Warning: Permanently added '[localhost]:40988' (ECDSA) to the list of known hosts. 2025/08/29 11:45:27 fuzzer started 2025/08/29 11:45:27 dialing manager at localhost:43077 syzkaller login: [ 51.647684] cgroup: Unknown subsys name 'net' [ 51.703417] cgroup: Unknown subsys name 'cpuset' [ 51.716901] cgroup: Unknown subsys name 'rlimit' 2025/08/29 11:45:38 syscalls: 2214 2025/08/29 11:45:38 code coverage: enabled 2025/08/29 11:45:38 comparison tracing: enabled 2025/08/29 11:45:38 extra coverage: enabled 2025/08/29 11:45:38 setuid sandbox: enabled 2025/08/29 11:45:38 namespace sandbox: enabled 2025/08/29 11:45:38 Android sandbox: enabled 2025/08/29 11:45:38 fault injection: enabled 2025/08/29 11:45:38 leak checking: enabled 2025/08/29 11:45:38 net packet injection: enabled 2025/08/29 11:45:38 net device setup: enabled 2025/08/29 11:45:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 11:45:38 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 11:45:38 USB emulation: enabled 2025/08/29 11:45:38 hci packet injection: enabled 2025/08/29 11:45:38 wifi device emulation: enabled 2025/08/29 11:45:38 802.15.4 emulation: enabled 2025/08/29 11:45:38 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 11:45:38 fetching corpus: 50, signal 22095/25639 (executing program) 2025/08/29 11:45:38 fetching corpus: 100, signal 30847/35889 (executing program) 2025/08/29 11:45:38 fetching corpus: 150, signal 40582/46889 (executing program) 2025/08/29 11:45:38 fetching corpus: 200, signal 45120/52755 (executing program) 2025/08/29 11:45:38 fetching corpus: 250, signal 50339/59158 (executing program) 2025/08/29 11:45:38 fetching corpus: 300, signal 54802/64720 (executing program) 2025/08/29 11:45:38 fetching corpus: 350, signal 58739/69785 (executing program) 2025/08/29 11:45:38 fetching corpus: 400, signal 60916/73156 (executing program) 2025/08/29 11:45:38 fetching corpus: 450, signal 64656/77935 (executing program) 2025/08/29 11:45:39 fetching corpus: 500, signal 68158/82307 (executing program) 2025/08/29 11:45:39 fetching corpus: 550, signal 70581/85673 (executing program) 2025/08/29 11:45:39 fetching corpus: 600, signal 72614/88684 (executing program) 2025/08/29 11:45:39 fetching corpus: 650, signal 75114/92126 (executing program) 2025/08/29 11:45:39 fetching corpus: 700, signal 78103/95856 (executing program) 2025/08/29 11:45:39 fetching corpus: 750, signal 81832/100077 (executing program) 2025/08/29 11:45:39 fetching corpus: 800, signal 83747/102772 (executing program) 2025/08/29 11:45:39 fetching corpus: 850, signal 85399/105307 (executing program) 2025/08/29 11:45:39 fetching corpus: 900, signal 87342/107979 (executing program) 2025/08/29 11:45:39 fetching corpus: 950, signal 89860/111083 (executing program) 2025/08/29 11:45:39 fetching corpus: 1000, signal 91388/113363 (executing program) 2025/08/29 11:45:39 fetching corpus: 1050, signal 93299/115876 (executing program) 2025/08/29 11:45:39 fetching corpus: 1100, signal 94103/117524 (executing program) 2025/08/29 11:45:40 fetching corpus: 1150, signal 96461/120311 (executing program) 2025/08/29 11:45:40 fetching corpus: 1200, signal 98115/122546 (executing program) 2025/08/29 11:45:40 fetching corpus: 1250, signal 99809/124768 (executing program) 2025/08/29 11:45:40 fetching corpus: 1300, signal 101259/126700 (executing program) 2025/08/29 11:45:40 fetching corpus: 1350, signal 102447/128456 (executing program) 2025/08/29 11:45:40 fetching corpus: 1400, signal 104263/130625 (executing program) 2025/08/29 11:45:40 fetching corpus: 1450, signal 106574/133160 (executing program) 2025/08/29 11:45:40 fetching corpus: 1500, signal 107616/134734 (executing program) 2025/08/29 11:45:40 fetching corpus: 1550, signal 109574/136948 (executing program) 2025/08/29 11:45:40 fetching corpus: 1600, signal 111267/138939 (executing program) 2025/08/29 11:45:40 fetching corpus: 1650, signal 112038/140321 (executing program) 2025/08/29 11:45:41 fetching corpus: 1700, signal 113305/141975 (executing program) 2025/08/29 11:45:41 fetching corpus: 1750, signal 114912/143783 (executing program) 2025/08/29 11:45:41 fetching corpus: 1800, signal 116168/145342 (executing program) 2025/08/29 11:45:41 fetching corpus: 1850, signal 117274/146796 (executing program) 2025/08/29 11:45:41 fetching corpus: 1900, signal 118733/148448 (executing program) 2025/08/29 11:45:41 fetching corpus: 1950, signal 119920/149891 (executing program) 2025/08/29 11:45:41 fetching corpus: 2000, signal 120862/151237 (executing program) 2025/08/29 11:45:41 fetching corpus: 2050, signal 121840/152536 (executing program) 2025/08/29 11:45:41 fetching corpus: 2100, signal 123208/154043 (executing program) 2025/08/29 11:45:41 fetching corpus: 2150, signal 124088/155236 (executing program) 2025/08/29 11:45:41 fetching corpus: 2200, signal 124763/156306 (executing program) 2025/08/29 11:45:42 fetching corpus: 2250, signal 126279/157816 (executing program) 2025/08/29 11:45:42 fetching corpus: 2300, signal 126810/158783 (executing program) 2025/08/29 11:45:42 fetching corpus: 2350, signal 127994/160025 (executing program) 2025/08/29 11:45:42 fetching corpus: 2400, signal 128931/161161 (executing program) 2025/08/29 11:45:42 fetching corpus: 2450, signal 129630/162161 (executing program) 2025/08/29 11:45:42 fetching corpus: 2500, signal 130237/163120 (executing program) 2025/08/29 11:45:42 fetching corpus: 2550, signal 131175/164221 (executing program) 2025/08/29 11:45:42 fetching corpus: 2600, signal 132014/165218 (executing program) 2025/08/29 11:45:42 fetching corpus: 2650, signal 132866/166228 (executing program) 2025/08/29 11:45:42 fetching corpus: 2700, signal 133645/167169 (executing program) 2025/08/29 11:45:42 fetching corpus: 2750, signal 134674/168239 (executing program) 2025/08/29 11:45:43 fetching corpus: 2800, signal 135330/169085 (executing program) 2025/08/29 11:45:43 fetching corpus: 2850, signal 136118/170003 (executing program) 2025/08/29 11:45:43 fetching corpus: 2900, signal 136775/170824 (executing program) 2025/08/29 11:45:43 fetching corpus: 2950, signal 137758/171830 (executing program) 2025/08/29 