Warning: Permanently added '[localhost]:42228' (ECDSA) to the list of known hosts. 2025/08/29 12:38:17 fuzzer started 2025/08/29 12:38:18 dialing manager at localhost:43077 syzkaller login: [ 58.481835] cgroup: Unknown subsys name 'net' [ 58.536268] cgroup: Unknown subsys name 'cpuset' [ 58.554247] cgroup: Unknown subsys name 'rlimit' 2025/08/29 12:38:29 syscalls: 2214 2025/08/29 12:38:29 code coverage: enabled 2025/08/29 12:38:29 comparison tracing: enabled 2025/08/29 12:38:29 extra coverage: enabled 2025/08/29 12:38:29 setuid sandbox: enabled 2025/08/29 12:38:29 namespace sandbox: enabled 2025/08/29 12:38:29 Android sandbox: enabled 2025/08/29 12:38:29 fault injection: enabled 2025/08/29 12:38:29 leak checking: enabled 2025/08/29 12:38:29 net packet injection: enabled 2025/08/29 12:38:29 net device setup: enabled 2025/08/29 12:38:29 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 12:38:29 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 12:38:29 USB emulation: enabled 2025/08/29 12:38:29 hci packet injection: enabled 2025/08/29 12:38:29 wifi device emulation: enabled 2025/08/29 12:38:29 802.15.4 emulation: enabled 2025/08/29 12:38:29 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 12:38:29 fetching corpus: 50, signal 22314/25820 (executing program) 2025/08/29 12:38:29 fetching corpus: 100, signal 31727/36730 (executing program) 2025/08/29 12:38:29 fetching corpus: 150, signal 39907/46256 (executing program) 2025/08/29 12:38:29 fetching corpus: 200, signal 48011/55545 (executing program) 2025/08/29 12:38:29 fetching corpus: 250, signal 54313/62961 (executing program) 2025/08/29 12:38:29 fetching corpus: 300, signal 58995/68707 (executing program) 2025/08/29 12:38:30 fetching corpus: 350, signal 61512/72418 (executing program) 2025/08/29 12:38:30 fetching corpus: 400, signal 64372/76386 (executing program) 2025/08/29 12:38:30 fetching corpus: 450, signal 67849/80862 (executing program) 2025/08/29 12:38:30 fetching corpus: 500, signal 72755/86501 (executing program) 2025/08/29 12:38:32 fetching corpus: 550, signal 76679/91231 (executing program) 2025/08/29 12:38:32 fetching corpus: 600, signal 79556/94955 (executing program) 2025/08/29 12:38:32 fetching corpus: 650, signal 83388/99412 (executing program) 2025/08/29 12:38:32 fetching corpus: 700, signal 85188/102094 (executing program) 2025/08/29 12:38:32 fetching corpus: 750, signal 89091/106505 (executing program) 2025/08/29 12:38:32 fetching corpus: 800, signal 90749/109025 (executing program) 2025/08/29 12:38:32 fetching corpus: 850, signal 93400/112323 (executing program) 2025/08/29 12:38:32 fetching corpus: 900, signal 94796/114511 (executing program) 2025/08/29 12:38:32 fetching corpus: 950, signal 96313/116768 (executing program) 2025/08/29 12:38:33 fetching corpus: 1000, signal 97548/118768 (executing program) 2025/08/29 12:38:33 fetching corpus: 1050, signal 99422/121191 (executing program) 2025/08/29 12:38:33 fetching corpus: 1100, signal 100822/123257 (executing program) 2025/08/29 12:38:33 fetching corpus: 1150, signal 102430/125459 (executing program) 2025/08/29 12:38:33 fetching corpus: 1200, signal 103557/127305 (executing program) 2025/08/29 12:38:33 fetching corpus: 1250, signal 105160/129433 (executing program) 2025/08/29 12:38:33 fetching corpus: 1300, signal 108246/132579 (executing program) 2025/08/29 12:38:33 fetching corpus: 1350, signal 110093/134781 (executing program) 2025/08/29 12:38:33 fetching corpus: 1400, signal 110910/136240 (executing program) 2025/08/29 12:38:33 fetching corpus: 1450, signal 111810/137727 (executing program) 2025/08/29 12:38:33 fetching corpus: 1500, signal 112799/139265 (executing program) 2025/08/29 12:38:34 fetching corpus: 1550, signal 114463/141226 (executing program) 2025/08/29 12:38:34 fetching corpus: 1600, signal 116292/143348 (executing program) 2025/08/29 12:38:34 fetching corpus: 1650, signal 117198/144749 (executing program) 2025/08/29 12:38:34 fetching corpus: 1700, signal 118465/146355 (executing program) 2025/08/29 12:38:34 fetching corpus: 1750, signal 119565/147839 (executing program) 2025/08/29 12:38:34 fetching corpus: 1800, signal 120397/149108 (executing program) 2025/08/29 12:38:34 fetching corpus: 1850, signal 121508/150606 (executing program) 2025/08/29 12:38:34 fetching corpus: 1900, signal 122503/151990 (executing program) 2025/08/29 12:38:34 fetching corpus: 1950, signal 124105/153689 (executing program) 2025/08/29 12:38:34 fetching corpus: 2000, signal 125171/155033 (executing program) 2025/08/29 12:38:35 fetching corpus: 2050, signal 126130/156317 (executing program) 2025/08/29 12:38:35 fetching corpus: 2100, signal 127147/157594 (executing program) 2025/08/29 12:38:35 fetching corpus: 2150, signal 128308/158900 (executing program) 2025/08/29 12:38:35 fetching corpus: 2200, signal 129403/160138 (executing program) 2025/08/29 12:38:35 fetching corpus: 2250, signal 130324/161271 (executing program) 2025/08/29 12:38:35 fetching corpus: 2300, signal 131403/162492 (executing program) 2025/08/29 12:38:35 fetching corpus: 2350, signal 132120/163532 (executing program) 2025/08/29 12:38:35 fetching corpus: 2400, signal 133070/164643 (executing program) 2025/08/29 12:38:35 fetching corpus: 2450, signal 133522/165562 (executing program) 2025/08/29 12:38:35 fetching corpus: 2500, signal 134409/166684 (executing program) 2025/08/29 12:38:35 fetching corpus: 2550, signal 135247/167875 (executing program) 2025/08/29 12:38:35 fetching corpus: 2600, signal 136133/168975 (executing program) 2025/08/29 12:38:36 fetching corpus: 2650, signal 136876/169949 (executing program) 2025/08/29 12:38:36 fetching corpus: 2700, signal 137604/170844 (executing program) 2025/08/29 12:38:36 fetching corpus: 2750, signal 138611/171977 (executing program) 2025/08/29 12:38:36 fetching corpus: 2800, signal 139469/173069 (executing program) 2025/08/29 12:38:36 fetching corpus: 2850, signal 140202/173930 (executing program) 2025/08/29 12:38:36 fetching corpus: 2900, signal 141302/174928 (executing program) 2025/08/29 12:38:36 fetching corpus: 2950, signal 142238/175854 (executing program) 2025/08/29 12:38:36 fetching corpus: 3000, signal 142683/176604 (executing program) 2025/08/29 12:38:36 fetching corpus: 3050, signal 143258/177400 (executing program) 2025/08/29 12:38:36 fetching corpus: 3100, signal 143834/178122 (executing program) 2025/08/29 12:38:37 fetching corpus: 3150, signal 144541/178921 (executing program) 2025/08/29 12:38:37 fetching corpus: 3200, signal 145557/179754 (executing program) 2025/08/29 12:38:37 fetching corpus: 3250, signal 146325/180590 (executing program) 2025/08/29 12:38:37 fetching corpus: 3300, signal 146776/181241 (executing program) 2025/08/29 12:38:37 fetching corpus: 3350, signal 147512/181995 (executing program) 2025/08/29 12:38:37 fetching corpus: 3400, signal 148227/182699 (executing