Warning: Permanently added '[localhost]:16834' (ECDSA) to the list of known hosts.
2025/09/01 08:06:52 fuzzer started
2025/09/01 08:06:52 dialing manager at localhost:35473
syzkaller login: [ 51.590736] cgroup: Unknown subsys name 'net'
[ 51.656526] cgroup: Unknown subsys name 'cpuset'
[ 51.680961] cgroup: Unknown subsys name 'rlimit'
2025/09/01 08:07:04 syscalls: 2214
2025/09/01 08:07:04 code coverage: enabled
2025/09/01 08:07:04 comparison tracing: enabled
2025/09/01 08:07:04 extra coverage: enabled
2025/09/01 08:07:04 setuid sandbox: enabled
2025/09/01 08:07:04 namespace sandbox: enabled
2025/09/01 08:07:04 Android sandbox: enabled
2025/09/01 08:07:04 fault injection: enabled
2025/09/01 08:07:04 leak checking: enabled
2025/09/01 08:07:04 net packet injection: enabled
2025/09/01 08:07:04 net device setup: enabled
2025/09/01 08:07:04 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 08:07:04 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 08:07:04 USB emulation: enabled
2025/09/01 08:07:04 hci packet injection: enabled
2025/09/01 08:07:04 wifi device emulation: enabled
2025/09/01 08:07:04 802.15.4 emulation: enabled
2025/09/01 08:07:04 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 08:07:04 fetching corpus: 50, signal 30365/32109 (executing program)
2025/09/01 08:07:04 fetching corpus: 100, signal 42712/43938 (executing program)
2025/09/01 08:07:04 fetching corpus: 150, signal 51631/51919 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52641 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52676 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52716 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52752 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52791 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52836 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52880 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52919 (executing program)
2025/09/01 08:07:04 fetching corpus: 159, signal 52439/52950 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/52977 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53028 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53064 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53101 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53136 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53174 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53211 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53254 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53298 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53337 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53378 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53425 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53457 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53480 (executing program)
2025/09/01 08:07:05 fetching corpus: 159, signal 52439/53480 (executing program)
2025/09/01 08:07:07 starting 8 fuzzer processes
08:07:07 executing program 0:
futex(&(0x7f0000000140), 0xd, 0x0, &(0x7f0000000180)={0x0, 0x989680}, 0x0, 0x0)
08:07:07 executing program 2:
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x77359400}, {0x77359400}}, 0x0)
08:07:07 executing program 1:
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000240)=@abs, 0x6e)
08:07:07 executing program 5:
prctl$PR_SET_SECUREBITS(0x1c, 0x13)
setuid(0xee01)
08:07:07 executing program 3:
pidfd_open(0x0, 0x0)
08:07:07 executing program 7:
futex(0x0, 0x81, 0x0, 0x0, 0x0, 0x0)
08:07:07 executing program 4:
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x43000000}}]})
08:07:07 executing program 6:
r0 = socket$inet6(0xa, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socketpair(0x15, 0x0, 0x0, &(0x7f0000000240))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600))
[ 66.262171] audit: type=1400 audit(1756714027.646:7): avc: denied { execmem } for pid=272 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[ 67.532984] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 67.536756] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 67.538869] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 67.544027] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 67.547216] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 67.594821] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 67.597909] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 67.602186] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 67.608083] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 67.613573] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 67.624727] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 67.630945] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 67.631858] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 67.636467] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 67.640518] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 67.653948] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 67.661956] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 67.663296] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 67.669890] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 67.685309] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 