Warning: Permanently added '[localhost]:13077' (ECDSA) to the list of known hosts. 2025/08/29 08:52:14 fuzzer started 2025/08/29 08:52:14 dialing manager at localhost:43077 syzkaller login: [ 51.714139] cgroup: Unknown subsys name 'net' [ 51.773762] cgroup: Unknown subsys name 'cpuset' [ 51.796066] cgroup: Unknown subsys name 'rlimit' 2025/08/29 08:52:25 syscalls: 2214 2025/08/29 08:52:25 code coverage: enabled 2025/08/29 08:52:25 comparison tracing: enabled 2025/08/29 08:52:25 extra coverage: enabled 2025/08/29 08:52:25 setuid sandbox: enabled 2025/08/29 08:52:25 namespace sandbox: enabled 2025/08/29 08:52:25 Android sandbox: enabled 2025/08/29 08:52:25 fault injection: enabled 2025/08/29 08:52:25 leak checking: enabled 2025/08/29 08:52:25 net packet injection: enabled 2025/08/29 08:52:25 net device setup: enabled 2025/08/29 08:52:25 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 08:52:25 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 08:52:25 USB emulation: enabled 2025/08/29 08:52:25 hci packet injection: enabled 2025/08/29 08:52:25 wifi device emulation: enabled 2025/08/29 08:52:25 802.15.4 emulation: enabled 2025/08/29 08:52:25 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 08:52:25 fetching corpus: 50, signal 22694/25934 (executing program) 2025/08/29 08:52:25 fetching corpus: 100, signal 32286/36655 (executing program) 2025/08/29 08:52:25 fetching corpus: 150, signal 39317/44706 (executing program) 2025/08/29 08:52:25 fetching corpus: 200, signal 49714/55577 (executing program) 2025/08/29 08:52:25 fetching corpus: 250, signal 53876/60517 (executing program) 2025/08/29 08:52:25 fetching corpus: 300, signal 58673/65822 (executing program) 2025/08/29 08:52:26 fetching corpus: 350, signal 63442/70972 (executing program) 2025/08/29 08:52:26 fetching corpus: 400, signal 68554/76258 (executing program) 2025/08/29 08:52:26 fetching corpus: 450, signal 71074/79189 (executing program) 2025/08/29 08:52:26 fetching corpus: 500, signal 73726/82187 (executing program) 2025/08/29 08:52:26 fetching corpus: 550, signal 76950/85525 (executing program) 2025/08/29 08:52:26 fetching corpus: 600, signal 80419/89019 (executing program) 2025/08/29 08:52:26 fetching corpus: 650, signal 82840/91578 (executing program) 2025/08/29 08:52:26 fetching corpus: 700, signal 85110/93960 (executing program) 2025/08/29 08:52:27 fetching corpus: 750, signal 87232/96140 (executing program) 2025/08/29 08:52:27 fetching corpus: 800, signal 90166/98812 (executing program) 2025/08/29 08:52:27 fetching corpus: 850, signal 92447/100993 (executing program) 2025/08/29 08:52:27 fetching corpus: 900, signal 95264/103401 (executing program) 2025/08/29 08:52:27 fetching corpus: 950, signal 97769/105507 (executing program) 2025/08/29 08:52:27 fetching corpus: 1000, signal 99115/106785 (executing program) 2025/08/29 08:52:27 fetching corpus: 1050, signal 100997/108333 (executing program) 2025/08/29 08:52:28 fetching corpus: 1100, signal 102201/109456 (executing program) 2025/08/29 08:52:28 fetching corpus: 1150, signal 103216/110411 (executing program) 2025/08/29 08:52:28 fetching corpus: 1200, signal 104843/111639 (executing program) 2025/08/29 08:52:28 fetching corpus: 1250, signal 106117/112700 (executing program) 2025/08/29 08:52:28 fetching corpus: 1300, signal 108145/114200 (executing program) 2025/08/29 08:52:28 fetching corpus: 1350, signal 109539/115182 (executing program) 2025/08/29 08:52:28 fetching corpus: 1400, signal 111462/116404 (executing program) 2025/08/29 08:52:28 fetching corpus: 1450, signal 112968/117352 (executing program) 2025/08/29 08:52:29 fetching corpus: 1500, signal 114358/118393 (executing program) 2025/08/29 08:52:29 fetching corpus: 1550, signal 115014/118852 (executing program) 2025/08/29 08:52:29 fetching corpus: 1600, signal 115934/119531 (executing program) 2025/08/29 08:52:29 fetching corpus: 1650, signal 116702/120001 (executing program) 2025/08/29 08:52:29 fetching corpus: 1700, signal 117451/120477 (executing program) 2025/08/29 08:52:29 fetching corpus: 1750, signal 118214/120864 (executing program) 2025/08/29 08:52:29 fetching corpus: 1800, signal 119138/121310 (executing program) 2025/08/29 08:52:29 fetching corpus: 1850, signal 120274/121843 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/121949 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/121983 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122018 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122050 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122082 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122118 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122157 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122182 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122219 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122258 