Warning: Permanently added '[localhost]:13814' (ECDSA) to the list of known hosts. 2025/08/29 10:50:45 fuzzer started 2025/08/29 10:50:45 dialing manager at localhost:43077 syzkaller login: [ 51.166732] cgroup: Unknown subsys name 'net' [ 51.236871] cgroup: Unknown subsys name 'cpuset' [ 51.254191] cgroup: Unknown subsys name 'rlimit' 2025/08/29 10:50:56 syscalls: 2214 2025/08/29 10:50:56 code coverage: enabled 2025/08/29 10:50:56 comparison tracing: enabled 2025/08/29 10:50:56 extra coverage: enabled 2025/08/29 10:50:56 setuid sandbox: enabled 2025/08/29 10:50:56 namespace sandbox: enabled 2025/08/29 10:50:56 Android sandbox: enabled 2025/08/29 10:50:56 fault injection: enabled 2025/08/29 10:50:56 leak checking: enabled 2025/08/29 10:50:56 net packet injection: enabled 2025/08/29 10:50:56 net device setup: enabled 2025/08/29 10:50:56 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 10:50:56 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 10:50:56 USB emulation: enabled 2025/08/29 10:50:56 hci packet injection: enabled 2025/08/29 10:50:56 wifi device emulation: enabled 2025/08/29 10:50:56 802.15.4 emulation: enabled 2025/08/29 10:50:56 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 10:50:56 fetching corpus: 50, signal 25033/28456 (executing program) 2025/08/29 10:50:56 fetching corpus: 100, signal 32249/37140 (executing program) 2025/08/29 10:50:56 fetching corpus: 150, signal 38915/45098 (executing program) 2025/08/29 10:50:56 fetching corpus: 200, signal 48108/55335 (executing program) 2025/08/29 10:50:56 fetching corpus: 250, signal 52163/60525 (executing program) 2025/08/29 10:50:56 fetching corpus: 300, signal 56136/65620 (executing program) 2025/08/29 10:50:56 fetching corpus: 350, signal 58778/69393 (executing program) 2025/08/29 10:50:57 fetching corpus: 400, signal 62453/74060 (executing program) 2025/08/29 10:50:57 fetching corpus: 450, signal 66873/79230 (executing program) 2025/08/29 10:50:57 fetching corpus: 500, signal 69581/82854 (executing program) 2025/08/29 10:50:57 fetching corpus: 550, signal 72539/86624 (executing program) 2025/08/29 10:50:57 fetching corpus: 600, signal 76067/90850 (executing program) 2025/08/29 10:50:57 fetching corpus: 650, signal 78522/94093 (executing program) 2025/08/29 10:50:57 fetching corpus: 700, signal 81579/97746 (executing program) 2025/08/29 10:50:57 fetching corpus: 750, signal 83140/100124 (executing program) 2025/08/29 10:50:57 fetching corpus: 800, signal 85518/103100 (executing program) 2025/08/29 10:50:57 fetching corpus: 850, signal 87292/105612 (executing program) 2025/08/29 10:50:58 fetching corpus: 900, signal 89065/108037 (executing program) 2025/08/29 10:50:58 fetching corpus: 950, signal 90494/110169 (executing program) 2025/08/29 10:50:58 fetching corpus: 1000, signal 93101/113098 (executing program) 2025/08/29 10:50:58 fetching corpus: 1050, signal 94565/115169 (executing program) 2025/08/29 10:50:58 fetching corpus: 1100, signal 95876/117158 (executing program) 2025/08/29 10:50:58 fetching corpus: 1150, signal 97460/119244 (executing program) 2025/08/29 10:50:58 fetching corpus: 1200, signal 99107/121381 (executing program) 2025/08/29 10:50:59 fetching corpus: 1250, signal 100395/123181 (executing program) 2025/08/29 10:50:59 fetching corpus: 1300, signal 101387/124707 (executing program) 2025/08/29 10:50:59 fetching corpus: 1350, signal 103078/126722 (executing program) 2025/08/29 10:50:59 fetching corpus: 1400, signal 104634/128647 (executing program) 2025/08/29 10:50:59 fetching corpus: 1450, signal 105547/130088 (executing program) 2025/08/29 10:50:59 fetching corpus: 1500, signal 106460/131499 (executing program) 2025/08/29 10:50:59 fetching corpus: 1550, signal 108215/133423 (executing program) 2025/08/29 10:50:59 fetching corpus: 1600, signal 110123/135417 (executing program) 2025/08/29 10:50:59 fetching corpus: 1650, signal 111623/137205 (executing program) 2025/08/29 10:51:00 fetching corpus: 1700, signal 112588/138590 (executing program) 2025/08/29 10:51:00 fetching corpus: 1750, signal 113581/140081 (executing program) 2025/08/29 10:51:00 fetching corpus: 1800, signal 115731/142105 (executing program) 2025/08/29 10:51:00 fetching corpus: 1850, signal 117215/143694 (executing program) 2025/08/29 10:51:00 fetching corpus: 1900, signal 119511/145717 (executing program) 2025/08/29 10:51:00 fetching corpus: 1950, signal 120061/146728 (executing program) 2025/08/29 10:51:00 fetching corpus: 2000, signal 120829/147841 (executing program) 2025/08/29 10:51:00 fetching corpus: 2050, signal 122417/149323 (executing program) 2025/08/29 10:51:00 fetching corpus: 2100, signal 123062/150288 (executing program) 2025/08/29 10:51:00 fetching corpus: 2150, signal 123764/151328 (executing program) 2025/08/29 10:51:00 fetching corpus: 2200, signal 125155/152627 (executing program) 2025/08/29 10:51:01 fetching corpus: 2250, signal 126645/153908 (executing program) 2025/08/29 10:51:01 fetching corpus: 2300, signal 127145/154754 (executing program) 2025/08/29 10:51:01 fetching corpus: 2350, signal 128059/155797 (executing program) 2025/08/29 10:51:01 fetching corpus: 2400, signal 128975/156790 (executing program) 2025/08/29 10:51:01 fetching corpus: 