Warning: Permanently added '[localhost]:58204' (ECDSA) to the list of known hosts.
2025/08/29 12:41:40 fuzzer started
2025/08/29 12:41:41 dialing manager at localhost:43077
syzkaller login: [ 59.123548] cgroup: Unknown subsys name 'net'
[ 59.207630] cgroup: Unknown subsys name 'cpuset'
[ 59.226135] cgroup: Unknown subsys name 'rlimit'
2025/08/29 12:41:52 syscalls: 2214
2025/08/29 12:41:52 code coverage: enabled
2025/08/29 12:41:52 comparison tracing: enabled
2025/08/29 12:41:52 extra coverage: enabled
2025/08/29 12:41:52 setuid sandbox: enabled
2025/08/29 12:41:52 namespace sandbox: enabled
2025/08/29 12:41:52 Android sandbox: enabled
2025/08/29 12:41:52 fault injection: enabled
2025/08/29 12:41:52 leak checking: enabled
2025/08/29 12:41:52 net packet injection: enabled
2025/08/29 12:41:52 net device setup: enabled
2025/08/29 12:41:52 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 12:41:52 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 12:41:52 USB emulation: enabled
2025/08/29 12:41:52 hci packet injection: enabled
2025/08/29 12:41:52 wifi device emulation: enabled
2025/08/29 12:41:52 802.15.4 emulation: enabled
2025/08/29 12:41:52 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 12:41:52 fetching corpus: 50, signal 22536/26104 (executing program)
2025/08/29 12:41:52 fetching corpus: 100, signal 32360/37394 (executing program)
2025/08/29 12:41:52 fetching corpus: 150, signal 40990/47361 (executing program)
2025/08/29 12:41:52 fetching corpus: 200, signal 45896/53556 (executing program)
2025/08/29 12:41:52 fetching corpus: 250, signal 50326/59230 (executing program)
2025/08/29 12:41:52 fetching corpus: 300, signal 53802/63969 (executing program)
2025/08/29 12:41:53 fetching corpus: 350, signal 58841/70130 (executing program)
2025/08/29 12:41:53 fetching corpus: 400, signal 62557/74878 (executing program)
2025/08/29 12:41:53 fetching corpus: 450, signal 65046/78473 (executing program)
2025/08/29 12:41:53 fetching corpus: 500, signal 67542/82029 (executing program)
2025/08/29 12:41:53 fetching corpus: 550, signal 72882/88001 (executing program)
2025/08/29 12:41:53 fetching corpus: 600, signal 75605/91621 (executing program)
2025/08/29 12:41:53 fetching corpus: 650, signal 79491/96183 (executing program)
2025/08/29 12:41:53 fetching corpus: 700, signal 81507/99095 (executing program)
2025/08/29 12:41:53 fetching corpus: 750, signal 83645/102054 (executing program)
2025/08/29 12:41:53 fetching corpus: 800, signal 85903/105082 (executing program)
2025/08/29 12:41:53 fetching corpus: 850, signal 87712/107725 (executing program)
2025/08/29 12:41:54 fetching corpus: 900, signal 90086/110705 (executing program)
2025/08/29 12:41:54 fetching corpus: 950, signal 91810/113165 (executing program)
2025/08/29 12:41:54 fetching corpus: 1000, signal 93240/115408 (executing program)
2025/08/29 12:41:54 fetching corpus: 1050, signal 97500/119835 (executing program)
2025/08/29 12:41:54 fetching corpus: 1100, signal 98506/121608 (executing program)
2025/08/29 12:41:54 fetching corpus: 1150, signal 100620/124220 (executing program)
2025/08/29 12:41:54 fetching corpus: 1200, signal 101822/126108 (executing program)
2025/08/29 12:41:54 fetching corpus: 1250, signal 104024/128670 (executing program)
2025/08/29 12:41:54 fetching corpus: 1300, signal 105399/130657 (executing program)
2025/08/29 12:41:54 fetching corpus: 1350, signal 107980/133415 (executing program)
2025/08/29 12:41:55 fetching corpus: 1400, signal 109358/135309 (executing program)
2025/08/29 12:41:55 fetching corpus: 1450, signal 110513/137048 (executing program)
2025/08/29 12:41:55 fetching corpus: 1500, signal 111622/138701 (executing program)
2025/08/29 12:41:55 fetching corpus: 1550, signal 112883/140446 (executing program)
2025/08/29 12:41:55 fetching corpus: 1600, signal 114011/142009 (executing program)
2025/08/29 12:41:55 fetching corpus: 1650, signal 115834/144055 (executing program)
2025/08/29 12:41:55 fetching corpus: 1700, signal 117485/145928 (executing program)
2025/08/29 12:41:55 fetching corpus: 1750, signal 118793/147569 (executing program)
2025/08/29 12:41:55 fetching corpus: 1800, signal 120019/149167 (executing program)
2025/08/29 12:41:55 fetching corpus: 1850, signal 121286/150745 (executing program)
2025/08/29 12:41:55 fetching corpus: 1900, signal 122562/152296 (executing program)
2025/08/29 12:41:56 fetching corpus: 1950, signal 123334/153494 (executing program)
2025/08/29 12:41:56 fetching corpus: 2000, signal 125327/155423 (executing program)
2025/08/29 12:41:56 fetching corpus: 2050, signal 126248/156643 (executing program)
2025/08/29 12:41:56 fetching corpus: 2100, signal 126979/157848 (executing program)
2025/08/29 12:41:56 fetching corpus: 2150, signal 127677/158968 (executing program)
2025/08/29 12:41:56 fetching corpus: 2200, signal 128434/160100 (executing program)
2025/08/29 12:41:56 fetching corpus: 2250, signal 129183/161230 (executing program)
2025/08/29 12:41:56 fetching corpus: 2300, signal 129880/162347 (executing program)
2025/08/29 12:41:56 fetching corpus: 2350, signal 130733/163421 (executing program)
2025/08/29 12:41:56 fetching corpus: 2400, signal 131576/164518 (executing program)
2025/08/29 12:41:56 fetching corpus: 2450, signal 132791/165772 (executing program)
2025/08/29 12:41:56 fetching corpus: 2500, signal 133432/166787 (executing program)
2025/08/29 12:41:56 fetching corpus: 2550, signal 134278/167838 (executing program)