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122295 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122332 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122370 (executing program) 2025/08/29 08:52:29 fetching corpus: 1854, signal 120477/122406 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122446 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122478 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122527 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122564 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122594 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122630 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122665 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122676 (executing program) 2025/08/29 08:52:30 fetching corpus: 1854, signal 120477/122676 (executing program) 2025/08/29 08:52:32 starting 8 fuzzer processes 08:52:32 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41430010}) 08:52:32 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCOUTQ(r0, 0x541b, &(0x7f0000000000)) 08:52:32 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) close(r0) r1 = socket$packet(0x11, 0x2, 0x300) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(r1, &(0x7f00000017c0)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="820395b3262f"}, 0x14) sendmmsg$inet6(r0, &(0x7f00000034c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 08:52:32 executing program 3: syz_emit_ethernet(0x22, &(0x7f0000000140)={@local, @multicast, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x88, 0x0, @empty, @broadcast}}}}}, 0x0) 08:52:32 executing program 4: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmmsg$inet(r0, &(0x7f0000003700)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000000580)="258d4cb345c773abc5520e6863b79a7ad5e2b1338e69b906c7340cb2f3cf78bcc52fc5e0c44f487d0479ddad8287dff7ac3cba7694251805fb3b2b81d88781ea77bf50196facd80951aa98c458edfd293a72eb8d49d882291404067ae0bfb12120680baa3dd1f439071143c9baaf6b28f29e90843597a7c5c46976854ba3f1a4", 0x80}], 0x1}}], 0x2, 0x0) [ 69.709199] audit: type=1400 audit(1756457552.496:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 08:52:32 executing program 5: setresuid(0x0, 0xee01, 0x0) kexec_load(0x0, 0x0, 0x0, 0x0) 08:52:32 executing program 7: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)) r0 = syz_open_procfs(0x0, &(0x7f0000000980)='fdinfo/3\x00') pread64(r0, &(0x7f0000000100)=""/147, 0x93, 0x0) 08:52:32 executing program 6: r0 = io_uring_setup(0x3e96, &(0x7f0000000140)) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 70.952834] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.955451] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.958861] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.960871] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.962768] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.964935] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.974069] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.975660] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.980616] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.982299] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.103590] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 71.106648] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 71.109173] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 71.115340] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 71.121773] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 71.130596] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 71.134937] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 71.137027] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 71.140342] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 71.142381] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 71.203577] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 71.218455] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 71.219799] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 71.221744] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 71.230858] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 71.239412] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 71.242526] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 71.252588] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 71.254403] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 71.255380] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 71.256330] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 71.258407] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 71.267404] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 71.271188] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 71.273935] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 71.276209] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 