Warning: Permanently added '[localhost]:64709' (ECDSA) to the list of known hosts. 2025/09/01 11:56:15 fuzzer started 2025/09/01 11:56:16 dialing manager at localhost:35473 syzkaller login: [ 52.631272] cgroup: Unknown subsys name 'net' [ 52.684699] cgroup: Unknown subsys name 'cpuset' [ 52.698930] cgroup: Unknown subsys name 'rlimit' 2025/09/01 11:56:25 syscalls: 2214 2025/09/01 11:56:25 code coverage: enabled 2025/09/01 11:56:25 comparison tracing: enabled 2025/09/01 11:56:25 extra coverage: enabled 2025/09/01 11:56:25 setuid sandbox: enabled 2025/09/01 11:56:25 namespace sandbox: enabled 2025/09/01 11:56:25 Android sandbox: enabled 2025/09/01 11:56:25 fault injection: enabled 2025/09/01 11:56:25 leak checking: enabled 2025/09/01 11:56:25 net packet injection: enabled 2025/09/01 11:56:25 net device setup: enabled 2025/09/01 11:56:25 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 11:56:25 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 11:56:25 USB emulation: enabled 2025/09/01 11:56:25 hci packet injection: enabled 2025/09/01 11:56:25 wifi device emulation: enabled 2025/09/01 11:56:25 802.15.4 emulation: enabled 2025/09/01 11:56:25 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 11:56:25 fetching corpus: 50, signal 11603/15361 (executing program) 2025/09/01 11:56:26 fetching corpus: 100, signal 27129/32308 (executing program) 2025/09/01 11:56:26 fetching corpus: 150, signal 35363/41941 (executing program) 2025/09/01 11:56:26 fetching corpus: 200, signal 41620/49484 (executing program) 2025/09/01 11:56:26 fetching corpus: 250, signal 51167/59981 (executing program) 2025/09/01 11:56:26 fetching corpus: 300, signal 55381/65370 (executing program) 2025/09/01 11:56:26 fetching corpus: 350, signal 59054/70119 (executing program) 2025/09/01 11:56:26 fetching corpus: 400, signal 62082/74274 (executing program) 2025/09/01 11:56:26 fetching corpus: 450, signal 66084/79194 (executing program) 2025/09/01 11:56:26 fetching corpus: 500, signal 68246/82439 (executing program) 2025/09/01 11:56:26 fetching corpus: 550, signal 73287/88184 (executing program) 2025/09/01 11:56:26 fetching corpus: 600, signal 75711/91526 (executing program) 2025/09/01 11:56:26 fetching corpus: 650, signal 79842/96268 (executing program) 2025/09/01 11:56:26 fetching corpus: 700, signal 82571/99755 (executing program) 2025/09/01 11:56:27 fetching corpus: 750, signal 84441/102470 (executing program) 2025/09/01 11:56:27 fetching corpus: 800, signal 86063/104928 (executing program) 2025/09/01 11:56:27 fetching corpus: 850, signal 88179/107777 (executing program) 2025/09/01 11:56:27 fetching corpus: 900, signal 90862/111036 (executing program) 2025/09/01 11:56:27 fetching corpus: 950, signal 92554/113428 (executing program) 2025/09/01 11:56:27 fetching corpus: 1000, signal 94684/116148 (executing program) 2025/09/01 11:56:27 fetching corpus: 1050, signal 95877/118106 (executing program) 2025/09/01 11:56:27 fetching corpus: 1100, signal 97636/120480 (executing program) 2025/09/01 11:56:28 fetching corpus: 1150, signal 99716/123025 (executing program) 2025/09/01 11:56:28 fetching corpus: 1200, signal 101382/125266 (executing program) 2025/09/01 11:56:28 fetching corpus: 1250, signal 102621/127140 (executing program) 2025/09/01 11:56:28 fetching corpus: 1300, signal 103964/129055 (executing program) 2025/09/01 11:56:28 fetching corpus: 1350, signal 105487/131085 (executing program) 2025/09/01 11:56:28 fetching corpus: 1400, signal 106797/132965 (executing program) 2025/09/01 11:56:28 fetching corpus: 1450, signal 108277/134875 (executing program) 2025/09/01 11:56:28 fetching corpus: 1500, signal 109159/136351 (executing program) 2025/09/01 11:56:28 fetching corpus: 1550, signal 110165/137900 (executing program) 2025/09/01 11:56:28 fetching corpus: 1600, signal 111772/139822 (executing program) 2025/09/01 11:56:29 fetching corpus: 1650, signal 112988/141461 (executing program) 2025/09/01 11:56:29 fetching corpus: 1700, signal 114306/143142 (executing program) 2025/09/01 11:56:29 fetching corpus: 1750, signal 115056/144468 (executing program) 2025/09/01 11:56:29 fetching corpus: 1800, signal 116783/146307 (executing program) 2025/09/01 11:56:29 fetching corpus: 1850, signal 117705/147668 (executing program) 2025/09/01 11:56:29 fetching corpus: 1900, signal 118673/149044 (executing program) 2025/09/01 11:56:29 fetching corpus: 1950, signal 120116/150695 (executing program) 2025/09/01 11:56:29 fetching corpus: 2000, signal 122223/152688 (executing program) 2025/09/01 11:56:29 fetching corpus: 2050, signal 122825/153780 (executing program) 2025/09/01 11:56:29 