2025/08/29 12:41:57 fetching corpus: 2600, signal 134824/168763 (executing program)
2025/08/29 12:41:57 fetching corpus: 2650, signal 135881/169859 (executing program)
2025/08/29 12:41:57 fetching corpus: 2700, signal 136602/170871 (executing program)
2025/08/29 12:41:57 fetching corpus: 2750, signal 137252/171775 (executing program)
2025/08/29 12:41:57 fetching corpus: 2800, signal 138605/172946 (executing program)
2025/08/29 12:41:57 fetching corpus: 2850, signal 139340/173815 (executing program)
2025/08/29 12:41:57 fetching corpus: 2900, signal 139973/174685 (executing program)
2025/08/29 12:41:57 fetching corpus: 2950, signal 140581/175514 (executing program)
2025/08/29 12:41:57 fetching corpus: 3000, signal 141281/176406 (executing program)
2025/08/29 12:41:57 fetching corpus: 3050, signal 141752/177120 (executing program)
2025/08/29 12:41:57 fetching corpus: 3100, signal 142505/177947 (executing program)
2025/08/29 12:41:57 fetching corpus: 3150, signal 143298/178857 (executing program)
2025/08/29 12:41:58 fetching corpus: 3200, signal 143787/179567 (executing program)
2025/08/29 12:41:58 fetching corpus: 3250, signal 144448/180417 (executing program)
2025/08/29 12:41:58 fetching corpus: 3300, signal 144968/181140 (executing program)
2025/08/29 12:41:58 fetching corpus: 3350, signal 145358/181836 (executing program)
2025/08/29 12:41:58 fetching corpus: 3400, signal 146019/182535 (executing program)
2025/08/29 12:41:58 fetching corpus: 3450, signal 146666/183246 (executing program)
2025/08/29 12:41:58 fetching corpus: 3500, signal 147317/183989 (executing program)
2025/08/29 12:41:58 fetching corpus: 3550, signal 147836/184632 (executing program)
2025/08/29 12:41:58 fetching corpus: 3600, signal 148453/185257 (executing program)
2025/08/29 12:41:58 fetching corpus: 3650, signal 149089/185938 (executing program)
2025/08/29 12:41:58 fetching corpus: 3700, signal 149507/186517 (executing program)
2025/08/29 12:41:59 fetching corpus: 3750, signal 150079/187127 (executing program)
2025/08/29 12:41:59 fetching corpus: 3800, signal 150611/187748 (executing program)
2025/08/29 12:41:59 fetching corpus: 3850, signal 151170/188360 (executing program)
2025/08/29 12:41:59 fetching corpus: 3900, signal 151706/188915 (executing program)
2025/08/29 12:41:59 fetching corpus: 3950, signal 152114/189438 (executing program)
2025/08/29 12:41:59 fetching corpus: 4000, signal 152586/189968 (executing program)
2025/08/29 12:41:59 fetching corpus: 4050, signal 152933/190520 (executing program)
2025/08/29 12:41:59 fetching corpus: 4100, signal 153493/191088 (executing program)
2025/08/29 12:41:59 fetching corpus: 4150, signal 154160/191671 (executing program)
2025/08/29 12:41:59 fetching corpus: 4200, signal 154829/192235 (executing program)
2025/08/29 12:41:59 fetching corpus: 4250, signal 155347/192757 (executing program)
2025/08/29 12:42:00 fetching corpus: 4300, signal 155992/193246 (executing program)
2025/08/29 12:42:00 fetching corpus: 4350, signal 156483/193699 (executing program)
2025/08/29 12:42:00 fetching corpus: 4400, signal 156922/194189 (executing program)
2025/08/29 12:42:00 fetching corpus: 4450, signal 157402/194652 (executing program)
2025/08/29 12:42:00 fetching corpus: 4500, signal 157877/195103 (executing program)
2025/08/29 12:42:00 fetching corpus: 4550, signal 158515/195546 (executing program)
2025/08/29 12:42:00 fetching corpus: 4600, signal 159247/196096 (executing program)
2025/08/29 12:42:00 fetching corpus: 4650, signal 159861/196572 (executing program)
2025/08/29 12:42:00 fetching corpus: 4700, signal 160420/196981 (executing program)
2025/08/29 12:42:00 fetching corpus: 4750, signal 160866/197389 (executing program)
2025/08/29 12:42:01 fetching corpus: 4800, signal 161434/197456 (executing program)
2025/08/29 12:42:01 fetching corpus: 4850, signal 162023/197461 (executing program)
2025/08/29 12:42:01 fetching corpus: 4900, signal 162366/197464 (executing program)
2025/08/29 12:42:01 fetching corpus: 4950, signal 162781/197474 (executing program)
2025/08/29 12:42:01 fetching corpus: 5000, signal 163190/197505 (executing program)
2025/08/29 12:42:01 fetching corpus: 5050, signal 163890/197505 (executing program)
2025/08/29 12:42:01 fetching corpus: 5100, signal 164384/197526 (executing program)
2025/08/29 12:42:01 fetching corpus: 5150, signal 165128/197531 (executing program)
2025/08/29 12:42:01 fetching corpus: 5200, signal 165666/197531 (executing program)
2025/08/29 12:42:01 fetching corpus: 5250, signal 166195/197620 (executing program)
2025/08/29 12:42:02 fetching corpus: 5300, signal 166862/197628 (executing program)
2025/08/29 12:42:02 fetching corpus: 5350, signal 167342/197697 (executing program)
2025/08/29 12:42:02 fetching corpus: 5400, signal 167726/197707 (executing program)
2025/08/29 12:42:02 fetching corpus: 5450, signal 168014/197710 (executing program)
2025/08/29 12:42:02 fetching corpus: 5500, signal 168285/197713 (executing program)
2025/08/29 12:42:02 fetching corpus: 5550, signal 168742/197800 (executing program)
2025/08/29 12:42:02 fetching corpus: 5600, signal 169098/197801 (executing program)
2025/08/29 12:42:02 fetching corpus: 5650, signal 169569/197933 (executing program)
2025/08/29 12:42:02 fetching corpus: 5700, signal 169899/197934 (executing program)
2025/08/29 12:42:02 fetching corpus: 5750, signal 170361/197949 (executing program)
2025/08/29 12:42:02 fetching corpus: 5800, signal 170977/197955 (executing program)
2025/08/29 12:42:03 fetching corpus: 5850, signal 172224/197967 (executing program)
