 125423/157313 (executing program) 2025/09/01 11:48:58 fetching corpus: 2250, signal 126181/158410 (executing program) 2025/09/01 11:48:58 fetching corpus: 2300, signal 127350/159743 (executing program) 2025/09/01 11:48:58 fetching corpus: 2350, signal 127909/160734 (executing program) 2025/09/01 11:48:59 fetching corpus: 2400, signal 128917/161923 (executing program) 2025/09/01 11:48:59 fetching corpus: 2450, signal 129695/162964 (executing program) 2025/09/01 11:48:59 fetching corpus: 2500, signal 130404/163962 (executing program) 2025/09/01 11:48:59 fetching corpus: 2550, signal 131100/164959 (executing program) 2025/09/01 11:48:59 fetching corpus: 2600, signal 131846/165990 (executing program) 2025/09/01 11:48:59 fetching corpus: 2650, signal 132872/167061 (executing program) 2025/09/01 11:48:59 fetching corpus: 2700, signal 134582/168432 (executing program) 2025/09/01 11:48:59 fetching corpus: 2750, signal 135214/169318 (executing program) 2025/09/01 11:48:59 fetching corpus: 2800, signal 136174/170329 (executing program) 2025/09/01 11:48:59 fetching corpus: 2850, signal 137051/171309 (executing program) 2025/09/01 11:49:00 fetching corpus: 2900, signal 137642/172122 (executing program) 2025/09/01 11:49:00 fetching corpus: 2950, signal 138191/172956 (executing program) 2025/09/01 11:49:00 fetching corpus: 3000, signal 138780/173768 (executing program) 2025/09/01 11:49:00 fetching corpus: 3050, signal 139514/174585 (executing program) 2025/09/01 11:49:00 fetching corpus: 3100, signal 140226/175390 (executing program) 2025/09/01 11:49:00 fetching corpus: 3150, signal 140773/176137 (executing program) 2025/09/01 11:49:00 fetching corpus: 3200, signal 141197/176821 (executing program) 2025/09/01 11:49:00 fetching corpus: 3250, signal 141809/177531 (executing program) 2025/09/01 11:49:00 fetching corpus: 3300, signal 142272/178197 (executing program) 2025/09/01 11:49:00 fetching corpus: 3350, signal 143194/179007 (executing program) 2025/09/01 11:49:00 fetching corpus: 3400, signal 144109/179765 (executing program) 2025/09/01 11:49:01 fetching corpus: 3450, signal 144687/180415 (executing program) 2025/09/01 11:49:01 fetching corpus: 3500, signal 145257/181053 (executing program) 2025/09/01 11:49:01 fetching corpus: 3550, signal 146297/181893 (executing program) 2025/09/01 11:49:01 fetching corpus: 3600, signal 146874/182555 (executing program) 2025/09/01 11:49:01 fetching corpus: 3650, signal 147424/183153 (executing program) 2025/09/01 11:49:01 fetching corpus: 3700, signal 148471/183869 (executing program) 2025/09/01 11:49:01 fetching corpus: 3750, signal 149258/184503 (executing program) 2025/09/01 11:49:01 fetching corpus: 3800, signal 149753/185115 (executing program) 2025/09/01 11:49:01 fetching corpus: 3850, signal 150558/185713 (executing program) 2025/09/01 11:49:01 fetching corpus: 3900, signal 151427/186328 (executing program) 2025/09/01 11:49:02 fetching corpus: 3950, signal 151881/186815 (executing program) 2025/09/01 11:49:02 fetching corpus: 4000, signal 152419/187323 (executing program) 2025/09/01 11:49:02 fetching corpus: 4050, signal 152864/187799 (executing program) 2025/09/01 11:49:02 fetching corpus: 4100, signal 153207/188289 (executing program) 2025/09/01 11:49:02 fetching corpus: 4150, signal 153608/188795 (executing program) 2025/09/01 11:49:02 fetching corpus: 4200, signal 154581/189313 (executing program) 2025/09/01 11:49:02 fetching corpus: 4250, signal 155022/189811 (executing program) 2025/09/01 11:49:02 fetching corpus: 4300, signal 155457/190295 (executing program) 2025/09/01 11:49:02 fetching corpus: 4350, signal 156050/190748 (executing program) 2025/09/01 11:49:02 fetching corpus: 4400, signal 156533/191154 (executing program) 2025/09/01 11:49:03 fetching corpus: 4450, signal 157039/191619 (executing program) 2025/09/01 11:49:03 fetching corpus: 4500, signal 157464/192042 (executing program) 2025/09/01 11:49:03 fetching corpus: 4550, signal 157866/192467 (executing program) 2025/09/01 11:49:03 fetching corpus: 4600, signal 158614/192905 (executing program) 2025/09/01 11:49:03 fetching corpus: 4650, signal 158979/193288 (executing program) 2025/09/01 11:49:03 fetching corpus: 4700, signal 159682/193649 (executing program) 2025/09/01 11:49:03 fetching corpus: 4750, signal 160058/193873 (executing program) 2025/09/01 11:49:03 fetching corpus: 4800, signal 160544/193914 (executing program) 2025/09/01 11:49:03 fetching corpus: 4850, signal 160925/193925 (executing program) 2025/09/01 11:49:03 fetching corpus: 4900, signal 161321/193944 (executing program) 2025/09/01 11:49:04 fetching corpus: 4950, signal 161670/193949 (executing program) 2025/09/01 11:49:04 fetching corpus: 5000, signal 162058/193975 (executing program) 2025/09/01 11:49:04 fetching corpus: 5050, signal 162633/193977 (executing program) 2025/09/01 11:49:04 fetching corpus: 5100, signal 162986/193980 (executing program) 2025/09/01 11:49:04 fetching corpus: 5150, signal 163404/193982 (executing program) 2025/09/01 11:49:04 fetching corpus: 5200, signal 