67.686723] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 67.691636] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 67.691731] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 67.692947] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 67.700795] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 67.701089] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 67.702285] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 67.705226] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 67.707832] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 67.712479] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 67.714586] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 67.716232] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 67.720740] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 67.721214] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 67.724061] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 67.732524] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 67.736463] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 67.770679] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 67.784686] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 67.795621] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 69.631431] Bluetooth: hci1: command tx timeout
[ 69.631548] Bluetooth: hci0: command tx timeout
[ 69.758400] Bluetooth: hci4: command tx timeout
[ 69.758435] Bluetooth: hci6: command tx timeout
[ 69.759048] Bluetooth: hci3: command tx timeout
[ 69.759773] Bluetooth: hci2: command tx timeout
[ 69.821401] Bluetooth: hci7: command tx timeout
[ 69.886389] Bluetooth: hci5: command tx timeout
[ 71.678241] Bluetooth: hci0: command tx timeout
[ 71.678771] Bluetooth: hci1: command tx timeout
[ 71.806406] Bluetooth: hci3: command tx timeout
[ 71.806863] Bluetooth: hci6: command tx timeout
[ 71.807249] Bluetooth: hci4: command tx timeout
[ 71.807776] Bluetooth: hci2: command tx timeout
[ 71.869482] Bluetooth: hci7: command tx timeout
[ 71.933470] Bluetooth: hci5: command tx timeout
[ 73.726539] Bluetooth: hci1: command tx timeout
[ 73.727009] Bluetooth: hci0: command tx timeout
[ 73.854473] Bluetooth: hci2: command tx timeout
[ 73.854947] Bluetooth: hci4: command tx timeout
[ 73.855302] Bluetooth: hci6: command tx timeout
[ 73.856246] Bluetooth: hci3: command tx timeout
[ 73.918471] Bluetooth: hci7: command tx timeout
[ 73.981386] Bluetooth: hci5: command tx timeout
[ 75.774569] Bluetooth: hci0: command tx timeout
[ 75.775018] Bluetooth: hci1: command tx timeout
[ 75.901442] Bluetooth: hci4: command tx timeout
[ 75.902498] Bluetooth: hci3: command tx timeout
[ 75.902875] Bluetooth: hci6: command tx timeout
[ 75.903237] Bluetooth: hci2: command tx timeout
[ 75.965420] Bluetooth: hci7: command tx timeout
[ 76.029379] Bluetooth: hci5: command tx timeout
[ 102.971007] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.971690] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.153654] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.154297] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.366356] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.366983] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.544841] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.546265] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:07:45 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000800)={0x28, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x3}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}]}, 0x28}}, 0x0)
[ 103.698831] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.700222] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.822578] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.823191] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.942929] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.944125] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.062229] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.063406] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.091146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.091964] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.146375] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.146950] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.169915] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.170982] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.317158] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.318530] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.393858] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[ 104.395797] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[ 104.441655] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.442216] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.540884] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.542216] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.578018] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.578622] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.623190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.623991] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:07:46 executing program 5:
prctl$PR_SET_SECUREBITS(0x1c, 0x13)
setuid(0xee01)
