==================================================================
BUG: KASAN: slab-out-of-bounds in perf_tp_event+0xd8c/0xe70
Read of size 8 at addr ffff888019bc85a0 by task syz-executor.6/290
CPU: 0 UID: 0 PID: 290 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Call Trace:
dump_stack_lvl+0xca/0x120
print_report+0xcb/0x610
kasan_report+0xca/0x100
perf_tp_event+0xd8c/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
pcpu_alloc_noprof+0xaa0/0x1170
__percpu_counter_init_many+0x44/0x360
mm_init+0xcac/0x1170
copy_process+0x3ab7/0x73c0
kernel_clone+0xea/0x7f0
__do_sys_clone+0xce/0x120
do_syscall_64+0xbf/0x360
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#1] SMP KASAN NOPTI
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f461051a10b
Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
RSP: 002b:00007ffec8b53110 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f461051a10b
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555579937400
R10: 00005555799376d0 R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000001 R14: 0000000000000001 R15: 00007ffec8b531f0
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
Allocated by task 3951:
kasan_save_stack+0x24/0x50
CPU: 1 UID: 0 PID: 3951 Comm: syz-executor.2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
kasan_save_track+0x14/0x30
Tainted: [W]=WARN
__kasan_slab_alloc+0x59/0x70
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
kmem_cache_alloc_node_noprof+0x21a/0x690
RIP: 0010:filter_match_preds+0xb7/0x3220
alloc_unbound_pwq+0xa51/0xe20
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
apply_wqattrs_prepare+0x851/0xb60
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
apply_workqueue_attrs_locked+0x64/0xf0
__alloc_workqueue+0x1065/0x1820
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
alloc_workqueue_noprof+0xc7/0x200
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
loop_configure+0xf73/0x1590
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
lo_ioctl+0x66d/0x1c70
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
blkdev_ioctl+0x27c/0x6c0
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
__x64_sys_ioctl+0x18f/0x210
FS: 00007f5acc5cd700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
do_syscall_64+0xbf/0x360
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
entry_SYSCALL_64_after_hwframe+0x77/0x7f
CR2: 00007ff762fe0000 CR3: 0000000044f12000 CR4: 0000000000350ef0
The buggy address belongs to the object at ffff888019bc8300
which belongs to the cache pool_workqueue of size 512
Call Trace:
The buggy address is located 160 bytes to the right of
allocated 512-byte region [ffff888019bc8300, ffff888019bc8500)
The buggy address belongs to the physical page:
page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x19bc8
perf_tp_event+0x8b4/0xe70
head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
flags: 0x100000000000040(head|node=0|zone=1)
page_type: f5(slab)
raw: 0100000000000040 ffff888008cc4280 dead000000000122 0000000000000000
raw: 0000000000000000 0000000080150015 00000000f5000000 0000000000000000
head: 0100000000000040 ffff888008cc4280 dead000000000122 0000000000000000
head: 0000000000000000 0000000080150015 00000000f5000000 0000000000000000
head: 0100000000000002 ffffea000066f201 00000000ffffffff 00000000ffffffff
head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000004
perf_trace_run_bpf_submit+0xef/0x180
page dumped because: kasan: bad access detected
perf_trace_contention_begin+0x235/0x3e0
Memory state around the buggy address:
ffff888019bc8480: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
ffff888019bc8500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
>ffff888019bc8580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
trace_contention_begin+0xae/0x110
^
ffff888019bc8600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
__mutex_lock+0x14b/0x1020
ffff888019bc8680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
==================================================================
__alloc_workqueue+0x9e1/0x1820
alloc_workqueue_noprof+0xc7/0x200
loop_configure+0xf73/0x1590
lo_ioctl+0x66d/0x1c70
blkdev_ioctl+0x27c/0x6c0
__x64_sys_ioctl+0x18f/0x210
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f5acf0578d7
Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f5acc5ccf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f5acf0a1970 RCX: 00007f5acf0578d7
RDX: 0000000000000003 RSI: 0000000000004c00 RDI: 0000000000000004
RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
R13: 0000000000000003 R14: 0000000020000ac0 R15: 0000000000000000
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#2] SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
---[ end trace 0000000000000000 ]---
CPU: 0 UID: 0 PID: 290 Comm: syz-executor.6 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff8880162f7460 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff8880162f7730 R08: 0000000000000001 R09: fffffbfff0f12690
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000555579937400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f46115683a4 CR3: 0000000044b67000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
pcpu_alloc_noprof+0xaa0/0x1170
__percpu_counter_init_many+0x44/0x360
mm_init+0xcac/0x1170
copy_process+0x3ab7/0x73c0
RIP: 0010:filter_match_preds+0xb7/0x3220
kernel_clone+0xea/0x7f0
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
__do_sys_clone+0xce/0x120
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RIP: 0033:0x7f461051a10b
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
RSP: 002b:00007ffec8b53110 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f461051a10b
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555579937400
R10: 00005555799376d0 R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000001 R14: 0000000000000001 R15: 00007ffec8b531f0
FS: 00007f5acc5cd700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Modules linked in:
CR2: 00007ff762fe0000 CR3: 0000000044f12000 CR4: 0000000000350ef0
---[ end trace 0000000000000000 ]---
note: syz-executor.2[3951] exited with preempt_count 2
RIP: 0010:filter_match_preds+0xb7/0x3220
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#3] SMP KASAN NOPTI
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
CPU: 1 UID: 0 PID: 3948 Comm: modprobe Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
RSP: 0018:ffff888045e2f860 EFLAGS: 00010217
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000555579937400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
RDX: ffff888009cb8000 RSI: ffffffff817e5bcc RDI: 000000010000002f
CR2: 00007f46115683a4 CR3: 0000000044b67000 CR4: 0000000000350ef0
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
note: syz-executor.6[290] exited with preempt_count 2
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 00007ff762d80540(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 0000000045092000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
fdget_pos+0x2a8/0x380