71.276236] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 71.282527] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 71.306893] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 71.308848] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 73.037610] Bluetooth: hci0: command tx timeout [ 73.038192] Bluetooth: hci1: command tx timeout [ 73.166211] Bluetooth: hci2: command tx timeout [ 73.166808] Bluetooth: hci3: command tx timeout [ 73.294201] Bluetooth: hci7: command tx timeout [ 73.357194] Bluetooth: hci4: command tx timeout [ 73.357750] Bluetooth: hci6: command tx timeout [ 73.358246] Bluetooth: hci5: command tx timeout [ 75.085223] Bluetooth: hci0: command tx timeout [ 75.085690] Bluetooth: hci1: command tx timeout [ 75.214134] Bluetooth: hci3: command tx timeout [ 75.214588] Bluetooth: hci2: command tx timeout [ 75.341437] Bluetooth: hci7: command tx timeout [ 75.405256] Bluetooth: hci5: command tx timeout [ 75.405730] Bluetooth: hci6: command tx timeout [ 75.405753] Bluetooth: hci4: command tx timeout [ 77.133167] Bluetooth: hci1: command tx timeout [ 77.133186] Bluetooth: hci0: command tx timeout [ 77.261239] Bluetooth: hci2: command tx timeout [ 77.261267] Bluetooth: hci3: command tx timeout [ 77.389228] Bluetooth: hci7: command tx timeout [ 77.453278] Bluetooth: hci5: command tx timeout [ 77.453832] Bluetooth: hci6: command tx timeout [ 77.454389] Bluetooth: hci4: command tx timeout [ 79.183118] Bluetooth: hci0: command tx timeout [ 79.183137] Bluetooth: hci1: command tx timeout [ 79.310137] Bluetooth: hci2: command tx timeout [ 79.310214] Bluetooth: hci3: command tx timeout [ 79.437260] Bluetooth: hci7: command tx timeout [ 79.501164] Bluetooth: hci4: command tx timeout [ 79.501631] Bluetooth: hci5: command tx timeout [ 79.502188] Bluetooth: hci6: command tx timeout [ 106.823276] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.823959] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.994449] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.995091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.361118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.361715] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.415826] audit: type=1400 audit(1756457590.203:8): avc: denied { open } for pid=3800 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 107.422312] audit: type=1400 audit(1756457590.203:9): avc: denied { kernel } for pid=3800 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 107.502636] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 107.505203] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 107.514654] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 107.518511] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 107.521216] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 107.525207] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 107.533737] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 107.534834] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 107.550666] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 107.556868] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 107.560189] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 107.569666] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 107.576274] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.576847] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.579949] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 107.585109] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 107.599819] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 107.607691] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 107.610167] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 107.612262] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 107.619734] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 107.620281] Bluetooth: hci7: Opcode 0x0406 failed: -4 [ 107.627727] Bluetooth: hci7: Opcode 0x0406 failed: -4 [ 107.632996] Bluetooth: hci6: Opcode 0x0c1a failed: -4 [ 107.635116] Bluetooth: hci6: Opcode 0x0406 failed: -4 [ 107.640007] Bluetooth: hci6: Opcode 0x0406 failed: -4 [ 107.745887] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 107.751210] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 107.754138] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 107.757215] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 107.764442] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 107.767248] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 107.773684] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 107.774334] Bluetooth: hci6: Opcode 0x0c1a failed: -4 08:53:10 executing program 6: r0 = io_uring_setup(0x3e96, &(0x7f0000000140)) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 107.947486] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 107.948331] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 