program) 2025/08/29 12:38:37 fetching corpus: 3450, signal 148809/183384 (executing program) 2025/08/29 12:38:37 fetching corpus: 3500, signal 149348/184028 (executing program) 2025/08/29 12:38:37 fetching corpus: 3550, signal 149836/184680 (executing program) 2025/08/29 12:38:38 fetching corpus: 3600, signal 150308/185275 (executing program) 2025/08/29 12:38:38 fetching corpus: 3650, signal 151094/185929 (executing program) 2025/08/29 12:38:38 fetching corpus: 3700, signal 151840/186630 (executing program) 2025/08/29 12:38:38 fetching corpus: 3750, signal 152469/187259 (executing program) 2025/08/29 12:38:38 fetching corpus: 3800, signal 152824/187793 (executing program) 2025/08/29 12:38:38 fetching corpus: 3850, signal 153392/188396 (executing program) 2025/08/29 12:38:38 fetching corpus: 3900, signal 153889/189019 (executing program) 2025/08/29 12:38:38 fetching corpus: 3950, signal 154374/189549 (executing program) 2025/08/29 12:38:38 fetching corpus: 4000, signal 154879/190114 (executing program) 2025/08/29 12:38:38 fetching corpus: 4050, signal 155341/190606 (executing program) 2025/08/29 12:38:39 fetching corpus: 4100, signal 155736/191075 (executing program) 2025/08/29 12:38:39 fetching corpus: 4150, signal 156197/191564 (executing program) 2025/08/29 12:38:39 fetching corpus: 4200, signal 156806/192101 (executing program) 2025/08/29 12:38:39 fetching corpus: 4250, signal 157170/192577 (executing program) 2025/08/29 12:38:39 fetching corpus: 4300, signal 157877/193073 (executing program) 2025/08/29 12:38:39 fetching corpus: 4350, signal 158322/193611 (executing program) 2025/08/29 12:38:39 fetching corpus: 4400, signal 158863/194173 (executing program) 2025/08/29 12:38:39 fetching corpus: 4450, signal 159333/194601 (executing program) 2025/08/29 12:38:39 fetching corpus: 4500, signal 159659/195031 (executing program) 2025/08/29 12:38:39 fetching corpus: 4550, signal 160080/195507 (executing program) 2025/08/29 12:38:39 fetching corpus: 4600, signal 160505/195901 (executing program) 2025/08/29 12:38:39 fetching corpus: 4650, signal 160843/196292 (executing program) 2025/08/29 12:38:40 fetching corpus: 4700, signal 161334/196724 (executing program) 2025/08/29 12:38:40 fetching corpus: 4750, signal 161798/197134 (executing program) 2025/08/29 12:38:40 fetching corpus: 4800, signal 162492/197303 (executing program) 2025/08/29 12:38:40 fetching corpus: 4850, signal 162929/197382 (executing program) 2025/08/29 12:38:40 fetching corpus: 4900, signal 163331/197393 (executing program) 2025/08/29 12:38:40 fetching corpus: 4950, signal 163754/197401 (executing program) 2025/08/29 12:38:40 fetching corpus: 5000, signal 164099/197414 (executing program) 2025/08/29 12:38:40 fetching corpus: 5050, signal 164778/197434 (executing program) 2025/08/29 12:38:40 fetching corpus: 5100, signal 165102/197451 (executing program) 2025/08/29 12:38:40 fetching corpus: 5150, signal 165447/197463 (executing program) 2025/08/29 12:38:41 fetching corpus: 5200, signal 165802/197470 (executing program) 2025/08/29 12:38:41 fetching corpus: 5250, signal 166445/197493 (executing program) 2025/08/29 12:38:41 fetching corpus: 5300, signal 166906/197500 (executing program) 2025/08/29 12:38:41 fetching corpus: 5350, signal 167250/197507 (executing program) 2025/08/29 12:38:41 fetching corpus: 5400, signal 167580/197530 (executing program) 2025/08/29 12:38:41 fetching corpus: 5450, signal 168290/197538 (executing program) 2025/08/29 12:38:41 fetching corpus: 5500, signal 168659/197574 (executing program) 2025/08/29 12:38:41 fetching corpus: 5550, signal 168962/197588 (executing program) 2025/08/29 12:38:41 fetching corpus: 5600, signal 169300/197629 (executing program) 2025/08/29 12:38:41 fetching corpus: 5650, signal 169773/197634 (executing program) 2025/08/29 12:38:41 fetching corpus: 5700, signal 170200/197643 (executing program) 2025/08/29 12:38:41 fetching corpus: 5750, signal 170725/197651 (executing program) 2025/08/29 12:38:41 fetching corpus: 5800, signal 171048/197656 (executing program) 2025/08/29 12:38:42 fetching corpus: 5850, signal 171594/197660 (executing program) 2025/08/29 12:38:42 fetching corpus: 5900, signal 171957/197666 (executing program) 2025/08/29 12:38:42 fetching corpus: 5950, signal 172445/197768 (executing program) 2025/08/29 12:38:42 fetching corpus: 6000, signal 172980/197788 (executing program) 2025/08/29 12:38:42 fetching corpus: 6050, signal 173352/197801 (executing program) 2025/08/29 12:38:42 fetching corpus: 6100, signal 173625/197809 (executing program) 2025/08/29 12:38:42 fetching corpus: 6150, signal 173988/197815 (executing program) 2025/08/29 12:38:42 fetching corpus: 6200, signal 174412/197843 (executing program) 2025/08/29 12:38:42 fetching corpus: 6250, signal 174727/197863 (executing program) 2025/08/29 12:38:42 fetching corpus: 6300, signal 175508/197866 (executing program) 2025/08/29 12:38:42 fetching corpus: 6350, signal 175815/197906 (executing program) 2025/08/29 12:38:43 fetching corpus: 6400, signal 176135/197911 (executing program) 2025/08/29 12:38:43 fetching corpus: 6450, signal 176435/197913 (executing program) 2025/08/29 12:38:43 fetching corpus: 6500, signal 176851/197915 (executing program) 2025/08/29 12:38:43 fetching corpus: 6550, signal 177168/197916 (executing program) 2025/08/29 12:38:43 fetching corpus: 6600, signal 177636/197916 (executing program) 2025/08/29 12:38:43 fetching corpus: 6650, signal 177905/197919 (executing program) 2025/08/29 12:38:43 fetching corpus: 6700, signal 178172/197927 (executing program) 2025/08/29 12:38:43 fetching corpus: 6750, signal 178464/197970 (executing program) 2025/08/29 12:38:43 fetching corpus: 6800, signal 178712/197973 (executing program) 2025/08/29 12:38:43 fetching corpus: 6850, signal 179052/197993 (executing program) 2025/08/29 12:38:43 fetching corpus: 6900, signal 179473/197997 (executing program) 2025/08/29 12:38:43 fetching corpus: 6950, signal 179887/198004 (executing program) 2025/08/29 12:38:43 fetching corpus: 7000, signal 180181/198010 (executing program) 2025/08/29 12:38:44 fetching corpus: 7050, signal 180661/198036 (executing program) 2025/08/29 12:38:44 fetching corpus: 7100, signal 181058/198044 (executing program) 2025/08/29 12:38:44 fetching corpus: 7150, signal 181346/198047 (executing program) 2025/08/29 12:38:44 fetching corpus: 7200, signal 181596/198054 (executing program) 2025/08/29 12:38:44 fetching corpus: 7250, signal 181993/198056 (executing program) 2025/08/29 12:38:44 fetching corpus: 7300, signal 182193/198057 (executing program) 2025/08/29 12:38:44 fetching corpus: 7350, signal 182598/198065 (executing program) 2025/08/29 12:38:44 fetching corpus: 7400, signal 182864/198096 (executing program) 2025/08/29 12:38:44 fetching corpus: 7450, signal 183149/198097 (executing program) 2025/08/29 12:38:44 fetching corpus: 