__x64_sys_getdents64+0xe0/0x2c0
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ff762e6f9c7
Code: 0f 1f 00 48 8b 47 20 c3 66 2e 0f 1f 84 00 00 00 00 00 90 48 81 fa ff ff ff 7f b8 ff ff ff 7f 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 99 74 0f 00 f7 d8 64 89 02 48
RSP: 002b:00007ffd09431bc8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
RAX: ffffffffffffffda RBX: 000055b81f299490 RCX: 00007ff762e6f9c7
RDX: 0000000000008000 RSI: 000055b81f2994c0 RDI: 0000000000000000
RBP: 000055b81f2994c0 R08: 0000000000000030 R09: 00007ff762f67be0
R10: 0000000000000076 R11: 0000000000000293 R12: ffffffffffffff80
R13: 000055b81f299494 R14: 0000000000000000 R15: 000055b81f299310
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#4] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 269 Comm: kworker/0:3 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RIP: 0010:filter_match_preds+0xb7/0x3220
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: mld mld_dad_work
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RIP: 0010:filter_match_preds+0x3d/0x3220
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff8880173d76a0 EFLAGS: 00010256
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff8880173d7970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
CR2: 00007f46115683a4 CR3: 0000000044b67000 CR4: 0000000000350ef0
Call Trace:
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
perf_tp_event+0x8b4/0xe70
FS: 00007ff762d80540(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 0000000045092000 CR4: 0000000000350ef0
note: modprobe[3948] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
mld_dad_work+0x2a/0x1e0
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#5] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
CPU: 1 UID: 0 PID: 97 Comm: systemd-journal Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff88801602f660 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff8880145c5280 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 00007f6907cc7900(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 000000000bc94000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
ep_send_events+0xff/0xaa0
do_epoll_wait+0x42e/0xee0
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
__x64_sys_epoll_wait+0x15b/0x280
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f46115683a4 CR3: 0000000044b67000 CR4: 0000000000350ef0
note: kworker/0:3[269] exited with preempt_count 2
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f6908590116
Code: 10 89 7c 24 0c 89 4c 24 1c e8 86 6c f8 ff 44 8b 54 24 1c 8b 54 24 18 41 89 c0 48 8b 74 24 10 8b 7c 24 0c b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 32 44 89 c7 89 44 24 0c e8 b6 6c f8 ff 8b 44
RSP: 002b:00007ffd2f2d9c00 EFLAGS: 00000293 ORIG_RAX: 00000000000000e8
RAX: ffffffffffffffda RBX: 000055d330c48360 RCX: 00007f6908590116
RDX: 0000000000000015 RSI: 000055d330c4e700 RDI: 0000000000000008
RBP: ffffffffffffffff R08: 0000000000000000 R09: 00007f690891c000
R10: 00000000ffffffff R11: 0000000000000293 R12: 0000000000000001
R13: 0000000000000015 R14: 0000000000000000 R15: 0000000000000000
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#6] SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
---[ end trace 0000000000000000 ]---
CPU: 0 UID: 0 PID: 224 Comm: kworker/u9:3 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RIP: 0010:filter_match_preds+0xb7/0x3220
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RSP: 0018:ffff88800ddef6a0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff88800ddef970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
CR2: 0000000020446000 CR3: 0000000020529000 CR4: 0000000000350ef0
Call Trace:
FS: 00007f6907cc7900(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
perf_tp_event+0x8b4/0xe70
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 000000000bc94000 CR4: 0000000000350ef0
note: systemd-journal[97] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#7] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 1 UID: 0 PID: 289 Comm: syz-executor.4 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff88800b6ef3a0 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff88801b560000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 000055556f435400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 00000000448e0000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
ldt_dup_context+0x46/0x350
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
dup_mmap+0x178e/0x1d10
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
copy_process+0x3ad5/0x73c0
CR2: 0000000020446000 CR3: 0000000020529000 CR4: 0000000000350ef0
note: kworker/u9:3[224] exited with preempt_count 2
kernel_clone+0xea/0x7f0
__do_sys_clone+0xce/0x120
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fef513ae10b
Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
RSP: 002b:00007ffc4d4b6c60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fef513ae10b
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 0000000000000001 R08: 0000000000000000 R09: 000055556f435400
R10: 000055556f4356d0 R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc4d4b6d40
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#8] SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
---[ end trace 0000000000000000 ]---
CPU: 0 UID: 0 PID: 1355 Comm: kworker/u10:7 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RIP: 0010:filter_match_preds+0xb7/0x3220
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Workqueue: events_unbound cfg80211_wiphy_work
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RIP: 0010:filter_match_preds+0x3d/0x3220
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff88800f6276a0 EFLAGS: 00010256
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff88800f627970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
FS: 000055556f435400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020a52000 CR3: 000000001f71d000 CR4: 0000000000350ef0
Call Trace:
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 00000000448e0000 CR4: 0000000000350ef0
perf_tp_event+0x8b4/0xe70
note: syz-executor.4[289] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#9] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: ipv6_addrconf addrconf_dad_work
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff8880095ff620 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff8880095dd280 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 00000000448e0000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
trace_contention_begin+0xae/0x110
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
__mutex_lock+0x14b/0x1020
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020a52000 CR3: 000000001f71d000 CR4: 0000000000350ef0
note: kworker/u10:7[1355] exited with preempt_count 2
addrconf_dad_work+0xf6/0x11a0
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#10] SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
---[ end trace 0000000000000000 ]---