2025/08/29 12:42:03 fetching corpus: 5900, signal 172484/197999 (executing program)
2025/08/29 12:42:03 fetching corpus: 5950, signal 172728/197999 (executing program)
2025/08/29 12:42:03 fetching corpus: 6000, signal 173161/198005 (executing program)
2025/08/29 12:42:03 fetching corpus: 6050, signal 173517/198019 (executing program)
2025/08/29 12:42:03 fetching corpus: 6100, signal 173935/198031 (executing program)
2025/08/29 12:42:03 fetching corpus: 6150, signal 174214/198058 (executing program)
2025/08/29 12:42:03 fetching corpus: 6200, signal 174642/198078 (executing program)
2025/08/29 12:42:03 fetching corpus: 6250, signal 174972/198079 (executing program)
2025/08/29 12:42:03 fetching corpus: 6300, signal 175414/198084 (executing program)
2025/08/29 12:42:03 fetching corpus: 6350, signal 175688/198109 (executing program)
2025/08/29 12:42:03 fetching corpus: 6400, signal 176205/198113 (executing program)
2025/08/29 12:42:03 fetching corpus: 6450, signal 176624/198128 (executing program)
2025/08/29 12:42:04 fetching corpus: 6500, signal 176903/198137 (executing program)
2025/08/29 12:42:04 fetching corpus: 6550, signal 177224/198141 (executing program)
2025/08/29 12:42:04 fetching corpus: 6600, signal 177692/198156 (executing program)
2025/08/29 12:42:04 fetching corpus: 6650, signal 178087/198165 (executing program)
2025/08/29 12:42:04 fetching corpus: 6700, signal 178504/198172 (executing program)
2025/08/29 12:42:04 fetching corpus: 6750, signal 178877/198176 (executing program)
2025/08/29 12:42:04 fetching corpus: 6800, signal 179232/198177 (executing program)
2025/08/29 12:42:04 fetching corpus: 6850, signal 179553/198177 (executing program)
2025/08/29 12:42:04 fetching corpus: 6900, signal 179828/198177 (executing program)
2025/08/29 12:42:04 fetching corpus: 6950, signal 180126/198184 (executing program)
2025/08/29 12:42:04 fetching corpus: 7000, signal 180543/198207 (executing program)
2025/08/29 12:42:05 fetching corpus: 7050, signal 180804/198213 (executing program)
2025/08/29 12:42:05 fetching corpus: 7100, signal 181053/198229 (executing program)
2025/08/29 12:42:05 fetching corpus: 7150, signal 181663/198231 (executing program)
2025/08/29 12:42:05 fetching corpus: 7200, signal 181855/198233 (executing program)
2025/08/29 12:42:05 fetching corpus: 7250, signal 182097/198239 (executing program)
2025/08/29 12:42:05 fetching corpus: 7300, signal 182353/198275 (executing program)
2025/08/29 12:42:05 fetching corpus: 7350, signal 182631/198276 (executing program)
2025/08/29 12:42:05 fetching corpus: 7400, signal 182917/198284 (executing program)
2025/08/29 12:42:05 fetching corpus: 7450, signal 183179/198293 (executing program)
2025/08/29 12:42:05 fetching corpus: 7500, signal 183629/198306 (executing program)
2025/08/29 12:42:05 fetching corpus: 7550, signal 183882/198307 (executing program)
2025/08/29 12:42:06 fetching corpus: 7600, signal 184067/198314 (executing program)
2025/08/29 12:42:06 fetching corpus: 7650, signal 184395/198316 (executing program)
2025/08/29 12:42:06 fetching corpus: 7700, signal 184583/198325 (executing program)
2025/08/29 12:42:06 fetching corpus: 7750, signal 184958/198335 (executing program)
2025/08/29 12:42:06 fetching corpus: 7800, signal 185214/198351 (executing program)
2025/08/29 12:42:06 fetching corpus: 7850, signal 185494/198352 (executing program)
2025/08/29 12:42:06 fetching corpus: 7900, signal 185805/198353 (executing program)
2025/08/29 12:42:06 fetching corpus: 7950, signal 186025/198361 (executing program)
2025/08/29 12:42:06 fetching corpus: 8000, signal 186232/198367 (executing program)
2025/08/29 12:42:06 fetching corpus: 8050, signal 186438/198376 (executing program)
2025/08/29 12:42:06 fetching corpus: 8100, signal 186705/198378 (executing program)
2025/08/29 12:42:07 fetching corpus: 8149, signal 187094/198379 (executing program)
2025/08/29 12:42:07 fetching corpus: 8199, signal 187338/198380 (executing program)
2025/08/29 12:42:07 fetching corpus: 8249, signal 187645/198409 (executing program)
2025/08/29 12:42:07 fetching corpus: 8299, signal 187839/198414 (executing program)
2025/08/29 12:42:07 fetching corpus: 8349, signal 188140/198423 (executing program)
2025/08/29 12:42:07 fetching corpus: 8399, signal 188442/198447 (executing program)
2025/08/29 12:42:07 fetching corpus: 8449, signal 188672/198449 (executing program)
2025/08/29 12:42:07 fetching corpus: 8499, signal 188948/198455 (executing program)
2025/08/29 12:42:07 fetching corpus: 8549, signal 189250/198481 (executing program)
2025/08/29 12:42:07 fetching corpus: 8599, signal 189519/198485 (executing program)
2025/08/29 12:42:07 fetching corpus: 8649, signal 189741/198491 (executing program)
2025/08/29 12:42:07 fetching corpus: 8699, signal 189899/198500 (executing program)
2025/08/29 12:42:08 fetching corpus: 8749, signal 190103/198504 (executing program)
2025/08/29 12:42:08 fetching corpus: 8799, signal 190409/198504 (executing program)
2025/08/29 12:42:08 fetching corpus: 8849, signal 190701/198519 (executing program)
2025/08/29 12:42:08 fetching corpus: 8899, signal 190977/198609 (executing program)
2025/08/29 12:42:08 fetching corpus: 8949, signal 191234/198623 (executing program)
2025/08/29 12:42:08 fetching corpus: 8999, signal 191461/198634 (executing program)
2025/08/29 12:42:08 fetching corpus: 9049, signal 191617/198643 (executing program)
2025/08/29 12:42:08 fetching corpus: 9099, signal 191870/198653 (executing program)