163879/193987 (executing program) 2025/09/01 11:49:04 fetching corpus: 5250, signal 164352/193992 (executing program) 2025/09/01 11:49:04 fetching corpus: 5300, signal 164904/194037 (executing program) 2025/09/01 11:49:04 fetching corpus: 5350, signal 165124/194048 (executing program) 2025/09/01 11:49:04 fetching corpus: 5400, signal 165414/194050 (executing program) 2025/09/01 11:49:04 fetching corpus: 5450, signal 165905/194054 (executing program) 2025/09/01 11:49:05 fetching corpus: 5500, signal 166284/194054 (executing program) 2025/09/01 11:49:05 fetching corpus: 5550, signal 166727/194056 (executing program) 2025/09/01 11:49:05 fetching corpus: 5600, signal 167176/194061 (executing program) 2025/09/01 11:49:05 fetching corpus: 5650, signal 167549/194063 (executing program) 2025/09/01 11:49:05 fetching corpus: 5700, signal 167870/194065 (executing program) 2025/09/01 11:49:05 fetching corpus: 5750, signal 168469/194077 (executing program) 2025/09/01 11:49:05 fetching corpus: 5800, signal 168832/194079 (executing program) 2025/09/01 11:49:05 fetching corpus: 5850, signal 169239/194110 (executing program) 2025/09/01 11:49:05 fetching corpus: 5900, signal 169597/194127 (executing program) 2025/09/01 11:49:05 fetching corpus: 5950, signal 169968/194179 (executing program) 2025/09/01 11:49:05 fetching corpus: 6000, signal 170668/194194 (executing program) 2025/09/01 11:49:06 fetching corpus: 6050, signal 170960/194214 (executing program) 2025/09/01 11:49:06 fetching corpus: 6100, signal 171523/194217 (executing program) 2025/09/01 11:49:06 fetching corpus: 6150, signal 171867/194231 (executing program) 2025/09/01 11:49:06 fetching corpus: 6200, signal 172304/194231 (executing program) 2025/09/01 11:49:06 fetching corpus: 6250, signal 172768/194246 (executing program) 2025/09/01 11:49:06 fetching corpus: 6300, signal 173159/194250 (executing program) 2025/09/01 11:49:06 fetching corpus: 6350, signal 173375/194259 (executing program) 2025/09/01 11:49:06 fetching corpus: 6400, signal 173686/194259 (executing program) 2025/09/01 11:49:06 fetching corpus: 6450, signal 174075/194271 (executing program) 2025/09/01 11:49:06 fetching corpus: 6500, signal 174367/194271 (executing program) 2025/09/01 11:49:06 fetching corpus: 6550, signal 174818/194271 (executing program) 2025/09/01 11:49:07 fetching corpus: 6600, signal 175221/194285 (executing program) 2025/09/01 11:49:07 fetching corpus: 6650, signal 175633/194285 (executing program) 2025/09/01 11:49:07 fetching corpus: 6700, signal 175861/194289 (executing program) 2025/09/01 11:49:07 fetching corpus: 6750, signal 176076/194292 (executing program) 2025/09/01 11:49:07 fetching corpus: 6800, signal 176381/194296 (executing program) 2025/09/01 11:49:07 fetching corpus: 6850, signal 176758/194298 (executing program) 2025/09/01 11:49:07 fetching corpus: 6900, signal 178825/194307 (executing program) 2025/09/01 11:49:07 fetching corpus: 6950, signal 179193/194308 (executing program) 2025/09/01 11:49:07 fetching corpus: 7000, signal 179835/194317 (executing program) 2025/09/01 11:49:07 fetching corpus: 7050, signal 180136/194322 (executing program) 2025/09/01 11:49:07 fetching corpus: 7100, signal 180380/194327 (executing program) 2025/09/01 11:49:07 fetching corpus: 7150, signal 180686/194347 (executing program) 2025/09/01 11:49:07 fetching corpus: 7200, signal 181015/194358 (executing program) 2025/09/01 11:49:07 fetching corpus: 7250, signal 181334/194374 (executing program) 2025/09/01 11:49:08 fetching corpus: 7300, signal 181784/194385 (executing program) 2025/09/01 11:49:08 fetching corpus: 7350, signal 182112/194399 (executing program) 2025/09/01 11:49:08 fetching corpus: 7400, signal 182395/194415 (executing program) 2025/09/01 11:49:08 fetching corpus: 7450, signal 182707/194446 (executing program) 2025/09/01 11:49:08 fetching corpus: 7500, signal 183036/194456 (executing program) 2025/09/01 11:49:08 fetching corpus: 7550, signal 183412/194462 (executing program) 2025/09/01 11:49:08 fetching corpus: 7600, signal 183696/194464 (executing program) 2025/09/01 11:49:08 fetching corpus: 7650, signal 184004/194539 (executing program) 2025/09/01 11:49:08 fetching corpus: 7700, signal 184261/194551 (executing program) 2025/09/01 11:49:08 fetching corpus: 7750, signal 184663/194551 (executing program) 2025/09/01 11:49:08 fetching corpus: 7800, signal 184869/194558 (executing program) 2025/09/01 11:49:08 fetching corpus: 7850, signal 185155/194563 (executing program) 2025/09/01 11:49:09 fetching corpus: 7900, signal 185379/194568 (executing program) 2025/09/01 11:49:09 fetching corpus: 7950, signal 185588/194576 (executing program) 2025/09/01 11:49:09 fetching corpus: 8000, signal 185900/194611 (executing program) 2025/09/01 11:49:09 fetching corpus: 8050, signal 186191/194629 (executing program) 2025/09/01 11:49:09 fetching corpus: 8100, signal 186481/194636 (executing program) 2025/09/01 11:49:09 fetching corpus: 8150, signal 187000/194636 (executing program) 2025/09/01 11:49:09 fetching corpus: 8200, signal 187182/194636 (executing program) 2025/09/01 11:49:09 fetching corpus: 8250, signal 187504/194636 (executing program) 2025/09/01 11:49:09 fetching corpus: 8300, signal 187809/194640 (executing program) 2025/09/01 11:49:09 fetching corpus: 8350, signal 188037/194642 (executing program) 2025/09/01 11:49:09 fetching corpus: 8400, signal 188260/194644 (executing program) 2025/09/01 11:49:09 fetching corpus: 8450, signal 188528/194651 (executing program) 2025/09/01 11:49:10 fetching corpus: 8500, signal 188831/194653 (executing program) 2025/09/01 11:49:10 fetching corpus: 8550, signal 189099/194655 (executing program) 2025/09/01 11:49:10 fetching corpus: 8600, signal 189439/194658 (executing program) 2025/09/01 11:49:10 fetching corpus: 8650, signal 189656/194666 (executing program) 2025/09/01 11:49:10 fetching corpus: 8700, signal 189863/194671 (executing program) 2025/09/01 11:49:10 fetching corpus: 8750, signal 190105/194671 (executing program) 2025/09/01 11:49:10 fetching corpus: 8800, signal 190512/194677 (executing program) 2025/09/01 11:49:10 fetching corpus: 8850, signal 190813/194680 (executing program) 2025/09/01 11:49:10 fetching corpus: 8900, signal 190967/194688 (executing program) 2025/09/01 11:49:10 fetching corpus: 8950, signal 191230/194691 (executing program) 2025/09/01 11:49:10 fetching corpus: 9000, signal 191433/194696 (executing program) 2025/09/01 11:49:10 fetching corpus: 9050, signal 191607/194709 (executing program) 2025/09/01 11:49:10 fetching corpus: 9080, signal 191753/194709 (executing program) 2025/09/01 11:49:10 fetching corpus: 9080, signal 191753/194709 (executing program) 2025/09/01 11:49:13 starting 8 fuzzer processes 11:49:13 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0) poll(&(0x7f0000000400)=[{r0}, {}, {}, {0xffffffffffffffff, 0x100}], 0x4, 0x2009) 11:49:13 executing program 6: mknod$loop(&(0x7f0000000140)='./file0\x00', 0x1000, 0x1) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x3, 0x0) 11:49:13 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfd, 0x2}, 0xc) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfd}, 0xc) 11:49:13 executing program 7: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) ioctl$PTP_ENABLE_PPS(r0, 0x40043d04, 0x0) 11:49:13 executing program 2: capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) 11:49:13 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000080)="f5", 0x1}], 0x1}}], 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x541b, &(0x7f00000006c0)={'wg2\x00'}) 11:49:13 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) fcntl$lock(r0, 0x25, &(0x7f0000000180)) fcntl$lock(r0, 0x25, &(0x7f0000000100)={0x2, 0x0, 0x0, 0x1}) 11:49:13 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$CDROMREADMODE1(r0, 0x5392, &(0x7f0000002380)) [ 80.494531] audit: type=1400 audit(1756727353.429:7): avc: denied { execmem } for pid=272 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 81.735535] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 81.739111] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 81.742329] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 81.748684] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 81.753101] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.754699] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 81.756844] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.758121] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 81.759876] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 81.761713] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.764510] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 81.766323] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 81.767611] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 81.772530] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 81.774473] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 81.775826] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.778719] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 81.784016] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.785529] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 81.788892] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 81.824546] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 81.826407] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 81.833909] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 81.836571] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 81.838455] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 81.840281] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 81.842549] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 81.846108] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 81.847340] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 81.848528] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 81.849807] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 81.854075] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 81.859683] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 81.860861] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 