11:45:43 fetching corpus: 3000, signal 138694/172731 (executing program) 2025/08/29 11:45:43 fetching corpus: 3050, signal 139604/173659 (executing program) 2025/08/29 11:45:43 fetching corpus: 3100, signal 140410/174513 (executing program) 2025/08/29 11:45:43 fetching corpus: 3150, signal 141103/175296 (executing program) 2025/08/29 11:45:43 fetching corpus: 3200, signal 141670/175985 (executing program) 2025/08/29 11:45:43 fetching corpus: 3250, signal 142280/176744 (executing program) 2025/08/29 11:45:44 fetching corpus: 3300, signal 142865/177496 (executing program) 2025/08/29 11:45:44 fetching corpus: 3350, signal 143356/178139 (executing program) 2025/08/29 11:45:44 fetching corpus: 3400, signal 143956/178831 (executing program) 2025/08/29 11:45:44 fetching corpus: 3450, signal 144448/179462 (executing program) 2025/08/29 11:45:44 fetching corpus: 3500, signal 144816/180060 (executing program) 2025/08/29 11:45:44 fetching corpus: 3550, signal 145457/180725 (executing program) 2025/08/29 11:45:44 fetching corpus: 3600, signal 146200/181376 (executing program) 2025/08/29 11:45:44 fetching corpus: 3650, signal 147000/182058 (executing program) 2025/08/29 11:45:44 fetching corpus: 3700, signal 147498/182606 (executing program) 2025/08/29 11:45:44 fetching corpus: 3750, signal 148227/183219 (executing program) 2025/08/29 11:45:44 fetching corpus: 3800, signal 148622/183761 (executing program) 2025/08/29 11:45:44 fetching corpus: 3850, signal 149328/184293 (executing program) 2025/08/29 11:45:44 fetching corpus: 3900, signal 149844/184830 (executing program) 2025/08/29 11:45:45 fetching corpus: 3950, signal 150385/185399 (executing program) 2025/08/29 11:45:45 fetching corpus: 4000, signal 150884/185914 (executing program) 2025/08/29 11:45:45 fetching corpus: 4050, signal 151370/186386 (executing program) 2025/08/29 11:45:45 fetching corpus: 4100, signal 151985/186916 (executing program) 2025/08/29 11:45:45 fetching corpus: 4150, signal 152449/187372 (executing program) 2025/08/29 11:45:45 fetching corpus: 4200, signal 152805/187861 (executing program) 2025/08/29 11:45:45 fetching corpus: 4250, signal 153344/188325 (executing program) 2025/08/29 11:45:45 fetching corpus: 4300, signal 153772/188859 (executing program) 2025/08/29 11:45:45 fetching corpus: 4350, signal 154590/189418 (executing program) 2025/08/29 11:45:45 fetching corpus: 4400, signal 154943/189831 (executing program) 2025/08/29 11:45:45 fetching corpus: 4450, signal 155452/190259 (executing program) 2025/08/29 11:45:46 fetching corpus: 4500, signal 155868/190675 (executing program) 2025/08/29 11:45:46 fetching corpus: 4550, signal 156353/191066 (executing program) 2025/08/29 11:45:46 fetching corpus: 4600, signal 156925/191493 (executing program) 2025/08/29 11:45:46 fetching corpus: 4650, signal 157460/191669 (executing program) 2025/08/29 11:45:46 fetching corpus: 4700, signal 157918/191701 (executing program) 2025/08/29 11:45:46 fetching corpus: 4750, signal 158341/191709 (executing program) 2025/08/29 11:45:46 fetching corpus: 4800, signal 160538/191730 (executing program) 2025/08/29 11:45:46 fetching corpus: 4850, signal 160929/191741 (executing program) 2025/08/29 11:45:46 fetching corpus: 4900, signal 161304/191788 (executing program) 2025/08/29 11:45:46 fetching corpus: 4950, signal 161826/191812 (executing program) 2025/08/29 11:45:46 fetching corpus: 5000, signal 162139/191815 (executing program) 2025/08/29 11:45:46 fetching corpus: 5050, signal 162464/191836 (executing program) 2025/08/29 11:45:47 fetching corpus: 5100, signal 162870/191848 (executing program) 2025/08/29 11:45:47 fetching corpus: 5150, signal 163573/191911 (executing program) 2025/08/29 11:45:47 fetching corpus: 5200, signal 164165/191917 (executing program) 2025/08/29 11:45:47 fetching corpus: 5250, signal 164638/191924 (executing program) 2025/08/29 11:45:47 fetching corpus: 5300, signal 164974/191996 (executing program) 2025/08/29 11:45:47 fetching corpus: 5350, signal 165271/192019 (executing program) 2025/08/29 11:45:47 fetching corpus: 5400, signal 166010/192033 (executing program) 2025/08/29 11:45:47 fetching corpus: 5450, signal 166361/192037 (executing program) 2025/08/29 11:45:47 fetching corpus: 5500, signal 166741/192044 (executing program) 2025/08/29 11:45:47 fetching corpus: 5550, signal 167036/192053 (executing program) 2025/08/29 11:45:47 fetching corpus: 5600, signal 167432/192054 (executing program) 2025/08/29 11:45:47 fetching corpus: 5650, signal 167953/192064 (executing program) 2025/08/29 11:45:47 fetching corpus: 5700, signal 168434/192074 (executing program) 2025/08/29 11:45:47 fetching corpus: 5750, signal 168995/192144 (executing program) 2025/08/29 11:45:47 fetching corpus: 5800, signal 169296/192145 (executing program) 2025/08/29 11:45:48 fetching corpus: 5850, signal 169615/192151 (executing program) 2025/08/29 11:45:48 fetching corpus: 5900, signal 169907/192162 (executing program) 2025/08/29 11:45:48 fetching corpus: 5950, signal 170304/192279 (executing program) 2025/08/29 11:45:48 fetching corpus: 6000, signal 170738/192316 (executing program) 2025/08/29 11:45:48 fetching corpus: 6050, signal 171151/192320 (executing program) 2025/08/29 11:45:48 fetching corpus: 6100, signal 171632/192338 (executing program) 2025/08/29 11:45:48 fetching corpus: 6150, signal 171906/192340 (executing program) 2025/08/29 11:45:48 fetching corpus: 6200, signal 172365/192348 (executing program) 2025/08/29 11:45:48 fetching corpus: 6250, signal 172921/192439 (executing program) 2025/08/29 11:45:48 fetching corpus: 6300, signal 173248/192442 (executing program) 2025/08/29 11:45:49 fetching corpus: 6350, signal 173619/192443 (executing program) 2025/08/29 11:45:49 fetching corpus: 6400, signal 173974/192453 (executing program) 2025/08/29 11:45:49 fetching corpus: 6450, signal 174358/192497 (executing program) 2025/08/29 11:45:49 fetching corpus: 6500, signal 174585/192515 (executing program) 2025/08/29 11:45:49 fetching corpus: 6550, signal 175169/192517 (executing program) 2025/08/29 11:45:49 fetching corpus: 6600, signal 175512/192525 (executing program) 