2450, signal 130103/157843 (executing program) 2025/08/29 10:51:01 fetching corpus: 2500, signal 131250/158860 (executing program) 2025/08/29 10:51:01 fetching corpus: 2550, signal 132144/159749 (executing program) 2025/08/29 10:51:01 fetching corpus: 2600, signal 132832/160542 (executing program) 2025/08/29 10:51:01 fetching corpus: 2650, signal 133538/161356 (executing program) 2025/08/29 10:51:01 fetching corpus: 2700, signal 134358/162204 (executing program) 2025/08/29 10:51:02 fetching corpus: 2750, signal 135946/163263 (executing program) 2025/08/29 10:51:02 fetching corpus: 2800, signal 136825/164059 (executing program) 2025/08/29 10:51:02 fetching corpus: 2850, signal 137645/164790 (executing program) 2025/08/29 10:51:02 fetching corpus: 2900, signal 138273/165503 (executing program) 2025/08/29 10:51:02 fetching corpus: 2950, signal 139274/166290 (executing program) 2025/08/29 10:51:02 fetching corpus: 3000, signal 140193/166997 (executing program) 2025/08/29 10:51:02 fetching corpus: 3050, signal 140853/167633 (executing program) 2025/08/29 10:51:02 fetching corpus: 3100, signal 141898/168394 (executing program) 2025/08/29 10:51:02 fetching corpus: 3150, signal 142469/168956 (executing program) 2025/08/29 10:51:02 fetching corpus: 3200, signal 143134/169547 (executing program) 2025/08/29 10:51:03 fetching corpus: 3250, signal 144071/170213 (executing program) 2025/08/29 10:51:03 fetching corpus: 3300, signal 145040/170844 (executing program) 2025/08/29 10:51:03 fetching corpus: 3350, signal 145917/171460 (executing program) 2025/08/29 10:51:03 fetching corpus: 3400, signal 146340/171893 (executing program) 2025/08/29 10:51:03 fetching corpus: 3450, signal 147032/172431 (executing program) 2025/08/29 10:51:03 fetching corpus: 3500, signal 147788/173014 (executing program) 2025/08/29 10:51:03 fetching corpus: 3550, signal 148631/173534 (executing program) 2025/08/29 10:51:03 fetching corpus: 3600, signal 149138/173990 (executing program) 2025/08/29 10:51:03 fetching corpus: 3650, signal 149672/174419 (executing program) 2025/08/29 10:51:04 fetching corpus: 3700, signal 150136/174849 (executing program) 2025/08/29 10:51:04 fetching corpus: 3750, signal 150915/175239 (executing program) 2025/08/29 10:51:04 fetching corpus: 3800, signal 151643/175648 (executing program) 2025/08/29 10:51:04 fetching corpus: 3850, signal 152124/176067 (executing program) 2025/08/29 10:51:04 fetching corpus: 3900, signal 152493/176411 (executing program) 2025/08/29 10:51:04 fetching corpus: 3950, signal 152992/176761 (executing program) 2025/08/29 10:51:04 fetching corpus: 4000, signal 153531/177102 (executing program) 2025/08/29 10:51:04 fetching corpus: 4050, signal 153934/177426 (executing program) 2025/08/29 10:51:04 fetching corpus: 4100, signal 154412/177779 (executing program) 2025/08/29 10:51:04 fetching corpus: 4150, signal 154846/178082 (executing program) 2025/08/29 10:51:04 fetching corpus: 4200, signal 155344/178425 (executing program) 2025/08/29 10:51:05 fetching corpus: 4250, signal 155847/178848 (executing program) 2025/08/29 10:51:05 fetching corpus: 4300, signal 156219/179141 (executing program) 2025/08/29 10:51:05 fetching corpus: 4350, signal 156775/179151 (executing program) 2025/08/29 10:51:05 fetching corpus: 4400, signal 157185/179160 (executing program) 2025/08/29 10:51:05 fetching corpus: 4450, signal 157584/179162 (executing program) 2025/08/29 10:51:05 fetching corpus: 4500, signal 158171/179166 (executing program) 2025/08/29 10:51:05 fetching corpus: 4550, signal 158491/179179 (executing program) 2025/08/29 10:51:05 fetching corpus: 4600, signal 158860/179203 (executing program) 2025/08/29 10:51:05 fetching corpus: 4650, signal 159344/179223 (executing program) 2025/08/29 10:51:05 fetching corpus: 4700, signal 159836/179236 (executing program) 2025/08/29 10:51:06 fetching corpus: 4750, signal 160234/179251 (executing program) 2025/08/29 10:51:06 fetching corpus: 4800, signal 160648/179257 (executing program) 2025/08/29 10:51:06 fetching corpus: 4850, signal 160957/179262 (executing program) 2025/08/29 10:51:06 fetching corpus: 4900, signal 161273/179274 (executing program) 2025/08/29 10:51:06 fetching corpus: 4950, signal 162017/179347 (executing program) 2025/08/29 10:51:06 fetching corpus: 5000, signal 162561/179357 (executing program) 2025/08/29 10:51:06 fetching corpus: 5050, signal 162985/179378 (executing program) 2025/08/29 10:51:06 fetching corpus: 5100, signal 163397/179379 (executing program) 2025/08/29 10:51:06 fetching corpus: 5150, signal 163772/179410 (executing program) 2025/08/29 10:51:06 fetching corpus: 5200, signal 164274/179413 (executing program) 2025/08/29 10:51:07 fetching corpus: 5250, signal 164637/179418 (executing program) 2025/08/29 10:51:07 fetching corpus: 5300, signal 165165/179419 (executing program) 2025/08/29 10:51:07 fetching corpus: 5350, signal 165567/179437 (executing program) 2025/08/29 10:51:07 fetching corpus: 5400, signal 165953/179438 (executing program) 2025/08/29 10:51:07 fetching corpus: 5450, signal 166462/179443 (executing program) 2025/08/29 10:51:07 fetching corpus: 5500, signal 166960/179463 (executing program) 2025/08/29 10:51:07 fetching corpus: 5550, signal 