Debian GNU/Linux 11 syzkaller ttyS0
Warning: Permanently added '[localhost]:58525' (ECDSA) to the list of known hosts.
2025/08/29 09:28:51 fuzzer started
2025/08/29 09:28:51 dialing manager at localhost:43077
syzkaller login: [ 50.567980] cgroup: Unknown subsys name 'net'
[ 50.646399] cgroup: Unknown subsys name 'cpuset'
[ 50.655077] cgroup: Unknown subsys name 'rlimit'
2025/08/29 09:29:02 syscalls: 2214
2025/08/29 09:29:02 code coverage: enabled
2025/08/29 09:29:02 comparison tracing: enabled
2025/08/29 09:29:02 extra coverage: enabled
2025/08/29 09:29:02 setuid sandbox: enabled
2025/08/29 09:29:02 namespace sandbox: enabled
2025/08/29 09:29:02 Android sandbox: enabled
2025/08/29 09:29:02 fault injection: enabled
2025/08/29 09:29:02 leak checking: enabled
2025/08/29 09:29:02 net packet injection: enabled
2025/08/29 09:29:02 net device setup: enabled
2025/08/29 09:29:02 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 09:29:02 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 09:29:02 USB emulation: enabled
2025/08/29 09:29:02 hci packet injection: enabled
2025/08/29 09:29:02 wifi device emulation: enabled
2025/08/29 09:29:02 802.15.4 emulation: enabled
2025/08/29 09:29:02 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 09:29:02 fetching corpus: 50, signal 22463/25833 (executing program)
2025/08/29 09:29:02 fetching corpus: 100, signal 33619/38275 (executing program)
2025/08/29 09:29:02 fetching corpus: 150, signal 45419/50948 (executing program)
2025/08/29 09:29:02 fetching corpus: 200, signal 50274/56901 (executing program)
2025/08/29 09:29:02 fetching corpus: 250, signal 58111/65542 (executing program)
2025/08/29 09:29:02 fetching corpus: 300, signal 62592/70862 (executing program)
2025/08/29 09:29:03 fetching corpus: 350, signal 66499/75554 (executing program)
2025/08/29 09:29:03 fetching corpus: 400, signal 69677/79458 (executing program)
2025/08/29 09:29:03 fetching corpus: 450, signal 73631/83925 (executing program)
2025/08/29 09:29:03 fetching corpus: 500, signal 75749/86794 (executing program)
2025/08/29 09:29:03 fetching corpus: 550, signal 78457/90110 (executing program)
2025/08/29 09:29:03 fetching corpus: 600, signal 81409/93591 (executing program)
2025/08/29 09:29:03 fetching corpus: 650, signal 83907/96564 (executing program)
2025/08/29 09:29:03 fetching corpus: 700, signal 87133/100057 (executing program)
2025/08/29 09:29:04 fetching corpus: 750, signal 89081/102395 (executing program)
2025/08/29 09:29:04 fetching corpus: 800, signal 90625/104398 (executing program)
2025/08/29 09:29:04 fetching corpus: 850, signal 91741/106021 (executing program)
2025/08/29 09:29:04 fetching corpus: 900, signal 93908/108421 (executing program)
2025/08/29 09:29:04 fetching corpus: 950, signal 95717/110531 (executing program)
2025/08/29 09:29:04 fetching corpus: 1000, signal 97033/112222 (executing program)
2025/08/29 09:29:04 fetching corpus: 1050, signal 98207/113789 (executing program)
2025/08/29 09:29:04 fetching corpus: 1100, signal 100129/115823 (executing program)
2025/08/29 09:29:04 fetching corpus: 1150, signal 101770/117670 (executing program)
2025/08/29 09:29:05 fetching corpus: 1200, signal 103508/119542 (executing program)
2025/08/29 09:29:05 fetching corpus: 1250, signal 104570/120921 (executing program)
2025/08/29 09:29:05 fetching corpus: 1300, signal 106140/122544 (executing program)
2025/08/29 09:29:05 fetching corpus: 1350, signal 107400/123938 (executing program)
2025/08/29 09:29:05 fetching corpus: 1400, signal 108822/125420 (executing program)
2025/08/29 09:29:05 fetching corpus: 1450, signal 109997/126721 (executing program)
2025/08/29 09:29:05 fetching corpus: 1500, signal 111229/127965 (executing program)
2025/08/29 09:29:05 fetching corpus: 1550, signal 112218/129100 (executing program)
2025/08/29 09:29:05 fetching corpus: 1600, signal 114316/130851 (executing program)
2025/08/29 09:29:05 fetching corpus: 1650, signal 115172/131818 (executing program)
2025/08/29 09:29:06 fetching corpus: 1700, signal 115921/132730 (executing program)
2025/08/29 09:29:06 fetching corpus: 1750, signal 117555/134133 (executing program)
2025/08/29 09:29:06 fetching corpus: 1800, signal 118348/135085 (executing program)
2025/08/29 09:29:06 fetching corpus: 1850, signal 119443/136100 (executing program)
2025/08/29 09:29:06 fetching corpus: 1900, signal 120697/137128 (executing program)
2025/08/29 09:29:06 fetching corpus: 1950, signal 122060/138530 (executing program)
2025/08/29 09:29:06 fetching corpus: 2000, signal 123000/139405 (executing program)
2025/08/29 09:29:06 fetching corpus: 2050, signal 123865/140207 (executing program)
2025/08/29 09:29:06 fetching corpus: 2100, signal 124836/141041 (executing program)
2025/08/29 09:29:07 fetching corpus: 2150, signal 125827/141849 (executing program)
2025/08/29 09:29:07 fetching corpus: 2200, signal 126934/142672 (executing program)
2025/08/29 09:29:07 fetching corpus: 2250, signal 127716/143286 (executing program)
2025/08/29 09:29:07 fetching corpus: 2300, signal 128456/143896 (executing program)
2025/08/29 09:29:07 fetching corpus: 2350, signal 129256/144579 (executing program)
2025/08/29 09:29:07 fetching corpus: 2400, signal 130729/145419 (executing program)
2025/08/29 09:29:07 fetching corpus: 2450, signal 131178/145879 (executing program)
2025/08/29 09:29:07 fetching corpus: 2500, signal 132032/146464 (executing program)
2025/08/29 09:29:07 fetching corpus: 2550, signal 132832/147015 (executing program)
2025/08/29 09:29:07 fetching corpus: 2600, signal 133532/147483 (executing program)
2025/08/29 09:29:08 fetching corpus: 2650, signal 134291/147994 (executing program)
2025/08/29 09:29:08 fetching corpus: 2700, signal 134842/148422 (executing program)
2025/08/29 09:29:08 fetching corpus: 2750, signal 135406/148805 (executing program)
2025/08/29 09:29:08 fetching corpus: 2800, signal 136378/149370 (executing program)
2025/08/29 09:29:08 fetching corpus: 2850, signal 136826/149716 (executing program)
2025/08/29 09:29:08 fetching corpus: 2900, signal 137849/150188 (executing program)
2025/08/29 09:29:08 fetching corpus: 2950, signal 138500/150539 (executing program)
2025/08/29 09:29:08 fetching corpus: 3000, signal 139091/150837 (executing program)
2025/08/29 09:29:08 fetching corpus: 3050, signal 139554/151097 (executing program)
2025/08/29 09:29:08 fetching corpus: 3100, signal 140448/151432 (executing program)
2025/08/29 09:29:09 fetching corpus: 3150, signal 140941/151715 (executing program)
2025/08/29 09:29:09 fetching corpus: 3200, signal 141721/151991 (executing program)
2025/08/29 09:29:09 fetching corpus: 3250, signal 142283/152209 (executing program)
2025/08/29 09:29:09 fetching corpus: 3300, signal 142945/152453 (executing program)
2025/08/29 09:29:09 fetching corpus: 3350, signal 143898/152741 (executing program)
2025/08/29 09:29:09 fetching corpus: 3400, signal 144563/152905 (executing program)
2025/08/29 09:29:09 fetching corpus: 3450, signal 145333/153103 (executing program)
2025/08/29 09:29:09 fetching corpus: 3500, signal 146046/153259 (executing program)
2025/08/29 09:29:10 fetching corpus: 3550, signal 146865/153408 (executing program)
2025/08/29 09:29:10 fetching corpus: 3600, signal 147276/153520 (executing program)
2025/08/29 09:29:10 fetching corpus: 3650, signal 147919/153594 (executing program)
2025/08/29 09:29:10 fetching corpus: 3700, signal 148472/153637 (executing program)
2025/08/29 09:29:10 fetching corpus: 3750, signal 148782/153646 (executing program)
2025/08/29 09:29:10 fetching corpus: 3800, signal 149577/153647 (executing program)