fetching corpus: 2100, signal 124028/155165 (executing program) 2025/09/01 11:56:29 fetching corpus: 2150, signal 125047/156500 (executing program) 2025/09/01 11:56:30 fetching corpus: 2200, signal 126441/157996 (executing program) 2025/09/01 11:56:30 fetching corpus: 2250, signal 127172/159092 (executing program) 2025/09/01 11:56:30 fetching corpus: 2300, signal 128026/160230 (executing program) 2025/09/01 11:56:30 fetching corpus: 2350, signal 129343/161616 (executing program) 2025/09/01 11:56:30 fetching corpus: 2400, signal 130422/162844 (executing program) 2025/09/01 11:56:30 fetching corpus: 2450, signal 131316/163960 (executing program) 2025/09/01 11:56:30 fetching corpus: 2500, signal 131938/164903 (executing program) 2025/09/01 11:56:30 fetching corpus: 2550, signal 132627/165866 (executing program) 2025/09/01 11:56:30 fetching corpus: 2600, signal 133797/167067 (executing program) 2025/09/01 11:56:31 fetching corpus: 2650, signal 134515/167992 (executing program) 2025/09/01 11:56:31 fetching corpus: 2700, signal 135218/168948 (executing program) 2025/09/01 11:56:31 fetching corpus: 2750, signal 136053/169941 (executing program) 2025/09/01 11:56:31 fetching corpus: 2800, signal 136843/170858 (executing program) 2025/09/01 11:56:31 fetching corpus: 2850, signal 137675/171771 (executing program) 2025/09/01 11:56:31 fetching corpus: 2900, signal 138281/172607 (executing program) 2025/09/01 11:56:31 fetching corpus: 2950, signal 139161/173545 (executing program) 2025/09/01 11:56:31 fetching corpus: 3000, signal 139870/174324 (executing program) 2025/09/01 11:56:31 fetching corpus: 3050, signal 140357/175094 (executing program) 2025/09/01 11:56:31 fetching corpus: 3100, signal 141151/175955 (executing program) 2025/09/01 11:56:32 fetching corpus: 3150, signal 141631/176671 (executing program) 2025/09/01 11:56:32 fetching corpus: 3200, signal 142238/177422 (executing program) 2025/09/01 11:56:32 fetching corpus: 3250, signal 143053/178220 (executing program) 2025/09/01 11:56:32 fetching corpus: 3300, signal 143738/179032 (executing program) 2025/09/01 11:56:32 fetching corpus: 3350, signal 144403/179786 (executing program) 2025/09/01 11:56:32 fetching corpus: 3400, signal 145016/180456 (executing program) 2025/09/01 11:56:32 fetching corpus: 3450, signal 145657/181118 (executing program) 2025/09/01 11:56:32 fetching corpus: 3500, signal 146275/181738 (executing program) 2025/09/01 11:56:32 fetching corpus: 3550, signal 147187/182447 (executing program) 2025/09/01 11:56:32 fetching corpus: 3600, signal 147545/183036 (executing program) 2025/09/01 11:56:32 fetching corpus: 3650, signal 148064/183624 (executing program) 2025/09/01 11:56:32 fetching corpus: 3700, signal 148551/184282 (executing program) 2025/09/01 11:56:33 fetching corpus: 3750, signal 149194/184916 (executing program) 2025/09/01 11:56:33 fetching corpus: 3800, signal 149659/185513 (executing program) 2025/09/01 11:56:33 fetching corpus: 3850, signal 150182/186137 (executing program) 2025/09/01 11:56:33 fetching corpus: 3900, signal 150791/186745 (executing program) 2025/09/01 11:56:33 fetching corpus: 3950, signal 151505/187348 (executing program) 2025/09/01 11:56:33 fetching corpus: 4000, signal 153409/188089 (executing program) 2025/09/01 11:56:33 fetching corpus: 4050, signal 153738/188596 (executing program) 2025/09/01 11:56:33 fetching corpus: 4100, signal 154187/189123 (executing program) 2025/09/01 11:56:33 fetching corpus: 4150, signal 154862/189672 (executing program) 2025/09/01 11:56:33 fetching corpus: 4200, signal 155255/190149 (executing program) 2025/09/01 11:56:33 fetching corpus: 4250, signal 156024/190669 (executing program) 2025/09/01 11:56:34 fetching corpus: 4300, signal 156395/191143 (executing program) 2025/09/01 11:56:34 fetching corpus: 4350, signal 156765/191577 (executing program) 2025/09/01 11:56:34 fetching corpus: 4400, signal 157135/192031 (executing program) 2025/09/01 11:56:34 fetching corpus: 4450, signal 157562/192456 (executing program) 2025/09/01 11:56:34 fetching corpus: 4500, signal 157904/192870 (executing program) 2025/09/01 11:56:34 fetching corpus: 4550, signal 158292/193267 (executing program) 2025/09/01 11:56:34 fetching corpus: 4600, signal 158575/193650 (executing program) 2025/09/01 11:56:34 fetching corpus: 4650, signal 159175/194063 (executing program) 2025/09/01 11:56:34 fetching corpus: 4700, signal 159644/194444 (executing program) 2025/09/01 11:56:34 fetching corpus: 4750, signal 160001/194858 (executing program) 2025/09/01 11:56:34 fetching corpus: 4800, signal 160629/194890 (executing program) 2025/09/01 