Warning: Permanently added '[localhost]:42040' (ECDSA) to the list of known hosts.
2025/08/29 08:41:51 fuzzer started
2025/08/29 08:41:51 dialing manager at localhost:43077
syzkaller login: [ 48.548702] cgroup: Unknown subsys name 'net'
[ 48.642941] cgroup: Unknown subsys name 'cpuset'
[ 48.684155] cgroup: Unknown subsys name 'rlimit'
2025/08/29 08:42:01 syscalls: 2214
2025/08/29 08:42:01 code coverage: enabled
2025/08/29 08:42:01 comparison tracing: enabled
2025/08/29 08:42:01 extra coverage: enabled
2025/08/29 08:42:01 setuid sandbox: enabled
2025/08/29 08:42:01 namespace sandbox: enabled
2025/08/29 08:42:01 Android sandbox: enabled
2025/08/29 08:42:01 fault injection: enabled
2025/08/29 08:42:01 leak checking: enabled
2025/08/29 08:42:01 net packet injection: enabled
2025/08/29 08:42:01 net device setup: enabled
2025/08/29 08:42:01 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 08:42:01 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 08:42:01 USB emulation: enabled
2025/08/29 08:42:01 hci packet injection: enabled
2025/08/29 08:42:01 wifi device emulation: enabled
2025/08/29 08:42:01 802.15.4 emulation: enabled
2025/08/29 08:42:01 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 08:42:01 fetching corpus: 49, signal 26488/29567 (executing program)
2025/08/29 08:42:01 fetching corpus: 99, signal 38558/42585 (executing program)
2025/08/29 08:42:01 fetching corpus: 149, signal 49515/54160 (executing program)
2025/08/29 08:42:02 fetching corpus: 199, signal 54600/59926 (executing program)
2025/08/29 08:42:02 fetching corpus: 249, signal 59396/65285 (executing program)
2025/08/29 08:42:02 fetching corpus: 299, signal 62541/69067 (executing program)
2025/08/29 08:42:02 fetching corpus: 349, signal 65262/72329 (executing program)
2025/08/29 08:42:02 fetching corpus: 399, signal 69080/76419 (executing program)
2025/08/29 08:42:02 fetching corpus: 449, signal 72113/79838 (executing program)
2025/08/29 08:42:02 fetching corpus: 499, signal 73851/82052 (executing program)
2025/08/29 08:42:02 fetching corpus: 549, signal 78341/86286 (executing program)
2025/08/29 08:42:03 fetching corpus: 599, signal 80960/88983 (executing program)
2025/08/29 08:42:03 fetching corpus: 649, signal 83093/91217 (executing program)
2025/08/29 08:42:03 fetching corpus: 699, signal 85885/93873 (executing program)
2025/08/29 08:42:03 fetching corpus: 748, signal 87629/95675 (executing program)
2025/08/29 08:42:03 fetching corpus: 798, signal 89466/97412 (executing program)
2025/08/29 08:42:03 fetching corpus: 848, signal 91947/99559 (executing program)
2025/08/29 08:42:03 fetching corpus: 898, signal 93774/101247 (executing program)
2025/08/29 08:42:03 fetching corpus: 948, signal 95263/102549 (executing program)
2025/08/29 08:42:04 fetching corpus: 998, signal 96400/103618 (executing program)
2025/08/29 08:42:04 fetching corpus: 1047, signal 98358/105162 (executing program)
2025/08/29 08:42:04 fetching corpus: 1097, signal 100332/106716 (executing program)
2025/08/29 08:42:04 fetching corpus: 1147, signal 102431/108134 (executing program)
2025/08/29 08:42:04 fetching corpus: 1197, signal 104369/109450 (executing program)
2025/08/29 08:42:04 fetching corpus: 1247, signal 106489/110857 (executing program)
2025/08/29 08:42:04 fetching corpus: 1297, signal 107541/111672 (executing program)
2025/08/29 08:42:04 fetching corpus: 1347, signal 109586/112885 (executing program)
2025/08/29 08:42:05 fetching corpus: 1397, signal 110800/113564 (executing program)
2025/08/29 08:42:05 fetching corpus: 1447, signal 111842/114214 (executing program)
2025/08/29 08:42:05 fetching corpus: 1497, signal 113034/114847 (executing program)
2025/08/29 08:42:05 fetching corpus: 1546, signal 114030/115328 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115380 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115414 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115463 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115502 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115542 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115593 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115637 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115674 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115702 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115737 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115777 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115820 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115860 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115896 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115943 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/115982 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116022 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116053 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116085 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116120 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116159 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116198 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116234 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116275 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116289 (executing program)
2025/08/29 08:42:05 fetching corpus: 1552, signal 114086/116289 (executing program)
2025/08/29 08:42:08 starting 8 fuzzer processes
08:42:08 executing program 0:
ioctl$DVD_READ_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f0000000480)=@manufact={0x4, 0x0, 0x800, "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"})
keyctl$read(0xa, 0x0, &(0x7f0000000c00)=""/229, 0xe5)
08:42:08 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x17, 0x0, 0x0)
08:42:08 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0xff, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0}})
08:42:08 executing program 7:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
08:42:08 executing program 3:
r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x7005, 0x0)
pread64(r0, &(0x7f0000001840)=""/4101, 0x1005, 0x0)
08:42:08 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x13, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='%\x00')
syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r4 = dup(r3)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r4, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r5, 0x0, &(0x7f0000000000), 0x0, 0x4)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f00000000c0)={0x3, &(0x7f0000000040)=[{0x2, 0xac, 0x8, 0xc1}, {0x800, 0x0, 0x6, 0x80000}, {0x0, 0x7, 0x7, 0x7}]})
r7 = syz_io_uring_setup(0x2262, &(0x7f0000003a00), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000003ac0))
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r8, 0x4b4e, 0x9)
ioctl$TCXONC(r8, 0x540a, 0x3)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0x5, 0x0, r9)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x52)
08:42:08 executing program 5:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="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", 0x259)
syz_mount_image$iso9660(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
utimes(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000140), 0xd}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0xfdef)
[ 65.466094] audit: type=1400 audit(1756456928.533:7): avc: denied { execmem } for pid=274 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:42:08 executing program 6:
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read(r0, 0x0, 0x0)
[ 66.725121] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 66.728115] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 66.730727] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 66.732543] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 66.733413] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 66.734453] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 66.736210] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 66.736466] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 66.738290] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 66.742628] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 66.745727] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 66.748790] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 66.750530] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 66.791303] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 66.797187] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 66.798496] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 66.806207] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 66.808870] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 66.825226] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 66.832427] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 66.850592] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 66.853334] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 66.854583] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 66.857373] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 66.863589] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 66.866950] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 66.871423] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 66.878391] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 66.880496] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 66.882176] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 66.884444] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 66.889260] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 66.893447] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 66.899520] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 66.919680] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 66.921430] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 66.937312] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 66.937367] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 66.949381] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 66.981169] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 68.812756] Bluetooth: hci1: command tx timeout
[ 68.812766] Bluetooth: hci2: command tx timeout
[ 68.878132] Bluetooth: hci4: command tx timeout
[ 68.878148] Bluetooth: hci0: command tx timeout
[ 68.940121] Bluetooth: hci5: command tx timeout
[ 69.004482] Bluetooth: hci7: command tx timeout
[ 69.004497] Bluetooth: hci3: command tx timeout
[ 69.068119] Bluetooth: hci6: command tx timeout
[ 70.861094] Bluetooth: hci1: command tx timeout
[ 70.861119] Bluetooth: hci2: command tx timeout
[ 70.925276] Bluetooth: hci0: command tx timeout
[ 70.925699] Bluetooth: hci4: command tx timeout
[ 70.988103] Bluetooth: hci5: command tx timeout
[ 71.052255] Bluetooth: hci7: command tx timeout
[ 71.053169] Bluetooth: hci3: command tx timeout
[ 71.116188] Bluetooth: hci6: command tx timeout
[ 72.909103] Bluetooth: hci1: command tx timeout
[ 72.909168] Bluetooth: hci2: command tx timeout
[ 72.972106] Bluetooth: hci0: command tx timeout
[ 72.973102] Bluetooth: hci4: command tx timeout
[ 73.037197] Bluetooth: hci5: command tx timeout
[ 73.101609] Bluetooth: hci3: command tx timeout
[ 73.101653] Bluetooth: hci7: command tx timeout
[ 73.167085] Bluetooth: hci6: command tx timeout
[ 74.958087] Bluetooth: hci2: command tx timeout
[ 74.958113] Bluetooth: hci1: command tx timeout
[ 75.021108] Bluetooth: hci4: command tx timeout
[ 75.021203] Bluetooth: hci0: command tx timeout
[ 75.084365] Bluetooth: hci5: command tx timeout
[ 75.148102] Bluetooth: hci3: command tx timeout
[ 75.149282] Bluetooth: hci7: command tx timeout
[ 75.213107] Bluetooth: hci6: command tx timeout
[ 102.333764] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.334428] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.557489] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.558959] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.714086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.714724] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.853547] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.854396] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.934597] audit: type=1400 audit(1756456966.001:8): avc: denied { open } for pid=3866 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 102.942785] audit: type=1400 audit(1756456966.001:9): avc: denied { kernel } for pid=3866 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 102.962486] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.963458] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.018853] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.019690] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:42:46 executing program 5:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="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", 0x259)
syz_mount_image$iso9660(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
utimes(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000140), 0xd}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0xfdef)
[ 103.064179] audit: type=1400 audit(1756456966.124:10): avc: denied { watch_reads } for pid=3873 comm="syz-executor.7" path="/syzkaller-testdir759607952/syzkaller.ZF42Zc/0/file0" dev="sda" ino=15980 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1
08:42:46 executing program 7:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
[ 103.091603] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.092204] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:42:46 executing program 5:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="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", 0x259)
syz_mount_image$iso9660(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
utimes(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000140), 0xd}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0xfdef)
08:42:46 executing program 7:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
[ 103.149697] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.150823] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.154122] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.154710] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:42:46 executing program 7:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
[ 103.208358] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.208955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:42:46 executing program 5:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0f300cb97f6a204cc586e45dfb949002f61f8fb969dd435dd0c37c5077e5b10cfeafd75205e215b167323a3b971b0ec98e6c3d4d825cae01271cb35cdd091e4872367f354e0dc81a7e4ac79775bc1dcaafe2f5079da79d1989f1ddce6722fc438a7217526cfe75d53471624d6f091e19a7fb699ea27efa9e0fd1914e7c35f297afd9b9b85ff0ce7a982f4fa0c172ea5f06479eec302f30e5df66273717e028f4ca7d4c5b6bc8a3c3c67f688195f22488a15d9e1f7e5fed3a6c2aba7bc308b0e2c5657f4538f4a3bf9b975bb887a901ab3c85261be3e331b741313e78b5ad63b7b1b378e9c79dc4a95b2b4d15cd1d1b808844378f882a72af1e5b0eefd356e0247246e60643204c3b46183dbe4e066c55cb1dcdaa7b70ef43ab2fa4d2b8c4c1a89cb0e325fd9716874d3856cf368efd1f92d21214e55e4de647c37c71887d11f74f9afe1616e3054ceae601e4b3555e243c1882ad42c7730caeb309e7714ad87c55e9fba308cfc4161e562abde3ac4f3d7e0a3584d4928100197f102307c05c0b4b4898b0591bc1433af443478979f28e6136ffb21aaeac2be5490475a08e96bb94fd9d9d3aa2f8a1e147a80ba9bfd04dac3f476ff128476c693ea71f7be47a508c98eddc479eb703d6f17cc5be2182f7c39b0a47eb23e0808b5d87dd2a9ce88eb48a601781c53677b642fa92a7b767d76e208d17a13940ff013466264e16a26d7f004dfb575a75317d1eded2d32cbd9c6789c474435873ebc769bfbf0a064e61b363a4c45bc4b5fc77b81c120bbd2ecf508e7485bfcf1facea6f5763b", 0x259)