2025/08/29 09:29:10 fetching corpus: 3850, signal 150260/153652 (executing program)
2025/08/29 09:29:10 fetching corpus: 3900, signal 150693/153659 (executing program)
2025/08/29 09:29:10 fetching corpus: 3950, signal 151159/153692 (executing program)
2025/08/29 09:29:11 fetching corpus: 3978, signal 151576/153693 (executing program)
2025/08/29 09:29:11 fetching corpus: 3978, signal 151576/153693 (executing program)
2025/08/29 09:29:12 starting 8 fuzzer processes
09:29:12 executing program 0:
ppoll(0xfffffffffffffffd, 0x0, &(0x7f0000000cc0)={0x0, 0x989680}, 0x0, 0x0)
09:29:12 executing program 3:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x40e5, &(0x7f0000000100), &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
r2 = fcntl$dupfd(r1, 0x0, r0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000036c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000013c0), 0x0)
09:29:12 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@nr_inodes={'nr_inodes', 0x3d, [0x34, 0x70, 0x0]}}]})
09:29:13 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
09:29:13 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000019040)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/102400, 0x19000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'})
ioctl$SIOCGIFHWADDR(r1, 0x800454e1, 0x0)
09:29:13 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000006c40)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x4000})
09:29:13 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @auth_requested={{0x411, 0x2}}}, 0x6)
09:29:13 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getpeername$inet6(r0, 0x0, 0x0)
[ 71.707585] audit: type=1400 audit(1756459753.129:7): avc: denied { execmem } for pid=272 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[ 72.940919] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 72.943672] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 72.946666] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 72.954569] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 72.958543] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 73.010961] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 73.022741] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 73.024771] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 73.028093] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 73.029645] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 73.031043] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 73.033546] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 73.037436] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 73.038800] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 73.040564] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 73.042433] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 73.045202] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 73.047537] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 73.049536] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 73.051086] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 73.053857] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 73.057559] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 73.057607] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 73.060015] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 73.070845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 73.073454] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 73.086726] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 73.106825] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 73.110502] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 73.110608] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 73.113025] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 73.113775] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 73.116103] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 73.119858] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 73.122864] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 73.139267] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 73.143485] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 73.149474] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 73.167740] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 73.186850] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 75.034896] Bluetooth: hci0: command tx timeout
[ 75.097753] Bluetooth: hci4: command tx timeout
[ 75.162388] Bluetooth: hci1: command tx timeout
[ 75.163330] Bluetooth: hci6: command tx timeout
[ 75.164215] Bluetooth: hci5: command tx timeout
[ 75.164275] Bluetooth: hci2: command tx timeout
[ 75.225274] Bluetooth: hci7: command tx timeout
[ 75.225303] Bluetooth: hci3: command tx timeout
[ 77.081240] Bluetooth: hci0: command tx timeout
[ 77.146208] Bluetooth: hci4: command tx timeout
[ 77.209247] Bluetooth: hci2: command tx timeout
[ 77.209651] Bluetooth: hci5: command tx timeout
[ 77.210045] Bluetooth: hci6: command tx timeout
[ 77.210201] Bluetooth: hci1: command tx timeout
[ 77.273172] Bluetooth: hci7: command tx timeout
[ 77.273230] Bluetooth: hci3: command tx timeout
[ 79.129197] Bluetooth: hci0: command tx timeout
[ 79.196474] Bluetooth: hci4: command tx timeout
[ 79.257175] Bluetooth: hci6: command tx timeout
[ 79.258210] Bluetooth: hci1: command tx timeout
[ 79.258722] Bluetooth: hci5: command tx timeout
[ 79.259242] Bluetooth: hci2: command tx timeout
[ 79.321271] Bluetooth: hci7: command tx timeout
[ 79.322311] Bluetooth: hci3: command tx timeout
[ 81.178190] Bluetooth: hci0: command tx timeout
[ 81.241205] Bluetooth: hci4: command tx timeout
[ 81.305209] Bluetooth: hci2: command tx timeout
[ 81.305630] Bluetooth: hci5: command tx timeout
[ 81.305835] Bluetooth: hci1: command tx timeout
[ 81.305985] Bluetooth: hci6: command tx timeout
[ 81.369777] Bluetooth: hci3: command tx timeout
[ 81.369896] Bluetooth: hci7: command tx timeout
[ 112.207531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.208220] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.386155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.386797] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.605713] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.606848] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.745310] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.745906] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.837799] audit: type=1400 audit(1756459794.259:8): avc: denied { open } for pid=3747 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 112.848460] audit: type=1400 audit(1756459794.259:9): avc: denied { kernel } for pid=3747 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
09:29:54 executing program 3:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x40e5, &(0x7f0000000100), &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
r2 = fcntl$dupfd(r1, 0x0, r0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000036c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000013c0), 0x0)
09:29:54 executing program 3:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x40e5, &(0x7f0000000100), &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
r2 = fcntl$dupfd(r1, 0x0, r0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000036c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000013c0), 0x0)
09:29:54 executing program 3:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x40e5, &(0x7f0000000100), &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
r2 = fcntl$dupfd(r1, 0x0, r0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000036c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000013c0), 0x0)