08:07:46 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000800)={0x28, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x3}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}]}, 0x28}}, 0x0)
08:07:46 executing program 4:
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x43000000}}]})
08:07:46 executing program 1:
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000240)=@abs, 0x6e)
08:07:46 executing program 7:
futex(0x0, 0x81, 0x0, 0x0, 0x0, 0x0)
08:07:46 executing program 3:
pidfd_open(0x0, 0x0)
08:07:46 executing program 6:
r0 = socket$inet6(0xa, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socketpair(0x15, 0x0, 0x0, &(0x7f0000000240))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600))
08:07:46 executing program 0:
futex(&(0x7f0000000140), 0xd, 0x0, &(0x7f0000000180)={0x0, 0x989680}, 0x0, 0x0)
08:07:46 executing program 3:
pidfd_open(0x0, 0x0)
[ 105.170809] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
08:07:46 executing program 7:
futex(0x0, 0x81, 0x0, 0x0, 0x0, 0x0)
08:07:46 executing program 5:
prctl$PR_SET_SECUREBITS(0x1c, 0x13)
setuid(0xee01)
08:07:46 executing program 1:
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000240)=@abs, 0x6e)
08:07:46 executing program 4:
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x43000000}}]})
[ 105.316144] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
08:07:46 executing program 0:
futex(&(0x7f0000000140), 0xd, 0x0, &(0x7f0000000180)={0x0, 0x989680}, 0x0, 0x0)
08:07:46 executing program 3:
pidfd_open(0x0, 0x0)
08:07:46 executing program 7:
futex(0x0, 0x81, 0x0, 0x0, 0x0, 0x0)
08:07:46 executing program 5:
prctl$PR_SET_SECUREBITS(0x1c, 0x13)
setuid(0xee01)
08:07:46 executing program 6:
r0 = socket$inet6(0xa, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socketpair(0x15, 0x0, 0x0, &(0x7f0000000240))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600))
08:07:46 executing program 1:
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000240)=@abs, 0x6e)
08:07:46 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000800)={0x28, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x3}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}]}, 0x28}}, 0x0)
08:07:46 executing program 4:
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x43000000}}]})
[ 105.401269] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
08:07:46 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000800)={0x28, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x3}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}]}, 0x28}}, 0x0)
08:07:46 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socketpair(0x15, 0x0, 0x0, &(0x7f0000000240))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600))
08:07:46 executing program 4:
prctl$PR_SET_SECUREBITS(0x1c, 0x13)
setuid(0xee01)
08:07:46 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_buf(r0, 0x29, 0x10, &(0x7f0000000080), 0x0)
08:07:46 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000100)=0x20, 0x4)
08:07:46 executing program 0:
futex(&(0x7f0000000140), 0xd, 0x0, &(0x7f0000000180)={0x0, 0x989680}, 0x0, 0x0)
08:07:46 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3942", 0x7}], 0x1)
08:07:46 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000011c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_MOVE(0xf, r0, 0x0, 0x0, 0x0)
[ 105.579543] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 105.640628] audit: type=1400 audit(1756714067.025:8): avc: denied { open } for pid=3973 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 105.640735] audit: type=1400 audit(1756714067.025:9): avc: denied { kernel } for pid=3973 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 105.689156] kmemleak: Found object by alias at 0x607f1a631444
[ 105.689176] CPU: 1 UID: 0 PID: 3971 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 105.689195] Tainted: [W]=WARN
[ 105.689199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 105.689207] Call Trace:
[ 105.689211]
[ 105.689216] dump_stack_lvl+0xca/0x120
[ 105.689248] __lookup_object+0x94/0xb0
[ 105.689266] delete_object_full+0x27/0x70
[ 105.689283] free_percpu+0x30/0x1160
[ 105.689301] ? arch_uprobe_clear_state+0x16/0x140
[ 105.689327] futex_hash_free+0x38/0xc0
[ 105.689343] mmput+0x2d3/0x390
[ 105.689362] do_exit+0x79d/0x2970
[ 105.689380] ? __pfx_do_exit+0x10/0x10
[ 105.689394] ? find_held_lock+0x2b/0x80
[ 105.689413] ? get_signal+0x835/0x2340
[ 105.689434] do_group_exit+0xd3/0x2a0
[ 105.689449] get_signal+0x2315/0x2340
[ 105.689467] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 105.689485] ? __pfx_get_signal+0x10/0x10
[ 105.689502] ? do_futex+0x135/0x370
[ 105.689516] ? __pfx_do_futex+0x10/0x10
[ 105.689531] arch_do_signal_or_restart+0x80/0x790
[ 105.689550] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 105.689567] ? __x64_sys_futex+0x1c9/0x4d0
[ 105.689589] ? __x64_sys_futex+0x1d2/0x4d0
[ 105.689604] ? __pfx___x64_sys_futex+0x10/0x10
[ 105.689618] ? xfd_validate_state+0x55/0x180
[ 105.689640] exit_to_user_mode_loop+0x8b/0x110
[ 105.689654] do_syscall_64+0x2f7/0x360
[ 105.689667] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.689680] RIP: 0033:0x7fc99effdb19
[ 105.689689] Code: Unable to access opcode bytes at 0x7fc99effdaef.
