Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:45014' (ECDSA) to the list of known hosts.
2025/08/29 13:20:16 fuzzer started
2025/08/29 13:20:17 dialing manager at localhost:43077
syzkaller login: [   44.076009] cgroup: Unknown subsys name 'net'
[   44.142153] cgroup: Unknown subsys name 'cpuset'
[   44.157025] cgroup: Unknown subsys name 'rlimit'
2025/08/29 13:20:27 syscalls: 2214
2025/08/29 13:20:27 code coverage: enabled
2025/08/29 13:20:27 comparison tracing: enabled
2025/08/29 13:20:27 extra coverage: enabled
2025/08/29 13:20:27 setuid sandbox: enabled
2025/08/29 13:20:27 namespace sandbox: enabled
2025/08/29 13:20:27 Android sandbox: enabled
2025/08/29 13:20:27 fault injection: enabled
2025/08/29 13:20:27 leak checking: enabled
2025/08/29 13:20:27 net packet injection: enabled
2025/08/29 13:20:27 net device setup: enabled
2025/08/29 13:20:27 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 13:20:27 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 13:20:27 USB emulation: enabled
2025/08/29 13:20:27 hci packet injection: enabled
2025/08/29 13:20:27 wifi device emulation: enabled
2025/08/29 13:20:27 802.15.4 emulation: enabled
2025/08/29 13:20:27 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 13:20:27 fetching corpus: 50, signal 15775/19445 (executing program)
2025/08/29 13:20:27 fetching corpus: 100, signal 29886/34955 (executing program)
2025/08/29 13:20:27 fetching corpus: 150, signal 39644/46039 (executing program)
2025/08/29 13:20:27 fetching corpus: 200, signal 44938/52678 (executing program)
2025/08/29 13:20:27 fetching corpus: 250, signal 50620/59579 (executing program)
2025/08/29 13:20:27 fetching corpus: 300, signal 54859/65044 (executing program)
2025/08/29 13:20:27 fetching corpus: 350, signal 57292/68710 (executing program)
2025/08/29 13:20:27 fetching corpus: 400, signal 60931/73407 (executing program)
2025/08/29 13:20:27 fetching corpus: 450, signal 65431/78841 (executing program)
2025/08/29 13:20:27 fetching corpus: 500, signal 69041/83371 (executing program)
2025/08/29 13:20:28 fetching corpus: 550, signal 71014/86382 (executing program)
2025/08/29 13:20:28 fetching corpus: 600, signal 73792/90041 (executing program)
2025/08/29 13:20:28 fetching corpus: 650, signal 75047/92385 (executing program)
2025/08/29 13:20:28 fetching corpus: 700, signal 79991/97928 (executing program)
2025/08/29 13:20:28 fetching corpus: 750, signal 82085/100906 (executing program)
2025/08/29 13:20:28 fetching corpus: 800, signal 84999/104532 (executing program)
2025/08/29 13:20:28 fetching corpus: 850, signal 88503/108612 (executing program)
2025/08/29 13:20:28 fetching corpus: 900, signal 90286/111196 (executing program)
2025/08/29 13:20:28 fetching corpus: 950, signal 91974/113655 (executing program)
2025/08/29 13:20:28 fetching corpus: 1000, signal 94657/116824 (executing program)
2025/08/29 13:20:28 fetching corpus: 1050, signal 96327/119169 (executing program)
2025/08/29 13:20:28 fetching corpus: 1100, signal 98060/121535 (executing program)
2025/08/29 13:20:29 fetching corpus: 1150, signal 99025/123294 (executing program)
2025/08/29 13:20:29 fetching corpus: 1200, signal 100479/125398 (executing program)
2025/08/29 13:20:29 fetching corpus: 1250, signal 102831/128161 (executing program)
2025/08/29 13:20:29 fetching corpus: 1300, signal 105078/130769 (executing program)
2025/08/29 13:20:29 fetching corpus: 1350, signal 106766/132992 (executing program)
2025/08/29 13:20:29 fetching corpus: 1400, signal 108789/135340 (executing program)
2025/08/29 13:20:29 fetching corpus: 1450, signal 110122/137146 (executing program)
2025/08/29 13:20:29 fetching corpus: 1500, signal 111882/139249 (executing program)
2025/08/29 13:20:29 fetching corpus: 1550, signal 113005/140904 (executing program)
2025/08/29 13:20:29 fetching corpus: 1600, signal 114247/142587 (executing program)
2025/08/29 13:20:29 fetching corpus: 1650, signal 115580/144359 (executing program)
2025/08/29 13:20:30 fetching corpus: 1700, signal 116350/145716 (executing program)
2025/08/29 13:20:30 fetching corpus: 1750, signal 117380/147255 (executing program)
2025/08/29 13:20:30 fetching corpus: 1800, signal 118590/148815 (executing program)
2025/08/29 13:20:30 fetching corpus: 1850, signal 119485/150210 (executing program)
2025/08/29 13:20:30 fetching corpus: 1900, signal 120542/151601 (executing program)
2025/08/29 13:20:30 fetching corpus: 1950, signal 121679/153066 (executing program)
2025/08/29 13:20:30 fetching corpus: 2000, signal 122575/154414 (executing program)
2025/08/29 13:20:30 fetching corpus: 2050, signal 123461/155722 (executing program)
2025/08/29 13:20:30 fetching corpus: 2100, signal 124565/157085 (executing program)