2025/08/29 11:45:49 fetching corpus: 6650, signal 176010/192539 (executing program) 2025/08/29 11:45:49 fetching corpus: 6700, signal 176263/192548 (executing program) 2025/08/29 11:45:49 fetching corpus: 6750, signal 176751/192555 (executing program) 2025/08/29 11:45:49 fetching corpus: 6800, signal 177102/192569 (executing program) 2025/08/29 11:45:49 fetching corpus: 6850, signal 177373/192581 (executing program) 2025/08/29 11:45:49 fetching corpus: 6900, signal 177716/192586 (executing program) 2025/08/29 11:45:49 fetching corpus: 6950, signal 178114/192592 (executing program) 2025/08/29 11:45:50 fetching corpus: 7000, signal 178415/192599 (executing program) 2025/08/29 11:45:50 fetching corpus: 7050, signal 178692/192602 (executing program) 2025/08/29 11:45:50 fetching corpus: 7100, signal 179389/192603 (executing program) 2025/08/29 11:45:50 fetching corpus: 7150, signal 180366/192609 (executing program) 2025/08/29 11:45:50 fetching corpus: 7200, signal 180598/192609 (executing program) 2025/08/29 11:45:50 fetching corpus: 7250, signal 180962/192658 (executing program) 2025/08/29 11:45:50 fetching corpus: 7300, signal 181319/192666 (executing program) 2025/08/29 11:45:50 fetching corpus: 7350, signal 181667/192677 (executing program) 2025/08/29 11:45:50 fetching corpus: 7400, signal 181977/192679 (executing program) 2025/08/29 11:45:50 fetching corpus: 7450, signal 182303/192699 (executing program) 2025/08/29 11:45:50 fetching corpus: 7500, signal 182577/192701 (executing program) 2025/08/29 11:45:51 fetching corpus: 7550, signal 182901/192719 (executing program) 2025/08/29 11:45:51 fetching corpus: 7600, signal 183210/192721 (executing program) 2025/08/29 11:45:51 fetching corpus: 7650, signal 183619/192722 (executing program) 2025/08/29 11:45:51 fetching corpus: 7700, signal 183983/192786 (executing program) 2025/08/29 11:45:51 fetching corpus: 7750, signal 184251/192794 (executing program) 2025/08/29 11:45:51 fetching corpus: 7800, signal 184432/192794 (executing program) 2025/08/29 11:45:51 fetching corpus: 7850, signal 184718/192838 (executing program) 2025/08/29 11:45:51 fetching corpus: 7900, signal 184933/192840 (executing program) 2025/08/29 11:45:51 fetching corpus: 7950, signal 185136/192852 (executing program) 2025/08/29 11:45:51 fetching corpus: 8000, signal 185373/192855 (executing program) 2025/08/29 11:45:51 fetching corpus: 8050, signal 185618/192859 (executing program) 2025/08/29 11:45:51 fetching corpus: 8100, signal 185942/192871 (executing program) 2025/08/29 11:45:51 fetching corpus: 8150, signal 186209/192871 (executing program) 2025/08/29 11:45:52 fetching corpus: 8200, signal 186436/192880 (executing program) 2025/08/29 11:45:52 fetching corpus: 8250, signal 186657/192882 (executing program) 2025/08/29 11:45:52 fetching corpus: 8300, signal 187269/192886 (executing program) 2025/08/29 11:45:52 fetching corpus: 8350, signal 187566/192918 (executing program) 2025/08/29 11:45:52 fetching corpus: 8400, signal 187840/192919 (executing program) 2025/08/29 11:45:52 fetching corpus: 8450, signal 188048/192936 (executing program) 2025/08/29 11:45:52 fetching corpus: 8500, signal 188230/192941 (executing program) 2025/08/29 11:45:52 fetching corpus: 8550, signal 188551/192943 (executing program) 2025/08/29 11:45:52 fetching corpus: 8600, signal 188917/192945 (executing program) 2025/08/29 11:45:52 fetching corpus: 8650, signal 189094/192970 (executing program) 2025/08/29 11:45:52 fetching corpus: 8700, signal 189292/192977 (executing program) 2025/08/29 11:45:53 fetching corpus: 8750, signal 189403/192981 (executing program) 2025/08/29 11:45:53 fetching corpus: 8783, signal 189602/192981 (executing program) 2025/08/29 11:45:53 fetching corpus: 8783, signal 189602/192981 (executing program) 2025/08/29 11:45:54 starting 8 fuzzer processes 11:45:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000b40), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000d00)={0x34, r1, 0x5, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x34}}, 0x0) 11:45:54 executing program 2: semctl$SEM_INFO(0x0, 0x0, 0x13, 0x0) 11:45:55 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETLED(r0, 0x5412, 0xf0ff1f00000000) 11:45:55 executing program 3: r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[]) symlinkat(&(0x7f0000005dc0)='./file0\x00', r0, &(0x7f0000005e00)='./file0\x00') seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) faccessat2(r0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x300) 11:45:55 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000100)={{}, {0x2}}) fremovexattr(0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x80045300, 0x0) 11:45:55 executing program 7: sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 11:45:55 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_REG_RULES={0x8, 0x22, 0x0, 0x1, [{0x4}]}, @NL80211_ATTR_DFS_REGION={0x5}]}, 0x2c}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) 11:45:55 executing program 6: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$PTP_PEROUT_REQUEST(r0, 0x40383d0c, &(0x7f00000000c0)={{}, {}, 0x0, 0x3}) [ 78.931340] audit: type=1400 audit(1756467955.160:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 80.207387] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.213271] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.214890] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 80.217610] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.219629] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.221529] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 80.222996] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 80.225664] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 80.227127] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 80.230616] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.234876] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 80.235367] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 80.236370] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.240457] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.241806] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 