[ 105.689695] RSP: 002b:00007fc99c531218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 105.689707] RAX: fffffffffffffe00 RBX: 00007fc99f1110e8 RCX: 00007fc99effdb19
[ 105.689715] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc99f1110e8
[ 105.689722] RBP: 00007fc99f1110e0 R08: 0000000000000000 R09: 0000000000000000
[ 105.689730] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc99f1110ec
[ 105.689737] R13: 00007ffdc811471f R14: 00007fc99c531300 R15: 0000000000022000
[ 105.689752]
[ 105.689756] kmemleak: Object (percpu) 0x607f1a631440 (size 8):
[ 105.689763] kmemleak: comm "syz-executor.2", pid 3980, jiffies 4294772568
[ 105.689770] kmemleak: min_count = 1
[ 105.689774] kmemleak: count = 0
[ 105.689778] kmemleak: flags = 0x21
[ 105.689782] kmemleak: checksum = 0
[ 105.689786] kmemleak: backtrace:
[ 105.689790] pcpu_alloc_noprof+0x87a/0x1170
[ 105.689805] perf_trace_event_init+0x366/0xa10
[ 105.689820] perf_trace_init+0x1a4/0x2f0
[ 105.689832] perf_tp_event_init+0xa6/0x120
[ 105.689849] perf_try_init_event+0x140/0x9f0
[ 105.689863] perf_event_alloc.part.0+0x118e/0x45f0
[ 105.689880] __do_sys_perf_event_open+0x719/0x2c20
[ 105.689894] do_syscall_64+0xbf/0x360
[ 105.689904] entry_SYSCALL_64_after_hwframe+0x77/0x7f
08:07:47 executing program 4:
prctl$PR_SET_SECUREBITS(0x1c, 0x13)
setuid(0xee01)
08:07:47 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_buf(r0, 0x29, 0x10, &(0x7f0000000080), 0x0)
08:07:47 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000100)=0x20, 0x4)
08:07:47 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_buf(r0, 0x29, 0x10, &(0x7f0000000080), 0x0)
08:07:47 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3942", 0x7}], 0x1)
08:07:47 executing program 6:
r0 = socket$inet6(0xa, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socketpair(0x15, 0x0, 0x0, &(0x7f0000000240))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600))
08:07:47 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000011c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_MOVE(0xf, r0, 0x0, 0x0, 0x0)
08:07:47 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socketpair(0x15, 0x0, 0x0, &(0x7f0000000240))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600))
08:07:47 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3942", 0x7}], 0x1)
08:07:47 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_buf(r0, 0x29, 0x10, &(0x7f0000000080), 0x0)
08:07:47 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000011c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_MOVE(0xf, r0, 0x0, 0x0, 0x0)
08:07:47 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_buf(r0, 0x29, 0x10, &(0x7f0000000080), 0x0)
08:07:47 executing program 4:
prctl$PR_SET_SECUREBITS(0x1c, 0x13)
setuid(0xee01)
08:07:47 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000100)=0x20, 0x4)
08:07:47 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_buf(r0, 0x29, 0x10, &(0x7f0000000080), 0x0)
08:07:47 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3942", 0x7}], 0x1)
08:07:47 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000011c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_MOVE(0xf, r0, 0x0, 0x0, 0x0)
08:07:47 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_buf(r0, 0x29, 0x10, &(0x7f0000000080), 0x0)
[ 106.046215] kmemleak: Found object by alias at 0x607f1a631444
[ 106.046239] CPU: 0 UID: 0 PID: 4014 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 106.046257] Tainted: [W]=WARN
[ 106.046261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 106.046268] Call Trace:
[ 106.046272]
[ 106.046277] dump_stack_lvl+0xca/0x120
[ 106.046304] __lookup_object+0x94/0xb0
[ 106.046327] delete_object_full+0x27/0x70
[ 106.046344] free_percpu+0x30/0x1160
[ 106.046360] ? arch_uprobe_clear_state+0x16/0x140
[ 106.046381] futex_hash_free+0x38/0xc0
[ 106.046395] mmput+0x2d3/0x390
[ 106.046415] do_exit+0x79d/0x2970
[ 106.046432] ? __pfx_do_exit+0x10/0x10
[ 106.046447] ? find_held_lock+0x2b/0x80
[ 106.046465] ? get_signal+0x835/0x2340
[ 106.046485] do_group_exit+0xd3/0x2a0
[ 106.046500] get_signal+0x2315/0x2340
[ 106.046518] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 106.046535] ? __pfx_get_signal+0x10/0x10
[ 106.046551] ? do_futex+0x135/0x370
[ 106.046565] ? __pfx_do_futex+0x10/0x10
[ 106.046581] arch_do_signal_or_restart+0x80/0x790
[ 106.046599] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 106.046615] ? __x64_sys_futex+0x1c9/0x4d0
[ 106.046628] ? __x64_sys_futex+0x1d2/0x4d0
[ 106.046643] ? __pfx___x64_sys_futex+0x10/0x10
[ 106.046657] ? xfd_validate_state+0x55/0x180
[ 106.046678] exit_to_user_mode_loop+0x8b/0x110
[ 106.046692] do_syscall_64+0x2f7/0x360
[ 106.046710] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.046728] RIP: 0033:0x7fc99effdb19
[ 106.046737] Code: Unable to access opcode bytes at 0x7fc99effdaef.