2025/08/29 13:20:30 fetching corpus: 2150, signal 125775/158526 (executing program)
2025/08/29 13:20:31 fetching corpus: 2200, signal 126560/159743 (executing program)
2025/08/29 13:20:31 fetching corpus: 2250, signal 127466/160990 (executing program)
2025/08/29 13:20:31 fetching corpus: 2300, signal 128097/162069 (executing program)
2025/08/29 13:20:31 fetching corpus: 2350, signal 129172/163348 (executing program)
2025/08/29 13:20:31 fetching corpus: 2400, signal 130140/164586 (executing program)
2025/08/29 13:20:31 fetching corpus: 2450, signal 130939/165711 (executing program)
2025/08/29 13:20:31 fetching corpus: 2500, signal 131793/166825 (executing program)
2025/08/29 13:20:32 fetching corpus: 2550, signal 132639/167891 (executing program)
2025/08/29 13:20:32 fetching corpus: 2600, signal 133465/168966 (executing program)
2025/08/29 13:20:32 fetching corpus: 2650, signal 134268/170043 (executing program)
2025/08/29 13:20:32 fetching corpus: 2700, signal 135042/171080 (executing program)
2025/08/29 13:20:32 fetching corpus: 2750, signal 135783/172085 (executing program)
2025/08/29 13:20:32 fetching corpus: 2800, signal 136387/173033 (executing program)
2025/08/29 13:20:32 fetching corpus: 2850, signal 136971/173902 (executing program)
2025/08/29 13:20:32 fetching corpus: 2900, signal 137493/174789 (executing program)
2025/08/29 13:20:32 fetching corpus: 2950, signal 138302/175755 (executing program)
2025/08/29 13:20:32 fetching corpus: 3000, signal 141022/177555 (executing program)
2025/08/29 13:20:32 fetching corpus: 3050, signal 141744/178399 (executing program)
2025/08/29 13:20:32 fetching corpus: 3100, signal 142389/179235 (executing program)
2025/08/29 13:20:32 fetching corpus: 3150, signal 143175/180146 (executing program)
2025/08/29 13:20:33 fetching corpus: 3200, signal 143672/180907 (executing program)
2025/08/29 13:20:33 fetching corpus: 3250, signal 144358/181743 (executing program)
2025/08/29 13:20:33 fetching corpus: 3300, signal 145196/182604 (executing program)
2025/08/29 13:20:33 fetching corpus: 3350, signal 145813/183383 (executing program)
2025/08/29 13:20:33 fetching corpus: 3400, signal 146486/184220 (executing program)
2025/08/29 13:20:33 fetching corpus: 3450, signal 147038/184936 (executing program)
2025/08/29 13:20:33 fetching corpus: 3500, signal 147746/185721 (executing program)
2025/08/29 13:20:33 fetching corpus: 3550, signal 148374/186405 (executing program)
2025/08/29 13:20:33 fetching corpus: 3600, signal 148862/187074 (executing program)
2025/08/29 13:20:33 fetching corpus: 3650, signal 149304/187759 (executing program)
2025/08/29 13:20:33 fetching corpus: 3700, signal 149733/188427 (executing program)
2025/08/29 13:20:34 fetching corpus: 3750, signal 150328/189058 (executing program)
2025/08/29 13:20:34 fetching corpus: 3800, signal 151045/189735 (executing program)
2025/08/29 13:20:34 fetching corpus: 3850, signal 151670/190333 (executing program)
2025/08/29 13:20:34 fetching corpus: 3900, signal 152277/190953 (executing program)
2025/08/29 13:20:34 fetching corpus: 3950, signal 152793/191526 (executing program)
2025/08/29 13:20:34 fetching corpus: 4000, signal 153312/192153 (executing program)
2025/08/29 13:20:34 fetching corpus: 4050, signal 154008/192772 (executing program)
2025/08/29 13:20:34 fetching corpus: 4100, signal 154557/193372 (executing program)
2025/08/29 13:20:34 fetching corpus: 4150, signal 155086/193909 (executing program)
2025/08/29 13:20:34 fetching corpus: 4200, signal 155616/194462 (executing program)
2025/08/29 13:20:35 fetching corpus: 4250, signal 156068/194966 (executing program)
2025/08/29 13:20:35 fetching corpus: 4300, signal 156471/195510 (executing program)
2025/08/29 13:20:35 fetching corpus: 4350, signal 156976/196027 (executing program)
2025/08/29 13:20:35 fetching corpus: 4400, signal 157408/196515 (executing program)
2025/08/29 13:20:35 fetching corpus: 4450, signal 158079/197004 (executing program)
2025/08/29 13:20:35 fetching corpus: 4500, signal 158568/197520 (executing program)
2025/08/29 13:20:35 fetching corpus: 4550, signal 159239/197997 (executing program)
2025/08/29 13:20:35 fetching corpus: 4600, signal 159683/198515 (executing program)
2025/08/29 13:20:35 fetching corpus: 4650, signal 160244/198935 (executing program)
2025/08/29 13:20:35 fetching corpus: 4700, signal 160602/199363 (executing program)
2025/08/29 13:20:35 fetching corpus: 4750, signal 161044/199786 (executing program)
2025/08/29 13:20:35 fetching corpus: 4800, signal 161600/200232 (executing program)
2025/08/29 13:20:36 fetching corpus: 4850, signal 162129/200486 (executing program)
2025/08/29 13:20:36 fetching corpus: 4900, signal 162670/200497 (executing program)