CPU: 0 UID: 0 PID: 637 Comm: kworker/u10:5 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff88800deff6a0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff88800deff970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000021000000 CR3: 000000001f523000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
RIP: 0010:filter_match_preds+0xb7/0x3220
ret_from_fork_asm+0x1a/0x30
Modules linked in:
---[ end trace 0000000000000000 ]---
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RIP: 0010:filter_match_preds+0xb7/0x3220
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
CR2: 0000000021000000 CR3: 000000001f523000 CR4: 0000000000350ef0
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
note: kworker/u10:5[637] exited with preempt_count 2
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#11] SMP KASAN NOPTI
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 175 Comm: in:imklog Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
CR2: 000055b81f2a14c8 CR3: 00000000448e0000 CR4: 0000000000350ef0
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
note: kworker/u8:0[12] exited with preempt_count 2
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff888017bef3e0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff888017bef6b0 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 00007f9fe10ec700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000021000000 CR3: 000000000c693000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
syslog_print+0x244/0x5c0
do_syslog.part.0+0x20b/0x5b0
do_syslog+0xcd/0x110
kmsg_read+0x8e/0xc0
proc_reg_read+0x120/0x310
vfs_read+0x1eb/0xc70
ksys_read+0x121/0x240
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f9fe1b2f08c
Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 89 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf fc ff ff 48
RSP: 002b:00007f9fe10cb4d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe1b2f08c
RDX: 0000000000001fa0 RSI: 00007f9fe10cbd00 RDI: 0000000000000005
RBP: 0000557a159db4c0 R08: 0000000000000000 R09: 0000557a159d7e88
R10: a3d70a3d70a3d70b R11: 0000000000000246 R12: 00007f9fe10cbd00
R13: 0000000000001fa0 R14: 00007f9fe10cbd00 R15: 00007f9fe10cbd9e
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#12] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 1 UID: 0 PID: 40 Comm: kworker/u9:2 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
Workqueue: events_unbound cfg80211_wiphy_work
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
RIP: 0010:filter_match_preds+0xb7/0x3220
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
RSP: 0018:ffff88800a25f6a0 EFLAGS: 00010217
FS: 00007f9fe10ec700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
RDX: ffff88800a250000 RSI: ffffffff817e5bcc RDI: 000000010000002f
CR2: 0000000021000000 CR3: 000000000c693000 CR4: 0000000000350ef0
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
note: in:imklog[175] exited with preempt_count 2
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 00000000448e0000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#13] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 273 Comm: kworker/u10:4 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RIP: 0010:filter_match_preds+0xb7/0x3220
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff888020cd76a0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff888020cd7970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2cf22000 CR3: 0000000020529000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
cfg80211_wiphy_work+0x7e/0x480
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
process_one_work+0x8e1/0x19c0
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
worker_thread+0x67e/0xe90
CR2: 000055b81f2a14c8 CR3: 00000000448e0000 CR4: 0000000000350ef0
note: kworker/u9:2[40] exited with preempt_count 2
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#14] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 1 UID: 0 PID: 63 Comm: kworker/1:2 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
Workqueue: mld mld_ifc_work
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
RIP: 0010:filter_match_preds+0xb7/0x3220
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
RSP: 0018:ffff88800a73f660 EFLAGS: 00010217
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
RDX: ffff88800a705280 RSI: ffffffff817e5bcc RDI: 000000010000002f
CR2: 0000001b2cf22000 CR3: 0000000020529000 CR4: 0000000000350ef0
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
note: kworker/u10:4[273] exited with preempt_count 2
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055b81f2a14c8 CR3: 00000000448e0000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
mld_ifc_work+0x42/0xb60
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#15] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 3935 Comm: syz-executor.7 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RIP: 0010:filter_match_preds+0xb7/0x3220
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RSP: 0018:ffff88801b5077a0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff88801b507a70 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 000055555fe0b400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2d522000 CR3: 000000001f523000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
perf_remove_from_owner+0x145/0x570
perf_event_release_kernel+0x8f/0x540
perf_release+0x31/0x40
__fput+0x401/0xb50
fput_close_sync+0x10f/0x240
__x64_sys_close+0x8f/0x120
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f86cd43e72b
Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44
RSP: 002b:00007ffe38be22b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f86cd43e72b
RDX: 0000001b2d522bdc RSI: ffffffff812bfd37 RDI: 0000000000000003
RBP: 0000000000000001 R08: 0000000000000000 R09: 0000001b2d522634
R10: 0000000000000fdf R11: 0000000000000293 R12: 00007f86cd59fb60
R13: 00007f86cd59fb60 R14: 00007f86cd59ef60 R15: 000000000001d78c
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 000055555fe0b400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2d522000 CR3: 000000001f523000 CR4: 0000000000350ef0
note: syz-executor.7[3935] exited with preempt_count 2
kworker/u10:5 (637) used greatest stack depth: 24624 bytes left
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#16] SMP KASAN NOPTI
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 895 Comm: kworker/u9:8 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RIP: 0010:filter_match_preds+0x3d/0x3220
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff8880455df6a0 EFLAGS: 00010256
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff8880455df970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2d522000 CR3: 0000000020529000 CR4: 0000000000350ef0
CR2: 000055b81f2a14c8 CR3: 00000000448e0000 CR4: 0000000000350ef0
Call Trace:
note: kworker/1:2[63] exited with preempt_count 2
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#17] SMP KASAN NOPTI
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