syz_mount_image$iso9660(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
utimes(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000140), 0xd}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0xfdef)
[ 103.291193] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.291784] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:42:46 executing program 7:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
[ 103.319818] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.320580] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:42:46 executing program 7:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
[ 103.414596] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.415206] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.450956] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.451723] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.518916] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.519522] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.554017] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.554630] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:42:46 executing program 7:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
08:42:46 executing program 5:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
08:42:46 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x17, 0x0, 0x0)
08:42:46 executing program 0:
ioctl$DVD_READ_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f0000000480)=@manufact={0x4, 0x0, 0x800, "cd33ebe03c1c2e4b12dbbd929c630121f1f07490cc8a110ba7d427d126e09efab8619a57c855d7fa1e270d5ef66cc1fe9427b45dcb8cac604c8a1b2a5fb33698f44c7af8fbd9ea42b8f7c15e147f2e8ee04d95b1a51ea926c2916ad4a22246080ee46333aba3441f15cfd7058fb42ad8353712b235b94f0286837b375bd38655bb834f292efd7a17d0a22749e00f361b669c6a31ab8a7a17d09f5f1be34b412019b8a2472f5a3145c1f0b49af8b9395bb586b334345395df2d09c626d1c58a303dbbf7981b6a44658c42a6bdc54879fb9f66d449d757331260dff634fc18592eb0d38595ef30d6dccc10c93e9a654500dab50648519c6bb846d02c50479d158b060cd5cbb608130b7e09f1529a77acfb34ff23dc2c02f07a70b71a2e59d3b8d97173037df770f16db114eba7eca3e2e767f92385470faeb95d44d5eb3b71dd3e444e5c18f0d6c26226009388fd4fb38d108ceb3e3d5c53ebf557b6cc6f2cbfffd87a0839f74f6886d886c914f45f69bbc9ab9158357fe3cc393bcc17cc771df8558ffa935928d5f280c05ba76fd89093272d4687a6dd31599ae4664bc667ac2c86c4d8fa2f97ddd018011ec2f10fba48af140510e063de02391b82c2ddfdc75bd69a6e1b3498278d534d9f12296cd5f1ec4f7a8036eb424da16352fe30bf1c81b77a73e690c018070e5afa4b431e60a99b806ae4bb06510e9696770f8796baa680d0223b57d5a80001c27ba5692148ee870da071157eb49feb5dad2eda05c82693d6500534fad8359940ec310a81a789145233b4b5b0acc185640e1cfc820aefc1ef1393877692adc5f50815b6dd22bc808901a21441dd31d935894121adfb80c0fb6c275a6ca866c7b2ea522f714db0ef4c0bd4c3095a0f5bff58f0f59359211c630259ad0c7901f34799c2838d75b11f0aecc6200588227d9cebbb5ba57084dfa22541619020ea515b437bcbf4f68d791c767d19d8bda06283d6c1e53717c82c1348b0b42482f3d11120117708d6fc93e84da3d4839aad10ce85fae6afc190753b79a87db00213f0c8ad330e66db821e22ab1f710bd8e9a76d76de97843e79613ec8993fed4c13ff4b3170c9c1f16f2d3404578eedb5d609c8e84d6bf35286aa7ea5bcdc5ae341e1911a73765400688d681f275d670d39159075e94a64b0575d9ae823e48b8d79d14ea3a8824183e5a4c8376530f32fd97df2464fb2cc6829c85655b7ab274c5b3acb8724b8cea83080e3d798294be7181ee1e14426e84abf24f3ca0245b4770c2446a74493d77ac01a40e94a685bc6d645c833d53460cbba007c22dd9de268ae221025e90b0e338011cbe0639eb57c15420727b3a78af3ce0782556dcd815f96272c97ca204ef3e073bd6b7d3097f0bc2f9d28ed8994002b8c8d7ca6cbaa761b6e6c76f4d37643e8bebbc32086af0a9df85714739abb926146f71cdab64edbf1eac62f67ed51ccee8e674ea8fd1eef862f810e0f6d901cc80a9b4f38f0b67a0824a8db12b941e53ed525ffdca71ea884a434904a3292d6b8e2004eb0e8766f1b9410dbb807aa0d4bd8c87ea429359a240f495e2a3f3ce803b5c7038f3ad9f3319bf998af71fabaf03769c76b3560c738b9e7f9622981f43b06d1e90c93028080590a13ebc6ce725f1257a77fb3f276fc703363a3c79ec63caf2ed370c1fa098ccc4ddee9b2571c4c44011e371e7a1441e4ac514696068ef37c7ef33bcf461b43c82c5a5724f53ae31b135619772891bb957f1c8c5d7a6f10447616198aa999e403c960ab7aff45203579539dac54ccf3b75927d19a43fb238be3fd24b1a6995bf83bd2df6891480c7dbd7536b374ef3e74c087149f051af901d71803cc7f12c09750938517448db0b0583f24bc8b648bd7a9a3c1c27ad15b7a4fce7d8daa31984d51679eb10d14f4da8d1fbfbbc15f16890aee733d45236f8aa062bd917649996f41b928eb31ac1538ba1e927cefaffcf9844604a3c380656fdd25a3c519a1a8cad35a6fb62ae982a426f84673a03c9610cef35d507625d0f9fa7b8b0b406b484a13dce6e44a846b04e7930463f0d3877f129d90b51b81e5a29ab9ca5e6ad64e0c6bd00a153f360fd754161d86b65f3a25a971803f6fb45fd6e5159cceee34b6013cc3b064d83b8a502ec17f755180dead379e940c46ba469c5856f0801502ef03dc4232dfcdc40dee6b479bda2dbcdb6320ee79695b5f4f8fd32b42b8130a166b0c8ba86292e58db66c54489abd3c415dbf3d1c19176f193d2dff0bce32a6d2f74d9e7638056390173e6f542c97472aef61c50259446f5becf768d60e97b24adcb872dcc40a33b2d6d8495fdb80fc781a7d5027b808f9b7b187f20f48f6f8d3a5d496ff458902568a6eb9cdc16e9d46dd5a1e8d028ce2cc82f2d6e1bce3bcd0a6ec87fb085ec2fe98789ea5c1a5657b91a93e1c22cd4e3a320776cede57216f8017c20e8b700bb84e6905ef2a26a3903505cefa8b0a7b3de0c161a9200737b8453995374eb2cec7b67e64c98e45eba4ea65df8a4f2b14ebb8249f827a7edd4c2c8b2051ec2993fe48bb8f756b9456e69b5523d8396ec1418be1a716e1f5708408be77136ea43f7b62e5eda26a4ace9f958798e922d2a22a04cd85dff134a1400abe6bb81c5f37a59391caac5f9b255d2b1e1e38ba3428ee74146220fac6f34065c1412d93a251ed18612e1b4afdd6270b64cc11e1de033489eedc16dfed4193c9ae02686b46b8aa10f0abaf9aac81d07d4896597a17e47ca558eb4677f306eb9844f9cf9b1781bd59a2b192a31cfa45db955fc5402ccd4c9efa35301b0b3ed4bc4bd1294dcfe286f45199f2bd8d531bf3c71b65d10cd67a95730ccb08cccf6d6390758425758c1f63d907d54a5c9d48873997e6ad7482c8"})
keyctl$read(0xa, 0x0, &(0x7f0000000c00)=""/229, 0xe5)
08:42:46 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0xff, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0}})
08:42:46 executing program 6:
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read(r0, 0x0, 0x0)
08:42:46 executing program 3:
r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x7005, 0x0)
pread64(r0, &(0x7f0000001840)=""/4101, 0x1005, 0x0)
08:42:46 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x13, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='%\x00')
syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r4 = dup(r3)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r4, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r5, 0x0, &(0x7f0000000000), 0x0, 0x4)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f00000000c0)={0x3, &(0x7f0000000040)=[{0x2, 0xac, 0x8, 0xc1}, {0x800, 0x0, 0x6, 0x80000}, {0x0, 0x7, 0x7, 0x7}]})
r7 = syz_io_uring_setup(0x2262, &(0x7f0000003a00), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000003ac0))
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r8, 0x4b4e, 0x9)
ioctl$TCXONC(r8, 0x540a, 0x3)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0x5, 0x0, r9)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x52)
08:42:46 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0xff, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0}})
08:42:46 executing program 0:
ioctl$DVD_READ_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f0000000480)=@manufact={0x4, 0x0, 0x800, "cd33ebe03c1c2e4b12dbbd929c630121f1f07490cc8a110ba7d427d126e09efab8619a57c855d7fa1e270d5ef66cc1fe9427b45dcb8cac604c8a1b2a5fb33698f44c7af8fbd9ea42b8f7c15e147f2e8ee04d95b1a51ea926c2916ad4a22246080ee46333aba3441f15cfd7058fb42ad8353712b235b94f0286837b375bd38655bb834f292efd7a17d0a22749e00f361b669c6a31ab8a7a17d09f5f1be34b412019b8a2472f5a3145c1f0b49af8b9395bb586b334345395df2d09c626d1c58a303dbbf7981b6a44658c42a6bdc54879fb9f66d449d757331260dff634fc18592eb0d38595ef30d6dccc10c93e9a654500dab50648519c6bb846d02c50479d158b060cd5cbb608130b7e09f1529a77acfb34ff23dc2c02f07a70b71a2e59d3b8d97173037df770f16db114eba7eca3e2e767f92385470faeb95d44d5eb3b71dd3e444e5c18f0d6c26226009388fd4fb38d108ceb3e3d5c53ebf557b6cc6f2cbfffd87a0839f74f6886d886c914f45f69bbc9ab9158357fe3cc393bcc17cc771df8558ffa935928d5f280c05ba76fd89093272d4687a6dd31599ae4664bc667ac2c86c4d8fa2f97ddd018011ec2f10fba48af140510e063de02391b82c2ddfdc75bd69a6e1b3498278d534d9f12296cd5f1ec4f7a8036eb424da16352fe30bf1c81b77a73e690c018070e5afa4b431e60a99b806ae4bb06510e9696770f8796baa680d0223b57d5a80001c27ba5692148ee870da071157eb49feb5dad2eda05c82693d6500534fad8359940ec310a81a789145233b4b5b0acc185640e1cfc820aefc1ef1393877692adc5f50815b6dd22bc808901a21441dd31d935894121adfb80c0fb6c275a6ca866c7b2ea522f714db0ef4c0bd4c3095a0f5bff58f0f59359211c630259ad0c7901f34799c2838d75b11f0aecc6200588227d9cebbb5ba57084dfa22541619020ea515b437bcbf4f68d791c767d19d8bda06283d6c1e53717c82c1348b0b42482f3d11120117708d6fc93e84da3d4839aad10ce85fae6afc190753b79a87db00213f0c8ad330e66db821e22ab1f710bd8e9a76d76de97843e79613ec8993fed4c13ff4b3170c9c1f16f2d3404578eedb5d609c8e84d6bf35286aa7ea5bcdc5ae341e1911a73765400688d681f275d670d39159075e94a64b0575d9ae823e48b8d79d14ea3a8824183e5a4c8376530f32fd97df2464fb2cc6829c85655b7ab274c5b3acb8724b8cea83080e3d798294be7181ee1e14426e84abf24f3ca0245b4770c2446a74493d77ac01a40e94a685bc6d645c833d53460cbba007c22dd9de268ae221025e90b0e338011cbe0639eb57c15420727b3a78af3ce0782556dcd815f96272c97ca204ef3e073bd6b7d3097f0bc2f9d28ed8994002b8c8d7ca6cbaa761b6e6c76f4d37643e8bebbc32086af0a9df85714739abb926146f71cdab64edbf1eac62f67ed51ccee8e674ea8fd1eef862f810e0f6d901cc80a9b4f38f0b67a0824a8db12b941e53ed525ffdca71ea884a434904a3292d6b8e2004eb0e8766f1b9410dbb807aa0d4bd8c87ea429359a240f495e2a3f3ce803b5c7038f3ad9f3319bf998af71fabaf03769c76b3560c738b9e7f9622981f43b06d1e90c93028080590a13ebc6ce725f1257a77fb3f276fc703363a3c79ec63caf2ed370c1fa098ccc4ddee9b2571c4c44011e371e7a1441e4ac514696068ef37c7ef33bcf461b43c82c5a5724f53ae31b135619772891bb957f1c8c5d7a6f10447616198aa999e403c960ab7aff45203579539dac54ccf3b75927d19a43fb238be3fd24b1a6995bf83bd2df6891480c7dbd7536b374ef3e74c087149f051af901d71803cc7f12c09750938517448db0b0583f24bc8b648bd7a9a3c1c27ad15b7a4fce7d8daa31984d51679eb10d14f4da8d1fbfbbc15f16890aee733d45236f8aa062bd917649996f41b928eb31ac1538ba1e927cefaffcf9844604a3c380656fdd25a3c519a1a8cad35a6fb62ae982a426f84673a03c9610cef35d507625d0f9fa7b8b0b406b484a13dce6e44a846b04e7930463f0d3877f129d90b51b81e5a29ab9ca5e6ad64e0c6bd00a153f360fd754161d86b65f3a25a971803f6fb45fd6e5159cceee34b6013cc3b064d83b8a502ec17f755180dead379e940c46ba469c5856f0801502ef03dc4232dfcdc40dee6b479bda2dbcdb6320ee79695b5f4f8fd32b42b8130a166b0c8ba86292e58db66c54489abd3c415dbf3d1c19176f193d2dff0bce32a6d2f74d9e7638056390173e6f542c97472aef61c50259446f5becf768d60e97b24adcb872dcc40a33b2d6d8495fdb80fc781a7d5027b808f9b7b187f20f48f6f8d3a5d496ff458902568a6eb9cdc16e9d46dd5a1e8d028ce2cc82f2d6e1bce3bcd0a6ec87fb085ec2fe98789ea5c1a5657b91a93e1c22cd4e3a320776cede57216f8017c20e8b700bb84e6905ef2a26a3903505cefa8b0a7b3de0c161a9200737b8453995374eb2cec7b67e64c98e45eba4ea65df8a4f2b14ebb8249f827a7edd4c2c8b2051ec2993fe48bb8f756b9456e69b5523d8396ec1418be1a716e1f5708408be77136ea43f7b62e5eda26a4ace9f958798e922d2a22a04cd85dff134a1400abe6bb81c5f37a59391caac5f9b255d2b1e1e38ba3428ee74146220fac6f34065c1412d93a251ed18612e1b4afdd6270b64cc11e1de033489eedc16dfed4193c9ae02686b46b8aa10f0abaf9aac81d07d4896597a17e47ca558eb4677f306eb9844f9cf9b1781bd59a2b192a31cfa45db955fc5402ccd4c9efa35301b0b3ed4bc4bd1294dcfe286f45199f2bd8d531bf3c71b65d10cd67a95730ccb08cccf6d6390758425758c1f63d907d54a5c9d48873997e6ad7482c8"})
keyctl$read(0xa, 0x0, &(0x7f0000000c00)=""/229, 0xe5)
08:42:46 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x17, 0x0, 0x0)
08:42:46 executing program 5:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
08:42:46 executing program 3:
r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x7005, 0x0)
pread64(r0, &(0x7f0000001840)=""/4101, 0x1005, 0x0)
08:42:47 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0xff, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0}})
08:42:47 executing program 0:
ioctl$DVD_READ_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f0000000480)=@manufact={0x4, 0x0, 0x800, "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"})
keyctl$read(0xa, 0x0, &(0x7f0000000c00)=""/229, 0xe5)
08:42:47 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x17, 0x0, 0x0)
08:42:47 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x13, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='%\x00')
syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r4 = dup(r3)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r4, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r5, 0x0, &(0x7f0000000000), 0x0, 0x4)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f00000000c0)={0x3, &(0x7f0000000040)=[{0x2, 0xac, 0x8, 0xc1}, {0x800, 0x0, 0x6, 0x80000}, {0x0, 0x7, 0x7, 0x7}]})
r7 = syz_io_uring_setup(0x2262, &(0x7f0000003a00), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000003ac0))
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r8, 0x4b4e, 0x9)
ioctl$TCXONC(r8, 0x540a, 0x3)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0x5, 0x0, r9)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x52)
08:42:47 executing program 5:
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
unlink(&(0x7f0000000340)='./file0\x00')
08:42:47 executing program 3:
r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x7005, 0x0)
pread64(r0, &(0x7f0000001840)=""/4101, 0x1005, 0x0)
08:42:47 executing program 6:
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read(r0, 0x0, 0x0)
08:42:47 executing program 7:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x13, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='%\x00')
syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r4 = dup(r3)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r4, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r5, 0x0, &(0x7f0000000000), 0x0, 0x4)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f00000000c0)={0x3, &(0x7f0000000040)=[{0x2, 0xac, 0x8, 0xc1}, {0x800, 0x0, 0x6, 0x80000}, {0x0, 0x7, 0x7, 0x7}]})
r7 = syz_io_uring_setup(0x2262, &(0x7f0000003a00), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000003ac0))
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r8, 0x4b4e, 0x9)
ioctl$TCXONC(r8, 0x540a, 0x3)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0x5, 0x0, r9)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x52)
[ 104.032740] kmemleak: Found object by alias at 0x607f1a638204
[ 104.032762] CPU: 1 UID: 0 PID: 3946 Comm: syz-executor.0 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.032780] Tainted: [W]=WARN
[ 104.032784] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.032791] Call Trace:
[ 104.032795]
[ 104.032800] dump_stack_lvl+0xca/0x120
[ 104.032824] __lookup_object+0x94/0xb0
[ 104.032841] delete_object_full+0x27/0x70
[ 104.032857] free_percpu+0x30/0x1160
[ 104.032873] ? arch_uprobe_clear_state+0x16/0x140
[ 104.032893] futex_hash_free+0x38/0xc0
[ 104.032907] mmput+0x2d3/0x390
[ 104.032926] do_exit+0x79d/0x2970
[ 104.032943] ? __pfx_do_exit+0x10/0x10
[ 104.032957] ? find_held_lock+0x2b/0x80
[ 104.032975] ? get_signal+0x835/0x2340
[ 104.032994] do_group_exit+0xd3/0x2a0
[ 104.033009] get_signal+0x2315/0x2340
[ 104.033025] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.033047] ? __pfx_get_signal+0x10/0x10
[ 104.033063] ? __schedule+0xe91/0x3590
[ 104.033083] arch_do_signal_or_restart+0x80/0x790
[ 104.033100] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 104.033116] ? __x64_sys_futex+0x1c9/0x4d0
[ 104.033128] ? __x64_sys_futex+0x1d2/0x4d0
[ 104.033142] ? __pfx___x64_sys_futex+0x10/0x10
[ 104.033155] ? xfd_validate_state+0x55/0x180
[ 104.033176] exit_to_user_mode_loop+0x8b/0x110
[ 104.033189] do_syscall_64+0x2f7/0x360
[ 104.033201] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.033213] RIP: 0033:0x7f7728c61b19
[ 104.033222] Code: Unable to access opcode bytes at 0x7f7728c61aef.
