Warning: Permanently added '[localhost]:28357' (ECDSA) to the list of known hosts. 2025/09/01 11:13:34 fuzzer started 2025/09/01 11:13:35 dialing manager at localhost:35473 syzkaller login: [ 51.602190] cgroup: Unknown subsys name 'net' [ 51.681196] cgroup: Unknown subsys name 'cpuset' [ 51.696884] cgroup: Unknown subsys name 'rlimit' 2025/09/01 11:13:46 syscalls: 2214 2025/09/01 11:13:46 code coverage: enabled 2025/09/01 11:13:46 comparison tracing: enabled 2025/09/01 11:13:46 extra coverage: enabled 2025/09/01 11:13:46 setuid sandbox: enabled 2025/09/01 11:13:46 namespace sandbox: enabled 2025/09/01 11:13:46 Android sandbox: enabled 2025/09/01 11:13:46 fault injection: enabled 2025/09/01 11:13:46 leak checking: enabled 2025/09/01 11:13:46 net packet injection: enabled 2025/09/01 11:13:46 net device setup: enabled 2025/09/01 11:13:46 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 11:13:46 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 11:13:46 USB emulation: enabled 2025/09/01 11:13:46 hci packet injection: enabled 2025/09/01 11:13:46 wifi device emulation: enabled 2025/09/01 11:13:46 802.15.4 emulation: enabled 2025/09/01 11:13:46 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 11:13:46 fetching corpus: 50, signal 28345/31790 (executing program) 2025/09/01 11:13:47 fetching corpus: 100, signal 37412/42278 (executing program) 2025/09/01 11:13:47 fetching corpus: 150, signal 44364/50517 (executing program) 2025/09/01 11:13:47 fetching corpus: 200, signal 48619/56106 (executing program) 2025/09/01 11:13:47 fetching corpus: 250, signal 52230/60948 (executing program) 2025/09/01 11:13:47 fetching corpus: 300, signal 56032/65917 (executing program) 2025/09/01 11:13:47 fetching corpus: 350, signal 58905/69930 (executing program) 2025/09/01 11:13:47 fetching corpus: 400, signal 65600/77412 (executing program) 2025/09/01 11:13:47 fetching corpus: 450, signal 67948/80838 (executing program) 2025/09/01 11:13:47 fetching corpus: 500, signal 71927/85663 (executing program) 2025/09/01 11:13:47 fetching corpus: 550, signal 75841/90273 (executing program) 2025/09/01 11:13:47 fetching corpus: 600, signal 78179/93492 (executing program) 2025/09/01 11:13:48 fetching corpus: 650, signal 80813/96956 (executing program) 2025/09/01 11:13:48 fetching corpus: 700, signal 82894/99895 (executing program) 2025/09/01 11:13:48 fetching corpus: 750, signal 85416/103119 (executing program) 2025/09/01 11:13:48 fetching corpus: 800, signal 87620/106032 (executing program) 2025/09/01 11:13:48 fetching corpus: 850, signal 89658/108762 (executing program) 2025/09/01 11:13:48 fetching corpus: 900, signal 91413/111139 (executing program) 2025/09/01 11:13:48 fetching corpus: 950, signal 93573/113859 (executing program) 2025/09/01 11:13:48 fetching corpus: 1000, signal 94701/115728 (executing program) 2025/09/01 11:13:48 fetching corpus: 1050, signal 95948/117726 (executing program) 2025/09/01 11:13:48 fetching corpus: 1100, signal 97730/120059 (executing program) 2025/09/01 11:13:49 fetching corpus: 1150, signal 99482/122336 (executing program) 2025/09/01 11:13:49 fetching corpus: 1200, signal 101994/125122 (executing program) 2025/09/01 11:13:49 fetching corpus: 1250, signal 104628/127904 (executing program) 2025/09/01 11:13:49 fetching corpus: 1300, signal 105538/129445 (executing program) 2025/09/01 11:13:49 fetching corpus: 1350, signal 106771/131178 (executing program) 2025/09/01 11:13:49 fetching corpus: 1400, signal 108273/133062 (executing program) 2025/09/01 11:13:49 fetching corpus: 1450, signal 109593/134820 (executing program) 2025/09/01 11:13:49 fetching corpus: 1500, signal 110500/136284 (executing program) 2025/09/01 11:13:49 fetching corpus: 1550, signal 112334/138313 (executing program) 2025/09/01 11:13:50 fetching corpus: 1600, signal 113643/139963 (executing program) 2025/09/01 11:13:50 fetching corpus: 1650, signal 114876/141555 (executing program) 2025/09/01 11:13:50 fetching corpus: 1700, signal 115937/142953 (executing program) 2025/09/01 11:13:50 fetching corpus: 1750, signal 117385/144706 (executing program) 2025/09/01 11:13:50 fetching corpus: 1800, signal 118102/145912 (executing program) 2025/09/01 11:13:50 fetching corpus: 1850, signal 119082/147250 (executing program) 2025/09/01 11:13:50 fetching corpus: 1900, signal 120025/148600 (executing program) 2025/09/01 11:13:50 fetching corpus: 1950, signal 120845/149773 (executing program) 2025/09/01 11:13:50 fetching corpus: 2000, signal 121463/150865 (executing program) 2025/09/01 11:13:50 fetching corpus: 2050, signal 122529/152203 (executing program) 2025/09/01 11:13:50 fetching corpus: 2100, signal 123748/153568 (executing program) 2025/09/01 11:13:51 fetching corpus: 2150, signal 124997/154950 (executing program) 2025/09/01 11:13:51 fetching corpus: 2200, signal 125948/156137 (executing program) 2025/09/01 11:13:51 fetching corpus: 2250, signal 126977/157369 (executing program) 2025/09/01 11:13:51 fetching corpus: 2300, signal 127959/158547 (executing program) 2025/09/01 11:13:51 fetching corpus: 2350, signal 128984/159724 (executing program) 2025/09/01 11:13:51 fetching corpus: 2400, signal 129811/160752 (executing program) 2025/09/01 11:13:51 fetching corpus: 2450, signal 130519/161706 (executing program) 2025/09/01 11:13:51 fetching corpus: 2500, signal 131065/162568 (executing program) 2025/09/01 11:13:51 fetching corpus: 2550, signal 131575/163427 (executing program) 2025/09/01 11:13:51 fetching corpus: 2600, signal 132472/164388 (executing program) 2025/09/01 11:13:51 fetching corpus: 2650, signal 133508/165426 (executing program) 2025/09/01 11:13:52 fetching corpus: 2700, signal 133887/166208 (executing program) 2025/09/01 11:13:52 fetching corpus: 2750, signal 134686/167094 (executing program) 2025/09/01 11:13:52 fetching