2025/08/29 13:20:36 fetching corpus: 4950, signal 163133/200501 (executing program)
2025/08/29 13:20:36 fetching corpus: 5000, signal 163621/200558 (executing program)
2025/08/29 13:20:36 fetching corpus: 5050, signal 164127/200574 (executing program)
2025/08/29 13:20:36 fetching corpus: 5100, signal 164875/200578 (executing program)
2025/08/29 13:20:36 fetching corpus: 5150, signal 165278/200602 (executing program)
2025/08/29 13:20:36 fetching corpus: 5200, signal 165726/200603 (executing program)
2025/08/29 13:20:36 fetching corpus: 5250, signal 166222/200603 (executing program)
2025/08/29 13:20:36 fetching corpus: 5300, signal 166732/200727 (executing program)
2025/08/29 13:20:37 fetching corpus: 5350, signal 167144/200733 (executing program)
2025/08/29 13:20:37 fetching corpus: 5400, signal 167422/200734 (executing program)
2025/08/29 13:20:37 fetching corpus: 5450, signal 168068/200754 (executing program)
2025/08/29 13:20:37 fetching corpus: 5500, signal 168410/200755 (executing program)
2025/08/29 13:20:37 fetching corpus: 5550, signal 169038/200763 (executing program)
2025/08/29 13:20:37 fetching corpus: 5600, signal 169365/200773 (executing program)
2025/08/29 13:20:37 fetching corpus: 5650, signal 169796/200813 (executing program)
2025/08/29 13:20:37 fetching corpus: 5700, signal 170251/200843 (executing program)
2025/08/29 13:20:37 fetching corpus: 5750, signal 170705/200848 (executing program)
2025/08/29 13:20:37 fetching corpus: 5800, signal 171088/200865 (executing program)
2025/08/29 13:20:37 fetching corpus: 5850, signal 171616/200888 (executing program)
2025/08/29 13:20:38 fetching corpus: 5900, signal 171902/200909 (executing program)
2025/08/29 13:20:38 fetching corpus: 5950, signal 172329/200915 (executing program)
2025/08/29 13:20:38 fetching corpus: 6000, signal 172819/200938 (executing program)
2025/08/29 13:20:38 fetching corpus: 6050, signal 173143/200939 (executing program)
2025/08/29 13:20:38 fetching corpus: 6100, signal 173447/200944 (executing program)
2025/08/29 13:20:38 fetching corpus: 6150, signal 174111/200946 (executing program)
2025/08/29 13:20:38 fetching corpus: 6200, signal 174501/200946 (executing program)
2025/08/29 13:20:38 fetching corpus: 6250, signal 174794/200983 (executing program)
2025/08/29 13:20:38 fetching corpus: 6300, signal 175089/200986 (executing program)
2025/08/29 13:20:38 fetching corpus: 6350, signal 175498/201022 (executing program)
2025/08/29 13:20:38 fetching corpus: 6400, signal 175825/201023 (executing program)
2025/08/29 13:20:39 fetching corpus: 6450, signal 176112/201037 (executing program)
2025/08/29 13:20:39 fetching corpus: 6500, signal 176462/201107 (executing program)
2025/08/29 13:20:39 fetching corpus: 6550, signal 176768/201123 (executing program)
2025/08/29 13:20:39 fetching corpus: 6600, signal 177018/201124 (executing program)
2025/08/29 13:20:39 fetching corpus: 6650, signal 177375/201136 (executing program)
2025/08/29 13:20:39 fetching corpus: 6700, signal 177722/201153 (executing program)
2025/08/29 13:20:39 fetching corpus: 6750, signal 178004/201154 (executing program)
2025/08/29 13:20:39 fetching corpus: 6800, signal 178190/201163 (executing program)
2025/08/29 13:20:39 fetching corpus: 6850, signal 178466/201169 (executing program)
2025/08/29 13:20:39 fetching corpus: 6900, signal 178714/201184 (executing program)
2025/08/29 13:20:39 fetching corpus: 6950, signal 178995/201184 (executing program)
2025/08/29 13:20:39 fetching corpus: 7000, signal 179299/201190 (executing program)
2025/08/29 13:20:40 fetching corpus: 7050, signal 179700/201190 (executing program)
2025/08/29 13:20:40 fetching corpus: 7100, signal 180020/201195 (executing program)
2025/08/29 13:20:40 fetching corpus: 7150, signal 180419/201207 (executing program)
2025/08/29 13:20:40 fetching corpus: 7200, signal 180889/201218 (executing program)
2025/08/29 13:20:40 fetching corpus: 7250, signal 181130/201223 (executing program)
2025/08/29 13:20:40 fetching corpus: 7300, signal 181407/201226 (executing program)
2025/08/29 13:20:40 fetching corpus: 7350, signal 181773/201229 (executing program)
2025/08/29 13:20:40 fetching corpus: 7400, signal 182029/201236 (executing program)
2025/08/29 13:20:40 fetching corpus: 7450, signal 182411/201266 (executing program)
2025/08/29 13:20:40 fetching corpus: 7500, signal 182748/201267 (executing program)
2025/08/29 13:20:40 fetching corpus: 7550, signal 182956/201275 (executing program)
2025/08/29 13:20:41 fetching corpus: 7600, signal 183281/201292 (executing program)
2025/08/29 13:20:41 fetching corpus: 7650, signal 183533/201295 (executing program)
2025/08/29 13:20:41 fetching corpus: 7700, signal 183829/201295 (executing program)