7500, signal 183308/198102 (executing program) 2025/08/29 12:38:44 fetching corpus: 7550, signal 183602/198117 (executing program) 2025/08/29 12:38:44 fetching corpus: 7600, signal 183832/198122 (executing program) 2025/08/29 12:38:44 fetching corpus: 7650, signal 184054/198133 (executing program) 2025/08/29 12:38:45 fetching corpus: 7700, signal 184293/198134 (executing program) 2025/08/29 12:38:45 fetching corpus: 7750, signal 184507/198143 (executing program) 2025/08/29 12:38:45 fetching corpus: 7800, signal 184848/198148 (executing program) 2025/08/29 12:38:45 fetching corpus: 7850, signal 185113/198152 (executing program) 2025/08/29 12:38:45 fetching corpus: 7900, signal 185508/198159 (executing program) 2025/08/29 12:38:45 fetching corpus: 7950, signal 185726/198164 (executing program) 2025/08/29 12:38:45 fetching corpus: 8000, signal 186073/198164 (executing program) 2025/08/29 12:38:45 fetching corpus: 8050, signal 186290/198167 (executing program) 2025/08/29 12:38:45 fetching corpus: 8100, signal 186576/198176 (executing program) 2025/08/29 12:38:45 fetching corpus: 8150, signal 186869/198191 (executing program) 2025/08/29 12:38:45 fetching corpus: 8200, signal 187199/198199 (executing program) 2025/08/29 12:38:45 fetching corpus: 8250, signal 187485/198220 (executing program) 2025/08/29 12:38:45 fetching corpus: 8300, signal 187811/198221 (executing program) 2025/08/29 12:38:45 fetching corpus: 8350, signal 188053/198226 (executing program) 2025/08/29 12:38:46 fetching corpus: 8400, signal 188341/198293 (executing program) 2025/08/29 12:38:46 fetching corpus: 8450, signal 188615/198342 (executing program) 2025/08/29 12:38:46 fetching corpus: 8500, signal 188846/198373 (executing program) 2025/08/29 12:38:46 fetching corpus: 8550, signal 189096/198380 (executing program) 2025/08/29 12:38:46 fetching corpus: 8600, signal 189287/198385 (executing program) 2025/08/29 12:38:46 fetching corpus: 8650, signal 189603/198387 (executing program) 2025/08/29 12:38:46 fetching corpus: 8700, signal 189870/198402 (executing program) 2025/08/29 12:38:46 fetching corpus: 8750, signal 190062/198402 (executing program) 2025/08/29 12:38:46 fetching corpus: 8800, signal 190383/198404 (executing program) 2025/08/29 12:38:46 fetching corpus: 8850, signal 190625/198408 (executing program) 2025/08/29 12:38:46 fetching corpus: 8900, signal 190962/198434 (executing program) 2025/08/29 12:38:46 fetching corpus: 8950, signal 191169/198462 (executing program) 2025/08/29 12:38:47 fetching corpus: 9000, signal 191454/198464 (executing program) 2025/08/29 12:38:47 fetching corpus: 9050, signal 191636/198464 (executing program) 2025/08/29 12:38:47 fetching corpus: 9100, signal 191843/198472 (executing program) 2025/08/29 12:38:47 fetching corpus: 9150, signal 192133/198475 (executing program) 2025/08/29 12:38:47 fetching corpus: 9200, signal 192406/198480 (executing program) 2025/08/29 12:38:47 fetching corpus: 9250, signal 192616/198484 (executing program) 2025/08/29 12:38:47 fetching corpus: 9300, signal 192766/198489 (executing program) 2025/08/29 12:38:47 fetching corpus: 9350, signal 192981/198505 (executing program) 2025/08/29 12:38:47 fetching corpus: 9400, signal 193263/198529 (executing program) 2025/08/29 12:38:47 fetching corpus: 9450, signal 193575/198538 (executing program) 2025/08/29 12:38:47 fetching corpus: 9500, signal 193792/198569 (executing program) 2025/08/29 12:38:48 fetching corpus: 9550, signal 194017/198579 (executing program) 2025/08/29 12:38:48 fetching corpus: 9600, signal 194194/198601 (executing program) 2025/08/29 12:38:48 fetching corpus: 9650, signal 194371/198616 (executing program) 2025/08/29 12:38:48 fetching corpus: 9700, signal 194586/198617 (executing program) 2025/08/29 12:38:48 fetching corpus: 9730, signal 194725/198627 (executing program) 2025/08/29 12:38:48 fetching corpus: 9730, signal 194725/198627 (executing program) 2025/08/29 12:38:50 starting 8 fuzzer processes 12:38:50 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) flistxattr(r0, &(0x7f0000000000)=""/28, 0x1c) 12:38:50 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, 0x0, 0x0) setxattr$system_posix_acl(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)='system.posix_acl_access\x00', &(0x7f0000000080)={{}, {}, [{0x2, 0x0, r0}], {}, [], {0x10, 0x1}}, 0x2c, 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r1, 0x0) chdir(&(0x7f0000000540)='./file0\x00') 12:38:50 executing program 2: syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@v3, 0x18, 0x0) listxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/17, 0x11) 12:38:50 executing program 6: socketpair(0x0, 0x80e, 0x0, &(0x7f0000000000)) 12:38:50 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000002840)=0xffffffffffffffff, 0x4) sendmmsg$sock(r0, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=[@txtime={{0x18, 0x1, 0x24}}], 0x18}}], 0x2, 0x0) 12:38:50 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000008700)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}, {{&(0x7f00000001c0)={0x2, 0x0, @loopback}, 0xf, 0x0, 0x0, &(0x7f0000001640)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @broadcast}}}], 0x20}}], 0x2, 0x0) 12:38:50 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000180)=""/170, &(0x7f0000000100)=0xaa) 12:38:50 executing program 7: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) io_setup(0xfff, &(0x7f0000000040)=0x0) io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x8b, 0x1, 0x0, r0, 0x0}]) [ 90.625795] audit: type=1400 audit(1756471130.496:7): avc: denied { execmem } for pid=272 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 91.814491] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.821097] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.823829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.837087] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.842976] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.889301] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 91.910854] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 91.921416] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 91.922850] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.923933] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 91.924877] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 91.925953] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 91.926722] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 91.928515] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 91.929227] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 91.929855] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 91.930494] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.931354] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 91.932132] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 