Warning: Permanently added '[localhost]:22880' (ECDSA) to the list of known hosts. 2025/08/29 09:22:44 fuzzer started 2025/08/29 09:22:44 dialing manager at localhost:43077 syzkaller login: [ 51.768955] cgroup: Unknown subsys name 'net' [ 51.831814] cgroup: Unknown subsys name 'cpuset' [ 51.848253] cgroup: Unknown subsys name 'rlimit' 2025/08/29 09:22:53 syscalls: 2214 2025/08/29 09:22:53 code coverage: enabled 2025/08/29 09:22:53 comparison tracing: enabled 2025/08/29 09:22:53 extra coverage: enabled 2025/08/29 09:22:53 setuid sandbox: enabled 2025/08/29 09:22:53 namespace sandbox: enabled 2025/08/29 09:22:53 Android sandbox: enabled 2025/08/29 09:22:53 fault injection: enabled 2025/08/29 09:22:53 leak checking: enabled 2025/08/29 09:22:53 net packet injection: enabled 2025/08/29 09:22:53 net device setup: enabled 2025/08/29 09:22:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 09:22:53 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 09:22:53 USB emulation: enabled 2025/08/29 09:22:53 hci packet injection: enabled 2025/08/29 09:22:53 wifi device emulation: enabled 2025/08/29 09:22:53 802.15.4 emulation: enabled 2025/08/29 09:22:53 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 09:22:53 fetching corpus: 40, signal 22794/26167 (executing program) 2025/08/29 09:22:54 fetching corpus: 90, signal 31070/35786 (executing program) 2025/08/29 09:22:54 fetching corpus: 140, signal 38657/44565 (executing program) 2025/08/29 09:22:54 fetching corpus: 190, signal 48996/55684 (executing program) 2025/08/29 09:22:54 fetching corpus: 240, signal 52485/60225 (executing program) 2025/08/29 09:22:54 fetching corpus: 290, signal 56807/65457 (executing program) 2025/08/29 09:22:54 fetching corpus: 340, signal 61148/70554 (executing program) 2025/08/29 09:22:54 fetching corpus: 390, signal 64471/74618 (executing program) 2025/08/29 09:22:54 fetching corpus: 440, signal 67266/78219 (executing program) 2025/08/29 09:22:54 fetching corpus: 490, signal 70421/81985 (executing program) 2025/08/29 09:22:55 fetching corpus: 540, signal 72927/85082 (executing program) 2025/08/29 09:22:55 fetching corpus: 590, signal 75168/87935 (executing program) 2025/08/29 09:22:55 fetching corpus: 640, signal 77438/90745 (executing program) 2025/08/29 09:22:55 fetching corpus: 690, signal 80088/93824 (executing program) 2025/08/29 09:22:55 fetching corpus: 740, signal 81294/95693 (executing program) 2025/08/29 09:22:55 fetching corpus: 790, signal 86010/100326 (executing program) 2025/08/29 09:22:55 fetching corpus: 840, signal 88278/102957 (executing program) 2025/08/29 09:22:55 fetching corpus: 890, signal 90725/105550 (executing program) 2025/08/29 09:22:55 fetching corpus: 940, signal 93029/108077 (executing program) 2025/08/29 09:22:56 fetching corpus: 990, signal 95399/110517 (executing program) 2025/08/29 09:22:56 fetching corpus: 1040, signal 96502/112066 (executing program) 2025/08/29 09:22:56 fetching corpus: 1090, signal 98092/113834 (executing program) 2025/08/29 09:22:56 fetching corpus: 1140, signal 99433/115451 (executing program) 2025/08/29 09:22:56 fetching corpus: 1190, signal 101374/117410 (executing program) 2025/08/29 09:22:56 fetching corpus: 1240, signal 103285/119364 (executing program) 2025/08/29 09:22:56 fetching corpus: 1290, signal 104696/120919 (executing program) 2025/08/29 09:22:57 fetching corpus: 1340, signal 105584/122063 (executing program) 2025/08/29 09:22:57 fetching corpus: 1390, signal 107189/123629 (executing program) 2025/08/29 09:22:57 fetching corpus: 1440, signal 109174/125383 (executing program) 2025/08/29 09:22:57 fetching corpus: 1490, signal 110995/126954 (executing program) 2025/08/29 09:22:57 fetching corpus: 1540, signal 112628/128372 (executing program) 2025/08/29 09:22:57 fetching corpus: 1590, signal 114892/130140 (executing program) 2025/08/29 09:22:57 fetching corpus: 1640, signal 115776/131083 (executing program) 2025/08/29 09:22:57 fetching corpus: 1690, signal 117014/132238 (executing program) 2025/08/29 09:22:58 fetching corpus: 1740, signal 118021/133208 (executing program) 2025/08/29 09:22:58 fetching corpus: 1790, signal 119130/134238 (executing program) 2025/08/29 09:22:58 fetching corpus: 1840, signal 120355/135238 (executing program) 2025/08/29 09:22:58 fetching corpus: 1890, signal 121302/136040 (executing program) 2025/08/29 09:22:58 fetching corpus: 1940, signal 122484/137015 (executing program) 2025/08/29 09:22:58 fetching corpus: 1990, signal 123354/137719 (executing