167372/179487 (executing program) 2025/08/29 10:51:07 fetching corpus: 5600, signal 167712/179500 (executing program) 2025/08/29 10:51:07 fetching corpus: 5650, signal 168029/179512 (executing program) 2025/08/29 10:51:07 fetching corpus: 5700, signal 168675/179640 (executing program) 2025/08/29 10:51:08 fetching corpus: 5750, signal 169235/179653 (executing program) 2025/08/29 10:51:08 fetching corpus: 5800, signal 169591/179654 (executing program) 2025/08/29 10:51:08 fetching corpus: 5850, signal 169959/179665 (executing program) 2025/08/29 10:51:08 fetching corpus: 5900, signal 170236/179665 (executing program) 2025/08/29 10:51:08 fetching corpus: 5950, signal 170526/179685 (executing program) 2025/08/29 10:51:08 fetching corpus: 6000, signal 170750/179713 (executing program) 2025/08/29 10:51:08 fetching corpus: 6050, signal 171130/179733 (executing program) 2025/08/29 10:51:08 fetching corpus: 6100, signal 171407/179746 (executing program) 2025/08/29 10:51:08 fetching corpus: 6150, signal 171704/179752 (executing program) 2025/08/29 10:51:08 fetching corpus: 6200, signal 172028/179762 (executing program) 2025/08/29 10:51:08 fetching corpus: 6250, signal 172331/179762 (executing program) 2025/08/29 10:51:08 fetching corpus: 6300, signal 172844/179764 (executing program) 2025/08/29 10:51:09 fetching corpus: 6350, signal 173107/179771 (executing program) 2025/08/29 10:51:09 fetching corpus: 6400, signal 173406/179794 (executing program) 2025/08/29 10:51:09 fetching corpus: 6450, signal 173835/179817 (executing program) 2025/08/29 10:51:09 fetching corpus: 6500, signal 174453/179898 (executing program) 2025/08/29 10:51:09 fetching corpus: 6550, signal 174821/179929 (executing program) 2025/08/29 10:51:09 fetching corpus: 6600, signal 175136/179936 (executing program) 2025/08/29 10:51:09 fetching corpus: 6650, signal 175409/179983 (executing program) 2025/08/29 10:51:09 fetching corpus: 6700, signal 175790/179989 (executing program) 2025/08/29 10:51:09 fetching corpus: 6750, signal 176130/179997 (executing program) 2025/08/29 10:51:09 fetching corpus: 6800, signal 176480/180004 (executing program) 2025/08/29 10:51:09 fetching corpus: 6832, signal 176737/180010 (executing program) 2025/08/29 10:51:09 fetching corpus: 6832, signal 176737/180010 (executing program) 2025/08/29 10:51:12 starting 8 fuzzer processes 10:51:12 executing program 0: openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='cpuset.cpus\x00', 0x2, 0x0) 10:51:12 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000a00), 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "14ae6715a63c83fefcd471d9dec46c6b56aecc932e88a352124726661c8de71aaff9cef65113bfa17725b68ba5fad5f4c7cc6c7717bcd4409c85000c482ea6d6", "bdbf65ad929b7e7216e9fb7c8fbc5f7397abd38b8d780fa2aa10daf3abcfd8cc"}) 10:51:12 executing program 3: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010a00)="0243443030310100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d0020002000200020002000200020002000200020002000000000000000004f0200000000024f252f4500000000000000000000000000000000000000000000000000000000000100000101000001000808001c0000000000001c18000000000000000000001a0000000022001e", 0x9f, 0x8800}, {&(0x7f0000002880)='\"', 0x1, 0xf000}], 0x0, &(0x7f0000000040)={[{@check_relaxed}]}) 10:51:12 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x54, 0x2, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x5}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_NAT_SRC={0x30, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0x4}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}, @CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6}]}]}, @CTA_LABELS={0x8, 0x16, 0x1, 0x0, [0x9]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x4044800) bind$netlink(r0, 0x0, 0x0) 10:51:12 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x8) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, 0x0, &(0x7f0000000080)) 10:51:12 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) prctl$PR_MCE_KILL(0x21, 0x1, 0x0) 10:51:12 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{}, {0x0, 0x3}]}) [ 77.755192] audit: type=1400 audit(1756464672.628:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:51:12 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x80031, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000280)="a0fc37e7ba3dda3abf23cdbb4f0192034c9f6323f63b8a121f62c128307c83ae0922e05fa997e5ce300c62789e48a6cf807436f43dcfe3b2964b666f04d2b30982ec16c29064bf808f9a93790c68e6acc6e32a4ad01caffe06465bff544f7c3e70a3427860da81cf34039b592a150fab3a024812b80d09cca24e151f73bec693a3bab4ded6480a8676d8559aecb23167fe91d70fd8946aaad2df804804921ab84d37575d1abf99d00454ea05e6b085e3772ac81253232dcf22c517cd35f8da3517c2b1fddf159a2abd8687fce9aeb341e4104c8ac3335326090983e5f9c657071a012956471b90c8f57c88c73ae179dac1d3931f6e8eeb38ca4b055732f1d582d227be20e5704c7a68d403066aac94090867b7fb851057fc585dffbc91ca834e76bb2f81c103d0399ee8dde41efaeb037cd9acab9762556a3478cb66851763f92b8fa30e9f206f4c39667cad4bc09895f89be5ec82696f5e9f2fb5a7499ea43b12311d18bea0e6e48765b3266fb6ad032950bd6d8d4c480cde3490025059ddb3f8e1d781c184912aa263881bf907a7730aff9380fa5b29f10b6b09fbb335ca3413c335208527e6edf27b4fbfa1843c2e1297afac3afacf15a4017758d8e0375e465ff780e3e75f61a49c551392d36acacdd05d675961fa2f04506e38105adcb05605005d173d638f9944b6fb01b9c1e03eb6b28f46182958e2c0738a8f517b20b772618beaa2935973508902b5acf70e1cf21d62084438b535867fa991cbd28d3835c269e05ae87a44d5d29a8457b4656e9a893f5538c7ca1bd3f34368209e7238bf49c25e6e30bbeca026df0043918464b0c836f62c2811032a7d73cb604339912f829f295ca32e826cea04a9dba1f0db7554135348b30647498e", 