91.936280] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 91.937198] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.941098] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 91.942812] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 91.943833] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 91.947030] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 91.948108] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.949521] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 91.950407] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.954487] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 91.955179] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.955839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.956481] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 91.957386] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 91.958144] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.959243] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 91.960474] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 91.964624] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 91.965244] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 91.974775] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 91.981033] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 93.910163] Bluetooth: hci0: command tx timeout [ 94.038068] Bluetooth: hci7: command tx timeout [ 94.038872] Bluetooth: hci6: command tx timeout [ 94.039323] Bluetooth: hci1: command tx timeout [ 94.039800] Bluetooth: hci3: command tx timeout [ 94.040242] Bluetooth: hci4: command tx timeout [ 94.040640] Bluetooth: hci5: command tx timeout [ 94.040955] Bluetooth: hci2: command tx timeout [ 95.957702] Bluetooth: hci0: command tx timeout [ 96.086669] Bluetooth: hci1: command tx timeout [ 96.086701] Bluetooth: hci4: command tx timeout [ 96.087141] Bluetooth: hci5: command tx timeout [ 96.087958] Bluetooth: hci3: command tx timeout [ 96.087990] Bluetooth: hci6: command tx timeout [ 96.088016] Bluetooth: hci7: command tx timeout [ 96.088534] Bluetooth: hci2: command tx timeout [ 98.006796] Bluetooth: hci0: command tx timeout [ 98.134806] Bluetooth: hci2: command tx timeout [ 98.135235] Bluetooth: hci7: command tx timeout [ 98.135638] Bluetooth: hci1: command tx timeout [ 98.136266] Bluetooth: hci5: command tx timeout [ 98.136295] Bluetooth: hci6: command tx timeout [ 98.136318] Bluetooth: hci3: command tx timeout [ 98.136341] Bluetooth: hci4: command tx timeout [ 100.054746] Bluetooth: hci0: command tx timeout [ 100.181705] Bluetooth: hci7: command tx timeout [ 100.182170] Bluetooth: hci3: command tx timeout [ 100.182546] Bluetooth: hci4: command tx timeout [ 100.182989] Bluetooth: hci6: command tx timeout [ 100.183364] Bluetooth: hci1: command tx timeout [ 100.183775] Bluetooth: hci5: command tx timeout [ 100.184153] Bluetooth: hci2: command tx timeout [ 127.845856] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.846536] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.029511] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.031178] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:39:28 executing program 1: syz_emit_ethernet(0x66, &(0x7f0000000100)={@local, @multicast, @void, {@ipv4={0x892f, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote}}}}}, 0x0) 12:39:28 executing program 1: syz_emit_ethernet(0x66, &(0x7f0000000100)={@local, @multicast, @void, {@ipv4={0x892f, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote}}}}}, 0x0) 12:39:28 executing program 1: syz_emit_ethernet(0x66, &(0x7f0000000100)={@local, @multicast, @void, {@ipv4={0x892f, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote}}}}}, 0x0) 12:39:29 executing program 1: syz_emit_ethernet(0x66, &(0x7f0000000100)={@local, @multicast, @void, {@ipv4={0x892f, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote}}}}}, 0x0) 12:39:29 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x12, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) [ 129.518719] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.519335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:39:29 executing program 1: sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x400, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x48850) syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0xffffffffffffffdf}, {0x0, 0x0, 0x411}}}, 0x7) r0 = fsopen(&(0x7f0000000000)='securityfs\x00', 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000400), 0x101000, 0x0) sendmsg$AUDIT_LIST_RULES(r2, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x3f5, 0x400, 0x70bd2b, 0x25dfdbfb, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$NLBL_CIPSOV4_C_REMOVE(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x14, 0x0, 0x602, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x20000084) fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0) r3 = dup2(r0, r0) fsmount(r3, 0x0, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) r5 = socket$inet6_udp(0xa, 0x2, 0x0) r6 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$HDIO_GETGEO(r6, 0x301, &(0x7f0000000000)) ioctl$TIOCSSOFTCAR(r6, 0x541a, &(0x7f0000000340)=0xffff8000) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_emit_vhci(&(0x7f0000000300)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x13}, "c9679522a8e2309ea01a205e9f7b791f7f7c3c"}, 0x17) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000180)={'syztnl1\x00', r8, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00', @loopback}}) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r4, 0x0, 0x70bd2d, 0x25dfdbfc, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x44}, 0xc0081) [ 129.736708] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.737291] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 129.882684] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 129.883805] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:39:30 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$IP_SET_OP_VERSION(r0, 0x1, 0x29, 0x0, &(0x7f0000007dc0)) [ 130.291538] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.292472] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:39:30 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffcfffd}]}) shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil) [ 130.405283] audit: type=1326 audit(1756471170.280:8): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3867 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 130.410966] audit: type=1326 audit(1756471170.287:9): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3867 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 130.415916] audit: type=1326 audit(1756471170.291:10): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3867 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 130.421835] audit: type=1326 audit(1756471170.295:11): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3867 