Warning: Permanently added '[localhost]:8930' (ECDSA) to the list of known hosts. 2025/08/29 09:15:15 fuzzer started 2025/08/29 09:15:15 dialing manager at localhost:43077 syzkaller login: [ 50.942950] cgroup: Unknown subsys name 'net' [ 51.014021] cgroup: Unknown subsys name 'cpuset' [ 51.027168] cgroup: Unknown subsys name 'rlimit' 2025/08/29 09:15:27 syscalls: 2214 2025/08/29 09:15:27 code coverage: enabled 2025/08/29 09:15:27 comparison tracing: enabled 2025/08/29 09:15:27 extra coverage: enabled 2025/08/29 09:15:27 setuid sandbox: enabled 2025/08/29 09:15:27 namespace sandbox: enabled 2025/08/29 09:15:27 Android sandbox: enabled 2025/08/29 09:15:27 fault injection: enabled 2025/08/29 09:15:27 leak checking: enabled 2025/08/29 09:15:27 net packet injection: enabled 2025/08/29 09:15:27 net device setup: enabled 2025/08/29 09:15:27 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 09:15:27 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 09:15:27 USB emulation: enabled 2025/08/29 09:15:27 hci packet injection: enabled 2025/08/29 09:15:27 wifi device emulation: enabled 2025/08/29 09:15:27 802.15.4 emulation: enabled 2025/08/29 09:15:27 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 09:15:27 fetching corpus: 50, signal 19668/23120 (executing program) 2025/08/29 09:15:27 fetching corpus: 100, signal 33342/37965 (executing program) 2025/08/29 09:15:27 fetching corpus: 150, signal 42737/48394 (executing program) 2025/08/29 09:15:27 fetching corpus: 200, signal 48986/55629 (executing program) 2025/08/29 09:15:28 fetching corpus: 250, signal 55087/62555 (executing program) 2025/08/29 09:15:28 fetching corpus: 300, signal 60036/68282 (executing program) 2025/08/29 09:15:28 fetching corpus: 350, signal 63634/72697 (executing program) 2025/08/29 09:15:28 fetching corpus: 400, signal 66674/76505 (executing program) 2025/08/29 09:15:29 fetching corpus: 450, signal 71338/81581 (executing program) 2025/08/29 09:15:29 fetching corpus: 500, signal 74249/85086 (executing program) 2025/08/29 09:15:29 fetching corpus: 550, signal 77429/88719 (executing program) 2025/08/29 09:15:29 fetching corpus: 600, signal 80154/91917 (executing program) 2025/08/29 09:15:29 fetching corpus: 650, signal 82604/94778 (executing program) 2025/08/29 09:15:30 fetching corpus: 700, signal 84497/97124 (executing program) 2025/08/29 09:15:30 fetching corpus: 750, signal 88397/101005 (executing program) 2025/08/29 09:15:30 fetching corpus: 800, signal 90086/103127 (executing program) 2025/08/29 09:15:30 fetching corpus: 850, signal 92231/105577 (executing program) 2025/08/29 09:15:30 fetching corpus: 900, signal 94153/107758 (executing program) 2025/08/29 09:15:30 fetching corpus: 950, signal 96223/109975 (executing program) 2025/08/29 09:15:30 fetching corpus: 1000, signal 99346/112849 (executing program) 2025/08/29 09:15:30 fetching corpus: 1050, signal 100956/114597 (executing program) 2025/08/29 09:15:30 fetching corpus: 1100, signal 101808/115791 (executing program) 2025/08/29 09:15:30 fetching corpus: 1150, signal 102870/117100 (executing program) 2025/08/29 09:15:31 fetching corpus: 1200, signal 103884/118351 (executing program) 2025/08/29 09:15:31 fetching corpus: 1250, signal 105208/119822 (executing program) 2025/08/29 09:15:31 fetching corpus: 1300, signal 106747/121393 (executing program) 2025/08/29 09:15:31 fetching corpus: 1350, signal 108226/122933 (executing program) 2025/08/29 09:15:31 fetching corpus: 1400, signal 109411/124254 (executing program) 2025/08/29 09:15:31 fetching corpus: 1450, signal 110484/125396 (executing program) 2025/08/29 09:15:31 fetching corpus: 1500, signal 111899/126834 (executing program) 2025/08/29 09:15:31 fetching corpus: 1550, signal 112905/127918 (executing program) 2025/08/29 09:15:31 fetching corpus: 1600, signal 113867/128900 (executing program) 2025/08/29 09:15:31 fetching corpus: 1650, signal 115795/130362 (executing program) 2025/08/29 09:15:31 fetching corpus: 1700, signal 117001/131436 (executing program) 2025/08/29 09:15:31 fetching corpus: 1750, signal 117862/132289 (executing program) 2025/08/29 09:15:32 fetching corpus: 1800, signal 119107/133299 (executing program) 2025/08/29 09:15:32 fetching corpus: 1850, signal 119903/134103 (executing program) 2025/08/29 09:15:32 fetching corpus: 1900, signal 120762/134873 (executing program) 2025/08/29 09:15:32 fetching corpus: 1950, signal 122074/135808 (executing program) 2025/08/29 09:15:32 fetching corpus: 2000, signal 122891/136754 (executing program) 2025/08/29 09:15:32 