09:29:54 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000019040)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/102400, 0x19000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'})
ioctl$SIOCGIFHWADDR(r1, 0x800454e1, 0x0)
09:29:54 executing program 3:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000019040)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/102400, 0x19000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'})
ioctl$SIOCGIFHWADDR(r1, 0x800454e1, 0x0)
[ 113.419715] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.420468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:29:54 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000019040)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/102400, 0x19000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'})
ioctl$SIOCGIFHWADDR(r1, 0x800454e1, 0x0)
[ 113.591864] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.592506] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:29:55 executing program 3:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000019040)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/102400, 0x19000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'})
ioctl$SIOCGIFHWADDR(r1, 0x800454e1, 0x0)
09:29:55 executing program 5:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000019040)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/102400, 0x19000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'})
ioctl$SIOCGIFHWADDR(r1, 0x800454e1, 0x0)
[ 114.115034] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.115686] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.227477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.228081] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.453980] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.454628] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.507157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.507740] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.628363] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.628966] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.656152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.656715] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.679862] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.680452] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.704158] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.704722] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.730941] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.731554] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.810052] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.810731] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:29:56 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@nr_inodes={'nr_inodes', 0x3d, [0x34, 0x70, 0x0]}}]})
09:29:56 executing program 0:
ppoll(0xfffffffffffffffd, 0x0, &(0x7f0000000cc0)={0x0, 0x989680}, 0x0, 0x0)
09:29:56 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getpeername$inet6(r0, 0x0, 0x0)
09:29:56 executing program 5:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x40e5, &(0x7f0000000100), &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
r2 = fcntl$dupfd(r1, 0x0, r0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000036c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000013c0), 0x0)
09:29:56 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000006c40)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x4000})
09:29:56 executing program 3:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000019040)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/102400, 0x19000, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'})
ioctl$SIOCGIFHWADDR(r1, 0x800454e1, 0x0)
09:29:56 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @auth_requested={{0x411, 0x2}}}, 0x6)
09:29:56 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
09:29:56 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
09:29:56 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @auth_requested={{0x411, 0x2}}}, 0x6)
09:29:56 executing program 0:
ppoll(0xfffffffffffffffd, 0x0, &(0x7f0000000cc0)={0x0, 0x989680}, 0x0, 0x0)
[ 115.136082] kmemleak: Found object by alias at 0x607f1a63435c
[ 115.136102] CPU: 0 UID: 0 PID: 3932 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.136123] Tainted: [W]=WARN
[ 115.136126] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.136133] Call Trace:
[ 115.136137]
[ 115.136142] dump_stack_lvl+0xca/0x120
[ 115.136165] __lookup_object+0x94/0xb0
[ 115.136181] delete_object_full+0x27/0x70
[ 115.136196] free_percpu+0x30/0x1160
[ 115.136212] ? arch_uprobe_clear_state+0x16/0x140
[ 115.136231] futex_hash_free+0x38/0xc0
[ 115.136244] mmput+0x2d3/0x390
[ 115.136262] do_exit+0x79d/0x2970
[ 115.136276] ? signal_wake_up_state+0x85/0x120
[ 115.136291] ? zap_other_threads+0x2b9/0x3a0
[ 115.136306] ? __pfx_do_exit+0x10/0x10
[ 115.136319] ? do_group_exit+0x1c3/0x2a0
[ 115.136332] ? lock_release+0xc8/0x290
[ 115.136348] do_group_exit+0xd3/0x2a0
[ 115.136363] __x64_sys_exit_group+0x3e/0x50
[ 115.136376] x64_sys_call+0x18c5/0x18d0
[ 115.136391] do_syscall_64+0xbf/0x360
[ 115.136403] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.136414] RIP: 0033:0x7f7d8aabfb19
[ 115.136422] Code: Unable to access opcode bytes at 0x7f7d8aabfaef.
[ 115.136427] RSP: 002b:00007ffcc1b982b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 115.136439] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f7d8aabfb19
[ 115.136446] RDX: 00007f7d8aa7272b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 115.136453] RBP: 0000000000000000 R08: 0000001b2d3242c8 R09: 0000000000000000
[ 115.136460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 115.136466] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffcc1b983a0
[ 115.136481]
[ 115.136485] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.136491] kmemleak: comm "syz-executor.0", pid 281, jiffies 4294782030
[ 115.136498] kmemleak: min_count = 1
[ 115.136502] kmemleak: count = 0
[ 115.136505] kmemleak: flags = 0x21
[ 115.136509] kmemleak: checksum = 0
[ 115.136512] kmemleak: backtrace:
[ 115.136516] pcpu_alloc_noprof+0x87a/0x1170
[ 115.136530] mm_init+0x99b/0x1170
[ 115.136538] copy_process+0x3ab7/0x73c0
[ 115.136548] kernel_clone+0xea/0x7f0
[ 115.136557] __do_sys_clone+0xce/0x120
[ 115.136567] do_syscall_64+0xbf/0x360
[ 115.136575] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.180621] kmemleak: Found object by alias at 0x607f1a634360
[ 115.180632] CPU: 0 UID: 0 PID: 3935 Comm: syz-executor.0 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.180649] Tainted: [W]=WARN
[ 115.180653] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.180659] Call Trace:
[ 115.180662]
[ 115.180666] dump_stack_lvl+0xca/0x120
[ 115.180685] __lookup_object+0x94/0xb0
[ 115.180700] delete_object_full+0x27/0x70
[ 115.180715] free_percpu+0x30/0x1160
[ 115.180729] ? arch_uprobe_clear_state+0x16/0x140
[ 115.180748] futex_hash_free+0x38/0xc0
[ 115.180760] mmput+0x2d3/0x390
[ 115.180777] do_exit+0x79d/0x2970
[ 115.180790] ? signal_wake_up_state+0x85/0x120
[ 115.180805] ? zap_other_threads+0x2b9/0x3a0
[ 115.180820] ? __pfx_do_exit+0x10/0x10
[ 115.180832] ? do_group_exit+0x1c3/0x2a0
[ 115.180845] ? lock_release+0xc8/0x290
[ 115.180861] do_group_exit+0xd3/0x2a0
[ 115.180875] __x64_sys_exit_group+0x3e/0x50
[ 115.180889] x64_sys_call+0x18c5/0x18d0
[ 115.180902] do_syscall_64+0xbf/0x360
[ 115.180914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.180924] RIP: 0033:0x7f6687b53b19
[ 115.180932] Code: Unable to access opcode bytes at 0x7f6687b53aef.