program) 2025/08/29 09:22:58 fetching corpus: 2040, signal 124134/138386 (executing program) 2025/08/29 09:22:58 fetching corpus: 2090, signal 125533/139329 (executing program) 2025/08/29 09:22:59 fetching corpus: 2140, signal 126276/140041 (executing program) 2025/08/29 09:22:59 fetching corpus: 2190, signal 126853/140587 (executing program) 2025/08/29 09:22:59 fetching corpus: 2240, signal 127702/141222 (executing program) 2025/08/29 09:22:59 fetching corpus: 2290, signal 128510/141825 (executing program) 2025/08/29 09:22:59 fetching corpus: 2340, signal 129446/142455 (executing program) 2025/08/29 09:22:59 fetching corpus: 2390, signal 130334/143079 (executing program) 2025/08/29 09:22:59 fetching corpus: 2440, signal 131166/143637 (executing program) 2025/08/29 09:22:59 fetching corpus: 2490, signal 131993/144121 (executing program) 2025/08/29 09:22:59 fetching corpus: 2540, signal 132585/144543 (executing program) 2025/08/29 09:23:00 fetching corpus: 2590, signal 133546/145068 (executing program) 2025/08/29 09:23:00 fetching corpus: 2640, signal 134173/145447 (executing program) 2025/08/29 09:23:00 fetching corpus: 2690, signal 134890/145841 (executing program) 2025/08/29 09:23:00 fetching corpus: 2740, signal 135627/146246 (executing program) 2025/08/29 09:23:00 fetching corpus: 2790, signal 136359/146560 (executing program) 2025/08/29 09:23:00 fetching corpus: 2840, signal 137113/146892 (executing program) 2025/08/29 09:23:00 fetching corpus: 2890, signal 137936/147266 (executing program) 2025/08/29 09:23:00 fetching corpus: 2940, signal 138963/147630 (executing program) 2025/08/29 09:23:01 fetching corpus: 2990, signal 139760/148000 (executing program) 2025/08/29 09:23:01 fetching corpus: 3040, signal 140633/148300 (executing program) 2025/08/29 09:23:01 fetching corpus: 3090, signal 141219/148517 (executing program) 2025/08/29 09:23:01 fetching corpus: 3140, signal 141850/148726 (executing program) 2025/08/29 09:23:01 fetching corpus: 3190, signal 142678/148970 (executing program) 2025/08/29 09:23:01 fetching corpus: 3240, signal 143354/149117 (executing program) 2025/08/29 09:23:01 fetching corpus: 3290, signal 143890/149252 (executing program) 2025/08/29 09:23:01 fetching corpus: 3340, signal 144384/149368 (executing program) 2025/08/29 09:23:01 fetching corpus: 3390, signal 144854/149473 (executing program) 2025/08/29 09:23:01 fetching corpus: 3440, signal 145814/149607 (executing program) 2025/08/29 09:23:02 fetching corpus: 3490, signal 146404/149691 (executing program) 2025/08/29 09:23:02 fetching corpus: 3540, signal 146923/149758 (executing program) 2025/08/29 09:23:02 fetching corpus: 3590, signal 147323/149776 (executing program) 2025/08/29 09:23:02 fetching corpus: 3606, signal 147473/149776 (executing program) 2025/08/29 09:23:02 fetching corpus: 3606, signal 147473/149776 (executing program) 2025/08/29 09:23:04 starting 8 fuzzer processes 09:23:04 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000000)="a20e73f1b1812c8df6967520cdbfb383417a9437ee7abadfd3289b31374d", 0xfe74}, {&(0x7f0000000040)="ca74af528a8c7fced14b6addc57cadb344919fd061007429a606ba08958a1aa5b8f50427d1384f17fd636bf5b9e104f1ba17b6bbda050fbd8ced52a48bd2fe015187885af35e7407d41f9753f0b169a1c072bd5d006437ebdad6", 0x5a}], 0x2) 09:23:04 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) write$binfmt_aout(r1, 0x0, 0x0) write$binfmt_aout(r1, 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) 09:23:04 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffdfffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000240)) 09:23:04 executing program 2: perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed, 0x0, 0x2}, 0xe) 09:23:04 executing program 5: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendfile(r1, r2, 0x0, 0x880000) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) 09:23:04 executing program 4: r0 = syz_mount_image$tmpfs(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001980)) mkdirat(r0, &(0x7f0000000000)='./file0\x00', 0x0) fspick(r0, &(0x7f00000000c0)='./file0\x00', 0x0) [ 71.242939] audit: type=1400 audit(1756459384.195:7): avc: denied { execmem } for pid=270 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:23:04 executing program 6: r0 = getpid() sched_setparam(r0, &(0x7f0000000500)=0x6) 09:23:04 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) [ 