fetching corpus: 2050, signal 124115/137615 (executing program) 2025/08/29 09:15:32 fetching corpus: 2100, signal 125149/138399 (executing program) 2025/08/29 09:15:32 fetching corpus: 2150, signal 125950/138996 (executing program) 2025/08/29 09:15:32 fetching corpus: 2200, signal 127050/139844 (executing program) 2025/08/29 09:15:32 fetching corpus: 2250, signal 127998/140468 (executing program) 2025/08/29 09:15:32 fetching corpus: 2300, signal 128777/141018 (executing program) 2025/08/29 09:15:32 fetching corpus: 2350, signal 129422/141503 (executing program) 2025/08/29 09:15:33 fetching corpus: 2400, signal 130696/142179 (executing program) 2025/08/29 09:15:33 fetching corpus: 2450, signal 132152/142869 (executing program) 2025/08/29 09:15:33 fetching corpus: 2500, signal 132840/143341 (executing program) 2025/08/29 09:15:33 fetching corpus: 2550, signal 133413/143744 (executing program) 2025/08/29 09:15:33 fetching corpus: 2600, signal 134078/144123 (executing program) 2025/08/29 09:15:33 fetching corpus: 2650, signal 135009/144526 (executing program) 2025/08/29 09:15:33 fetching corpus: 2700, signal 135567/144835 (executing program) 2025/08/29 09:15:33 fetching corpus: 2750, signal 136243/145151 (executing program) 2025/08/29 09:15:33 fetching corpus: 2800, signal 137371/145550 (executing program) 2025/08/29 09:15:33 fetching corpus: 2850, signal 137789/145763 (executing program) 2025/08/29 09:15:33 fetching corpus: 2900, signal 138548/146030 (executing program) 2025/08/29 09:15:33 fetching corpus: 2950, signal 139186/146248 (executing program) 2025/08/29 09:15:34 fetching corpus: 3000, signal 139657/146423 (executing program) 2025/08/29 09:15:34 fetching corpus: 3050, signal 140251/146646 (executing program) 2025/08/29 09:15:34 fetching corpus: 3100, signal 140927/146846 (executing program) 2025/08/29 09:15:34 fetching corpus: 3150, signal 141483/147065 (executing program) 2025/08/29 09:15:34 fetching corpus: 3200, signal 142177/147233 (executing program) 2025/08/29 09:15:34 fetching corpus: 3250, signal 143121/147412 (executing program) 2025/08/29 09:15:34 fetching corpus: 3300, signal 143559/147505 (executing program) 2025/08/29 09:15:34 fetching corpus: 3350, signal 144437/147621 (executing program) 2025/08/29 09:15:34 fetching corpus: 3400, signal 145076/147699 (executing program) 2025/08/29 09:15:34 fetching corpus: 3450, signal 145563/147761 (executing program) 2025/08/29 09:15:34 fetching corpus: 3453, signal 145572/147802 (executing program) 2025/08/29 09:15:34 fetching corpus: 3453, signal 145572/147819 (executing program) 2025/08/29 09:15:34 fetching corpus: 3453, signal 145572/147819 (executing program) 2025/08/29 09:15:37 starting 8 fuzzer processes 09:15:37 executing program 0: r0 = inotify_init1(0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/sem\x00', 0x0, 0x0) r2 = dup2(r0, r1) ioctl$sock_SIOCOUTQ(r2, 0x5421, &(0x7f0000000040)) 09:15:37 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = fcntl$dupfd(r0, 0x0, r0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty, 0x80000001}, 0x1c) 09:15:37 executing program 7: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x20, 0x11, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @nested={0x4}]}, 0x20}], 0x1}, 0x0) 09:15:37 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) recvmsg(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) 09:15:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0x14}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0) [ 71.991766] audit: type=1400 audit(1756458937.128:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:15:37 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r2, r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 09:15:37 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000000)=@req3={0x1000, 0x1, 0x400, 0x4}, 0x1c) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req={0x0, 0x8}, 0x10) 09:15:37 executing program 3: syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, 0x0, 0x0, 0x0) [ 73.103278] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.108394] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.112283] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.119570] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.123171] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.228908] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.231885] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.234801] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.241734] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.244519] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 