[ 115.180937] RSP: 002b:00007ffff04c8d48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 115.180948] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f6687b53b19
[ 115.180955] RDX: 00007f6687b0672b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 115.180962] RBP: 0000000000000000 R08: 0000001b2cd2001c R09: 0000000000000000
[ 115.180969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 115.180975] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffff04c8e30
[ 115.180990]
[ 115.180994] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.181000] kmemleak: comm "syz-executor.0", pid 281, jiffies 4294782030
[ 115.181007] kmemleak: min_count = 1
[ 115.181010] kmemleak: count = 0
[ 115.181014] kmemleak: flags = 0x21
[ 115.181018] kmemleak: checksum = 0
[ 115.181021] kmemleak: backtrace:
[ 115.181024] pcpu_alloc_noprof+0x87a/0x1170
[ 115.181038] mm_init+0x99b/0x1170
[ 115.181046] copy_process+0x3ab7/0x73c0
[ 115.181056] kernel_clone+0xea/0x7f0
[ 115.181065] __do_sys_clone+0xce/0x120
[ 115.181075] do_syscall_64+0xbf/0x360
[ 115.181083] entry_SYSCALL_64_after_hwframe+0x77/0x7f
09:29:56 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@nr_inodes={'nr_inodes', 0x3d, [0x34, 0x70, 0x0]}}]})
09:29:56 executing program 5:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x40e5, &(0x7f0000000100), &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
r2 = fcntl$dupfd(r1, 0x0, r0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000036c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000013c0), 0x0)
09:29:56 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000006c40)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x4000})
09:29:56 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getpeername$inet6(r0, 0x0, 0x0)
09:29:56 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
09:29:56 executing program 0:
ppoll(0xfffffffffffffffd, 0x0, &(0x7f0000000cc0)={0x0, 0x989680}, 0x0, 0x0)
09:29:56 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @auth_requested={{0x411, 0x2}}}, 0x6)
[ 115.263261] kmemleak: Found object by alias at 0x607f1a63435c
[ 115.263282] CPU: 0 UID: 0 PID: 3940 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.263299] Tainted: [W]=WARN
[ 115.263303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.263310] Call Trace:
[ 115.263314]
[ 115.263318] dump_stack_lvl+0xca/0x120
[ 115.263341] __lookup_object+0x94/0xb0
[ 115.263357] delete_object_full+0x27/0x70
[ 115.263372] free_percpu+0x30/0x1160
[ 115.263389] ? arch_uprobe_clear_state+0x16/0x140
[ 115.263408] futex_hash_free+0x38/0xc0
[ 115.263422] mmput+0x2d3/0x390
[ 115.263440] do_exit+0x79d/0x2970
[ 115.263457] ? __pfx_do_exit+0x10/0x10
[ 115.263471] ? find_held_lock+0x2b/0x80
[ 115.263488] ? get_signal+0x835/0x2340
[ 115.263508] do_group_exit+0xd3/0x2a0
[ 115.263523] get_signal+0x2315/0x2340
[ 115.263539] ? put_task_stack+0xd2/0x240
[ 115.263554] ? __pfx_get_signal+0x10/0x10
[ 115.263569] ? __schedule+0xe91/0x3590
[ 115.263588] arch_do_signal_or_restart+0x80/0x790
[ 115.263605] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 115.263621] ? __x64_sys_futex+0x1c9/0x4d0
[ 115.263633] ? __x64_sys_futex+0x1d2/0x4d0
[ 115.263646] ? fput+0x6a/0x100
[ 115.263661] ? __pfx___x64_sys_futex+0x10/0x10
[ 115.263673] ? ksys_write+0x1a3/0x240
[ 115.263689] exit_to_user_mode_loop+0x8b/0x110
[ 115.263701] do_syscall_64+0x2f7/0x360
[ 115.263713] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.263725] RIP: 0033:0x7f7d8aabfb19
[ 115.263733] Code: Unable to access opcode bytes at 0x7f7d8aabfaef.
[ 115.263739] RSP: 002b:00007f7d88035218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 115.263750] RAX: 0000000000000001 RBX: 00007f7d8abd2f68 RCX: 00007f7d8aabfb19
[ 115.263757] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7d8abd2f6c
[ 115.263764] RBP: 00007f7d8abd2f60 R08: 0000000000000016 R09: 0000000000000000
[ 115.263771] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f7d8abd2f6c
[ 115.263778] R13: 00007ffcc1b9808f R14: 00007f7d88035300 R15: 0000000000022000
[ 115.263793]
[ 115.263797] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.263804] kmemleak: comm "syz-executor.5", pid 282, jiffies 4294782143
[ 115.263810] kmemleak: min_count = 1
[ 115.263814] kmemleak: count = 0
[ 115.263818] kmemleak: flags = 0x21
[ 115.263821] kmemleak: checksum = 0
[ 115.263825] kmemleak: backtrace:
[ 115.263828] pcpu_alloc_noprof+0x87a/0x1170
[ 115.263843] mm_init+0x99b/0x1170
[ 115.263850] copy_process+0x3ab7/0x73c0
[ 115.263860] kernel_clone+0xea/0x7f0
[ 115.263870] __do_sys_clone+0xce/0x120
[ 115.263879] do_syscall_64+0xbf/0x360
[ 115.263888] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.265507] kmemleak: Cannot insert 0x607f1a634360 into the object search tree (overlaps existing)
[ 115.265528] CPU: 1 UID: 0 PID: 3946 Comm: syz-executor.5 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.265548] Tainted: [W]=WARN
[ 115.265553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.265561] Call Trace:
[ 115.265565]
[ 115.265570] dump_stack_lvl+0xca/0x120
[ 115.265601] __link_object+0x190/0x210
[ 115.265621] __create_object+0x48/0x80
[ 115.265639] pcpu_alloc_noprof+0x87a/0x1170
[ 115.265666] perf_trace_event_init+0x366/0xa10
[ 115.265682] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 115.265702] perf_trace_init+0x1a4/0x2f0
[ 115.265718] perf_tp_event_init+0xa6/0x120
[ 115.265737] perf_try_init_event+0x140/0x9f0
[ 115.265755] perf_event_alloc.part.0+0x118e/0x45f0
[ 115.265774] ? perf_event_alloc.part.0+0x1074/0x45f0
[ 115.265796] ? __fget_files+0x203/0x3b0
[ 115.265813] ? __pfx_perf_event_alloc.part.0+0x10/0x10
[ 115.265832] ? find_held_lock+0x2b/0x80
[ 115.265852] ? __do_sys_perf_event_open+0x11df/0x2c20
[ 115.265870] __do_sys_perf_event_open+0x719/0x2c20
[ 115.265890] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 115.265904] ? find_held_lock+0x2b/0x80
[ 115.265932] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 115.265947] do_syscall_64+0xbf/0x360
[ 115.265961] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.265974] RIP: 0033:0x7f88f8201b19
[ 115.265984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 115.265997] RSP: 002b:00007f88f5777188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 115.266009] RAX: ffffffffffffffda RBX: 00007f88f8314f60 RCX: 00007f88f8201b19
[ 115.266017] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000340
[ 115.266025] RBP: 00007f88f825bf6d R08: 0000000000000000 R09: 0000000000000000
[ 115.266032] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 115.266040] R13: 00007ffc38556ebf R14: 00007f88f5777300 R15: 0000000000022000
[ 115.266057]
[ 115.266935] kmemleak: Kernel memory leak detector disabled
[ 115.266940] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.266948] kmemleak: comm "syz-executor.5", pid 282, jiffies 4294782143
[ 115.266956] kmemleak: min_count = 1
[ 115.266960] kmemleak: count = 0
[ 115.266963] kmemleak: flags = 0x21
[ 115.266967] kmemleak: checksum = 0
[ 115.266971] kmemleak: backtrace:
[ 115.266975] pcpu_alloc_noprof+0x87a/0x1170
[ 115.266991] mm_init+0x99b/0x1170
[ 115.267001] copy_process+0x3ab7/0x73c0
[ 115.267012] kernel_clone+0xea/0x7f0
[ 115.267023] __do_sys_clone+0xce/0x120
[ 115.267033] do_syscall_64+0xbf/0x360
[ 115.267042] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.311209] kmemleak: Found object by alias at 0x607f1a634360
[ 115.311221] CPU: 0 UID: 0 PID: 3937 Comm: syz-executor.0 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.311239] Tainted: [W]=WARN
[ 115.311243] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.311250] Call Trace:
[ 115.311253]
[ 115.311258] dump_stack_lvl+0xca/0x120
[ 115.311277] __lookup_object+0x94/0xb0
[ 115.311292] delete_object_full+0x27/0x70
[ 115.311307] free_percpu+0x30/0x1160
[ 115.311321] ? arch_uprobe_clear_state+0x16/0x140
[ 115.311339] futex_hash_free+0x38/0xc0
[ 115.311351] mmput+0x2d3/0x390
[ 115.311372] do_exit+0x79d/0x2970
[ 115.311384] ? signal_wake_up_state+0x85/0x120
[ 115.311399] ? zap_other_threads+0x2b9/0x3a0
[ 115.311414] ? __pfx_do_exit+0x10/0x10
[ 115.311427] ? do_group_exit+0x1c3/0x2a0
[ 115.311440] ? lock_release+0xc8/0x290
[ 115.311455] do_group_exit+0xd3/0x2a0
[ 115.311469] __x64_sys_exit_group+0x3e/0x50
[ 115.311483] x64_sys_call+0x18c5/0x18d0
[ 115.311497] do_syscall_64+0xbf/0x360
[ 115.311508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.311519] RIP: 0033:0x7f6687b53b19
[ 115.311527] Code: Unable to access opcode bytes at 0x7f6687b53aef.