[ 104.033227] RSP: 002b:00007f77261d7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 104.033238] RAX: 0000000000000001 RBX: 00007f7728d74f68 RCX: 00007f7728c61b19
[ 104.033245] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7728d74f6c
[ 104.033252] RBP: 00007f7728d74f60 R08: 0000000000000016 R09: 0000000000000000
[ 104.033259] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f7728d74f6c
[ 104.033266] R13: 00007ffe6efd65cf R14: 00007f77261d7300 R15: 0000000000022000
[ 104.033281]
[ 104.033284] kmemleak: Object (percpu) 0x607f1a638200 (size 8):
[ 104.033291] kmemleak: comm "syz-executor.4", pid 3949, jiffies 4294770869
[ 104.033298] kmemleak: min_count = 1
[ 104.033302] kmemleak: count = 0
[ 104.033305] kmemleak: flags = 0x21
[ 104.033309] kmemleak: checksum = 0
[ 104.033312] kmemleak: backtrace:
[ 104.033316] pcpu_alloc_noprof+0x87a/0x1170
[ 104.033330] perf_trace_event_init+0x366/0xa10
[ 104.033344] perf_trace_init+0x1a4/0x2f0
[ 104.033355] perf_tp_event_init+0xa6/0x120
[ 104.033370] perf_try_init_event+0x140/0x9f0
[ 104.033383] perf_event_alloc.part.0+0x118e/0x45f0
[ 104.033399] __do_sys_perf_event_open+0x719/0x2c20
[ 104.033411] do_syscall_64+0xbf/0x360
[ 104.033419] entry_SYSCALL_64_after_hwframe+0x77/0x7f
08:42:47 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x13, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='%\x00')
syz_open_dev$tty1(0xc, 0x4, 0x2)
r3 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r4 = dup(r3)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r4, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r5, 0x0, &(0x7f0000000000), 0x0, 0x4)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f00000000c0)={0x3, &(0x7f0000000040)=[{0x2, 0xac, 0x8, 0xc1}, {0x800, 0x0, 0x6, 0x80000}, {0x0, 0x7, 0x7, 0x7}]})
r7 = syz_io_uring_setup(0x2262, &(0x7f0000003a00), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000003ac0))
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r8, 0x4b4e, 0x9)
ioctl$TCXONC(r8, 0x540a, 0x3)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0x5, 0x0, r9)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x52)
08:42:47 executing program 6:
sched_setscheduler(0x0, 0x5, &(0x7f0000000000))
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read(r0, 0x0, 0x0)
[ 104.090874] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#1] SMP KASAN NOPTI
[ 104.091767] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197]
[ 104.092565] CPU: 1 UID: 0 PID: 67 Comm: kworker/u8:1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.094231] Tainted: [W]=WARN
[ 104.095038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.096771] Workqueue: ipv6_addrconf addrconf_dad_work
[ 104.098241] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.099436] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.102707] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.103191] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.103831] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.104490] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.105134] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.105761] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.106342] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.106995] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.107476] CR2: 00007fa48c550000 CR3: 000000003c349000 CR4: 0000000000350ef0
[ 104.108065] Call Trace:
[ 104.108290]
[ 104.108485] ? __pfx_perf_tp_event+0x10/0x10
[ 104.108859] ? lock_acquire+0x15e/0x2f0
[ 104.109199] ? __asan_memcpy+0x3d/0x60
[ 104.109528] ? find_held_lock+0x2b/0x80
[ 104.109861] ? ip6_finish_output2+0x979/0x1aa0
[ 104.110241] ? lock_release+0xc8/0x290
[ 104.110573] ? ip6_finish_output2+0x988/0x1aa0
[ 104.110966] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.111383] perf_trace_run_bpf_submit+0xef/0x180
[ 104.111787] perf_trace_contention_end+0x235/0x3e0
[ 104.112204] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.112653] ? __mutex_trylock_common+0xf9/0x260
[ 104.113049] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.113480] trace_contention_end+0xae/0x110
[ 104.113853] __mutex_lock+0x166/0x1020
[ 104.114190] ? addrconf_dad_work+0xf6/0x11a0
[ 104.114563] ? look_up_lock_class+0x56/0x150
[ 104.114931] ? __pfx___mutex_lock+0x10/0x10
[ 104.115293] ? __lock_acquire+0xc65/0x1b70
[ 104.115645] addrconf_dad_work+0xf6/0x11a0
[ 104.116003] ? __pfx_addrconf_dad_work+0x10/0x10
[ 104.116413] ? lock_release+0xc8/0x290
[ 104.116744] process_one_work+0x8e1/0x19c0
[ 104.117105] ? __pfx_process_one_work+0x10/0x10
[ 104.117490] ? move_linked_works+0x172/0x270
[ 104.117862] ? assign_work+0x196/0x240
[ 104.118188] worker_thread+0x67e/0xe90
[ 104.118509] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.118939] ? __pfx_worker_thread+0x10/0x10
[ 104.119306] kthread+0x3c8/0x740
[ 104.119597] ? __pfx_kthread+0x10/0x10
[ 104.119923] ? ret_from_fork+0x23/0x430
[ 104.120266] ? lock_release+0xc8/0x290
[ 104.120590] ? __pfx_kthread+0x10/0x10
[ 104.120913] ret_from_fork+0x34b/0x430
[ 104.121245] ? __pfx_kthread+0x10/0x10
[ 104.121571] ret_from_fork_asm+0x1a/0x30
[ 104.121917]
[ 104.122112] Modules linked in:
[ 104.122391] Oops: general protection fault, probably for non-canonical address 0xfe001bea7e00209a: 0000 [#2] SMP KASAN NOPTI
[ 104.123197] ---[ end trace 0000000000000000 ]---
[ 104.123322] KASAN: maybe wild-memory-access in range [0xf000ff53f00104d0-0xf000ff53f00104d7]
[ 104.123708] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.124393] CPU: 0 UID: 0 PID: 3957 Comm: syz-executor.1 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.124415] Tainted: [D]=DIE, [W]=WARN
[ 104.124420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.124428] RIP: 0010:perf_tp_event+0x26b/0xe70
[ 104.124454] Code: 3c 20 00 0f 85 3d 0b 00 00 4c 8b ab 00 03 00 00 4d 85 ed 4c 0f 44 eb e8 d3 50 ea ff 49 8d bd 80 05 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 fd 0a 00 00 4d 8b ad 80 05 00 00 4d 85 ed 0f
[ 104.124467] RSP: 0018:ffff8880170b77c0 EFLAGS: 00010216
[ 104.124477] RAX: 1e001fea7e00209a RBX: ffff887fffffffa0 RCX: ffffc90000fe9000
[ 104.124486] RDX: 0000000000040000 RSI: ffffffff818996ad RDI: f000ff53f00104d3
[ 104.124495] RBP: ffff8880170b7a30 R08: ffff88806ce31340 R09: ffffe8ffffc15200
[ 104.124503] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.124511] R13: f000ff53f000ff53 R14: ffff88806ce31340 R15: dffffc0000000000
[ 104.124522] FS: 00007fd158212700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 104.124533] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.124542] CR2: 0000001b2d02a000 CR3: 00000000437f9000 CR4: 0000000000350ef0
[ 104.124550] Call Trace:
[ 104.124554]
[ 104.124559] ? __is_insn_slot_addr+0x140/0x290
[ 104.124583] ? __pfx_perf_tp_event+0x10/0x10
[ 104.124601] ? stack_trace_save+0x8e/0xc0
[ 104.124618] ? stack_depot_save_flags+0x2c/0xa20
[ 104.124632] ? lock_acquire+0x18c/0x2f0
[ 104.124648] ? lock_release+0x1c7/0x290
[ 104.124662] ? lock_acquire+0x18c/0x2f0
[ 104.124675] ? lock_acquire+0x18c/0x2f0
[ 104.124688] ? lock_release+0x1c7/0x290
[ 104.124703] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.124718] perf_trace_run_bpf_submit+0xef/0x180
[ 104.124736] perf_trace_contention_end+0x235/0x3e0
[ 104.124753] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.124767] ? __mutex_trylock_common+0xf9/0x260
[ 104.124781] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.124798] trace_contention_end+0xae/0x110
[ 104.124812] __mutex_lock+0x166/0x1020
[ 104.124832] ? pcpu_alloc_noprof+0xaa0/0x1170
[ 104.124852] ? __pfx___mutex_lock+0x10/0x10
[ 104.124869] ? lock_acquire+0x18c/0x2f0
[ 104.124882] ? lock_release+0x1c7/0x290
[ 104.124896] ? obj_cgroup_charge_account+0x2b8/0x6e0
[ 104.124916] ? pcpu_alloc_noprof+0x111/0x1170
[ 104.124933] pcpu_alloc_noprof+0xaa0/0x1170
[ 104.125342] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.126285] ? lockdep_init_map_type+0x4b/0x240
[ 104.126303] bpf_prog_alloc+0x5e/0x200
[ 104.126623] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.127283] ? __pfx_seccomp_check_filter+0x10/0x10
[ 104.127300] bpf_prog_create_from_user+0xb2/0x2f0
[ 104.127676]
[ 104.129126] do_seccomp+0x349/0x25e0
[ 104.129573] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.130146] ? __pfx_do_seccomp+0x10/0x10
[ 104.130725] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.131299] ? lock_release+0x1c7/0x290
[ 104.131314] ? __pfx___x64_sys_futex+0x10/0x10
[ 104.131880] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.132468] ? xfd_validate_state+0x55/0x180
[ 104.133214] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.133683] do_syscall_64+0xbf/0x360
[ 104.134284] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.134497] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.134705] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.135093] RIP: 0033:0x7fd15ac9cb19
[ 104.135104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 104.135497] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.135838] RSP: 002b:00007fd158212188 EFLAGS: 00000246
[ 104.136271] CR2: 00007fa48c550000 CR3: 000000003c349000 CR4: 0000000000350ef0
[ 104.136596] ORIG_RAX: 000000000000013d
[ 104.136936] note: kworker/u8:1[67] exited with preempt_count 2
[ 104.137274] RAX: ffffffffffffffda RBX: 00007fd15adaff60 RCX: 00007fd15ac9cb19
[ 104.137284] RDX: 00000000200000c0 RSI: 0000000000000002 RDI: 0000000000000001
[ 104.158822] RBP: 00007fd15acf6f6d R08: 0000000000000000 R09: 0000000000000000
[ 104.159438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.160028] R13: 00007ffcebfdaaff R14: 00007fd158212300 R15: 0000000000022000
[ 104.160661]
[ 104.160868] Modules linked in:
[ 104.161155] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#3] SMP KASAN NOPTI
[ 104.161567] ---[ end trace 0000000000000000 ]---
[ 104.162217] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197]
[ 104.162235] CPU: 1 UID: 0 PID: 283 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.162254] Tainted: [D]=DIE, [W]=WARN
[ 104.162259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.162265] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.162677] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.163400] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.163416] RSP: 0018:ffff8880158076c0 EFLAGS: 00010212
[ 104.164433] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.164759]
[ 104.165481] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.165883] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.166278]
[ 104.167836] RDX: ffff888015f09b80 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.167848] RBP: ffff888015807930 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.168309] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.169859] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.169870] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.170017] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.170481] FS: 0000555582c0e400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.171094] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.171235] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.171842] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.172448] CR2: 00007fa48c550000 CR3: 000000003c349000 CR4: 0000000000350ef0
[ 104.172460] Call Trace:
[ 104.173076] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.173677]
[ 104.174303] FS: 00007fd158212700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 104.174926] ? kasan_save_stack+0x34/0x50
[ 104.175628] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.176246] ? __do_wait+0x218/0x8f0
[ 104.176762] CR2: 0000001b2d02a000 CR3: 00000000437f9000 CR4: 0000000000350ef0
[ 104.177366] ? __pfx_perf_tp_event+0x10/0x10
[ 104.177982] note: syz-executor.1[3957] exited with preempt_count 2
[ 104.178219] ? delete_node+0x20e/0x730
[ 104.182775] ? destroy_inode+0x12b/0x1b0
[ 104.183138] ? __radix_tree_delete+0x13e/0x380
[ 104.183563] ? radix_tree_delete_item+0xef/0x230
[ 104.184000] ? lock_acquire+0x18c/0x2f0
[ 104.184359] ? lock_acquire+0x18c/0x2f0
[ 104.184715] ? lock_release+0x1c7/0x290
[ 104.185081] ? __virt_addr_valid+0x100/0x5d0
[ 104.185494] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.185973] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.186405] perf_trace_run_bpf_submit+0xef/0x180
[ 104.186845] perf_trace_contention_end+0x235/0x3e0
[ 104.187282] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.187769] ? __mutex_trylock_common+0xf9/0x260
[ 104.188249] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.188822] ? lock_release+0x1c7/0x290
[ 104.189216] trace_contention_end+0xae/0x110
[ 104.189643] __mutex_lock+0x166/0x1020
[ 104.190009] ? anon_pipe_write+0x12a/0x1a80
[ 104.190444] ? avc_has_perm+0x12b/0x1d0
[ 104.190857] ? __pfx___mutex_lock+0x10/0x10
[ 104.191372] ? __pfx_wait_consider_task+0x10/0x10
[ 104.191813] ? lock_acquire+0x18c/0x2f0
[ 104.192180] ? inode_has_perm+0x170/0x1c0
[ 104.192573] anon_pipe_write+0x12a/0x1a80
[ 104.192960] ? lock_release+0x1c7/0x290
[ 104.193328] ? lock_acquire+0x18c/0x2f0
[ 104.193694] ? __pfx_anon_pipe_write+0x10/0x10
[ 104.194112] ? selinux_file_permission+0x99/0x600
[ 104.194555] ? security_file_permission+0x22/0x90
[ 104.194998] vfs_write+0xbe9/0x1150
[ 104.195333] ? __pfx_anon_pipe_write+0x10/0x10
[ 104.195905] ? __pfx_vfs_write+0x10/0x10
[ 104.196424] ? __do_sys_wait4+0xb3/0x150
[ 104.196798] ? common_nsleep+0xaa/0xd0
[ 104.197153] ksys_write+0x1ef/0x240
[ 104.197488] ? __pfx_ksys_write+0x10/0x10
[ 104.197861] do_syscall_64+0xbf/0x360
[ 104.198212] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.198668] RIP: 0033:0x7fd00a5f05ff
[ 104.199004] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 104.200627] RSP: 002b:00007fff12bb1b20 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 104.201301] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007fd00a5f05ff
[ 104.201935] RDX: 000000000000000c RSI: 00007fff12bb1c10 RDI: 00000000000000f8
[ 104.202569] RBP: 00007fff12bb1bac R08: 0000000000000000 R09: 00007fd00a72d000
[ 104.203209] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 104.203839] R13: 0000000000019610 R14: 0000000000000003 R15: 00007fff12bb1c10
[ 104.204486]
[ 104.204701] Modules linked in:
[ 104.207779] ---[ end trace 0000000000000000 ]---
[ 104.208812] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.209322] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.211000] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.211497] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.212156] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.212799] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.213459] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.214118] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.214762] FS: 0000555582c0e400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.215496] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.216020] CR2: 00007fa48c550000 CR3: 000000003c349000 CR4: 0000000000350ef0
[ 104.216694] note: syz-executor.3[283] exited with preempt_count 2
[ 104.217448] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#4] SMP KASAN NOPTI
[ 104.218441] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197]
[ 104.219207] CPU: 1 UID: 0 PID: 3870 Comm: systemd-udevd Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.220400] Tainted: [D]=DIE, [W]=WARN
[ 104.221080] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.222508] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.223337] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.226338] RSP: 0018:ffff88801b4bf6c0 EFLAGS: 00010212
[ 104.227173] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.228290] RDX: ffff888015f73700 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.229404] RBP: ffff88801b4bf930 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.230514] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.231623] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.232742] FS: 00007fb4bf4b48c0(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.233991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.234904] CR2: 0000000020002ac1 CR3: 000000001dd48000 CR4: 0000000000350ef0
[ 104.236019] Call Trace:
[ 104.236437]
[ 104.236807] ? __pfx_perf_tp_event+0x10/0x10
[ 104.237517] ? __alloc_skb+0x161/0x370
[ 104.238145] ? __lock_acquire+0x694/0x1b70
[ 104.238822] ? css_rstat_updated+0x1b8/0x4d0
[ 104.239531] ? __pfx_css_rstat_updated+0x10/0x10
[ 104.240294] ? lock_is_held_type+0x9e/0x120
[ 104.240989] ? trace_sched_set_need_resched_tp+0xd4/0x110
[ 104.241863] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.242655] perf_trace_run_bpf_submit+0xef/0x180
[ 104.243429] perf_trace_contention_end+0x235/0x3e0
[ 104.244216] ? lock_acquire+0x18c/0x2f0
[ 104.244848] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.245699] ? __mutex_trylock_common+0xf9/0x260
[ 104.246450] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.247264] trace_contention_end+0xae/0x110
[ 104.247963] __mutex_lock+0x166/0x1020
[ 104.248598] ? ep_send_events+0xff/0xaa0
[ 104.249249] ? __pfx___mutex_lock+0x10/0x10
[ 104.249935] ? lock_acquire+0x15e/0x2f0
[ 104.250569] ? find_held_lock+0x2b/0x80
[ 104.251207] ? schedule+0x2c7/0x390
[ 104.251788] ? lock_release+0xc8/0x290
[ 104.252421] ep_send_events+0xff/0xaa0
[ 104.253071] ? schedule_hrtimeout_range_clock+0x1c0/0x310
[ 104.253979] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10
[ 104.254949] ? __pfx_ep_send_events+0x10/0x10
[ 104.255709] ? lock_release+0xc8/0x290
[ 104.256374] do_epoll_wait+0x42e/0xee0
[ 104.257023] ? __pfx_sock_write_iter+0x10/0x10
[ 104.257788] ? __pfx_do_epoll_wait+0x10/0x10
[ 104.258525] ? populate_seccomp_data+0x213/0x540
[ 104.259319] ? __pfx_ep_autoremove_wake_function+0x10/0x10
[ 104.260253] ? __pfx___seccomp_filter+0x10/0x10
[ 104.261037] __x64_sys_epoll_wait+0x15b/0x280
[ 104.261797] ? __pfx___x64_sys_epoll_wait+0x10/0x10
[ 104.262640] ? ksys_write+0x1a3/0x240
[ 104.263286] ? __secure_computing+0x18d/0x290
[ 104.264041] do_syscall_64+0xbf/0x360
[ 104.264683] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.265549] RIP: 0033:0x7fb4bf9730d6
[ 104.266170] Code: 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 18 48 89 74 24
[ 104.269175] RSP: 002b:00007ffe99617318 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8
[ 104.270425] RAX: ffffffffffffffda RBX: 000055b8c25b4f60 RCX: 00007fb4bf9730d6
[ 104.271614] RDX: 0000000000000002 RSI: 000055b8c25c8d80 RDI: 0000000000000003
[ 104.272798] RBP: ffffffffffffffff R08: 0000000000000002 R09: 0000000000000004
[ 104.273978] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001
[ 104.275141] R13: 0000000000000002 R14: 000055b8a68e22e6 R15: 0000000000000000
[ 104.276331]
[ 104.276726] Modules linked in:
[ 104.277427] ---[ end trace 0000000000000000 ]---
[ 104.278248] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.279079] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.282789] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.283913] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.285341] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.286581] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.288053] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.289474] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.290888] FS: 00007fb4bf4b48c0(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.292472] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.293635] CR2: 0000000020002ac1 CR3: 000000001dd48000 CR4: 0000000000350ef0
[ 104.295069] note: systemd-udevd[3870] exited with preempt_count 2
[ 104.296384] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000032: 0000 [#5] SMP KASAN NOPTI
[ 104.298606] KASAN: probably user-memory-access in range [0x0000000200000190-0x0000000200000197]
[ 104.300383] CPU: 1 UID: 0 PID: 64 Comm: kworker/1:2 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.302691] Tainted: [D]=DIE, [W]=WARN
[ 104.303449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.304919] Workqueue: mld mld_ifc_work
[ 104.305683] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.306565] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.310188] RSP: 0018:ffff88800b34f6c0 EFLAGS: 00010212
[ 104.311296] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.312688] RDX: ffff88800aa89b80 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.313873] RBP: ffff88800b34f930 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.315160] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.316618] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.317808] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.319337] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.320473] CR2: 0000000020002ac1 CR3: 000000001dd48000 CR4: 0000000000350ef0
[ 104.321918] Call Trace:
[ 104.322533]
[ 104.323021] ? __pfx_perf_tp_event+0x10/0x10
[ 104.323869] ? __local_bh_enable_ip+0xa1/0x110
[ 104.324655] ? selinux_ip_postroute+0x629/0xcd0