[ 106.046743] RSP: 002b:00007fc99c531218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 106.046754] RAX: fffffffffffffe00 RBX: 00007fc99f1110e8 RCX: 00007fc99effdb19
[ 106.046762] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc99f1110e8
[ 106.046769] RBP: 00007fc99f1110e0 R08: 0000000000000000 R09: 0000000000000000
[ 106.046776] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc99f1110ec
[ 106.046783] R13: 00007ffdc811471f R14: 00007fc99c531300 R15: 0000000000022000
[ 106.046798]
[ 106.046802] kmemleak: Object (percpu) 0x607f1a631440 (size 8):
[ 106.046809] kmemleak: comm "syz-executor.4", pid 4026, jiffies 4294772911
[ 106.046816] kmemleak: min_count = 1
[ 106.046819] kmemleak: count = 0
[ 106.046823] kmemleak: flags = 0x21
[ 106.046827] kmemleak: checksum = 0
[ 106.046831] kmemleak: backtrace:
[ 106.046834] pcpu_alloc_noprof+0x87a/0x1170
[ 106.046850] perf_trace_event_init+0x366/0xa10
[ 106.046863] perf_trace_init+0x1a4/0x2f0
[ 106.046876] perf_tp_event_init+0xa6/0x120
[ 106.046892] perf_try_init_event+0x140/0x9f0
[ 106.046906] perf_event_alloc.part.0+0x118e/0x45f0
[ 106.046922] __do_sys_perf_event_open+0x719/0x2c20
[ 106.046936] do_syscall_64+0xbf/0x360
[ 106.046945] entry_SYSCALL_64_after_hwframe+0x77/0x7f
08:07:47 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000011c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_MOVE(0xf, r0, 0x0, 0x0, 0x0)
08:07:47 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3942", 0x7}], 0x1)
08:07:47 executing program 7:
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x407, 0x8a170000)
08:07:47 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000100)=0x20, 0x4)
08:07:47 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socketpair(0x15, 0x0, 0x0, &(0x7f0000000240))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600))
08:07:47 executing program 0:
perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
08:07:47 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000011c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_MOVE(0xf, r0, 0x0, 0x0, 0x0)
08:07:47 executing program 5:
r0 = perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
sendmmsg$unix(r1, &(0x7f0000005340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
08:07:47 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
prlimit64(0x0, 0x0, 0x0, &(0x7f0000000280))
08:07:47 executing program 0:
perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
08:07:47 executing program 7:
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x407, 0x8a170000)
08:07:47 executing program 7:
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x407, 0x8a170000)
08:07:47 executing program 2:
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x407, 0x8a170000)
08:07:47 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f00000011c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_MOVE(0xf, r0, 0x0, 0x0, 0x0)
08:07:47 executing program 5:
r0 = perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
sendmmsg$unix(r1, &(0x7f0000005340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
08:07:47 executing program 0:
perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
08:07:47 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3942", 0x7}], 0x1)
08:07:47 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
prlimit64(0x0, 0x0, 0x0, &(0x7f0000000280))
08:07:47 executing program 3:
r0 = perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
sendmmsg$unix(r1, &(0x7f0000005340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
08:07:47 executing program 7:
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x407, 0x8a170000)
08:07:47 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3942", 0x7}], 0x1)
08:07:47 executing program 2:
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x407, 0x8a170000)
08:07:47 executing program 5:
r0 = perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
sendmmsg$unix(r1, &(0x7f0000005340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
08:07:47 executing program 0:
perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
08:07:47 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
prlimit64(0x0, 0x0, 0x0, &(0x7f0000000280))
08:07:47 executing program 0:
r0 = perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
sendmmsg$unix(r1, &(0x7f0000005340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
[ 106.528933] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 106.529887] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 106.530252] kmemleak: Found object by alias at 0x607f1a631444
[ 106.530278] CPU: 0 UID: 0 PID: 4075 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 106.530303] Tainted: [W]=WARN
[ 106.530308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 106.530316] Call Trace:
[ 106.530327]
[ 106.530332] dump_stack_lvl+0xca/0x120
[ 106.530364] __lookup_object+0x94/0xb0
[ 106.530386] delete_object_full+0x27/0x70
[ 106.530406] free_percpu+0x30/0x1160
[ 106.530428] ? arch_uprobe_clear_state+0x16/0x140
[ 106.530453] futex_hash_free+0x38/0xc0
[ 106.530471] mmput+0x2d3/0x390
[ 106.530499] do_exit+0x79d/0x2970
[ 106.530519] ? signal_wake_up_state+0x85/0x120
[ 106.530539] ? zap_other_threads+0x2b9/0x3a0
[ 106.530559] ? __pfx_do_exit+0x10/0x10
[ 106.530576] ? do_group_exit+0x1c3/0x2a0
[ 106.530595] ? lock_release+0xc8/0x290
[ 106.530614] do_group_exit+0xd3/0x2a0
[ 106.530630] __x64_sys_exit_group+0x3e/0x50
[ 106.530646] x64_sys_call+0x18c5/0x18d0
[ 106.530666] do_syscall_64+0xbf/0x360
[ 106.530680] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.530694] RIP: 0033:0x7fc99effdb19
[ 106.530706] Code: Unable to access opcode bytes at 0x7fc99effdaef.