73.284293] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.290987] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.296047] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.306791] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.311688] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.361498] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.363071] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.364078] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.367076] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 73.369800] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 73.375885] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 73.378406] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.382040] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.388911] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 73.392128] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.399859] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.404525] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.413208] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 73.422369] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.424093] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 73.427260] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.433154] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 73.443591] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 73.448673] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 73.455066] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 73.464664] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 73.466074] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 73.485002] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 73.491828] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 73.504544] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 75.200422] Bluetooth: hci0: command tx timeout [ 75.262489] Bluetooth: hci1: command tx timeout [ 75.389625] Bluetooth: hci2: command tx timeout [ 75.454764] Bluetooth: hci3: command tx timeout [ 75.456204] Bluetooth: hci5: command tx timeout [ 75.518998] Bluetooth: hci6: command tx timeout [ 75.519991] Bluetooth: hci4: command tx timeout [ 75.582821] Bluetooth: hci7: command tx timeout [ 77.246807] Bluetooth: hci0: command tx timeout [ 77.309519] Bluetooth: hci1: command tx timeout [ 77.439248] Bluetooth: hci2: command tx timeout [ 77.502580] Bluetooth: hci3: command tx timeout [ 77.503035] Bluetooth: hci5: command tx timeout [ 77.566402] Bluetooth: hci6: command tx timeout [ 77.566850] Bluetooth: hci4: command tx timeout [ 77.630370] Bluetooth: hci7: command tx timeout [ 79.295349] Bluetooth: hci0: command tx timeout [ 79.358372] Bluetooth: hci1: command tx timeout [ 79.486381] Bluetooth: hci2: command tx timeout [ 79.549498] Bluetooth: hci5: command tx timeout [ 79.549912] Bluetooth: hci3: command tx timeout [ 79.613379] Bluetooth: hci6: command tx timeout [ 79.613793] Bluetooth: hci4: command tx timeout [ 79.677449] Bluetooth: hci7: command tx timeout [ 81.342443] Bluetooth: hci0: command tx timeout [ 81.406361] Bluetooth: hci1: command tx timeout [ 81.534429] Bluetooth: hci2: command tx timeout [ 81.599404] Bluetooth: hci3: command tx timeout [ 81.599825] Bluetooth: hci5: command tx timeout [ 81.663370] Bluetooth: hci4: command tx timeout [ 81.663785] Bluetooth: hci6: command tx timeout [ 81.726411] Bluetooth: hci7: command tx timeout [ 113.443717] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.444691] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.739939] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.740739] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:16:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) recvmsg(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) 09:16:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) recvmsg(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) 09:16:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) recvmsg(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) 09:16:20 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0xd00, 0x1, &(0x7f0000000180)=[{&(0x7f0000000080)="82", 0xfffffffe}]) [ 115.193657] audit: type=1400 audit(1756458980.324:8): avc: denied { open } for pid=3758 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 115.215117] audit: type=1400 audit(1756458980.325:9): avc: denied { kernel } for pid=3758 