[ 104.325444] ? __pfx_selinux_ip_postroute+0x10/0x10
[ 104.326285] ? __pfx___dev_queue_xmit+0x10/0x10
[ 104.327071] ? register_lock_class+0x41/0x560
[ 104.327861] ? __lock_acquire+0x694/0x1b70
[ 104.328651] ? __lock_acquire+0xc65/0x1b70
[ 104.329370] ? lock_acquire+0x15e/0x2f0
[ 104.330115] ? ipv6_chk_mcast_addr+0x38/0x990
[ 104.331033] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.331992] ? find_held_lock+0x2b/0x80
[ 104.332756] perf_trace_run_bpf_submit+0xef/0x180
[ 104.333775] perf_trace_contention_end+0x235/0x3e0
[ 104.334676] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.335589] ? __mutex_trylock_common+0xf9/0x260
[ 104.336400] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.337276] ? lock_is_held_type+0x9e/0x120
[ 104.338017] trace_contention_end+0xae/0x110
[ 104.338770] __mutex_lock+0x166/0x1020
[ 104.339442] ? mld_ifc_work+0x42/0xb60
[ 104.340104] ? __pfx___mutex_lock+0x10/0x10
[ 104.340853] ? __pfx___perf_event_task_sched_in+0x10/0x10
[ 104.341772] ? lock_is_held_type+0x9e/0x120
[ 104.342505] ? lock_acquire+0x18c/0x2f0
[ 104.343181] ? lock_release+0x1c7/0x290
[ 104.343861] mld_ifc_work+0x42/0xb60
[ 104.344501] ? lock_release+0x1c7/0x290
[ 104.345180] process_one_work+0x8e1/0x19c0
[ 104.345905] ? __pfx_process_one_work+0x10/0x10
[ 104.346696] ? move_linked_works+0x172/0x270
[ 104.347458] ? assign_work+0x196/0x240
[ 104.348123] worker_thread+0x67e/0xe90
[ 104.348795] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.349677] ? __pfx_worker_thread+0x10/0x10
[ 104.350423] kthread+0x3c8/0x740
[ 104.351003] ? __pfx_kthread+0x10/0x10
[ 104.351664] ? ret_from_fork+0x23/0x430
[ 104.352359] ? lock_release+0xc8/0x290
[ 104.353023] ? __pfx_kthread+0x10/0x10
[ 104.353687] ret_from_fork+0x34b/0x430
[ 104.354353] ? __pfx_kthread+0x10/0x10
[ 104.355019] ret_from_fork_asm+0x1a/0x30
[ 104.355724]
[ 104.356125] Modules linked in:
[ 104.358173] ---[ end trace 0000000000000000 ]---
[ 104.358985] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.374587] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.377662] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.378535] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.379687] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.380866] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.382036] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.383204] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.384394] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.385707] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.386695] CR2: 0000000020002ac1 CR3: 000000001dd48000 CR4: 0000000000350ef0
[ 104.387892] note: kworker/1:2[64] exited with preempt_count 2
[ 104.392737] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#6] SMP KASAN NOPTI
[ 104.394563] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 104.395952] CPU: 1 UID: 0 PID: 3955 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.397880] Tainted: [D]=DIE, [W]=WARN
[ 104.398507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.399846] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.400627] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.403552] RSP: 0018:ffff88804475f300 EFLAGS: 00010212
[ 104.404417] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc900019ee000
[ 104.405571] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 104.406739] RBP: ffff88804475f570 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.407921] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.409092] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.410256] FS: 00007fa4899b6700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.411569] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.412543] CR2: 00007fa489995718 CR3: 000000001c40e000 CR4: 0000000000350ef0
[ 104.413709] Call Trace:
[ 104.414146]
[ 104.414529] ? __rmqueue_pcplist+0x1f3/0x10f0
[ 104.415290] ? __pfx_perf_tp_event+0x10/0x10
[ 104.416040] ? prep_compound_page+0x1aa/0x3e0
[ 104.416807] ? get_page_from_freelist+0x1a9f/0x24b0
[ 104.417652] ? css_rstat_updated+0x1b8/0x4d0
[ 104.418413] ? __pfx_css_rstat_updated+0x10/0x10
[ 104.419217] ? lock_acquire+0x18c/0x2f0
[ 104.419900] ? lock_release+0x1c7/0x290
[ 104.420583] ? __cgroup_account_cputime+0x88/0xc0
[ 104.421414] ? __pick_eevdf+0x326/0x570
[ 104.422079] ? update_curr+0x39e/0x500
[ 104.422735] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.423566] ? lock_release+0x1c7/0x290
[ 104.424242] perf_trace_run_bpf_submit+0xef/0x180
[ 104.425050] perf_trace_contention_end+0x235/0x3e0
[ 104.425876] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.426766] ? __mutex_trylock_common+0xf9/0x260
[ 104.427558] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.428423] trace_contention_end+0xae/0x110
[ 104.429157] __mutex_lock+0x166/0x1020
[ 104.429815] ? sg_open+0x2e3/0x1670
[ 104.430451] ? __pfx___mutex_lock+0x10/0x10
[ 104.431170] ? __kernel_text_address+0xd/0x40
[ 104.431929] ? lock_release+0x1c7/0x290
[ 104.432530] ? lock_acquire+0x18c/0x2f0
[ 104.433109] ? kobject_get+0xc0/0x160
[ 104.433671] sg_open+0x2e3/0x1670
[ 104.434195] ? lock_acquire+0x18c/0x2f0
[ 104.434784] ? __pfx_sg_open+0x10/0x10
[ 104.435366] ? kobject_get_unless_zero+0x15d/0x1f0
[ 104.436083] ? __pfx_kobject_get_unless_zero+0x10/0x10
[ 104.436848] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 104.437538] ? lock_release+0x1c7/0x290
[ 104.438116] ? __pfx_sg_open+0x10/0x10
[ 104.438687] chrdev_open+0x234/0x690
[ 104.439232] ? __pfx_chrdev_open+0x10/0x10
[ 104.439841] ? __pfx_selinux_inode_permission+0x10/0x10
[ 104.440617] ? lock_release+0x1c7/0x290
[ 104.441204] do_dentry_open+0x71c/0x1420
[ 104.441794] ? __pfx_chrdev_open+0x10/0x10
[ 104.442410] ? inode_permission+0x134/0x610
[ 104.443042] vfs_open+0x82/0x3f0
[ 104.443546] ? may_open+0x1f3/0x420
[ 104.444093] path_openat+0x1c3f/0x2880
[ 104.444682] ? stack_trace_save+0x8e/0xc0
[ 104.445295] ? __pfx_path_openat+0x10/0x10
[ 104.445911] ? stack_depot_save_flags+0x2c/0xa20
[ 104.446599] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.447373] do_filp_open+0x1e8/0x450
[ 104.447935] ? __pfx_do_filp_open+0x10/0x10
[ 104.448572] ? lock_acquire+0x18c/0x2f0
[ 104.449166] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 104.449860] ? lock_release+0x1c7/0x290
[ 104.450449] ? alloc_fd+0x2c1/0x560
[ 104.450981] do_sys_openat2+0x104/0x1b0
[ 104.451570] ? __pfx_do_sys_openat2+0x10/0x10
[ 104.452245] ? count_memcg_events+0x32b/0x420
[ 104.452920] __x64_sys_openat+0x142/0x200
[ 104.453535] ? __pfx___x64_sys_openat+0x10/0x10
[ 104.454236] do_syscall_64+0xbf/0x360
[ 104.454799] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.455560] RIP: 0033:0x7fa48c3f3a04
[ 104.456111] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 104.458746] RSP: 002b:00007fa4899b5cc0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 104.459839] RAX: ffffffffffffffda RBX: 6666666666666667 RCX: 00007fa48c3f3a04
[ 104.460869] RDX: 0000000000000000 RSI: 00007fa4899b5d60 RDI: 00000000ffffff9c
[ 104.461896] RBP: 00007fa4899b5d60 R08: 0000000000000000 R09: 0000000000000000
[ 104.462938] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 104.463970] R13: 00007ffd2a6b7b3f R14: 00007fa4899b6300 R15: 0000000000022000
[ 104.465010]
[ 104.465361] Modules linked in:
[ 104.467380] ---[ end trace 0000000000000000 ]---
[ 104.469112] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.469824] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.472522] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.473322] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.474413] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.475489] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.476585] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.476602] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.476620] FS: 00007fa4899b6700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.476641] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.476656] CR2: 00007fa489995718 CR3: 000000001c40e000 CR4: 0000000000350ef0
[ 104.476672] note: syz-executor.7[3955] exited with preempt_count 2
[ 104.483763] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#7] SMP KASAN NOPTI
[ 104.485454] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 104.486784] CPU: 1 UID: 0 PID: 3952 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.488789] Tainted: [D]=DIE, [W]=WARN
[ 104.489366] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.490581] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.491295] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.493972] RSP: 0018:ffff8880447c7540 EFLAGS: 00010212
[ 104.494751] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 104.495836] RDX: ffff88800fb8b700 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 104.497150] RBP: ffff8880447c77b0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.498240] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.499297] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.500372] FS: 000055556d94e400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.501565] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.502433] CR2: 00007fa489995718 CR3: 000000001c40e000 CR4: 0000000000350ef0
[ 104.503510] Call Trace:
[ 104.503905]
[ 104.504274] ? __pfx_perf_tp_event+0x10/0x10
[ 104.504956] ? __kernel_text_address+0xd/0x40
[ 104.505661] ? arch_stack_walk+0x9c/0xf0
[ 104.506282] ? stack_trace_save+0x8e/0xc0
[ 104.506927] ? stack_depot_save_flags+0x2c/0xa20
[ 104.507643] ? lock_acquire+0x18c/0x2f0
[ 104.508265] ? lock_release+0x1c7/0x290
[ 104.508872] ? lock_acquire+0x18c/0x2f0
[ 104.509481] ? lock_acquire+0x18c/0x2f0
[ 104.510088] ? lock_release+0x1c7/0x290
[ 104.510697] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.511465] perf_trace_run_bpf_submit+0xef/0x180
[ 104.512224] perf_trace_contention_end+0x235/0x3e0
[ 104.512979] ? css_rstat_updated+0x1b8/0x4d0
[ 104.513671] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.514498] ? __mutex_trylock_common+0xf9/0x260
[ 104.515234] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.516036] ? node_tag_clear+0xf5/0x1e0
[ 104.516674] trace_contention_end+0xae/0x110
[ 104.517361] __mutex_lock+0x166/0x1020
[ 104.517980] ? freezer_fork+0xc1/0x500
[ 104.518582] ? delete_node+0x20e/0x730
[ 104.519196] ? __pfx___mutex_lock+0x10/0x10
[ 104.519872] ? __radix_tree_replace+0x117/0x300
[ 104.520617] ? lock_acquire+0x18c/0x2f0
[ 104.521249] ? do_raw_spin_lock+0x123/0x260
[ 104.521931] ? lock_release+0x1c7/0x290
[ 104.522608] freezer_fork+0xc1/0x500
[ 104.523245] cgroup_post_fork+0x31f/0x9a0
[ 104.523945] ? __pfx_cgroup_post_fork+0x10/0x10
[ 104.524775] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 104.525569] ? lock_release+0x1c7/0x290
[ 104.526197] copy_process+0x5e31/0x73c0
[ 104.526829] ? __pfx_copy_process+0x10/0x10
[ 104.527522] ? lock_acquire+0x18c/0x2f0
[ 104.528156] ? lock_release+0x1c7/0x290
[ 104.528793] ? __pfx_lru_add+0x10/0x10
[ 104.529429] kernel_clone+0xea/0x7f0
[ 104.530030] ? __pfx_kernel_clone+0x10/0x10
[ 104.530673] ? vma_start_read+0x304/0x8e0
[ 104.531282] ? __pfx___handle_mm_fault+0x10/0x10
[ 104.532031] ? css_rstat_updated+0x1b8/0x4d0
[ 104.532752] ? __pfx_css_rstat_updated+0x10/0x10
[ 104.533499] __do_sys_clone+0xce/0x120
[ 104.534107] ? __pfx___do_sys_clone+0x10/0x10
[ 104.534876] ? count_memcg_events+0x32b/0x420
[ 104.535672] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.536528] do_syscall_64+0xbf/0x360
[ 104.537150] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.537966] RIP: 0033:0x7fa48c441f41
[ 104.538562] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 104.541399] RSP: 002b:00007ffd2a6b7a88 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 104.542626] RAX: ffffffffffffffda RBX: 00007fa489995700 RCX: 00007fa48c441f41
[ 104.543772] RDX: 00007fa4899959d0 RSI: 00007fa4899952f0 RDI: 00000000003d0f00
[ 104.544906] RBP: 00007ffd2a6b7cc0 R08: 00007fa489995700 R09: 00007fa489995700
[ 104.546052] R10: 00007fa4899959d0 R11: 0000000000000206 R12: 00007ffd2a6b7b3e
[ 104.547206] R13: 00007ffd2a6b7b3f R14: 00007fa489995300 R15: 0000000000022000
[ 104.548265]
[ 104.548642] Modules linked in:
[ 104.551732] ---[ end trace 0000000000000000 ]---
[ 104.553461] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.554226] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.557036] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.557960] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.559067] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.560185] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.561445] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.562626] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.563694] FS: 000055556d94e400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.564890] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.565841] CR2: 00007fa489995718 CR3: 000000001c40e000 CR4: 0000000000350ef0
[ 104.566958] note: syz-executor.7[3952] exited with preempt_count 2
[ 104.580780] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#8] SMP KASAN NOPTI
[ 104.582479] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 104.583704] CPU: 1 UID: 0 PID: 98 Comm: systemd-journal Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.585400] Tainted: [D]=DIE, [W]=WARN
[ 104.585960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.587138] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.587824] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.590438] RSP: 0018:ffff88801590f6c0 EFLAGS: 00010212
[ 104.591200] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 104.592232] RDX: ffff888015910000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 104.593254] RBP: ffff88801590f930 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.594277] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.595291] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.596316] FS: 00007f62e069f900(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.597462] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.598302] CR2: 00007fa489995718 CR3: 000000000b9df000 CR4: 0000000000350ef0
[ 104.599327] Call Trace:
[ 104.599703]
[ 104.600035] ? kasan_save_stack+0x34/0x50
[ 104.600665] ? path_openat+0x19f8/0x2880
[ 104.601261] ? __pfx_perf_tp_event+0x10/0x10
[ 104.601928] ? __fput_deferred+0x3d9/0x490
[ 104.602562] ? __x64_sys_openat+0x142/0x200
[ 104.603204] ? do_syscall_64+0xbf/0x360
[ 104.603782] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.604559] ? do_raw_spin_lock+0x123/0x260
[ 104.605184] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 104.605868] ? lock_acquire+0x18c/0x2f0
[ 104.606448] ? do_filp_open+0x1e8/0x450
[ 104.607034] ? do_sys_openat2+0x104/0x1b0
[ 104.607646] ? __x64_sys_openat+0x142/0x200
[ 104.608288] ? lock_release+0x1c7/0x290
[ 104.608872] ? lock_acquire+0x18c/0x2f0
[ 104.609450] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.610209] ? lock_acquire+0x18c/0x2f0
[ 104.610791] ? lock_release+0x1c7/0x290
[ 104.611373] ? lock_acquire+0x18c/0x2f0
[ 104.611969] ? lock_acquire+0x18c/0x2f0
[ 104.612584] ? lock_release+0x1c7/0x290
[ 104.613190] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.613945] perf_trace_run_bpf_submit+0xef/0x180
[ 104.614670] perf_trace_contention_end+0x235/0x3e0
[ 104.615382] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.616169] ? __mutex_trylock_common+0xf9/0x260
[ 104.616878] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.617633] trace_contention_end+0xae/0x110
[ 104.618301] __mutex_lock+0x166/0x1020
[ 104.618878] ? ep_send_events+0xff/0xaa0
[ 104.619468] ? kasan_save_stack+0x34/0x50
[ 104.620070] ? kasan_save_stack+0x24/0x50
[ 104.620689] ? kasan_save_track+0x14/0x30
[ 104.621292] ? __kasan_save_free_info+0x3a/0x60
[ 104.621968] ? kmem_cache_free+0x2a1/0x540
[ 104.622585] ? __pfx___mutex_lock+0x10/0x10
[ 104.623226] ? __x64_sys_openat+0x142/0x200
[ 104.623865] ? do_syscall_64+0xbf/0x360
[ 104.624452] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.625227] ? stack_trace_save+0x8e/0xc0
[ 104.625831] ? __pfx_path_openat+0x10/0x10
[ 104.626445] ? stack_depot_save_flags+0x2c/0xa20
[ 104.627128] ep_send_events+0xff/0xaa0
[ 104.627696] ? lock_acquire+0x18c/0x2f0
[ 104.628278] ? __pfx_do_filp_open+0x10/0x10
[ 104.628911] ? __pfx_ep_send_events+0x10/0x10
[ 104.629569] ? __virt_addr_valid+0x100/0x5d0
[ 104.630227] do_epoll_wait+0x42e/0xee0
[ 104.630795] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 104.631479] ? __pfx_do_epoll_wait+0x10/0x10
[ 104.632123] ? putname.part.0+0x11b/0x160
[ 104.632735] ? populate_seccomp_data+0x213/0x540
[ 104.633432] ? __seccomp_filter+0x535/0xfa0
[ 104.634060] ? __pfx___seccomp_filter+0x10/0x10
[ 104.634742] __x64_sys_epoll_wait+0x15b/0x280
[ 104.635406] ? __pfx___x64_sys_epoll_wait+0x10/0x10
[ 104.636137] ? __secure_computing+0x18d/0x290
[ 104.636814] do_syscall_64+0xbf/0x360
[ 104.637381] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.638184] RIP: 0033:0x7f62e0f68116
[ 104.638745] Code: 10 89 7c 24 0c 89 4c 24 1c e8 86 6c f8 ff 44 8b 54 24 1c 8b 54 24 18 41 89 c0 48 8b 74 24 10 8b 7c 24 0c b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 32 44 89 c7 89 44 24 0c e8 b6 6c f8 ff 8b 44
[ 104.641329] RSP: 002b:00007ffecf787b70 EFLAGS: 00000293 ORIG_RAX: 00000000000000e8
[ 104.642414] RAX: ffffffffffffffda RBX: 000055c3a23ca360 RCX: 00007f62e0f68116
[ 104.643439] RDX: 0000000000000015 RSI: 000055c3a23d07d0 RDI: 0000000000000008
[ 104.644461] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f62e12f4000
[ 104.645484] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 104.646593] R13: 0000000000000015 R14: 00007f62e128c4e3 R15: 0000000000000000
[ 104.647620]
[ 104.647951] Modules linked in:
[ 104.649771] ---[ end trace 0000000000000000 ]---
[ 104.651494] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.652219] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.654873] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.655649] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.656692] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.657697] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.658714] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.659710] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.660738] FS: 00007f62e069f900(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.661874] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.662712] CR2: 00007fa489995718 CR3: 000000000b9df000 CR4: 0000000000350ef0
[ 104.663733] note: systemd-journal[98] exited with preempt_count 2
[ 104.674113] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#9] SMP KASAN NOPTI
[ 104.675654] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 104.676868] CPU: 1 UID: 0 PID: 34 Comm: kworker/u10:1 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.678484] Tainted: [D]=DIE, [W]=WARN
[ 104.679013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.680140] Workqueue: events_unbound cfg80211_wiphy_work
[ 104.680461] ==================================================================
[ 104.680912] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.681526] BUG: KASAN: slab-use-after-free in __mutex_lock+0xc72/0x1020
[ 104.682163] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.682679] Read of size 4 at addr ffff888009978034 by task syz-executor.3/283
[ 104.685145] RSP: 0018:ffff888009a0f700 EFLAGS: 00010212
[ 104.685710]
[ 104.685724] CPU: 0 UID: 0 PID: 283 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.685746] Tainted: [D]=DIE, [W]=WARN
[ 104.685750] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.685758] Call Trace:
[ 104.685763]
[ 104.685767] dump_stack_lvl+0xca/0x120
[ 104.685788] print_report+0xcb/0x610
[ 104.685806] ? __virt_addr_valid+0x100/0x5d0
[ 104.685826] ? __mutex_lock+0xc72/0x1020
[ 104.685841] ? __mutex_lock+0xc72/0x1020
[ 104.685857] kasan_report+0xca/0x100
[ 104.685872] ? __mutex_lock+0xc72/0x1020
[ 104.685889] ? __pfx_tun_chr_close+0x10/0x10
[ 104.685907] __mutex_lock+0xc72/0x1020
[ 104.685923] ? tun_chr_close+0x38/0x230
[ 104.685937] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 104.685954] ? __pfx___mutex_lock+0x10/0x10
[ 104.685971] ? __pfx___fsnotify_parent+0x10/0x10
[ 104.685989] ? locks_remove_file+0x2ef/0x5a0
[ 104.686003] ? __pfx_locks_remove_file+0x10/0x10
[ 104.686016] ? kmem_cache_free+0x15b/0x540
[ 104.686028] ? __pfx_tun_chr_close+0x10/0x10
[ 104.686043] tun_chr_close+0x38/0x230
[ 104.686058] __fput+0x401/0xb50
[ 104.686076] task_work_run+0x172/0x280
[ 104.686091] ? __pfx_task_work_run+0x10/0x10
[ 104.686106] do_exit+0x846/0x2970
[ 104.686120] ? _printk+0xbe/0xf0
[ 104.686134] ? __pfx__printk+0x10/0x10
[ 104.686147] ? __pfx_do_exit+0x10/0x10
[ 104.686159] ? __pfx_ksys_write+0x10/0x10
[ 104.686172] make_task_dead+0x174/0x3b0
[ 104.686185] ? do_syscall_64+0xbf/0x360
[ 104.686197] rewind_stack_and_make_dead+0x16/0x20
[ 104.686214] RIP: 0033:0x7fd00a5f05ff
[ 104.686223] Code: Unable to access opcode bytes at 0x7fd00a5f05d5.