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 130.425685] audit: type=1326 audit(1756471170.295:12): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3867 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 130.492954] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.493928] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.632142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.632947] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.744264] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.744952] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.787939] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.788553] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.891629] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.892246] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 131.002308] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.002954] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 131.045426] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 131.106240] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.107105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 131.114671] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.115282] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 131.157122] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.157766] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 131.225279] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.225925] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 132.962665] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 132.965267] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 132.967095] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 132.976846] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 132.988095] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 135.063693] Bluetooth: hci6: command tx timeout [ 137.111719] Bluetooth: hci6: command tx timeout [ 139.158891] Bluetooth: hci6: command tx timeout [ 141.205706] Bluetooth: hci6: command tx timeout [ 149.616519] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 149.618235] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 149.674394] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 149.675747] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:39:49 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0xe, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) 12:39:49 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0xc2a83) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup2(r1, r0) 12:39:49 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000440)=ANY=[]) 12:39:49 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000008700)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}, {{&(0x7f00000001c0)={0x2, 0x0, @loopback}, 0xf, 0x0, 0x0, &(0x7f0000001640)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @broadcast}}}], 0x20}}], 0x2, 0x0) 12:39:49 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000180)=""/170, &(0x7f0000000100)=0xaa) 12:39:49 executing program 1: syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) mknodat$loop(r0, &(0x7f0000000080)='./file0\x00', 0x0, 0x1) 12:39:49 executing program 7: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) io_setup(0xfff, &(0x7f0000000040)=0x0) io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x8b, 0x1, 0x0, r0, 0x0}]) 12:39:49 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffcfffd}]}) shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil) [ 149.991792] audit: type=1326 audit(1756471189.863:13): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4375 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 150.018048] audit: type=1326 audit(1756471189.863:14): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4375 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 12:39:49 executing program 7: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) io_setup(0xfff, &(0x7f0000000040)=0x0) io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x8b, 0x1, 0x0, r0, 0x0}]) [ 150.032505] loop3: detected capacity change from 0 to 4 [ 150.051801] audit: type=1326 audit(1756471189.867:15): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4375 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 150.071968] audit: type=1326 audit(1756471189.868:16): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4375 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 150.082255] loop1: detected capacity change from 0 to 6 [ 150.084982] audit: type=1326 audit(1756471189.885:17): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4375 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 150.091106] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities 12:39:49 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000008700)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}, {{&(0x7f00000001c0)={0x2, 0x0, @loopback}, 0xf, 0x0, 0x0, &(0x7f0000001640)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @broadcast}}}], 0x20}}], 0x2, 0x0) [ 150.097760] audit: type=1400 audit(1756471189.939:18): avc: denied { open } for pid=4382 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 150.110559] audit: type=1400 audit(1756471189.940:19): avc: denied { kernel } for pid=4382 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 12:39:49 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffcfffd}]}) shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil) [ 150.144261] loop3: detected capacity change from 0 to 4 [ 150.149418] FAT-fs (loop1): Directory bread(block 6) failed [ 150.152746] FAT-fs (loop1): Directory bread(block 7) failed [ 150.160370] FAT-fs (loop1): Directory bread(block 8) failed [ 150.170741] FAT-fs (loop1): Directory bread(block 9) failed [ 150.171855] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities [ 150.232963] audit: type=1326 audit(1756471190.106:20): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4392 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 150.252776] audit: type=1326 audit(1756471190.109:21): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4392 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 [ 150.266769] audit: type=1326 audit(1756471190.113:22): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4392 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fe919ee9b19 code=0x7ffc0000 12:39:50 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000008700)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}, {{&(0x7f00000001c0)={0x2, 0x0, @loopback}, 0xf, 0x0, 0x0, &(0x7f0000001640)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @broadcast}}}], 0x20}}], 0x2, 0x0) 12:39:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0xe, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) 12:39:50 