11:56:35 fetching corpus: 4850, signal 161196/194936 (executing program) 2025/09/01 11:56:35 fetching corpus: 4900, signal 161587/194939 (executing program) 2025/09/01 11:56:35 fetching corpus: 4950, signal 161981/194956 (executing program) 2025/09/01 11:56:35 fetching corpus: 5000, signal 162518/194968 (executing program) 2025/09/01 11:56:35 fetching corpus: 5050, signal 162977/194969 (executing program) 2025/09/01 11:56:35 fetching corpus: 5100, signal 163334/194973 (executing program) 2025/09/01 11:56:35 fetching corpus: 5150, signal 163727/195027 (executing program) 2025/09/01 11:56:35 fetching corpus: 5200, signal 164189/195044 (executing program) 2025/09/01 11:56:35 fetching corpus: 5250, signal 164523/195056 (executing program) 2025/09/01 11:56:35 fetching corpus: 5300, signal 164934/195077 (executing program) 2025/09/01 11:56:35 fetching corpus: 5350, signal 165208/195081 (executing program) 2025/09/01 11:56:36 fetching corpus: 5400, signal 165580/195108 (executing program) 2025/09/01 11:56:36 fetching corpus: 5450, signal 166019/195109 (executing program) 2025/09/01 11:56:36 fetching corpus: 5500, signal 166894/195121 (executing program) 2025/09/01 11:56:36 fetching corpus: 5550, signal 167425/195133 (executing program) 2025/09/01 11:56:36 fetching corpus: 5600, signal 167895/195143 (executing program) 2025/09/01 11:56:36 fetching corpus: 5650, signal 168406/195156 (executing program) 2025/09/01 11:56:36 fetching corpus: 5700, signal 168974/195159 (executing program) 2025/09/01 11:56:36 fetching corpus: 5750, signal 169387/195164 (executing program) 2025/09/01 11:56:36 fetching corpus: 5800, signal 169695/195176 (executing program) 2025/09/01 11:56:36 fetching corpus: 5850, signal 170282/195191 (executing program) 2025/09/01 11:56:36 fetching corpus: 5900, signal 170600/195194 (executing program) 2025/09/01 11:56:36 fetching corpus: 5950, signal 170901/195206 (executing program) 2025/09/01 11:56:37 fetching corpus: 6000, signal 171242/195223 (executing program) 2025/09/01 11:56:37 fetching corpus: 6050, signal 171902/195231 (executing program) 2025/09/01 11:56:37 fetching corpus: 6100, signal 172256/195239 (executing program) 2025/09/01 11:56:37 fetching corpus: 6150, signal 172750/195241 (executing program) 2025/09/01 11:56:37 fetching corpus: 6200, signal 173196/195241 (executing program) 2025/09/01 11:56:37 fetching corpus: 6250, signal 173958/195243 (executing program) 2025/09/01 11:56:37 fetching corpus: 6300, signal 174288/195252 (executing program) 2025/09/01 11:56:37 fetching corpus: 6350, signal 174881/195328 (executing program) 2025/09/01 11:56:37 fetching corpus: 6400, signal 175422/195394 (executing program) 2025/09/01 11:56:37 fetching corpus: 6450, signal 175699/195395 (executing program) 2025/09/01 11:56:37 fetching corpus: 6500, signal 176049/195417 (executing program) 2025/09/01 11:56:38 fetching corpus: 6550, signal 176477/195418 (executing program) 2025/09/01 11:56:38 fetching corpus: 6600, signal 176815/195426 (executing program) 2025/09/01 11:56:38 fetching corpus: 6650, signal 177088/195434 (executing program) 2025/09/01 11:56:38 fetching corpus: 6700, signal 177328/195434 (executing program) 2025/09/01 11:56:38 fetching corpus: 6750, signal 177886/195436 (executing program) 2025/09/01 11:56:38 fetching corpus: 6800, signal 178372/195453 (executing program) 2025/09/01 11:56:38 fetching corpus: 6850, signal 178879/195459 (executing program) 2025/09/01 11:56:38 fetching corpus: 6900, signal 179180/195493 (executing program) 2025/09/01 11:56:38 fetching corpus: 6950, signal 179548/195500 (executing program) 2025/09/01 11:56:38 fetching corpus: 7000, signal 180118/195507 (executing program) 2025/09/01 11:56:38 fetching corpus: 7050, signal 180483/195513 (executing program) 2025/09/01 11:56:39 fetching corpus: 7100, signal 180990/195513 (executing program) 2025/09/01 11:56:39 fetching corpus: 7150, signal 181238/195513 (executing program) 2025/09/01 11:56:39 fetching corpus: 7200, signal 181529/195556 (executing program) 2025/09/01 11:56:39 fetching corpus: 7250, signal 181896/195556 (executing program) 2025/09/01 11:56:39 fetching corpus: 7300, signal 182162/195560 (executing program) 2025/09/01 11:56:39 fetching corpus: 7350, signal 182506/195565 (executing program) 2025/09/01 11:56:39 fetching corpus: 7400, signal 182777/195576 (executing program) 2025/09/01 11:56:39 fetching corpus: 7450, signal 183009/195584 (executing program) 2025/09/01 11:56:39 fetching corpus: 7500, signal 183308/195591 (executing program) 2025/09/01 11:56:39 fetching corpus: 7550, signal 183536/195604 (executing program) 2025/09/01 