[ 104.686228] RSP: 002b:00007fff12bb1b20 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 104.686240] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007fd00a5f05ff
[ 104.686248] RDX: 000000000000000c RSI: 00007fff12bb1c10 RDI: 00000000000000f8
[ 104.686256] RBP: 00007fff12bb1bac R08: 0000000000000000 R09: 00007fd00a72d000
[ 104.686263] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 104.686271] R13: 0000000000019610 R14: 0000000000000003 R15: 00007fff12bb1c10
[ 104.686282]
[ 104.686286]
[ 104.686433]
[ 104.686576] Allocated by task 2:
[ 104.686584] kasan_save_stack+0x24/0x50
[ 104.688169] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 104.688480] kasan_save_track+0x14/0x30
[ 104.689597] RDX: ffff8880099f3700 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 104.689802] __kasan_slab_alloc+0x59/0x70
[ 104.690115] RBP: ffff888009a0f970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.690415] kmem_cache_alloc_node_noprof+0x21a/0x690
[ 104.690921] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.691262] copy_process+0x461/0x73c0
[ 104.691814] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.692128] kernel_clone+0xea/0x7f0
[ 104.692643] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.692952] kernel_thread+0xd7/0x120
[ 104.693560] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.693860] kthreadd+0x4ab/0x760
[ 104.694399] CR2: 00007fa489995718 CR3: 000000000b9df000 CR4: 0000000000350ef0
[ 104.694790] ret_from_fork+0x34b/0x430
[ 104.695372] Call Trace:
[ 104.695736] ret_from_fork_asm+0x1a/0x30
[ 104.696350]
[ 104.696712]
[ 104.696717] Freed by task 22:
[ 104.697286] ? __pfx_perf_tp_event+0x10/0x10
[ 104.697621] kasan_save_stack+0x24/0x50
[ 104.698141] ? ret_from_fork_asm+0x1a/0x30
[ 104.698396] kasan_save_track+0x14/0x30
[ 104.698922] ? stack_trace_save+0x8e/0xc0
[ 104.699260] __kasan_save_free_info+0x3a/0x60
[ 104.699736] ? do_raw_spin_lock+0x123/0x260
[ 104.699999] __kasan_slab_free+0x3f/0x50
[ 104.700535] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 104.700833] kmem_cache_free+0x2a1/0x540
[ 104.701403] ? lock_acquire+0x18c/0x2f0
[ 104.701712] rcu_core+0x7c8/0x1800
[ 104.702256] ? do_raw_spin_lock+0x123/0x260
[ 104.702626] handle_softirqs+0x1b1/0x770
[ 104.703129] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 104.703607] run_ksoftirqd+0x2e/0x60
[ 104.704643] ? _raw_spin_lock_irqsave+0x42/0x60
[ 104.705196] smpboot_thread_fn+0x41d/0x9d0
[ 104.706155] ? lock_release+0x1c7/0x290
[ 104.706704] kthread+0x3c8/0x740
[ 104.707681] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.708236] ret_from_fork+0x34b/0x430
[ 104.708566] perf_trace_run_bpf_submit+0xef/0x180
[ 104.708700] ret_from_fork_asm+0x1a/0x30
[ 104.708946] perf_trace_contention_end+0x235/0x3e0
[ 104.709205]
[ 104.709210] Last potentially related work creation:
[ 104.709745] ? trace_pelt_cfs_tp+0xdf/0x130
[ 104.710294] kasan_save_stack+0x24/0x50
[ 104.710837] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.711385] kasan_record_aux_stack+0x89/0xa0
[ 104.711945] ? __mutex_trylock_common+0xf9/0x260
[ 104.712500] __call_rcu_common.constprop.0+0x70/0x960
[ 104.713192] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.713742] delayed_put_task_struct+0xde/0x260
[ 104.714277] trace_contention_end+0xae/0x110
[ 104.714825] rcu_core+0x7c8/0x1800
[ 104.715327] __mutex_lock+0x166/0x1020
[ 104.715948] handle_softirqs+0x1b1/0x770
[ 104.716468] ? cfg80211_wiphy_work+0x7e/0x480
[ 104.716916] __irq_exit_rcu+0xc4/0x100
[ 104.717386] ? lock_release+0x1c7/0x290
[ 104.717936] irq_exit_rcu+0x9/0x20
[ 104.718457] ? lock_release+0x1c7/0x290
[ 104.718662] sysvec_apic_timer_interrupt+0x70/0x80
[ 104.719212] ? __pfx___mutex_lock+0x10/0x10
[ 104.719388] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 104.719628] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 104.719873]
[ 104.719878] Second to last potentially related work creation:
[ 104.720492] ? __pfx_try_to_wake_up+0x10/0x10
[ 104.720797] kasan_save_stack+0x24/0x50
[ 104.721371] cfg80211_wiphy_work+0x7e/0x480
[ 104.721675] kasan_record_aux_stack+0x89/0xa0
[ 104.722251] process_one_work+0x8e1/0x19c0
[ 104.722594] __call_rcu_common.constprop.0+0x70/0x960
[ 104.723183] ? __pfx_process_one_work+0x10/0x10
[ 104.723491] put_task_struct_rcu_user+0x75/0xc0
[ 104.724173] ? move_linked_works+0x172/0x270
[ 104.724495] __schedule+0xe86/0x3590
[ 104.725038] ? assign_work+0x196/0x240
[ 104.725311] schedule+0xdb/0x390
[ 104.725895] worker_thread+0x67e/0xe90
[ 104.726204] do_nanosleep+0x15e/0x560
[ 104.726833] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.727120] hrtimer_nanosleep+0x13a/0x340
[ 104.727764] ? __pfx_worker_thread+0x10/0x10
[ 104.728086] common_nsleep+0xaa/0xd0
[ 104.728643] kthread+0x3c8/0x740
[ 104.728905] __x64_sys_clock_nanosleep+0x331/0x470
[ 104.729577] ? __pfx_kthread+0x10/0x10
[ 104.729877] do_syscall_64+0xbf/0x360
[ 104.730537] ? ret_from_fork+0x23/0x430
[ 104.730848] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.731511] ? lock_release+0xc8/0x290
[ 104.731647]
[ 104.731651] The buggy address belongs to the object at ffff888009978000
[ 104.731651] which belongs to the cache task_struct of size 6784
[ 104.732322] ? __pfx_kthread+0x10/0x10
[ 104.732653] The buggy address is located 52 bytes inside of
[ 104.732653] freed 6784-byte region [ffff888009978000, ffff888009979a80)
[ 104.733188] ret_from_fork+0x34b/0x430
[ 104.733605]
[ 104.733610] The buggy address belongs to the physical page:
[ 104.734208] ? __pfx_kthread+0x10/0x10
[ 104.734575] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x9978
[ 104.735273] ret_from_fork_asm+0x1a/0x30
[ 104.735671] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 104.736317]
[ 104.736651] memcg:ffff888009ae7781
[ 104.737133] Modules linked in:
[ 104.737433] flags: 0x100000000000040(head|node=0|zone=1)
[ 104.737975]
[ 104.738324] page_type: f5(slab)
[ 104.740146] ---[ end trace 0000000000000000 ]---
[ 104.740458] raw: 0100000000000040 ffff888008ff7640 ffffea00003f9e00 dead000000000002
[ 104.742082] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.742153] raw: 0000000000000000 0000000000040004 00000000f5000000 ffff888009ae7781
[ 104.742763] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.743076] head: 0100000000000040 ffff888008ff7640 ffffea00003f9e00 dead000000000002
[ 104.743087] head: 0000000000000000 0000000000040004 00000000f5000000 ffff888009ae7781
[ 104.743098] head: 0100000000000003 ffffea0000265e01 00000000ffffffff 00000000ffffffff
[ 104.743109] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000008
[ 104.743700] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.744050] page dumped because: kasan: bad access detected
[ 104.744057]
[ 104.744059] Memory state around the buggy address:
[ 104.744065] ffff888009977f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 104.744075] ffff888009977f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 104.744659]
[ 104.745061] >ffff888009978000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 104.745069] ^
[ 104.745076] ffff888009978080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 104.745084] ffff888009978100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 104.745775] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.746134] ==================================================================
[ 104.789152] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.790190] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.791232] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.792284] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.793329] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.794501] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.795371] CR2: 00007fa489995718 CR3: 000000000b9df000 CR4: 0000000000350ef0
[ 104.796425] note: kworker/u10:1[34] exited with preempt_count 2
[ 104.799125] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#10] SMP KASAN NOPTI
[ 104.800720] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 104.801953] CPU: 1 UID: 0 PID: 318 Comm: kworker/u10:4 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.803623] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 104.804345] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.805511] Workqueue: events_unbound cfg80211_wiphy_work
[ 104.806294] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.806976] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.809545] RSP: 0018:ffff888016e97700 EFLAGS: 00010212
[ 104.810298] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 104.811308] RDX: ffff88801708b700 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 104.812330] RBP: ffff888016e97970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.813340] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.814349] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.815365] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.816512] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.817345] CR2: 00007fa489995718 CR3: 000000000b9df000 CR4: 0000000000350ef0
[ 104.818358] Call Trace:
[ 104.818735]
[ 104.819072] ? __pfx_perf_tp_event+0x10/0x10
[ 104.819724] ? ret_from_fork_asm+0x1a/0x30
[ 104.820350] ? stack_trace_save+0x8e/0xc0
[ 104.820955] ? stack_depot_save_flags+0x2c/0xa20
[ 104.821639] ? kasan_save_stack+0x34/0x50
[ 104.822238] ? kasan_save_stack+0x24/0x50
[ 104.822839] ? kasan_save_track+0x14/0x30
[ 104.823443] ? __kasan_save_free_info+0x3a/0x60
[ 104.824111] ? __kasan_slab_free+0x3f/0x50
[ 104.824737] ? kmem_cache_free+0x2a1/0x540
[ 104.825347] ? kfree_skbmem+0x18a/0x1f0
[ 104.825922] ? sk_skb_reason_drop+0x10e/0x1b0
[ 104.826585] ? ieee80211_iface_work+0x43c/0x1220
[ 104.827272] ? cfg80211_wiphy_work+0x245/0x480
[ 104.827933] ? process_one_work+0x8e1/0x19c0
[ 104.828582] ? worker_thread+0x67e/0xe90
[ 104.829176] ? kthread+0x3c8/0x740
[ 104.829696] ? ret_from_fork+0x34b/0x430
[ 104.830294] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.831024] perf_trace_run_bpf_submit+0xef/0x180
[ 104.831731] perf_trace_contention_end+0x235/0x3e0
[ 104.832446] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.833224] ? __mutex_trylock_common+0xf9/0x260
[ 104.833904] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.834643] trace_contention_end+0xae/0x110
[ 104.835272] __mutex_lock+0x166/0x1020
[ 104.835827] ? cfg80211_wiphy_work+0x7e/0x480
[ 104.836468] ? lock_release+0x1c7/0x290
[ 104.837034] ? lock_release+0x1c7/0x290
[ 104.837597] ? __pfx___mutex_lock+0x10/0x10
[ 104.838208] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 104.838933] ? __pfx_try_to_wake_up+0x10/0x10
[ 104.839568] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.840314] cfg80211_wiphy_work+0x7e/0x480
[ 104.840935] process_one_work+0x8e1/0x19c0
[ 104.841531] ? __pfx_process_one_work+0x10/0x10
[ 104.842191] ? move_linked_works+0x172/0x270
[ 104.842826] ? assign_work+0x196/0x240
[ 104.843374] worker_thread+0x67e/0xe90
[ 104.843932] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.844667] ? __pfx_worker_thread+0x10/0x10
[ 104.845303] kthread+0x3c8/0x740
[ 104.845783] ? __pfx_kthread+0x10/0x10
[ 104.846335] ? ret_from_fork+0x23/0x430
[ 104.846905] ? lock_release+0xc8/0x290
[ 104.847465] ? __pfx_kthread+0x10/0x10
[ 104.848014] ret_from_fork+0x34b/0x430
[ 104.848576] ? __pfx_kthread+0x10/0x10
[ 104.849121] ret_from_fork_asm+0x1a/0x30
[ 104.849700]
[ 104.850031] Modules linked in:
[ 104.852455] ---[ end trace 0000000000000000 ]---
[ 104.854183] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.854859] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.857495] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.858356] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.859417] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.860427] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.861446] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.862454] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.863461] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.864619] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.865463] CR2: 00007fa489995718 CR3: 000000000b9df000 CR4: 0000000000350ef0
[ 104.866480] note: kworker/u10:4[318] exited with preempt_count 2
[ 104.870524] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#11] SMP KASAN NOPTI
[ 104.872068] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 104.873274] CPU: 1 UID: 0 PID: 3812 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.874894] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 104.875581] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.876712] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.877372] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.879862] RSP: 0018:ffff88800a7e7480 EFLAGS: 00010212
[ 104.880617] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 104.881588] RDX: ffff888013f2d280 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 104.882587] RBP: ffff88800a7e76f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.883559] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.884556] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.885537] FS: 00007fb4bf4b48c0(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.886636] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.887440] CR2: 00007fa489995718 CR3: 000000001ed9e000 CR4: 0000000000350ef0
[ 104.888439] Call Trace:
[ 104.888801]
[ 104.889126] ? kernel_text_address+0x5b/0xc0
[ 104.889750] ? lock_release+0x1c7/0x290
[ 104.890314] ? __pfx_perf_tp_event+0x10/0x10
[ 104.890942] ? stack_trace_save+0x8e/0xc0
[ 104.891526] ? stack_depot_save_flags+0x2c/0xa20
[ 104.892193] ? lock_acquire+0x18c/0x2f0
[ 104.892763] ? lock_release+0x1c7/0x290
[ 104.893327] ? lock_acquire+0x18c/0x2f0
[ 104.893887] ? lock_acquire+0x18c/0x2f0
[ 104.894455] ? lock_release+0x1c7/0x290
[ 104.895012] ? __is_insn_slot_addr+0x140/0x290
[ 104.895663] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.896369] perf_trace_run_bpf_submit+0xef/0x180
[ 104.897051] perf_trace_contention_end+0x235/0x3e0
[ 104.897739] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.898498] ? __mutex_trylock_common+0xf9/0x260
[ 104.899160] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.899882] trace_contention_end+0xae/0x110
[ 104.900518] __mutex_lock+0x166/0x1020
[ 104.901076] ? kernfs_fop_open+0x6bd/0xdd0
[ 104.901683] ? __memcg_slab_post_alloc_hook+0x4ac/0x9d0
[ 104.902434] ? __pfx___mutex_lock+0x10/0x10
[ 104.903037] ? __create_object+0x59/0x80
[ 104.903623] ? lockdep_init_map_type+0x4b/0x240
[ 104.904286] ? __raw_spin_lock_init+0x3a/0x110
[ 104.904929] ? lockdep_init_map_type+0x4b/0x240
[ 104.905586] ? debug_mutex_init+0x37/0x70
[ 104.906177] kernfs_fop_open+0x6bd/0xdd0
[ 104.906761] do_dentry_open+0x71c/0x1420
[ 104.907333] ? __pfx_kernfs_fop_open+0x10/0x10
[ 104.907979] ? inode_permission+0x134/0x610
[ 104.908597] vfs_open+0x82/0x3f0
[ 104.909081] ? may_open+0x1f3/0x420
[ 104.909602] path_openat+0x1c3f/0x2880
[ 104.910153] ? stack_trace_save+0x8e/0xc0
[ 104.910736] ? __pfx_path_openat+0x10/0x10
[ 104.911333] ? stack_depot_save_flags+0x2c/0xa20
[ 104.911987] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.912718] do_filp_open+0x1e8/0x450
[ 104.913257] ? __pfx_do_filp_open+0x10/0x10
[ 104.913853] ? lock_acquire+0x18c/0x2f0
[ 104.914423] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 104.915085] ? lock_release+0x1c7/0x290
[ 104.915650] ? alloc_fd+0x2c1/0x560
[ 104.916169] do_sys_openat2+0x104/0x1b0
[ 104.916740] ? __pfx_do_sys_openat2+0x10/0x10
[ 104.917378] ? __pfx___seccomp_filter+0x10/0x10
[ 104.918030] __x64_sys_openat+0x142/0x200
[ 104.918617] ? __pfx___x64_sys_openat+0x10/0x10
[ 104.919274] ? __secure_computing+0x18d/0x290
[ 104.919921] do_syscall_64+0xbf/0x360
[ 104.920459] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.921174] RIP: 0033:0x7fb4bf963be7
[ 104.921689] Code: 25 00 00 41 00 3d 00 00 41 00 74 47 64 8b 04 25 18 00 00 00 85 c0 75 6b 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 95 00 00 00 48 8b 4c 24 28 64 48 2b 0c 25
[ 104.924165] RSP: 002b:00007ffe99616da0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 104.925209] RAX: ffffffffffffffda RBX: 000055b8c25867c0 RCX: 00007fb4bf963be7
[ 104.926192] RDX: 0000000000080000 RSI: 00007ffe99616fe0 RDI: 00000000ffffff9c
[ 104.927165] RBP: 00007ffe99616fe0 R08: 0000000000000008 R09: 0000000000000001
[ 104.928152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000080000
[ 104.929128] R13: 000055b8c25867c0 R14: 0000000000000001 R15: 000055b8c25c87b0
[ 104.930118]
[ 104.930448] Modules linked in:
[ 104.932380] ---[ end trace 0000000000000000 ]---