[ 115.311532] RSP: 002b:00007ffff04c8d48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 115.311542] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f6687b53b19
[ 115.311549] RDX: 00007f6687b0672b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 115.311556] RBP: 0000000000000000 R08: 0000001b2cd2001c R09: 0000000000000000
[ 115.311563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 115.311569] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffff04c8e30
[ 115.311584]
[ 115.311588] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.311594] kmemleak: comm "syz-executor.5", pid 282, jiffies 4294782143
[ 115.311601] kmemleak: min_count = 1
[ 115.311604] kmemleak: count = 0
[ 115.311608] kmemleak: flags = 0x21
[ 115.311611] kmemleak: checksum = 0
[ 115.311615] kmemleak: backtrace:
[ 115.311618] pcpu_alloc_noprof+0x87a/0x1170
[ 115.311632] mm_init+0x99b/0x1170
[ 115.311640] copy_process+0x3ab7/0x73c0
[ 115.311650] kernel_clone+0xea/0x7f0
[ 115.311659] __do_sys_clone+0xce/0x120
[ 115.311669] do_syscall_64+0xbf/0x360
[ 115.311677] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.347053] kmemleak: Found object by alias at 0x607f1a634364
[ 115.347075] CPU: 1 UID: 0 PID: 3952 Comm: syz-executor.1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.347094] Tainted: [W]=WARN
[ 115.347098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.347110] Call Trace:
[ 115.347115]
[ 115.347120] dump_stack_lvl+0xca/0x120
[ 115.347148] __lookup_object+0x94/0xb0
[ 115.347166] delete_object_full+0x27/0x70
[ 115.347182] free_percpu+0x30/0x1160
[ 115.347198] ? arch_uprobe_clear_state+0x16/0x140
[ 115.347219] futex_hash_free+0x38/0xc0
[ 115.347234] mmput+0x2d3/0x390
[ 115.347253] do_exit+0x79d/0x2970
[ 115.347270] ? __pfx_do_exit+0x10/0x10
[ 115.347284] ? find_held_lock+0x2b/0x80
[ 115.347303] ? get_signal+0x835/0x2340
[ 115.347327] do_group_exit+0xd3/0x2a0
[ 115.347343] get_signal+0x2315/0x2340
[ 115.347360] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 115.347377] ? __pfx_get_signal+0x10/0x10
[ 115.347393] ? do_futex+0x135/0x370
[ 115.347407] ? __pfx_do_futex+0x10/0x10
[ 115.347423] arch_do_signal_or_restart+0x80/0x790
[ 115.347441] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 115.347457] ? __x64_sys_futex+0x1c9/0x4d0
[ 115.347469] ? __x64_sys_futex+0x1d2/0x4d0
[ 115.347482] ? __x64_sys_openat+0x142/0x200
[ 115.347499] ? __pfx___x64_sys_futex+0x10/0x10
[ 115.347512] ? xfd_validate_state+0x55/0x180
[ 115.347534] exit_to_user_mode_loop+0x8b/0x110
[ 115.347547] do_syscall_64+0x2f7/0x360
[ 115.347560] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.347572] RIP: 0033:0x7f2c44c96b19
[ 115.347581] Code: Unable to access opcode bytes at 0x7f2c44c96aef.
[ 115.347586] RSP: 002b:00007f2c4220c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 115.347598] RAX: fffffffffffffe00 RBX: 00007f2c44da9f68 RCX: 00007f2c44c96b19
[ 115.347606] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2c44da9f68
[ 115.347614] RBP: 00007f2c44da9f60 R08: 0000000000000000 R09: 0000000000000000
[ 115.347621] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2c44da9f6c
[ 115.347628] R13: 00007fff8a01535f R14: 00007f2c4220c300 R15: 0000000000022000
[ 115.347644]
[ 115.347648] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.347655] kmemleak: comm "syz-executor.5", pid 282, jiffies 4294782143
[ 115.347662] kmemleak: min_count = 1
[ 115.347666] kmemleak: count = 0
[ 115.347669] kmemleak: flags = 0x21
[ 115.347673] kmemleak: checksum = 0
[ 115.347677] kmemleak: backtrace:
[ 115.347681] pcpu_alloc_noprof+0x87a/0x1170
[ 115.347695] mm_init+0x99b/0x1170
[ 115.347703] copy_process+0x3ab7/0x73c0
[ 115.347713] kernel_clone+0xea/0x7f0
[ 115.347723] __do_sys_clone+0xce/0x120
[ 115.347733] do_syscall_64+0xbf/0x360
[ 115.347741] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.407167] kmemleak: Found object by alias at 0x607f1a634360
[ 115.407187] CPU: 1 UID: 0 PID: 3941 Comm: syz-executor.5 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.407205] Tainted: [W]=WARN
[ 115.407209] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.407216] Call Trace:
[ 115.407220]
[ 115.407225] dump_stack_lvl+0xca/0x120
[ 115.407253] __lookup_object+0x94/0xb0
[ 115.407270] delete_object_full+0x27/0x70
[ 115.407287] free_percpu+0x30/0x1160
[ 115.407308] perf_trace_event_unreg.isra.0+0xe0/0x1d0
[ 115.407325] perf_trace_destroy+0xc8/0x1c0
[ 115.407338] ? __pfx_tp_perf_event_destroy+0x10/0x10
[ 115.407356] __free_event+0x255/0xc20
[ 115.407375] perf_event_release_kernel+0x3ef/0x540
[ 115.407391] ? __pfx_perf_release+0x10/0x10
[ 115.407403] perf_release+0x31/0x40
[ 115.407414] __fput+0x401/0xb50
[ 115.407437] fput_close_sync+0x10f/0x240
[ 115.407454] ? __pfx_fput_close_sync+0x10/0x10
[ 115.407469] ? dnotify_flush+0x79/0x4c0
[ 115.407485] __x64_sys_close+0x8f/0x120
[ 115.407503] do_syscall_64+0xbf/0x360
[ 115.407515] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.407528] RIP: 0033:0x7f88f81b472b
[ 115.407537] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44
[ 115.407549] RSP: 002b:00007ffc38556f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 115.407560] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f88f81b472b
[ 115.407568] RDX: 0000000000000000 RSI: 00007f88f8179000 RDI: 0000000000000003
[ 115.407575] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000001b2ce22e10
[ 115.407582] R10: 0000000000000100 R11: 0000000000000293 R12: 00007f88f8315b60
[ 115.407589] R13: 00007f88f8315b60 R14: 00007f88f8314f60 R15: 000000000001c1d3
[ 115.407605]
[ 115.407609] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.407615] kmemleak: comm "syz-executor.5", pid 282, jiffies 4294782143
[ 115.407622] kmemleak: min_count = 1
[ 115.407626] kmemleak: count = 0
[ 115.407630] kmemleak: flags = 0x21
[ 115.407633] kmemleak: checksum = 0
[ 115.407637] kmemleak: backtrace:
[ 115.407641] pcpu_alloc_noprof+0x87a/0x1170
[ 115.407655] mm_init+0x99b/0x1170
[ 115.407664] copy_process+0x3ab7/0x73c0
[ 115.407674] kernel_clone+0xea/0x7f0
[ 115.407684] __do_sys_clone+0xce/0x120
[ 115.407694] do_syscall_64+0xbf/0x360
[ 115.407702] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.427883] kmemleak: Found object by alias at 0x607f1a63435c