0x27b}], 0x1, 0x0) splice(r0, 0x0, r2, 0x0, 0x802, 0x0) [ 78.955841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 78.959407] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 78.962242] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 78.970704] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 78.974921] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 79.022682] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 79.030191] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 79.032269] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 79.038976] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 79.041409] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 79.091784] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 79.093953] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 79.096671] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 79.102490] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 79.104385] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 79.107248] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 79.109547] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 79.114457] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 79.115756] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 79.124382] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 79.149031] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 79.162874] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 79.171402] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 79.182375] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 79.185075] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 79.186777] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 79.193339] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 79.194699] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 79.199979] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 79.201249] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 79.211655] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 79.217146] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 79.219311] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 79.225805] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 79.226069] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 79.288660] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 79.290927] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 79.293572] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 79.297609] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 79.299976] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 81.047616] Bluetooth: hci0: command tx timeout [ 81.111220] Bluetooth: hci1: command tx timeout [ 81.175242] Bluetooth: hci3: command tx timeout [ 81.176723] Bluetooth: hci2: command tx timeout [ 81.303231] Bluetooth: hci6: command tx timeout [ 81.303265] Bluetooth: hci5: command tx timeout [ 81.304063] Bluetooth: hci4: command tx timeout [ 81.367259] Bluetooth: hci7: command tx timeout [ 83.095260] Bluetooth: hci0: command tx timeout [ 83.159259] Bluetooth: hci1: command tx timeout [ 83.223263] Bluetooth: hci3: command tx timeout [ 83.223707] Bluetooth: hci2: command tx timeout [ 83.351272] Bluetooth: hci5: command tx timeout [ 83.351742] Bluetooth: hci6: command tx timeout [ 83.351831] Bluetooth: hci4: command tx timeout [ 83.415234] Bluetooth: hci7: command tx timeout [ 85.144111] Bluetooth: hci0: command tx timeout [ 85.207141] Bluetooth: hci1: command tx timeout [ 85.271300] Bluetooth: hci3: command tx timeout [ 85.271342] Bluetooth: hci2: command tx timeout [ 85.399159] Bluetooth: hci5: command tx timeout [ 85.399254] Bluetooth: hci6: command tx timeout [ 85.400726] Bluetooth: hci4: command tx timeout [ 85.463222] Bluetooth: hci7: command tx timeout [ 87.191136] Bluetooth: hci0: command tx timeout [ 87.255182] Bluetooth: hci1: command tx timeout [ 87.319208] Bluetooth: hci3: command tx timeout [ 87.320921] Bluetooth: hci2: command tx timeout [ 87.447638] Bluetooth: hci5: command tx timeout [ 87.447699] Bluetooth: hci4: command tx timeout [ 87.448203] Bluetooth: hci6: command tx timeout [ 87.513201] Bluetooth: hci7: command tx timeout [ 116.353599] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.354314] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.497185] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.497813] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.804723] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.805713] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.985663] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.986705] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.136593] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.137699] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.273132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.273766] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.378056] loop3: detected capacity change from 0 to 240 [ 117.384152] isofs_fill_super: root inode is not a directory. Corrupted media? [ 117.388321] loop3: detected capacity change from 0 to 240 [ 117.392192] isofs_fill_super: root inode is not a directory. Corrupted media? [ 117.422356] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.423056] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.536496] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.537247] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.842921] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.844016] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.898927] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.900152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.999519] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.000842] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.015323] audit: type=1400 audit(1756464712.886:8): avc: denied { open } for pid=3877 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 118.019171] audit: type=1400 audit(1756464712.887:9): avc: denied { kernel } for pid=3877 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 118.104611] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.105538] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.121692] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.122359] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.201797] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.202660] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.252953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.253610] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.321434] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.322019] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:51:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x80031, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000280)="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", 0x27b}], 0x1, 0x0) splice(r0, 0x0, r2, 0x0, 0x802, 0x0) 10:51:53 executing program 3: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010a00)="0243443030310100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d0020002000200020002000200020002000200020002000000000000000004f0200000000024f252f4500000000000000000000000000000000000000000000000000000000000100000101000001000808001c0000000000001c18000000000000000000001a0000000022001e", 0x9f, 0x8800}, {&(0x7f0000002880)='\"', 0x1, 0xf000}], 0x0, &(0x7f0000000040)={[{@check_relaxed}]}) 10:51:53 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x8) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, 0x0, &(0x7f0000000080)) 10:51:53 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000a00), 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "14ae6715a63c83fefcd471d9dec46c6b56aecc932e88a352124726661c8de71aaff9cef65113bfa17725b68ba5fad5f4c7cc6c7717bcd4409c85000c482ea6d6", "bdbf65ad929b7e7216e9fb7c8fbc5f7397abd38b8d780fa2aa10daf3abcfd8cc"}) 10:51:53 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x54, 0x2, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x5}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_NAT_SRC={0x30, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0x4}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}, @CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6}]}]}, @CTA_LABELS={0x8, 0x16, 0x1, 0x0, [0x9]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x4044800) bind$netlink(r0, 0x0, 0x0) 10:51:53 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x80031, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000280)="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", 0x27b}], 0x1, 0x0) splice(r0, 0x0, r2, 0x0, 0x802, 0x0) 10:51:53 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{}, {0x0, 0x3}]}) 10:51:53 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) prctl$PR_MCE_KILL(0x21, 0x1, 0x0) [ 118.490052] loop3: detected capacity change from 0 to 240 [ 118.501151] isofs_fill_super: root inode is not a directory. Corrupted media? 10:51:53 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) prctl$PR_MCE_KILL(0x21, 0x1, 0x0) 10:51:53 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x8) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, 0x0, &(0x7f0000000080)) 10:51:53 executing program 3: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010a00)="0243443030310100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d0020002000200020002000200020002000200020002000000000000000004f0200000000024f252f4500000000000000000000000000000000000000000000000000000000000100000101000001000808001c0000000000001c18000000000000000000001a0000000022001e", 0x9f, 0x8800}, {&(0x7f0000002880)='\"', 0x1, 0xf000}], 0x0, &(0x7f0000000040)={[{@check_relaxed}]}) 10:51:53 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x54, 0x2, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x5}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_NAT_SRC={0x30, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0x4}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}, @CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6}]}]}, @CTA_LABELS={0x8, 