Warning: Permanently added '[localhost]:51213' (ECDSA) to the list of known hosts.
2025/09/01 11:33:54 fuzzer started
2025/09/01 11:33:54 dialing manager at localhost:35473
syzkaller login: [ 52.242646] cgroup: Unknown subsys name 'net'
[ 52.404993] cgroup: Unknown subsys name 'cpuset'
[ 52.433162] cgroup: Unknown subsys name 'rlimit'
2025/09/01 11:34:05 syscalls: 2214
2025/09/01 11:34:05 code coverage: enabled
2025/09/01 11:34:05 comparison tracing: enabled
2025/09/01 11:34:05 extra coverage: enabled
2025/09/01 11:34:05 setuid sandbox: enabled
2025/09/01 11:34:05 namespace sandbox: enabled
2025/09/01 11:34:05 Android sandbox: enabled
2025/09/01 11:34:05 fault injection: enabled
2025/09/01 11:34:05 leak checking: enabled
2025/09/01 11:34:05 net packet injection: enabled
2025/09/01 11:34:05 net device setup: enabled
2025/09/01 11:34:05 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 11:34:05 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 11:34:05 USB emulation: enabled
2025/09/01 11:34:05 hci packet injection: enabled
2025/09/01 11:34:05 wifi device emulation: enabled
2025/09/01 11:34:05 802.15.4 emulation: enabled
2025/09/01 11:34:05 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 11:34:05 fetching corpus: 50, signal 14922/18606 (executing program)
2025/09/01 11:34:06 fetching corpus: 100, signal 26537/31697 (executing program)
2025/09/01 11:34:06 fetching corpus: 150, signal 36191/42629 (executing program)
2025/09/01 11:34:06 fetching corpus: 200, signal 46011/53564 (executing program)
2025/09/01 11:34:06 fetching corpus: 250, signal 50216/59041 (executing program)
2025/09/01 11:34:06 fetching corpus: 300, signal 54372/64358 (executing program)
2025/09/01 11:34:06 fetching corpus: 350, signal 57040/68257 (executing program)
2025/09/01 11:34:06 fetching corpus: 400, signal 61114/73325 (executing program)
2025/09/01 11:34:06 fetching corpus: 450, signal 64751/77963 (executing program)
2025/09/01 11:34:06 fetching corpus: 500, signal 68293/82414 (executing program)
2025/09/01 11:34:06 fetching corpus: 550, signal 71485/86481 (executing program)
2025/09/01 11:34:07 fetching corpus: 600, signal 74095/89965 (executing program)
2025/09/01 11:34:07 fetching corpus: 650, signal 76755/93493 (executing program)
2025/09/01 11:34:07 fetching corpus: 700, signal 79788/97286 (executing program)
2025/09/01 11:34:07 fetching corpus: 750, signal 82158/100431 (executing program)
2025/09/01 11:34:07 fetching corpus: 800, signal 84901/103826 (executing program)
2025/09/01 11:34:07 fetching corpus: 850, signal 87086/106750 (executing program)
2025/09/01 11:34:07 fetching corpus: 900, signal 89305/109561 (executing program)
2025/09/01 11:34:07 fetching corpus: 950, signal 90696/111714 (executing program)
2025/09/01 11:34:07 fetching corpus: 1000, signal 92537/114219 (executing program)
2025/09/01 11:34:07 fetching corpus: 1050, signal 94910/117100 (executing program)
2025/09/01 11:34:07 fetching corpus: 1100, signal 96483/119309 (executing program)
2025/09/01 11:34:08 fetching corpus: 1150, signal 98274/121674 (executing program)
2025/09/01 11:34:08 fetching corpus: 1200, signal 99324/123433 (executing program)
2025/09/01 11:34:08 fetching corpus: 1250, signal 100370/125159 (executing program)
2025/09/01 11:34:08 fetching corpus: 1300, signal 101729/127129 (executing program)
2025/09/01 11:34:08 fetching corpus: 1350, signal 103606/129386 (executing program)
2025/09/01 11:34:08 fetching corpus: 1400, signal 105106/131371 (executing program)
2025/09/01 11:34:08 fetching corpus: 1450, signal 106353/133170 (executing program)
2025/09/01 11:34:08 fetching corpus: 1500, signal 107487/134869 (executing program)
2025/09/01 11:34:08 fetching corpus: 1550, signal 108733/136539 (executing program)