[ 106.530713] RSP: 002b:00007ffdc8114948 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 106.530729] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fc99effdb19
[ 106.530739] RDX: 00007fc99efb072b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 106.530749] RBP: 0000000000000000 R08: 0000001b2ce24c28 R09: 0000000000000000
[ 106.530758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 106.530765] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffdc8114a30
[ 106.530776]
[ 106.530780] kmemleak: Object (percpu) 0x607f1a631440 (size 8):
[ 106.530787] kmemleak: comm "syz-executor.4", pid 4086, jiffies 4294773411
[ 106.530794] kmemleak: min_count = 1
[ 106.530798] kmemleak: count = 0
[ 106.530801] kmemleak: flags = 0x21
[ 106.530805] kmemleak: checksum = 0
[ 106.530809] kmemleak: backtrace:
[ 106.530812] pcpu_alloc_noprof+0x87a/0x1170
[ 106.530828] perf_trace_event_init+0x366/0xa10
[ 106.530842] perf_trace_init+0x1a4/0x2f0
[ 106.530855] perf_tp_event_init+0xa6/0x120
[ 106.530871] perf_try_init_event+0x140/0x9f0
[ 106.530885] perf_event_alloc.part.0+0x118e/0x45f0
[ 106.530902] __do_sys_perf_event_open+0x719/0x2c20
[ 106.530915] do_syscall_64+0xbf/0x360
[ 106.530924] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.556120] CPU: 1 UID: 0 PID: 4086 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 106.557111] Tainted: [W]=WARN
[ 106.557372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 106.558056] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.558453] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.559937] RSP: 0018:ffff88800bf07780 EFLAGS: 00010012
[ 106.560370] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900040aa000
[ 106.560951] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 106.561536] RBP: ffff88800bf079f0 R08: ffff88806cf31340 R09: ffffe8ffffd09440
[ 106.562125] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 106.562710] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 106.563293] FS: 00007f0b21107700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 106.563956] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.564423] CR2: 00007f0b23ca5018 CR3: 000000001eaa6000 CR4: 0000000000350ef0
[ 106.564996] Call Trace:
[ 106.565204]
[ 106.565390] ? __pfx_perf_tp_event+0x10/0x10
[ 106.565759] ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150
[ 106.566257] ? lock_acquire+0x15e/0x2f0
[ 106.566587] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10
[ 106.567099] ? lock_is_held_type+0x9e/0x120
[ 106.567454] ? lock_is_held_type+0x9e/0x120
[ 106.567807] ? ctx_sched_in+0x134/0x9b0
[ 106.568128] ? __pfx_ctx_sched_in+0x10/0x10
[ 106.568477] ? arch_stack_walk+0x9c/0xf0
[ 106.568809] ? find_held_lock+0x2b/0x80
[ 106.569141] ? perf_trace_run_bpf_submit+0xef/0x180
[ 106.569548] ? lock_release+0xc8/0x290
[ 106.569887] perf_trace_run_bpf_submit+0xef/0x180
[ 106.570284] perf_trace_preemptirq_template+0x259/0x430
[ 106.570711] ? mark_held_locks+0x49/0x80
[ 106.571042] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 106.571516] ? _raw_spin_lock_irqsave+0x53/0x60
[ 106.571898] trace_irq_disable.constprop.0+0xa6/0x100
[ 106.572315] _raw_spin_lock_irqsave+0x53/0x60
[ 106.572679] try_to_wake_up+0xa0/0x11d0
[ 106.573008] ? __pfx_try_to_wake_up+0x10/0x10
[ 106.573381] ? plist_del+0x122/0x270
[ 106.573702] ? find_held_lock+0x2b/0x80
[ 106.574030] ? futex_wake+0x474/0x540
[ 106.574348] wake_up_q+0xa1/0x130
[ 106.574638] futex_wake+0x47e/0x540
[ 106.574939] ? __pfx_futex_wake+0x10/0x10
[ 106.575279] ? __do_sys_perf_event_open+0x44d/0x2c20
[ 106.575690] ? lock_release+0xc8/0x290
[ 106.576008] do_futex+0x26d/0x370
[ 106.576298] ? __pfx_do_futex+0x10/0x10
[ 106.576627] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 106.577058] ? find_held_lock+0x2b/0x80
[ 106.577383] __x64_sys_futex+0x1c9/0x4d0
[ 106.577740] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 106.578203] ? __pfx___x64_sys_futex+0x10/0x10
[ 106.578574] do_syscall_64+0xbf/0x360