[ 104.935009] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.935722] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.938272] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 104.939010] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 104.940025] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 104.941034] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.942064] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 104.943086] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.944083] FS: 00007fb4bf4b48c0(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.945226] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.946031] CR2: 00007fa489995718 CR3: 000000001ed9e000 CR4: 0000000000350ef0
[ 104.947082] note: systemd-udevd[3812] exited with preempt_count 2
[ 104.947969] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#12] SMP KASAN NOPTI
[ 104.949509] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 104.950694] CPU: 1 UID: 0 PID: 26 Comm: kworker/u10:0 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 104.952296] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 104.952984] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 104.954113] Workqueue: events_unbound cfg80211_wiphy_work
[ 104.954895] RIP: 0010:perf_tp_event+0x175/0xe70
[ 104.955600] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 104.958122] RSP: 0018:ffff888009777700 EFLAGS: 00010212
[ 104.958877] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 104.959880] RDX: ffff888009753700 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 104.960901] RBP: ffff888009777970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 104.961899] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 104.962912] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 104.963929] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 104.965092] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 104.965927] CR2: 00007fa489995718 CR3: 000000001ed9e000 CR4: 0000000000350ef0
[ 104.966952] Call Trace:
[ 104.967330]
[ 104.967670] ? __pfx_perf_tp_event+0x10/0x10
[ 104.968333] ? ret_from_fork_asm+0x1a/0x30
[ 104.968954] ? stack_trace_save+0x8e/0xc0
[ 104.969558] ? stack_depot_save_flags+0x2c/0xa20
[ 104.970253] ? kasan_save_stack+0x34/0x50
[ 104.970859] ? kasan_save_stack+0x24/0x50
[ 104.971468] ? kasan_save_track+0x14/0x30
[ 104.972082] ? __kasan_save_free_info+0x3a/0x60
[ 104.972763] ? __kasan_slab_free+0x3f/0x50
[ 104.973397] ? kmem_cache_free+0x2a1/0x540
[ 104.974011] ? kfree_skbmem+0x18a/0x1f0
[ 104.974590] ? sk_skb_reason_drop+0x10e/0x1b0
[ 104.975252] ? ieee80211_iface_work+0x43c/0x1220
[ 104.975946] ? cfg80211_wiphy_work+0x245/0x480
[ 104.976614] ? process_one_work+0x8e1/0x19c0
[ 104.977266] ? worker_thread+0x67e/0xe90
[ 104.977863] ? kthread+0x3c8/0x740
[ 104.978389] ? ret_from_fork+0x34b/0x430
[ 104.978991] ? perf_trace_run_bpf_submit+0xef/0x180
[ 104.979715] perf_trace_run_bpf_submit+0xef/0x180
[ 104.980432] perf_trace_contention_end+0x235/0x3e0
[ 104.981143] ? trace_pelt_cfs_tp+0xdf/0x130
[ 104.981767] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 104.982546] ? __mutex_trylock_common+0xf9/0x260
[ 104.983241] ? __pfx___mutex_trylock_common+0x10/0x10
[ 104.983988] trace_contention_end+0xae/0x110
[ 104.984656] __mutex_lock+0x166/0x1020
[ 104.985235] ? cfg80211_wiphy_work+0x7e/0x480
[ 104.985889] ? lock_release+0x1c7/0x290
[ 104.986487] ? lock_release+0x1c7/0x290
[ 104.987072] ? __pfx___mutex_lock+0x10/0x10
[ 104.987707] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 104.988453] ? __pfx_try_to_wake_up+0x10/0x10
[ 104.989119] cfg80211_wiphy_work+0x7e/0x480
[ 104.989740] process_one_work+0x8e1/0x19c0
[ 104.990362] ? __pfx_process_one_work+0x10/0x10
[ 104.991043] ? move_linked_works+0x172/0x270
[ 104.991700] ? assign_work+0x196/0x240
[ 104.992281] worker_thread+0x67e/0xe90
[ 104.992862] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 104.993626] ? __pfx_worker_thread+0x10/0x10
[ 104.994280] kthread+0x3c8/0x740
[ 104.994778] ? __pfx_kthread+0x10/0x10
[ 104.995352] ? ret_from_fork+0x23/0x430
[ 104.995939] ? lock_release+0xc8/0x290
[ 104.996555] ? __pfx_kthread+0x10/0x10
[ 104.997171] ret_from_fork+0x34b/0x430
[ 104.997746] ? __pfx_kthread+0x10/0x10
[ 104.998316] ret_from_fork_asm+0x1a/0x30
[ 104.998920]
[ 104.999263] Modules linked in:
[ 104.999817] ---[ end trace 0000000000000000 ]---
[ 105.000544] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.001259] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.004002] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 105.004813] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 105.005856] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 105.006905] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.007967] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 105.009033] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.010098] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.011284] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.012152] CR2: 00007fa489995718 CR3: 0000000005a88000 CR4: 0000000000350ef0
[ 105.013211] note: kworker/u10:0[26] exited with preempt_count 2
[ 105.014129] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#13] SMP KASAN NOPTI
[ 105.015722] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 105.016960] CPU: 1 UID: 0 PID: 691 Comm: kworker/u10:7 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 105.018649] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 105.019365] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 105.020564] Workqueue: events_unbound cfg80211_wiphy_work
[ 105.021353] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.022034] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.024633] RSP: 0018:ffff88801b6c7700 EFLAGS: 00010212
[ 105.025399] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 105.026419] RDX: ffff888018620000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 105.027449] RBP: ffff88801b6c7970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.028493] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 105.029509] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.030537] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.031690] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.032542] CR2: 00007fa489995718 CR3: 0000000005a88000 CR4: 0000000000350ef0
[ 105.033617] Call Trace:
[ 105.034031]
[ 105.034400] ? __pfx_perf_tp_event+0x10/0x10
[ 105.035077] ? ret_from_fork_asm+0x1a/0x30
[ 105.035708] ? stack_trace_save+0x8e/0xc0
[ 105.036330] ? stack_depot_save_flags+0x2c/0xa20
[ 105.037023] ? kasan_save_stack+0x34/0x50
[ 105.037629] ? kasan_save_stack+0x24/0x50
[ 105.038246] ? kasan_save_track+0x14/0x30
[ 105.038858] ? __kasan_save_free_info+0x3a/0x60
[ 105.039536] ? __kasan_slab_free+0x3f/0x50
[ 105.040154] ? kmem_cache_free+0x2a1/0x540
[ 105.040781] ? kfree_skbmem+0x18a/0x1f0
[ 105.041365] ? sk_skb_reason_drop+0x10e/0x1b0
[ 105.042032] ? ieee80211_iface_work+0x43c/0x1220
[ 105.042725] ? cfg80211_wiphy_work+0x245/0x480
[ 105.043391] ? process_one_work+0x8e1/0x19c0
[ 105.044046] ? worker_thread+0x67e/0xe90
[ 105.044642] ? kthread+0x3c8/0x740
[ 105.045169] ? ret_from_fork+0x34b/0x430
[ 105.045770] ? perf_trace_run_bpf_submit+0xef/0x180
[ 105.046508] perf_trace_run_bpf_submit+0xef/0x180
[ 105.047216] perf_trace_contention_end+0x235/0x3e0
[ 105.047935] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 105.048730] ? __mutex_trylock_common+0xf9/0x260
[ 105.049424] ? __pfx___mutex_trylock_common+0x10/0x10
[ 105.050174] trace_contention_end+0xae/0x110
[ 105.050817] __mutex_lock+0x166/0x1020
[ 105.051396] ? cfg80211_wiphy_work+0x7e/0x480
[ 105.052048] ? lock_release+0x1c7/0x290
[ 105.052643] ? lock_release+0x1c7/0x290
[ 105.053234] ? __pfx___mutex_lock+0x10/0x10
[ 105.053865] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 105.054605] ? __pfx_try_to_wake_up+0x10/0x10
[ 105.055276] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.056032] cfg80211_wiphy_work+0x7e/0x480
[ 105.056662] process_one_work+0x8e1/0x19c0
[ 105.057287] ? __pfx_process_one_work+0x10/0x10
[ 105.057964] ? move_linked_works+0x172/0x270
[ 105.058615] ? assign_work+0x196/0x240
[ 105.059191] worker_thread+0x67e/0xe90
[ 105.059761] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.060536] ? __pfx_worker_thread+0x10/0x10
[ 105.061186] kthread+0x3c8/0x740
[ 105.061701] ? __pfx_kthread+0x10/0x10
[ 105.062268] ? ret_from_fork+0x23/0x430
[ 105.062861] ? lock_release+0xc8/0x290
[ 105.063437] ? __pfx_kthread+0x10/0x10
[ 105.064006] ret_from_fork+0x34b/0x430
[ 105.064588] ? __pfx_kthread+0x10/0x10
[ 105.065162] ret_from_fork_asm+0x1a/0x30
[ 105.065759]
[ 105.066103] Modules linked in:
[ 105.067927] ---[ end trace 0000000000000000 ]---
[ 105.070026] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.070846] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.073566] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 105.074363] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 105.075415] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 105.076481] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.077530] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 105.078584] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.079641] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.080834] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.081712] CR2: 00007fa489995718 CR3: 0000000005a88000 CR4: 0000000000350ef0
[ 105.082761] note: kworker/u10:7[691] exited with preempt_count 2
[ 105.086163] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#14] SMP KASAN NOPTI
[ 105.087770] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 105.089025] CPU: 1 UID: 0 PID: 44 Comm: kworker/u10:2 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 105.090699] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 105.091424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 105.092616] Workqueue: events_unbound cfg80211_wiphy_work
[ 105.093418] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.094103] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.096694] RSP: 0018:ffff88800a547700 EFLAGS: 00010212
[ 105.097454] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 105.098477] RDX: ffff88800a538000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 105.099491] RBP: ffff88800a547970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.100519] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 105.101543] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.102575] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.103718] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.104572] CR2: 00007fa489995718 CR3: 0000000005a88000 CR4: 0000000000350ef0
[ 105.105595] Call Trace:
[ 105.105974]
[ 105.106319] ? __pfx_perf_tp_event+0x10/0x10
[ 105.106985] ? ret_from_fork_asm+0x1a/0x30
[ 105.107612] ? stack_trace_save+0x8e/0xc0
[ 105.108228] ? stack_depot_save_flags+0x2c/0xa20
[ 105.108913] ? kasan_save_stack+0x34/0x50
[ 105.109522] ? kasan_save_stack+0x24/0x50
[ 105.110127] ? kasan_save_track+0x14/0x30
[ 105.110735] ? __kasan_save_free_info+0x3a/0x60
[ 105.111410] ? __kasan_slab_free+0x3f/0x50
[ 105.112025] ? kmem_cache_free+0x2a1/0x540
[ 105.112645] ? kfree_skbmem+0x18a/0x1f0
[ 105.113229] ? sk_skb_reason_drop+0x10e/0x1b0
[ 105.113912] ? ieee80211_iface_work+0x43c/0x1220
[ 105.114610] ? cfg80211_wiphy_work+0x245/0x480
[ 105.115275] ? process_one_work+0x8e1/0x19c0
[ 105.115918] ? worker_thread+0x67e/0xe90
[ 105.116517] ? kthread+0x3c8/0x740
[ 105.117038] ? ret_from_fork+0x34b/0x430
[ 105.117640] ? perf_trace_run_bpf_submit+0xef/0x180
[ 105.118385] perf_trace_run_bpf_submit+0xef/0x180
[ 105.119087] perf_trace_contention_end+0x235/0x3e0
[ 105.119794] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 105.120577] ? __mutex_trylock_common+0xf9/0x260
[ 105.121275] ? __pfx___mutex_trylock_common+0x10/0x10
[ 105.122016] ? ieee80211_ibss_work+0xb6/0x1360
[ 105.122691] trace_contention_end+0xae/0x110
[ 105.123343] __mutex_lock+0x166/0x1020
[ 105.123919] ? cfg80211_wiphy_work+0x7e/0x480
[ 105.124578] ? lock_release+0x1c7/0x290
[ 105.125162] ? __pfx___mutex_lock+0x10/0x10
[ 105.125803] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 105.126544] ? __pfx_try_to_wake_up+0x10/0x10
[ 105.127216] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.127978] cfg80211_wiphy_work+0x7e/0x480
[ 105.128620] process_one_work+0x8e1/0x19c0
[ 105.129241] ? __pfx_process_one_work+0x10/0x10
[ 105.129924] ? move_linked_works+0x172/0x270
[ 105.130573] ? assign_work+0x196/0x240
[ 105.131148] worker_thread+0x67e/0xe90
[ 105.131724] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.132493] ? __pfx_worker_thread+0x10/0x10
[ 105.133148] kthread+0x3c8/0x740
[ 105.133649] ? __pfx_kthread+0x10/0x10
[ 105.134221] ? ret_from_fork+0x23/0x430
[ 105.134811] ? lock_release+0xc8/0x290
[ 105.135378] ? __pfx_kthread+0x10/0x10
[ 105.135951] ret_from_fork+0x34b/0x430
[ 105.136546] ? __pfx_kthread+0x10/0x10
[ 105.137117] ret_from_fork_asm+0x1a/0x30
[ 105.137717]
[ 105.138070] Modules linked in:
[ 105.142787] ---[ end trace 0000000000000000 ]---
[ 105.152473] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.153211] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.155838] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 105.156642] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 105.157694] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 105.158736] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.159795] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 105.160858] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.161921] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.163095] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.163937] CR2: 00007fa489995718 CR3: 0000000005a88000 CR4: 0000000000350ef0
[ 105.164997] note: kworker/u10:2[44] exited with preempt_count 2
[ 105.227534] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#15] SMP KASAN NOPTI
[ 105.229180] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 105.230428] CPU: 1 UID: 0 PID: 247 Comm: kworker/u10:3 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 105.232126] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 105.232859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 105.234039] Workqueue: events_unbound cfg80211_wiphy_work
[ 105.234831] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.235521] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.238114] RSP: 0018:ffff888016867700 EFLAGS: 00010212
[ 105.238875] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 105.239894] RDX: ffff88801b825280 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 105.240931] RBP: ffff888016867970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.241955] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 105.242974] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.243997] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.245158] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.245998] CR2: 00007fa489995718 CR3: 000000003c35f000 CR4: 0000000000350ef0
[ 105.247019] Call Trace:
[ 105.247396]
[ 105.247736] ? __pfx_perf_tp_event+0x10/0x10
[ 105.248410] ? ret_from_fork_asm+0x1a/0x30
[ 105.249037] ? stack_trace_save+0x8e/0xc0
[ 105.249652] ? stack_depot_save_flags+0x2c/0xa20
[ 105.250343] ? kasan_save_stack+0x34/0x50
[ 105.250943] ? kasan_save_stack+0x24/0x50
[ 105.251559] ? kasan_save_track+0x14/0x30
[ 105.252168] ? __kasan_save_free_info+0x3a/0x60
[ 105.252862] ? __kasan_slab_free+0x3f/0x50
[ 105.253488] ? kmem_cache_free+0x2a1/0x540
[ 105.254102] ? kfree_skbmem+0x18a/0x1f0
[ 105.254685] ? sk_skb_reason_drop+0x10e/0x1b0
[ 105.255345] ? ieee80211_iface_work+0x43c/0x1220
[ 105.256039] ? cfg80211_wiphy_work+0x245/0x480
[ 105.256710] ? process_one_work+0x8e1/0x19c0
[ 105.257354] ? worker_thread+0x67e/0xe90
[ 105.257944] ? kthread+0x3c8/0x740
[ 105.258472] ? ret_from_fork+0x34b/0x430
[ 105.259070] ? perf_trace_run_bpf_submit+0xef/0x180
[ 105.259803] perf_trace_run_bpf_submit+0xef/0x180
[ 105.260521] perf_trace_contention_end+0x235/0x3e0
[ 105.261236] ? trace_pelt_cfs_tp+0xdf/0x130
[ 105.261864] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 105.262646] ? __mutex_trylock_common+0xf9/0x260
[ 105.263334] ? __pfx___mutex_trylock_common+0x10/0x10
[ 105.264083] trace_contention_end+0xae/0x110
[ 105.264735] __mutex_lock+0x166/0x1020
[ 105.265318] ? cfg80211_wiphy_work+0x7e/0x480
[ 105.265964] ? lock_release+0x1c7/0x290
[ 105.266552] ? lock_release+0x1c7/0x290
[ 105.267138] ? __pfx___mutex_lock+0x10/0x10
[ 105.267776] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 105.268523] ? __pfx_try_to_wake_up+0x10/0x10
[ 105.269196] cfg80211_wiphy_work+0x7e/0x480
[ 105.269826] process_one_work+0x8e1/0x19c0
[ 105.270442] ? __pfx_process_one_work+0x10/0x10
[ 105.271119] ? move_linked_works+0x172/0x270
[ 105.271779] ? assign_work+0x196/0x240
[ 105.272353] worker_thread+0x67e/0xe90
[ 105.272932] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.273688] ? __pfx_worker_thread+0x10/0x10
[ 105.274344] kthread+0x3c8/0x740
[ 105.274846] ? __pfx_kthread+0x10/0x10
[ 105.275423] ? ret_from_fork+0x23/0x430
[ 105.276019] ? lock_release+0xc8/0x290