2025/09/01 11:34:08 fetching corpus: 1600, signal 111667/139337 (executing program)
2025/09/01 11:34:08 fetching corpus: 1650, signal 112998/141090 (executing program)
2025/09/01 11:34:08 fetching corpus: 1700, signal 113957/142518 (executing program)
2025/09/01 11:34:09 fetching corpus: 1750, signal 115718/144467 (executing program)
2025/09/01 11:34:09 fetching corpus: 1800, signal 116945/146030 (executing program)
2025/09/01 11:34:09 fetching corpus: 1850, signal 117865/147368 (executing program)
2025/09/01 11:34:09 fetching corpus: 1900, signal 118575/148549 (executing program)
2025/09/01 11:34:09 fetching corpus: 1950, signal 120020/150151 (executing program)
2025/09/01 11:34:09 fetching corpus: 2000, signal 121152/151503 (executing program)
2025/09/01 11:34:09 fetching corpus: 2050, signal 125105/154502 (executing program)
2025/09/01 11:34:09 fetching corpus: 2100, signal 126506/156003 (executing program)
2025/09/01 11:34:09 fetching corpus: 2150, signal 127519/157231 (executing program)
2025/09/01 11:34:09 fetching corpus: 2200, signal 128369/158369 (executing program)
2025/09/01 11:34:09 fetching corpus: 2250, signal 129055/159357 (executing program)
2025/09/01 11:34:09 fetching corpus: 2300, signal 129713/160371 (executing program)
2025/09/01 11:34:10 fetching corpus: 2350, signal 130787/161659 (executing program)
2025/09/01 11:34:10 fetching corpus: 2400, signal 131480/162653 (executing program)
2025/09/01 11:34:10 fetching corpus: 2450, signal 132423/163755 (executing program)
2025/09/01 11:34:10 fetching corpus: 2500, signal 133201/164736 (executing program)
2025/09/01 11:34:10 fetching corpus: 2550, signal 134077/165732 (executing program)
2025/09/01 11:34:10 fetching corpus: 2600, signal 135065/166808 (executing program)
2025/09/01 11:34:10 fetching corpus: 2650, signal 135843/167797 (executing program)
2025/09/01 11:34:10 fetching corpus: 2700, signal 136589/168733 (executing program)
2025/09/01 11:34:10 fetching corpus: 2750, signal 137503/169732 (executing program)
2025/09/01 11:34:10 fetching corpus: 2800, signal 138492/170776 (executing program)
2025/09/01 11:34:10 fetching corpus: 2850, signal 139032/171588 (executing program)
2025/09/01 11:34:10 fetching corpus: 2900, signal 139751/172421 (executing program)
2025/09/01 11:34:11 fetching corpus: 2950, signal 140398/173201 (executing program)
2025/09/01 11:34:11 fetching corpus: 3000, signal 141271/174106 (executing program)
2025/09/01 11:34:11 fetching corpus: 3050, signal 141925/174906 (executing program)
2025/09/01 11:34:11 fetching corpus: 3100, signal 142598/175637 (executing program)
2025/09/01 11:34:11 fetching corpus: 3150, signal 143226/176398 (executing program)
2025/09/01 11:34:11 fetching corpus: 3200, signal 143913/177147 (executing program)
2025/09/01 11:34:11 fetching corpus: 3250, signal 144410/177790 (executing program)
2025/09/01 11:34:11 fetching corpus: 3300, signal 145411/178592 (executing program)
2025/09/01 11:34:11 fetching corpus: 3350, signal 145870/179236 (executing program)
2025/09/01 11:34:11 fetching corpus: 3400, signal 146585/179914 (executing program)
2025/09/01 11:34:11 fetching corpus: 3450, signal 147245/180577 (executing program)
2025/09/01 11:34:12 fetching corpus: 3500, signal 147990/181214 (executing program)
2025/09/01 11:34:12 fetching corpus: 3550, signal 148549/181818 (executing program)
2025/09/01 11:34:12 fetching corpus: 3600, signal 148988/182384 (executing program)
2025/09/01 11:34:12 fetching corpus: 3650, signal 149657/183003 (executing program)
2025/09/01 11:34:12 fetching corpus: 3700, signal 150407/183629 (executing program)
2025/09/01 11:34:12 fetching corpus: 3750, signal 151186/184260 (executing program)
2025/09/01 11:34:12 fetching corpus: 3800, signal 151655/184784 (executing program)