2025/08/29 12:42:08 fetching corpus: 9149, signal 192077/198653 (executing program)
2025/08/29 12:42:08 fetching corpus: 9199, signal 192243/198664 (executing program)
2025/08/29 12:42:08 fetching corpus: 9249, signal 192536/198709 (executing program)
2025/08/29 12:42:09 fetching corpus: 9299, signal 192829/198716 (executing program)
2025/08/29 12:42:09 fetching corpus: 9349, signal 193038/198727 (executing program)
2025/08/29 12:42:09 fetching corpus: 9399, signal 193305/198728 (executing program)
2025/08/29 12:42:09 fetching corpus: 9449, signal 193554/198732 (executing program)
2025/08/29 12:42:09 fetching corpus: 9499, signal 193781/198741 (executing program)
2025/08/29 12:42:09 fetching corpus: 9549, signal 194028/198747 (executing program)
2025/08/29 12:42:09 fetching corpus: 9599, signal 194295/198749 (executing program)
2025/08/29 12:42:09 fetching corpus: 9649, signal 194419/198752 (executing program)
2025/08/29 12:42:09 fetching corpus: 9699, signal 194657/198763 (executing program)
2025/08/29 12:42:09 fetching corpus: 9747, signal 194827/198771 (executing program)
2025/08/29 12:42:09 fetching corpus: 9747, signal 194827/198771 (executing program)
2025/08/29 12:42:11 starting 8 fuzzer processes
12:42:11 executing program 0:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='cgroup2\x00', 0x0, 0x0)
removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@random={'user.', '^^{\x00'})
12:42:11 executing program 1:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x7, 0x11, r0, 0x8000000)
12:42:12 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x2840, 0x0)
ioctl$CDROMRESUME(r0, 0x5321)
12:42:12 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$incfs_metadata(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), &(0x7f00000003c0)="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", 0xfc0, 0x0)
12:42:12 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x8001, &(0x7f0000000040)=0x1, 0x6)
[ 89.861788] audit: type=1400 audit(1756471332.095:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
12:42:12 executing program 5:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/pm_trace', 0x28001, 0x0)
write$tcp_mem(r0, &(0x7f0000000280)={0xffffff7f00000000}, 0x48)
12:42:12 executing program 6:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40345410, &(0x7f0000000040)={{0x1}})
r1 = dup(r0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x5420, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r1, 0x54a3)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2)
12:42:12 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000240)=0x4, 0x4)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0)
syz_emit_ethernet(0xed, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003040)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000001c0)="db", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d40)}}], 0x2, 0x0)
recvmsg(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
[ 91.080243] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 91.083881] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 91.088833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 91.094532] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 91.098525] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 91.137834] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 91.141956] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 91.143727] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 91.149334] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 91.152050] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 91.208144] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 91.212325] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 91.214279] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 91.217759] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 91.220038] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 91.226724] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 91.228887] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 91.231463] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 91.233528] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 91.235863] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 91.239858] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 91.242367] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 91.250109] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 91.261097] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 91.279268] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 91.287339] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 91.294547] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 91.295986] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 91.306227] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 91.318138] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 91.318225] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 91.331650] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 91.341180] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 91.347065] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 91.347841] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 91.350037] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 91.352335] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 91.355072] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 91.357388] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 91.367826] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 93.177718] Bluetooth: hci1: command tx timeout
