Warning: Permanently added '[localhost]:12091' (ECDSA) to the list of known hosts. 2025/08/29 08:21:36 fuzzer started 2025/08/29 08:21:37 dialing manager at localhost:43077 syzkaller login: [ 50.978091] cgroup: Unknown subsys name 'net' [ 51.050191] cgroup: Unknown subsys name 'cpuset' [ 51.071136] cgroup: Unknown subsys name 'rlimit' 2025/08/29 08:21:48 syscalls: 2214 2025/08/29 08:21:48 code coverage: enabled 2025/08/29 08:21:48 comparison tracing: enabled 2025/08/29 08:21:48 extra coverage: enabled 2025/08/29 08:21:48 setuid sandbox: enabled 2025/08/29 08:21:48 namespace sandbox: enabled 2025/08/29 08:21:48 Android sandbox: enabled 2025/08/29 08:21:48 fault injection: enabled 2025/08/29 08:21:48 leak checking: enabled 2025/08/29 08:21:48 net packet injection: enabled 2025/08/29 08:21:48 net device setup: enabled 2025/08/29 08:21:48 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 08:21:48 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 08:21:48 USB emulation: enabled 2025/08/29 08:21:48 hci packet injection: enabled 2025/08/29 08:21:48 wifi device emulation: enabled 2025/08/29 08:21:48 802.15.4 emulation: enabled 2025/08/29 08:21:48 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 08:21:48 fetching corpus: 50, signal 25567/28408 (executing program) 2025/08/29 08:21:48 fetching corpus: 100, signal 39152/42497 (executing program) 2025/08/29 08:21:48 fetching corpus: 150, signal 43437/47506 (executing program) 2025/08/29 08:21:48 fetching corpus: 200, signal 51658/55833 (executing program) 2025/08/29 08:21:48 fetching corpus: 250, signal 57075/61391 (executing program) 2025/08/29 08:21:48 fetching corpus: 300, signal 61418/65742 (executing program) 2025/08/29 08:21:49 fetching corpus: 350, signal 66804/70781 (executing program) 2025/08/29 08:21:49 fetching corpus: 400, signal 69737/73604 (executing program) 2025/08/29 08:21:49 fetching corpus: 450, signal 72777/76435 (executing program) 2025/08/29 08:21:49 fetching corpus: 500, signal 76277/79589 (executing program) 2025/08/29 08:21:49 fetching corpus: 550, signal 78898/81756 (executing program) 2025/08/29 08:21:49 fetching corpus: 600, signal 80592/83221 (executing program) 2025/08/29 08:21:50 fetching corpus: 650, signal 82407/84662 (executing program) 2025/08/29 08:21:50 fetching corpus: 700, signal 84038/85924 (executing program) 2025/08/29 08:21:50 fetching corpus: 750, signal 85171/86746 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87007 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87081 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87154 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87252 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87334 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87424 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87524 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87605 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87701 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87776 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87852 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/87936 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88027 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88117 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88209 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88289 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88362 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88445 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88531 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88625 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88712 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88810 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88884 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/88970 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/89063 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/89159 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/89260 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/89285 (executing program) 2025/08/29 08:21:50 fetching corpus: 760, signal 85471/89285 (executing program) 2025/08/29 08:21:52 starting 8 fuzzer processes 08:21:52 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) 08:21:52 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/image_size', 0x40181, 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000000)='FROZEN\x00', 0x7) 08:21:52 executing program 6: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x3}, 0x14}}, 0x0) 08:21:53 executing program 