11:56:39 fetching corpus: 7600, signal 183836/195631 (executing program) 2025/09/01 11:56:39 fetching corpus: 7650, signal 184194/195635 (executing program) 2025/09/01 11:56:40 fetching corpus: 7700, signal 184503/195647 (executing program) 2025/09/01 11:56:40 fetching corpus: 7750, signal 184737/195654 (executing program) 2025/09/01 11:56:40 fetching corpus: 7800, signal 184988/195654 (executing program) 2025/09/01 11:56:40 fetching corpus: 7850, signal 185547/195664 (executing program) 2025/09/01 11:56:40 fetching corpus: 7900, signal 185814/195678 (executing program) 2025/09/01 11:56:40 fetching corpus: 7950, signal 186267/195681 (executing program) 2025/09/01 11:56:40 fetching corpus: 8000, signal 186585/195683 (executing program) 2025/09/01 11:56:40 fetching corpus: 8050, signal 186795/195684 (executing program) 2025/09/01 11:56:40 fetching corpus: 8100, signal 187057/195684 (executing program) 2025/09/01 11:56:40 fetching corpus: 8150, signal 187322/195684 (executing program) 2025/09/01 11:56:40 fetching corpus: 8200, signal 187588/195688 (executing program) 2025/09/01 11:56:41 fetching corpus: 8250, signal 187912/195688 (executing program) 2025/09/01 11:56:41 fetching corpus: 8300, signal 188114/195692 (executing program) 2025/09/01 11:56:41 fetching corpus: 8350, signal 188370/195692 (executing program) 2025/09/01 11:56:41 fetching corpus: 8400, signal 188704/195694 (executing program) 2025/09/01 11:56:41 fetching corpus: 8450, signal 188874/195695 (executing program) 2025/09/01 11:56:41 fetching corpus: 8500, signal 189042/195696 (executing program) 2025/09/01 11:56:41 fetching corpus: 8550, signal 189310/195699 (executing program) 2025/09/01 11:56:41 fetching corpus: 8600, signal 189579/195707 (executing program) 2025/09/01 11:56:41 fetching corpus: 8650, signal 189816/195710 (executing program) 2025/09/01 11:56:41 fetching corpus: 8700, signal 190044/195716 (executing program) 2025/09/01 11:56:41 fetching corpus: 8750, signal 190269/195719 (executing program) 2025/09/01 11:56:41 fetching corpus: 8800, signal 190452/195730 (executing program) 2025/09/01 11:56:42 fetching corpus: 8850, signal 190669/195738 (executing program) 2025/09/01 11:56:42 fetching corpus: 8900, signal 190869/195739 (executing program) 2025/09/01 11:56:42 fetching corpus: 8950, signal 191091/195740 (executing program) 2025/09/01 11:56:42 fetching corpus: 9000, signal 191274/195745 (executing program) 2025/09/01 11:56:42 fetching corpus: 9050, signal 191547/195761 (executing program) 2025/09/01 11:56:42 fetching corpus: 9100, signal 191933/195768 (executing program) 2025/09/01 11:56:42 fetching corpus: 9150, signal 192345/195773 (executing program) 2025/09/01 11:56:42 fetching corpus: 9200, signal 192573/195777 (executing program) 2025/09/01 11:56:42 fetching corpus: 9249, signal 192802/195777 (executing program) 2025/09/01 11:56:42 fetching corpus: 9249, signal 192802/195777 (executing program) 2025/09/01 11:56:45 starting 8 fuzzer processes 11:56:45 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$bt_hci(r0, 0x0, 0x1, 0x0, &(0x7f0000000000)) 11:56:45 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000000)=0xd55, 0x4) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c) 11:56:45 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) 11:56:45 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000040)={0x14, 0x16, 0xffffffffffffffff, 0x0, 0x0, "", [@generic='\n']}, 0x14}], 0x1}, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) 11:56:45 executing program 2: recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000010c0)) 11:56:45 executing program 4: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc0305302, &(0x7f0000000080)={0x0, 0x1}) [ 81.899981] audit: type=1400 audit(1756727805.411:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:56:45 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) fcntl$lock(r0, 0x25, &(0x7f0000000180)={0x0, 0x0, 0x80000000}) fcntl$lock(r0, 0x7, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xf04a, 0xffffffffffffffff}) 11:56:45 executing program 7: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000040)={0x2}) [ 83.101264] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 83.103889] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 83.106202] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 83.110402] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 83.113351] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.194480] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 83.197405] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 