[ 93.178293] Bluetooth: hci0: command tx timeout
[ 93.303658] Bluetooth: hci3: command tx timeout
[ 93.304245] Bluetooth: hci4: command tx timeout
[ 93.304859] Bluetooth: hci2: command tx timeout
[ 93.431843] Bluetooth: hci6: command tx timeout
[ 93.432364] Bluetooth: hci7: command tx timeout
[ 93.433505] Bluetooth: hci5: command tx timeout
[ 95.223761] Bluetooth: hci1: command tx timeout
[ 95.224223] Bluetooth: hci0: command tx timeout
[ 95.352309] Bluetooth: hci2: command tx timeout
[ 95.352742] Bluetooth: hci4: command tx timeout
[ 95.353120] Bluetooth: hci3: command tx timeout
[ 95.479833] Bluetooth: hci7: command tx timeout
[ 95.480236] Bluetooth: hci5: command tx timeout
[ 95.481210] Bluetooth: hci6: command tx timeout
[ 97.271810] Bluetooth: hci1: command tx timeout
[ 97.272266] Bluetooth: hci0: command tx timeout
[ 97.399733] Bluetooth: hci3: command tx timeout
[ 97.400164] Bluetooth: hci4: command tx timeout
[ 97.400544] Bluetooth: hci2: command tx timeout
[ 97.527731] Bluetooth: hci6: command tx timeout
[ 97.528168] Bluetooth: hci5: command tx timeout
[ 97.528558] Bluetooth: hci7: command tx timeout
[ 99.320362] Bluetooth: hci0: command tx timeout
[ 99.320803] Bluetooth: hci1: command tx timeout
[ 99.447676] Bluetooth: hci2: command tx timeout
[ 99.448149] Bluetooth: hci4: command tx timeout
[ 99.448547] Bluetooth: hci3: command tx timeout
[ 99.575719] Bluetooth: hci6: command tx timeout
[ 99.576184] Bluetooth: hci7: command tx timeout
[ 99.576602] Bluetooth: hci5: command tx timeout
[ 127.459072] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.460153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.621747] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.622390] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.807158] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.807818] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.889116] PM: Enabling pm_trace changes system date and time during resume.
[ 127.889116] PM: Correct system time has to be restored manually after resume.
[ 127.937867] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.938523] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:42:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net\x00')
symlinkat(&(0x7f0000001d00)='./file1/file0\x00', r0, &(0x7f0000001d40)='./file1\x00')
12:42:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net\x00')
symlinkat(&(0x7f0000001d00)='./file1/file0\x00', r0, &(0x7f0000001d40)='./file1\x00')
12:42:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net\x00')
symlinkat(&(0x7f0000001d00)='./file1/file0\x00', r0, &(0x7f0000001d40)='./file1\x00')
12:42:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net\x00')
symlinkat(&(0x7f0000001d00)='./file1/file0\x00', r0, &(0x7f0000001d40)='./file1\x00')
12:42:50 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0002}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
getpid()
12:42:50 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="140000001a00ff5407000000000000000a"], 0x14}], 0x1}, 0x0)
[ 128.577112] audit: type=1400 audit(1756471370.810:8): avc: denied { open } for pid=3734 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 128.579152] audit: type=1400 audit(1756471370.811:9): avc: denied { kernel } for pid=3734 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
12:42:50 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close(r0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x0)
12:42:50 executing program 5:
r0 = memfd_create(&(0x7f0000000000)='\x02\xce\x16Td\xa8\x98\x86\xb1:\x8f\xc5\x88{\xbd\xb4\xc2\xb1\x9b\x84\x97R\xcc\xdb<\x01\xfa\x91\x85\xa0\x81\xa9F0!/\x89\xacX\xbd\xcd\x12R|lTn\xac-\xfd\x8b\n\x1a\xbc\xf0^B6\xb6`[/\xafE\xdaYz\xd6\xc7\xbc!\xe5\x89\xc8^\x06np\xc6\xe7\x1d\xe4\xbe\xcaa}\x1c\x12\xf9\xd8\xefw\xe1\xcb\x85\xdb?^\x8f\f\nD\xf2\x1f\x11\xaa\x90>N\xb7\x86\x15\x03=\xcc\xbe\x0f\x0f\x14\x84\xde:;\x0f\xb5\xf1\x86\xf2{yt\xa2\xe9\x01\x00\x00\x00\x8e:^v\xc9\x8d\xd7E\xb4\vw\xbe\\\x11J\xf4\xae\xc6\x88F\x9c\xaflM\x1dSHjH\xd6\x8d\xa6\xbd\x96\xe4SR\xe6\x118L*\x9b\xb2\tbg\xad\x0fRu\xeb\xe4{GO\xa5M\x80-Y\xc6\x1f%\xb8i|\x86\xa9Zm+\x9fe~\x8a\xe7\xca\f\xad?\xa0t\x13_Rq\x1f\xc6\xd9\x1d#\x8a8q\x1e#c\x8c\x193\xab\xdbE\xe1\xc8d=\xe5\r\xe6\x9a\xe5zc-\f\xe5#\xa2v\x1eY\xf0\xe3\x1c*h\xdbq\x92\xf8a6\x99\x02\xc9}\x14\xfb\x03\xce\xb34\x95/\x18\xacJs0\x9f\x9b>\xae\a2\x01\xa7\x95\xbd\xf2\x99w\x11G\x1c\xd2\xbc\xf0E\x86\xca\x87\xefv\x8e\xad\xb8\xc7u\xc2z\x85\xc1\xd5R\x82\v\x1b\xea\x8f\xad\xc1\x02\x8a$\xd1T\xce\xa6\xa2m\x18K\xd5-\x03\xa0\xeeF^F\vJLx\xdc\xc8\b\xb7\xa1j2l\x8fQ\xc1\x89\xb8\xbef\xc6\x90\r\xae\xd4S\x8f\x7f\xe2[\x1cs\xab&\xa3\x81B<\xc5]n\xfc', 0x0)
fcntl$addseals(r0, 0x402, 0x0)