[ 105.276597] ? __pfx_kthread+0x10/0x10
[ 105.277170] ret_from_fork+0x34b/0x430
[ 105.277744] ? __pfx_kthread+0x10/0x10
[ 105.278310] ret_from_fork_asm+0x1a/0x30
[ 105.278913]
[ 105.279258] Modules linked in:
[ 105.279799] ---[ end trace 0000000000000000 ]---
[ 105.280528] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.281257] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.283886] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 105.284708] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 105.285769] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 105.286834] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.287892] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 105.288951] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.290011] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.291194] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.292036] CR2: 00007fa489995718 CR3: 000000003c35f000 CR4: 0000000000350ef0
[ 105.293157] note: kworker/u10:3[247] exited with preempt_count 2
[ 105.294815] kworker/u10:3 (247) used greatest stack depth: 24000 bytes left
[ 105.330966] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#16] SMP KASAN NOPTI
[ 105.332591] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 105.333836] CPU: 1 UID: 0 PID: 683 Comm: kworker/u10:6 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 105.335511] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 105.336239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 105.337414] Workqueue: events_unbound cfg80211_wiphy_work
[ 105.338218] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.338906] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.341510] RSP: 0018:ffff8880169e7700 EFLAGS: 00010212
[ 105.342274] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 105.343302] RDX: ffff88800ff6b700 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 105.344337] RBP: ffff8880169e7970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.345360] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 105.346391] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.347414] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.348576] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.349421] CR2: 00007fa489995718 CR3: 000000003c35f000 CR4: 0000000000350ef0
[ 105.350447] Call Trace:
[ 105.350825]
[ 105.351157] ? arch_stack_walk+0x86/0xf0
[ 105.351754] ? __pfx_perf_tp_event+0x10/0x10
[ 105.352420] ? stack_trace_save+0x8e/0xc0
[ 105.353031] ? stack_depot_save_flags+0x2c/0xa20
[ 105.353728] ? kasan_save_stack+0x34/0x50
[ 105.354346] ? kasan_save_stack+0x24/0x50
[ 105.354950] ? kasan_save_track+0x14/0x30
[ 105.355553] ? __kasan_save_free_info+0x3a/0x60
[ 105.356230] ? __kasan_slab_free+0x3f/0x50
[ 105.356852] ? kfree+0x281/0x550
[ 105.357369] ? __kthread_create_on_node+0x29d/0x3c0
[ 105.358104] ? kthread_create_on_node+0xbe/0x100
[ 105.358804] ? create_worker+0x408/0x800
[ 105.359409] ? worker_thread+0x956/0xe90
[ 105.360007] ? kthread+0x3c8/0x740
[ 105.360544] ? ret_from_fork+0x34b/0x430
[ 105.361150] ? ret_from_fork_asm+0x1a/0x30
[ 105.361782] ? __lock_acquire+0x694/0x1b70
[ 105.362412] ? perf_trace_run_bpf_submit+0xef/0x180
[ 105.363142] ? find_held_lock+0x2b/0x80
[ 105.363748] perf_trace_run_bpf_submit+0xef/0x180
[ 105.364461] perf_trace_contention_end+0x235/0x3e0
[ 105.365182] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 105.365976] ? __mutex_trylock_common+0xf9/0x260
[ 105.366671] ? __pfx___mutex_trylock_common+0x10/0x10
[ 105.367429] trace_contention_end+0xae/0x110
[ 105.368085] __mutex_lock+0x166/0x1020
[ 105.368672] ? cfg80211_wiphy_work+0x7e/0x480
[ 105.369328] ? __pfx___mutex_lock+0x10/0x10
[ 105.369960] ? __pfx___perf_event_task_sched_in+0x10/0x10
[ 105.370761] ? lock_acquire+0x18c/0x2f0
[ 105.371358] ? lock_release+0x1c7/0x290
[ 105.371943] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.372713] cfg80211_wiphy_work+0x7e/0x480
[ 105.373345] process_one_work+0x8e1/0x19c0
[ 105.373974] ? __pfx_process_one_work+0x10/0x10
[ 105.374666] ? move_linked_works+0x172/0x270
[ 105.375323] ? assign_work+0x196/0x240
[ 105.375899] worker_thread+0x67e/0xe90
[ 105.376487] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.377257] ? __pfx_worker_thread+0x10/0x10
[ 105.377902] kthread+0x3c8/0x740
[ 105.378407] ? __pfx_kthread+0x10/0x10
[ 105.378988] ? ret_from_fork+0x23/0x430
[ 105.379579] ? lock_release+0xc8/0x290
[ 105.380151] ? __pfx_kthread+0x10/0x10
[ 105.380734] ret_from_fork+0x34b/0x430
[ 105.381311] ? __pfx_kthread+0x10/0x10
[ 105.381886] ret_from_fork_asm+0x1a/0x30
[ 105.382496]
[ 105.382840] Modules linked in:
[ 105.383512] ---[ end trace 0000000000000000 ]---
[ 105.384251] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.384952] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.387591] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 105.388414] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 105.389470] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 105.390526] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.391605] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 105.392665] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.393728] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.394913] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.395778] CR2: 00007fa489995718 CR3: 000000003c35f000 CR4: 0000000000350ef0
[ 105.396849] note: kworker/u10:6[683] exited with preempt_count 2
[ 105.440950] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#17] SMP KASAN NOPTI
[ 105.442962] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 105.444509] CPU: 1 UID: 0 PID: 3966 Comm: kworker/u10:8 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 105.446575] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 105.447461] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 105.448918] Workqueue: events_unbound cfg80211_wiphy_work
[ 105.449907] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.450746] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.453865] RSP: 0018:ffff888016867700 EFLAGS: 00010212
[ 105.454788] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 105.456028] RDX: ffff888016231b80 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 105.457289] RBP: ffff888016867970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.458529] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 105.459756] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.461022] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.462413] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.463442] CR2: 00007fa489995718 CR3: 000000003c35f000 CR4: 0000000000350ef0
[ 105.464704] Call Trace:
[ 105.465179]
[ 105.465601] ? __pfx_perf_tp_event+0x10/0x10
[ 105.466420] ? perf_trace_run_bpf_submit+0xef/0x180
[ 105.467308] perf_trace_run_bpf_submit+0xef/0x180
[ 105.468178] perf_trace_contention_end+0x235/0x3e0
[ 105.469088] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 105.470048] ? __mutex_trylock_common+0xf9/0x260
[ 105.470913] ? __pfx___mutex_trylock_common+0x10/0x10
[ 105.471836] trace_contention_end+0xae/0x110
[ 105.472654] __mutex_lock+0x166/0x1020
[ 105.473302] ? cfg80211_wiphy_work+0x7e/0x480
[ 105.473973] ? __pfx___mutex_lock+0x10/0x10
[ 105.474628] ? __pfx___perf_event_task_sched_in+0x10/0x10
[ 105.475431] ? lock_acquire+0x18c/0x2f0
[ 105.476027] ? lock_release+0x1c7/0x290
[ 105.476623] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.477414] cfg80211_wiphy_work+0x7e/0x480
[ 105.478046] process_one_work+0x8e1/0x19c0
[ 105.478680] ? __pfx___mutex_lock+0x10/0x10
[ 105.479328] ? __pfx_process_one_work+0x10/0x10
[ 105.480015] ? move_linked_works+0x172/0x270
[ 105.480698] ? assign_work+0x196/0x240
[ 105.481292] worker_thread+0x67e/0xe90
[ 105.481872] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.482650] ? __pfx_worker_thread+0x10/0x10
[ 105.483310] kthread+0x3c8/0x740
[ 105.483827] ? __pfx_kthread+0x10/0x10
[ 105.484422] ? finish_task_switch.isra.0+0x206/0x840
[ 105.485187] ? __pfx_kthread+0x10/0x10
[ 105.485772] ? lock_release+0x1c7/0x290
[ 105.486365] ? __pfx_kthread+0x10/0x10
[ 105.486949] ret_from_fork+0x34b/0x430
[ 105.487537] ? __pfx_kthread+0x10/0x10
[ 105.488131] ret_from_fork_asm+0x1a/0x30
[ 105.488774]
[ 105.489138] Modules linked in:
[ 105.489793] ---[ end trace 0000000000000000 ]---
[ 105.490528] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.491274] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.493993] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 105.494820] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 105.495906] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 105.496993] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.498070] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 105.499139] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.500205] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.501413] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.502298] CR2: 00007fa489995718 CR3: 000000003c35f000 CR4: 0000000000350ef0
[ 105.503372] note: kworker/u10:8[3966] exited with preempt_count 2
[ 105.509116] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#18] SMP KASAN NOPTI
[ 105.510745] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 105.512014] CPU: 1 UID: 0 PID: 349 Comm: kworker/u10:5 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 105.513716] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 105.514442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 105.515651] Workqueue: 0x0 (events_unbound)
[ 105.516320] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.517021] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.519625] RSP: 0018:ffff888015a47780 EFLAGS: 00010212
[ 105.520425] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 105.521463] RDX: ffff88801b6bb700 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 105.522487] RBP: ffff888015a479f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.523522] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 105.524562] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.525595] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.526751] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.527602] CR2: 00007fa489995718 CR3: 00000000402c4000 CR4: 0000000000350ef0
[ 105.528655] Call Trace:
[ 105.529038]
[ 105.529385] ? __pfx_perf_tp_event+0x10/0x10
[ 105.530046] ? kasan_save_stack+0x34/0x50
[ 105.530660] ? kasan_save_stack+0x24/0x50
[ 105.531278] ? kasan_save_track+0x14/0x30
[ 105.531897] ? __kasan_save_free_info+0x3a/0x60
[ 105.532595] ? __kasan_slab_free+0x3f/0x50
[ 105.533224] ? kfree+0x281/0x550
[ 105.533742] ? __kthread_create_on_node+0x29d/0x3c0
[ 105.534488] ? kthread_create_on_node+0xbe/0x100
[ 105.535196] ? create_worker+0x408/0x800
[ 105.535795] ? worker_thread+0x956/0xe90
[ 105.536415] ? kthread+0x3c8/0x740
[ 105.536950] ? ret_from_fork+0x34b/0x430
[ 105.537565] ? ret_from_fork_asm+0x1a/0x30
[ 105.538198] ? kthread_data+0x53/0xc0
[ 105.538772] ? queued_spin_lock_slowpath+0xe8/0xb60
[ 105.539519] ? __pfx_queued_spin_lock_slowpath+0x10/0x10
[ 105.540337] ? __pfx_schedule_timeout+0x10/0x10
[ 105.541025] ? lock_acquire+0x18c/0x2f0
[ 105.541621] ? perf_trace_run_bpf_submit+0xef/0x180
[ 105.542359] ? __virt_addr_valid+0x100/0x5d0
[ 105.543023] perf_trace_run_bpf_submit+0xef/0x180
[ 105.543747] perf_trace_contention_end+0x235/0x3e0
[ 105.544494] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 105.545290] ? __mutex_trylock_common+0xf9/0x260
[ 105.546006] ? __pfx___mutex_trylock_common+0x10/0x10
[ 105.546772] trace_contention_end+0xae/0x110
[ 105.547429] __mutex_lock+0x166/0x1020
[ 105.548025] ? worker_attach_to_pool+0x25/0x3c0
[ 105.548745] ? wait_task_inactive+0x669/0xa20
[ 105.549415] ? set_cpus_allowed_fair+0xd/0x20
[ 105.550090] ? __do_set_cpus_allowed+0x1a6/0x8d0
[ 105.550808] ? __pfx___mutex_lock+0x10/0x10
[ 105.551461] ? do_set_cpus_allowed+0x7a/0xd0
[ 105.552109] ? __pfx_do_set_cpus_allowed+0x10/0x10
[ 105.552846] ? lock_release+0x1c7/0x290
[ 105.553446] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.554215] worker_attach_to_pool+0x25/0x3c0
[ 105.554892] create_worker+0x2a9/0x800
[ 105.555479] ? __pfx_create_worker+0x10/0x10
[ 105.556137] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 105.556839] ? lock_release+0x1c7/0x290
[ 105.557436] worker_thread+0x956/0xe90
[ 105.558019] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.558785] ? __pfx_worker_thread+0x10/0x10
[ 105.559442] kthread+0x3c8/0x740
[ 105.559950] ? __pfx_kthread+0x10/0x10
[ 105.560546] ? ret_from_fork+0x23/0x430
[ 105.561147] ? lock_release+0xc8/0x290
[ 105.561738] ? __pfx_kthread+0x10/0x10
[ 105.562311] ret_from_fork+0x34b/0x430
[ 105.562902] ? __pfx_kthread+0x10/0x10
[ 105.563476] ret_from_fork_asm+0x1a/0x30
[ 105.564092]
[ 105.564456] Modules linked in:
[ 105.574084] ---[ end trace 0000000000000000 ]---
[ 105.574800] RIP: 0010:perf_tp_event+0x175/0xe70
[ 105.585103] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 105.588142] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 105.589080] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 105.590309] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 105.591532] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 105.592774] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 105.594005] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 105.595223] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 105.596608] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 105.597630] CR2: 00007fa489995718 CR3: 00000000402c4000 CR4: 0000000000350ef0
[ 105.598856] note: kworker/u10:5[349] exited with preempt_count 2
[ 109.120302] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#19] SMP KASAN NOPTI
[ 109.122380] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 109.123945] CPU: 1 UID: 0 PID: 424 Comm: kworker/u9:8 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.126060] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 109.126973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.128459] Workqueue: events_unbound cfg80211_wiphy_work
[ 109.129472] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.130341] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.133596] RSP: 0018:ffff88801582f700 EFLAGS: 00010212
[ 109.134582] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 109.135881] RDX: ffff888015d69b80 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 109.137175] RBP: ffff88801582f970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 109.138452] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.139711] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.140997] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.142452] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.143496] CR2: 00007fa489995718 CR3: 00000000402c4000 CR4: 0000000000350ef0
[ 109.144710] Call Trace:
[ 109.145098]
[ 109.145446] ? __pfx_perf_tp_event+0x10/0x10
[ 109.146111] ? ret_from_fork_asm+0x1a/0x30
[ 109.146741] ? stack_trace_save+0x8e/0xc0
[ 109.147358] ? stack_depot_save_flags+0x2c/0xa20
[ 109.148054] ? kasan_save_stack+0x34/0x50
[ 109.148668] ? kasan_save_stack+0x24/0x50
[ 109.149275] ? kasan_save_track+0x14/0x30
[ 109.149884] ? __kasan_save_free_info+0x3a/0x60
[ 109.150557] ? __kasan_slab_free+0x3f/0x50
[ 109.151180] ? kmem_cache_free+0x2a1/0x540
[ 109.151797] ? kfree_skbmem+0x18a/0x1f0
[ 109.152386] ? sk_skb_reason_drop+0x10e/0x1b0
[ 109.153067] ? ieee80211_iface_work+0x43c/0x1220
[ 109.153761] ? cfg80211_wiphy_work+0x245/0x480
[ 109.154441] ? process_one_work+0x8e1/0x19c0
[ 109.155106] ? worker_thread+0x67e/0xe90
[ 109.155713] ? kthread+0x3c8/0x740
[ 109.156237] ? ret_from_fork+0x34b/0x430
[ 109.156851] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.157579] perf_trace_run_bpf_submit+0xef/0x180
[ 109.158300] perf_trace_contention_end+0x235/0x3e0
[ 109.159014] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 109.159797] ? __mutex_trylock_common+0xf9/0x260
[ 109.160495] ? __pfx___mutex_trylock_common+0x10/0x10
[ 109.161237] ? __smp_call_single_queue+0x15b/0x2f0
[ 109.161959] trace_contention_end+0xae/0x110
[ 109.162612] __mutex_lock+0x166/0x1020
[ 109.163187] ? cfg80211_wiphy_work+0x7e/0x480
[ 109.163835] ? lock_release+0x1c7/0x290
[ 109.164432] ? __pfx___mutex_lock+0x10/0x10
[ 109.165068] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 109.165806] ? __pfx_try_to_wake_up+0x10/0x10
[ 109.166469] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.167228] cfg80211_wiphy_work+0x7e/0x480
[ 109.167860] process_one_work+0x8e1/0x19c0
[ 109.168498] ? __pfx_process_one_work+0x10/0x10
[ 109.169181] ? move_linked_works+0x172/0x270
[ 109.169826] ? assign_work+0x196/0x240
[ 109.170393] worker_thread+0x67e/0xe90
[ 109.170957] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.171724] ? __pfx_worker_thread+0x10/0x10
[ 109.172380] kthread+0x3c8/0x740