72.424705] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.430348] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.432374] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.441149] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.446199] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.498562] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 72.501725] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 72.505774] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 72.514570] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 72.517368] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 72.521499] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 72.523082] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 72.524976] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 72.532896] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 72.538439] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 72.617950] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 72.622006] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 72.624115] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 72.639766] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 72.647490] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 72.693501] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 72.694984] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 72.698476] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 72.700619] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 72.703621] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 72.708639] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 72.711660] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 72.714814] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 72.716529] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 72.723704] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 72.728560] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 72.730520] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 72.734566] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 72.736104] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 72.740135] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 72.818942] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 72.846768] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 72.866587] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 72.872559] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 72.918532] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 74.524074] Bluetooth: hci0: command tx timeout [ 74.586422] Bluetooth: hci2: command tx timeout [ 74.587092] Bluetooth: hci1: command tx timeout [ 74.715781] Bluetooth: hci3: command tx timeout [ 74.778401] Bluetooth: hci7: command tx timeout [ 74.778997] Bluetooth: hci4: command tx timeout [ 74.972219] Bluetooth: hci6: command tx timeout [ 75.034857] Bluetooth: hci5: command tx timeout [ 76.570340] Bluetooth: hci0: command tx timeout [ 76.635372] Bluetooth: hci2: command tx timeout [ 76.635808] Bluetooth: hci1: command tx timeout [ 76.762399] Bluetooth: hci3: command tx timeout [ 76.827257] Bluetooth: hci4: command tx timeout [ 76.827700] Bluetooth: hci7: command tx timeout [ 77.018289] Bluetooth: hci6: command tx timeout [ 77.083256] Bluetooth: hci5: command tx timeout [ 78.619272] Bluetooth: hci0: command tx timeout [ 78.684252] Bluetooth: hci1: command tx timeout [ 78.684701] Bluetooth: hci2: command tx timeout [ 78.810329] Bluetooth: hci3: command tx timeout [ 78.874265] Bluetooth: hci7: command tx timeout [ 78.874721] Bluetooth: hci4: command tx timeout [ 79.067252] Bluetooth: hci6: command tx timeout [ 79.130267] Bluetooth: hci5: command tx timeout [ 80.666390] Bluetooth: hci0: command tx timeout [ 80.730288] Bluetooth: hci2: command tx timeout [ 80.730710] Bluetooth: hci1: command tx timeout [ 80.858306] Bluetooth: hci3: command tx timeout [ 80.923988] Bluetooth: hci7: command tx timeout [ 80.924836] Bluetooth: hci4: command tx timeout [ 81.114264] Bluetooth: hci6: command tx timeout [ 81.179355] Bluetooth: hci5: command tx timeout [ 112.022835] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.023514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.144513] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.145124] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.458489] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.459753] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.606243] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.606852] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.776190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.777283] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.975613] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.976745] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:23:46 