81.861682] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 81.866337] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 81.869481] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 81.873741] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 81.879099] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 81.880362] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 83.830451] Bluetooth: hci0: command tx timeout [ 83.830590] Bluetooth: hci1: command tx timeout [ 83.831227] Bluetooth: hci3: command tx timeout [ 83.895015] Bluetooth: hci2: command tx timeout [ 83.958349] Bluetooth: hci6: command tx timeout [ 83.958876] Bluetooth: hci5: command tx timeout [ 83.959778] Bluetooth: hci4: command tx timeout [ 83.960611] Bluetooth: hci7: command tx timeout [ 85.878193] Bluetooth: hci1: command tx timeout [ 85.878658] Bluetooth: hci3: command tx timeout [ 85.878899] Bluetooth: hci0: command tx timeout [ 85.942065] Bluetooth: hci2: command tx timeout [ 86.006061] Bluetooth: hci6: command tx timeout [ 86.006609] Bluetooth: hci5: command tx timeout [ 86.007167] Bluetooth: hci4: command tx timeout [ 86.007188] Bluetooth: hci7: command tx timeout [ 87.926051] Bluetooth: hci3: command tx timeout [ 87.926508] Bluetooth: hci1: command tx timeout [ 87.927137] Bluetooth: hci0: command tx timeout [ 87.991245] Bluetooth: hci2: command tx timeout [ 88.054037] Bluetooth: hci7: command tx timeout [ 88.054444] Bluetooth: hci6: command tx timeout [ 88.054502] Bluetooth: hci4: command tx timeout [ 88.054828] Bluetooth: hci5: command tx timeout [ 89.974046] Bluetooth: hci3: command tx timeout [ 89.974521] Bluetooth: hci0: command tx timeout [ 89.974919] Bluetooth: hci1: command tx timeout [ 90.038028] Bluetooth: hci2: command tx timeout [ 90.102026] Bluetooth: hci4: command tx timeout [ 90.102471] Bluetooth: hci6: command tx timeout [ 90.105012] Bluetooth: hci7: command tx timeout [ 90.105401] Bluetooth: hci5: command tx timeout [ 118.519396] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.520083] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.722540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.723213] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.865133] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.865762] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.087419] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.088791] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.110563] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.111281] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.269030] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.269648] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:49:52 executing program 7: openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = epoll_create(0x25) ioctl$int_out(r0, 0x2, &(0x7f0000000cc0)) 11:49:52 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'wlan0\x00', &(0x7f0000000000)=@ethtool_ringparam={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}) 11:49:52 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x3, 0x6, 0x5}, 0x14}}, 0x0) [ 119.445072] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.445683] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:49:52 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, 0x0) [ 119.478037] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=1539 sclass=netlink_xfrm_socket pid=3851 comm=syz-executor.7 11:49:52 executing program 7: syz_mount_image$tmpfs(0x0, &(0x7f0000000b40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000540), 0x0, &(0x7f0000000580)={[{@release_agent={'release_agent', 0x3d, './file0'}}, {@none}]}) 11:49:52 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, 0x0) [ 119.553912] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.554703] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.556440] cgroup: Need name or subsystem set 11:49:52 executing program 7: syz_mount_image$tmpfs(0x0, &(0x7f0000000b40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000540), 0x0, &(0x7f0000000580)={[{@release_agent={'release_agent', 0x3d, './file0'}}, {@none}]}) [ 119.601503] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.602887] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:49:52 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000240)={@remote, @private1, @empty, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1310018}) [ 119.651187] cgroup: Need name or subsystem set [ 119.656292] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.656848] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.748020] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.748654] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.798993] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.799580] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.865023] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.865627] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.919262] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.919864] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.949280] capability: warning: `syz-executor.2' uses deprecated v2 capabilities in a way that may be insecure [ 119.973474] audit: type=1400 audit(1756727392.908:8): avc: denied { open } for pid=3888 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 119.980154] audit: type=1400 audit(1756727392.908:9): avc: denied { kernel } for pid=3888 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.372741] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.373402] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.455627] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.456352] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.554303] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list 11:49:53 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x800448d4, &(0x7f0000000180)) 11:49:53 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1a000000", @ANYRES16=r1, @ANYBLOB="010000000000000000002100000004001f"], 0x38}}, 0x0) 11:49:53 executing program 7: syz_mount_image$tmpfs(0x0, &(0x7f0000000b40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000540), 0x0, &(0x7f0000000580)={[{@release_agent={'release_agent', 0x3d, './file0'}}, {@none}]}) 11:49:53 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r1, 0x1}, 0x14}}, 0x0) 11:49:53 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000240)={@remote, @private1, @empty, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1310018}) 11:49:53 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, 0x0) [ 120.595274] cgroup: Need name or subsystem set 11:49:53 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0) syz_emit_ethernet(0x2e, &(0x7f0000000100)={@local, @dev, @val={@void}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0) 11:49:53 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000080)="f5", 0x1}], 0x1}}], 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x541b, &(0x7f00000006c0)={'wg2\x00'}) 11:49:53 executing program 7: syz_mount_image$tmpfs(0x0, &(0x7f0000000b40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000540), 0x0, &(0x7f0000000580)={[{@release_agent={'release_agent', 0x3d, './file0'}}, {@none}]}) 11:49:53 executing program 0: r0 = memfd_create(&(0x7f00000000c0)='/dev/sr0\x00', 0x0) pwritev2(r0, &(0x7f00000023c0)=[{&(0x7f0000000100)="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", 0xfff}], 0x1, 0x1, 0x0, 0x0) 11:49:53 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000240)={@remote, @private1, @empty, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1310018}) 11:49:53 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000080)="f5", 0x1}], 0x1}}], 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x541b, &(0x7f00000006c0)={'wg2\x00'}) 11:49:53 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r1, 0x1}, 0x14}}, 0x0) 11:49:53 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, 0x0) [ 120.721533] cgroup: Need name or subsystem set 11:49:53 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1a000000", @ANYRES16=r1, @ANYBLOB="010000000000000000002100000004001f"], 0x38}}, 0x0) 11:49:53 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r1, 0x1}, 0x14}}, 0x0) 11:49:53 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000080)="f5", 0x1}], 0x1}}], 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x541b, &(0x7f00000006c0)={'wg2\x00'}) 11:49:53 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ptrace(0xffffffffffffffff, 0x0) kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x0, 0x0, 0x9, 0x0, 0x0, 0x5, 0x180, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x0, 0x1000, 0x0, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x141802, 0x0) io_setup(0x3, &(0x7f0000000040)=0x0) r2 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r3 = syz_open_dev$sg(0x0, 0x200, 0x0) dup2(0xffffffffffffffff, r3) ioctl$BLKTRACESETUP(r2, 0xc0481273, 0x0) io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000000)="fa", 0x1, 0x40}]) epoll_create(0x0) 11:49:53 executing program 1: syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@link_local, @remote, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "759a3d", 0x8, 0x11, 0x0, @ipv4={'\x00', '\xff\xff', @local}, @mcast2, {[], {0x0, 0x0, 0x8}}}}}}, 0x0) 11:49:53 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000240)={@remote, @private1, @empty, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1310018}) 11:49:53 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0) syz_emit_ethernet(0x2e, &(0x7f0000000100)={@local, @dev, @val={@void}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0) 11:49:53 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_netdev_private(r0, 0x89f6, &(0x7f0000000380)="a809f43a") [ 120.857276] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 120.858225] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 120.858803] CPU: 0 UID: 0 PID: 3956 Comm: syz-executor.1 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 120.859989] Tainted: [W]=WARN [ 