[ 109.172887] ? __pfx_kthread+0x10/0x10
[ 109.173453] ? ret_from_fork+0x23/0x430
[ 109.174052] ? lock_release+0xc8/0x290
[ 109.174621] ? __pfx_kthread+0x10/0x10
[ 109.175187] ret_from_fork+0x34b/0x430
[ 109.175767] ? __pfx_kthread+0x10/0x10
[ 109.176350] ret_from_fork_asm+0x1a/0x30
[ 109.176949]
[ 109.177292] Modules linked in:
[ 109.177895] ---[ end trace 0000000000000000 ]---
[ 109.178609] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.179334] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.181952] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 109.182746] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 109.183794] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 109.184855] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 109.185910] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.186957] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.188009] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.189188] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.190036] CR2: 00007fa489995718 CR3: 00000000402c4000 CR4: 0000000000350ef0
[ 109.191122] note: kworker/u9:8[424] exited with preempt_count 2
[ 109.192140] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#20] SMP KASAN NOPTI
[ 109.193744] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 109.194977] CPU: 1 UID: 0 PID: 174 Comm: in:imklog Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.196607] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 109.197326] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.198494] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.199174] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.201775] RSP: 0018:ffff888017607440 EFLAGS: 00010212
[ 109.202536] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 109.203562] RDX: ffff88800fe78000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 109.204614] RBP: ffff8880176076b0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 109.205663] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.206716] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.207765] FS: 00007efd59120700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.208945] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.209789] CR2: 00007fa489995718 CR3: 000000000cbec000 CR4: 0000000000350ef0
[ 109.210834] Call Trace:
[ 109.211242]
[ 109.211585] ? unwind_get_return_address+0x59/0xa0
[ 109.212333] ? __pfx_perf_tp_event+0x10/0x10
[ 109.213002] ? lock_release+0x1c7/0x290
[ 109.213584] ? lock_acquire+0x18c/0x2f0
[ 109.214194] ? lock_acquire+0x18c/0x2f0
[ 109.214776] ? lock_release+0x1c7/0x290
[ 109.215374] ? __is_insn_slot_addr+0x140/0x290
[ 109.216071] ? kernel_text_address+0x5b/0xc0
[ 109.216733] ? __kernel_text_address+0xd/0x40
[ 109.217404] ? css_rstat_updated+0x1b8/0x4d0
[ 109.218085] ? __pfx_css_rstat_updated+0x10/0x10
[ 109.218784] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.219527] perf_trace_run_bpf_submit+0xef/0x180
[ 109.220251] perf_trace_contention_end+0x235/0x3e0
[ 109.221008] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 109.221794] ? __mutex_trylock_common+0xf9/0x260
[ 109.222505] ? __pfx___mutex_trylock_common+0x10/0x10
[ 109.223272] trace_contention_end+0xae/0x110
[ 109.223940] __mutex_lock+0x166/0x1020
[ 109.224553] ? syslog_print+0x244/0x5c0
[ 109.225158] ? __pfx___mutex_lock+0x10/0x10
[ 109.225797] ? prb_read_valid+0x78/0xa0
[ 109.226408] ? __pfx_prb_read_valid+0x10/0x10
[ 109.227111] syslog_print+0x244/0x5c0
[ 109.227676] ? __pfx_syslog_print+0x10/0x10
[ 109.228334] ? __cgroup_account_cputime+0x88/0xc0
[ 109.229073] ? __pfx_autoremove_wake_function+0x10/0x10
[ 109.229889] ? __pick_eevdf+0x326/0x570
[ 109.230646] ? update_curr+0x71/0x500
[ 109.231285] ? check_preempt_wakeup_fair+0x406/0x950
[ 109.232039] ? lock_acquire+0x18c/0x2f0
[ 109.232637] do_syslog.part.0+0x20b/0x5b0
[ 109.233261] ? __pfx_do_syslog.part.0+0x10/0x10
[ 109.233965] ? avc_has_perm+0x12b/0x1d0
[ 109.234568] ? __pfx_avc_has_perm+0x10/0x10
[ 109.235222] ? plist_del+0x122/0x270
[ 109.235771] ? lock_release+0x1c7/0x290
[ 109.236389] do_syslog+0xcd/0x110
[ 109.236923] kmsg_read+0x8e/0xc0
[ 109.237438] ? __pfx_kmsg_read+0x10/0x10
[ 109.238066] proc_reg_read+0x120/0x310
[ 109.238648] ? __pfx_proc_reg_read+0x10/0x10
[ 109.239315] vfs_read+0x1eb/0xc70
[ 109.239835] ? __pfx_vfs_read+0x10/0x10
[ 109.240446] ? lock_release+0x1c7/0x290
[ 109.241058] ? __fget_files+0x20d/0x3b0
[ 109.241647] ksys_read+0x121/0x240
[ 109.242193] ? __pfx_ksys_read+0x10/0x10
[ 109.242789] do_syscall_64+0xbf/0x360
[ 109.243362] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.244113] RIP: 0033:0x7efd59b6308c
[ 109.244670] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 89 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf fc ff ff 48
[ 109.247333] RSP: 002b:00007efd590ff4d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 109.248442] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efd59b6308c
[ 109.249474] RDX: 0000000000001fa0 RSI: 00007efd590ffd00 RDI: 0000000000000005
[ 109.250515] RBP: 0000562dfd68a4c0 R08: 0000000000000000 R09: 0000562dfd686e88
[ 109.251552] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd590ffd00
[ 109.252603] R13: 0000000000001fa0 R14: 00007efd590ffd00 R15: 00007efd590ffd54
[ 109.253643]
[ 109.254017] Modules linked in:
[ 109.256155] ---[ end trace 0000000000000000 ]---
[ 109.256873] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.258819] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.261570] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 109.262401] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 109.263460] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 109.264544] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 109.265614] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.266703] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.267773] FS: 00007efd59120700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.268991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.269854] CR2: 00007fa489995718 CR3: 000000000cbec000 CR4: 0000000000350ef0
[ 109.270953] note: in:imklog[174] exited with preempt_count 2
[ 109.632607] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#21] SMP KASAN NOPTI
[ 109.635072] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 109.636983] CPU: 1 UID: 0 PID: 398 Comm: kworker/u9:6 Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.639486] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 109.640524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.641909] Workqueue: events_unbound cfg80211_wiphy_work
[ 109.642847] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.643663] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.646746] RSP: 0018:ffff888042907700 EFLAGS: 00010212
[ 109.647648] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 109.648871] RDX: ffff88800fb5b700 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 109.650126] RBP: ffff888042907970 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 109.651328] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.652575] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.653807] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.655187] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.656190] CR2: 00007fa489995718 CR3: 000000000cbec000 CR4: 0000000000350ef0
[ 109.657424] Call Trace:
[ 109.657884]
[ 109.658283] ? __pfx_perf_tp_event+0x10/0x10
[ 109.659054] ? ret_from_fork_asm+0x1a/0x30
[ 109.659793] ? stack_trace_save+0x8e/0xc0
[ 109.660544] ? stack_depot_save_flags+0x2c/0xa20
[ 109.661373] ? kasan_save_stack+0x34/0x50
[ 109.662092] ? kasan_save_stack+0x24/0x50
[ 109.662812] ? kasan_save_track+0x14/0x30
[ 109.663535] ? __kasan_save_free_info+0x3a/0x60
[ 109.664353] ? __kasan_slab_free+0x3f/0x50
[ 109.665094] ? kmem_cache_free+0x2a1/0x540
[ 109.665828] ? kfree_skbmem+0x18a/0x1f0
[ 109.666521] ? sk_skb_reason_drop+0x10e/0x1b0
[ 109.667321] ? ieee80211_iface_work+0x43c/0x1220
[ 109.668151] ? cfg80211_wiphy_work+0x245/0x480
[ 109.668956] ? process_one_work+0x8e1/0x19c0
[ 109.669731] ? worker_thread+0x67e/0xe90
[ 109.670435] ? kthread+0x3c8/0x740
[ 109.671096] ? ret_from_fork+0x34b/0x430
[ 109.671830] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.672757] perf_trace_run_bpf_submit+0xef/0x180
[ 109.673601] perf_trace_contention_end+0x235/0x3e0
[ 109.674447] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 109.675362] ? __mutex_trylock_common+0xf9/0x260
[ 109.676179] ? __pfx___mutex_trylock_common+0x10/0x10
[ 109.677066] ? __smp_call_single_queue+0x15b/0x2f0
[ 109.677913] trace_contention_end+0xae/0x110
[ 109.678656] __mutex_lock+0x166/0x1020
[ 109.679326] ? cfg80211_wiphy_work+0x7e/0x480
[ 109.680079] ? lock_release+0x1c7/0x290
[ 109.680769] ? __pfx___mutex_lock+0x10/0x10
[ 109.681498] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 109.682403] ? __pfx_try_to_wake_up+0x10/0x10
[ 109.683211] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.684100] cfg80211_wiphy_work+0x7e/0x480
[ 109.684837] process_one_work+0x8e1/0x19c0
[ 109.685555] ? __pfx_process_one_work+0x10/0x10
[ 109.686342] ? move_linked_works+0x172/0x270
[ 109.687101] ? assign_work+0x196/0x240
[ 109.687780] worker_thread+0x67e/0xe90
[ 109.688470] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.689371] ? __pfx_worker_thread+0x10/0x10
[ 109.690117] kthread+0x3c8/0x740
[ 109.690701] ? __pfx_kthread+0x10/0x10
[ 109.691386] ? ret_from_fork+0x23/0x430
[ 109.692079] ? lock_release+0xc8/0x290
[ 109.692759] ? __pfx_kthread+0x10/0x10
[ 109.693438] ret_from_fork+0x34b/0x430
[ 109.694140] ? __pfx_kthread+0x10/0x10
[ 109.694826] ret_from_fork_asm+0x1a/0x30
[ 109.695573]
[ 109.695993] Modules linked in:
[ 109.696661] ---[ end trace 0000000000000000 ]---
[ 109.697520] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.698355] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.701443] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 109.702365] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 109.703556] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 109.704745] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 109.705979] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.707206] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.708458] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.709852] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.710858] CR2: 00007fa489995718 CR3: 000000000cbec000 CR4: 0000000000350ef0
[ 109.712072] note: kworker/u9:6[398] exited with preempt_count 2
[ 109.773641] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#22] SMP KASAN NOPTI
[ 109.775472] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 109.776854] CPU: 1 UID: 0 PID: 1 Comm: systemd Tainted: G B D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.778603] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
[ 109.779397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.780751] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.781520] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.784392] RSP: 0018:ffff8880095476c0 EFLAGS: 00010212
[ 109.785247] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 109.786402] RDX: ffff8880094f8000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 109.787528] RBP: ffff888009547930 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 109.788667] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.789802] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.790929] FS: 00007fec3e2ca900(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.792215] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.793154] CR2: 00007fa489995718 CR3: 000000000d6c4000 CR4: 0000000000350ef0
[ 109.794305] Call Trace:
[ 109.794725]
[ 109.795099] ? kasan_save_stack+0x34/0x50
[ 109.795776] ? __pfx_perf_tp_event+0x10/0x10
[ 109.796507] ? kfree_skbmem+0x18a/0x1f0
[ 109.797154] ? ___sys_recvmsg+0xf1/0x190
[ 109.797815] ? __sys_recvmsg+0x14d/0x200
[ 109.798484] ? do_syscall_64+0xbf/0x360
[ 109.799126] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.799963] ? __lock_acquire+0x694/0x1b70
[ 109.800650] ? map_id_range_up+0x1d5/0x350
[ 109.801349] ? kvm_sched_clock_read+0x16/0x30
[ 109.802082] ? sched_clock+0x37/0x60
[ 109.802706] ? kvm_sched_clock_read+0x16/0x30
[ 109.803434] ? sched_clock+0x37/0x60
[ 109.804041] ? sched_clock_cpu+0x6c/0x4e0
[ 109.804724] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.805531] perf_trace_run_bpf_submit+0xef/0x180
[ 109.806326] perf_trace_contention_end+0x235/0x3e0
[ 109.807122] ? lock_acquire+0x18c/0x2f0
[ 109.807770] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 109.808657] ? __mutex_trylock_common+0xf9/0x260
[ 109.809424] ? __pfx___mutex_trylock_common+0x10/0x10
[ 109.810253] trace_contention_end+0xae/0x110
[ 109.810961] __mutex_lock+0x166/0x1020
[ 109.811604] ? ep_send_events+0xff/0xaa0
[ 109.812286] ? __pfx___mutex_lock+0x10/0x10
[ 109.812986] ? lock_acquire+0x15e/0x2f0
[ 109.813630] ? find_held_lock+0x2b/0x80
[ 109.814283] ? schedule+0x2c7/0x390
[ 109.814890] ? lock_release+0xc8/0x290
[ 109.815519] ep_send_events+0xff/0xaa0
[ 109.816148] ? schedule_hrtimeout_range_clock+0x1c0/0x310
[ 109.817018] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10
[ 109.817953] ? __pfx_ep_send_events+0x10/0x10
[ 109.818682] ? lock_release+0xc8/0x290
[ 109.819308] do_epoll_wait+0x42e/0xee0
[ 109.819938] ? __pfx_do_epoll_wait+0x10/0x10
[ 109.820662] ? __pfx_css_rstat_updated+0x10/0x10
[ 109.821431] ? __pfx_ep_autoremove_wake_function+0x10/0x10
[ 109.822307] ? handle_mm_fault+0x590/0x9b0
[ 109.822986] __x64_sys_epoll_wait+0x15b/0x280
[ 109.823707] ? __task_pid_nr_ns+0x2e/0x4f0
[ 109.824389] ? __pfx___x64_sys_epoll_wait+0x10/0x10
[ 109.825190] ? __task_pid_nr_ns+0x1a6/0x4f0
[ 109.825863] ? lock_release+0xc8/0x290
[ 109.826500] ? lock_is_held_type+0x9e/0x120
[ 109.827194] do_syscall_64+0xbf/0x360
[ 109.827798] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.828617] RIP: 0033:0x7fec3eaa7116
[ 109.829211] Code: 10 89 7c 24 0c 89 4c 24 1c e8 86 6c f8 ff 44 8b 54 24 1c 8b 54 24 18 41 89 c0 48 8b 74 24 10 8b 7c 24 0c b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 32 44 89 c7 89 44 24 0c e8 b6 6c f8 ff 8b 44
[ 109.832034] RSP: 002b:00007ffda5f36d80 EFLAGS: 00000293 ORIG_RAX: 00000000000000e8
[ 109.833236] RAX: ffffffffffffffda RBX: 0000558ad9b1eb70 RCX: 00007fec3eaa7116
[ 109.834342] RDX: 000000000000002f RSI: 0000558ada386830 RDI: 0000000000000005
[ 109.835463] RBP: ffffffffffffffff R08: 0000000000000000 R09: 3fc9fbdb4067e0f6
[ 109.836624] R10: 00000000ffffffff R11: 0000000000000293 R12: 0000000000000001
[ 109.837779] R13: 000000000000002f R14: 0000000000000000 R15: 0000558ad2b74b4e
[ 109.838928]
[ 109.839321] Modules linked in:
[ 109.841380] ---[ end trace 0000000000000000 ]---
[ 109.843190] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.844004] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.846989] RSP: 0018:ffff888009bc7680 EFLAGS: 00010212
[ 109.847889] RAX: 0000000040000032 RBX: 00000001ffffffa0 RCX: 0000000000000002
[ 109.849086] RDX: ffff888009978000 RSI: ffffffff818995b7 RDI: 0000000200000190
[ 109.850302] RBP: ffff888009bc78f0 R08: ffff88806cf31340 R09: ffffe8ffffd15200
[ 109.851493] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.852697] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.853909] FS: 00007fec3e2ca900(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.855254] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.856254] CR2: 00007fa489995718 CR3: 000000000d6c4000 CR4: 0000000000350ef0
[ 109.857452] note: systemd[1] exited with preempt_count 2
[ 109.858376] Kernel panic - not syncing: Attempted to kill init! exitcode=0x0000000b
[ 109.859775] Kernel Offset: disabled
[ 109.860381] ---[ end Kernel panic - not syncing: Attempted to kill init! exitcode=0x0000000b ]---
VM DIAGNOSIS:
08:42:47 Registers:
info registers vcpu 0
RAX=0000000000000005 RBX=0000000000000001 RCX=0000000000000150 RDX=00000000000003fc
RSI=ffff88800d18b500 RDI=00000000520586e3 RBP=ffff88800d18b400 RSP=ffff8880185bfb00
R8 =000000000cde14f7 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=00000000ffffffff R13=00000000000003fc R14=ffff88800d18b400 R15=ffff88800a420388
RIP=ffffffff82518ceb RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555c92e400 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe3a00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffe95652f28 CR3=00000000410c2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000a60ce07b00000000cec3662e XMM01=0000000000000000120b5256790c1ff6
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888009bc6f70
R8 =0000000000000000 R9 =ffffed10013df046 R10=0000000000000066 R11=0000000065646f43
R12=0000000000000066 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe4400000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa48c550000 CR3=000000003c349000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000