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) write$binfmt_aout(r1, 0x0, 0x0) write$binfmt_aout(r1, 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) 09:23:46 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) write$binfmt_aout(r1, 0x0, 0x0) write$binfmt_aout(r1, 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) [ 113.151792] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.152892] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:23:46 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) write$binfmt_aout(r1, 0x0, 0x0) write$binfmt_aout(r1, 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) [ 113.275070] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.275781] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:23:46 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) write$binfmt_aout(r1, 0x0, 0x0) write$binfmt_aout(r1, 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) [ 113.337683] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.338298] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.387557] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.388193] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:23:46 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) write$binfmt_aout(r1, 0x0, 0x0) write$binfmt_aout(r1, 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) 09:23:46 executing program 6: r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x9, 0x0, 0x49}) [ 113.498126] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.498738] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:23:46 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) write$binfmt_aout(r1, 0x0, 0x0) write$binfmt_aout(r1, 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) 09:23:46 executing program 6: munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) mremap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) [ 113.694111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.694767] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.752156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.753032] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.849842] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.850543] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.086179] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.087982] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.116328] audit: type=1400 audit(1756459427.067:8): avc: denied { open } for pid=3896 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 114.121324] audit: type=1400 audit(1756459427.068:9): avc: denied { kernel } for pid=3896 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 114.174722] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.176251] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.338881] syz-executor.5 (3876) used greatest stack depth: 24352 bytes left 09:23:47 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000000)="a20e73f1b1812c8df6967520cdbfb383417a9437ee7abadfd3289b31374d", 0xfe74}, {&(0x7f0000000040)="ca74af528a8c7fced14b6addc57cadb344919fd061007429a606ba08958a1aa5b8f50427d1384f17fd636bf5b9e104f1ba17b6bbda050fbd8ced52a48bd2fe015187885af35e7407d41f9753f0b169a1c072bd5d006437ebdad6", 0x5a}], 0x2) 09:23:47 executing program 3: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x729b5e31bc7cc3c) capset(&(0x7f00000000c0)={0x19980330}, &(0x7f0000000100)) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x8}) 09:23:47 executing program 6: munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) mremap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) 09:23:47 executing program 4: r0 = syz_mount_image$tmpfs(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001980)) mkdirat(r0, &(0x7f0000000000)='./file0\x00', 0x0) fspick(r0, &(0x7f00000000c0)='./file0\x00', 0x0) 09:23:47 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) 09:23:47 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffdfffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000240)) 09:23:47 executing program 2: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffdfffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000240)) 09:23:47 executing program 5: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendfile(r1, r2, 0x0, 