2025/08/29 13:20:41 fetching corpus: 7750, signal 184031/201296 (executing program)
2025/08/29 13:20:41 fetching corpus: 7800, signal 184332/201352 (executing program)
2025/08/29 13:20:41 fetching corpus: 7850, signal 184513/201353 (executing program)
2025/08/29 13:20:41 fetching corpus: 7900, signal 184760/201353 (executing program)
2025/08/29 13:20:41 fetching corpus: 7950, signal 184954/201360 (executing program)
2025/08/29 13:20:41 fetching corpus: 8000, signal 185237/201479 (executing program)
2025/08/29 13:20:41 fetching corpus: 8050, signal 185428/201481 (executing program)
2025/08/29 13:20:41 fetching corpus: 8100, signal 185816/201492 (executing program)
2025/08/29 13:20:41 fetching corpus: 8150, signal 186076/201498 (executing program)
2025/08/29 13:20:41 fetching corpus: 8200, signal 186330/201501 (executing program)
2025/08/29 13:20:42 fetching corpus: 8250, signal 186584/201510 (executing program)
2025/08/29 13:20:42 fetching corpus: 8300, signal 186883/201511 (executing program)
2025/08/29 13:20:42 fetching corpus: 8350, signal 187272/201513 (executing program)
2025/08/29 13:20:42 fetching corpus: 8400, signal 187567/201521 (executing program)
2025/08/29 13:20:42 fetching corpus: 8450, signal 188001/201536 (executing program)
2025/08/29 13:20:42 fetching corpus: 8500, signal 188367/201538 (executing program)
2025/08/29 13:20:42 fetching corpus: 8550, signal 188638/201541 (executing program)
2025/08/29 13:20:42 fetching corpus: 8600, signal 189014/201541 (executing program)
2025/08/29 13:20:42 fetching corpus: 8650, signal 189219/201551 (executing program)
2025/08/29 13:20:42 fetching corpus: 8700, signal 189506/201552 (executing program)
2025/08/29 13:20:42 fetching corpus: 8750, signal 189713/201555 (executing program)
2025/08/29 13:20:43 fetching corpus: 8800, signal 189917/201571 (executing program)
2025/08/29 13:20:43 fetching corpus: 8850, signal 190076/201577 (executing program)
2025/08/29 13:20:43 fetching corpus: 8900, signal 190380/201587 (executing program)
2025/08/29 13:20:43 fetching corpus: 8950, signal 190644/201612 (executing program)
2025/08/29 13:20:43 fetching corpus: 9000, signal 190952/201616 (executing program)
2025/08/29 13:20:43 fetching corpus: 9050, signal 191208/201640 (executing program)
2025/08/29 13:20:43 fetching corpus: 9100, signal 191501/201648 (executing program)
2025/08/29 13:20:43 fetching corpus: 9150, signal 191666/201651 (executing program)
2025/08/29 13:20:43 fetching corpus: 9200, signal 191839/201660 (executing program)
2025/08/29 13:20:43 fetching corpus: 9250, signal 192039/201679 (executing program)
2025/08/29 13:20:43 fetching corpus: 9300, signal 192747/201762 (executing program)
2025/08/29 13:20:44 fetching corpus: 9350, signal 193002/201764 (executing program)
2025/08/29 13:20:44 fetching corpus: 9400, signal 193157/201767 (executing program)
2025/08/29 13:20:44 fetching corpus: 9450, signal 193340/201771 (executing program)
2025/08/29 13:20:44 fetching corpus: 9500, signal 193768/201787 (executing program)
2025/08/29 13:20:44 fetching corpus: 9550, signal 194078/201788 (executing program)
2025/08/29 13:20:44 fetching corpus: 9600, signal 194295/201790 (executing program)
2025/08/29 13:20:44 fetching corpus: 9650, signal 194668/201812 (executing program)
2025/08/29 13:20:44 fetching corpus: 9700, signal 194858/201826 (executing program)
2025/08/29 13:20:44 fetching corpus: 9750, signal 195106/201830 (executing program)
2025/08/29 13:20:44 fetching corpus: 9800, signal 195309/201832 (executing program)
2025/08/29 13:20:45 fetching corpus: 9850, signal 195526/201836 (executing program)
2025/08/29 13:20:45 fetching corpus: 9900, signal 195768/201838 (executing program)
2025/08/29 13:20:45 fetching corpus: 9950, signal 195979/201860 (executing program)
2025/08/29 13:20:45 fetching corpus: 10000, signal 196436/201868 (executing program)
2025/08/29 13:20:45 fetching corpus: 10050, signal 196623/201875 (executing program)
2025/08/29 13:20:45 fetching corpus: 10100, signal 196794/201876 (executing program)
2025/08/29 13:20:45 fetching corpus: 10150, signal 197021/201876 (executing program)
2025/08/29 13:20:45 fetching corpus: 10200, signal 197223/201885 (executing program)
2025/08/29 13:20:45 fetching corpus: 10250, signal 197417/201894 (executing program)
2025/08/29 13:20:45 fetching corpus: 10300, signal 197688/201899 (executing program)
2025/08/29 13:20:45 fetching corpus: 10317, signal 197751/201899 (executing program)
2025/08/29 13:20:45 fetching corpus: 10317, signal 197751/201899 (executing program)
2025/08/29 13:20:48 starting 8 fuzzer processes
13:20:48 executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r1 = dup(r0)
recvmmsg$unix(r1, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