0x16, 0x1, 0x0, [0x9]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x4044800) bind$netlink(r0, 0x0, 0x0) 10:51:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x80031, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000280)="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", 0x27b}], 0x1, 0x0) splice(r0, 0x0, r2, 0x0, 0x802, 0x0) 10:51:53 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000a00), 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "14ae6715a63c83fefcd471d9dec46c6b56aecc932e88a352124726661c8de71aaff9cef65113bfa17725b68ba5fad5f4c7cc6c7717bcd4409c85000c482ea6d6", "bdbf65ad929b7e7216e9fb7c8fbc5f7397abd38b8d780fa2aa10daf3abcfd8cc"}) 10:51:53 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{}, {0x0, 0x3}]}) 10:51:53 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x80031, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000280)="a0fc37e7ba3dda3abf23cdbb4f0192034c9f6323f63b8a121f62c128307c83ae0922e05fa997e5ce300c62789e48a6cf807436f43dcfe3b2964b666f04d2b30982ec16c29064bf808f9a93790c68e6acc6e32a4ad01caffe06465bff544f7c3e70a3427860da81cf34039b592a150fab3a024812b80d09cca24e151f73bec693a3bab4ded6480a8676d8559aecb23167fe91d70fd8946aaad2df804804921ab84d37575d1abf99d00454ea05e6b085e3772ac81253232dcf22c517cd35f8da3517c2b1fddf159a2abd8687fce9aeb341e4104c8ac3335326090983e5f9c657071a012956471b90c8f57c88c73ae179dac1d3931f6e8eeb38ca4b055732f1d582d227be20e5704c7a68d403066aac94090867b7fb851057fc585dffbc91ca834e76bb2f81c103d0399ee8dde41efaeb037cd9acab9762556a3478cb66851763f92b8fa30e9f206f4c39667cad4bc09895f89be5ec82696f5e9f2fb5a7499ea43b12311d18bea0e6e48765b3266fb6ad032950bd6d8d4c480cde3490025059ddb3f8e1d781c184912aa263881bf907a7730aff9380fa5b29f10b6b09fbb335ca3413c335208527e6edf27b4fbfa1843c2e1297afac3afacf15a4017758d8e0375e465ff780e3e75f61a49c551392d36acacdd05d675961fa2f04506e38105adcb05605005d173d638f9944b6fb01b9c1e03eb6b28f46182958e2c0738a8f517b20b772618beaa2935973508902b5acf70e1cf21d62084438b535867fa991cbd28d3835c269e05ae87a44d5d29a8457b4656e9a893f5538c7ca1bd3f34368209e7238bf49c25e6e30bbeca026df0043918464b0c836f62c2811032a7d73cb604339912f829f295ca32e826cea04a9dba1f0db7554135348b30647498e", 0x27b}], 0x1, 0x0) splice(r0, 0x0, r2, 0x0, 0x802, 0x0) [ 118.616647] loop3: detected capacity change from 0 to 240 [ 118.625844] isofs_fill_super: root inode is not a directory. Corrupted media? [ 118.675371] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 118.675391] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 118.675405] CPU: 1 UID: 0 PID: 3930 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 118.675425] Tainted: [W]=WARN [ 118.675429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 118.675437] RIP: 0010:perf_tp_event+0x175/0xe70 [ 118.675460] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 118.675472] RSP: 0018:ffff8880471b7800 EFLAGS: 00010212 [ 118.675483] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90006819000 [ 118.675492] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 118.675500] RBP: ffff8880471b7a70 R08: ffff88806cf31340 R09: ffffe8ffffd16a88 [ 118.675508] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 118.675515] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 118.675526] FS: 00007f1004615700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 118.675538] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 118.675546] CR2: 0000000020000340 CR3: 0000000007082000 CR4: 0000000000350ef0 [ 118.675560] Call Trace: [ 118.675564] [ 118.675575] ? __pfx_perf_tp_event+0x10/0x10 [ 118.675593] ? lock_is_held_type+0x9e/0x120 [ 118.675613] ? lock_is_held_type+0x9e/0x120 [ 118.675631] ? perf_trace_lock+0xb5/0x5d0 [ 118.675647] ? perf_trace_lock+0xb5/0x5d0 [ 118.675661] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.675676] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.675692] ? find_held_lock+0x2b/0x80 [ 118.675711] ? find_held_lock+0x2b/0x80 [ 118.675728] ? __perf_install_in_context+0x503/0xb90 [ 118.675741] ? lock_release+0xc8/0x290 [ 118.675754] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 118.675775] ? do_raw_spin_unlock+0x53/0x220 [ 118.675793] ? perf_trace_run_bpf_submit+0xef/0x180 [ 118.675809] perf_trace_run_bpf_submit+0xef/0x180 [ 118.675829] perf_trace_lock+0x337/0x5d0 [ 118.675846] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.675863] ? lock_acquire+0x15e/0x2f0 [ 118.675876] ? futex_ref_get+0x48/0x300 [ 118.675888] ? futex_ref_get+0x114/0x300 [ 118.675899] ? futex_hash+0x15c/0x390 [ 118.675910] lock_release+0x1ab/0x290 [ 118.675925] ? futex_hash+0x15c/0x390 [ 118.675936] futex_ref_get+0x119/0x300 [ 118.675948] ? futex_hash+0x15c/0x390 [ 118.675959] futex_hash+0x70/0x390 [ 118.675972] futex_wake+0x143/0x540 [ 118.675987] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.676004] ? __pfx_futex_wake+0x10/0x10 [ 118.676021] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 118.676036] ? lock_release+0xc8/0x290 [ 118.676052] do_futex+0x26d/0x370 [ 118.676067] ? __pfx_do_futex+0x10/0x10 [ 118.676081] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 118.676095] ? __pfx___schedule+0x10/0x10 [ 118.676113] __x64_sys_futex+0x1c9/0x4d0 [ 118.676128] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 