83.199111] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 83.200360] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 83.203863] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 83.207796] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 83.208779] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 83.212193] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 83.221862] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 83.221962] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 83.226352] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 83.244849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 83.253450] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 83.255034] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 83.256953] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 83.258965] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 83.260291] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 83.271638] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 83.273662] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 83.276260] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 83.276465] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 83.294904] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 83.320200] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 83.320351] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 83.321494] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 83.326268] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 83.328688] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 83.332700] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 83.335444] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 83.340854] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 83.342641] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 83.350337] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 83.361314] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 83.372867] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 83.380689] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 85.135176] Bluetooth: hci0: command tx timeout [ 85.263984] Bluetooth: hci3: command tx timeout [ 85.326153] Bluetooth: hci2: command tx timeout [ 85.326197] Bluetooth: hci1: command tx timeout [ 85.390148] Bluetooth: hci5: command tx timeout [ 85.390684] Bluetooth: hci4: command tx timeout [ 85.456181] Bluetooth: hci6: command tx timeout [ 85.456847] Bluetooth: hci7: command tx timeout [ 87.182118] Bluetooth: hci0: command tx timeout [ 87.310148] Bluetooth: hci3: command tx timeout [ 87.374237] Bluetooth: hci1: command tx timeout [ 87.374674] Bluetooth: hci2: command tx timeout [ 87.439095] Bluetooth: hci5: command tx timeout [ 87.439125] Bluetooth: hci4: command tx timeout [ 87.502239] Bluetooth: hci7: command tx timeout [ 87.502320] Bluetooth: hci6: command tx timeout [ 89.230142] Bluetooth: hci0: command tx timeout [ 89.358263] Bluetooth: hci3: command tx timeout [ 89.423036] Bluetooth: hci1: command tx timeout [ 89.423313] Bluetooth: hci2: command tx timeout [ 89.486120] Bluetooth: hci4: command tx timeout [ 89.486529] Bluetooth: hci5: command tx timeout [ 89.550731] Bluetooth: hci7: command tx timeout [ 89.551175] Bluetooth: hci6: command tx timeout [ 91.278177] Bluetooth: hci0: command tx timeout [ 91.408079] Bluetooth: hci3: command tx timeout [ 91.470485] Bluetooth: hci1: command tx timeout [ 91.470518] Bluetooth: hci2: command tx timeout [ 91.535109] Bluetooth: hci5: command tx timeout [ 91.535166] Bluetooth: hci4: command tx timeout [ 91.598172] Bluetooth: hci6: command tx timeout [ 91.598189] Bluetooth: hci7: command tx timeout [ 119.408155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.408776] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.455030] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.455600] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.573377] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.573943] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.733353] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.733954] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:57:23 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000240)={'wlan1\x00', &(0x7f0000000200)=@ethtool_perm_addr={0x8}}) [ 119.864787] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.865407] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:57:23 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, 0x0, 0x5) 11:57:23 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, 0x0, 0x5) 11:57:23 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, 0x0, 0x5) [ 