2025/09/01 11:34:12 fetching corpus: 3850, signal 152130/185304 (executing program)
2025/09/01 11:34:12 fetching corpus: 3900, signal 152573/185799 (executing program)
2025/09/01 11:34:12 fetching corpus: 3950, signal 153131/186314 (executing program)
2025/09/01 11:34:13 fetching corpus: 4000, signal 153954/186875 (executing program)
2025/09/01 11:34:13 fetching corpus: 4050, signal 154358/187327 (executing program)
2025/09/01 11:34:13 fetching corpus: 4100, signal 154912/187847 (executing program)
2025/09/01 11:34:13 fetching corpus: 4150, signal 155450/188346 (executing program)
2025/09/01 11:34:13 fetching corpus: 4200, signal 155890/188814 (executing program)
2025/09/01 11:34:13 fetching corpus: 4250, signal 156415/189274 (executing program)
2025/09/01 11:34:13 fetching corpus: 4300, signal 157228/189772 (executing program)
2025/09/01 11:34:13 fetching corpus: 4350, signal 157688/190226 (executing program)
2025/09/01 11:34:13 fetching corpus: 4400, signal 158118/190622 (executing program)
2025/09/01 11:34:13 fetching corpus: 4450, signal 158718/191056 (executing program)
2025/09/01 11:34:13 fetching corpus: 4500, signal 159221/191451 (executing program)
2025/09/01 11:34:13 fetching corpus: 4550, signal 159666/191801 (executing program)
2025/09/01 11:34:14 fetching corpus: 4600, signal 160065/192204 (executing program)
2025/09/01 11:34:14 fetching corpus: 4650, signal 160491/192546 (executing program)
2025/09/01 11:34:14 fetching corpus: 4700, signal 161000/192897 (executing program)
2025/09/01 11:34:14 fetching corpus: 4750, signal 161407/192968 (executing program)
2025/09/01 11:34:14 fetching corpus: 4800, signal 161895/193048 (executing program)
2025/09/01 11:34:14 fetching corpus: 4850, signal 162241/193048 (executing program)
2025/09/01 11:34:14 fetching corpus: 4900, signal 162663/193056 (executing program)
2025/09/01 11:34:14 fetching corpus: 4950, signal 163149/193163 (executing program)
2025/09/01 11:34:14 fetching corpus: 5000, signal 163537/193177 (executing program)
2025/09/01 11:34:14 fetching corpus: 5050, signal 163894/193195 (executing program)
2025/09/01 11:34:15 fetching corpus: 5100, signal 164440/193208 (executing program)
2025/09/01 11:34:15 fetching corpus: 5150, signal 164773/193208 (executing program)
2025/09/01 11:34:15 fetching corpus: 5200, signal 165205/193214 (executing program)
2025/09/01 11:34:15 fetching corpus: 5250, signal 165524/193220 (executing program)
2025/09/01 11:34:15 fetching corpus: 5300, signal 165909/193220 (executing program)
2025/09/01 11:34:15 fetching corpus: 5350, signal 166195/193222 (executing program)
2025/09/01 11:34:15 fetching corpus: 5400, signal 166537/193223 (executing program)
2025/09/01 11:34:15 fetching corpus: 5450, signal 166899/193227 (executing program)
2025/09/01 11:34:15 fetching corpus: 5500, signal 167312/193233 (executing program)
2025/09/01 11:34:15 fetching corpus: 5550, signal 167595/193234 (executing program)
2025/09/01 11:34:15 fetching corpus: 5600, signal 168105/193301 (executing program)
2025/09/01 11:34:16 fetching corpus: 5650, signal 168471/193303 (executing program)
2025/09/01 11:34:16 fetching corpus: 5700, signal 168993/193386 (executing program)
2025/09/01 11:34:16 fetching corpus: 5750, signal 169403/193420 (executing program)
2025/09/01 11:34:16 fetching corpus: 5800, signal 169703/193454 (executing program)
2025/09/01 11:34:16 fetching corpus: 5850, signal 169978/193467 (executing program)
2025/09/01 11:34:16 fetching corpus: 5900, signal 170234/193473 (executing program)
2025/09/01 11:34:16 fetching corpus: 5950, signal 170680/193488 (executing program)
2025/09/01 11:34:16 fetching corpus: 6000, signal 170968/193511 (executing program)