13:20:48 executing program 1:
r0 = syz_io_uring_setup(0x2262, &(0x7f0000003a00), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000003ac0))
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/exec\x00', 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

13:20:48 executing program 2:
prctl$PR_GET_ENDIAN(0x4b, 0x0)

13:20:48 executing program 3:
syz_io_uring_setup(0x4c65, &(0x7f0000000440)={0x0, 0x0, 0x20}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff6000/0xa000)=nil, &(0x7f00000004c0), &(0x7f0000000500))

13:20:48 executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
preadv2(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

13:20:48 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000003c0)={0x18, 0x2, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x4}]}, 0x18}}, 0x0)

[   75.116006] audit: type=1400 audit(1756473648.316:7): avc:  denied  { execmem } for  pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
13:20:48 executing program 7:
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
fstat(r0, &(0x7f0000000340))

13:20:48 executing program 6:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@updpolicy={0xc4, 0x19, 0x441, 0x0, 0x0, {{@in=@empty, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@policy_type={0xa}]}, 0xc4}}, 0x0)

[   76.310284] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   76.313751] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   76.315758] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   76.319928] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   76.323332] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   76.374464] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   76.378740] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   76.382422] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   76.390034] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   76.393572] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   76.504463] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   76.506281] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   76.508203] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   76.515614] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   76.518116] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   76.529156] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   76.538540] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   76.548111] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   76.549479] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   76.555187] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   76.566383] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   76.567745] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   76.570462] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   76.573236] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   76.586132] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   76.597282] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   76.610438] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   76.621750] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   76.623201] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   76.628295] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   76.630325] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   76.634865] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   76.647968] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   76.649102] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   76.663975] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   76.665076] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   76.696162] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   76.697337] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   76.719407] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   76.720548] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   78.344345] Bluetooth: hci0: command tx timeout
[   78.472065] Bluetooth: hci1: command tx timeout
[   78.599176] Bluetooth: hci2: command tx timeout
[   78.662849] Bluetooth: hci5: command tx timeout
[   78.664050] Bluetooth: hci3: command tx timeout
[   78.726872] Bluetooth: hci4: command tx timeout
[   78.790989] Bluetooth: hci6: command tx timeout
[   78.855846] Bluetooth: hci7: command tx timeout
[   80.392349] Bluetooth: hci0: command tx timeout
[   80.519900] Bluetooth: hci1: command tx timeout
[   80.647943] Bluetooth: hci2: command tx timeout
[   80.711882] Bluetooth: hci3: command tx timeout
[   80.712383] Bluetooth: hci5: command tx timeout
[   80.776949] Bluetooth: hci4: command tx timeout
[   80.838916] Bluetooth: hci6: command tx timeout
[   80.903675] Bluetooth: hci7: command tx timeout
[   82.438854] Bluetooth: hci0: command tx timeout
[   82.568074] Bluetooth: hci1: command tx timeout
[   82.694858] Bluetooth: hci2: command tx timeout
[   82.759873] Bluetooth: hci3: command tx timeout
[   82.760507] Bluetooth: hci5: command tx timeout
[   82.822845] Bluetooth: hci4: command tx timeout
[   82.886936] Bluetooth: hci6: command tx timeout
[   82.950870] Bluetooth: hci7: command tx timeout
[   84.487929] Bluetooth: hci0: command tx timeout
[   84.616116] Bluetooth: hci1: command tx timeout
[   84.743994] Bluetooth: hci2: command tx timeout
[   84.807835] Bluetooth: hci5: command tx timeout
[   84.808242] Bluetooth: hci3: command tx timeout
[   84.872966] Bluetooth: hci4: command tx timeout
[   84.934818] Bluetooth: hci6: command tx timeout
[   84.998928] Bluetooth: hci7: command tx timeout
[  114.598984] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.599655] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.780942] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.781561] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:21:28 executing program 5:
setreuid(0x0, 0xee00)
setfsuid(0x0)
setresuid(0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vcsn(&(0x7f0000000780), 0xffff, 0x0)
fcntl$setlease(r0, 0x400, 0x0)

[  115.236120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.236724] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:21:28 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000740)={0x2c, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SCAN_SUPP_RATES={0x10, 0x7d, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x4}, @NL80211_BAND_6GHZ={0x5, 0x3, "ae"}]}]}, 0x2c}}, 0x0)

[  115.341477] audit: type=1400 audit(1756473688.542:8): avc:  denied  { open } for  pid=3839 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  115.343582] audit: type=1400 audit(1756473688.542:9): avc:  denied  { kernel } for  pid=3839 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  115.358204] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.358871] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.517975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.518595] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:21:28 executing program 5:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind(r0, &(0x7f0000000300)=@ax25={{0x3, @null}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x80)

[  115.634849] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.635446] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:21:28 executing program 7:
set_robust_list(&(0x7f0000000100), 0x18)

13:21:28 executing program 5:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind(r0, &(0x7f0000000300)=@ax25={{0x3, @null}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x80)

[  115.709526] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.710177] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:21:28 executing program 5:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind(r0, &(0x7f0000000300)=@ax25={{0x3, @null}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x80)

13:21:28 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000080), 0x4)

13:21:28 executing program 5:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind(r0, &(0x7f0000000300)=@ax25={{0x3, @null}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x80)

[  115.804499] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.805170] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.891025] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.891624] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.920082] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.920672] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.007290] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.007953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.057317] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.057945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.144420] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.145129] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.170666] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.172132] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.191856] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.192475] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.222100] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.222696] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:21:30 executing program 1:
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x1000)
setresuid(0x0, r0, 0x0)
shmctl$SHM_STAT(0x0, 0xd, 0x0)

13:21:30 executing program 5:
pipe2(&(0x7f0000000500)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write(r0, &(0x7f00000014c0)="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", 0x1000)
write$snapshot(r0, &(0x7f0000000000)='R', 0x1)

13:21:30 executing program 7:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40345410, &(0x7f0000000040)={{0x1}})
r1 = dup(r0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000100)={0x0, 0x5, 0x1})

13:21:30 executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
preadv2(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

13:21:30 executing program 2:
prctl$PR_GET_ENDIAN(0x4b, 0x0)