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 115.733033] loop4: detected capacity change from 0 to 32767 [ 115.803413] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.804621] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:16:21 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0xd00, 0x1, &(0x7f0000000180)=[{&(0x7f0000000080)="82", 0xfffffffe}]) [ 116.107798] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.108630] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.319526] loop4: detected capacity change from 0 to 32767 [ 116.351966] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.353148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:16:21 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0xd00, 0x1, &(0x7f0000000180)=[{&(0x7f0000000080)="82", 0xfffffffe}]) [ 116.591093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.591787] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.674915] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.675753] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.909051] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.909738] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.967241] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.967880] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:16:22 executing program 7: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x20, 0x11, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @nested={0x4}]}, 0x20}], 0x1}, 0x0) [ 117.092584] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.093278] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:16:22 executing program 7: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x20, 0x11, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @nested={0x4}]}, 0x20}], 0x1}, 0x0) [ 117.214976] loop4: detected capacity change from 0 to 32767 [ 117.301933] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.303197] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.364167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.365866] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.874387] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.875016] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.958154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.959059] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.301354] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.302156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.386681] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.387438] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:16:24 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0xd00, 0x1, &(0x7f0000000180)=[{&(0x7f0000000080)="82", 0xfffffffe}]) 09:16:24 executing program 0: r0 = inotify_init1(0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/sem\x00', 0x0, 0x0) r2 = dup2(r0, r1) ioctl$sock_SIOCOUTQ(r2, 0x5421, &(0x7f0000000040)) 09:16:24 executing program 3: creat(&(0x7f00000003c0)='./file0\x00', 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_uid={'access', 0x3d, 0xffffffffffffffff}}]}}) 09:16:24 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = fcntl$dupfd(r0, 0x0, r0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty, 0x80000001}, 0x1c) 09:16:24 executing program 7: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x20, 0x11, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @nested={0x4}]}, 0x20}], 0x1}, 0x0) 09:16:24 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0x14}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0) 09:16:24 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000000)=@req3={0x1000, 0x1, 0x400, 0x4}, 0x1c) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req={0x0, 0x8}, 0x10) 09:16:24 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r2, r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) [ 119.188297] 9p: Unknown access argument 18446744073709551615: -34 09:16:24 executing program 0: r0 = inotify_init1(0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/sem\x00', 0x0, 0x0) r2 = dup2(r0, r1) ioctl$sock_SIOCOUTQ(r2, 0x5421, &(0x7f0000000040)) [ 119.227585] 9p: Unknown access argument 18446744073709551615: -34 09:16:24 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0x14}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0) 09:16:24 executing program 3: creat(&(0x7f00000003c0)='./file0\x00', 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_uid={'access', 0x3d, 0xffffffffffffffff}}]}}) 09:16:24 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000000)=@req3={0x1000, 