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0xc2a83) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup2(r1, r0) 12:39:50 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000180)=""/170, &(0x7f0000000100)=0xaa) 12:39:50 executing program 1: syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000001480)=[{&(0x7f00000000c0)='+', 0x1, 0x5}], 0x0, &(0x7f0000001540)={[{@numtail}, {@shortname_winnt}]}) 12:39:50 executing program 7: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) io_setup(0xfff, &(0x7f0000000040)=0x0) io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x8b, 0x1, 0x0, r0, 0x0}]) 12:39:50 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000440)=ANY=[]) 12:39:50 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffcfffd}]}) shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil) [ 150.377659] FAT-fs (loop1): bogus number of FAT structure [ 150.378575] FAT-fs (loop1): Can't find a valid FAT filesystem [ 150.413783] FAT-fs (loop1): bogus number of FAT structure [ 150.414711] FAT-fs (loop1): Can't find a valid FAT filesystem 12:39:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0xe, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) [ 150.466822] loop3: detected capacity change from 0 to 4 12:39:50 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0xc2a83) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup2(r1, r0) [ 150.504249] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities 12:39:50 executing program 1: syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000001480)=[{&(0x7f00000000c0)='+', 0x1, 0x5}], 0x0, &(0x7f0000001540)={[{@numtail}, {@shortname_winnt}]}) [ 150.587509] FAT-fs (loop1): bogus number of FAT structure [ 150.588312] FAT-fs (loop1): Can't find a valid FAT filesystem 12:39:50 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000440)=ANY=[]) 12:39:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0xe, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) 12:39:50 executing program 1: syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000001480)=[{&(0x7f00000000c0)='+', 0x1, 0x5}], 0x0, &(0x7f0000001540)={[{@numtail}, {@shortname_winnt}]}) 12:39:50 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0xc2a83) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup2(r1, r0) 12:39:50 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000180)=""/170, &(0x7f0000000100)=0xaa) 12:39:50 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0xc2a83) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup2(r1, r0) 12:39:50 executing program 6: r0 = add_key$fscrypt_v1(&(0x7f0000000100), &(0x7f0000000140)={'fscrypt:', @desc3}, &(0x7f0000000180)={0x0, "0910ed28a8069eee8d5ec63ec962de8a31bc27ff8a659465544ce3e6ae6cc95155f6ed48e0d0452c28ba120aecaf5a7c0e52d363ccbd6ca29bdcb0bd0c69a509"}, 0x48, 0xfffffffffffffffe) keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0) 12:39:50 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x14) close(r0) [ 150.784311] FAT-fs (loop1): bogus number of FAT structure [ 150.785232] FAT-fs (loop1): Can't find a valid FAT filesystem 12:39:50 executing program 6: syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, "7bf0ff581ec66b07"}}}}, 0x0) [ 150.815450] kmemleak: Found object by alias at 0x607f1a639304 [ 150.815476] CPU: 1 UID: 0 PID: 4424 Comm: syz-executor.2 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 150.815501] Tainted: [W]=WARN [ 150.815507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 150.815517] Call Trace: [ 150.815522] [ 150.815529] dump_stack_lvl+0xca/0x120 [ 150.815564] __lookup_object+0x94/0xb0 [ 150.815592] delete_object_full+0x27/0x70 [ 150.815615] free_percpu+0x30/0x1160 [ 150.815638] ? arch_uprobe_clear_state+0x16/0x140 [ 150.815666] futex_hash_free+0x38/0xc0 [ 150.815685] mmput+0x2d3/0x390 [ 150.815712] do_exit+0x79d/0x2970 [ 150.815731] ? lock_release+0xc8/0x290 [ 150.815754] ? __pfx_do_exit+0x10/0x10 [ 150.815774] ? find_held_lock+0x2b/0x80 [ 150.815798] ? get_signal+0x835/0x2340 [ 150.815826] do_group_exit+0xd3/0x2a0 [ 150.815847] get_signal+0x2315/0x2340 [ 150.815879] ? __pfx_get_signal+0x10/0x10 [ 150.815902] ? do_futex+0x135/0x370 [ 150.815921] ? __pfx_do_futex+0x10/0x10 [ 150.815942] arch_do_signal_or_restart+0x80/0x790 [ 150.815967] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 150.815990] ? __x64_sys_futex+0x1c9/0x4d0 [ 150.816007] ? __x64_sys_futex+0x1d2/0x4d0 [ 150.816028] ? __pfx___x64_sys_futex+0x10/0x10 [ 150.816054] exit_to_user_mode_loop+0x8b/0x110 [ 150.816072] do_syscall_64+0x2f7/0x360 [ 150.816089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.816105] RIP: 0033:0x7fa63db6eb19 [ 150.816118] Code: Unable to access opcode bytes at 0x7fa63db6eaef. [ 150.816125] RSP: 002b:00007fa63b0e4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 150.816140] RAX: fffffffffffffe00 RBX: 00007fa63dc81f68 RCX: 00007fa63db6eb19 [ 150.816151] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa63dc81f68 [ 150.816161] RBP: 00007fa63dc81f60 R08: 0000000000000000 R09: 0000000000000000 [ 150.816171] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa63dc81f6c [ 150.816181] R13: 00007ffc9b48814f R14: 00007fa63b0e4300 R15: 0000000000022000 [ 150.816203] [ 150.816208] kmemleak: Object (percpu) 0x607f1a639300 (size 8): [ 150.816218] kmemleak: comm "syz-executor.7", pid 4433, jiffies 4294817606 [ 150.816227] kmemleak: min_count = 1 [ 150.816233] kmemleak: count = 0 [ 150.816238] kmemleak: flags = 0x21 [ 150.816243] kmemleak: checksum = 0 [ 150.816248] kmemleak: backtrace: [ 150.816253] pcpu_alloc_noprof+0x87a/0x1170 [ 150.816274] fib_nh_common_init+0x30/0xd0 [ 150.816291] fib6_nh_init+0x968/0x1a00 [ 150.816305] ip6_route_info_create_nh+0x530/0xf80 [ 150.816319] addrconf_f6i_alloc+0x208/0x430 [ 150.816333] __ipv6_dev_ac_inc+0x2fc/0xd80 [ 150.816357] ipv6_sock_ac_join+0x8aa/0x1100 [ 150.816376] do_ipv6_setsockopt+0x3f54/0x47b0 [ 150.816397] ipv6_setsockopt+0xcb/0x170 [ 150.816417] udpv6_setsockopt+0x84/0xd0 [ 150.816431] do_sock_setsockopt+0xf7/0x1e0 [ 150.816446] __sys_setsockopt+0x11f/0x1a0 [ 150.816466] __x64_sys_setsockopt+0xbe/0x160 [ 150.816485] do_syscall_64+0xbf/0x360 [ 150.816497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.845164] loop3: detected capacity change from 0 to 4 12:39:50 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0xc2a83) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup2(r1, r0) 12:39:50 executing program 0: kexec_load(0x0, 0x10, 0x0, 0x0) 12:39:50 executing program 5: perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = dup2(r0, r0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40045304, &(0x7f0000000040)) [ 150.895191] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities 12:39:50 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x14) close(r0) 12:39:50 executing program 1: syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000001480)=[{&(0x7f00000000c0)='+', 