7: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x20, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c06, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "6cf498c3946d29f0713195d08f25c5228d4a8f96b728207a606675f9df9d971fcd1efeb1943a5d9f80c5c84e5c197633d513aa8e1e7d66b973757ed5563ba177", "ec659863872098cae90d16c9857ce5575761a487998a6f95781bdfbd1275bf97a883bc536f5770a2b3f80400d747c688e27143155ca0c6e2286c87fa09209302", "f2af2e994d8c408523a7cc17fd47da63d762e4a53dec39b4b353b5b248213bca"}) 08:21:53 executing program 2: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) truncate(&(0x7f0000000140)='./file0\x00', 0x0) 08:21:53 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) [ 66.584194] audit: type=1400 audit(1756455713.083:7): avc: denied { execmem } for pid=272 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 08:21:53 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt(r0, 0x5, 0x0, 0x0, &(0x7f0000001140)) 08:21:53 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006a40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000006300)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}], 0x1, 0x0) dup3(r0, r1, 0x0) recvmmsg$unix(r0, &(0x7f0000002e40)=[{{0x0, 0x0, 0x0}}], 0x50a, 0x0, 0x0) [ 67.752556] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 67.756957] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 67.760101] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 67.764157] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 67.766947] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.940548] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 67.946131] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 67.952062] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.960652] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.963330] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 68.024226] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 68.030491] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 68.032156] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 68.038907] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 68.041416] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 68.041446] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 68.046307] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 68.048248] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 68.050135] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 68.051556] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 68.053038] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 68.054919] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 68.059011] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 68.065166] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 68.065998] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 68.068975] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 68.069057] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 68.072456] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 68.075321] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 68.075369] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 68.083744] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 68.089136] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 68.107936] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 68.111933] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 68.113386] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 68.118959] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 68.119511] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 68.124871] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 68.138471] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 68.140141] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 69.847139] Bluetooth: hci0: command tx timeout [ 70.037891] Bluetooth: hci1: command tx timeout [ 70.165738] Bluetooth: hci2: command tx timeout [ 70.165885] Bluetooth: hci6: command tx timeout [ 70.166965] Bluetooth: hci5: command tx timeout [ 70.230168] Bluetooth: hci3: command tx timeout [ 70.231372] Bluetooth: hci7: command tx timeout [ 70.231637] Bluetooth: hci4: command tx timeout [ 71.893769] Bluetooth: hci0: command tx timeout [ 72.086629] Bluetooth: hci1: command tx timeout [ 72.213974] Bluetooth: hci5: command tx timeout [ 72.214350] Bluetooth: hci2: command tx timeout [ 72.215703] Bluetooth: hci6: command tx timeout [ 72.277718] Bluetooth: hci7: command tx timeout [ 72.278095] Bluetooth: hci3: command tx timeout [ 72.280627] Bluetooth: hci4: command tx timeout [ 73.941672] Bluetooth: hci0: command tx timeout [ 74.134353] Bluetooth: hci1: command tx timeout [ 74.261778] Bluetooth: hci2: command tx timeout [ 74.262159] Bluetooth: hci6: command tx timeout [ 74.262504] Bluetooth: hci5: command tx timeout [ 74.326509] Bluetooth: hci4: command tx timeout [ 74.326903] Bluetooth: hci3: command tx timeout [ 74.327243] Bluetooth: hci7: command tx timeout [ 75.989717] Bluetooth: hci0: command tx timeout [ 76.181749] Bluetooth: hci1: command tx timeout [ 76.309680] Bluetooth: hci5: command tx timeout [ 76.310071] Bluetooth: hci6: command tx timeout [ 76.310435] Bluetooth: hci2: command tx timeout [ 76.373728] Bluetooth: hci3: command tx timeout [ 76.374198] Bluetooth: hci7: command tx timeout [ 76.374795] Bluetooth: hci4: command tx timeout [ 105.811761] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.812439] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.882007] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.883098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.996476] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.997319] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.084245] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.084916] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.156701] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.157356] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.277561] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.278206] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.364738] audit: type=1400 audit(1756455752.862:8): avc: denied { open } for pid=3854 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 106.371284] audit: type=1400 audit(1756455752.862:9): avc: denied { kernel } for pid=3854 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 106.417744] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 106.419218] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.419978] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.487124] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.488215] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.593823] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.594440] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.598702] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.599336] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.730182] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.731324] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.890145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.891288] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.964296] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.965400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.043199] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.044122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.095520] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.096248] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.144522] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.145184] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:22:33 executing program 2: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) truncate(&(0x7f0000000140)='./file0\x00', 0x0) 08:22:33 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) 08:22:33 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) 08:22:33 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/image_size', 0x40181, 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000000)='FROZEN\x00', 0x7) 08:22:33 executing program 7: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x20, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c06, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "6cf498c3946d29f0713195d08f25c5228d4a8f96b728207a606675f9df9d971fcd1efeb1943a5d9f80c5c84e5c197633d513aa8e1e7d66b973757ed5563ba177", "ec659863872098cae90d16c9857ce5575761a487998a6f95781bdfbd1275bf97a883bc536f5770a2b3f80400d747c688e27143155ca0c6e2286c87fa09209302", "f2af2e994d8c408523a7cc17fd47da63d762e4a53dec39b4b353b5b248213bca"}) 08:22:33 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006a40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000006300)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}], 0x1, 0x0) dup3(r0, r1, 0x0) recvmmsg$unix(r0, &(0x7f0000002e40)=[{{0x0, 0x0, 0x0}}], 0x50a, 0x0, 0x0) 08:22:33 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt(r0, 0x5, 0x0, 0x0, &(0x7f0000001140)) 08:22:33 executing program 6: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x3}, 0x14}}, 0x0) [ 107.467529] kmemleak: Found object by alias at 0x607f1a63972c [ 107.467551] CPU: 1 UID: 0 PID: 3897 Comm: syz-executor.3 