CPU: 1 UID: 0 PID: 3934 Comm: syz-executor.5 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
CR2: 0000001b2d522000 CR3: 0000000020529000 CR4: 0000000000350ef0
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
note: kworker/u9:8[895] exited with preempt_count 2
RSP: 0018:ffff88800dfdf4e0 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff888017379b80 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000555556aea400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fed5fed6718 CR3: 000000001f71d000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
freezer_fork+0xc1/0x500
cgroup_post_fork+0x31f/0x9a0
copy_process+0x5e31/0x73c0
kernel_clone+0xea/0x7f0
__do_sys_clone+0xce/0x120
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fed62982f41
Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
RSP: 002b:00007fff91d7c298 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 00007fed5fed6700 RCX: 00007fed62982f41
RDX: 00007fed5fed69d0 RSI: 00007fed5fed62f0 RDI: 00000000003d0f00
RBP: 00007fff91d7c4d0 R08: 00007fed5fed6700 R09: 00007fed5fed6700
R10: 00007fed5fed69d0 R11: 0000000000000206 R12: 00007fff91d7c34e
R13: 00007fff91d7c34f R14: 00007fed5fed6300 R15: 0000000000022000
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
kworker/u10:7 (1355) used greatest stack depth: 24512 bytes left
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#18] SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 354 Comm: kworker/u9:6 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RIP: 0010:filter_match_preds+0x3d/0x3220
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff888017f976a0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff888017f97970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2d522000 CR3: 0000000038c61000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
FS: 0000555556aea400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
CR2: 00007fed5fed6718 CR3: 000000001f71d000 CR4: 0000000000350ef0
note: syz-executor.5[3934] exited with preempt_count 2
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#19] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 1 UID: 0 PID: 49 Comm: kworker/u10:2 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RIP: 0010:filter_match_preds+0xb7/0x3220
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
RSP: 0018:ffff88800afd76a0 EFLAGS: 00010217
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff88800af79b80 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fed5fed6718 CR3: 000000001f71d000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2d522000 CR3: 0000000038c61000 CR4: 0000000000350ef0
note: kworker/u9:6[354] exited with preempt_count 2
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#20] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 0 UID: 0 PID: 113 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff888016c8f860 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RBP: ffff888016c8fb30 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
FS: 00007ffbab5c98c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2d522000 CR3: 000000000e34e000 CR4: 0000000000350ef0
Call Trace:
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
perf_tp_event+0x8b4/0xe70
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fed5fed6718 CR3: 000000001f71d000 CR4: 0000000000350ef0
note: kworker/u10:2[49] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
fdget_pos+0x2a8/0x380
__x64_sys_getdents64+0xe0/0x2c0
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ffbaba509c7
Code: 0f 1f 00 48 8b 47 20 c3 66 2e 0f 1f 84 00 00 00 00 00 90 48 81 fa ff ff ff 7f b8 ff ff ff 7f 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 99 74 0f 00 f7 d8 64 89 02 48
RSP: 002b:00007ffe89739698 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
RAX: ffffffffffffffda RBX: 000055d99dac9f00 RCX: 00007ffbaba509c7
RDX: 0000000000008000 RSI: 000055d99dac9f30 RDI: 0000000000000011
RBP: 000055d99dac9f30 R08: 0000000000000030 R09: 00007ffbabb48be0
R10: 0000000000000008 R11: 0000000000000293 R12: fffffffffffffe00
R13: 000055d99dac9f04 R14: 0000000000000000 R15: 000055d99d1eea80
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#21] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 1 UID: 0 PID: 23 Comm: kworker/1:0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events perf_sched_delayed
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RIP: 0010:filter_match_preds+0xb7/0x3220
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
RSP: 0018:ffff88800974f6e0 EFLAGS: 00010217
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
FS: 00007ffbab5c98c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
RDX: ffff88800972d280 RSI: ffffffff817e5bcc RDI: 000000010000002f
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
CR2: 0000001b2d522000 CR3: 000000000e34e000 CR4: 0000000000350ef0
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
note: systemd-udevd[113] exited with preempt_count 2
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fed5fed6718 CR3: 000000001f71d000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
perf_sched_delayed+0x18/0x70
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#22] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 0 UID: 0 PID: 285 Comm: syz-executor.1 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff88801b6ff660 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff88801b6ff930 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000555564a8c400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
CR2: 0000001b2d522000 CR3: 0000000041cbd000 CR4: 0000000000350ef0
Call Trace:
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
perf_tp_event+0x8b4/0xe70
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fed5fed6718 CR3: 000000001f71d000 CR4: 0000000000350ef0
note: kworker/1:0[23] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
anon_pipe_write+0x12a/0x1a80
vfs_write+0xbe9/0x1150
ksys_write+0x1ef/0x240
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f5a814e85ff
Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
RSP: 002b:00007ffef1f5ff60 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00007f5a814e85ff
RDX: 000000000000000c RSI: 00007ffef1f60050 RDI: 00000000000000f8
RBP: 00007ffef1f5ffec R08: 0000000000000000 R09: 00007f5a81625000
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
R13: 000000000001d7ba R14: 0000000000000002 R15: 00007ffef1f60050
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
kmemleak: Found object by alias at 0x607f1a63daec
CPU: 1 UID: 0 PID: 290 Comm: syz-executor.6 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Call Trace:
dump_stack_lvl+0xca/0x120
__lookup_object+0x94/0xb0
delete_object_full+0x27/0x70
free_percpu+0x30/0x1160
futex_hash_free+0x38/0xc0
mmput+0x2d3/0x390
do_exit+0x79d/0x2970
make_task_dead+0x174/0x3b0
rewind_stack_and_make_dead+0x16/0x20
RIP: 0033:0x7f461051a10b
Code: Unable to access opcode bytes at 0x7f461051a0e1.