80.272708] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.276972] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 80.280302] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.282062] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.283760] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 80.285362] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 80.287199] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 80.289367] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 80.292907] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 80.295083] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 80.297636] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 80.300905] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 80.304966] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 80.321133] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 80.322405] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 80.322524] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.324641] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 80.330672] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 80.333141] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 80.333281] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 80.336629] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 80.344567] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 80.351772] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 80.359676] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 80.363679] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 82.295531] Bluetooth: hci1: command tx timeout [ 82.359418] Bluetooth: hci6: command tx timeout [ 82.359792] Bluetooth: hci2: command tx timeout [ 82.360773] Bluetooth: hci4: command tx timeout [ 82.361087] Bluetooth: hci3: command tx timeout [ 82.423697] Bluetooth: hci5: command tx timeout [ 82.424435] Bluetooth: hci7: command tx timeout [ 82.425144] Bluetooth: hci0: command tx timeout [ 84.344398] Bluetooth: hci1: command tx timeout [ 84.407270] Bluetooth: hci4: command tx timeout [ 84.407687] Bluetooth: hci2: command tx timeout [ 84.408073] Bluetooth: hci3: command tx timeout [ 84.409299] Bluetooth: hci6: command tx timeout [ 84.471384] Bluetooth: hci7: command tx timeout [ 84.471807] Bluetooth: hci5: command tx timeout [ 84.471841] Bluetooth: hci0: command tx timeout [ 86.394459] Bluetooth: hci1: command tx timeout [ 86.455337] Bluetooth: hci3: command tx timeout [ 86.455452] Bluetooth: hci6: command tx timeout [ 86.457112] Bluetooth: hci2: command tx timeout [ 86.457231] Bluetooth: hci4: command tx timeout [ 86.519261] Bluetooth: hci7: command tx timeout [ 86.519988] Bluetooth: hci5: command tx timeout [ 86.520956] Bluetooth: hci0: command tx timeout [ 88.440270] Bluetooth: hci1: command tx timeout [ 88.503261] Bluetooth: hci6: command tx timeout [ 88.503369] Bluetooth: hci2: command tx timeout [ 88.504319] Bluetooth: hci4: command tx timeout [ 88.505137] Bluetooth: hci3: command tx timeout [ 88.569201] Bluetooth: hci5: command tx timeout [ 88.569252] Bluetooth: hci7: command tx timeout [ 88.569779] Bluetooth: hci0: command tx timeout [ 120.130631] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.131542] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.331126] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.331838] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.693760] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.694602] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.907014] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.907657] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.979176] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.979773] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.132417] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.133064] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.441544] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.442814] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.514197] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.514804] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.622726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.623485] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.703252] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.704005] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.980048] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.980841] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.029230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.029896] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.065629] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.066703] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.097079] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.097782] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.165357] audit: type=1400 audit(1756467998.393:8): avc: denied { open } for pid=3888 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.172566] audit: type=1400 audit(1756467998.393:9): avc: denied { kernel } for pid=3888 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.251242] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.252450] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.331957] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.333431] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:46:38 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000002840)=0xffffffffffffffff, 0x4) sendmmsg$sock(r0, &(0x7f00000031c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001940)=[@timestamping={{0x14, 0x1, 0x25, 0x45c348f0}}], 0x18}}], 0x2, 0x4000000) 11:46:38 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) pipe(&(0x7f0000001340)={0xffffffffffffffff, 0xffffffffffffffff}) bind$bt_sco(r2, &(0x7f0000000140)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8) bind$bt_sco(r1, &(0x7f0000001380), 0x8) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r3, 0xf505, 0x0) r4 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed}, &(0x7f0000000040)=0xe, 0x100800) ioctl$sock_SIOCADDDLCI(r4, 