118.676148] ? __pfx___x64_sys_futex+0x10/0x10 [ 118.676162] ? xfd_validate_state+0x55/0x180 [ 118.676185] do_syscall_64+0xbf/0x360 [ 118.676197] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.676210] RIP: 0033:0x7f100709fb19 [ 118.676219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 118.676230] RSP: 002b:00007f1004615218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.676241] RAX: ffffffffffffffda RBX: 00007f10071b2f68 RCX: 00007f100709fb19 [ 118.676249] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f10071b2f6c [ 118.676257] RBP: 00007f10071b2f60 R08: 000000000000000e R09: 0000000000000000 [ 118.676265] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f10071b2f6c [ 118.676272] R13: 00007ffc3ccb24bf R14: 00007f1004615300 R15: 0000000000022000 [ 118.676288] [ 118.676292] Modules linked in: [ 118.676316] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 118.676328] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 118.676339] CPU: 1 UID: 0 PID: 3930 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 118.676358] Tainted: [D]=DIE, [W]=WARN [ 118.676362] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 118.676369] RIP: 0010:perf_tp_event+0x175/0xe70 [ 118.676385] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 118.676396] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012 [ 118.676406] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 118.676414] RDX: ffff88801a461b80 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 118.676422] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd16a88 [ 118.676430] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 118.676437] R13: 000000000000002c R14: ffff88806cf31490 R15: dffffc0000000000 [ 118.676447] FS: 00007f1004615700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 118.676458] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 118.676466] CR2: 0000000020000340 CR3: 0000000007082000 CR4: 0000000000350ef0 [ 118.676473] Call Trace: [ 118.676477] [ 118.676486] ? __pfx_perf_tp_event+0x10/0x10 [ 118.676504] ? stack_depot_save_flags+0x2c/0xa20 [ 118.676520] ? kasan_save_stack+0x34/0x50 [ 118.676535] ? kasan_save_stack+0x24/0x50 [ 118.676547] ? kasan_save_track+0x14/0x30 [ 118.676560] ? __kasan_save_free_info+0x3a/0x60 [ 118.676572] ? __kasan_slab_free+0x3f/0x50 [ 118.676586] ? kmem_cache_free+0x2a1/0x540 [ 118.676596] ? rcu_core+0x7c8/0x1800 [ 118.676610] ? handle_softirqs+0x1b1/0x770 [ 118.676627] ? __irq_exit_rcu+0xc4/0x100 [ 118.676644] ? irq_exit_rcu+0x9/0x20 [ 118.676653] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 118.676668] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 118.676680] ? perf_trace_lock+0xe6/0x5d0 [ 118.676693] ? lock_release+0x1ab/0x290 [ 118.676705] ? unwind_next_frame+0x3b7/0x2540 [ 118.676723] ? arch_stack_walk+0x86/0xf0 [ 118.676734] ? stack_trace_save+0x8e/0xc0 [ 118.676748] ? kasan_save_stack+0x24/0x50 [ 118.676761] ? kasan_record_aux_stack+0x89/0xa0 [ 118.676771] ? __call_rcu_common.constprop.0+0x70/0x960 [ 118.676784] ? kfree+0x31a/0x550 [ 118.676799] ? selinux_netlbl_sk_security_free+0x12c/0x3e0 [ 118.676813] ? security_sk_free+0x7c/0xb0 [ 118.676827] ? __sk_destruct+0x557/0x8f0 [ 118.676842] ? __sk_free+0x1a9/0x4b0 [ 118.676855] ? sk_free+0x6a/0x90 [ 118.676869] ? tcp_close+0xce/0x110 [ 118.676884] ? inet_release+0xed/0x200 [ 118.676897] ? __sock_release+0xb3/0x270 [ 118.676914] ? sock_close+0x1c/0x30 [ 118.676929] ? __fput+0x401/0xb50 [ 118.676944] ? fput_close_sync+0x10f/0x240 [ 118.676959] ? __x64_sys_close+0x8f/0x120 [ 118.676979] ? perf_trace_run_bpf_submit+0xef/0x180 [ 118.676995] ? match_held_lock+0xb0/0xd0 [ 118.677010] perf_trace_run_bpf_submit+0xef/0x180 [ 118.677029] perf_trace_lock+0x337/0x5d0 [ 118.677045] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.677062] ? find_held_lock+0x2b/0x80 [ 118.677079] ? hrtimer_interrupt+0x114/0x830 [ 118.677090] lock_release+0x1ab/0x290 [ 118.677106] ktime_get_update_offsets_now+0xab/0x3c0 [ 118.733940] ? hrtimer_interrupt+0x114/0x830 [ 118.733958] hrtimer_interrupt+0x114/0x830 [ 118.733970] ? __local_bh_enable+0x7b/0x90 [ 118.733985] ? handle_softirqs+0x50c/0x770 [ 118.734003] __sysvec_apic_timer_interrupt+0xbb/0x330 [ 118.734019] sysvec_apic_timer_interrupt+0x6b/0x80 [ 118.734033] [ 118.734037] [ 118.734042] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 118.734053] RIP: 0010:oops_exit+0x0/0x50 [ 118.734067] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27 [ 118.734077] RSP: 0018:ffff8880471b7690 EFLAGS: 00000202 [ 118.734087] RAX: 000000000001ee21 RBX: 0000000000000212 RCX: ffffc90006819000 [ 118.734094] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 118.734101] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90 [ 118.734108] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880471b7758 [ 118.734114] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 118.734125] ? oops_end+0x4a/0xe0 [ 118.734144] oops_end+0x65/0xe0 [ 118.734159] exc_general_protection+0x1a2/0x330 [ 118.734177] asm_exc_general_protection+0x26/0x30 [ 118.734187] RIP: 0010:perf_tp_event+0x175/0xe70 [ 118.734201] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 118.734211] RSP: 0018:ffff8880471b7800 EFLAGS: 00010212 [ 