[ 115.427895] CPU: 1 UID: 0 PID: 39 Comm: kworker/1:1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.427912] Tainted: [W]=WARN
[ 115.427916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.427923] Workqueue: events destroy_super_work
[ 115.427941] Call Trace:
[ 115.427944]
[ 115.427948] dump_stack_lvl+0xca/0x120
[ 115.427966] __lookup_object+0x94/0xb0
[ 115.427980] delete_object_full+0x27/0x70
[ 115.427996] free_percpu+0x30/0x1160
[ 115.428014] percpu_free_rwsem+0x53/0xa0
[ 115.428032] destroy_super_work+0xfb/0x150
[ 115.428050] process_one_work+0x8e1/0x19c0
[ 115.428072] ? __pfx_process_one_work+0x10/0x10
[ 115.428086] ? move_linked_works+0x172/0x270
[ 115.428111] ? assign_work+0x196/0x240
[ 115.428127] worker_thread+0x67e/0xe90
[ 115.428141] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 115.428157] ? __pfx_worker_thread+0x10/0x10
[ 115.428172] kthread+0x3c8/0x740
[ 115.428185] ? __pfx_kthread+0x10/0x10
[ 115.428197] ? ret_from_fork+0x23/0x430
[ 115.428216] ? lock_release+0xc8/0x290
[ 115.428229] ? __pfx_kthread+0x10/0x10
[ 115.428242] ret_from_fork+0x34b/0x430
[ 115.428259] ? __pfx_kthread+0x10/0x10
[ 115.428271] ret_from_fork_asm+0x1a/0x30
[ 115.428295]
[ 115.428298] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.428305] kmemleak: comm "syz-executor.5", pid 282, jiffies 4294782143
[ 115.428312] kmemleak: min_count = 1
[ 115.428316] kmemleak: count = 0
[ 115.428319] kmemleak: flags = 0x21
[ 115.428323] kmemleak: checksum = 0
[ 115.428327] kmemleak: backtrace:
[ 115.428330] pcpu_alloc_noprof+0x87a/0x1170
[ 115.428344] mm_init+0x99b/0x1170
[ 115.428352] copy_process+0x3ab7/0x73c0
[ 115.428362] kernel_clone+0xea/0x7f0
[ 115.428371] __do_sys_clone+0xce/0x120
[ 115.428381] do_syscall_64+0xbf/0x360
[ 115.428390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.443444] kmemleak: Found object by alias at 0x607f1a634360
[ 115.443458] CPU: 1 UID: 0 PID: 39 Comm: kworker/1:1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.443477] Tainted: [W]=WARN
[ 115.443481] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.443488] Workqueue: events destroy_super_work
[ 115.443507] Call Trace:
[ 115.443510]
[ 115.443515] dump_stack_lvl+0xca/0x120
[ 115.443534] __lookup_object+0x94/0xb0
[ 115.443549] delete_object_full+0x27/0x70
[ 115.443566] free_percpu+0x30/0x1160
[ 115.443586] __percpu_ref_exit+0xa9/0x100
[ 115.443607] percpu_ref_switch_to_atomic_rcu+0x2e5/0x480
[ 115.443622] ? rcu_core+0x7c3/0x1800
[ 115.443638] rcu_core+0x7c8/0x1800
[ 115.443657] ? __pfx_rcu_core+0x10/0x10
[ 115.443673] ? mark_held_locks+0x49/0x80
[ 115.443691] handle_softirqs+0x1b1/0x770
[ 115.443715] __irq_exit_rcu+0xc4/0x100
[ 115.443733] irq_exit_rcu+0x9/0x20
[ 115.443744] sysvec_apic_timer_interrupt+0x70/0x80
[ 115.443763]
[ 115.443767]
[ 115.443771] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 115.443784] RIP: 0010:_raw_spin_unlock_irqrestore+0x34/0x50
[ 115.443802] Code: c7 18 53 48 89 f3 48 8b 74 24 10 e8 16 f5 93 fc 48 89 ef e8 4e 40 94 fc 80 e7 02 74 06 e8 b4 48 be fc fb 65 ff 0d 6c 4c c6 02 <74> 07 5b 5d e9 33 23 00 00 0f 1f 44 00 00 5b 5d e9 27 23 00 00 0f
[ 115.443814] RSP: 0018:ffff888009cb7bc8 EFLAGS: 00000286
[ 115.443823] RAX: 00000000000045d9 RBX: 0000000000000207 RCX: 0000000000000040
[ 115.443830] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff84bde3bc
[ 115.443838] RBP: ffffffff85d091e0 R08: 0000000000000001 R09: 0000000000000001
[ 115.443846] R10: ffffffff8643ac57 R11: 0000000000000001 R12: 0000607f1a63435c
[ 115.443854] R13: 0000000000000160 R14: ffffffff85afb96c R15: 0000000000000000
[ 115.443867] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 115.443885] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 115.443901] free_percpu+0x30/0x1160
[ 115.443920] percpu_free_rwsem+0x53/0xa0
[ 115.443937] destroy_super_work+0xfb/0x150
[ 115.443956] process_one_work+0x8e1/0x19c0
[ 115.443977] ? __pfx_process_one_work+0x10/0x10
[ 115.443992] ? move_linked_works+0x172/0x270
[ 115.444013] ? assign_work+0x196/0x240
[ 115.444029] worker_thread+0x67e/0xe90
[ 115.444044] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 115.444060] ? __pfx_worker_thread+0x10/0x10
[ 115.444075] kthread+0x3c8/0x740
[ 115.444088] ? __pfx_kthread+0x10/0x10
[ 115.444100] ? ret_from_fork+0x23/0x430
[ 115.444124] ? lock_release+0xc8/0x290
[ 115.444138] ? __pfx_kthread+0x10/0x10
[ 115.444152] ret_from_fork+0x34b/0x430
[ 115.444169] ? __pfx_kthread+0x10/0x10
[ 115.444182] ret_from_fork_asm+0x1a/0x30
[ 115.444206]
[ 115.444210] kmemleak: Object (percpu) 0x607f1a634358 (size 16):
[ 115.444217] kmemleak: comm "syz-executor.5", pid 282, jiffies 4294782143
[ 115.444224] kmemleak: min_count = 1
[ 115.444228] kmemleak: count = 0
[ 115.444232] kmemleak: flags = 0x21
[ 115.444236] kmemleak: checksum = 0
[ 115.444240] kmemleak: backtrace:
[ 115.444243] pcpu_alloc_noprof+0x87a/0x1170
[ 115.444259] mm_init+0x99b/0x1170
[ 115.444267] copy_process+0x3ab7/0x73c0
[ 115.444278] kernel_clone+0xea/0x7f0
[ 115.444288] __do_sys_clone+0xce/0x120
[ 115.444299] do_syscall_64+0xbf/0x360
[ 115.444308] entry_SYSCALL_64_after_hwframe+0x77/0x7f
09:29:56 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
09:29:56 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000006c40)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000080)={0x0, 0x0, 0x4000})
09:29:56 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getpeername$inet6(r0, 0x0, 0x0)
09:29:56 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getpeername$inet6(r0, 0x0, 0x0)
09:29:56 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001200)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c, 0x0}}], 0x1, 0x20040000)
09:29:56 executing program 5:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x40e5, &(0x7f0000000100), &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
r2 = fcntl$dupfd(r1, 0x0, r0)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000036c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000013c0), 0x0)
09:29:56 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@nr_inodes={'nr_inodes', 0x3d, [0x34, 0x70, 0x0]}}]})
09:29:56 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0xb)
bind$netlink(r0, &(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc)