corpus: 2800, signal 135760/168103 (executing program) 2025/09/01 11:13:52 fetching corpus: 2850, signal 136529/168924 (executing program) 2025/09/01 11:13:52 fetching corpus: 2900, signal 137245/169798 (executing program) 2025/09/01 11:13:52 fetching corpus: 2950, signal 137754/170528 (executing program) 2025/09/01 11:13:52 fetching corpus: 3000, signal 138700/171416 (executing program) 2025/09/01 11:13:52 fetching corpus: 3050, signal 139363/172139 (executing program) 2025/09/01 11:13:52 fetching corpus: 3100, signal 139980/172872 (executing program) 2025/09/01 11:13:52 fetching corpus: 3150, signal 140903/173692 (executing program) 2025/09/01 11:13:52 fetching corpus: 3200, signal 141664/174416 (executing program) 2025/09/01 11:13:53 fetching corpus: 3250, signal 142000/175053 (executing program) 2025/09/01 11:13:53 fetching corpus: 3300, signal 142474/175707 (executing program) 2025/09/01 11:13:53 fetching corpus: 3350, signal 142873/176335 (executing program) 2025/09/01 11:13:53 fetching corpus: 3400, signal 143449/176983 (executing program) 2025/09/01 11:13:53 fetching corpus: 3450, signal 144429/177713 (executing program) 2025/09/01 11:13:53 fetching corpus: 3500, signal 145582/178496 (executing program) 2025/09/01 11:13:53 fetching corpus: 3550, signal 146334/179152 (executing program) 2025/09/01 11:13:53 fetching corpus: 3600, signal 146823/179695 (executing program) 2025/09/01 11:13:53 fetching corpus: 3650, signal 147125/180191 (executing program) 2025/09/01 11:13:53 fetching corpus: 3700, signal 147468/180755 (executing program) 2025/09/01 11:13:53 fetching corpus: 3750, signal 148060/181329 (executing program) 2025/09/01 11:13:53 fetching corpus: 3800, signal 148534/181872 (executing program) 2025/09/01 11:13:54 fetching corpus: 3850, signal 149576/182484 (executing program) 2025/09/01 11:13:54 fetching corpus: 3900, signal 150304/183014 (executing program) 2025/09/01 11:13:54 fetching corpus: 3950, signal 150841/183565 (executing program) 2025/09/01 11:13:54 fetching corpus: 4000, signal 151462/184074 (executing program) 2025/09/01 11:13:54 fetching corpus: 4050, signal 151905/184523 (executing program) 2025/09/01 11:13:54 fetching corpus: 4100, signal 152644/185045 (executing program) 2025/09/01 11:13:54 fetching corpus: 4150, signal 153081/185590 (executing program) 2025/09/01 11:13:54 fetching corpus: 4200, signal 153770/186050 (executing program) 2025/09/01 11:13:54 fetching corpus: 4250, signal 154137/186453 (executing program) 2025/09/01 11:13:54 fetching corpus: 4300, signal 154785/186878 (executing program) 2025/09/01 11:13:54 fetching corpus: 4350, signal 155369/187298 (executing program) 2025/09/01 11:13:54 fetching corpus: 4400, signal 155896/187711 (executing program) 2025/09/01 11:13:55 fetching corpus: 4450, signal 156576/188123 (executing program) 2025/09/01 11:13:55 fetching corpus: 4500, signal 157272/188506 (executing program) 2025/09/01 11:13:55 fetching corpus: 4550, signal 157809/188872 (executing program) 2025/09/01 11:13:55 fetching corpus: 4600, signal 158183/189233 (executing program) 2025/09/01 11:13:55 fetching corpus: 4650, signal 158565/189340 (executing program) 2025/09/01 11:13:55 fetching corpus: 4700, signal 158917/189346 (executing program) 2025/09/01 11:13:55 fetching corpus: 4750, signal 159560/189346 (executing program) 2025/09/01 11:13:55 fetching corpus: 4800, signal 160081/189383 (executing program) 2025/09/01 11:13:55 fetching corpus: 4850, signal 160526/189385 (executing program) 2025/09/01 11:13:55 fetching corpus: 4900, signal 160824/189393 (executing program) 2025/09/01 11:13:55 fetching corpus: 4950, signal 161764/189400 (executing program) 2025/09/01 11:13:56 fetching corpus: 5000, signal 162233/189401 (executing program) 2025/09/01 11:13:56 fetching corpus: 5050, signal 162727/189405 (executing program) 2025/09/01 11:13:56 fetching corpus: 5100, signal 163271/189411 (executing program) 2025/09/01 11:13:56 fetching corpus: 5150, signal 163640/189425 (executing program) 2025/09/01 11:13:56 fetching corpus: 5200, signal 163994/189426 (executing program) 2025/09/01 11:13:56 fetching corpus: 5250, signal 164397/189427 (executing program) 2025/09/01 11:13:56 fetching corpus: 5300, signal 164751/189428 (executing program) 2025/09/01 11:13:56 fetching corpus: 5350, signal 165123/189477 (executing program) 2025/09/01 11:13:56 fetching corpus: 5400, signal 165441/189485 (executing program) 2025/09/01 11:13:56 fetching corpus: 5450, signal 165730/189502 (executing program) 2025/09/01 11:13:56 fetching corpus: 5500, signal 166320/189504 (executing program) 2025/09/01 11:13:57 fetching corpus: 5550, signal 166679/189512 (executing program) 2025/09/01 11:13:57 fetching corpus: 5600, signal 167140/189521 (executing program) 2025/09/01 11:13:57 fetching corpus: 5650, signal 167468/189529 (executing program) 2025/09/01 11:13:57 fetching corpus: 5700, signal 167988/189546 (executing program) 2025/09/01 11:13:57 fetching corpus: 5750, signal 168528/189554 (executing program) 2025/09/01 11:13:57 fetching corpus: 5800, signal 168815/189568 (executing program) 2025/09/01 11:13:57 fetching corpus: 5850, signal 169180/189570 (executing program) 2025/09/01 11:13:57 fetching corpus: 5900, signal 170899/189579 (executing program) 2025/09/01 11:13:57 fetching corpus: 5950, signal 171255/189582 (executing program) 2025/09/01 11:13:57 fetching corpus: 6000, signal 171721/189582 (executing program) 2025/09/01 11:13:57 fetching corpus: 6050, signal 172159/189597 (executing program) 2025/09/01 11:13:57 fetching corpus: 6100, signal 172775/189632 (executing program) 2025/09/01 11:13:57 fetching corpus: 6150, signal 173159/189635 (executing program) 2025/09/01 11:13:58 fetching corpus: 6200, signal 173399/189639 (executing program) 2025/09/01 11:13:58 fetching