0x1, 0x400, 0x4}, 0x1c) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req={0x0, 0x8}, 0x10) 09:16:24 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0x14}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0) 09:16:24 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = fcntl$dupfd(r0, 0x0, r0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty, 0x80000001}, 0x1c) 09:16:24 executing program 0: r0 = inotify_init1(0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/sem\x00', 0x0, 0x0) r2 = dup2(r0, r1) ioctl$sock_SIOCOUTQ(r2, 0x5421, &(0x7f0000000040)) [ 119.407185] 9p: Unknown access argument 18446744073709551615: -34 09:16:24 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000000)=@req3={0x1000, 0x1, 0x400, 0x4}, 0x1c) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req={0x0, 0x8}, 0x10) [ 119.797186] loop4: detected capacity change from 0 to 32767 09:16:25 executing program 5: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r2, r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 09:16:25 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r2, r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 09:16:25 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r2, r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 09:16:25 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r2, r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 09:16:25 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r2, r1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 09:16:25 executing program 3: creat(&(0x7f00000003c0)='./file0\x00', 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_uid={'access', 0x3d, 0xffffffffffffffff}}]}}) 09:16:25 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = fcntl$dupfd(r0, 0x0, r0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty, 0x80000001}, 0x1c) [ 120.176236] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 120.177528] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 120.178473] CPU: 0 UID: 0 PID: 3954 Comm: syz-executor.3 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 120.180321] Tainted: [W]=WARN [ 120.180804] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.182007] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.182683] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.185127] RSP: 0018:ffff88804757f7c0 EFLAGS: 00010212 [ 120.185839] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 120.186833] RDX: ffff888014120000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 120.187812] RBP: ffff88804757fa30 R08: ffff88806ce31340 R09: ffffe8ffffc16120 [ 120.188771] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000 [ 120.190156] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.191169] FS: 0000555578e71400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 120.192232] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.193073] CR2: 0000555578e72c18 CR3: 000000000d81a000 CR4: 0000000000350ef0 [ 120.194073] Call Trace: [ 120.194468] [ 120.194830] ? __pfx_perf_tp_event+0x10/0x10 [ 120.195509] ? cpu_util.constprop.0+0x17d/0x340 [ 120.196197] ? __asan_memset+0x24/0x50 [ 120.196884] ? sched_balance_find_dst_group+0xa9a/0x1c00 [ 120.197393] ? lock_release+0xc8/0x290 [ 120.197766] ? __pfx_sched_balance_find_dst_group+0x10/0x10 [ 120.198290] ? __lock_acquire+0x694/0x1b70 [ 120.198692] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.199161] perf_trace_run_bpf_submit+0xef/0x180 [ 120.199624] perf_trace_lock_acquire+0x3c2/0x700 [ 120.200079] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 120.200574] ? lock_acquire+0x15e/0x2f0 [ 120.200957] lock_acquire+0xc5/0x2f0 [ 120.201309] ? futex_private_hash_put+0x4c/0x2d0 [ 120.201753] ? futex_hash+0x2d8/0x390 [ 120.202110] ? lock_release+0xc8/0x290 [ 120.202478] futex_private_hash_put+0x5d/0x2d0 [ 120.202902] ? futex_private_hash_put+0x4c/0x2d0 [ 120.203345] futex_hash_put+0x3f/0x50 [ 120.203708] futex_wake+0x1bb/0x540 [ 120.204057] ? kernel_clone+0x204/0x7f0 [ 120.204433] ? __pfx_futex_wake+0x10/0x10 [ 120.204822] ? __pfx_kernel_clone+0x10/0x10 [ 120.205232] ? __lock_acquire+0x694/0x1b70 [ 120.205636] do_futex+0x26d/0x370 [ 120.205969] ? __pfx_do_futex+0x10/0x10 [ 120.206346] ? __pfx___do_sys_clone+0x10/0x10 [ 120.206766] ? find_held_lock+0x2b/0x80 [ 120.207147] __x64_sys_futex+0x1c9/0x4d0 [ 120.207535] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.207967] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 120.208463] do_syscall_64+0xbf/0x360 [ 120.208827] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.209319] RIP: 