09:29:56 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x25, 0x0)
09:29:56 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
09:29:56 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDSETLED(r0, 0x80045440, 0x7ffffffff000)
09:29:56 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
inotify_init1(0x0)
09:29:56 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001200)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c, 0x0}}], 0x1, 0x20040000)
09:29:56 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getpeername$inet6(r0, 0x0, 0x0)
09:29:56 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0xb)
bind$netlink(r0, &(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc)
09:29:57 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
inotify_init1(0x0)
09:29:57 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDSETLED(r0, 0x80045440, 0x7ffffffff000)
[ 115.614007] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[ 115.614956] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 115.615651] CPU: 0 UID: 0 PID: 3982 Comm: syz-executor.7 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.617564] Tainted: [W]=WARN
[ 115.618443] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.620369] RIP: 0010:perf_tp_event+0x175/0xe70
[ 115.621849] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 115.625706] RSP: 0018:ffff888045757800 EFLAGS: 00010212
[ 115.626134] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 115.626712] RDX: ffff8880156f0000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 115.627275] RBP: ffff888045757a70 R08: ffff88806ce31340 R09: ffffe8ffffc11358
[ 115.627855] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 115.628389] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 115.628914] FS: 0000555585b76400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 115.629501] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 115.629930] CR2: 00007f7d8abcf000 CR3: 000000000e467000 CR4: 0000000000350ef0
[ 115.630454] Call Trace:
[ 115.630657]
[ 115.630834] ? __pfx_perf_tp_event+0x10/0x10
[ 115.631175] ? perf_trace_lock+0xb5/0x5d0
[ 115.631496] ? __lock_acquire+0xc65/0x1b70
[ 115.631817] ? perf_trace_lock+0xb5/0x5d0
[ 115.632132] ? perf_trace_run_bpf_submit+0xef/0x180
[ 115.632508] perf_trace_run_bpf_submit+0xef/0x180
[ 115.632875] perf_trace_lock+0x337/0x5d0
[ 115.633186] ? __pfx_perf_trace_lock+0x10/0x10
[ 115.633532] ? lock_acquire+0x15e/0x2f0
[ 115.633830] ? futex_ref_get+0x48/0x300
[ 115.634128] ? futex_ref_get+0x114/0x300
[ 115.634430] ? futex_hash+0x15c/0x390
[ 115.634721] lock_release+0x1ab/0x290
[ 115.635010] ? futex_hash+0x15c/0x390
[ 115.635296] futex_ref_get+0x119/0x300
[ 115.635587] ? futex_hash+0x15c/0x390
[ 115.635871] futex_hash+0x70/0x390
[ 115.636141] futex_wake+0x143/0x540
[ 115.636420] ? ___pte_offset_map+0x176/0x370
[ 115.636754] ? __pfx_futex_wake+0x10/0x10
[ 115.637069] ? __handle_mm_fault+0x753/0x3260
[ 115.637413] ? perf_trace_lock+0xb5/0x5d0
[ 115.637727] do_futex+0x26d/0x370
[ 115.637992] ? __pfx_do_futex+0x10/0x10
[ 115.638295] ? __pfx_perf_trace_lock+0x10/0x10
[ 115.638648] ? find_held_lock+0x2b/0x80
[ 115.638954] __x64_sys_futex+0x1c9/0x4d0
[ 115.639260] ? exc_page_fault+0xb0/0x180
[ 115.639569] ? __pfx___x64_sys_futex+0x10/0x10
[ 115.639915] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 115.640305] do_syscall_64+0xbf/0x360
[ 115.640591] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.640973] RIP: 0033:0x7f7d8aabfb19
[ 115.641252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 115.642578] RSP: 002b:00007ffcc1b98108 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 115.643133] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7d8aabfb19
[ 115.643655] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7d8abd2f68
[ 115.644175] RBP: 00007f7d8abd2f60 R08: 0000001b2d32001c R09: 0000000000000000
[ 115.644694] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7d8abd7170
[ 115.645215] R13: 00007ffcc1b98210 R14: 00007f7d8abd2f60 R15: 000000000001c332
[ 115.645744]
[ 115.645921] Modules linked in:
[ 115.646196] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[ 115.647011] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 115.647641] CPU: 0 UID: 0 PID: 3982 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 115.648506] Tainted: [D]=DIE, [W]=WARN
[ 115.648789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 115.649388] RIP: 0010:perf_tp_event+0x175/0xe70
[ 115.649738] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 115.651059] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012
[ 115.651450] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 115.651969] RDX: ffff8880156f0000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 115.652489] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc11358
[ 115.653008] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000
[ 115.653527] R13: 0000000000000024 R14: ffff88806ce31490 R15: dffffc0000000000
[ 115.654048] FS: 0000555585b76400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 115.654639] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 115.655065] CR2: 00007f7d8abcf000 CR3: 000000000e467000 CR4: 0000000000350ef0
[ 115.655585] Call Trace:
[ 115.655779]
[ 115.655944] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 115.656347] ? arch_stack_walk+0x9c/0xf0
[ 115.656652] ? __pfx_perf_tp_event+0x10/0x10
[ 115.656985] ? sched_clock_cpu+0x6c/0x4e0
[ 115.657296] ? select_task_rq_fair+0x48c/0x38b0
[ 115.657644] ? trace_pelt_se_tp+0xdf/0x130
[ 115.657957] ? __update_load_avg_se+0x428/0xa40
[ 115.658308] ? lock_is_held_type+0x9e/0x120
[ 115.658639] ? perf_trace_lock+0xb5/0x5d0
[ 115.658952] ? trace_sched_set_need_resched_tp+0xd4/0x110
[ 115.659362] ? __resched_curr+0x2a2/0x330
[ 115.659674] ? __pfx___resched_curr+0x10/0x10
[ 115.660015] ? perf_trace_run_bpf_submit+0xef/0x180
[ 115.660386] perf_trace_run_bpf_submit+0xef/0x180
[ 115.660749] perf_trace_lock+0x337/0x5d0
[ 115.661052] ? update_cfs_group+0x11d/0x260
[ 115.661375] ? kvm_sched_clock_read+0x16/0x30
[ 115.661715] ? __pfx_perf_trace_lock+0x10/0x10
[ 115.662057] ? check_preempt_wakeup_fair+0x6e/0x950
[ 115.662429] ? sched_ttwu_pending+0x2e0/0x4a0
[ 115.662773] lock_release+0x1ab/0x290