0x1, 0x5}], 0x0, &(0x7f0000001540)={[{@numtail}, {@shortname_winnt}]}) 12:39:50 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x14) close(r0) [ 151.076611] FAT-fs (loop1): bogus number of FAT structure [ 151.077177] FAT-fs (loop1): Can't find a valid FAT filesystem 12:39:50 executing program 0: mount$9p_tcp(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') pread64(r0, &(0x7f0000000080)=""/239, 0xef, 0x0) 12:39:50 executing program 6: arch_prctl$ARCH_GET_GS(0x1004, 0xfffffffffffffffd) 12:39:50 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x14) close(r0) 12:39:50 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0xc2a83) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) dup2(r1, r0) 12:39:50 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000440)=ANY=[]) 12:39:50 executing program 5: perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = dup2(r0, r0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40045304, &(0x7f0000000040)) 12:39:50 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x14) close(r0) 12:39:51 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, 0x0, 0x44) [ 151.214886] loop3: detected capacity change from 0 to 4 12:39:51 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x14) close(r0) [ 151.235903] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities 12:39:51 executing program 6: arch_prctl$ARCH_GET_GS(0x1004, 0xfffffffffffffffd) 12:39:51 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x14) close(r0) 12:39:51 executing program 0: creat(0x0, 0x10) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreqn(r0, 0x0, 0x4, 0x0, 0x0) sendmsg$inet(r0, &(0x7f0000000000)={&(0x7f00000002c0)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000300)="04e8", 0x2}], 0x1}, 0x0) 12:39:51 executing program 5: perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = dup2(r0, r0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40045304, &(0x7f0000000040)) 12:39:51 executing program 0: creat(0x0, 0x10) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreqn(r0, 0x0, 0x4, 0x0, 0x0) sendmsg$inet(r0, &(0x7f0000000000)={&(0x7f00000002c0)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000300)="04e8", 0x2}], 0x1}, 0x0) 12:39:51 executing program 6: arch_prctl$ARCH_GET_GS(0x1004, 0xfffffffffffffffd) 12:39:51 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001580), 0x0) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r0, 0x40045402, 0x0) 12:39:51 executing program 5: perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = dup2(r0, r0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40045304, &(0x7f0000000040)) 12:39:51 executing program 4: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) readv(r0, 0x0, 0x0) [ 151.474031] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 151.474886] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 151.475514] CPU: 1 UID: 0 PID: 4486 Comm: syz-executor.0 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 151.476757] Tainted: [W]=WARN [ 151.480364] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 151.481019] RIP: 0010:perf_tp_event+0x175/0xe70 [ 151.481402] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 151.482836] RSP: 0018:ffff88801adcf780 EFLAGS: 00010012 [ 151.483259] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900048ae000 [ 151.483833] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 151.484396] RBP: ffff88801adcf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16300 [ 151.484965] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 151.485542] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 151.486122] FS: 00007f77a64e6700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 151.486776] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 151.487255] CR2: 0000000000000000 CR3: 000000000dd40000 CR4: 0000000000350ef0 [ 151.487841] Call Trace: [ 151.488054] [ 151.488237] ? __lock_acquire+0x694/0x1b70 [ 151.488581] ? __pfx_perf_tp_event+0x10/0x10 [ 151.488942] ? lock_acquire+0x15e/0x2f0 [ 151.489262] ? __is_insn_slot_addr+0x2e/0x290 [ 151.489631] ? find_held_lock+0x2b/0x80 [ 151.489955] ? __is_insn_slot_addr+0x136/0x290 [ 151.490325] ? lock_release+0xc8/0x290 [ 151.490641] ? __is_insn_slot_addr+0x140/0x290 [ 151.491010] ? kernel_text_address+0x5b/0xc0 [ 151.491371] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 151.491816] ? __kernel_text_address+0xd/0x40 [ 151.492180] ? unwind_get_return_address+0x59/0xa0 [ 151.492579] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 151.493010] ? arch_stack_walk+0x9c/0xf0 [ 151.493340] ? perf_trace_run_bpf_submit+0xef/0x180 [ 151.493743] ? stack_trace_save+0x8e/0xc0 [ 151.494078] perf_trace_run_bpf_submit+0xef/0x180 [ 151.494469] perf_trace_preemptirq_template+0x259/0x430 [ 151.494901] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 151.495373] ? _raw_spin_lock_irqsave+0x53/0x60 [ 151.495758] trace_irq_disable.constprop.0+0xa6/0x100 [ 151.496170] _raw_spin_lock_irqsave+0x53/0x60 [ 151.496535] try_to_wake_up+0xa0/0x11d0 [ 151.496861] ? __pfx_try_to_wake_up+0x10/0x10 [ 151.497224] ? plist_del+0x122/0x270 [ 151.497527] ? find_held_lock+0x2b/0x80 [ 151.497858] ? futex_wake+0x474/0x540 [ 151.498167] wake_up_q+0xa1/0x130 [ 151.498454] futex_wake+0x47e/0x540 [ 151.498751] ? __pfx_futex_wake+0x10/0x10 [ 151.499084] ? kasan_quarantine_put+0x84/0x1e0 [ 151.499459] ? getname_flags.part.0+0x36d/0x540 [ 151.499840] do_futex+0x26d/0x370 [ 151.500124] ? getname_flags+0x9d/0xe0 [ 151.500439] ? __pfx_do_futex+0x10/0x10 [ 151.500766] ? __pfx_do_sys_openat2+0x10/0x10 [ 151.501131] ? find_held_lock+0x2b/0x80 [ 151.501640] __x64_sys_futex+0x1c9/0x4d0 [ 151.502116] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 151.502597] ? __pfx___x64_sys_futex+0x10/0x10 [ 151.503137] ? __pfx___x64_sys_creat+0x10/0x10 [ 151.503667] do_syscall_64+0xbf/0x360 [ 151.503977] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.504541] RIP: 0033:0x7f77a8f70b19 [ 151.504852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 151.506598] RSP: 002b:00007f77a64e6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 151.507374] RAX: ffffffffffffffda RBX: 00007f77a9083f68 RCX: 00007f77a8f70b19 [ 151.508162] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f77a9083f6c [ 151.508832] RBP: 00007f77a9083f60 R08: 000000000000000e R09: 0000000000000000 [ 151.509520] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f77a9083f6c [ 151.510119] R13: 00007ffffed450af R14: 00007f77a64e6300 R15: 0000000000022000 [ 151.510713] [ 151.510906] Modules linked in: [ 151.511185] ---[ end trace 0000000000000000 ]--- [ 151.511581] RIP: 0010:perf_tp_event+0x175/0xe70 [ 151.512046] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 151.513774] RSP: 0018:ffff88801adcf780 EFLAGS: 00010012 [ 151.514206] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900048ae000 [ 