corpus: 6250, signal 173688/189641 (executing program) 2025/09/01 11:13:58 fetching corpus: 6300, signal 174038/189651 (executing program) 2025/09/01 11:13:58 fetching corpus: 6350, signal 174310/189664 (executing program) 2025/09/01 11:13:58 fetching corpus: 6400, signal 174627/189690 (executing program) 2025/09/01 11:13:58 fetching corpus: 6450, signal 174917/189711 (executing program) 2025/09/01 11:13:58 fetching corpus: 6500, signal 175254/189811 (executing program) 2025/09/01 11:13:58 fetching corpus: 6550, signal 175559/189812 (executing program) 2025/09/01 11:13:58 fetching corpus: 6600, signal 176128/189820 (executing program) 2025/09/01 11:13:58 fetching corpus: 6650, signal 176496/189832 (executing program) 2025/09/01 11:13:58 fetching corpus: 6700, signal 176973/189853 (executing program) 2025/09/01 11:13:59 fetching corpus: 6750, signal 177211/189855 (executing program) 2025/09/01 11:13:59 fetching corpus: 6800, signal 177721/189880 (executing program) 2025/09/01 11:13:59 fetching corpus: 6850, signal 177964/189902 (executing program) 2025/09/01 11:13:59 fetching corpus: 6900, signal 178261/189902 (executing program) 2025/09/01 11:13:59 fetching corpus: 6950, signal 178541/189906 (executing program) 2025/09/01 11:13:59 fetching corpus: 7000, signal 178860/189918 (executing program) 2025/09/01 11:13:59 fetching corpus: 7050, signal 179214/189934 (executing program) 2025/09/01 11:13:59 fetching corpus: 7100, signal 179459/189936 (executing program) 2025/09/01 11:13:59 fetching corpus: 7150, signal 179821/189936 (executing program) 2025/09/01 11:13:59 fetching corpus: 7200, signal 180191/189936 (executing program) 2025/09/01 11:13:59 fetching corpus: 7250, signal 180560/189944 (executing program) 2025/09/01 11:14:00 fetching corpus: 7300, signal 181012/189948 (executing program) 2025/09/01 11:14:00 fetching corpus: 7350, signal 181258/189951 (executing program) 2025/09/01 11:14:00 fetching corpus: 7400, signal 181570/189966 (executing program) 2025/09/01 11:14:00 fetching corpus: 7450, signal 182137/189973 (executing program) 2025/09/01 11:14:00 fetching corpus: 7500, signal 182375/189980 (executing program) 2025/09/01 11:14:00 fetching corpus: 7550, signal 182643/189983 (executing program) 2025/09/01 11:14:00 fetching corpus: 7600, signal 182813/189988 (executing program) 2025/09/01 11:14:00 fetching corpus: 7650, signal 183115/189991 (executing program) 2025/09/01 11:14:00 fetching corpus: 7700, signal 183413/189991 (executing program) 2025/09/01 11:14:00 fetching corpus: 7750, signal 183648/189997 (executing program) 2025/09/01 11:14:00 fetching corpus: 7800, signal 183835/190002 (executing program) 2025/09/01 11:14:01 fetching corpus: 7850, signal 184130/190013 (executing program) 2025/09/01 11:14:01 fetching corpus: 7900, signal 184374/190027 (executing program) 2025/09/01 11:14:01 fetching corpus: 7950, signal 184710/190063 (executing program) 2025/09/01 11:14:01 fetching corpus: 8000, signal 185024/190063 (executing program) 2025/09/01 11:14:01 fetching corpus: 8050, signal 185261/190063 (executing program) 2025/09/01 11:14:01 fetching corpus: 8100, signal 185770/190134 (executing program) 2025/09/01 11:14:01 fetching corpus: 8150, signal 186025/190138 (executing program) 2025/09/01 11:14:01 fetching corpus: 8200, signal 186356/190147 (executing program) 2025/09/01 11:14:01 fetching corpus: 8250, signal 186669/190162 (executing program) 2025/09/01 11:14:01 fetching corpus: 8300, signal 186954/190163 (executing program) 2025/09/01 11:14:01 fetching corpus: 8350, signal 187180/190176 (executing program) 2025/09/01 11:14:01 fetching corpus: 8400, signal 187459/190186 (executing program) 2025/09/01 11:14:02 fetching corpus: 8416, signal 187530/190187 (executing program) 2025/09/01 11:14:02 fetching corpus: 8416, signal 187530/190187 (executing program) 2025/09/01 11:14:04 starting 8 fuzzer processes 11:14:04 executing program 0: syz_emit_ethernet(0x3e, &(0x7f0000000180)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "2f2802", 0x8, 0x0, 0x0, @local, @mcast2, {[], "d827c871e0866d27"}}}}}, 0x0) 11:14:04 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x1a, 0x0, 0x0) 11:14:04 executing program 7: seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f0000000700)) 11:14:04 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2b, 0x0, 0x0) 11:14:04 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="2800000066000102"], 0x28}], 0x1}, 0x0) 11:14:04 executing program 4: request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x1}, &(0x7f0000000100)='user\x00', 0xffffffffffffffff) 11:14:04 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x141802, 0x0) ioctl$DVD_AUTH(r0, 0x1268, &(0x7f0000000140)=@lsc={0x3, 0x0, "8c2e9c993edfe1625d5a"}) 11:14:04 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='configfs\x00', 0x0, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x8100, &(0x7f0000000240)={0x0, 0x72}, 0x20) [ 81.120803] audit: type=1400 audit(1756725244.742:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 82.362323] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.364858] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.367267] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.371092] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.374643] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.379462] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.390547] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.394832] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.399540] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.405122] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.424098] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.427819] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.438267] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.441961] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.444538] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.455920] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.458313] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 