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 107.467569] Tainted: [W]=WARN [ 107.467572] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.467579] Call Trace: [ 107.467583] [ 107.467588] dump_stack_lvl+0xca/0x120 [ 107.467618] __lookup_object+0x94/0xb0 [ 107.467634] delete_object_full+0x27/0x70 [ 107.467649] free_percpu+0x30/0x1160 [ 107.467665] ? arch_uprobe_clear_state+0x16/0x140 [ 107.467685] futex_hash_free+0x38/0xc0 [ 107.467699] mmput+0x2d3/0x390 [ 107.467718] do_exit+0x79d/0x2970 [ 107.467731] ? signal_wake_up_state+0x85/0x120 [ 107.467746] ? zap_other_threads+0x2b9/0x3a0 [ 107.467762] ? __pfx_do_exit+0x10/0x10 [ 107.467774] ? do_group_exit+0x1c3/0x2a0 [ 107.467787] ? lock_release+0xc8/0x290 [ 107.467804] do_group_exit+0xd3/0x2a0 [ 107.467818] __x64_sys_exit_group+0x3e/0x50 [ 107.467831] x64_sys_call+0x18c5/0x18d0 [ 107.467847] do_syscall_64+0xbf/0x360 [ 107.467858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.467869] RIP: 0033:0x7f49ac91ab19 [ 107.467878] Code: Unable to access opcode bytes at 0x7f49ac91aaef. [ 107.467883] RSP: 002b:00007ffefa4b4cc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 107.467894] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f49ac91ab19 [ 107.467901] RDX: 00007f49ac8cd72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 107.467908] RBP: 0000000000000000 R08: 0000001b2d2214f8 R09: 0000000000000000 [ 107.467915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 107.467921] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffefa4b4db0 [ 107.467937] [ 107.467940] kmemleak: Object (percpu) 0x607f1a639728 (size 8): [ 107.467947] kmemleak: comm "kworker/u9:0", pid 25, jiffies 4294773267 [ 107.467954] kmemleak: min_count = 1 [ 107.467957] kmemleak: count = 0 [ 107.467961] kmemleak: flags = 0x21 [ 107.467964] kmemleak: checksum = 0 [ 107.467968] kmemleak: backtrace: [ 107.467972] pcpu_alloc_noprof+0x87a/0x1170 [ 107.467986] fib_nh_common_init+0x30/0xd0 [ 107.467999] fib6_nh_init+0x968/0x1a00 [ 107.468009] ip6_route_info_create_nh+0x530/0xf80 [ 107.468019] ip6_route_add.part.0+0x59/0x170 [ 107.468028] ip6_route_add+0x48/0x60 [ 107.468037] addrconf_add_mroute+0x12d/0x190 [ 107.468048] addrconf_add_dev+0x148/0x1c0 [ 107.468060] addrconf_dev_config+0x1e9/0x430 [ 107.468074] addrconf_notify+0xa70/0x1920 [ 107.468089] notifier_call_chain+0xc0/0x360 [ 107.468099] call_netdevice_notifiers_info+0xbe/0x140 [ 107.468111] netif_state_change+0x157/0x330 [ 107.468119] linkwatch_do_dev+0x111/0x150 [ 107.468130] __linkwatch_run_queue+0x2ab/0x710 [ 107.468140] linkwatch_event+0x4e/0x70 08:22:34 executing program 2: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) truncate(&(0x7f0000000140)='./file0\x00', 0x0) 08:22:34 executing program 6: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x3}, 0x14}}, 0x0) 08:22:34 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/image_size', 0x40181, 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000000)='FROZEN\x00', 0x7) 08:22:34 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt(r0, 0x5, 0x0, 0x0, &(0x7f0000001140)) 08:22:34 executing program 7: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x20, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c06, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "6cf498c3946d29f0713195d08f25c5228d4a8f96b728207a606675f9df9d971fcd1efeb1943a5d9f80c5c84e5c197633d513aa8e1e7d66b973757ed5563ba177", "ec659863872098cae90d16c9857ce5575761a487998a6f95781bdfbd1275bf97a883bc536f5770a2b3f80400d747c688e27143155ca0c6e2286c87fa09209302", "f2af2e994d8c408523a7cc17fd47da63d762e4a53dec39b4b353b5b248213bca"}) 08:22:34 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) 08:22:34 executing program 6: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000400)={0x14, 0x4, 0x1, 0x3}, 0x14}}, 0x0) 08:22:34 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) 08:22:34 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt(r0, 0x5, 0x0, 0x0, &(0x7f0000001140)) [ 107.653176] kmemleak: Found object by alias at 0x607f1a639734 [ 107.653208] CPU: 0 UID: 0 PID: 3904 Comm: syz-executor.5 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 107.653241] Tainted: [W]=WARN [ 107.653248] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.653260] Call Trace: [ 107.653267] [ 107.653276] dump_stack_lvl+0xca/0x120 [ 107.653315] __lookup_object+0x94/0xb0 [ 107.653344] delete_object_full+0x27/0x70 [ 107.653372] free_percpu+0x30/0x1160 [ 107.653400] ? arch_uprobe_clear_state+0x16/0x140 [ 107.653435] futex_hash_free+0x38/0xc0 [ 107.653459] mmput+0x2d3/0x390 [ 107.653492] do_exit+0x79d/0x2970 [ 107.653516] ? signal_wake_up_state+0x85/0x120 [ 107.653543] ? zap_other_threads+0x2b9/0x3a0 [ 107.653571] ? __pfx_do_exit+0x10/0x10 [ 107.653602] ? do_group_exit+0x1c3/0x2a0 [ 107.653627] ? lock_release+0xc8/0x290 [ 107.653657] do_group_exit+0xd3/0x2a0 [ 107.653684] __x64_sys_exit_group+0x3e/0x50 [ 107.653708] x64_sys_call+0x18c5/0x18d0 [ 107.653737] do_syscall_64+0xbf/0x360 [ 107.653760] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.653781] RIP: 0033:0x7f8eac497b19 [ 107.653796] Code: Unable to access opcode bytes at 0x7f8eac497aef. [ 107.653805] RSP: 002b:00007ffc9602b7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 107.653825] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f8eac497b19 [ 107.653839] RDX: 00007f8eac44a72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 107.653852] RBP: 0000000000000000 R08: 0000001b2d32837c R09: 0000000000000000 [ 107.653864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 107.653876] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc9602b8c0 [ 107.653904] [ 107.653911] kmemleak: Object (percpu) 0x607f1a639728 (size 16): [ 107.653923] kmemleak: comm "syz-executor.7", pid 285, jiffies 4294774401 [ 107.653935] kmemleak: min_count = 1 [ 107.653942] kmemleak: count = 0 [ 107.653949] kmemleak: flags = 0x21 [ 107.653956] kmemleak: checksum = 0 [ 107.653962] kmemleak: backtrace: [ 107.653968] pcpu_alloc_noprof+0x87a/0x1170 [ 107.653995] mm_init+0x99b/0x1170 [ 107.654010] copy_process+0x3ab7/0x73c0 [ 107.654028] kernel_clone+0xea/0x7f0 [ 107.654045] __do_sys_clone+0xce/0x120 [ 107.654063] do_syscall_64+0xbf/0x360 [ 107.654079] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.676027] kmemleak: Found object by alias at 0x607f1a63972c [ 107.676050] CPU: 1 UID: 0 PID: 3919 Comm: syz-executor.3 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 107.676068] Tainted: [W]=WARN [ 107.676072] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.676079] Call Trace: [ 107.676083] [ 107.676088] dump_stack_lvl+0xca/0x120 [ 107.676114] __lookup_object+0x94/0xb0 [ 107.676132] delete_object_full+0x27/0x70 [ 107.676147] free_percpu+0x30/0x1160 [ 107.676164] ? arch_uprobe_clear_state+0x16/0x140 [ 107.676189] futex_hash_free+0x38/0xc0 [ 107.676204] mmput+0x2d3/0x390 [ 107.676223] do_exit+0x79d/0x2970 [ 107.676236] ? signal_wake_up_state+0x85/0x120 [ 107.676253] ? zap_other_threads+0x2b9/0x3a0 [ 107.676268] ? __pfx_do_exit+0x10/0x10 [ 107.676281] ? do_group_exit+0x1c3/0x2a0 [ 107.676294] ? lock_release+0xc8/0x290 [ 107.676311] do_group_exit+0xd3/0x2a0 [ 107.676325] __x64_sys_exit_group+0x3e/0x50 [ 107.676339] x64_sys_call+0x18c5/0x18d0 [ 107.676355] do_syscall_64+0xbf/0x360 [ 107.676367] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.676378] RIP: 0033:0x7f49ac91ab19 [ 107.676386] Code: Unable to access opcode bytes at 0x7f49ac91aaef. [ 107.676392] RSP: 002b:00007ffefa4b4cc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 107.676403] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f49ac91ab19 [ 107.676411] RDX: 00007f49ac8cd72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 107.676418] RBP: 0000000000000000 R08: 0000001b2d2215cc R09: 0000000000000000 [ 107.676424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 107.676431] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffefa4b4db0 [ 107.676446] [ 107.676450] kmemleak: Object (percpu) 0x607f1a639728 (size 16): [ 107.676457] kmemleak: comm "syz-executor.7", pid 285, jiffies 4294774401 [ 107.676464] kmemleak: min_count = 1 [ 107.676467] kmemleak: count = 0 [ 107.676471] kmemleak: flags = 0x21 [ 107.676474] kmemleak: checksum = 0 [ 107.676478] kmemleak: backtrace: [ 107.676482] pcpu_alloc_noprof+0x87a/0x1170 [ 107.676496] mm_init+0x99b/0x1170 [ 107.676504] copy_process+0x3ab7/0x73c0 [ 107.676514] kernel_clone+0xea/0x7f0 [ 107.676523] __do_sys_clone+0xce/0x120 [ 107.676533] do_syscall_64+0xbf/0x360 [ 107.676541] entry_SYSCALL_64_after_hwframe+0x77/0x7f 08:22:34 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) 08:22:34 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/image_size', 0x40181, 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000000)='FROZEN\x00', 0x7) [ 107.799123] kmemleak: Found object by alias at 0x607f1a639730 [ 107.799145] CPU: 1 UID: 0 PID: 3926 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 107.799167] Tainted: [W]=WARN [ 107.799170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.799178] Call Trace: [ 107.799182] [ 107.799187] dump_stack_lvl+0xca/0x120 [ 107.799212] __lookup_object+0x94/0xb0 [ 107.799229] delete_object_full+0x27/0x70 [ 107.799245] free_percpu+0x30/0x1160 [ 107.799263] ? arch_uprobe_clear_state+0x16/0x140 [ 107.799283] futex_hash_free+0x38/0xc0 [ 107.799297] mmput+0x2d3/0x390 [ 107.799316] do_exit+0x79d/0x2970 [ 107.799329] ? signal_wake_up_state+0x85/0x120 [ 107.799345] ? zap_other_threads+0x2b9/0x3a0 [ 107.799360] ? __pfx_do_exit+0x10/0x10 [ 107.799373] ? do_group_exit+0x1c3/0x2a0 [ 107.799386] ? lock_release+0xc8/0x290 [ 107.799403] do_group_exit+0xd3/0x2a0 [ 107.799417] __x64_sys_exit_group+0x3e/0x50 [ 107.799430] x64_sys_call+0x18c5/0x18d0 [ 107.799446] do_syscall_64+0xbf/0x360 [ 107.799458] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.799469] RIP: 0033:0x7f1ae4c58b19 [ 107.799478] Code: Unable to access opcode bytes at 0x7f1ae4c58aef. [ 107.799483] RSP: 002b:00007ffe91653248 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 107.799494] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f1ae4c58b19 [ 107.799501] RDX: 00007f1ae4c0b72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 107.799508] RBP: 0000000000000000 R08: 0000001b2ce21f00 R09: 0000000000000000 [ 107.799515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 107.799521] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffe91653330 [ 107.799536] [ 107.799540] kmemleak: Object (percpu) 0x607f1a639728 (size 16): [ 107.799546] kmemleak: comm "syz-executor.7", pid 285, jiffies 4294774401 [ 107.799553] kmemleak: min_count = 1 [ 107.799557] kmemleak: count = 0 [ 107.799561] kmemleak: flags = 0x21 [ 107.799564] kmemleak: checksum = 0 [ 107.799568] kmemleak: backtrace: [ 107.799571] pcpu_alloc_noprof+0x87a/0x1170 [ 107.799586] mm_init+0x99b/0x1170 [ 107.799594] copy_process+0x3ab7/0x73c0 [ 107.799603] kernel_clone+0xea/0x7f0 [ 107.799613] __do_sys_clone+0xce/0x120 [ 107.799622] do_syscall_64+0xbf/0x360 [ 107.799631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.817731] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 107.818578] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 107.819198] CPU: 1 UID: 0 PID: 3933 Comm: syz-executor.0 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 107.821210] Tainted: [W]=WARN [ 107.822006] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.824038] RIP: 0010:perf_tp_event+0x175/0xe70 [ 107.825186] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 107.826990] RSP: 0018:ffff8880413af800 EFLAGS: 00010212 [ 107.827389] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900029f4000 [ 107.827918] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 107.828453] RBP: ffff8880413afa70 R08: ffff88806cf31340 R09: ffffe8ffffd16728 [ 107.829012] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 107.829569] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 107.830127] FS: 00007f17b72df700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 107.830755] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 107.831220] CR2: 00007f17b9e7d018 CR3: 000000004239d000 CR4: 0000000000350ef0 [ 107.831782] Call Trace: [ 107.831991] [ 107.832186] ? __pfx_perf_tp_event+0x10/0x10 [ 107.832548] ? lock_is_held_type+0x9e/0x120 [ 107.832898] ? lock_is_held_type+0x9e/0x120 [ 107.833247] ? perf_trace_lock+0xb5/0x5d0 [ 107.833580] ? perf_trace_lock+0xb5/0x5d0 [ 107.833914] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.834283] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.834657] ? find_held_lock+0x2b/0x80 [ 107.834993] ? find_held_lock+0x2b/0x80 [ 107.835316] ? __perf_install_in_context+0x503/0xb90 [ 107.835725] ? lock_release+0xc8/0x290 [ 107.836038] ? do_raw_spin_unlock+0x53/0x220 [ 107.836395] ? perf_trace_run_bpf_submit+0xef/0x180 [ 107.836793] perf_trace_run_bpf_submit+0xef/0x180 [ 107.837185] perf_trace_lock+0x337/0x5d0 [ 107.837513] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.837885] ? lock_acquire+0x15e/0x2f0 [ 107.838205] ? futex_ref_get+0x48/0x300 [ 107.838523] ? futex_ref_get+0x114/0x300 [ 107.838855] ? futex_hash+0x15c/0x390 [ 107.839161] lock_release+0x1ab/0x290 [ 107.839468] ? futex_hash+0x15c/0x390 [ 107.839773] futex_ref_get+0x119/0x300 [ 107.840085] ? futex_hash+0x15c/0x390 [ 107.840390] futex_hash+0x70/0x390 [ 107.840680] futex_wake+0x143/0x540 [ 107.840977] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.841347] ? __pfx_futex_wake+0x10/0x10 [ 107.841690] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 107.842093] ? lock_release+0xc8/0x290 [ 107.842407] do_futex+0x26d/0x370 [ 107.842691] ? __pfx_do_futex+0x10/0x10 [ 107.843021] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 107.843441] ? find_held_lock+0x2b/0x80 [ 107.843769] __x64_sys_futex+0x1c9/0x4d0 [ 107.844096] ? __pfx___x64_sys_futex+0x10/0x10 [ 