[ 115.663057] ? ttwu_do_activate+0x1a4/0x8a0
[ 115.663381] _raw_spin_unlock+0x16/0x40
[ 115.663680] sched_ttwu_pending+0x2e0/0x4a0
[ 115.664005] ? __pfx_sched_ttwu_pending+0x10/0x10
[ 115.664366] ? hrtimer_interrupt+0x652/0x830
[ 115.664696] __flush_smp_call_function_queue+0x434/0x740
[ 115.665103] __sysvec_call_function_single+0x6d/0x370
[ 115.665490] sysvec_call_function_single+0xa1/0xc0
[ 115.665856]
[ 115.666027]
[ 115.666198] asm_sysvec_call_function_single+0x1a/0x20
[ 115.666593] RIP: 0010:oops_exit+0x0/0x50
[ 115.666902] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27
[ 115.668214] RSP: 0018:ffff888045757690 EFLAGS: 00000202
[ 115.668603] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f
[ 115.669121] RDX: ffff8880156f0000 RSI: ffffffff812a3dca RDI: 0000000000000007
[ 115.669640] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90
[ 115.670158] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888045757758
[ 115.670681] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[ 115.671203] ? add_taint+0x5f/0xd0
[ 115.671472] ? oops_end+0x4a/0xe0
[ 115.671745] oops_end+0x65/0xe0
[ 115.672001] exc_general_protection+0x1a2/0x330
[ 115.672353] asm_exc_general_protection+0x26/0x30
[ 115.672710] RIP: 0010:perf_tp_event+0x175/0xe70
[ 115.673060] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 115.674372] RSP: 0018:ffff888045757800 EFLAGS: 00010212
[ 115.674769] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 115.675288] RDX: ffff8880156f0000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 115.675807] RBP: ffff888045757a70 R08: ffff88806ce31340 R09: ffffe8ffffc11358
[ 115.676325] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 115.676843] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 115.677366] ? perf_tp_event+0x167/0xe70
[ 115.677677] ? __pfx_perf_tp_event+0x10/0x10
[ 115.678013] ? perf_trace_lock+0xb5/0x5d0
[ 115.678330] ? __lock_acquire+0xc65/0x1b70
[ 115.678669] ? perf_trace_lock+0xb5/0x5d0
[ 115.678984] ? perf_trace_run_bpf_submit+0xef/0x180
[ 115.679358] perf_trace_run_bpf_submit+0xef/0x180
[ 115.679721] perf_trace_lock+0x337/0x5d0
[ 115.680027] ? __pfx_perf_trace_lock+0x10/0x10
[ 115.680370] ? lock_acquire+0x15e/0x2f0
[ 115.680667] ? futex_ref_get+0x48/0x300
[ 115.680962] ? futex_ref_get+0x114/0x300
[ 115.681262] ? futex_hash+0x15c/0x390
[ 115.681546] lock_release+0x1ab/0x290
[ 115.681833] ? futex_hash+0x15c/0x390
[ 115.682116] futex_ref_get+0x119/0x300
[ 115.682406] ? futex_hash+0x15c/0x390
[ 115.682695] futex_hash+0x70/0x390
[ 115.682963] futex_wake+0x143/0x540
[ 115.683239] ? ___pte_offset_map+0x176/0x370
[ 115.683569] ? __pfx_futex_wake+0x10/0x10
[ 115.683879] ? __handle_mm_fault+0x753/0x3260
[ 115.684218] ? perf_trace_lock+0xb5/0x5d0
[ 115.684530] do_futex+0x26d/0x370
[ 115.684794] ? __pfx_do_futex+0x10/0x10
[ 115.685092] ? __pfx_perf_trace_lock+0x10/0x10
[ 115.685432] ? find_held_lock+0x2b/0x80
[ 115.685738] __x64_sys_futex+0x1c9/0x4d0
[ 115.686046] ? exc_page_fault+0xb0/0x180
[ 115.686351] ? __pfx___x64_sys_futex+0x10/0x10
[ 115.686701] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 115.687088] do_syscall_64+0xbf/0x360
[ 115.687372] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 115.687750] RIP: 0033:0x7f7d8aabfb19
[ 115.688026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 115.689339] RSP: 002b:00007ffcc1b98108 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 115.689890] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7d8aabfb19
[ 115.690407] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7d8abd2f68
[ 115.690932] RBP: 00007f7d8abd2f60 R08: 0000001b2d32001c R09: 0000000000000000
[ 115.691449] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7d8abd7170
[ 115.691967] R13: 00007ffcc1b98210 R14: 00007f7d8abd2f60 R15: 000000000001c332
[ 115.692492]
[ 115.692668] Modules linked in:
[ 115.692911] ---[ end trace 0000000000000000 ]---
[ 115.693255] RIP: 0010:perf_tp_event+0x175/0xe70
[ 115.693603] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 115.694923] RSP: 0018:ffff888045757800 EFLAGS: 00010212
[ 115.695312] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 115.695831] RDX: ffff8880156f0000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 115.696349] RBP: ffff888045757a70 R08: ffff88806ce31340 R09: ffffe8ffffc11358
[ 115.696868] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 115.697385] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 115.697905] FS: 0000555585b76400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 115.698498] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 115.698924] CR2: 00007f7d8abcf000 CR3: 000000000e467000 CR4: 0000000000350ef0
[ 115.699445] Kernel panic - not syncing: Fatal exception in interrupt
[ 116.741351] Shutting down cpus with NMI
[ 116.741786] Kernel Offset: disabled
[ 116.742058] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
09:29:57 Registers:
info registers vcpu 0
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888045757158
R8 =0000000000000000 R9 =ffffed1001392046 R10=0000000000000065 R11=30376578302f4952
R12=0000000000000065 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555585b76400 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe6a00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f7d8abcf000 CR3=000000000e467000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000ff0000000000000000 XMM01=00000000000000010000000000000000
XMM02=7463656a6e695f31313230385f7a7973 XMM03=ffffffff812095d0ffffffff812095d0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000031ce8 RBX=ffff88806ce3de00 RCX=ffffc9000702d000 RDX=0000000000040000
RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880457ef7a0
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1
R12=ffffed100d9c7bc1 R13=ffff88806ce3de08 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816880d8 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f6393f3e700 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe4400000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6396adc018 CR3=0000000009d37000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f6396aaf7c000007f6396aaf7c8
XMM02=00007f6396aaf7e000007f6396aaf7c0 XMM03=00007f6396aaf7c800007f6396aaf7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000