120.024454] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.025095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.046142] audit: type=1400 audit(1756727843.553:8): avc: denied { open } for pid=3825 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.049176] audit: type=1400 audit(1756727843.553:9): avc: denied { kernel } for pid=3825 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 11:57:23 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, 0x0, 0x5) [ 120.132703] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.133507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:57:23 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000040)={0x14, 0x16, 0xffffffffffffffff, 0x0, 0x0, "", [@generic='\n']}, 0x14}], 0x1}, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) 11:57:23 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_adj\x00') read$char_usb(r0, 0x0, 0x0) 11:57:23 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_adj\x00') read$char_usb(r0, 0x0, 0x0) [ 120.286480] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.287320] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.335029] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.335727] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.426147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.426752] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.599098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.599668] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.671497] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.672107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.726108] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 120.957742] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.958355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.990245] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.990852] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.014782] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.015570] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.066610] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.067210] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:57:24 executing program 4: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc0305302, &(0x7f0000000080)={0x0, 0x1}) 11:57:24 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4) sendmmsg$inet6(r0, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000000c0)="e8", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000000500)="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", 0x861}], 0x1}}], 0x2, 0x0) 11:57:24 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r1) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') setns(r2, 0x0) 11:57:24 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x32, &(0x7f00000000c0)={0x0, @initdev, @multicast1}, &(0x7f0000000140)=0x2) 11:57:24 executing program 2: r0 = gettid() rt_sigqueueinfo(r0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffa}) 11:57:24 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_adj\x00') read$char_usb(r0, 0x0, 0x0) 11:57:24 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000040)={0x14, 0x16, 0xffffffffffffffff, 0x0, 0x0, "", [@generic='\n']}, 0x14}], 0x1}, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) 11:57:24 executing program 3: msgrcv(0xffffffffffffffff, 0x0, 0xa6, 0x0, 0x0) 11:57:24 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000001540), 0x8) setsockopt$inet6_opts(r0, 0x29, 0x39, 0x0, 0x0) 11:57:24 executing program 7: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_adj\x00') read$char_usb(r0, 0x0, 0x0) 11:57:24 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r1, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0) 11:57:24 executing program 0: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x44840, 0x0) r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000080)) openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x44840, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0x0) io_cancel(0x0, 0x0, 0x0) ioctl$DVD_AUTH(r0, 0x5390, 0x0) 11:57:24 executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000540)={0x0, @rc, @qipcrtr, @xdp}) 11:57:24 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000040)={0x14, 0x16, 0xffffffffffffffff, 0x0, 0x0, "", [@generic='\n']}, 0x14}], 0x1}, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) 11:57:24 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f0000005ec0)=[{{&(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c, 0x0, 0x0, &(0x7f0000005d00)}}], 0x1, 0x2000c004) [ 121.342060] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 