13:21:30 executing program 3:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x14000, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f00000001c0), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f0000000200)=ANY=[])
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x1100)
chmod(&(0x7f0000000040)='./file0\x00', 0x18)
setuid(r1)
mknodat$loop(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

13:21:30 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sockstat6\x00')
pread64(r0, &(0x7f0000000140)=""/4096, 0x1000, 0x0)

13:21:30 executing program 0:
r0 = msgget$private(0x0, 0x0)
msgrcv(r0, 0x0, 0x0, 0x3, 0x2000)
msgsnd(r0, &(0x7f0000000000)={0x3}, 0x8, 0x0)

13:21:30 executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
preadv2(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

13:21:30 executing program 3:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
prlimit64(0x0, 0x7, &(0x7f00000003c0), 0x0)
accept4$packet(r0, 0x0, 0x0, 0x0)

13:21:30 executing program 6:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
readv(r0, &(0x7f0000000040)=[{&(0x7f0000000000)=""/25, 0x19}], 0x1)

13:21:30 executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
preadv2(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

13:21:30 executing program 7:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40345410, &(0x7f0000000040)={{0x1}})
r1 = dup(r0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000100)={0x0, 0x5, 0x1})

13:21:30 executing program 2:
prctl$PR_GET_ENDIAN(0x4b, 0x0)

13:21:30 executing program 5:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
fsetxattr$system_posix_acl(r0, &(0x7f0000000400)='system.posix_acl_access\x00', &(0x7f0000000500)={{}, {0x4}}, 0x24, 0x0)

13:21:31 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0xe, &(0x7f0000003440)={0x0, 0x2000}, 0x4)

13:21:31 executing program 6:
syz_mount_image$msdos(&(0x7f0000001300), &(0x7f0000001340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000025c0)={[{@fat=@allow_utime}, {@nodots}]})

13:21:31 executing program 3:
munmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000)
mbind(&(0x7f0000ffd000/0x2000)=nil, 0x2002, 0x1, 0x0, 0x0, 0x0)

13:21:31 executing program 2:
prctl$PR_GET_ENDIAN(0x4b, 0x0)

13:21:31 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setresuid(0x0, 0xee01, 0x0)
setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, 0x0, 0x0)

13:21:31 executing program 5:
syz_emit_ethernet(0x52, &(0x7f0000000000)={@link_local, @dev, @void, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x21, 0x0, @local, @private=0xa010101, {[@rr={0x7, 0x1f, 0x1e, [@broadcast, @broadcast, @broadcast, @empty, @dev, @local, @private]}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00\x00W', 0x0, "944856"}}}}}}, 0x0)

13:21:31 executing program 7:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40345410, &(0x7f0000000040)={{0x1}})
r1 = dup(r0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000100)={0x0, 0x5, 0x1})

13:21:31 executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed, 0x0, 0x2}, 0xe)
r1 = dup(r0)
recvmmsg$unix(r1, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x1, 0x0)

13:21:31 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, 0x0)

13:21:31 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setresuid(0x0, 0xee01, 0x0)
setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, 0x0, 0x0)

[  118.314179] No source specified
[  118.322353] No source specified
13:21:31 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40345410, &(0x7f0000000500)={{0x0, 0x1}})
close_range(r0, 0xffffffffffffffff, 0x0)

13:21:31 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000040)='./mnt\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000000180)={{}, {}, [], {}, [{0x8, 0x0, 0xee01}, {}]}, 0x34, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='mnt/encrypted_dir\x00', 0x0)

13:21:31 executing program 7:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40345410, &(0x7f0000000040)={{0x1}})
r1 = dup(r0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000100)={0x0, 0x5, 0x1})

13:21:31 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$nfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f00000002c0), 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f0000001680)={{}, {0x1, 0x5}, [{}, {}]}, 0x34, 0x0)