[ 129.329642] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.330244] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.427467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.428101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.957458] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.958606] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.037913] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.038598] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.137389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.138071] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.238426] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.239088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.369979] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.370743] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.402477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.403231] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.485602] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.486206] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.560948] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.561543] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.776985] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.777614] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.799279] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.799895] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:42:53 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f00000000c0)=""/146)
12:42:53 executing program 0:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='cgroup2\x00', 0x0, 0x0)
removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@random={'user.', '^^{\x00'})
12:42:53 executing program 2:
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
open_by_handle_at(r1, &(0x7f0000000340)=@FILEID_NILFS_WITH_PARENT={0x20}, 0x341c02)
12:42:53 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCSMASK(r0, 0x40084504, 0x0)
12:42:53 executing program 5:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
readahead(r0, 0x0, 0x0)
12:42:53 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close(r0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x0)
12:42:53 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close(r0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x0)
12:42:53 executing program 3:
r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[])
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0xc000, 0x0)
faccessat2(r0, &(0x7f0000000180)='./file0\x00', 0x2, 0x0)
12:42:53 executing program 3:
r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[])
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0xc000, 0x0)
faccessat2(r0, &(0x7f0000000180)='./file0\x00', 0x2, 0x0)
12:42:53 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close(r0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x0)
12:42:53 executing program 5:
r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[])
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0xc000, 0x0)
faccessat2(r0, &(0x7f0000000180)='./file0\x00', 0x2, 0x0)
12:42:53 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)={0x2c, r1, 0x1, 0x0, 0x0, {0x5}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)
12:42:53 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close(r0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x0)
12:42:53 executing program 0:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='cgroup2\x00', 0x0, 0x0)
removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@random={'user.', '^^{\x00'})
12:42:53 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCSMASK(r0, 0x40084504, 0x0)
12:42:53 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCSMASK(r0, 0x40084504, 0x0)
12:42:53 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close(r0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x0)
12:42:53 executing program 4:
socket$inet6(0xa, 0x0, 0xb62)
12:42:53 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)={0x2c, r1, 0x1, 0x0, 0x0, {0x5}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)
12:42:53 executing program 5:
r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[])
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0xc000, 0x0)
faccessat2(r0, &(0x7f0000000180)='./file0\x00', 0x2, 0x0)
12:42:53 executing program 3:
r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[])
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0xc000, 0x0)
faccessat2(r0, &(0x7f0000000180)='./file0\x00', 0x2, 0x0)
12:42:53 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close(r0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x0)
12:42:53 executing program 0:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='cgroup2\x00', 0x0, 0x0)
removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@random={'user.', '^^{\x00'})
12:42:53 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)={0x2c, r1, 0x1, 0x0, 0x0, {0x5}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)
12:42:53 executing program 6:
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = dup2(r1, r1)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r2, 0x0)
r3 = pidfd_open(r0, 0x0)
process_madvise(r3, &(0x7f00000016c0)=[{&(0x7f0000000000)='B', 0x1}, {0x0, 0xf4000000}, {0x0}, {&(0x7f00000003c0)}, {&(0x7f00000004c0)}, {0x0}, {0x0}, {&(0x7f00000015c0)}, {0x0}], 0x9, 0x66, 0x0)
12:42:53 executing program 7:
r0 = io_uring_setup(0x6aff, &(0x7f0000000140))
io_uring_enter(r0, 0x0, 0x0, 0x12, 0x0, 0x0)
12:42:53 executing program 5:
r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[])
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0xc000, 0x0)
faccessat2(r0, &(0x7f0000000180)='./file0\x00', 0x2, 0x0)
12:42:53 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCSMASK(r0, 0x40084504, 0x0)
12:42:53 executing program 3:
r0 = syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[])
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0xc000, 0x0)
faccessat2(r0, &(0x7f0000000180)='./file0\x00', 0x2, 0x0)
12:42:53 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readlink(0x0, &(0x7f00000000c0)=""/8, 0x8)