0x880000) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) 09:23:47 executing program 6: munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) mremap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) [ 114.645288] capability: warning: `syz-executor.3' uses 32-bit capabilities (legacy support in use) 09:23:47 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) 09:23:47 executing program 4: r0 = syz_mount_image$tmpfs(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001980)) mkdirat(r0, &(0x7f0000000000)='./file0\x00', 0x0) fspick(r0, &(0x7f00000000c0)='./file0\x00', 0x0) 09:23:47 executing program 3: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x729b5e31bc7cc3c) capset(&(0x7f00000000c0)={0x19980330}, &(0x7f0000000100)) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x8}) [ 114.825671] Oops: general protection fault, probably for non-canonical address 0xeafffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 114.825704] KASAN: maybe wild-memory-access in range [0x5800000000000190-0x5800000000000197] [ 114.825731] CPU: 0 UID: 0 PID: 3932 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 114.825765] Tainted: [W]=WARN [ 114.825774] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 114.825787] RIP: 0010:perf_tp_event+0x175/0xe70 [ 114.825828] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 114.825850] RSP: 0018:ffff88804642f800 EFLAGS: 00010212 [ 114.825870] RAX: 0b00000000000032 RBX: 57ffffffffffffa0 RCX: ffffc9000b246000 [ 114.825886] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 5800000000000190 [ 114.825901] RBP: ffff88804642fa70 R08: ffff88806ce31340 R09: ffffe8ffffc16058 [ 114.825917] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 114.825931] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 114.825950] FS: 00007f2c367f8700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 114.825972] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.825988] CR2: 00007f2c39396018 CR3: 000000000d644000 CR4: 0000000000350ef0 [ 114.826003] Call Trace: [ 114.826010] [ 114.826019] ? perf_swevent_event+0x63/0x3f0 [ 114.826057] ? __pfx_perf_tp_event+0x10/0x10 [ 114.826089] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 114.826120] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 114.826143] ? perf_swevent_event+0x63/0x3f0 [ 114.826175] ? perf_tp_event+0x807/0xe70 [ 114.826220] ? __pfx_perf_tp_event+0x10/0x10 [ 114.826252] ? __perf_install_in_context+0x503/0xb90 [ 114.826279] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 114.826316] ? do_raw_spin_unlock+0x53/0x220 [ 114.826353] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.826382] perf_trace_run_bpf_submit+0xef/0x180 [ 114.826419] perf_trace_lock+0x337/0x5d0 [ 114.826452] ? __pfx_perf_trace_lock+0x10/0x10 [ 114.826483] ? lock_acquire+0x15e/0x2f0 [ 114.826508] ? futex_ref_get+0x48/0x300 [ 114.826531] ? futex_ref_get+0x114/0x300 [ 114.826550] ? futex_hash+0x15c/0x390 [ 114.826572] lock_release+0x1ab/0x290 [ 114.826600] ? futex_hash+0x15c/0x390 [ 114.826621] futex_ref_get+0x119/0x300 [ 114.826643] ? futex_hash+0x15c/0x390 [ 114.826664] futex_hash+0x70/0x390 [ 114.826688] futex_wake+0x143/0x540 [ 114.826716] ? __pfx_perf_trace_lock+0x10/0x10 [ 114.826747] ? __pfx_futex_wake+0x10/0x10 [ 114.826780] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 114.826807] ? lock_release+0xc8/0x290 [ 114.826838] do_futex+0x26d/0x370 [ 114.826865] ? __pfx_do_futex+0x10/0x10 [ 114.826891] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 114.826917] ? find_held_lock+0x2b/0x80 [ 114.826954] __x64_sys_futex+0x1c9/0x4d0 [ 114.826982] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 114.827020] ? __pfx___x64_sys_futex+0x10/0x10 [ 114.827046] ? xfd_validate_state+0x55/0x180 [ 114.827089] do_syscall_64+0xbf/0x360 [ 114.827113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.827136] RIP: 0033:0x7f2c39282b19 [ 114.827153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.827174] RSP: 002b:00007f2c367f8218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 114.827196] RAX: ffffffffffffffda RBX: 00007f2c39395f68 RCX: 00007f2c39282b19 [ 114.827211] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2c39395f6c [ 114.827226] RBP: 00007f2c39395f60 R08: 000000000000000e R09: 0000000000000000 [ 114.827240] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f2c39395f6c [ 114.827254] R13: 00007ffdacdffacf R14: 00007f2c367f8300 R15: 0000000000022000 [ 114.827283] [ 114.827290] Modules linked in: [ 114.827335] Oops: general