[ 106.578889] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.579311] RIP: 0033:0x7f0b23b91b19
[ 106.579611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 106.581047] RSP: 002b:00007f0b21107218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 106.581656] RAX: ffffffffffffffda RBX: 00007f0b23ca4f68 RCX: 00007f0b23b91b19
[ 106.582225] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0b23ca4f6c
[ 106.582798] RBP: 00007f0b23ca4f60 R08: 000000000000000e R09: 0000000000000000
[ 106.583363] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f0b23ca4f6c
[ 106.583922] R13: 00007ffefbade31f R14: 00007f0b21107300 R15: 0000000000022000
[ 106.584493]
[ 106.584686] Modules linked in:
[ 106.584943] ---[ end trace 0000000000000000 ]---
[ 106.585321] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.585711] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.587131] RSP: 0018:ffff88800bf07780 EFLAGS: 00010012
[ 106.587556] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900040aa000
[ 106.588120] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 106.588685] RBP: ffff88800bf079f0 R08: ffff88806cf31340 R09: ffffe8ffffd09440
[ 106.589244] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 106.589816] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 106.590393] FS: 00007f0b21107700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 106.591030] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.591488] CR2: 00007f0b23ca5018 CR3: 000000001eaa6000 CR4: 0000000000350ef0
[ 106.592051] note: syz-executor.4[4086] exited with irqs disabled
[ 106.592588] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 106.593464] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 106.594070] CPU: 1 UID: 0 PID: 4086 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 106.595011] Tainted: [D]=DIE, [W]=WARN
[ 106.595318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 106.595972] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.596354] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.597785] RSP: 0018:ffff88806cf08b40 EFLAGS: 00010012
[ 106.598207] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 106.598768] RDX: ffff8880432bd280 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 106.599333] RBP: ffff88806cf08db0 R08: ffff88806cf313e8 R09: ffffe8ffffd09440
[ 106.599900] R10: 0000000000000000 R11: ffff88800c695898 R12: dffffc0000000000
[ 106.600454] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 106.601016] FS: 00007f0b21107700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 106.601664] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.602124] CR2: 00007f0b23ca5018 CR3: 000000001eaa6000 CR4: 0000000000350ef0
[ 106.602698] Call Trace:
[ 106.602908]
[ 106.603087] ? __pfx_perf_tp_event+0x10/0x10
[ 106.603448] ? sched_clock_cpu+0x6c/0x4e0
[ 106.603788] ? trace_pelt_se_tp+0xdf/0x130
[ 106.604128] ? place_entity+0x300/0x410
[ 106.604454] ? lock_acquire+0x18c/0x2f0
[ 106.604779] ? update_cfs_group+0x11d/0x260
[ 106.605127] ? lock_release+0x1c7/0x290
[ 106.605453] ? trace_softirq_raise+0xbe/0x100
[ 106.605835] ? run_posix_cpu_timers+0x160/0x7d0
[ 106.606215] ? __raise_softirq_irqoff+0x5f/0x90
[ 106.606589] ? __pfx_run_posix_cpu_timers+0x10/0x10
[ 106.606990] ? sched_balance_trigger+0x1ac/0xcb0
[ 106.607378] ? sched_tick+0x27c/0x6c0
[ 106.607691] ? perf_trace_run_bpf_submit+0xef/0x180
[ 106.608095] ? timerqueue_add+0x1c2/0x330
[ 106.608434] perf_trace_run_bpf_submit+0xef/0x180
[ 106.608828] perf_trace_preemptirq_template+0x259/0x430
[ 106.609261] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 106.609736] ? read_tsc+0x9/0x20
[ 106.610013] ? ktime_get+0x16d/0x270
[ 106.610323] ? __pfx_lapic_next_deadline+0x10/0x10
[ 106.610722] ? clockevents_program_event+0x135/0x360
[ 106.611135] ? _raw_spin_lock_irq+0x42/0x50
[ 106.611483] trace_irq_disable.constprop.0+0xa6/0x100
[ 106.611895] _raw_spin_lock_irq+0x42/0x50
[ 106.612232] run_timer_softirq+0x10f/0x210
[ 106.612579] handle_softirqs+0x1b1/0x770