RSP: 002b:00007ffec8b53110 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f461051a10b
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555579937400
R10: 00005555799376d0 R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000001 R14: 0000000000000001 R15: 00007ffec8b531f0
kmemleak: Object (percpu) 0x607f1a63dae8 (size 8):
kmemleak: comm "syz-executor.2", pid 3951, jiffies 4294787734
kmemleak: min_count = 1
kmemleak: count = 0
kmemleak: flags = 0x21
kmemleak: checksum = 0
kmemleak: backtrace:
pcpu_alloc_noprof+0x87a/0x1170
__alloc_workqueue+0x74b/0x1820
alloc_workqueue_noprof+0xc7/0x200
loop_configure+0xf73/0x1590
lo_ioctl+0x66d/0x1c70
blkdev_ioctl+0x27c/0x6c0
__x64_sys_ioctl+0x18f/0x210
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#23] SMP KASAN NOPTI
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
CPU: 1 UID: 0 PID: 352 Comm: kworker/u9:5 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
RIP: 0010:filter_match_preds+0xb7/0x3220
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
FS: 0000555564a8c400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
RSP: 0018:ffff88800f1076a0 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff888016fbd280 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000044f12000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2d522000 CR3: 0000000041cbd000 CR4: 0000000000350ef0
note: syz-executor.1[285] exited with preempt_count 2
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#24] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 103 Comm: kworker/u10:3 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RIP: 0010:filter_match_preds+0xb7/0x3220
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Workqueue: events_unbound cfg80211_wiphy_work
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RSP: 0018:ffff8880166876a0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
RBP: ffff888016687970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
CR2: 0000001b2d522000 CR3: 00000000448e0000 CR4: 0000000000350ef0
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
Call Trace:
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000044f12000 CR4: 0000000000350ef0
perf_tp_event+0x8b4/0xe70
note: kworker/u9:5[352] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#25] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
CPU: 1 UID: 0 PID: 304 Comm: kworker/1:3 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events bpf_prog_free_deferred
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff88801b5ef4e0 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff8880145c3700 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000033f27000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
_vm_unmap_aliases+0xc4/0x7c0
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
vfree+0x6c7/0xb60
bpf_prog_free_deferred+0x2e5/0x420
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
process_one_work+0x8e1/0x19c0
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000033f27000 CR4: 0000000000350ef0
note: kworker/1:3[304] exited with preempt_count 2
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#26] SMP KASAN NOPTI
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
CPU: 1 UID: 0 PID: 25 Comm: kworker/u9:0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RIP: 0010:filter_match_preds+0xb7/0x3220
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff88800976f6a0 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff888009751b80 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000033f27000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
CR2: 0000001b2d522000 CR3: 00000000448e0000 CR4: 0000000000350ef0
note: kworker/u10:3[103] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#27] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 0 UID: 0 PID: 3950 Comm: syz-executor.2 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff8880171f74e0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff8880171f77b0 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
FS: 000055556a4ca400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acc5ac718 CR3: 0000000044f12000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
perf_trace_run_bpf_submit+0xef/0x180
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
perf_trace_contention_begin+0x235/0x3e0
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
CR2: 00007f5acf167000 CR3: 0000000033f27000 CR4: 0000000000350ef0
freezer_fork+0xc1/0x500
cgroup_post_fork+0x31f/0x9a0
copy_process+0x5e31/0x73c0
note: kworker/u9:0[25] exited with preempt_count 2
kernel_clone+0xea/0x7f0
__do_sys_clone+0xce/0x120
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f5acf058f41
Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
RSP: 002b:00007ffdce6b9c78 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 00007f5acc5ac700 RCX: 00007f5acf058f41
RDX: 00007f5acc5ac9d0 RSI: 00007f5acc5ac2f0 RDI: 00000000003d0f00
RBP: 00007ffdce6b9eb0 R08: 00007f5acc5ac700 R09: 00007f5acc5ac700
R10: 00007f5acc5ac9d0 R11: 0000000000000206 R12: 00007ffdce6b9d2e
R13: 00007ffdce6b9d2f R14: 00007f5acc5ac300 R15: 0000000000022000
Modules linked in:
---[ end trace 0000000000000000 ]---
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#28] SMP KASAN NOPTI
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
CPU: 1 UID: 0 PID: 30 Comm: rcu_tasks_trace Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff8880098b77e0 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff8880097ab700 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000033f27000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
RIP: 0010:filter_match_preds+0xb7/0x3220
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
trace_contention_begin+0xae/0x110
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
__mutex_lock+0x14b/0x1020
rcu_tasks_one_gp+0x31/0xcf0
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
rcu_tasks_kthread+0x1a6/0x240
kthread+0x3c8/0x740
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
ret_from_fork+0x34b/0x430
FS: 000055556a4ca400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
ret_from_fork_asm+0x1a/0x30
CR2: 00007f5acc5ac718 CR3: 0000000044f12000 CR4: 0000000000350ef0
note: syz-executor.2[3950] exited with preempt_count 2
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#29] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 0 UID: 0 PID: 34 Comm: kworker/u9:1 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff888009a976a0 EFLAGS: 00010256
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
RBP: ffff888009a97970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acc5ac718 CR3: 0000000044f12000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000033f27000 CR4: 0000000000350ef0