protection fault, probably for non-canonical address 0xeafffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 114.886555] KASAN: maybe wild-memory-access in range [0x5800000000000190-0x5800000000000197] [ 114.886586] CPU: 0 UID: 0 PID: 3932 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 114.886620] Tainted: [D]=DIE, [W]=WARN [ 114.886628] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 114.886640] RIP: 0010:perf_tp_event+0x175/0xe70 [ 114.886677] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 114.886697] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 114.886716] RAX: 0b00000000000032 RBX: 57ffffffffffffa0 RCX: ffffffff81898973 [ 114.886730] RDX: ffff888044b3b700 RSI: ffffffff818995b7 RDI: 5800000000000190 [ 114.886744] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16058 [ 114.886757] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000 [ 114.886770] R13: 0000000000000000 R14: ffff88806ce31490 R15: dffffc0000000000 [ 114.886786] FS: 00007f2c367f8700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 114.886806] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.886820] CR2: 00007f2c39396018 CR3: 000000000d644000 CR4: 0000000000350ef0 [ 114.886833] Call Trace: [ 114.886844] [ 114.886851] ? __pfx_blk_mq_complete_request_remote+0x10/0x10 [ 114.886891] ? __pfx_perf_tp_event+0x10/0x10 [ 114.886919] ? __lock_acquire+0x694/0x1b70 [ 114.886949] ? trace_softirq_raise+0xbe/0x100 [ 114.886985] ? lock_acquire+0x15e/0x2f0 [ 114.887007] ? select_task_rq_fair+0x2b6/0x38b0 [ 114.887030] ? find_held_lock+0x2b/0x80 [ 114.887059] ? select_task_rq_fair+0x48c/0x38b0 [ 114.887080] ? __pfx_call_function_single_prep_ipi+0x10/0x10 [ 114.887109] ? trace_ipi_send_cpu.constprop.0+0x158/0x1c0 [ 114.887142] ? __smp_call_single_queue+0x15b/0x2f0 [ 114.887174] ? __pfx___smp_call_single_queue+0x10/0x10 [ 114.887210] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.887236] ? lock_release+0xc8/0x290 [ 114.887257] perf_trace_run_bpf_submit+0xef/0x180 [ 114.887290] perf_trace_lock+0x337/0x5d0 [ 114.887314] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 114.887352] ? __pfx_perf_trace_lock+0x10/0x10 [ 114.887378] ? mark_held_locks+0x49/0x80 [ 114.887403] ? hrtimer_interrupt+0x114/0x830 [ 114.887424] lock_release+0x1ab/0x290 [ 114.887450] ktime_get_update_offsets_now+0xab/0x3c0 [ 114.887476] ? hrtimer_interrupt+0x114/0x830 [ 114.887495] ? __pfx_rcu_core+0x10/0x10 [ 114.887525] hrtimer_interrupt+0x114/0x830 [ 114.887546] ? __local_bh_enable+0x7b/0x90 [ 114.887574] ? handle_softirqs+0x50c/0x770 [ 114.887609] __sysvec_apic_timer_interrupt+0xbb/0x330 [ 114.887639] sysvec_apic_timer_interrupt+0x6b/0x80 [ 114.887668] [ 114.887675] [ 114.887683] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 114.887707] RIP: 0010:oops_exit+0x0/0x50 [ 114.887733] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27 [ 114.887751] RSP: 0018:ffff88804642f690 EFLAGS: 00000202 [ 114.887768] RAX: 000000000001d475 RBX: 0000000000000212 RCX: ffffc9000b246000 [ 114.887781] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 114.887794] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90 [ 114.887806] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88804642f758 [ 114.887819] R13: 0000000000000000 R14: eafffc0000000032 R15: 0000000000000000 [ 114.887840] ? oops_end+0x4a/0xe0 [ 114.887873] oops_end+0x65/0xe0 [ 114.887902] exc_general_protection+0x1a2/0x330 [ 114.887939] asm_exc_general_protection+0x26/0x30 [ 114.887958] RIP: 0010:perf_tp_event+0x175/0xe70 [ 114.887984] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 114.888002] RSP: 0018:ffff88804642f800 EFLAGS: 00010212 [ 114.888018] RAX: 0b00000000000032 RBX: 57ffffffffffffa0 RCX: ffffc9000b246000 [ 114.888045] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 5800000000000190 [ 114.888059] RBP: ffff88804642fa70 R08: ffff88806ce31340 R09: ffffe8ffffc16058 [ 114.888072] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 114.888084] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 114.888106] ? perf_tp_event+0x167/0xe70 [ 114.888135] ? perf_swevent_event+0x63/0x3f0 [ 114.888167] ? __pfx_perf_tp_event+0x10/0x10 [ 114.888196] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 114.888222] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 114.888243] ? perf_swevent_event+0x63/0x3f0 [ 114.888270] ? perf_tp_event+0x807/0xe70 [ 114.888303] ? __pfx_perf_tp_event+0x10/0x10 [ 114.888331] ? __perf_install_in_context+0x503/0xb90 [ 