[  118.380461] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[  118.381374] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  118.382063] CPU: 1 UID: 0 PID: 3971 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  118.385112] Tainted: [W]=WARN
[  118.386769] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  118.387425] RIP: 0010:perf_tp_event+0x175/0xe70
[  118.387804] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  118.389213] RSP: 0018:ffff888047be7780 EFLAGS: 00010012
[  118.389632] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  118.390184] RDX: ffff888045d05280 RSI: ffffffff818995b7 RDI: 0000000100000190
[  118.390747] RBP: ffff888047be79f0 R08: ffff88806cf31340 R09: ffffe8ffffd15d20
[  118.391304] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  118.391859] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  118.392413] FS:  0000555573e50400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  118.393041] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  118.393497] CR2: 00007ff912d46018 CR3: 0000000045e6a000 CR4: 0000000000350ef0
[  118.394056] Call Trace:
[  118.394263]  <TASK>
[  118.394453]  ? __pfx_perf_tp_event+0x10/0x10
[  118.394816]  ? __lock_acquire+0xc65/0x1b70
[  118.395155]  ? lock_acquire+0x15e/0x2f0
[  118.395473]  ? find_held_lock+0x2b/0x80
[  118.395791]  ? finish_task_switch.isra.0+0x201/0x840
[  118.396204]  ? lock_release+0xc8/0x290
[  118.396520]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  118.396935]  ? finish_task_switch.isra.0+0x206/0x840
[  118.397339]  ? trace_sched_exit_tp+0xbf/0x100
[  118.397707]  ? perf_trace_run_bpf_submit+0xef/0x180
[  118.398106]  perf_trace_run_bpf_submit+0xef/0x180
[  118.398501]  perf_trace_preemptirq_template+0x259/0x430
[  118.398927]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  118.399400]  ? _raw_spin_lock_irqsave+0x53/0x60
[  118.399776]  trace_irq_disable.constprop.0+0xa6/0x100
[  118.400180]  _raw_spin_lock_irqsave+0x53/0x60
[  118.400537]  try_to_wake_up+0xa0/0x11d0
[  118.400862]  ? __pfx_try_to_wake_up+0x10/0x10
[  118.401224]  ? plist_del+0x122/0x270
[  118.401527]  ? find_held_lock+0x2b/0x80
[  118.401849]  ? futex_wake+0x474/0x540
[  118.402160]  wake_up_q+0xa1/0x130
[  118.402444]  futex_wake+0x47e/0x540
[  118.402747]  ? __pfx_futex_wake+0x10/0x10
[  118.403080]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  118.403442]  ? lock_release+0xc8/0x290
[  118.403755]  do_futex+0x26d/0x370
[  118.404034]  ? __pfx_do_futex+0x10/0x10
[  118.404352]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  118.404768]  ? read_tsc+0x9/0x20
[  118.405044]  __x64_sys_futex+0x1c9/0x4d0
[  118.405370]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  118.405838]  ? __pfx___x64_sys_futex+0x10/0x10
[  118.406202]  ? xfd_validate_state+0x55/0x180
[  118.406570]  do_syscall_64+0xbf/0x360
[  118.406872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.407279] RIP: 0033:0x7f6fdc67eb19
[  118.407574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  118.408984] RSP: 002b:00007ffccc42b9b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  118.409580] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6fdc67eb19
[  118.410132] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6fdc791f68
[  118.410698] RBP: 00007f6fdc791f60 R08: 00007f6fdc78e0a0 R09: 0000000000000000
[  118.411253] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6fdc796168
[  118.411805] R13: 00007ffccc42bac0 R14: 00007f6fdc791f60 R15: 000000000001cdcb
[  118.412364]  </TASK>
[  118.412551] Modules linked in:
[  118.412810] ---[ end trace 0000000000000000 ]---
[  118.413179] RIP: 0010:perf_tp_event+0x175/0xe70
[  118.413552] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  118.415014] RSP: 0018:ffff888047be7780 EFLAGS: 00010012
[  118.415432] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  118.415990] RDX: ffff888045d05280 RSI: ffffffff818995b7 RDI: 0000000100000190
[  118.416545] RBP: ffff888047be79f0 R08: ffff88806cf31340 R09: ffffe8ffffd15d20
[  118.417097] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  118.417653] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  118.418209] FS:  0000555573e50400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  118.418849] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  118.419303] CR2: 00007ff912d46018 CR3: 0000000045e6a000 CR4: 0000000000350ef0
[  118.419864] note: syz-executor.4[3971] exited with irqs disabled
[  118.420363] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[  118.421226] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  118.421906] CPU: 1 UID: 0 PID: 3971 Comm: syz-executor.4 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  118.422848] Tainted: [D]=DIE, [W]=WARN
[  118.423153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  118.423790] RIP: 0010:perf_tp_event+0x175/0xe70
[  118.424166] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  118.425582] RSP: 0018:ffff88806cf08ac0 EFLAGS: 00010012
[  118.425997] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  118.426561] RDX: ffff888045d05280 RSI: ffffffff818995b7 RDI: 0000000100000190
[  118.427117] RBP: ffff88806cf08d30 R08: ffff88806cf313e8 R09: ffffe8ffffd15d20
[  118.427674] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  118.428230] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[  118.428789] FS:  0000555573e50400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  118.429419] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  118.429878] CR2: 00007ff912d46018 CR3: 0000000045e6a000 CR4: 0000000000350ef0
[  118.430442] Call Trace:
[  118.430657]  <IRQ>
[  118.430835]  ? __pfx_perf_tp_event+0x10/0x10
[  118.431190]  ? stack_depot_save_flags+0x2c/0xa20
[  118.431568]  ? kasan_save_stack+0x34/0x50
[  118.431901]  ? kasan_save_stack+0x24/0x50
[  118.432229]  ? kasan_save_track+0x14/0x30
[  118.432559]  ? __kasan_save_free_info+0x3a/0x60
[  118.432930]  ? __kasan_slab_free+0x3f/0x50
[  118.433269]  ? kmem_cache_free+0x2a1/0x540
[  118.433607]  ? rcu_core+0x7c8/0x1800
[  118.433909]  ? handle_softirqs+0x1b1/0x770
[  118.434254]  ? __irq_exit_rcu+0xc4/0x100
[  118.434594]  ? irq_exit_rcu+0x9/0x20
[  118.434891]  ? sysvec_apic_timer_interrupt+0x70/0x80