121.343056] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 121.343930] CPU: 0 UID: 0 PID: 3937 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 121.346180] Tainted: [W]=WARN [ 121.346837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 121.348497] RIP: 0010:perf_tp_event+0x175/0xe70 [ 121.349866] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 121.353129] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 121.353528] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 121.354047] RDX: ffff888016e2d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 121.354566] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16180 [ 121.355090] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 121.355608] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000 [ 121.356129] FS: 00007f4c7e3ff700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 121.356714] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.357146] CR2: 0000555593d56c18 CR3: 0000000046034000 CR4: 0000000000350ef0 [ 121.357664] Call Trace: [ 121.357859] [ 121.358029] ? __pfx_perf_tp_event+0x10/0x10 [ 121.358364] ? __lock_acquire+0x694/0x1b70 [ 121.358684] ? trace_softirq_raise+0xbe/0x100 [ 121.359030] ? lock_acquire+0x15e/0x2f0 [ 121.359326] ? select_task_rq_fair+0x2b6/0x38b0 [ 121.359674] ? find_held_lock+0x2b/0x80 [ 121.359977] ? select_task_rq_fair+0x48c/0x38b0 [ 121.360322] ? __pfx_call_function_single_prep_ipi+0x10/0x10 [ 121.360751] ? trace_ipi_send_cpu.constprop.0+0x158/0x1c0 [ 121.361170] ? __smp_call_single_queue+0x15b/0x2f0 [ 121.361540] ? __pfx___smp_call_single_queue+0x10/0x10 [ 121.361933] ? perf_trace_run_bpf_submit+0xef/0x180 [ 121.362305] ? lock_release+0xc8/0x290 [ 121.362599] perf_trace_run_bpf_submit+0xef/0x180 [ 121.362965] perf_trace_lock+0x337/0x5d0 [ 121.363273] ? __pfx_perf_trace_lock+0x10/0x10 [ 121.363621] ? lock_acquire+0x15e/0x2f0 [ 121.363920] ? hrtimer_interrupt+0x114/0x830 [ 121.364248] ? hrtimer_interrupt+0x114/0x830 [ 121.364574] lock_release+0x1ab/0x290 [ 121.364865] ktime_get_update_offsets_now+0xab/0x3c0 [ 121.365249] ? hrtimer_interrupt+0x114/0x830 [ 121.365575] ? __pfx_rcu_core+0x10/0x10 [ 121.365878] hrtimer_interrupt+0x114/0x830 [ 121.366191] ? __local_bh_enable+0x7b/0x90 [ 121.366509] ? handle_softirqs+0x50c/0x770 [ 121.366830] __sysvec_apic_timer_interrupt+0xbb/0x330 [ 121.367218] sysvec_apic_timer_interrupt+0x6b/0x80 [ 121.367588] [ 121.367758] [ 121.367930] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 121.368318] RIP: 0010:__sanitizer_cov_trace_pc+0x4b/0x80 [ 121.368720] Code: 74 1d a9 00 00 0f 00 75 16 a9 00 00 f0 00 74 05 e9 1a 60 4a 03 8b 82 14 15 00 00 85 c0 75 05 e9 0b 60 4a 03 8b 82 f0 14 00 00 <83> f8 02 75 f0 48 8b 8a f8 14 00 00 8b 92 f4 14 00 00 48 8b 01 48 [ 121.370036] RSP: 0018:ffff8880168d7220 EFLAGS: 00000246 [ 121.370450] RAX: 0000000000000002 RBX: ffffffff84c20763 RCX: ffffc900044ac000 [ 121.371004] RDX: ffff888016e2d280 RSI: ffffffff84b8c352 RDI: 0000000000000004 [ 121.371553] RBP: ffff8880168d7500 R08: 206c6172656e6567 R09: 69746365746f7270 [ 121.372106] R10: 0000000000000022 R11: 202c746c75616620 R12: ffff8880168d7500 [ 121.372656] R13: ffff8880168d7520 R14: ffffffff84c20740 R15: 0000000000000022 [ 121.373220] ? string+0x202/0x4e0 [ 121.373504] string+0x202/0x4e0 [ 121.373776] ? __pfx_string+0x10/0x10 [ 121.374084] ? insn_get_addr_ref+0x489/0x940 [ 121.374439] ? __pfx_insn_get_addr_ref+0x10/0x10 [ 121.374818] vsnprintf+0x66c/0x1160 [ 121.375117] ? __pfx_vsnprintf+0x10/0x10 [ 121.375445] ? get_kernel_gp_address+0xc7/0x230 [ 121.375818] ? __pfx_get_kernel_gp_address+0x10/0x10 [ 121.376224] snprintf+0xbe/0x100 [ 121.376501] ? __pfx_snprintf+0x10/0x10 [ 121.376823] ? search_exception_tables+0x37/0x50 [ 121.377206] ? fixup_exception+0x10d/0xc00 [ 121.377550] exc_general_protection+0x319/0x330 [ 121.377924] asm_exc_general_protection+0x26/0x30 [ 121.378302] RIP: 0010:perf_tp_event+0x175/0xe70 [ 121.378676] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 121.380073] RSP: 0018:ffff8880168d7600 EFLAGS: 00010212 [ 121.380485] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc900044ac000 [ 121.381041] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 121.381595] RBP: ffff8880168d7870 R08: ffff88806ce31340 R09: ffffe8ffffc16180 [ 121.382148] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 121.382701] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 121.383260] ? perf_tp_event+0x167/0xe70 [ 121.383590] ? __pfx_perf_tp_event+0x10/0x10 [ 121.383965] ? perf_trace_run_bpf_submit+0xef/0x180 [ 121.384361] perf_trace_run_bpf_submit+0xef/0x180 [ 