114.888355] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 114.888386] ? do_raw_spin_unlock+0x53/0x220 [ 114.888416] ? perf_trace_run_bpf_submit+0xef/0x180 [ 114.888442] perf_trace_run_bpf_submit+0xef/0x180 [ 114.888474] perf_trace_lock+0x337/0x5d0 [ 114.888502] ? __pfx_perf_trace_lock+0x10/0x10 [ 114.888529] ? lock_acquire+0x15e/0x2f0 [ 114.888550] ? futex_ref_get+0x48/0x300 [ 114.888570] ? futex_ref_get+0x114/0x300 [ 114.888587] ? futex_hash+0x15c/0x390 [ 114.888607] lock_release+0x1ab/0x290 [ 114.888631] ? futex_hash+0x15c/0x390 [ 114.888650] futex_ref_get+0x119/0x300 [ 114.888669] ? futex_hash+0x15c/0x390 [ 114.888687] futex_hash+0x70/0x390 [ 114.888709] futex_wake+0x143/0x540 [ 114.888734] ? __pfx_perf_trace_lock+0x10/0x10 [ 114.888760] ? __pfx_futex_wake+0x10/0x10 [ 114.888789] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 114.888813] ? lock_release+0xc8/0x290 [ 114.888841] do_futex+0x26d/0x370 [ 114.888865] ? __pfx_do_futex+0x10/0x10 [ 114.888888] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 114.888910] ? find_held_lock+0x2b/0x80 [ 114.888943] __x64_sys_futex+0x1c9/0x4d0 [ 114.888967] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 114.889000] ? __pfx___x64_sys_futex+0x10/0x10 [ 114.889023] ? xfd_validate_state+0x55/0x180 [ 114.889060] do_syscall_64+0xbf/0x360 [ 114.889081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.889101] RIP: 0033:0x7f2c39282b19 [ 114.889117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.889135] RSP: 002b:00007f2c367f8218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 114.889155] RAX: ffffffffffffffda RBX: 00007f2c39395f68 RCX: 00007f2c39282b19 [ 114.889168] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2c39395f6c [ 114.889181] RBP: 00007f2c39395f60 R08: 000000000000000e R09: 0000000000000000 [ 114.889193] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f2c39395f6c [ 114.889206] R13: 00007ffdacdffacf R14: 00007f2c367f8300 R15: 0000000000022000 [ 114.889232] [ 114.889239] Modules linked in: [ 114.889256] ---[ end trace 0000000000000000 ]--- [ 114.889266] RIP: 0010:perf_tp_event+0x175/0xe70 [ 114.889292] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 114.889310] RSP: 0018:ffff88804642f800 EFLAGS: 00010212 [ 114.889326] RAX: 0b00000000000032 RBX: 57ffffffffffffa0 RCX: ffffc9000b246000 [ 114.889340] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 5800000000000190 [ 114.889353] RBP: ffff88804642fa70 R08: ffff88806ce31340 R09: ffffe8ffffc16058 [ 114.889366] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 114.889379] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 114.889395] FS: 00007f2c367f8700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 114.889413] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.889427] CR2: 00007f2c39396018 CR3: 000000000d644000 CR4: 0000000000350ef0 [ 114.889442] Kernel panic - not syncing: Fatal exception in interrupt [ 114.889667] Kernel Offset: disabled [ 114.997091] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 09:23:48 Registers: info registers vcpu 0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff828e3230 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88806ce08400 R8 =0000000000000000 R9 =ffffed10016da046 R10=00000000000fe503 R11=552030203a555043 R12=0000000000000823 R13=0000000000000020 R14=fffffbfff10e4882 R15=dffffc0000000000 RIP=ffffffff828e3285 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f2c367f8700 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe6d00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f2c39396018 CR3=000000000d644000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f2c393697c000007f2c393697c8 XMM02=00007f2c393697e000007f2c393697c0 XMM03=00007f2c393697c800007f2c393697c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000001 RCX=0000000000000002 RDX=1ffff11002f7ce57 RSI=0000000000000000 RDI=ffff88806cf31850 RBP=ffff888017be72d0 RSP=ffff888017be7208 R8 =0000000000000000 R9 =0000000000000000 R10=000000000003be53 R11=0000000000021231 R12=ffff888017be72d8 R13=ffff888017be72c0 R14=ffff888017be72b9 R15=ffff888017be7278 RIP=ffffffff813584a2 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555590916400 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe4f00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f4a6f8f33a4 CR3=0000000040bc4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f8279a4b7c000007f8279a4b7c8 XMM02=00007f8279a4b7e000007f8279a4b7c0 XMM03=00007f8279a4b7c800007f8279a4b7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000