[  118.435298]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  118.435727]  ? lock_acquire+0x5b/0x2f0
[  118.436039]  ? folio_mark_accessed+0x219/0x650
[  118.436414]  ? __filemap_get_folio+0x61c/0x960
[  118.436780]  ? find_get_block_common+0x13f/0xca0
[  118.437158]  ? __getblk_slow+0x3c5/0x550
[  118.437481]  ? bdev_getblk+0xe0/0xf0
[  118.437781]  ? ext4_getblk+0x269/0x8e0
[  118.438093]  ? ext4_bread+0x2e/0x1a0
[  118.438393]  ? ext4_append+0x224/0x530
[  118.438713]  ? ext4_init_new_dir+0x13c/0x240
[  118.439067]  ? ext4_mkdir+0x3c5/0xb30
[  118.439376]  ? vfs_mkdir+0x59a/0x8d0
[  118.439682]  ? do_mkdirat+0x19f/0x3d0
[  118.439984]  ? __x64_sys_mkdir+0xf3/0x140
[  118.440314]  ? do_syscall_64+0xbf/0x360
[  118.440628]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.441053]  ? lock_is_held_type+0x9e/0x120
[  118.441400]  ? trace_pelt_se_tp+0xdf/0x130
[  118.441734]  ? __update_load_avg_se+0x428/0xa40
[  118.442119]  ? perf_trace_run_bpf_submit+0xef/0x180
[  118.442527]  perf_trace_run_bpf_submit+0xef/0x180
[  118.442916]  perf_trace_preemptirq_template+0x259/0x430
[  118.443340]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  118.443809]  ? find_held_lock+0x2b/0x80
[  118.444128]  ? try_to_wake_up+0x8ae/0x11d0
[  118.444469]  ? irqentry_enter+0x2a/0x60
[  118.444788]  trace_irq_disable.constprop.0+0xa6/0x100
[  118.445195]  irqentry_enter+0x2a/0x60
[  118.445505]  sysvec_apic_timer_interrupt+0xf/0x80
[  118.445894]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  118.446307] RIP: 0010:handle_softirqs+0x174/0x770
[  118.446706] Code: c8 83 83 3c 0a 00 00 01 c7 44 24 20 0a 00 00 00 48 89 44 24 18 65 66 c7 05 0f 84 48 06 00 00 e8 42 80 40 00 fb bb ff ff ff ff <48> c7 c5 c0 c0 a0 85 41 0f bc de 83 c3 01 0f 85 9b 00 00 00 e9 8d
[  118.448127] RSP: 0018:ffff88806cf08f78 EFLAGS: 00000246
[  118.448543] RAX: 0000000000000001 RBX: 00000000ffffffff RCX: ffffffff817c2b86
[  118.449100] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813bac2e
[  118.449655] RBP: ffff888047be7e78 R08: 0000000000000000 R09: 0000000000000000
[  118.450210] R10: ffffffff8643ac57 R11: ffff88806cf08ff8 R12: 0000000000000000
[  118.450783] R13: 0000000000000000 R14: 0000000000000200 R15: 0000000000000000
[  118.451343]  ? trace_irq_enable.constprop.0+0x26/0x100
[  118.451760]  ? handle_softirqs+0x16e/0x770
[  118.452104]  ? handle_softirqs+0x16e/0x770
[  118.452448]  __irq_exit_rcu+0xc4/0x100
[  118.452765]  irq_exit_rcu+0x9/0x20
[  118.453049]  sysvec_call_function_single+0xa6/0xc0
[  118.453442]  </IRQ>
[  118.453626]  <TASK>
[  118.453810]  asm_sysvec_call_function_single+0x1a/0x20
[  118.454224] RIP: 0010:make_task_dead+0xa2/0x3b0
[  118.454602] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 <e8> b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de
[  118.456017] RSP: 0018:ffff888047be7f28 EFLAGS: 00000246
[  118.456434] RAX: 0000000000000001 RBX: ffff888045d05280 RCX: ffffffff817c2b86
[  118.456990] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[  118.457546] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[  118.458105] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888045d05280
[  118.458667] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[  118.459221]  ? trace_irq_enable.constprop.0+0x26/0x100
[  118.459634]  ? make_task_dead+0x214/0x3b0
[  118.459968]  ? make_task_dead+0x214/0x3b0
[  118.460296]  ? do_syscall_64+0xbf/0x360
[  118.460608]  rewind_stack_and_make_dead+0x16/0x20
[  118.460996] RIP: 0033:0x7f6fdc67eb19
[  118.461291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  118.462709] RSP: 002b:00007ffccc42b9b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  118.463306] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6fdc67eb19
[  118.463863] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6fdc791f68
[  118.464422] RBP: 00007f6fdc791f60 R08: 00007f6fdc78e0a0 R09: 0000000000000000
[  118.464977] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6fdc796168
[  118.465531] R13: 00007ffccc42bac0 R14: 00007f6fdc791f60 R15: 000000000001cdcb
[  118.466097]  </TASK>
[  118.466287] Modules linked in:
[  118.466558] ---[ end trace 0000000000000000 ]---
[  118.466934] RIP: 0010:perf_tp_event+0x175/0xe70
[  118.467316] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  118.468754] RSP: 0018:ffff888047be7780 EFLAGS: 00010012
[  118.469180] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  118.469743] RDX: ffff888045d05280 RSI: ffffffff818995b7 RDI: 0000000100000190
[  118.470309] RBP: ffff888047be79f0 R08: ffff88806cf31340 R09: ffffe8ffffd15d20
[  118.470887] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  118.471453] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  118.472020] FS:  0000555573e50400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  118.472661] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  118.473122] CR2: 00007ff912d46018 CR3: 0000000045e6a000 CR4: 0000000000350ef0
[  118.473698] Kernel panic - not syncing: Fatal exception in interrupt
[  118.474308] Kernel Offset: disabled
[  118.474610] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
13:21:31  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88806cf3c300 RCX=ffffffff816880fc RDX=ffff88801b533700
RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88804613f6f8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9c6bb1
R12=ffffed100d9e7861 R13=ffff88806cf3c308 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe4c00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555573606c58 CR3=0000000043a6b000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000054 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888047be7118
R8 =0000000000000000 R9 =ffffed10016bc046 R10=0000000000000054 R11=3a6465746e696154
R12=0000000000000054 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555573e50400 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe6000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff912d46018 CR3=0000000045e6a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=0000ff000000000000000000000000ff
XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007f6fdc7657c800007f6fdc7657c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000