0033:0x7f09938b9b19 [ 120.209672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.211329] RSP: 002b:00007ffc2784af28 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.212029] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f09938b9b19 [ 120.212685] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f09939ccf68 [ 120.213344] RBP: 00007f09939ccf60 R08: 00007f0990e2f700 R09: 0000000000000000 [ 120.213994] R10: 00007f0990e2f700 R11: 0000000000000246 R12: 00007f09939d1070 [ 120.214650] R13: 00007ffc2784b030 R14: 00007f09939ccf60 R15: 000000000001d4b6 [ 120.215312] [ 120.215533] Modules linked in: [ 120.215870] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 120.216889] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 120.217683] CPU: 0 UID: 0 PID: 3954 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 120.218768] Tainted: [D]=DIE, [W]=WARN [ 120.219121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.219873] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.220313] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.221983] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 120.222477] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 120.223128] RDX: ffff888014120000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 120.223779] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16120 [ 120.224436] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000 [ 120.225102] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000 [ 120.225754] FS: 0000555578e71400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 120.226494] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.227027] CR2: 0000555578e72c18 CR3: 000000000d81a000 CR4: 0000000000350ef0 [ 120.227681] Call Trace: [ 120.227926] [ 120.228155] ? __pfx_perf_tp_event+0x10/0x10 [ 120.228579] ? trace_pelt_se_tp+0xdf/0x130 [ 120.228985] ? __update_load_avg_se+0x428/0xa40 [ 120.229433] ? lock_is_held_type+0x9e/0x120 [ 120.229852] ? __pick_eevdf+0x208/0x570 [ 120.230230] ? perf_trace_lock_acquire+0xc9/0x700 [ 120.230686] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.231156] ? perf_trace_lock_acquire+0xc9/0x700 [ 120.231611] perf_trace_run_bpf_submit+0xef/0x180 [ 120.232072] perf_trace_lock_acquire+0x3c2/0x700 [ 120.232516] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 120.232970] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 120.233464] ? lock_acquire+0x15e/0x2f0 [ 120.233845] ? find_held_lock+0x2b/0x80 [ 120.234224] ? clockevents_program_event+0x14f/0x360 [ 120.234697] ? lock_release+0xc8/0x290 [ 120.235064] lock_acquire+0xc5/0x2f0 [ 120.235420] ? hrtimer_interrupt+0xd6/0x830 [ 120.235820] ? __pfx_lapic_next_deadline+0x10/0x10 [ 120.236284] _raw_spin_lock_irqsave+0x3a/0x60 [ 120.236711] ? hrtimer_interrupt+0xd6/0x830 [ 120.237116] hrtimer_interrupt+0xd6/0x830 [ 120.237503] ? __pfx_do_sync_core+0x10/0x10 [ 120.237909] ? trace_csd_function_exit+0x134/0x190 [ 120.238378] ? __flush_smp_call_function_queue+0x28c/0x740 [ 120.238913] __sysvec_apic_timer_interrupt+0xbb/0x330 [ 120.239406] sysvec_apic_timer_interrupt+0x6b/0x80 [ 120.239870] [ 120.240090] [ 120.240312] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 120.240810] RIP: 0010:oops_exit+0x0/0x50 [ 120.241215] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27 [ 120.242875] RSP: 0018:ffff88804757f650 EFLAGS: 00000202 [ 120.243374] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f [ 120.244037] RDX: ffff888014120000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 120.244707] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90 [ 120.245372] R10: 0000000000000000 R11: 000000000000002c R12: ffff88804757f718 [ 120.246025] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000 [ 120.246706] ? add_taint+0x5f/0xd0 [ 120.247047] ? oops_end+0x4a/0xe0 [ 120.247396] oops_end+0x65/0xe0 [ 120.247733] exc_general_protection+0x1a2/0x330 [ 120.248187] asm_exc_general_protection+0x26/0x30 [ 120.248650] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.249114] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.250791] RSP: 0018:ffff88804757f7c0 EFLAGS: 00010212 [ 120.251294] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 120.251959] RDX: ffff888014120000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 120.252616] RBP: ffff88804757fa30 R08: ffff88806ce31340 R09: ffffe8ffffc16120 [ 120.253285] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000 [ 120.253944] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.254603] ? perf_tp_event+0x167/0xe70 [ 120.254999] ? __pfx_perf_tp_event+0x10/0x10 [ 120.255429] ? cpu_util.constprop.0+0x17d/0x340 [ 120.255876] ? __asan_memset+0x24/0x50 [ 120.256253] ? sched_balance_find_dst_group+0xa9a/0x1c00 [ 120.256775] ? lock_release+0xc8/0x290 [ 120.257163] ? __pfx_sched_balance_find_dst_group+0x10/0x10 [ 120.257685] ? __lock_acquire+0x694/0x1b70 [ 120.258101] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.258585] perf_trace_run_bpf_submit+0xef/0x180 [ 120.259058] perf_trace_lock_acquire+0x3c2/0x700 [ 120.259517] ? __pfx_perf_trace_lock_acquire+0x10/0x10 [ 120.260019] ? lock_acquire+0x15e/0x2f0 [ 120.260399] lock_acquire+0xc5/0x2f0 [ 120.260753] ? futex_private_hash_put+0x4c/0x2d0 [ 120.261219] ? futex_hash+0x2d8/0x390 [ 120.261588] ? lock_release+0xc8/0x290 [ 120.261970] futex_private_hash_put+0x5d/0x2d0 [ 120.262405] ? futex_private_hash_put+0x4c/0x2d0 [ 120.262861] futex_hash_put+0x3f/0x50 [ 120.263222] futex_wake+0x1bb/0x540 [ 120.263582] ? kernel_clone+0x204/0x7f0 [ 120.263960] ? __pfx_futex_wake+0x10/0x10 [ 120.264360] ? __pfx_kernel_clone+0x10/0x10 [ 120.264776] ? __lock_acquire+0x694/0x1b70 [ 120.265190] do_futex+0x26d/0x370 [ 120.265537] ? __pfx_do_futex+0x10/0x10 [ 120.265921] ? __pfx___do_sys_clone+0x10/0x10 [ 120.266345] ? find_held_lock+0x2b/0x80 [ 120.266731] __x64_sys_futex+0x1c9/0x4d0 [ 120.267127] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.267576] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 120.268070] do_syscall_64+0xbf/0x360 [ 120.268440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.268935] RIP: 0033:0x7f09938b9b19 [ 120.269284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.270942] RSP: 002b:00007ffc2784af28 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.271649] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f09938b9b19 [ 120.272325] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f09939ccf68 [ 120.273026] RBP: 00007f09939ccf60 R08: 00007f0990e2f700 R09: 0000000000000000 [ 120.273687] R10: 00007f0990e2f700 R11: 0000000000000246 R12: 00007f09939d1070 [ 120.274347] R13: 00007ffc2784b030 R14: 00007f09939ccf60 R15: 000000000001d4b6 [ 120.275027] [ 120.275256] Modules linked in: [ 120.275568] ---[ end trace 0000000000000000 ]--- [ 120.276015] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.276473] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.278140] RSP: 0018:ffff88804757f7c0 EFLAGS: 00010212 [ 120.278640] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 120.279297] RDX: ffff888014120000 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 120.279964] RBP: ffff88804757fa30 R08: ffff88806ce31340 R09: ffffe8ffffc16120 [ 120.280618] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000 [ 120.281296] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.281969] FS: 0000555578e71400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 120.282709] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.283249] CR2: 0000555578e72c18 CR3: 000000000d81a000 CR4: 0000000000350ef0 [ 120.283912] Kernel panic - not syncing: Fatal exception in interrupt [ 120.284743] Kernel Offset: disabled [ 120.285120] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 09:16:25 Registers: info registers vcpu 0 RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88804757f130 R8 =0000000000000000 R9 =ffffed1001711046 R10=0000000000000000 R11=000000000000002c R12=000000000000000d R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555578e71400 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe5e00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555578e72c18 CR3=000000000d81a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f09939a07c000007f09939a07c8 XMM02=00007f09939a07e000007f09939a07c0 XMM03=00007f09939a07c800007f09939a07c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000014da5 RBX=ffff88806ce3de00 RCX=ffffc90008640000 RDX=0000000000040000 RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff888044ddf948 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1 R12=ffffed100d9c7bc1 R13=ffff88806ce3de08 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff816880d8 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fa83bc39700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe5800000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa83e7d7018 CR3=000000000e8bb000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fa83e7aa7c000007fa83e7aa7c8 XMM02=00007fa83e7aa7e000007fa83e7aa7c0 XMM03=00007fa83e7aa7c800007fa83e7aa7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000