[ 106.612914] __irq_exit_rcu+0xc4/0x100
[ 106.613239] irq_exit_rcu+0x9/0x20
[ 106.613534] sysvec_apic_timer_interrupt+0x70/0x80
[ 106.613955]
[ 106.614142]
[ 106.614333] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 106.614768] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 106.615159] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[ 106.616623] RSP: 0018:ffff88800bf07f28 EFLAGS: 00000246
[ 106.617050] RAX: 0000000000000001 RBX: ffff8880432bd280 RCX: ffffffff817c3ab6
[ 106.617643] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 106.618216] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 106.618800] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff8880432bd280
[ 106.619375] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[ 106.619961] ? trace_irq_enable.constprop.0+0x26/0x100
[ 106.620394] ? make_task_dead+0x214/0x3b0
[ 106.620736] ? make_task_dead+0x214/0x3b0
[ 106.621082] ? do_syscall_64+0xbf/0x360
[ 106.621410] rewind_stack_and_make_dead+0x16/0x20
[ 106.621820] RIP: 0033:0x7f0b23b91b19
[ 106.622130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 106.623604] RSP: 002b:00007f0b21107218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 106.624217] RAX: ffffffffffffffda RBX: 00007f0b23ca4f68 RCX: 00007f0b23b91b19
[ 106.624797] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0b23ca4f6c
[ 106.625379] RBP: 00007f0b23ca4f60 R08: 000000000000000e R09: 0000000000000000
[ 106.625965] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f0b23ca4f6c
[ 106.626546] R13: 00007ffefbade31f R14: 00007f0b21107300 R15: 0000000000022000
[ 106.627129]
[ 106.627324] Modules linked in:
[ 106.627591] ---[ end trace 0000000000000000 ]---
[ 106.627974] RIP: 0010:perf_tp_event+0x175/0xe70
[ 106.628364] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 106.629835] RSP: 0018:ffff88800bf07780 EFLAGS: 00010012
[ 106.630268] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900040aa000
[ 106.630838] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 106.631423] RBP: ffff88800bf079f0 R08: ffff88806cf31340 R09: ffffe8ffffd09440
[ 106.631983] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 106.632553] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 106.633080] FS: 00007f0b21107700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 106.633674] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.634103] CR2: 00007f0b23ca5018 CR3: 000000001eaa6000 CR4: 0000000000350ef0
[ 106.634628] Kernel panic - not syncing: Fatal exception in interrupt
[ 106.635297] Kernel Offset: disabled
[ 106.635569] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
08:07:48 Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff888018aa75d0 RCX=0000000000000001 RDX=ffff888018aa8001
RSI=ffffffff81358702 RDI=ffffffff85c1c760 RBP=ffff888018aa0000 RSP=ffff888018aa71b8
R8 =0000000000000001 R9 =ffff888018aa7288 R10=000000000003bea3 R11=0000000000024b50
R12=ffff888018aa7201 R13=ffff888018aa7290 R14=ffff888018aa75b0 R15=ffff888018aa7248
RIP=ffffffff8151d8ca RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055558e509400 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe2c00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffee64bbdd8 CR3=000000003cabf000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000a60ce07b00000000cec3662e XMM01=00000000000000007f7511b66f118dd0
XMM02=00000000000000002ab4f385a159be36 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88800bf07170
R8 =0000000000000000 R9 =ffffed10014ea046 R10=0000000000000030 R11=756b6f6f6c5f5f20
R12=0000000000000030 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f0b21107700 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe2300000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f0b23ca5018 CR3=000000001eaa6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f0b23c787c000007f0b23c787c8
XMM02=00007f0b23c787e000007f0b23c787c0 XMM03=00007f0b23c787c800007f0b23c787c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000