107.951367] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 107.951964] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 107.956188] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.956758] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.963543] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 107.964226] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 107.968320] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 107.968888] Bluetooth: hci6: Opcode 0x0c1a failed: -4 08:53:10 executing program 6: r0 = io_uring_setup(0x3e96, &(0x7f0000000140)) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 08:53:10 executing program 4: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmmsg$inet(r0, &(0x7f0000003700)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000000580)="258d4cb345c773abc5520e6863b79a7ad5e2b1338e69b906c7340cb2f3cf78bcc52fc5e0c44f487d0479ddad8287dff7ac3cba7694251805fb3b2b81d88781ea77bf50196facd80951aa98c458edfd293a72eb8d49d882291404067ae0bfb12120680baa3dd1f439071143c9baaf6b28f29e90843597a7c5c46976854ba3f1a4", 0x80}], 0x1}}], 0x2, 0x0) [ 108.068446] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.069044] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.137727] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 108.138349] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 108.138994] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 108.142449] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 108.143040] Bluetooth: hci4: Opcode 0x0c1a failed: -4 08:53:10 executing program 4: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmmsg$inet(r0, &(0x7f0000003700)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000000580)="258d4cb345c773abc5520e6863b79a7ad5e2b1338e69b906c7340cb2f3cf78bcc52fc5e0c44f487d0479ddad8287dff7ac3cba7694251805fb3b2b81d88781ea77bf50196facd80951aa98c458edfd293a72eb8d49d882291404067ae0bfb12120680baa3dd1f439071143c9baaf6b28f29e90843597a7c5c46976854ba3f1a4", 0x80}], 0x1}}], 0x2, 0x0) [ 108.146909] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 108.149103] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 108.151187] Bluetooth: hci6: Opcode 0x0c1a failed: -4 [ 108.165799] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.166551] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:53:10 executing program 6: r0 = io_uring_setup(0x3e96, &(0x7f0000000140)) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 108.231159] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.231788] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:53:11 executing program 4: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmmsg$inet(r0, &(0x7f0000003700)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000000580)="258d4cb345c773abc5520e6863b79a7ad5e2b1338e69b906c7340cb2f3cf78bcc52fc5e0c44f487d0479ddad8287dff7ac3cba7694251805fb3b2b81d88781ea77bf50196facd80951aa98c458edfd293a72eb8d49d882291404067ae0bfb12120680baa3dd1f439071143c9baaf6b28f29e90843597a7c5c46976854ba3f1a4", 0x80}], 0x1}}], 0x2, 0x0) 08:53:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000000)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x16, &(0x7f0000000080)=""/22}, &(0x7f00000003c0)="1510de80e75b", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 108.318270] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 108.318898] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 108.319517] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 108.324700] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 108.325549] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 108.331770] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 108.332384] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 108.333007] Bluetooth: hci6: Opcode 0x0c1a failed: -4 [ 108.333762] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.334550] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:53:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000000)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x16, &(0x7f0000000080)=""/22}, &(0x7f00000003c0)="1510de80e75b", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 108.473146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.473743] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.494453] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.495011] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.532900] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.533564] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.553242] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.553805] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.616870] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.617557] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.670216] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.670839] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.725896] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.726646] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:53:11 