clone3(&(0x7f00000002c0)={0x1720e0180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
12:42:53 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x40002000}, 0xc)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
dup2(r1, r0)
[ 131.352241] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 131.353187] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 131.353803] CPU: 1 UID: 0 PID: 3971 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 131.355244] Tainted: [W]=WARN
[ 131.355924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 131.357737] RIP: 0010:perf_tp_event+0x175/0xe70
[ 131.358572] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 131.361350] RSP: 0018:ffff88804634f780 EFLAGS: 00010012
[ 131.361771] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90001628000
[ 131.362323] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 131.362886] RBP: ffff88804634f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd08d30
[ 131.363445] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[ 131.364002] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 131.364572] FS: 00007fee9d6da700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 131.365203] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 131.365687] CR2: 0000000000000000 CR3: 000000001ea18000 CR4: 0000000000350ef0
[ 131.366270] Call Trace:
[ 131.366490]
[ 131.366686] ? __pfx_perf_tp_event+0x10/0x10
[ 131.367059] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 131.367542] ? do_raw_spin_lock+0x1dc/0x260
[ 131.367898] ? mark_held_locks+0x49/0x80
[ 131.368243] ? kvm_sched_clock_read+0x16/0x30
[ 131.368610] ? sched_clock+0x37/0x60
[ 131.368917] ? lock_is_held_type+0x9e/0x120
[ 131.369286] ? perf_trace_run_bpf_submit+0xef/0x180
[ 131.369708] ? lock_is_held_type+0x9e/0x120
[ 131.370061] perf_trace_run_bpf_submit+0xef/0x180
[ 131.370446] perf_trace_preemptirq_template+0x259/0x430
[ 131.370874] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 131.371362] ? check_preempt_wakeup_fair+0x406/0x950
[ 131.371781] ? find_held_lock+0x2b/0x80
[ 131.372121] ? try_to_wake_up+0x8ae/0x11d0
[ 131.372465] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 131.372870] trace_irq_enable.constprop.0+0xa6/0x100
[ 131.373273] trace_hardirqs_on+0x26/0x40
[ 131.373603] _raw_spin_unlock_irqrestore+0x2c/0x50
[ 131.373995] try_to_wake_up+0x8ae/0x11d0
[ 131.374325] ? __pfx_try_to_wake_up+0x10/0x10
[ 131.374689] ? plist_del+0x122/0x270
[ 131.374992] ? find_held_lock+0x2b/0x80
[ 131.375313] ? futex_wake+0x474/0x540
[ 131.375624] wake_up_q+0xa1/0x130
[ 131.375908] futex_wake+0x47e/0x540
[ 131.376696] ? __pfx_futex_wake+0x10/0x10
[ 131.377716] ? io_uring_setup+0x16e0/0x2000
[ 131.378708] do_futex+0x26d/0x370
[ 131.379484] ? __pfx_do_futex+0x10/0x10
[ 131.380844] __x64_sys_futex+0x1c9/0x4d0
[ 131.381188] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 131.381675] ? __pfx___x64_sys_futex+0x10/0x10
[ 131.382056] ? xfd_validate_state+0x55/0x180
[ 131.382427] do_syscall_64+0xbf/0x360
[ 131.382739] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 131.383165] RIP: 0033:0x7feea0164b19
[ 131.383485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 131.384965] RSP: 002b:00007fee9d6da218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 131.385570] RAX: ffffffffffffffda RBX: 00007feea0277f68 RCX: 00007feea0164b19
[ 131.386143] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007feea0277f6c
[ 131.386720] RBP: 00007feea0277f60 R08: 000000000000000e R09: 0000000000000000
[ 131.387303] R10: 0000000000000003 R11: 0000000000000246 R12: 00007feea0277f6c
[ 131.387883] R13: 00007fff7605ed0f R14: 00007fee9d6da300 R15: 0000000000022000
[ 131.388475]
[ 131.388672] Modules linked in:
[ 131.388939] ---[ end trace 0000000000000000 ]---
[ 131.389313] RIP: 0010:perf_tp_event+0x175/0xe70
[ 131.389698] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 131.391149] RSP: 0018:ffff88804634f780 EFLAGS: 00010012
[ 131.391570] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90001628000
[ 131.392152] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 131.392725] RBP: ffff88804634f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd08d30
[ 131.393304] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[ 131.393878] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 131.394453] FS: 00007fee9d6da700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 131.395094] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 131.395561] CR2: 0000000000000000 CR3: 000000001ea18000 CR4: 0000000000350ef0
[ 131.396153] note: syz-executor.7[3971] exited with irqs disabled
[ 131.396686] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 131.397588] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 131.398201] CPU: 1 UID: 0 PID: 3971 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 131.399134] Tainted: [D]=DIE, [W]=WARN
[ 131.399436] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 131.400089] RIP: 0010:perf_tp_event+0x175/0xe70
[ 131.400468] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 131.401890] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[ 131.402309] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 131.402868] RDX: ffff888044af0000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 131.403425] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd08d30
[ 131.403985] R10: 0000000000000000 R11: ffff888017fe3c98 R12: dffffc0000000000