121.384748] perf_trace_lock+0x337/0x5d0 [ 121.385077] ? __pfx_perf_trace_lock+0x10/0x10 [ 121.385444] ? lock_acquire+0x15e/0x2f0 [ 121.385760] ? futex_ref_get+0x48/0x300 [ 121.386073] ? futex_ref_get+0x114/0x300 [ 121.386390] ? futex_hash+0x15c/0x390 [ 121.386692] lock_release+0x1ab/0x290 [ 121.386995] ? futex_hash+0x15c/0x390 [ 121.387300] futex_ref_get+0x119/0x300 [ 121.387605] ? futex_hash+0x15c/0x390 [ 121.387906] futex_hash+0x70/0x390 [ 121.388192] futex_wait_setup+0xae/0x550 [ 121.388523] __futex_wait+0x151/0x300 [ 121.388835] ? __pfx___futex_wait+0x10/0x10 [ 121.389188] ? __pfx_futex_wake_mark+0x10/0x10 [ 121.389560] futex_wait+0xde/0x380 [ 121.389852] ? __pfx_futex_wait+0x10/0x10 [ 121.390184] ? perf_trace_lock+0xb5/0x5d0 [ 121.390512] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 121.390923] do_futex+0x2ee/0x370 [ 121.391204] ? __pfx_do_futex+0x10/0x10 [ 121.391521] ? do_raw_spin_lock+0x123/0x260 [ 121.391866] __x64_sys_futex+0x1c9/0x4d0 [ 121.392188] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 121.392603] ? __pfx___x64_sys_futex+0x10/0x10 [ 121.392974] ? kcov_ioctl+0x386/0x6c0 [ 121.393277] ? fput+0x6a/0x100 [ 121.393548] do_syscall_64+0xbf/0x360 [ 121.393849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.394253] RIP: 0033:0x7f4c80e89b19 [ 121.394545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.395948] RSP: 002b:00007f4c7e3ff218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.396533] RAX: ffffffffffffffda RBX: 00007f4c80f9cf68 RCX: 00007f4c80e89b19 [ 121.397116] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4c80f9cf68 [ 121.397676] RBP: 00007f4c80f9cf60 R08: 00007f4c7e3ff700 R09: 0000000000000000 [ 121.398223] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4c80f9cf6c [ 121.398775] R13: 00007ffc950f383f R14: 00007f4c7e3ff300 R15: 0000000000022000 [ 121.399333] [ 121.399519] Modules linked in: [ 121.399776] ---[ end trace 0000000000000000 ]--- [ 121.400141] RIP: 0010:perf_tp_event+0x175/0xe70 [ 121.400512] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 121.402069] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 121.402487] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 121.403038] RDX: ffff888016e2d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 121.403593] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16180 [ 121.404144] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 121.404694] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000 [ 121.405255] FS: 00007f4c7e3ff700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 121.405881] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.406330] CR2: 0000555593d56c18 CR3: 0000000046034000 CR4: 0000000000350ef0 [ 121.406885] Kernel panic - not syncing: Fatal exception in interrupt [ 121.407563] Kernel Offset: disabled [ 121.407849] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 11:57:25 Registers: info registers vcpu 0 RAX=000000000000005d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88806ce083d8 R8 =0000000000000000 R9 =ffffed10016d4046 R10=000000000000005d R11=30376578302f4952 R12=000000000000005d R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f4c7e3ff700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe5000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555593d56c18 CR3=0000000046034000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f4c80f707c000007f4c80f707c8 XMM02=00007f4c80f707e000007f4c80f707c0 XMM03=00007f4c80f707c800007f4c80f707c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=1ffff11001b30b82 RBX=0000000000000002 RCX=0000000000000000 RDX=0000000000000006 RSI=ffffffff849532df RDI=ffff88800d985c14 RBP=000000000000000c RSP=ffff88800afcf930 R8 =ffffffff84c93ca0 R9 =0000000000000000 R10=000000000000000c R11=0000000000000000 R12=000000000000003c R13=ffff88800d985c10 R14=dffffc0000000000 R15=ffff88800d983088 RIP=ffffffff84953309 RFL=00000217 [----APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe3300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055557697fc58 CR3=000000001f1dc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000005000000020000000000000000 XMM03=00000012000000110000001000000009 XMM04=77654e2e726567616e614d100182ff18 XMM05=cd79b884fcac22b884fc32962782fc79 XMM06=fc947eb581fc9a7db581fc6625c281fc XMM07=81fc3063b984fcd675b884fccc7dd781 XMM08=d781fcde6ab984fcac7cb884fc5f822c XMM09=034381fcaf932782fc6224c281fc1d7e XMM10=031fb884fc837cd781fcda97be81fc7f XMM11=fc912db884fcc92bb884fc8025b884fc XMM12=00006876b884fc52f34281fcb72db884 XMM13=30785c6a64615f6d6f6f273d29303030 XMM14=73755f7261686324646165720a292730 XMM15=0a29307830202c307830202c30722862