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) close(r0) r1 = socket$packet(0x11, 0x2, 0x300) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(r1, &(0x7f00000017c0)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="820395b3262f"}, 0x14) sendmmsg$inet6(r0, &(0x7f00000034c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 08:53:11 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) close(r0) r1 = socket$packet(0x11, 0x2, 0x300) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(r1, &(0x7f00000017c0)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="820395b3262f"}, 0x14) sendmmsg$inet6(r0, &(0x7f00000034c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 08:53:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000000)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x16, &(0x7f0000000080)=""/22}, &(0x7f00000003c0)="1510de80e75b", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:53:11 executing program 3: syz_emit_ethernet(0x22, &(0x7f0000000140)={@local, @multicast, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x88, 0x0, @empty, @broadcast}}}}}, 0x0) 08:53:11 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCOUTQ(r0, 0x541b, &(0x7f0000000000)) 08:53:11 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41430010}) 08:53:11 executing program 5: setresuid(0x0, 0xee01, 0x0) kexec_load(0x0, 0x0, 0x0, 0x0) 08:53:11 executing program 7: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)) r0 = syz_open_procfs(0x0, &(0x7f0000000980)='fdinfo/3\x00') pread64(r0, &(0x7f0000000100)=""/147, 0x93, 0x0) 08:53:11 executing program 5: setresuid(0x0, 0xee01, 0x0) kexec_load(0x0, 0x0, 0x0, 0x0) 08:53:11 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) close(r0) r1 = socket$packet(0x11, 0x2, 0x300) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(r1, &(0x7f00000017c0)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="820395b3262f"}, 0x14) sendmmsg$inet6(r0, &(0x7f00000034c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 08:53:11 executing program 3: syz_emit_ethernet(0x22, &(0x7f0000000140)={@local, @multicast, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x88, 0x0, @empty, @broadcast}}}}}, 0x0) 08:53:11 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) close(r0) r1 = socket$packet(0x11, 0x2, 0x300) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(r1, &(0x7f00000017c0)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="820395b3262f"}, 0x14) sendmmsg$inet6(r0, &(0x7f00000034c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 08:53:11 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCOUTQ(r0, 0x541b, &(0x7f0000000000)) 08:53:11 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, @loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41430010}) 08:53:11 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000000)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x16, &(0x7f0000000080)=""/22}, &(0x7f00000003c0)="1510de80e75b", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:53:11 executing program 5: setresuid(0x0, 0xee01, 0x0) kexec_load(0x0, 0x0, 0x0, 0x0) 08:53:11 executing program 7: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)) r0 = syz_open_procfs(0x0, &(0x7f0000000980)='fdinfo/3\x00') pread64(r0, &(0x7f0000000100)=""/147, 0x93, 0x0) [ 109.045881] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 109.046845] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 109.047445] CPU: 1 UID: 0 PID: 3938 Comm: syz-executor.1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 109.048394] Tainted: [W]=WARN [ 109.049235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 109.051035] RIP: 0010:perf_tp_event+0x175/0xe70 [ 109.052000] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 109.055882] RSP: 0018:ffff888017217800 EFLAGS: 00010212 [ 109.056772] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 109.057337] RDX: ffff888018023700 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 109.057898] RBP: ffff888017217a70 R08: ffff88806cf31340 R09: ffffe8ffffd16140 [ 109.058460] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 109.059022] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 109.059586] FS: 000055555652c400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 109.060232] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.060689] CR2: 00007f47338ee004 CR3: 000000001f643000 CR4: 0000000000350ef0 [ 109.061254] Call Trace: [ 109.061464] [ 109.061651] ? arch_scale_cpu_capacity+0x17/0xa0 [ 109.062045] ? __pfx_perf_tp_event+0x10/0x10 [ 109.062404] ? __asan_memset+0x24/0x50 [ 109.062729] ? perf_trace_lock+0xb5/0x5d0 [ 109.063066] ? kvm_sched_clock_read+0x16/0x30 [ 109.063436] ? sched_clock+0x37/0x60 [ 