151.514785] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 151.515365] RBP: ffff88801adcf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16300 [ 151.515948] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 151.516531] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 151.517115] FS: 00007f77a64e6700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 151.517763] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 151.518240] CR2: 0000000000000000 CR3: 000000000dd40000 CR4: 0000000000350ef0 [ 151.518820] note: syz-executor.0[4486] exited with irqs disabled [ 151.519381] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 151.520302] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 151.520927] CPU: 1 UID: 0 PID: 4486 Comm: syz-executor.0 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 151.521908] Tainted: [D]=DIE, [W]=WARN [ 151.522225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 151.522901] RIP: 0010:perf_tp_event+0x175/0xe70 [ 151.523290] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 151.524774] RSP: 0018:ffff88806cf08b40 EFLAGS: 00010012 [ 151.525223] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 151.525816] RDX: ffff888015b8b700 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 151.526389] RBP: ffff88806cf08db0 R08: ffff88806cf313e8 R09: ffffe8ffffd16300 [ 151.526981] R10: 0000000000000000 R11: ffff88801b962098 R12: dffffc0000000000 [ 151.527570] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000 [ 151.528151] FS: 00007f77a64e6700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 151.528846] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 151.529315] CR2: 0000000000000000 CR3: 000000000dd40000 CR4: 0000000000350ef0 [ 151.529904] Call Trace: [ 151.530119] [ 151.530306] ? __pfx_perf_tp_event+0x10/0x10 [ 151.530682] ? place_entity+0x1c/0x410 [ 151.531012] ? kvm_sched_clock_read+0x16/0x30 [ 151.531380] ? enqueue_task_fair+0x43a/0x1e00 [ 151.531771] ? do_raw_spin_lock+0x123/0x260 [ 151.532128] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 151.532505] ? lock_acquire+0x18c/0x2f0 [ 151.532846] ? lock_release+0x1c7/0x290 [ 151.533185] ? do_raw_spin_unlock+0x53/0x220 [ 151.533561] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 151.533985] ? try_to_wake_up+0x128/0x11d0 [ 151.534343] ? perf_trace_run_bpf_submit+0xef/0x180 [ 151.534748] ? lock_release+0x1c7/0x290 [ 151.535075] perf_trace_run_bpf_submit+0xef/0x180 [ 151.535483] perf_trace_preemptirq_template+0x259/0x430 [ 151.535919] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 151.536392] ? read_tsc+0x9/0x20 [ 151.536659] ? ktime_get+0x16d/0x270 [ 151.536948] ? __pfx_lapic_next_deadline+0x10/0x10 [ 151.537320] ? clockevents_program_event+0x135/0x360 [ 151.537707] ? _raw_spin_lock_irq+0x42/0x50 [ 151.538037] trace_irq_disable.constprop.0+0xa6/0x100 [ 151.538420] _raw_spin_lock_irq+0x42/0x50 [ 151.538737] run_timer_softirq+0x10f/0x210 [ 151.539059] handle_softirqs+0x1b1/0x770 [ 151.539376] __irq_exit_rcu+0xc4/0x100 [ 151.539686] irq_exit_rcu+0x9/0x20 [ 151.539955] sysvec_apic_timer_interrupt+0x70/0x80 [ 151.540328] [ 151.540500] [ 151.540673] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 151.541064] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 151.541418] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de [ 151.542739] RSP: 0018:ffff88801adcff28 EFLAGS: 00000246 [ 151.543131] RAX: 0000000000000001 RBX: ffff888015b8b700 RCX: ffffffff817c2b86 [ 151.543658] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 151.544178] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 151.544698] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888015b8b700 [ 151.545224] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 151.545746] ? trace_irq_enable.constprop.0+0x26/0x100 [ 151.546135] ? make_task_dead+0x214/0x3b0 [ 151.546451] ? make_task_dead+0x214/0x3b0 [ 151.546765] ? do_syscall_64+0xbf/0x360 [ 151.547062] rewind_stack_and_make_dead+0x16/0x20 [ 151.547427] RIP: 0033:0x7f77a8f70b19 [ 151.547711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 151.549126] RSP: 002b:00007f77a64e6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 151.549741] RAX: ffffffffffffffda RBX: 00007f77a9083f68 RCX: 00007f77a8f70b19 [ 151.550298] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f77a9083f6c [ 151.550823] RBP: 00007f77a9083f60 R08: 000000000000000e R09: 0000000000000000 [ 151.551344] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f77a9083f6c [ 151.551872] R13: 00007ffffed450af R14: 00007f77a64e6300 R15: 0000000000022000 [ 151.552397] [ 151.552574] Modules linked in: [ 151.552817] ---[ end trace 0000000000000000 ]--- [ 151.553162] RIP: 0010:perf_tp_event+0x175/0xe70 [ 151.553514] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 151.554921] RSP: 0018:ffff88801adcf780 EFLAGS: 00010012 [ 151.555315] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900048ae000 [ 151.555841] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 151.556362] RBP: ffff88801adcf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16300 [ 151.556882] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 151.557402] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 151.557928] FS: 00007f77a64e6700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 151.558517] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 151.558944] CR2: 0000000000000000 CR3: 000000000dd40000 CR4: 0000000000350ef0 [ 151.559476] Kernel panic - not syncing: Fatal exception in interrupt [ 151.560059] Kernel Offset: disabled [ 151.560330] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 12:39:51 Registers: info registers vcpu 0 RAX=ffffea000105e740 RBX=ffffea000105e740 RCX=ffffffff819cea9e RDX=0000000000000000 RSI=0000000000000008 RDI=ffffea000105e740 RBP=00000000000000ef RSP=ffff88801b5a7870 R8 =0000000000000000 R9 =fffff9400020bce6 R10=0000000000000001 R11=1ffff1100d9c6f7b R12=0000000000000001 R13=00007fe918511000 R14=ffff88801b5a7ce0 R15=800000004179d007 RIP=ffffffff81afef62 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe2c00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000000 CR3=0000000044ab4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff828e3230 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88801adcf080 R8 =0000000000000000 R9 =ffffed1001543046 R10=00000000000fe503 R11=3a6465746e696154 R12=0000000000000823 R13=0000000000000060 R14=fffffbfff10e4882 R15=dffffc0000000000 RIP=ffffffff828e3285 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f77a64e6700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe4400000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000000 CR3=000000000dd40000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f77a90577c000007f77a90577c8 XMM02=00007f77a90577e000007f77a90577c0 XMM03=00007f77a90577c800007f77a90577c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000