[ 131.404554] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 131.405115] FS: 00007fee9d6da700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 131.405743] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 131.406199] CR2: 0000000000000000 CR3: 000000001ea18000 CR4: 0000000000350ef0
[ 131.406756] Call Trace:
[ 131.406963]
[ 131.407138] ? __pfx_perf_tp_event+0x10/0x10
[ 131.407499] ? enqueue_task_fair+0x43a/0x1e00
[ 131.407860] ? do_raw_spin_lock+0x123/0x260
[ 131.408213] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 131.408586] ? lock_acquire+0x18c/0x2f0
[ 131.408905] ? lock_release+0x1c7/0x290
[ 131.409224] ? do_raw_spin_unlock+0x53/0x220
[ 131.409577] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 131.409981] ? try_to_wake_up+0x128/0x11d0
[ 131.410320] ? do_raw_spin_lock+0x123/0x260
[ 131.410671] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 131.411046] ? perf_trace_run_bpf_submit+0xef/0x180
[ 131.411443] perf_trace_run_bpf_submit+0xef/0x180
[ 131.411832] perf_trace_preemptirq_template+0x259/0x430
[ 131.412264] ? read_tsc+0x9/0x20
[ 131.412542] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 131.413011] ? clockevents_program_event+0x135/0x360
[ 131.413418] ? tick_program_event+0xac/0x140
[ 131.413771] ? handle_softirqs+0x16e/0x770
[ 131.414114] trace_irq_enable.constprop.0+0xa6/0x100
[ 131.414529] trace_hardirqs_on+0x26/0x40
[ 131.414874] handle_softirqs+0x16e/0x770
[ 131.415215] __irq_exit_rcu+0xc4/0x100
[ 131.415536] irq_exit_rcu+0x9/0x20
[ 131.415831] sysvec_apic_timer_interrupt+0x70/0x80
[ 131.416250]
[ 131.416442]
[ 131.416629] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 131.417062] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 131.417433] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de
[ 131.418874] RSP: 0018:ffff88804634ff28 EFLAGS: 00000246
[ 131.419299] RAX: 0000000000000001 RBX: ffff888044af0000 RCX: ffffffff817c2b86
[ 131.419864] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 131.420441] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 131.421004] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888044af0000
[ 131.421570] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[ 131.422142] ? trace_irq_enable.constprop.0+0x26/0x100
[ 131.422564] ? make_task_dead+0x214/0x3b0
[ 131.422896] ? make_task_dead+0x214/0x3b0
[ 131.423228] ? do_syscall_64+0xbf/0x360
[ 131.423555] rewind_stack_and_make_dead+0x16/0x20
[ 131.423957] RIP: 0033:0x7feea0164b19
[ 131.424271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 131.425683] RSP: 002b:00007fee9d6da218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 131.426276] RAX: ffffffffffffffda RBX: 00007feea0277f68 RCX: 00007feea0164b19
[ 131.426615] audit: type=1400 audit(1756471373.657:10): avc: denied { read } for pid=3967 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 131.426849] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007feea0277f6c
[ 131.428981] RBP: 00007feea0277f60 R08: 000000000000000e R09: 0000000000000000
[ 131.429541] R10: 0000000000000003 R11: 0000000000000246 R12: 00007feea0277f6c
[ 131.430110] R13: 00007fff7605ed0f R14: 00007fee9d6da300 R15: 0000000000022000
[ 131.430687]
[ 131.430879] Modules linked in:
[ 131.431141] ---[ end trace 0000000000000000 ]---
[ 131.431515] RIP: 0010:perf_tp_event+0x175/0xe70
[ 131.431895] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 131.433350] RSP: 0018:ffff88804634f780 EFLAGS: 00010012
[ 131.433780] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90001628000
[ 131.434346] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 131.434917] RBP: ffff88804634f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd08d30
[ 131.435479] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[ 131.436045] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 131.436618] FS: 00007fee9d6da700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 131.437258] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 131.437722] CR2: 0000000000000000 CR3: 000000001ea18000 CR4: 0000000000350ef0
[ 131.438289] Kernel panic - not syncing: Fatal exception in interrupt
[ 131.438993] Kernel Offset: disabled
[ 131.439284] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
12:42:53 Registers:
info registers vcpu 0
RAX=0000000000000007 RBX=0000000000000000 RCX=ffffffff81292599 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000000 RBP=ffff888016810000 RSP=ffff888018197778
R8 =0000000000000000 R9 =ffffed1008846000 R10=0000000000000000 R11=ffff8880442304b8
R12=ffff888044230000 R13=0000000000000000 R14=ffff888016ad9b80 R15=ffff888044231628
RIP=ffffffff8173e2b8 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fef9a3e0700 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe5800000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000340 CR3=000000003c223000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007fef9cf517c000007fef9cf517c8
XMM02=00007fef9cf517e000007fef9cf517c0 XMM03=00007fef9cf517c800007fef9cf517c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88804634f078
R8 =0000000000000000 R9 =ffffed1001491046 R10=0000000000000030 R11=7866705f5f203f20
R12=0000000000000030 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fee9d6da700 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe7c00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000000000 CR3=000000001ea18000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007feea024b7c000007feea024b7c8
XMM02=00007feea024b7e000007feea024b7c0 XMM03=00007feea024b7c800007feea024b7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000