118.734227] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90006819000 [ 118.734234] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 118.734241] RBP: ffff8880471b7a70 R08: ffff88806cf31340 R09: ffffe8ffffd16a88 [ 118.734248] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 118.734255] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 118.734266] ? perf_tp_event+0x167/0xe70 [ 118.734286] ? __pfx_perf_tp_event+0x10/0x10 [ 118.734301] ? lock_is_held_type+0x9e/0x120 [ 118.734316] ? lock_is_held_type+0x9e/0x120 [ 118.734331] ? perf_trace_lock+0xb5/0x5d0 [ 118.734344] ? perf_trace_lock+0xb5/0x5d0 [ 118.734357] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.734370] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.734384] ? find_held_lock+0x2b/0x80 [ 118.734400] ? find_held_lock+0x2b/0x80 [ 118.734415] ? __perf_install_in_context+0x503/0xb90 [ 118.734426] ? lock_release+0xc8/0x290 [ 118.734438] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 118.734455] ? do_raw_spin_unlock+0x53/0x220 [ 118.734471] ? perf_trace_run_bpf_submit+0xef/0x180 [ 118.734485] perf_trace_run_bpf_submit+0xef/0x180 [ 118.734502] perf_trace_lock+0x337/0x5d0 [ 118.734517] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.734531] ? lock_acquire+0x15e/0x2f0 [ 118.734543] ? futex_ref_get+0x48/0x300 [ 118.734553] ? futex_ref_get+0x114/0x300 [ 118.734562] ? futex_hash+0x15c/0x390 [ 118.734573] lock_release+0x1ab/0x290 [ 118.734585] ? futex_hash+0x15c/0x390 [ 118.734596] futex_ref_get+0x119/0x300 [ 118.734606] ? futex_hash+0x15c/0x390 [ 118.734615] futex_hash+0x70/0x390 [ 118.734627] futex_wake+0x143/0x540 [ 118.734640] ? __pfx_perf_trace_lock+0x10/0x10 [ 118.734654] ? __pfx_futex_wake+0x10/0x10 [ 118.734669] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 118.734682] ? lock_release+0xc8/0x290 [ 118.734697] do_futex+0x26d/0x370 [ 118.734709] ? __pfx_do_futex+0x10/0x10 [ 118.734722] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 118.734734] ? __pfx___schedule+0x10/0x10 [ 118.734749] __x64_sys_futex+0x1c9/0x4d0 [ 118.734762] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 118.734780] ? __pfx___x64_sys_futex+0x10/0x10 [ 118.734792] ? xfd_validate_state+0x55/0x180 [ 118.734811] do_syscall_64+0xbf/0x360 [ 118.734822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 118.734832] RIP: 0033:0x7f100709fb19 [ 118.734840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 118.734850] RSP: 002b:00007f1004615218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.734860] RAX: ffffffffffffffda RBX: 00007f10071b2f68 RCX: 00007f100709fb19 [ 118.734867] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f10071b2f6c [ 118.734874] RBP: 00007f10071b2f60 R08: 000000000000000e R09: 0000000000000000 [ 118.734881] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f10071b2f6c [ 118.734887] R13: 00007ffc3ccb24bf R14: 00007f1004615300 R15: 0000000000022000 [ 118.734901] [ 118.734905] Modules linked in: [ 118.734912] ---[ end trace 0000000000000000 ]--- [ 118.734917] RIP: 0010:perf_tp_event+0x175/0xe70 [ 118.734931] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 118.734941] RSP: 0018:ffff8880471b7800 EFLAGS: 00010212 [ 118.734950] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90006819000 [ 118.734957] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 118.734964] RBP: ffff8880471b7a70 R08: ffff88806cf31340 R09: ffffe8ffffd16a88 [ 118.734971] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 118.734977] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 118.734986] FS: 00007f1004615700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 118.734996] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 118.735003] CR2: 0000000020000340 CR3: 0000000007082000 CR4: 0000000000350ef0 [ 118.735012] Kernel panic - not syncing: Fatal exception in interrupt [ 118.735097] Kernel Offset: disabled [ 118.776115] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 10:51:53 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806cf3c300 RCX=ffffffff816880fc RDX=ffff88801941d280 RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880168cfbd8 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffffed100d9e7861 R13=ffff88806cf3c308 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f35231ef8c0 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe4500000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555566319c98 CR3=0000000045dfe000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=25252525252525252525252525252525 XMM01=00ff00000000000000ff00000000ff00 XMM02=00ff00000000000000ff00000000ff00 XMM03=005580f1ab0eec00007ffc00333a3762 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=020100ffff0001020000000600000002 XMM06=000000000000000600005581221f72b0 XMM07=00000000000000000000000000000000 XMM08=49006d756e203c2069000a313a56000a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88806cf08378 R8 =0000000000000000 R9 =ffffed10013ab046 R10=0000000000000020 R11=0000000065646f43 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1004615700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe7400000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000020000340 CR3=0000000007082000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000