0x8980, &(0x7f00000000c0)={'veth1\x00', 0xbe}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x2}}, './file0\x00'}) r6 = dup2(r0, r0) getsockopt$IP_VS_SO_GET_SERVICE(r6, 0x0, 0x13, 0x0, &(0x7f0000000080)) shutdown(r5, 0x0) socket$nl_audit(0x10, 0x3, 0x9) r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00'}) 11:46:38 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_REG_RULES={0x8, 0x22, 0x0, 0x1, [{0x4}]}, @NL80211_ATTR_DFS_REGION={0x5}]}, 0x2c}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) 11:46:38 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCSSOFTCAR(r0, 0x5403, 0x0) 11:46:38 executing program 7: clock_gettime(0x13ef4c6ebd0fb96b, 0x0) 11:46:38 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x40032, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) copy_file_range(r0, 0x0, r0, &(0x7f0000000040), 0x0, 0x0) 11:46:38 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000b40), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000d00)={0x34, r1, 0x5, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x34}}, 0x0) 11:46:38 executing program 6: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$PTP_PEROUT_REQUEST(r0, 0x40383d0c, &(0x7f00000000c0)={{}, {}, 0x0, 0x3}) [ 122.559956] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list 11:46:38 executing program 2: perf_event_open(&(0x7f0000000340)={0x3, 0x80, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 11:46:38 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x40032, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) copy_file_range(r0, 0x0, r0, &(0x7f0000000040), 0x0, 0x0) 11:46:38 executing program 4: syz_mount_image$tmpfs(&(0x7f0000000380), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x1, &(0x7f0000001980)=ANY=[]) lchown(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) 11:46:38 executing program 7: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000b80)={0x0, 0x9}, 0xc) 11:46:38 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000b40), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000d00)={0x34, r1, 0x5, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x34}}, 0x0) 11:46:38 executing program 3: r0 = io_uring_setup(0x5b23, &(0x7f0000000240)) fcntl$setflags(r0, 0x2, 0x0) 11:46:39 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x40032, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) copy_file_range(r0, 0x0, r0, &(0x7f0000000040), 0x0, 0x0) 11:46:39 executing program 2: perf_event_open(&(0x7f0000000340)={0x3, 0x80, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 11:46:39 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_REG_RULES={0x8, 0x22, 0x0, 0x1, [{0x4}]}, @NL80211_ATTR_DFS_REGION={0x5}]}, 0x2c}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) 11:46:39 executing program 4: syz_mount_image$tmpfs(&(0x7f0000000380), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x1, &(0x7f0000001980)=ANY=[]) lchown(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) 11:46:39 executing program 3: prctl$PR_SET_MM_MAP(0x4c, 0xe, &(0x7f0000000380)={&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff4000/0xc000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ff5000/0x2000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff4000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff4000/0x2000)=nil, 0x0}, 0x68) 11:46:39 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000b40), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000d00)={0x34, r1, 0x5, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x34}}, 0x0) 11:46:39 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='cgroup\x00') pread64(r0, &(0x7f0000000080)=""/120, 0x78, 0x0) 11:46:39 executing program 6: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$PTP_PEROUT_REQUEST(r0, 0x40383d0c, &(0x7f00000000c0)={{}, {}, 0x0, 0x3}) [ 122.915865] kmemleak: Found object by alias at 0x607f1a639888 [ 122.915885] CPU: 0 UID: 0 PID: 3935 Comm: syz-executor.1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 122.915904] Tainted: [W]=WARN [ 122.915908] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 122.915915] Call Trace: [ 122.915919] [ 122.915924] dump_stack_lvl+0xca/0x120 [ 122.915951] __lookup_object+0x94/0xb0 [ 122.915968] delete_object_full+0x27/0x70 [ 122.915984] free_percpu+0x30/0x1160 [ 122.916000] ? arch_uprobe_clear_state+0x16/0x140 [ 122.916020] futex_hash_free+0x38/0xc0 [ 122.916035] mmput+0x2d3/0x390 [ 122.916053] do_exit+0x79d/0x2970 [ 122.916067] ? signal_wake_up_state+0x85/0x120 [ 122.916082] ? zap_other_threads+0x2b9/0x3a0 [ 122.916098] ? __pfx_do_exit+0x10/0x10 [ 122.916111] ? do_group_exit+0x1c3/0x2a0 [ 122.916124] ? lock_release+0xc8/0x290 [ 122.916141] do_group_exit+0xd3/0x2a0 [ 122.916159] __x64_sys_exit_group+0x3e/0x50 [ 122.916173] x64_sys_call+0x18c5/0x18d0 [ 122.916188] do_syscall_64+0xbf/0x360 [ 122.916200] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.916212] RIP: 0033:0x7f82d25f5b19 [ 122.916221] Code: Unable to access opcode bytes at 0x7f82d25f5aef. [ 122.916226] RSP: 002b:00007ffdaf07f698 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 122.916237] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f82d25f5b19 [ 122.916245] RDX: 00007f82d25a872b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 122.916252] RBP: 0000000000000000 R08: 0000001b2cf24694 R09: 0000000000000000 [ 122.916259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 122.916266] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffdaf07f780 [ 122.916282] [ 122.916286] kmemleak: Object (percpu) 0x607f1a639880 (size 16): [ 122.916293] kmemleak: comm "syz-executor.4", pid 286, jiffies 4294789538 [ 122.916300] kmemleak: min_count = 1 [ 122.916304] kmemleak: count = 0 [ 122.916308] kmemleak: flags = 0x21 [ 122.916311] kmemleak: checksum = 0 [ 122.916315] kmemleak: backtrace: [ 122.916319] pcpu_alloc_noprof+0x87a/0x1170 [ 122.916334] mm_init+0x99b/0x1170 [ 122.916342] copy_process+0x3ab7/0x73c0 [ 122.916352] kernel_clone+0xea/0x7f0 [ 122.916362] __do_sys_clone+0xce/0x120 [ 122.916371] do_syscall_64+0xbf/0x360 [ 122.916380] entry_SYSCALL_64_after_hwframe+0x77/0x7f 