note: rcu_tasks_trace[30] exited with preempt_count 2
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#30] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 1 UID: 0 PID: 17 Comm: rcu_exp_gp_kthr Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RSP: 0018:ffff88800963f760 EFLAGS: 00010217
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
RDX: ffff888009630000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000033f27000 CR4: 0000000000350ef0
Call Trace:
CR2: 00007f5acc5ac718 CR3: 0000000044f12000 CR4: 0000000000350ef0
note: kworker/u9:1[34] exited with preempt_count 2
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
rcu_exp_wait_wake+0x129/0x1390
kthread_worker_fn+0x2b5/0xad0
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#31] SMP KASAN NOPTI
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
---[ end trace 0000000000000000 ]---
CPU: 0 UID: 0 PID: 894 Comm: kworker/u9:7 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff88801987f6a0 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff88801987f970 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
RIP: 0010:filter_match_preds+0xb7/0x3220
CR2: 000000c00064e000 CR3: 000000001f71d000 CR4: 0000000000350ef0
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Call Trace:
perf_tp_event+0x8b4/0xe70
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
cfg80211_wiphy_work+0x7e/0x480
process_one_work+0x8e1/0x19c0
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
worker_thread+0x67e/0xe90
kthread+0x3c8/0x740
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
---[ end trace 0000000000000000 ]---
CR2: 00007f5acf167000 CR3: 0000000033f27000 CR4: 0000000000350ef0
RIP: 0010:filter_match_preds+0xb7/0x3220
note: rcu_exp_gp_kthr[17] exited with preempt_count 2
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#32] SMP KASAN NOPTI
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
CPU: 1 UID: 0 PID: 287 Comm: syz-executor.3 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RSP: 0018:ffff88801b6ef660 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff88801b561b80 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
FS: 000055558e6cc400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
CR2: 00007f5acf167000 CR3: 0000000043c4f000 CR4: 0000000000350ef0
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
Call Trace:
perf_tp_event+0x8b4/0xe70
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c00064e000 CR3: 000000001f71d000 CR4: 0000000000350ef0
note: kworker/u9:7[894] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
anon_pipe_write+0x12a/0x1a80
vfs_write+0xbe9/0x1150
ksys_write+0x1ef/0x240
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f300e0595ff
Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
RSP: 002b:00007ffc90f7a8b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f300e0595ff
RDX: 000000000000000c RSI: 00007ffc90f7a9a0 RDI: 00000000000000f8
RBP: 00007ffc90f7a93c R08: 0000000000000000 R09: 00007f300e196000
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
R13: 000000000001d7b4 R14: 0000000000000002 R15: 00007ffc90f7a9a0
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
kworker/u10:3 (103) used greatest stack depth: 23824 bytes left
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 000055558e6cc400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#33] SMP KASAN NOPTI
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 340 Comm: kworker/u9:4 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
CR2: 00007f5acf167000 CR3: 0000000043c4f000 CR4: 0000000000350ef0
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
note: syz-executor.3[287] exited with preempt_count 2
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: 0x0 (flush-8:0)
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff88801674f720 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff88801674f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c00064e000 CR3: 00000000207f3000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
worker_attach_to_pool+0x25/0x3c0
create_worker+0x2a9/0x800
worker_thread+0x956/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#34] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 1 UID: 0 PID: 3941 Comm: syz-executor.0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RSP: 0018:ffff888048a5f820 EFLAGS: 00010217
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
RDX: ffff888045e19b80 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000555587fd7400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000020529000 CR4: 0000000000350ef0
Call Trace:
CR2: 000000c00064e000 CR3: 00000000207f3000 CR4: 0000000000350ef0
note: kworker/u9:4[340] exited with preempt_count 2
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
perf_event_exit_task+0x46/0x510
do_exit+0x626/0x2970
do_group_exit+0xd3/0x2a0
__x64_sys_exit_group+0x3e/0x50
x64_sys_call+0x18c5/0x18d0
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f6207457b19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffd8b0507c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f6207457b19
RDX: 00007f620740a72b RSI: ffffffffffffffbc RDI: 0000000000000000
RBP: 0000000000000000 R08: 0000001b2cf219a8 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd8b0508b0
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#35] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
RIP: 0010:filter_match_preds+0xb7/0x3220
CPU: 0 UID: 0 PID: 6 Comm: kworker/R-kvfre Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff8880095c7760 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff8880095c7a30 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c00064e000 CR3: 0000000038c61000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
worker_attach_to_pool+0x25/0x3c0
rescuer_thread+0x367/0xd60
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c00064e000 CR3: 0000000038c61000 CR4: 0000000000350ef0
note: kworker/R-kvfre[6] exited with preempt_count 2
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#36] SMP KASAN NOPTI
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 3786 Comm: systemd-udevd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
RSP: 0018:ffff888017ab7660 EFLAGS: 00010256
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff888017ab7930 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 00007ffbab5c98c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c00064e000 CR3: 0000000046d0a000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000555587fd7400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000020529000 CR4: 0000000000350ef0
note: syz-executor.0[3941] exited with preempt_count 2
Fixing recursive fault but reboot is needed!