82.459174] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.460827] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 82.469002] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 82.471789] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.475430] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.483263] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 82.483492] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.487094] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 82.488798] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 82.490345] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 82.491666] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 82.494487] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 82.496663] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 82.498953] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.499146] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.500824] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 82.510009] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 82.511329] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 82.512423] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 82.519334] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.522577] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 82.525161] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.531238] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 84.393058] Bluetooth: hci0: command tx timeout [ 84.456878] Bluetooth: hci1: command tx timeout [ 84.519846] Bluetooth: hci7: command tx timeout [ 84.519946] Bluetooth: hci3: command tx timeout [ 84.585052] Bluetooth: hci5: command tx timeout [ 84.585581] Bluetooth: hci6: command tx timeout [ 84.586117] Bluetooth: hci2: command tx timeout [ 84.586739] Bluetooth: hci4: command tx timeout [ 86.441192] Bluetooth: hci0: command tx timeout [ 86.503863] Bluetooth: hci1: command tx timeout [ 86.567905] Bluetooth: hci3: command tx timeout [ 86.568358] Bluetooth: hci7: command tx timeout [ 86.631782] Bluetooth: hci4: command tx timeout [ 86.631865] Bluetooth: hci2: command tx timeout [ 86.632314] Bluetooth: hci5: command tx timeout [ 86.633726] Bluetooth: hci6: command tx timeout [ 88.487848] Bluetooth: hci0: command tx timeout [ 88.552880] Bluetooth: hci1: command tx timeout [ 88.615746] Bluetooth: hci3: command tx timeout [ 88.616895] Bluetooth: hci7: command tx timeout [ 88.681751] Bluetooth: hci2: command tx timeout [ 88.682256] Bluetooth: hci4: command tx timeout [ 88.682895] Bluetooth: hci6: command tx timeout [ 88.683051] Bluetooth: hci5: command tx timeout [ 90.535753] Bluetooth: hci0: command tx timeout [ 90.599878] Bluetooth: hci1: command tx timeout [ 90.663821] Bluetooth: hci7: command tx timeout [ 90.664080] Bluetooth: hci3: command tx timeout [ 90.728874] Bluetooth: hci6: command tx timeout [ 90.728889] Bluetooth: hci4: command tx timeout [ 90.729331] Bluetooth: hci2: command tx timeout [ 90.729835] Bluetooth: hci5: command tx timeout [ 117.844980] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.845642] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.060735] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.061356] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.252474] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.253080] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.459732] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.460351] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:14:42 executing program 7: syz_emit_ethernet(0x7a, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "1a2685", 0x44, 0x2f, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, @private0, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}}, 0x0) 11:14:42 executing program 7: creat(&(0x7f00000003c0)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r1 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) pwritev2(r1, &(0x7f0000000b80)=[{&(0x7f00000008c0)='!', 0x1}], 0x1, 0x4bbe, 0x0, 0x0) sendfile(r1, r0, 0x0, 0x1480000) write$binfmt_script(r1, &(0x7f0000000bc0)={'#! ', './file0', [], 0xa, "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"}, 0x442) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)) [ 118.600215] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.600845] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:14:42 executing program 7: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) 11:14:42 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCSERGETLSR(r0, 0x5601, 0x0) [ 118.793776] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.794374] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:14:42 executing program 7: socket$netlink(0x10, 0x3, 0x12) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, 0x0, 0x0) creat(0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) [ 118.892485] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.893205] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.028271] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.029757] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.118936] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.119528] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.170990] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.171726] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.209975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.210580] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.234933] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.235518] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.255618] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.256301] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.286082] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.286653] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.393067] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.393672] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.450390] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.451224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.496263] audit: type=1400 audit(1756725283.114:8): avc: denied { open } for pid=3900 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 119.498618] audit: type=1400 audit(1756725283.114:9): avc: denied { kernel } for pid=3900 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 119.505530] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 119.532063] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 11:14:43 executing program 0: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0'}, 0xb) fallocate(r0, 0x20, 0x0, 0xffffffff000) 11:14:43 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x141802, 0x0) ioctl$DVD_AUTH(r0, 0x1268, &(0x7f0000000140)=@lsc={0x3, 0x0, "8c2e9c993edfe1625d5a"}) 11:14:43 executing program 7: io_setup(0x2, &(0x7f0000000080)=0x0) io_submit(r0, 0x2, 0x0) 11:14:43 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x1a, 0x0, 0x0) 11:14:43 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="2800000066000102"], 0x28}], 0x1}, 0x0) 11:14:43 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x141802, 0x0) ioctl$DVD_AUTH(r0, 0x1268, &(0x7f0000000140)=@lsc={0x3, 0x0, "8c2e9c993edfe1625d5a"}) 11:14:43 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='configfs\x00', 0x0, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x8100, &(0x7f0000000240)={0x0, 0x72}, 0x20) 11:14:43 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0) [ 119.676432] kmemleak: Found object by alias at 0x607f1a63e594 [ 119.676454] CPU: 1 UID: 0 PID: 3912 Comm: syz-executor.1 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 119.676472] Tainted: [W]=WARN [ 119.676476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 119.676484] Call Trace: [ 119.676488] [ 119.676493] dump_stack_lvl+0xca/0x120 [ 119.676519] __lookup_object+0x94/0xb0 [ 119.676537] delete_object_full+0x27/0x70 [ 119.676554] free_percpu+0x30/0x1160 [ 119.676572] ? arch_uprobe_clear_state+0x16/0x140 [ 119.676593] futex_hash_free+0x38/0xc0 [ 119.676609] mmput+0x2d3/0x390 [ 119.676629] do_exit+0x79d/0x2970 [ 119.676642] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 119.676660] ? __pfx_do_exit+0x10/0x10 [ 119.676675] ? trace_irq_enable.constprop.0+0x26/0x100 [ 119.676687] ? do_group_exit+0xc6/0x2a0 [ 119.676708] do_group_exit+0xd3/0x2a0 [ 119.676723] __x64_sys_exit_group+0x3e/0x50 [ 119.676738] x64_sys_call+0x18c5/0x18d0 [ 119.676754] do_syscall_64+0xbf/0x360 [ 119.676768] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.676780] RIP: 0033:0x7f4165e2db19 [ 119.676789] Code: Unable to access opcode bytes at 0x7f4165e2daef. [ 119.676794] RSP: 002b:00007ffd3cabb228 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 119.676806] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f4165e2db19 [ 119.676814] RDX: 00007f4165de072b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 119.676821] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 119.676828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 119.676835] R13: 0000000000000001 R14: 0000000000000001 R15: 00007ffd3cabb310 [ 119.676850] [ 119.676854] kmemleak: Object (percpu) 0x607f1a63e590 (size 8): [ 119.676861] kmemleak: comm "syz-executor.6", pid 3923, jiffies 4294786565 [ 119.676868] kmemleak: min_count = 1 [ 119.676872] kmemleak: count = 0 [ 119.676876] kmemleak: flags = 0x21 [ 119.676880] kmemleak: checksum = 0 [ 119.676883] kmemleak: backtrace: [ 119.676887] pcpu_alloc_noprof+0x87a/0x1170 [ 119.676903] percpu_ref_init+0x37/0x400 [ 119.676914] blkg_alloc+0xe9/0x7d0 [ 119.676927] blkg_create+0xe08/0x1420 [ 119.676940] bio_associate_blkg_from_css+0xe06/0x1380 [ 119.676954] bio_associate_blkg+0x10e/0x2a0 [ 119.676968] bio_init+0x2dd/0x570 [ 119.676982] bio_alloc_bioset+0x2cf/0x8c0 [ 119.676997] submit_bh_wbc+0x286/0x720 [ 119.677014] ext4_read_bh_nowait+0x156/0x240 [ 119.677028] __ext4_get_inode_loc+0x813/0x1390 [ 119.677039] ext4_get_inode_loc+0xbd/0x160 [ 119.677051] ext4_reserve_inode_write+0x155/0x350 [ 119.677064] ext4_xattr_set_handle+0x403/0x14c0 [ 119.677076] ext4_initxattrs+0xb9/0x120 [ 119.677090] security_inode_init_security+0x26d/0x390 [ 119.702629] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 11:14:43 executing program 0: unshare(0x6020400) unshare(0x4a000080) 11:14:43 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='configfs\x00', 0x0, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x8100, &(0x7f0000000240)={0x0, 0x72}, 0x20) [ 119.847014] ------------[ cut here ]------------ [ 119.847530] WARNING: fs/namespace.c:1434 at mntput_no_expire+0x78e/0xbe0, CPU#0: syz-executor.0/3932 [ 119.848481] Modules linked in: [ 119.848983] CPU: 0 UID: 0 PID: 3932 Comm: syz-executor.0 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 119.852036] Tainted: [W]=WARN [ 119.852870] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 119.855250] RIP: 0010:mntput_no_expire+0x78e/0xbe0 [ 119.856514] Code: 05 d6 30 81 04 01 e8 71 df 91 ff e9 41 fc ff ff e8 27 47 b4 ff 31 ff 44 89 ee e8 4d 42 b4 ff 45 85 ed 79 09 e8 13 47 b4 ff 90 <0f> 0b 90 e8 0a 47 b4 ff e8 b5 2d fc 02 31 ff 89 c5 89 c6 e8 2a 42 [ 119.859281] RSP: 0018:ffff8880477f7c30 EFLAGS: 00010212 [ 119.859750] RAX: 00000000000038ba RBX: 1ffff11008efef8b RCX: ffffc9000088e000 [ 119.860338] RDX: 0000000000040000 RSI: ffffffff81bfaf9d RDI: 0000000000000005 [ 119.860944] RBP: ffff888015988e00 R08: 0000000000000001 R09: 0000000000000000 [ 119.861532] R10: 00000000fffffffd R11: 0000000000000001 R12: ffff8880477f7c98 [ 119.862152] R13: 00000000fffffffd R14: dead000000000100 R15: ffff888015988e00 [ 119.862760] FS: 00007f22d0861700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 119.863433] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 119.863947] CR2: 000055555a3d6c98 CR3: 000000000e6ed000 CR4: 0000000000350ef0 [ 119.864541] Call Trace: [ 119.864782] [ 119.864984] ? __pfx_autoremove_wake_function+0x10/0x10 [ 119.865449] ? __pfx_mntput_no_expire+0x10/0x10 [ 119.865908] ? __virt_addr_valid+0x100/0x5d0 [ 119.866313] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 119.866750] ? shrink_dentry_list+0x1a/0x650 [ 119.867152] ? __call_rcu_common.constprop.0+0x4c1/0x960 [ 119.867621] namespace_unlock+0x57d/0x810 [ 119.868023] ? __pfx_namespace_unlock+0x10/0x10 [ 119.868447] ? find_held_lock+0x2b/0x80 [ 119.868834] ? lock_release+0xc8/0x290 [ 119.869191] put_mnt_ns+0xf5/0x120 [ 119.869518] free_nsproxy+0x3a/0x400 [ 119.869903] switch_task_namespaces+0xe2/0x100 [ 119.870323] ksys_unshare+0x520/0xa10 [ 119.870665] ? __pfx_ksys_unshare+0x10/0x10 [ 119.871063] ? xfd_validate_state+0x55/0x180 [ 119.871476] __x64_sys_unshare+0x31/0x40 [ 119.871855] do_syscall_64+0xbf/0x360 [ 119.872194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.872643] RIP: 0033:0x7f22d32ebb19 [ 119.872981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 119.874482] RSP: 002b:00007f22d0861188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 119.875123] RAX: ffffffffffffffda RBX: 00007f22d33fef60 RCX: 00007f22d32ebb19 [ 119.875721] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000006020400 [ 119.876305] RBP: 00007f22d3345f6d R08: 0000000000000000 R09: 0000000000000000 [ 119.876910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 119.877502] R13: 00007ffc0b6bc76f R14: 00007f22d0861300 R15: 0000000000022000 [ 119.878143] [ 119.878352] irq event stamp: 7287 [ 119.878646] hardirqs last enabled at (7295): [] __up_console_sem+0x78/0x80 [ 119.879380] hardirqs last disabled at (7304): [] __up_console_sem+0x5d/0x80 [ 119.880114] softirqs last enabled at (7002): [] handle_softirqs+0x50c/0x770 [ 119.880868] softirqs last disabled at (6997): [] __irq_exit_rcu+0xc4/0x100 [ 119.881591] ---[ end trace 0000000000000000 ]--- 11:14:43 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x1a, 0x0, 0x0) 11:14:43 executing program 7: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x10b302, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) sendfile(r0, r1, 0x0, 0x200000001000) 11:14:43 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0) 11:14:43 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x141802, 0x0) ioctl$DVD_AUTH(r0, 0x1268, &(0x7f0000000140)=@lsc={0x3, 0x0, "8c2e9c993edfe1625d5a"}) 11:14:43 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="2800000066000102"], 0x28}], 0x1}, 0x0) 11:14:43 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x141802, 0x0) ioctl$DVD_AUTH(r0, 0x1268, &(0x7f0000000140)=@lsc={0x3, 0x0, "8c2e9c993edfe1625d5a"}) 11:14:43 executing program 6: syz_mount_image$iso9660(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='configfs\x00', 0x0, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x8100, &(0x7f0000000240)={0x0, 0x72}, 0x20) 11:14:43 executing program 0: unshare(0x6020400) unshare(0x4a000080) [ 119.963416] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 11:14:43 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = open$dir(&(0x7f0000000480)='./file0\x00', 0x0, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0) 11:14:43 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) capset(0x0, 0x0) r0 = getpgid(0x0) capset(&(0x7f0000000280)={0x19980330, r0}, 0x0) 11:14:43 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x141802, 0x0) ioctl$DVD_AUTH(r0, 0x1268, &(0x7f0000000140)=@lsc={0x3, 0x0, "8c2e9c993edfe1625d5a"}) 11:14:43 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="2800000066000102"], 0x28}], 0x1}, 0x0) 11:14:43 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x1a, 0x0, 0x0) 11:14:43 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x141802, 0x0) ioctl$DVD_AUTH(r0, 0x1268, &(0x7f0000000140)=@lsc={0x3, 0x0, "8c2e9c993edfe1625d5a"}) [ 120.076502] Oops: general protection fault, probably for non-canonical address 0xf2fffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 120.077420] KASAN: maybe wild-memory-access in range [0x9800000000000190-0x9800000000000197] [ 120.078105] CPU: 0 UID: 0 PID: 3955 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 120.079051] Tainted: [W]=WARN [ 120.079304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.079950] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.080335] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.081773] RSP: 0018:ffff888046667800 EFLAGS: 00010212 [ 120.082215] RAX: 1300000000000032 RBX: 97ffffffffffffa0 RCX: ffffc90004aaf000 [ 120.082790] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 9800000000000190 [ 120.083359] RBP: ffff888046667a70 R08: ffff88806ce31340 R09: ffffe8ffffc16598 [ 120.083927] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 120.084487] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.085048] FS: 00007fb499322700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 120.085684] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.086174] CR2: 00007fb49bec0018 CR3: 000000000e51a000 CR4: 0000000000350ef0 [ 120.086741] Call Trace: [ 120.086950] [ 120.087134] ? perf_swevent_event+0x63/0x3f0 [ 120.087503] ? __pfx_perf_tp_event+0x10/0x10 [ 120.087866] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 120.088273] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 