120.860601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.862633] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.863783] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.868392] RSP: 0018:ffff88801628f600 EFLAGS: 00010212 [ 120.869654] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000 [ 120.870232] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 120.870811] RBP: ffff88801628f870 R08: ffff88806ce31340 R09: ffffe8ffffc151d8 [ 120.871407] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 120.871985] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.872578] FS: 00007fb0b61be700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 120.873234] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.873711] CR2: 0000001b2d323000 CR3: 000000000d741000 CR4: 0000000000350ef0 [ 120.874296] Call Trace: [ 120.874510] [ 120.874708] ? __pfx_perf_tp_event+0x10/0x10 [ 120.875104] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.875520] perf_trace_run_bpf_submit+0xef/0x180 [ 120.875928] perf_trace_lock+0x337/0x5d0 [ 120.876283] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.876675] ? lock_acquire+0x15e/0x2f0 [ 120.877009] ? futex_ref_get+0x48/0x300 [ 120.877342] ? futex_ref_get+0x114/0x300 [ 120.877677] ? futex_hash+0x15c/0x390 [ 120.877997] lock_release+0x1ab/0x290 [ 120.878317] ? futex_hash+0x15c/0x390 [ 120.878634] futex_ref_get+0x119/0x300 [ 120.878958] ? futex_hash+0x15c/0x390 [ 120.879296] futex_hash+0x70/0x390 [ 120.879597] futex_wait_setup+0xae/0x550 [ 120.879942] __futex_wait+0x151/0x300 [ 120.880279] ? __pfx___futex_wait+0x10/0x10 [ 120.880642] ? __pfx_futex_wake_mark+0x10/0x10 [ 120.881040] futex_wait+0xde/0x380 [ 120.881345] ? __pfx_futex_wait+0x10/0x10 [ 120.881692] ? perf_trace_lock+0xb5/0x5d0 [ 120.882043] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 120.882475] do_futex+0x2ee/0x370 [ 120.882773] ? __pfx_do_futex+0x10/0x10 [ 120.883110] ? do_raw_spin_lock+0x123/0x260 [ 120.883494] __x64_sys_futex+0x1c9/0x4d0 [ 120.883836] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 120.884290] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.884675] ? kcov_ioctl+0x386/0x6c0 [ 120.884994] ? fput+0x6a/0x100 [ 120.885290] do_syscall_64+0xbf/0x360 [ 120.885608] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.886032] RIP: 0033:0x7fb0b8c48b19 [ 120.886337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.887799] RSP: 002b:00007fb0b61be218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.888422] RAX: ffffffffffffffda RBX: 00007fb0b8d5bf68 RCX: 00007fb0b8c48b19 [ 120.889004] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb0b8d5bf68 [ 120.889586] RBP: 00007fb0b8d5bf60 R08: 00007fb0b61be700 R09: 0000000000000000 [ 120.890175] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb0b8d5bf6c [ 120.890751] R13: 00007ffeafd2aaff R14: 00007fb0b61be300 R15: 0000000000022000 [ 120.891344] [ 120.891554] Modules linked in: [ 120.891828] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 120.892743] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 120.893428] CPU: 1 UID: 0 PID: 3957 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 120.894365] Tainted: [D]=DIE, [W]=WARN [ 120.894668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.895313] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.895701] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.897130] RSP: 0018:ffff88801bcff800 EFLAGS: 00010212 [ 120.897552] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 120.898115] RDX: ffff88801607d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 120.898672] RBP: ffff88801bcffa70 R08: ffff88806cf31340 R09: ffffe8ffffd151d8 [ 120.899231] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 120.899792] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 120.900368] FS: 0000555588679400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 120.901000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.901467] CR2: 000055558867ac18 CR3: 000000001e63f000 CR4: 0000000000350ef0 [ 120.902028] Call Trace: [ 120.902236] [ 120.902423] ? arch_scale_cpu_capacity+0x17/0xa0 [ 120.902815] ? __pfx_perf_tp_event+0x10/0x10 [ 120.903172] ? __asan_memset+0x24/0x50 [ 120.903503] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.903874] ? __pfx___mutex_lock+0x10/0x10 [ 120.904235] ? perf_trace_lock+0xb5/0x5d0 [ 120.904571] ? kvm_sched_clock_read+0x16/0x30 [ 120.904937] ? sched_clock+0x37/0x60 [ 120.905246] ? sched_clock_cpu+0x6c/0x4e0 [ 120.905584] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.905987] perf_trace_run_bpf_submit+0xef/0x180 [ 120.906384] perf_trace_lock+0x337/0x5d0 [ 120.906711] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.907078] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.907451] ? get_futex_key+0x592/0x14a0 [ 120.907783] ? futex_ref_get+0x114/0x300 [ 120.908112] ? futex_hash+0x15c/0x390 [ 120.908418] lock_release+0x1ab/0x290 [ 120.908729] ? futex_hash+0x15c/0x390 [ 120.909033] futex_ref_get+0x119/0x300 [ 120.909346] ? futex_hash+0x15c/0x390 [ 120.909652] futex_hash+0x70/0x390 [ 120.909940] futex_wake+0x143/0x540 [ 120.910240] ? put_pid+0x1f/0x30 [ 