11:46:39 executing program 2: perf_event_open(&(0x7f0000000340)={0x3, 0x80, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 11:46:39 executing program 3: prctl$PR_SET_MM_MAP(0x4c, 0xe, &(0x7f0000000380)={&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff4000/0xc000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ff5000/0x2000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff4000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff4000/0x2000)=nil, 0x0}, 0x68) [ 122.963648] kmemleak: Cannot insert 0x607f1a639888 into the object search tree (overlaps existing) [ 122.963684] CPU: 1 UID: 0 PID: 3947 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 122.963722] Tainted: [W]=WARN [ 122.963731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 122.963745] Call Trace: [ 122.963754] [ 122.963764] dump_stack_lvl+0xca/0x120 [ 122.963811] __link_object+0x190/0x210 [ 122.963848] __create_object+0x48/0x80 [ 122.963886] pcpu_alloc_noprof+0x87a/0x1170 [ 122.963938] perf_trace_event_init+0x366/0xa10 [ 122.963978] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 122.964018] perf_trace_init+0x1a4/0x2f0 [ 122.964052] perf_tp_event_init+0xa6/0x120 [ 122.964089] perf_try_init_event+0x140/0x9f0 [ 122.964127] perf_event_alloc.part.0+0x118e/0x45f0 [ 122.964166] ? perf_event_alloc.part.0+0x1074/0x45f0 [ 122.964212] ? __fget_files+0x203/0x3b0 [ 122.964245] ? __pfx_perf_event_alloc.part.0+0x10/0x10 [ 122.964285] ? find_held_lock+0x2b/0x80 [ 122.964324] ? __do_sys_perf_event_open+0x11df/0x2c20 [ 122.964361] __do_sys_perf_event_open+0x719/0x2c20 [ 122.964404] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 122.964433] ? find_held_lock+0x2b/0x80 [ 122.964494] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 122.964525] do_syscall_64+0xbf/0x360 [ 122.964551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.964577] RIP: 0033:0x7f37fc8d6b19 [ 122.964597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.964620] RSP: 002b:00007f37f9e4c188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 122.964645] RAX: ffffffffffffffda RBX: 00007f37fc9e9f60 RCX: 00007f37fc8d6b19 [ 122.964662] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000340 [ 122.964677] RBP: 00007f37fc930f6d R08: 0000000000000000 R09: 0000000000000000 [ 122.964692] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 122.964707] R13: 00007ffd1789324f R14: 00007f37f9e4c300 R15: 0000000000022000 [ 122.964743] [ 122.965661] kmemleak: Kernel memory leak detector disabled [ 122.965669] kmemleak: Object (percpu) 0x607f1a639880 (size 16): [ 122.965685] kmemleak: comm "syz-executor.4", pid 286, jiffies 4294789538 [ 122.965700] kmemleak: min_count = 1 [ 122.965708] kmemleak: count = 0 [ 122.965716] kmemleak: flags = 0x21 [ 122.965724] kmemleak: checksum = 0 [ 122.965732] kmemleak: backtrace: [ 122.965739] pcpu_alloc_noprof+0x87a/0x1170 [ 122.965772] mm_init+0x99b/0x1170 [ 122.965792] copy_process+0x3ab7/0x73c0 [ 122.965814] kernel_clone+0xea/0x7f0 [ 122.965835] __do_sys_clone+0xce/0x120 [ 122.965858] do_syscall_64+0xbf/0x360 [ 122.965876] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.022652] kmemleak: Found object by alias at 0x607f1a639884 [ 123.022682] CPU: 1 UID: 0 PID: 3939 Comm: syz-executor.5 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 123.022719] Tainted: [W]=WARN [ 123.022726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 123.022740] Call Trace: [ 123.022748] [ 123.022756] dump_stack_lvl+0xca/0x120 [ 123.022800] __lookup_object+0x94/0xb0 [ 123.022832] delete_object_full+0x27/0x70 [ 123.022865] free_percpu+0x30/0x1160 [ 123.022896] ? arch_uprobe_clear_state+0x16/0x140 [ 123.022936] futex_hash_free+0x38/0xc0 [ 123.022964] mmput+0x2d3/0x390 [ 123.023001] do_exit+0x79d/0x2970 [ 123.023029] ? signal_wake_up_state+0x85/0x120 [ 123.023060] ? zap_other_threads+0x2b9/0x3a0 [ 123.023092] ? __pfx_do_exit+0x10/0x10 [ 123.023118] ? do_group_exit+0x1c3/0x2a0 [ 123.023146] ? lock_release+0xc8/0x290 [ 123.023189] do_group_exit+0xd3/0x2a0 [ 123.023219] __x64_sys_exit_group+0x3e/0x50 [ 123.023248] x64_sys_call+0x18c5/0x18d0 [ 123.023278] do_syscall_64+0xbf/0x360 [ 123.023301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.023325] RIP: 0033:0x7f6ecdb32b19 [ 123.023342] Code: Unable to access opcode bytes at 0x7f6ecdb32aef. [ 123.023353] RSP: 002b:00007fff4eb663d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 123.023375] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f6ecdb32b19 [ 123.023390] RDX: 00007f6ecdae572b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 123.023405] RBP: 0000000000000000 R08: 0000001b2ce25988 R09: 0000000000000000 [ 123.023419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 123.023433] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fff4eb664c0 [ 123.023465] [ 123.023473] kmemleak: Object (percpu) 0x607f1a639880 (size 16): [ 123.023487] kmemleak: comm "syz-executor.4", pid 286, jiffies 4294789538 [ 123.023501] kmemleak: min_count = 1 [ 123.023509] kmemleak: count = 0 [ 123.023517] kmemleak: flags = 0x21 [ 123.023524] kmemleak: checksum = 0 [ 123.023532] kmemleak: backtrace: [ 123.023539] pcpu_alloc_noprof+0x87a/0x1170 [ 123.023569] mm_init+0x99b/0x1170 [ 123.023586] copy_process+0x3ab7/0x73c0 [ 123.023607] kernel_clone+0xea/0x7f0 [ 123.023627] __do_sys_clone+0xce/0x120 [ 123.023648] do_syscall_64+0xbf/0x360 [ 123.023665] entry_SYSCALL_64_after_hwframe+0x77/0x7f 11:46:39 executing program 3: prctl$PR_SET_MM_MAP(0x4c, 0xe, &(0x7f0000000380)={&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff4000/0xc000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ff5000/0x2000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff4000/0x1000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff4000/0x2000)=nil, 0x0}, 0x68) 11:46:39 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x40032, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) copy_file_range(r0, 0x0, r0, &(0x7f0000000040), 0x0, 0x0) 11:46:39 executing program 6: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$PTP_PEROUT_REQUEST(r0, 0x40383d0c, &(0x7f00000000c0)={{}, {}, 0x0, 0x3}) [ 