120.088673] ? perf_swevent_event+0x63/0x3f0 [ 120.089035] ? perf_tp_event+0x807/0xe70 [ 120.089371] ? __pfx_perf_tp_event+0x10/0x10 [ 120.089732] ? __perf_install_in_context+0x503/0xb90 [ 120.090161] ? do_raw_spin_unlock+0x53/0x220 [ 120.090530] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.090935] perf_trace_run_bpf_submit+0xef/0x180 [ 120.091329] perf_trace_lock+0x337/0x5d0 [ 120.091662] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.092033] ? lock_acquire+0x15e/0x2f0 [ 120.092357] ? futex_ref_get+0x48/0x300 [ 120.092678] ? futex_ref_get+0x114/0x300 [ 120.093004] ? futex_hash+0x15c/0x390 [ 120.093315] lock_release+0x1ab/0x290 [ 120.093626] ? futex_hash+0x15c/0x390 [ 120.093955] futex_ref_get+0x119/0x300 [ 120.094269] ? futex_hash+0x15c/0x390 [ 120.094575] futex_hash+0x70/0x390 [ 120.094868] futex_wake+0x143/0x540 [ 120.095170] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.095542] ? __pfx_futex_wake+0x10/0x10 [ 120.095885] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 120.096296] ? lock_release+0xc8/0x290 [ 120.096614] do_futex+0x26d/0x370 [ 120.096902] ? __pfx_do_futex+0x10/0x10 [ 120.097229] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 120.097653] ? find_held_lock+0x2b/0x80 [ 120.098022] __x64_sys_futex+0x1c9/0x4d0 [ 120.098353] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.098727] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 120.099149] do_syscall_64+0xbf/0x360 [ 120.099458] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.099871] RIP: 0033:0x7fb49bdacb19 [ 120.100170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.101599] RSP: 002b:00007fb499322218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.102221] RAX: ffffffffffffffda RBX: 00007fb49bebff68 RCX: 00007fb49bdacb19 [ 120.102782] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb49bebff6c [ 120.103350] RBP: 00007fb49bebff60 R08: 000000000000000e R09: 0000000000000000 [ 120.103911] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb49bebff6c [ 120.104477] R13: 00007fffde1e733f R14: 00007fb499322300 R15: 0000000000022000 [ 120.105049] [ 120.105243] Modules linked in: [ 120.105531] Oops: general protection fault, probably for non-canonical address 0xf2fffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 120.106423] KASAN: maybe wild-memory-access in range [0x9800000000000190-0x9800000000000197] [ 120.107085] CPU: 0 UID: 0 PID: 3955 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 120.108021] Tainted: [D]=DIE, [W]=WARN [ 120.108331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.108980] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.109360] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.110803] RSP: 0018:ffff88806ce08b40 EFLAGS: 00010012 [ 120.111222] RAX: 1300000000000032 RBX: 97ffffffffffffa0 RCX: ffffffff818998a3 [ 120.111780] RDX: ffff888045f01b80 RSI: ffffffff8189a4e7 RDI: 9800000000000190 [ 120.112338] RBP: ffff88806ce08db0 R08: ffff88806ce31490 R09: ffffe8ffffc16598 [ 120.112900] R10: 0000000000000000 R11: ffff88806ce08ff8 R12: dffffc0000000000 [ 120.113460] R13: 0000000000000000 R14: ffff88806ce31490 R15: dffffc0000000000 [ 120.114050] FS: 00007fb499322700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 120.114682] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.115138] CR2: 00007fb49bec0018 CR3: 000000000e51a000 CR4: 0000000000350ef0 [ 120.115697] Call Trace: [ 120.115904] [ 120.116078] ? stack_depot_save_flags+0x2c/0xa20 [ 120.116458] ? __pfx_perf_tp_event+0x10/0x10 [ 120.116815] ? kasan_save_track+0x14/0x30 [ 120.117151] ? handle_softirqs+0x1b1/0x770 [ 120.117492] ? __irq_exit_rcu+0xc4/0x100 [ 120.117842] ? irq_exit_rcu+0x9/0x20 [ 120.118141] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 120.118547] ? stack_trace_save+0x8e/0xc0 [ 120.118883] ? kasan_save_stack+0x24/0x50 [ 120.119214] ? kasan_save_track+0x14/0x30 [ 120.119550] ? __kasan_slab_alloc+0x59/0x70 [ 120.119894] ? kmem_cache_alloc_noprof+0x205/0x690 [ 120.120283] ? jbd2__journal_start+0x193/0x6b0 [ 120.120655] ? __ext4_journal_start_sb+0x325/0x5d0 [ 120.121043] ? ext4_evict_inode+0x5ee/0x1740 [ 120.121400] ? evict+0x368/0x860 [ 120.121678] ? iput.part.0+0x541/0x770 [ 120.122013] ? iput+0x62/0x80 [ 120.122273] ? vfs_rmdir.part.0+0x4cd/0x5e0 [ 120.122617] ? do_rmdir+0x325/0x420 [ 120.122913] ? __x64_sys_rmdir+0xc7/0x110 [ 120.123244] ? do_syscall_64+0xbf/0x360 [ 120.123564] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.123987] ? trace_pelt_se_tp+0xdf/0x130 [ 120.124323] ? __update_load_avg_se+0x428/0xa40 [ 120.124703] ? lock_is_held_type+0x9e/0x120 [ 120.125056] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.125455] perf_trace_run_bpf_submit+0xef/0x180 [ 120.125862] perf_trace_lock+0x337/0x5d0 [ 120.126190] ? sched_ttwu_pending+0x2e0/0x4a0 [ 120.126551] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.126919] ? lock_acquire+0x18c/0x2f0 [ 120.127240] ? __flush_smp_call_function_queue+0x38b/0x740 [ 120.127684] lock_release+0x1ab/0x290 [ 120.127992] _raw_spin_unlock_irqrestore+0x1a/0x50 [ 120.128389] ? __pfx_rcu_exp_handler+0x10/0x10 [ 120.128761] __flush_smp_call_function_queue+0x38b/0x740 [ 120.129195] __sysvec_call_function_single+0x6d/0x370 [ 120.129610] sysvec_call_function_single+0xa1/0xc0 [ 120.130027] [ 120.130211] [ 120.130392] asm_sysvec_call_function_single+0x1a/0x20 [ 120.130808] RIP: 0010:oops_exit+0x0/0x50 [ 120.131135] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 120.132554] RSP: 0018:ffff888046667690 EFLAGS: 00000202 [ 120.132975] RAX: 000000000002af8e RBX: 0000000000000216 RCX: ffffc90004aaf000 [ 120.133532] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 120.134117] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 120.134673] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888046667758 [ 120.135232] R13: 0000000000000000 R14: f2fffc0000000032 R15: 0000000000000000 [ 120.135794] ? oops_end+0x4a/0xe0 [ 120.136086] oops_end+0x65/0xe0 [ 120.136360] exc_general_protection+0x1a2/0x330 [ 120.136735] asm_exc_general_protection+0x26/0x30 [ 120.137123] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.137498] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.138938] RSP: 0018:ffff888046667800 EFLAGS: 00010212 [ 120.139360] RAX: 1300000000000032 RBX: 97ffffffffffffa0 RCX: ffffc90004aaf000 [ 120.139923] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 9800000000000190 [ 120.140485] RBP: ffff888046667a70 R08: ffff88806ce31340 R09: ffffe8ffffc16598 [ 120.141043] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 120.141604] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.142191] ? perf_tp_event+0x167/0xe70 [ 120.142527] ? perf_swevent_event+0x63/0x3f0 [ 120.142889] ? __pfx_perf_tp_event+0x10/0x10 [ 120.143246] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 120.143644] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 120.144046] ? perf_swevent_event+0x63/0x3f0 [ 120.144403] ? perf_tp_event+0x807/0xe70 [ 120.144733] ? __pfx_perf_tp_event+0x10/0x10 [ 120.145090] ? __perf_install_in_context+0x503/0xb90 [ 120.145496] ? do_raw_spin_unlock+0x53/0x220 [ 120.145874] ? perf_trace_run_bpf_submit+0xef/0x180 [ 120.146272] perf_trace_run_bpf_submit+0xef/0x180 [ 120.146666] perf_trace_lock+0x337/0x5d0 [ 120.146995] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.147364] ? lock_acquire+0x15e/0x2f0 [ 120.147683] ? futex_ref_get+0x48/0x300 [ 120.148001] ? futex_ref_get+0x114/0x300 [ 120.148321] ? futex_hash+0x15c/0x390 [ 120.148628] lock_release+0x1ab/0x290 [ 120.148936] ? futex_hash+0x15c/0x390 [ 120.149241] futex_ref_get+0x119/0x300 [ 120.149551] ? futex_hash+0x15c/0x390 [ 120.149870] futex_hash+0x70/0x390 [ 120.150158] futex_wake+0x143/0x540 [ 120.150454] ? __pfx_perf_trace_lock+0x10/0x10 [ 120.150824] ? __pfx_futex_wake+0x10/0x10 [ 120.151161] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 120.151562] ? lock_release+0xc8/0x290 [ 120.151879] do_futex+0x26d/0x370 [ 120.152163] ? __pfx_do_futex+0x10/0x10 [ 120.152484] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 120.152904] ? find_held_lock+0x2b/0x80 [ 120.153229] __x64_sys_futex+0x1c9/0x4d0 [ 120.153555] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.153944] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 120.154362] do_syscall_64+0xbf/0x360 [ 120.154672] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.155078] RIP: 0033:0x7fb49bdacb19 [ 120.155376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.156797] RSP: 002b:00007fb499322218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.157395] RAX: ffffffffffffffda RBX: 00007fb49bebff68 RCX: 00007fb49bdacb19 [ 120.157973] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb49bebff6c [ 120.158534] RBP: 00007fb49bebff60 R08: 000000000000000e R09: 0000000000000000 [ 120.159088] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb49bebff6c [ 120.159645] R13: 00007fffde1e733f R14: 00007fb499322300 R15: 0000000000022000 [ 120.160211] [ 120.160397] Modules linked in: [ 120.160660] ---[ end trace 0000000000000000 ]--- [ 120.161030] RIP: 0010:perf_tp_event+0x175/0xe70 [ 120.161406] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 120.162850] RSP: 0018:ffff888046667800 EFLAGS: 00010212 [ 120.163271] RAX: 1300000000000032 RBX: 97ffffffffffffa0 RCX: ffffc90004aaf000 [ 120.163830] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 9800000000000190 [ 120.164392] RBP: ffff888046667a70 R08: ffff88806ce31340 R09: ffffe8ffffc16598 [ 120.164948] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 120.165507] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 120.166084] FS: 00007fb499322700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 120.166718] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.167181] CR2: 00007fb49bec0018 CR3: 000000000e51a000 CR4: 0000000000350ef0 [ 120.167742] Kernel panic - not syncing: Fatal exception in interrupt [ 120.168330] Kernel Offset: disabled [ 120.168619] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 11:14:43 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff8880477f75a8 R8 =0000000000000000 R9 =ffffed1001544046 R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f22d0861700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe6300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055555a3d6c98 CR3=000000000e6ed000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffff0000ff000000 XMM02=0000561bab8340100000561bac0856c0 XMM03=00000000000000000000561b00716d2f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=0000561bac0c44a00000561bac0babb0 XMM06=0000561bac0f2df00000000000000000 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000200000000000000020000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000100 RCX=ffffffff81b98698 RDX=ffff888009aed280 RSI=ffffffff81b98663 RDI=0000000000000001 RBP=ffff8880159f7ae0 RSP=ffff8880159f7a50 R8 =0000000000000001 R9 =ffffffff81b97d93 R10=0000000000000001 R11=0000000000000001 R12=ffff8880159f7c74 R13=000000000000085d R14=ffff8880159f7c38 R15=0000000000000001 RIP=ffffffff81b98665 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f98fe30b900 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe0b00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2cc26000 CR3=000000000ecba000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134 XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572 XMM04=d785cb39c9e66699000000000014b950 XMM05=d3fdd5f48436fbd700000000000aead0 XMM06=2991a65f33f0d04200000000000ae988 XMM07=00000000000000000000000000000000 XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000 XMM10=20000000000000002000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000