120.910518] ? kernel_clone+0x204/0x7f0 [ 120.910836] ? __pfx_futex_wake+0x10/0x10 [ 120.911171] ? __pfx_kernel_clone+0x10/0x10 [ 120.911517] ? perf_trace_lock+0xb5/0x5d0 [ 120.911851] ? __pfx___handle_mm_fault+0x10/0x10 [ 120.912253] do_futex+0x26d/0x370 [ 120.912545] ? __pfx_do_futex+0x10/0x10 [ 120.912868] ? __pfx___do_sys_clone+0x10/0x10 [ 120.913225] ? handle_mm_fault+0x590/0x9b0 [ 120.913571] __x64_sys_futex+0x1c9/0x4d0 [ 120.913900] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.914271] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 120.914695] do_syscall_64+0xbf/0x360 [ 120.915003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.915415] RIP: 0033:0x7f0a85961b19 [ 120.915710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.917145] RSP: 002b:00007ffd648fbaa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.917745] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0a85961b19 [ 120.918307] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0a85a74f68 [ 120.918868] RBP: 00007f0a85a74f60 R08: 00007f0a82ed7700 R09: 0000000000000000 [ 120.919433] R10: 00007f0a82ed7700 R11: 0000000000000246 R12: 00007f0a85a79060 [ 120.919992] R13: 00007ffd648fbbb0 R14: 00007f0a85a74f60 R15: 000000000001d7b8 [ 120.920569] [ 120.920765] Modules linked in: [ 120.921028] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI [ 120.921942] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 120.922559] CPU: 0 UID: 0 PID: 3956 Comm: syz-executor.1 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 120.923524] Tainted: [D]=DIE, [W]=WARN [ 120.923839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.924514] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.924902] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.926364] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 120.926810] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 120.927385] RDX: ffff88800f26d280 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 120.927974] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc151d8 [ 120.928562] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 120.929152] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000 [ 120.929736] FS: 00007fb0b61be700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 120.930386] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.930858] CR2: 0000001b2d323000 CR3: 000000000d741000 CR4: 0000000000350ef0 [ 120.931434] Call Trace: [ 120.931650] [ 120.931838] ? __pfx_perf_tp_event+0x10/0x10 [ 120.932214] ? sched_clock_cpu+0x6c/0x4e0 [ 120.932561] ? lock_is_held_type+0x9e/0x120 [ 120.932924] ? lock_is_held_type+0x9e/0x120 [ 120.933287] ? perf_trace_lock+0xb5/0x5d0 [ 120.933629] ? perf_trace_lock+0xb5/0x5d0 [ 120.933975] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.934353] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.934732] ? check_preempt_wakeup_fair+0x406/0x950 [ 120.935154] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.935566] perf_trace_run_bpf_submit+0xef/0x180 [ 120.935968] perf_trace_lock+0x337/0x5d0 [ 120.936317] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.936696] ? find_held_lock+0x2b/0x80 [ 120.937029] ? hrtimer_interrupt+0x114/0x830 [ 120.937408] lock_release+0x1ab/0x290 [ 120.937726] ktime_get_update_offsets_now+0xab/0x3c0 [ 120.938148] ? hrtimer_interrupt+0x114/0x830 [ 120.938513] ? __pfx_lapic_next_deadline+0x10/0x10 [ 120.938929] hrtimer_interrupt+0x114/0x830 [ 120.939286] __sysvec_apic_timer_interrupt+0xbb/0x330 [ 120.939717] sysvec_apic_timer_interrupt+0x6b/0x80 [ 120.940136] [ 120.940327] [ 120.940516] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 120.940950] RIP: 0010:oops_exit+0x0/0x50 [ 120.941294] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 120.942786] RSP: 0018:ffff88801628f490 EFLAGS: 00000202 [ 120.943221] RAX: 00000000000260dc RBX: 0000000000000212 RCX: ffffc9000088e000 [ 120.943797] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 120.944393] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 120.944974] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801628f558 [ 120.945548] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 120.946127] ? oops_end+0x4a/0xe0 [ 120.946432] oops_end+0x65/0xe0 [ 120.946716] exc_general_protection+0x1a2/0x330 [ 120.947110] asm_exc_general_protection+0x26/0x30 [ 120.947505] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.947896] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.949363] RSP: 0018:ffff88801628f600 EFLAGS: 00010212 [ 120.949799] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000 [ 120.950373] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 120.950951] RBP: ffff88801628f870 R08: ffff88806ce31340 R09: ffffe8ffffc151d8 [ 120.951528] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 120.952111] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.952695] ? perf_tp_event+0x167/0xe70 [ 120.953046] ? __pfx_perf_tp_event+0x10/0x10 [ 120.953436] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.953864] perf_trace_run_bpf_submit+0xef/0x180 [ 120.954267] perf_trace_lock+0x337/0x5d0 [ 120.954613] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.954996] ? lock_acquire+0x15e/0x2f0 [ 120.955325] ? futex_ref_get+0x48/0x300 [ 120.955653] ? futex_ref_get+0x114/0x300 [ 120.955989] ? futex_hash+0x15c/0x390 [ 120.956318] lock_release+0x1ab/0x290 [ 120.956644] ? futex_hash+0x15c/0x390 [ 120.956966] futex_ref_get+0x119/0x300 [ 120.957287] ? futex_hash+0x15c/0x390 [ 120.957614] futex_hash+0x70/0x390 [ 120.957919] futex_wait_setup+0xae/0x550 [ 120.958257] __futex_wait+0x151/0x300 [ 120.958592] ? __pfx___futex_wait+0x10/0x10 [ 120.958971] ? __pfx_futex_wake_mark+0x10/0x10 [ 120.959375] futex_wait+0xde/0x380 [ 120.959685] ? __pfx_futex_wait+0x10/0x10 [ 120.960052] ? perf_trace_lock+0xb5/0x5d0 [ 120.960418] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 120.960859] do_futex+0x2ee/0x370 [ 120.961163] ? __pfx_do_futex+0x10/0x10 [ 120.961503] ? do_raw_spin_lock+0x123/0x260 [ 120.961883] __x64_sys_futex+0x1c9/0x4d0 [ 120.962229] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 120.962671] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.963059] ? kcov_ioctl+0x386/0x6c0 [ 120.963401] ? fput+0x6a/0x100 [ 120.963661] do_syscall_64+0xbf/0x360 [ 120.963957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.964357] RIP: 0033:0x7fb0b8c48b19 [ 120.964646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.965992] RSP: 002b:00007fb0b61be218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.966560] RAX: ffffffffffffffda RBX: 00007fb0b8d5bf68 RCX: 00007fb0b8c48b19 [ 120.967097] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb0b8d5bf68 [ 120.967631] RBP: 00007fb0b8d5bf60 R08: 00007fb0b61be700 R09: 0000000000000000 [ 120.968171] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb0b8d5bf6c [ 120.968703] R13: 00007ffeafd2aaff R14: 00007fb0b61be300 R15: 0000000000022000 [ 120.969243] [ 120.969424] Modules linked in: [ 120.969675] ---[ end trace 0000000000000000 ]--- [ 120.969676] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#4] SMP KASAN NOPTI [ 120.970032] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.970879] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 120.971223] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.971883] CPU: 1 UID: 0 PID: 3957 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 120.973233] RSP: 0018:ffff88801628f600 EFLAGS: 00010212 [ 120.974139] Tainted: [D]=DIE, [W]=WARN [ 120.974145] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.974537] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000 [ 120.974833] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.975445] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 120.975989] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.976346] RBP: ffff88801628f870 R08: ffff88806ce31340 R09: ffffe8ffffc151d8 [ 120.976892] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012 [ 120.978241] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 120.978782] [ 120.979177] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.979722] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 120.979860] FS: 00007fb0b61be700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 120.980408] RDX: ffff88801607d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 120.980940] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.981550] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd151d8 [ 120.982087] CR2: 0000001b2d323000 CR3: 000000000d741000 CR4: 0000000000350ef0 [ 120.982530] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 120.983072] Kernel panic - not syncing: Fatal exception in interrupt [ 122.026882] Shutting down cpus with NMI [ 122.028429] Kernel Offset: disabled [ 122.028707] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 11:49:53 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88801628eef0 R8 =0000000000000000 R9 =ffffed1001655046 R10=0000000000000020 R11=0000000065646f43 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb0b61be700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe3a00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d323000 CR3=000000000d741000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fb0b8d2f7c000007fb0b8d2f7c8 XMM02=00007fb0b8d2f7e000007fb0b8d2f7c0 XMM03=00007fb0b8d2f7c800007fb0b8d2f7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffffff84be3c0e RDX=0000000000000000 RSI=0000000000000004 RDI=ffffffff8787b044 RBP=ffffffff8787b044 RSP=ffff88801bcff590 R8 =0000000000000000 R9 =fffffbfff0f0f608 R10=ffffffff8787b047 R11=202c746c75616620 R12=1ffff1100379feb7 R13=0000000000000007 R14=fffffbfff0f0f608 R15=ffff88801bcff5e8 RIP=ffffffff81b00866 RFL=00000012 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555588679400 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe4f00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055558867ac18 CR3=000000001e63f000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f0a85a487c000007f0a85a487c8 XMM02=00007f0a85a487e000007f0a85a487c0 XMM03=00007f0a85a487c800007f0a85a487c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000