109.063759] ? sched_clock_cpu+0x6c/0x4e0 [ 109.064095] ? lock_is_held_type+0x9e/0x120 [ 109.064447] ? perf_trace_run_bpf_submit+0xef/0x180 [ 109.064851] perf_trace_run_bpf_submit+0xef/0x180 [ 109.065250] perf_trace_lock+0x337/0x5d0 [ 109.065586] ? __pfx_perf_trace_lock+0x10/0x10 [ 109.065960] ? lock_acquire+0x15e/0x2f0 [ 109.066286] ? futex_ref_get+0x48/0x300 [ 109.066608] ? futex_ref_get+0x114/0x300 [ 109.066929] ? futex_hash+0x15c/0x390 [ 109.067234] lock_release+0x1ab/0x290 [ 109.067544] ? futex_hash+0x15c/0x390 [ 109.067857] futex_ref_get+0x119/0x300 [ 109.068169] ? futex_hash+0x15c/0x390 [ 109.068474] futex_hash+0x70/0x390 [ 109.068763] futex_wake+0x143/0x540 [ 109.069064] ? put_pid+0x1f/0x30 [ 109.069342] ? kernel_clone+0x204/0x7f0 [ 109.069664] ? __pfx_futex_wake+0x10/0x10 [ 109.070002] ? __pfx_kernel_clone+0x10/0x10 [ 109.070350] ? perf_trace_lock+0xb5/0x5d0 [ 109.070689] do_futex+0x26d/0x370 [ 109.070974] ? __pfx_do_futex+0x10/0x10 [ 109.071300] ? __pfx___do_sys_clone+0x10/0x10 [ 109.071664] ? find_held_lock+0x2b/0x80 [ 109.071996] __x64_sys_futex+0x1c9/0x4d0 [ 109.072328] ? __pfx___x64_sys_futex+0x10/0x10 [ 109.072698] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 109.073117] do_syscall_64+0xbf/0x360 [ 109.073425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.073837] RIP: 0033:0x7f87e8aaab19 [ 109.074133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 109.075561] RSP: 002b:00007ffd3d8c1cc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 109.076168] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f87e8aaab19 [ 109.076732] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f87e8bbdf68 [ 109.077314] RBP: 00007f87e8bbdf60 R08: 00007f87e6020700 R09: 0000000000000000 [ 109.077909] R10: 00007f87e6020700 R11: 0000000000000246 R12: 00007f87e8bc2a68 [ 109.078484] R13: 00007ffd3d8c1dd0 R14: 00007f87e8bbdf60 R15: 000000000001a927 [ 109.079056] [ 109.079242] Modules linked in: [ 109.079506] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 109.080438] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 109.081134] CPU: 0 UID: 0 PID: 3935 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 109.082091] Tainted: [D]=DIE, [W]=WARN [ 109.082401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 109.083061] RIP: 0010:perf_tp_event+0x175/0xe70 [ 109.083460] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 109.084936] RSP: 0018:ffff88804342f800 EFLAGS: 00010212 [ 109.085386] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 109.085967] RDX: ffff888042cb8000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 109.086543] RBP: ffff88804342fa70 R08: ffff88806ce31340 R09: ffffe8ffffc16140 [ 109.087121] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 109.087703] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 109.088292] FS: 0000555575968400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 109.088954] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.089425] CR2: 0000555575969c18 CR3: 0000000043b3e000 CR4: 0000000000350ef0 [ 109.090011] Call Trace: [ 109.090228] [ 109.090429] ? arch_scale_cpu_capacity+0x17/0xa0 [ 109.090825] ? __pfx_perf_tp_event+0x10/0x10 [ 109.091187] ? __asan_memset+0x24/0x50 [ 109.091514] ? __pfx_perf_trace_lock+0x10/0x10 [ 109.091898] ? __pfx___mutex_lock+0x10/0x10 [ 109.092257] ? perf_trace_lock+0xb5/0x5d0 [ 109.092597] ? kvm_sched_clock_read+0x16/0x30 [ 109.092972] ? sched_clock+0x37/0x60 [ 109.093285] ? sched_clock_cpu+0x6c/0x4e0 [ 109.093633] ? perf_trace_run_bpf_submit+0xef/0x180 [ 109.094040] perf_trace_run_bpf_submit+0xef/0x180 [ 109.094444] perf_trace_lock+0x337/0x5d0 [ 109.094782] ? __pfx_perf_trace_lock+0x10/0x10 [ 109.095165] ? __pfx_perf_trace_lock+0x10/0x10 [ 109.095541] ? get_futex_key+0x592/0x14a0 [ 109.095890] ? futex_ref_get+0x114/0x300 [ 109.096226] ? futex_hash+0x15c/0x390 [ 109.096546] lock_release+0x1ab/0x290 [ 109.096870] ? futex_hash+0x15c/0x390 [ 109.097184] futex_ref_get+0x119/0x300 [ 109.097500] ? futex_hash+0x15c/0x390 [ 109.097810] futex_hash+0x70/0x390 [ 109.098105] futex_wake+0x143/0x540 [ 109.098412] ? put_pid+0x1f/0x30 [ 109.098698] ? kernel_clone+0x204/0x7f0 [ 109.099025] ? __pfx_futex_wake+0x10/0x10 [ 109.099368] ? __pfx_kernel_clone+0x10/0x10 [ 109.099731] ? perf_trace_lock+0xb5/0x5d0 [ 109.100068] ? __pfx___handle_mm_fault+0x10/0x10 [ 109.100463] do_futex+0x26d/0x370 [ 109.100756] ? __pfx_do_futex+0x10/0x10 [ 109.101084] ? __pfx___do_sys_clone+0x10/0x10 [ 109.101453] ? handle_mm_fault+0x590/0x9b0 [ 109.101802] __x64_sys_futex+0x1c9/0x4d0 [ 109.102137] ? __pfx___x64_sys_futex+0x10/0x10 [ 109.102515] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 109.102949] do_syscall_64+0xbf/0x360 [ 109.103263] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.103705] RIP: 0033:0x7f7935260b19 [ 109.104002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 109.105459] RSP: 