107.844462] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 107.844885] do_syscall_64+0xbf/0x360 [ 107.845189] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.845600] RIP: 0033:0x7f17b9d69b19 [ 107.845897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 107.847422] RSP: 002b:00007f17b72df218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 107.848032] RAX: ffffffffffffffda RBX: 00007f17b9e7cf68 RCX: 00007f17b9d69b19 [ 107.848598] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f17b9e7cf6c [ 107.849157] RBP: 00007f17b9e7cf60 R08: 000000000000000e R09: 0000000000000000 [ 107.849711] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f17b9e7cf6c [ 107.850268] R13: 00007fffa44c191f R14: 00007f17b72df300 R15: 0000000000022000 [ 107.850841] [ 107.851031] Modules linked in: [ 107.851348] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 107.852225] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 107.852809] CPU: 1 UID: 0 PID: 3933 Comm: syz-executor.0 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 107.853740] Tainted: [D]=DIE, [W]=WARN [ 107.854042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.854686] RIP: 0010:perf_tp_event+0x175/0xe70 [ 107.855067] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 107.856474] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012 [ 107.856891] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 107.857444] RDX: ffff8880421f3700 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 107.858003] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd16728 [ 107.858565] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000 [ 107.859123] R13: 0000000000000024 R14: ffff88806cf31490 R15: dffffc0000000000 [ 107.859680] FS: 00007f17b72df700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 107.860312] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 107.860765] CR2: 00007f17b9e7d018 CR3: 000000004239d000 CR4: 0000000000350ef0 [ 107.861323] Call Trace: [ 107.861530] [ 107.861710] ? __pfx_perf_tp_event+0x10/0x10 [ 107.862067] ? perf_trace_lock+0xb5/0x5d0 [ 107.862400] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.862764] ? trace_rcu_utilization+0x26/0x190 [ 107.863145] ? rcu_sched_clock_irq+0x7a0/0x2b40 [ 107.863522] ? perf_trace_lock+0xb5/0x5d0 [ 107.863854] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.864226] ? kvm_sched_clock_read+0x16/0x30 [ 107.864586] ? sched_clock+0x37/0x60 [ 107.864891] ? sched_clock_cpu+0x6c/0x4e0 [ 107.865223] ? perf_trace_run_bpf_submit+0xef/0x180 [ 107.865621] perf_trace_run_bpf_submit+0xef/0x180 [ 107.866012] perf_trace_lock+0x337/0x5d0 [ 107.866344] ? place_entity+0x1c/0x410 [ 107.866653] ? kvm_sched_clock_read+0x16/0x30 [ 107.867022] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.867391] ? check_preempt_wakeup_fair+0x6e/0x950 [ 107.867791] ? sched_ttwu_pending+0x2e0/0x4a0 [ 107.868151] lock_release+0x1ab/0x290 [ 107.868452] ? ttwu_do_activate+0x1a4/0x8a0 [ 107.868797] _raw_spin_unlock+0x16/0x40 [ 107.869117] sched_ttwu_pending+0x2e0/0x4a0 [ 107.869462] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 107.869849] ? flush_tlb_func+0x24d/0x560 [ 107.870186] __flush_smp_call_function_queue+0x434/0x740 [ 107.870620] __sysvec_call_function_single+0x6d/0x370 [ 107.871040] sysvec_call_function_single+0xa1/0xc0 [ 107.871431] [ 107.871613] [ 107.871794] asm_sysvec_call_function_single+0x1a/0x20 [ 107.872208] RIP: 0010:oops_exit+0x0/0x50 [ 107.872534] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27 [ 107.873949] RSP: 0018:ffff8880413af690 EFLAGS: 00000202 [ 107.874365] RAX: 000000000002d6c2 RBX: 0000000000000212 RCX: ffffc900029f4000 [ 107.874928] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 107.875482] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90 [ 107.876037] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880413af758 [ 107.876592] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 107.877154] ? oops_end+0x4a/0xe0 [ 107.877438] oops_end+0x65/0xe0 [ 107.877708] exc_general_protection+0x1a2/0x330 [ 107.878084] asm_exc_general_protection+0x26/0x30 [ 107.878463] RIP: 0010:perf_tp_event+0x175/0xe70 [ 107.878841] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 107.880252] RSP: 0018:ffff8880413af800 EFLAGS: 00010212 [ 107.880665] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900029f4000 [ 107.881215] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 107.881769] RBP: ffff8880413afa70 R08: ffff88806cf31340 R09: ffffe8ffffd16728 [ 107.882322] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 107.882887] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 107.883447] ? perf_tp_event+0x167/0xe70 [ 107.883780] ? __pfx_perf_tp_event+0x10/0x10 [ 107.884133] ? lock_is_held_type+0x9e/0x120 [ 107.884477] ? lock_is_held_type+0x9e/0x120 [ 107.884821] ? perf_trace_lock+0xb5/0x5d0 [ 107.885151] ? perf_trace_lock+0xb5/0x5d0 [ 107.885479] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.885844] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.886211] ? find_held_lock+0x2b/0x80 [ 107.886529] ? find_held_lock+0x2b/0x80 [ 107.886857] ? __perf_install_in_context+0x503/0xb90 [ 107.887254] ? lock_release+0xc8/0x290 [ 107.887565] ? do_raw_spin_unlock+0x53/0x220 [ 107.887919] ? perf_trace_run_bpf_submit+0xef/0x180 [ 107.888314] perf_trace_run_bpf_submit+0xef/0x180 [ 107.888700] perf_trace_lock+0x337/0x5d0 [ 107.889027] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.889394] ? lock_acquire+0x15e/0x2f0 [ 107.889709] ? futex_ref_get+0x48/0x300 [ 107.890025] ? futex_ref_get+0x114/0x300 [ 107.890347] ? futex_hash+0x15c/0x390 [ 107.890649] lock_release+0x1ab/0x290 [ 107.890966] ? futex_hash+0x15c/0x390 [ 107.891270] futex_ref_get+0x119/0x300 [ 107.891578] ? futex_hash+0x15c/0x390 [ 107.891884] futex_hash+0x70/0x390 [ 107.892167] futex_wake+0x143/0x540 [ 107.892460] ? __pfx_perf_trace_lock+0x10/0x10 [ 107.892832] ? __pfx_futex_wake+0x10/0x10 [ 107.893165] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 107.893565] ? lock_release+0xc8/0x290 [ 107.893875] do_futex+0x26d/0x370 [ 107.894156] ? __pfx_do_futex+0x10/0x10 [ 107.894472] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 107.894899] ? find_held_lock+0x2b/0x80 [ 107.895220] __x64_sys_futex+0x1c9/0x4d0 [ 107.895547] ? __pfx___x64_sys_futex+0x10/0x10 [ 107.895913] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 107.896323] do_syscall_64+0xbf/0x360 [ 107.896626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.897030] RIP: 0033:0x7f17b9d69b19 [ 107.897324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 107.898728] RSP: 002b:00007f17b72df218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 107.899300] RAX: ffffffffffffffda RBX: 00007f17b9e7cf68 RCX: 00007f17b9d69b19 [ 107.899825] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f17b9e7cf6c [ 107.900351] RBP: 00007f17b9e7cf60 R08: 000000000000000e R09: 0000000000000000 [ 107.900876] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f17b9e7cf6c [ 107.901404] R13: 00007fffa44c191f R14: 00007f17b72df300 R15: 0000000000022000 [ 107.901934] [ 107.902116] Modules linked in: [ 107.902362] ---[ end trace 0000000000000000 ]--- [ 107.902709] RIP: 0010:perf_tp_event+0x175/0xe70 [ 107.903072] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 107.904403] RSP: 0018:ffff8880413af800 EFLAGS: 00010212 [ 107.904797] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900029f4000 [ 107.905322] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 107.905849] RBP: ffff8880413afa70 R08: ffff88806cf31340 R09: ffffe8ffffd16728 [ 107.906370] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 107.906899] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 107.907428] FS: 00007f17b72df700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 107.908019] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 107.908456] CR2: 00007f17b9e7d018 CR3: 000000004239d000 CR4: 0000000000350ef0 [ 107.908983] Kernel panic - not syncing: Fatal exception in interrupt [ 108.950917] Shutting down cpus with NMI [ 108.951453] Kernel Offset: disabled [ 108.951746] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 08:22:34 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffffea0000da7680 RCX=ffffffff819cf5b7 RDX=ffff88800a750000 RSI=ffffffff819cf5c5 RDI=0000000000000001 RBP=0000000000000000 RSP=ffff8880413bf668 R8 =0000000000000000 R9 =fffff940001b4ed0 R10=0000000000000000 R11=1ffff1100d9c6f7b R12=ffff8880413bf7d0 R13=00007f49abdbf000 R14=ffff8880413bfad0 R15=80000000369da007 RIP=ffffffff8173e788 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe5100000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000020000040 CR3=0000000040093000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff8880413af0f0 R8 =0000000000000000 R9 =ffffed100134a046 R10=0000000000000038 R11=0000000065646f43 R12=0000000000000038 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f17b72df700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe4400000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f17b9e7d018 CR3=000000004239d000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f17b9e507c000007f17b9e507c8 XMM02=00007f17b9e507e000007f17b9e507c0 XMM03=00007f17b9e507c800007f17b9e507c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000