123.099612] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 123.101746] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 123.103350] CPU: 1 UID: 0 PID: 3947 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 123.106040] Tainted: [W]=WARN [ 123.107705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 123.111968] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.114319] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.117073] RSP: 0018:ffff88801c0a7800 EFLAGS: 00010212 [ 123.117907] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc900019e6000 [ 123.119002] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 123.120093] RBP: ffff88801c0a7a70 R08: ffff88806cf31340 R09: ffffe8ffffd16888 [ 123.121181] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 123.122263] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 123.123354] FS: 00007f37f9e4c700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 123.124583] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.125473] CR2: 00007fff4eb64bb8 CR3: 0000000043e22000 CR4: 0000000000350ef0 [ 123.126559] Call Trace: [ 123.126971] [ 123.127345] ? __pfx_perf_tp_event+0x10/0x10 [ 123.128043] ? lock_is_held_type+0x9e/0x120 [ 123.128730] ? lock_is_held_type+0x9e/0x120 [ 123.129407] ? perf_trace_lock+0xb5/0x5d0 [ 123.130076] ? perf_trace_lock+0xb5/0x5d0 [ 123.130733] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.131445] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.132168] ? find_held_lock+0x2b/0x80 [ 123.132800] ? find_held_lock+0x2b/0x80 [ 123.133428] ? __perf_install_in_context+0x503/0xb90 [ 123.134222] ? lock_release+0xc8/0x290 [ 123.134851] ? do_raw_spin_unlock+0x53/0x220 [ 123.135572] ? perf_trace_run_bpf_submit+0xef/0x180 [ 123.136373] perf_trace_run_bpf_submit+0xef/0x180 [ 123.137151] perf_trace_lock+0x337/0x5d0 [ 123.137843] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.138593] ? lock_acquire+0x15e/0x2f0 [ 123.139230] ? futex_ref_get+0x48/0x300 [ 123.139867] ? futex_ref_get+0x114/0x300 [ 123.140524] ? futex_hash+0x15c/0x390 [ 123.141141] lock_release+0x1ab/0x290 [ 123.141772] ? futex_hash+0x15c/0x390 [ 123.142386] futex_ref_get+0x119/0x300 [ 123.143017] ? futex_hash+0x15c/0x390 [ 123.143628] futex_hash+0x70/0x390 [ 123.144207] futex_wake+0x143/0x540 [ 123.144799] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.145553] ? __pfx_futex_wake+0x10/0x10 [ 123.146221] ? task_mm_cid_work+0x21a/0x840 [ 123.146937] ? task_mm_cid_work+0x66a/0x840 [ 123.147642] ? lock_release+0xc8/0x290 [ 123.148268] ? lock_is_held_type+0x9e/0x120 [ 123.148976] do_futex+0x26d/0x370 [ 123.149561] ? __pfx_do_futex+0x10/0x10 [ 123.150454] __x64_sys_futex+0x1c9/0x4d0 [ 123.151172] ? __pfx___x64_sys_futex+0x10/0x10 [ 123.151965] ? xfd_validate_state+0x55/0x180 [ 123.152745] do_syscall_64+0xbf/0x360 [ 123.153416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.154293] RIP: 0033:0x7f37fc8d6b19 [ 123.154871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.157620] RSP: 002b:00007f37f9e4c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.158777] RAX: ffffffffffffffda RBX: 00007f37fc9e9f68 RCX: 00007f37fc8d6b19 [ 123.159861] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f37fc9e9f6c [ 123.160944] RBP: 00007f37fc9e9f60 R08: 000000000000000e R09: 0000000000000000 [ 123.162035] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f37fc9e9f6c [ 123.163132] R13: 00007ffd1789324f R14: 00007f37f9e4c300 R15: 0000000000022000 [ 123.164235] [ 123.164603] Modules linked in: [ 123.165179] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 123.166867] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 123.168182] CPU: 1 UID: 0 PID: 3947 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 123.170005] Tainted: [D]=DIE, [W]=WARN [ 123.170594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 123.171840] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.172579] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.175341] RSP: 0018:ffff88806cf08ac0 EFLAGS: 00010012 [ 123.176156] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 123.177245] RDX: ffff8880176e3700 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 123.178338] RBP: ffff88806cf08d30 R08: ffff88806cf31490 R09: ffffe8ffffd16888 [ 123.179425] R10: 0000000000000000 R11: ffff88806cf08ff8 R12: dffffc0000000000 [ 123.180512] R13: 0000000000000024 R14: ffff88806cf31490 R15: dffffc0000000000 [ 123.181609] FS: 00007f37f9e4c700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 123.182841] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.183738] CR2: 00007fff4eb64bb8 CR3: 0000000043e22000 CR4: 0000000000350ef0 [ 123.184826] Call Trace: [ 123.185240] [ 123.185593] ? sysvec_apic_timer_interrupt+0x6b/0x80 [ 123.186394] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 123.187238] ? finish_task_switch.isra.0+0x20f/0x840 [ 123.188042] ? perf_trace_init+0x1a4/0x2f0 [ 123.188702] ? __pfx_perf_tp_event+0x10/0x10 [ 123.189406] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.190253] ? lock_acquire+0x15e/0x2f0 [ 123.190881] ? __lock_acquire+0x694/0x1b70 [ 123.191545] ? __virt_addr_valid+0x100/0x5d0 [ 123.192242] ? lock_acquire+0x15e/0x2f0 [ 123.192870] ? __lock_acquire+0x694/0x1b70 [ 123.193541] ? perf_trace_run_bpf_submit+0xef/0x180 [ 123.194331] perf_trace_run_bpf_submit+0xef/0x180 [ 123.195100] perf_trace_lock+0x337/0x5d0 [ 123.195743] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.196471] ? perf_event_groups_delete+0x81/0x100 [ 123.197248] ? __perf_remove_from_context+0x8c4/0x2360 [ 123.198071] ? perf_ctx_unlock+0x73/0x160 [ 123.198716] ? __pfx___perf_remove_from_context+0x10/0x10 [ 123.199559] lock_release+0x1ab/0x290 [ 123.200160] ? __pfx___perf_remove_from_context+0x10/0x10 [ 123.201016] _raw_spin_unlock+0x16/0x40 [ 123.201664] perf_ctx_unlock+0x73/0x160 [ 123.202301] event_function+0x216/0x300 [ 123.202929] ? __pfx_event_function+0x10/0x10 [ 123.203650] ? __pfx_remote_function+0x10/0x10 [ 123.204390] remote_function+0x129/0x1b0 [ 123.205037] __flush_smp_call_function_queue+0x20d/0x740 [ 123.205918] __sysvec_call_function_single+0x6d/0x370 [ 123.206748] sysvec_call_function_single+0xa1/0xc0 [ 123.207535] [ 123.207905] [ 123.208276] asm_sysvec_call_function_single+0x1a/0x20 [ 123.209107] RIP: 0010:oops_exit+0x0/0x50 [ 123.209773] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27 [ 123.212595] RSP: 0018:ffff88801c0a7690 EFLAGS: 00000202 [ 123.213431] RAX: 0000000000040000 RBX: 0000000000000212 RCX: ffffc900019e6000 [ 123.214562] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 123.215686] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90 [ 123.216814] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801c0a7758 [ 123.217946] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000 [ 123.219059] ? oops_end+0x4a/0xe0 [ 123.219634] oops_end+0x65/0xe0 [ 123.220186] exc_general_protection+0x1a2/0x330 [ 123.220947] asm_exc_general_protection+0x26/0x30 [ 123.221726] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.222466] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.225264] RSP: 0018:ffff88801c0a7800 EFLAGS: 00010212 [ 123.226105] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc900019e6000 [ 123.227223] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 123.228345] RBP: ffff88801c0a7a70 R08: ffff88806cf31340 R09: ffffe8ffffd16888 [ 123.229448] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 123.230568] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 123.231706] ? perf_tp_event+0x167/0xe70 [ 123.232391] ? __pfx_perf_tp_event+0x10/0x10 [ 123.233109] ? lock_is_held_type+0x9e/0x120 [ 123.233821] ? lock_is_held_type+0x9e/0x120 [ 123.234513] ? perf_trace_lock+0xb5/0x5d0 [ 123.235174] ? perf_trace_lock+0xb5/0x5d0 [ 123.235826] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.236562] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.237307] ? find_held_lock+0x2b/0x80 [ 123.237961] ? find_held_lock+0x2b/0x80 [ 123.238604] ? __perf_install_in_context+0x503/0xb90 [ 123.239399] ? lock_release+0xc8/0x290 [ 123.240022] ? do_raw_spin_unlock+0x53/0x220 [ 123.240744] ? perf_trace_run_bpf_submit+0xef/0x180 [ 123.241545] perf_trace_run_bpf_submit+0xef/0x180 [ 123.242317] perf_trace_lock+0x337/0x5d0 [ 123.242970] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.243702] ? lock_acquire+0x15e/0x2f0 [ 123.244344] ? futex_ref_get+0x48/0x300 [ 123.244979] ? futex_ref_get+0x114/0x300 [ 123.245624] ? futex_hash+0x15c/0x390 [ 123.246240] lock_release+0x1ab/0x290 [ 123.246866] ? futex_hash+0x15c/0x390 [ 123.247469] futex_ref_get+0x119/0x300 [ 123.248099] ? futex_hash+0x15c/0x390 [ 123.248711] futex_hash+0x70/0x390 [ 123.249296] futex_wake+0x143/0x540 [ 123.249900] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.250641] ? __pfx_futex_wake+0x10/0x10 [ 123.251299] ? task_mm_cid_work+0x21a/0x840 [ 123.251991] ? task_mm_cid_work+0x66a/0x840 [ 123.252690] ? lock_release+0xc8/0x290 [ 123.253314] ? lock_is_held_type+0x9e/0x120 [ 123.254022] do_futex+0x26d/0x370 [ 123.254590] ? __pfx_do_futex+0x10/0x10 [ 123.255225] __x64_sys_futex+0x1c9/0x4d0 [ 123.255892] ? __pfx___x64_sys_futex+0x10/0x10 [ 123.256621] ? xfd_validate_state+0x55/0x180 [ 123.257345] do_syscall_64+0xbf/0x360 [ 123.257965] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.258777] RIP: 0033:0x7f37fc8d6b19 [ 123.259360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.262184] RSP: 002b:00007f37f9e4c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.263366] RAX: ffffffffffffffda RBX: 00007f37fc9e9f68 RCX: 00007f37fc8d6b19 [ 123.264489] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f37fc9e9f6c [ 123.265610] RBP: 00007f37fc9e9f60 R08: 000000000000000e R09: 0000000000000000 [ 123.266730] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f37fc9e9f6c [ 123.267834] R13: 00007ffd1789324f R14: 00007f37f9e4c300 R15: 0000000000022000 [ 123.268961] [ 123.269338] Modules linked in: [ 123.269866] ---[ end trace 0000000000000000 ]--- [ 123.270608] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.271352] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.274196] RSP: 0018:ffff88801c0a7800 EFLAGS: 00010212 [ 123.275032] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc900019e6000 [ 123.276153] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 123.277268] RBP: ffff88801c0a7a70 R08: ffff88806cf31340 R09: ffffe8ffffd16888 [ 123.278385] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 123.279500] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 123.280618] FS: 00007f37f9e4c700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 123.281879] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.282792] CR2: 00007fff4eb64bb8 CR3: 0000000043e22000 CR4: 0000000000350ef0 [ 123.283911] Kernel panic - not syncing: Fatal exception in interrupt [ 123.285028] Kernel Offset: disabled [ 123.285621] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 11:46:39 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff816894c3 RDX=ffff888015375280 RSI=ffffffff816894b1 RDI=0000000000000005 RBP=ffff88801bd67b80 RSP=ffff88801bd67aa0 R8 =0000000000000000 R9 =fffffbfff0c8758a R10=0000000000000001 R11=0000000000000001 R12=0000000000000000 R13=0000000000000200 R14=1ffff110037acf58 R15=ffff8880176e3714 RIP=ffffffff816894b3 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555714c6400 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe2c00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d023000 CR3=0000000043e22000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00ff000000000000ff00000000000000 XMM01=00010000000000000100000000000000 XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007f37fc9bd7c800007f37fc9bd7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88801c0a7158 R8 =0000000000000000 R9 =ffffed10015fb046 R10=0000000000000030 R11=30376578302f4952 R12=0000000000000030 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f37f9e4c700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe5300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fff4eb64bb8 CR3=0000000043e22000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f37fc9bd7c000007f37fc9bd7c8 XMM02=00007f37fc9bd7e000007f37fc9bd7c0 XMM03=00007f37fc9bd7c800007f37fc9bd7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000