002b:00007ffd0c265ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 109.106077] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7935260b19 [ 109.106656] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7935373f68 [ 109.107247] RBP: 00007f7935373f60 R08: 00007f79327d6700 R09: 0000000000000000 [ 109.107843] R10: 00007f79327d6700 R11: 0000000000000246 R12: 00007f79353780a0 [ 109.108415] R13: 00007ffd0c265bd0 R14: 00007f7935373f60 R15: 000000000001a92c [ 109.109000] [ 109.109194] Modules linked in: [ 109.109461] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI [ 109.110355] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 109.110984] CPU: 1 UID: 0 PID: 3938 Comm: syz-executor.1 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 109.111955] Tainted: [D]=DIE, [W]=WARN [ 109.112268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 109.112940] RIP: 0010:perf_tp_event+0x175/0xe70 [ 109.113325] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 109.114771] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012 [ 109.115198] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 109.115773] RDX: ffff888018023700 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 109.116329] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd16140 [ 109.116885] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000 [ 109.117445] R13: 0000000000000024 R14: ffff88806cf31490 R15: dffffc0000000000 [ 109.118004] FS: 000055555652c400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 109.118659] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.119137] CR2: 00007f47338ee004 CR3: 000000001f643000 CR4: 0000000000350ef0 [ 109.119707] Call Trace: [ 109.119913] [ 109.120097] ? __pfx_perf_tp_event+0x10/0x10 [ 109.120458] ? sched_clock_cpu+0x6c/0x4e0 [ 109.120796] ? lock_is_held_type+0x9e/0x120 [ 109.121153] ? lock_is_held_type+0x9e/0x120 [ 109.121524] ? perf_trace_lock+0xb5/0x5d0 [ 109.121872] ? perf_trace_lock+0xb5/0x5d0 [ 109.122219] ? __pfx_perf_trace_lock+0x10/0x10 [ 109.122603] ? __pfx_perf_trace_lock+0x10/0x10 [ 109.122984] ? check_preempt_wakeup_fair+0x406/0x950 [ 109.123407] ? perf_trace_run_bpf_submit+0xef/0x180 [ 109.123829] perf_trace_run_bpf_submit+0xef/0x180 [ 109.124243] perf_trace_lock+0x337/0x5d0 [ 109.124575] ? place_entity+0x1c/0x410 [ 109.124886] ? kvm_sched_clock_read+0x16/0x30 [ 109.125250] ? __pfx_perf_trace_lock+0x10/0x10 [ 109.125617] ? check_preempt_wakeup_fair+0x6e/0x950 [ 109.126026] ? sched_ttwu_pending+0x2e0/0x4a0 [ 109.126392] lock_release+0x1ab/0x290 [ 109.126698] ? ttwu_do_activate+0x1a4/0x8a0 [ 109.127044] _raw_spin_unlock+0x16/0x40 [ 109.127367] sched_ttwu_pending+0x2e0/0x4a0 [ 109.127724] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 109.128114] ? hrtimer_interrupt+0x652/0x830 [ 109.128469] __flush_smp_call_function_queue+0x434/0x740 [ 109.128913] __sysvec_call_function_single+0x6d/0x370 [ 109.129329] sysvec_call_function_single+0xa1/0xc0 [ 109.129723] [ 109.129911] [ 109.130099] asm_sysvec_call_function_single+0x1a/0x20 [ 109.130529] RIP: 0010:oops_exit+0x0/0x50 [ 109.130860] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27 [ 109.132341] RSP: 0018:ffff888017217690 EFLAGS: 00000202 [ 109.132773] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f [ 109.133344] RDX: ffff888018023700 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 109.133910] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90 [ 109.134478] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888017217758 [ 109.135044] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 109.135619] ? add_taint+0x5f/0xd0 [ 109.135918] ? oops_end+0x4a/0xe0 [ 109.136216] oops_end+0x65/0xe0 [ 109.136490] exc_general_protection+0x1a2/0x330 [ 109.136877] asm_exc_general_protection+0x26/0x30 [ 109.137261] RIP: 0010:perf_tp_event+0x175/0xe70 [ 109.137642] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 109.139093] RSP: 0018:ffff888017217800 EFLAGS: 00010212 [ 109.139525] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 109.140096] RDX: ffff888018023700 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 109.140674] RBP: ffff888017217a70 R08: ffff88806cf31340 R09: ffffe8ffffd16140 [ 109.141245] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 109.141836] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 109.142430] ? perf_tp_event+0x167/0xe70 [ 109.142769] ? arch_scale_cpu_capacity+0x17/0xa0 [ 109.143160] ? __pfx_perf_tp_event+0x10/0x10 [ 109.143521] ? __asan_memset+0x24/0x50 [ 109.143859] ? perf_trace_lock+0xb5/0x5d0 [ 109.144202] ? kvm_sched_clock_read+0x16/0x30 [ 109.144572] ? sched_clock+0x37/0x60 [ 109.144888] ? sched_clock_cpu+0x6c/0x4e0 [ 109.145228] ? lock_is_held_type+0x9e/0x120 [ 109.145582] ? perf_trace_run_bpf_submit+0xef/0x180 [ 109.145990] perf_trace_run_bpf_submit+0xef/0x180 [ 109.146389] perf_trace_lock+0x337/0x5d0 [ 109.146727] ? __pfx_perf_trace_lock+0x10/0x10 [ 109.147106] ? lock_acquire+0x15e/0x2f0 [ 109.147430] ? futex_ref_get+0x48/0x300 [ 109.147764] ? futex_ref_get+0x114/0x300 [ 109.148096] ? futex_hash+0x15c/0x390 [ 109.148407] lock_release+0x1ab/0x290 [ 109.148721] ? futex_hash+0x15c/0x390 [ 109.149033] futex_ref_get+0x119/0x300 [ 109.149351] ? futex_hash+0x15c/0x390 [ 109.149660] futex_hash+0x70/0x390 [ 109.149954] futex_wake+0x143/0x540 [ 109.150258] ? put_pid+0x1f/0x30 [ 109.150538] ? kernel_clone+0x204/0x7f0 [ 109.150870] ? __pfx_futex_wake+0x10/0x10 [ 109.151210] ? __pfx_kernel_clone+0x10/0x10 [ 109.151564] ? perf_trace_lock+0xb5/0x5d0 [ 109.151910] do_futex+0x26d/0x370 [ 109.152197] ? __pfx_do_futex+0x10/0x10 [ 109.152526] ? __pfx___do_sys_clone+0x10/0x10 [ 109.152892] ? find_held_lock+0x2b/0x80 [ 109.153222] __x64_sys_futex+0x1c9/0x4d0 [ 109.153554] ? __pfx___x64_sys_futex+0x10/0x10 [ 109.153935] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 109.154361] do_syscall_64+0xbf/0x360 [ 109.154672] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.155088] RIP: 0033:0x7f87e8aaab19 [ 109.155390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 109.156843] RSP: 002b:00007ffd3d8c1cc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 109.157452] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f87e8aaab19 [ 109.158021] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f87e8bbdf68 [ 109.158592] RBP: 00007f87e8bbdf60 R08: 00007f87e6020700 R09: 0000000000000000 [ 109.159164] R10: 00007f87e6020700 R11: 0000000000000246 R12: 00007f87e8bc2a68 [ 109.159740] R13: 00007ffd3d8c1dd0 R14: 00007f87e8bbdf60 R15: 000000000001a927 [ 109.160316] [ 109.160509] Modules linked in: [ 109.160772] ---[ end trace 0000000000000000 ]--- [ 109.160774] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#4] SMP KASAN NOPTI [ 109.161155] RIP: 0010:perf_tp_event+0x175/0xe70 [ 109.162032] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 109.162400] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 109.163086] CPU: 0 UID: 0 PID: 3935 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 109.164523] RSP: 0018:ffff888017217800 EFLAGS: 00010212 [ 109.165466] Tainted: [D]=DIE, [W]=WARN [ 109.165888] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 109.166199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 109.166766] RDX: ffff888018023700 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 109.167423] RIP: 0010:perf_tp_event+0x175/0xe70 [ 109.167996] RBP: ffff888017217a70 R08: ffff88806cf31340 R09: ffffe8ffffd16140 [ 109.168365] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 109.168933] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 109.170383] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 109.170947] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 109.171375] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 109.171953] FS: 000055555652c400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 109.172504] RDX: ffff888042cb8000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 109.173120] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.173672] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16140 [ 109.174121] CR2: 00007f47338ee004 CR3: 000000001f643000 CR4: 0000000000350ef0 [ 109.174674] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 109.175227] Kernel panic - not syncing: Fatal exception in interrupt [ 110.218513] Shutting down cpus with NMI [ 110.219514] Kernel Offset: disabled [ 110.219820] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 08:53:12 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=0000000000000001 RCX=ffffffff84bdec0e RDX=fffffbfff0f0ec09 RSI=0000000000000004 RDI=ffffffff87876044 RBP=ffffffff87876044 RSP=ffff88804342f5b0 R8 =0000000000000000 R9 =fffffbfff0f0ec08 R10=ffffffff87876047 R11=202c746c75616620 R12=1ffff11008685eb7 R13=0000000000000007 R14=fffffbfff0f0ec08 R15=ffff88804342f5e8 RIP=ffffffff84bdeda0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555575968400 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe7c00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555575969c18 CR3=0000000043b3e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f79353477c000007f79353477c8 XMM02=00007f79353477e000007f79353477c0 XMM03=00007f79353477c800007f79353477c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888017217170 R8 =0000000000000000 R9 =ffffed100148f046 R10=0000000000000020 R11=313030203a505352 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055555652c400 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe0600000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f47338ee004 CR3=000000001f643000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f87e8b917c000007f87e8b917c8 XMM02=00007f87e8b917e000007f87e8b917c0 XMM03=00007f87e8b917c800007f87e8b917c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000