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
ep_send_events+0xff/0xaa0
do_epoll_wait+0x42e/0xee0
__x64_sys_epoll_wait+0x15b/0x280
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ffbaba880d6
Code: 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 18 48 89 74 24
RSP: 002b:00007ffe89739718 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8
RAX: ffffffffffffffda RBX: 000055d99da82520 RCX: 00007ffbaba880d6
RDX: 0000000000000002 RSI: 000055d99daa1ed0 RDI: 0000000000000003
RBP: ffffffffffffffff R08: 0000000000000002 R09: 0000000000000000
R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001
R13: 0000000000000002 R14: 000055d97ebb82e6 R15: 0000000000000000
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#37] SMP KASAN NOPTI
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
---[ end trace 0000000000000000 ]---
CPU: 1 UID: 0 PID: 39 Comm: kworker/1:1 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
RIP: 0010:filter_match_preds+0xb7/0x3220
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RIP: 0010:filter_match_preds+0xb7/0x3220
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888009ce7720 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff888009895280 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000020529000 CR4: 0000000000350ef0
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
Call Trace:
FS: 00007ffbab5c98c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
perf_tp_event+0x8b4/0xe70
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c00064e000 CR3: 0000000046d0a000 CR4: 0000000000350ef0
note: systemd-udevd[3786] exited with preempt_count 2
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
worker_attach_to_pool+0x25/0x3c0
create_worker+0x2a9/0x800
worker_thread+0x956/0xe90
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000020529000 CR4: 0000000000350ef0
note: kworker/1:1[39] exited with preempt_count 2
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#38] SMP KASAN NOPTI
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
CPU: 1 UID: 0 PID: 3946 Comm: syz-executor.0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff88801b5b75e0 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff888046213700 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 00007f62049cd700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000020529000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
Bluetooth: hci0: Opcode 0x0c03 failed: -110
perf_event_exit_task+0x46/0x510
do_exit+0x626/0x2970
do_group_exit+0xd3/0x2a0
get_signal+0x2315/0x2340
arch_do_signal_or_restart+0x80/0x790
exit_to_user_mode_loop+0x8b/0x110
do_syscall_64+0x2f7/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f6207457b19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f62049cd218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: fffffffffffffe00 RBX: 00007f620756af68 RCX: 00007f6207457b19
RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f620756af68
RBP: 00007f620756af60 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f620756af6c
R13: 00007ffd8b05059f R14: 00007f62049cd300 R15: 0000000000022000
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 00007f62049cd700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 0000000020529000 CR4: 0000000000350ef0
note: syz-executor.0[3946] exited with preempt_count 2
Fixing recursive fault but reboot is needed!
BUG: scheduling while atomic: syz-executor.0/3946/0x00000000
INFO: lockdep is turned off.
Modules linked in:
CPU: 1 UID: 0 PID: 3946 Comm: syz-executor.0 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Call Trace:
dump_stack_lvl+0xfa/0x120
__schedule_bug+0xb9/0x100
__schedule+0x24f3/0x3590
do_task_dead+0xdc/0x110
make_task_dead+0x373/0x3b0
rewind_stack_and_make_dead+0x16/0x20
RIP: 0033:0x7f6207457b19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f62049cd218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: fffffffffffffe00 RBX: 00007f620756af68 RCX: 00007f6207457b19
RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f620756af68
RBP: 00007f620756af60 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00007f620756af6c
R13: 00007ffd8b05059f R14: 00007f62049cd300 R15: 0000000000022000
Oops: general protection fault, probably for non-canonical address 0xdffffc0020000005: 0000 [#39] SMP KASAN NOPTI
KASAN: probably user-memory-access in range [0x0000000100000028-0x000000010000002f]
CPU: 1 UID: 0 PID: 1 Comm: systemd Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff888009547660 EFLAGS: 00010217
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffffff8189b0f8
RDX: ffff8880094f8000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
FS: 00007f3224d7e900(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 000000000fbab000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
perf_trace_run_bpf_submit+0xef/0x180
perf_trace_contention_begin+0x235/0x3e0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
ep_send_events+0xff/0xaa0
do_epoll_wait+0x42e/0xee0
__x64_sys_epoll_wait+0x15b/0x280
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f322555b116
Code: 10 89 7c 24 0c 89 4c 24 1c e8 86 6c f8 ff 44 8b 54 24 1c 8b 54 24 18 41 89 c0 48 8b 74 24 10 8b 7c 24 0c b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 32 44 89 c7 89 44 24 0c e8 b6 6c f8 ff 8b 44
RSP: 002b:00007ffdc8d25a90 EFLAGS: 00000293 ORIG_RAX: 00000000000000e8
RAX: ffffffffffffffda RBX: 000055b210f08b70 RCX: 00007f322555b116
RDX: 000000000000002f RSI: 000055b2118120c0 RDI: 0000000000000005
RBP: ffffffffffffffff R08: 0000000000000000 R09: a4d7157631312052
R10: 00000000ffffffff R11: 0000000000000293 R12: 0000000000000001
R13: 000000000000002f R14: 0000000000000000 R15: 000055b1f297bb4e
Modules linked in:
Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#40] SMP KASAN NOPTI
---[ end trace 0000000000000000 ]---
KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
CPU: 0 UID: 0 PID: 274 Comm: syz-fuzzer Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:filter_match_preds+0x3d/0x3220
RIP: 0010:filter_match_preds+0xb7/0x3220
Code: ec 28 48 89 34 24 e8 72 9b f5 ff 48 85 db 0f 84 59 0d 00 00 e8 64 9b f5 ff 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 35 29 00 00 4c 8b 33 4d 85 f6 0f 84 2d 0d 00 00
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
RSP: 0018:ffff8880161d7620 EFLAGS: 00010256
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff8189b0f8
RDX: 0000000000000000 RSI: ffffffff817e5b4c RDI: 0000000000000001
RBP: ffff8880161d78f0 R08: ffff88806ce31340 R09: ffffe8ffffc15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000001 R14: ffff88806ce31340 R15: dffffc0000000000
FS: 000000c00009cb10(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c00064e000 CR3: 000000001bdad000 CR4: 0000000000350ef0
Call Trace:
perf_tp_event+0x8b4/0xe70
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
perf_trace_run_bpf_submit+0xef/0x180
FS: 00007f3224d7e900(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
perf_trace_contention_begin+0x235/0x3e0
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5acf167000 CR3: 000000000fbab000 CR4: 0000000000350ef0
trace_contention_begin+0xae/0x110
__mutex_lock+0x14b/0x1020
note: systemd[1] exited with preempt_count 2
ep_send_events+0xff/0xaa0
do_epoll_wait+0x42e/0xee0
do_compat_epoll_pwait.part.0+0x29/0x1d0
__x64_sys_epoll_pwait+0x1de/0x320
do_syscall_64+0xbf/0x360
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x4666e0
Code: 0f 05 89 44 24 20 c3 cc cc cc 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 44 8b 54 24 1c 49 c7 c0 00 00 00 00 b8 19 01 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc cc cc cc cc cc cc cc 8b 7c 24 08 48 c7
RSP: 002b:000000c0003d97f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000119
RAX: ffffffffffffffda RBX: 0000000000000037 RCX: 00000000004666e0
RDX: 0000000000000080 RSI: 000000c0003d9840 RDI: 0000000000000003
RBP: 000000c0003d9e40 R08: 0000000000000000 R09: 00007f20475b0000
R10: 0000000000000037 R11: 0000000000000246 R12: 000000000000011e
R13: 000000c0003ae000 R14: 000000000000000f R15: 00000000000036e9
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:filter_match_preds+0xb7/0x3220
BUG: Bad page state in process ksoftirqd/1 pfn:48a59
page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48a59
flags: 0x100000000000000(node=0|zone=1)
page_type: f9(unknown)
raw: 0100000000000000 ffffea0001229648 ffffea0001229648 0000000000000000
raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000
page dumped because: nonzero mapcount
Modules linked in:
CPU: 1 UID: 0 PID: 22 Comm: ksoftirqd/1 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Call Trace:
dump_stack_lvl+0xfa/0x120
bad_page+0x8c/0x1c0
__free_frozen_pages+0xaf9/0xe10
rcu_core+0x7c8/0x1800
handle_softirqs+0x1b1/0x770
run_ksoftirqd+0x2e/0x60
smpboot_thread_fn+0x41d/0x9d0
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
BUG: Bad page state in process ksoftirqd/1 pfn:48a5a
page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48a5a
flags: 0x100000000000000(node=0|zone=1)
page_type: f9(unknown)
raw: 0100000000000000 ffffea0001229688 ffffea0001229688 0000000000000000
Code: 86 45 31 ed 48 bd 00 00 00 00 00 fc ff df 48 c1 e8 03 48 01 e8 48 89 44 24 08 e8 e4 9a f5 ff 49 8d 7f 30 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 08 3c 03 0f 8e 80 28 00 00 41 8b 7f 30 48 c7
raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000
RSP: 0018:ffff888048ac7160 EFLAGS: 00010217
page dumped because: nonzero mapcount
Modules linked in:
RAX: 0000000020000005 RBX: ffff888008cd0000 RCX: ffffc900029fe000
CPU: 1 UID: 0 PID: 22 Comm: ksoftirqd/1 Tainted: G B D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Call Trace:
dump_stack_lvl+0xfa/0x120
bad_page+0x8c/0x1c0
__free_frozen_pages+0xaf9/0xe10
rcu_core+0x7c8/0x1800
handle_softirqs+0x1b1/0x770
run_ksoftirqd+0x2e/0x60
smpboot_thread_fn+0x41d/0x9d0
kthread+0x3c8/0x740
ret_from_fork+0x34b/0x430
ret_from_fork_asm+0x1a/0x30
BUG: Bad page state in process ksoftirqd/1 pfn:48a5b
RDX: 0000000000040000 RSI: ffffffff817e5bcc RDI: 000000010000002f
page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48a5b
RBP: dffffc0000000000 R08: ffff88806cf31340 R09: ffffe8ffffd15ae8
flags: 0x100000000000000(node=0|zone=1)
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
page_type: f9(unknown)
R13: 0000000000000000 R14: ffff888008cd0000 R15: 00000000ffffffff
raw: 0100000000000000 ffffea00012296c8 ffffea00012296c8 0000000000000000
FS: 000000c00009cb10(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
raw: 0000000000000000 0000000000000000 00000000f9000000 0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
page dumped because: nonzero mapcount
CR2: 000000c00064e000 CR3: 000000001bdad000 CR4: 0000000000350ef0
Modules linked in:
note: syz-fuzzer[274] exited with preempt_count 2
----------------
Code disassembly (best guess):
0: 86 45 31 xchg %al,0x31(%rbp)
3: ed in (%dx),%eax
4: 48 bd 00 00 00 00 00 movabs $0xdffffc0000000000,%rbp
b: fc ff df
e: 48 c1 e8 03 shr $0x3,%rax
12: 48 01 e8 add %rbp,%rax
15: 48 89 44 24 08 mov %rax,0x8(%rsp)
1a: e8 e4 9a f5 ff callq 0xfff59b03
1f: 49 8d 7f 30 lea 0x30(%r15),%rdi
23: 48 89 f8 mov %rdi,%rax
26: 48 c1 e8 03 shr $0x3,%rax
* 2a: 0f b6 04 28 movzbl (%rax,%rbp,1),%eax <-- trapping instruction
2e: 84 c0 test %al,%al
30: 74 08 je 0x3a
32: 3c 03 cmp $0x3,%al
34: 0f 8e 80 28 00 00 jle 0x28ba
3a: 41 8b 7f 30 mov 0x30(%r15),%edi
3e: 48 rex.W
3f: c7 .byte 0xc7