2025/09/01 11:34:16 fetching corpus: 6050, signal 171210/193521 (executing program)
2025/09/01 11:34:16 fetching corpus: 6100, signal 171536/193524 (executing program)
2025/09/01 11:34:16 fetching corpus: 6150, signal 171884/193529 (executing program)
2025/09/01 11:34:16 fetching corpus: 6200, signal 172341/193559 (executing program)
2025/09/01 11:34:17 fetching corpus: 6250, signal 172801/193583 (executing program)
2025/09/01 11:34:17 fetching corpus: 6300, signal 173237/193591 (executing program)
2025/09/01 11:34:17 fetching corpus: 6350, signal 173620/193597 (executing program)
2025/09/01 11:34:17 fetching corpus: 6400, signal 173986/193607 (executing program)
2025/09/01 11:34:17 fetching corpus: 6450, signal 174312/193608 (executing program)
2025/09/01 11:34:17 fetching corpus: 6500, signal 174745/193635 (executing program)
2025/09/01 11:34:17 fetching corpus: 6550, signal 175219/193638 (executing program)
2025/09/01 11:34:17 fetching corpus: 6600, signal 175680/193645 (executing program)
2025/09/01 11:34:17 fetching corpus: 6650, signal 175992/193645 (executing program)
2025/09/01 11:34:17 fetching corpus: 6700, signal 176311/193646 (executing program)
2025/09/01 11:34:17 fetching corpus: 6750, signal 176609/193646 (executing program)
2025/09/01 11:34:18 fetching corpus: 6800, signal 176924/193647 (executing program)
2025/09/01 11:34:18 fetching corpus: 6850, signal 177168/193651 (executing program)
2025/09/01 11:34:18 fetching corpus: 6900, signal 177839/193659 (executing program)
2025/09/01 11:34:18 fetching corpus: 6950, signal 178119/193666 (executing program)
2025/09/01 11:34:18 fetching corpus: 7000, signal 178440/193683 (executing program)
2025/09/01 11:34:18 fetching corpus: 7050, signal 178837/193686 (executing program)
2025/09/01 11:34:18 fetching corpus: 7100, signal 179111/193687 (executing program)
2025/09/01 11:34:18 fetching corpus: 7150, signal 179391/193692 (executing program)
2025/09/01 11:34:18 fetching corpus: 7200, signal 179725/193731 (executing program)
2025/09/01 11:34:18 fetching corpus: 7250, signal 180007/193735 (executing program)
2025/09/01 11:34:18 fetching corpus: 7300, signal 180363/193739 (executing program)
2025/09/01 11:34:19 fetching corpus: 7350, signal 180648/193745 (executing program)
2025/09/01 11:34:19 fetching corpus: 7400, signal 180877/193756 (executing program)
2025/09/01 11:34:19 fetching corpus: 7450, signal 181099/193763 (executing program)
2025/09/01 11:34:19 fetching corpus: 7500, signal 181339/193764 (executing program)
2025/09/01 11:34:19 fetching corpus: 7550, signal 181857/193794 (executing program)
2025/09/01 11:34:19 fetching corpus: 7600, signal 182340/193795 (executing program)
2025/09/01 11:34:19 fetching corpus: 7650, signal 182628/193802 (executing program)
2025/09/01 11:34:19 fetching corpus: 7700, signal 182895/193810 (executing program)
2025/09/01 11:34:19 fetching corpus: 7750, signal 183158/193820 (executing program)
2025/09/01 11:34:19 fetching corpus: 7800, signal 183333/193824 (executing program)
2025/09/01 11:34:19 fetching corpus: 7850, signal 183561/193824 (executing program)
2025/09/01 11:34:19 fetching corpus: 7900, signal 183873/193837 (executing program)
2025/09/01 11:34:20 fetching corpus: 7950, signal 184690/193853 (executing program)
2025/09/01 11:34:20 fetching corpus: 8000, signal 184994/193872 (executing program)
2025/09/01 11:34:20 fetching corpus: 8050, signal 185448/193885 (executing program)
2025/09/01 11:34:20 fetching corpus: 8100, signal 186001/193898 (executing program)
2025/09/01 11:34:20 fetching corpus: 8150, signal 186247/193900 (executing program)
2025/09/01 11:34:20 fetching corpus: 8200, signal 186664/193900 (executing program)
2025/09/01 11:34:20 fetching corpus: 8250, signal 186906/193900 (executing program)
2025/09/01 11:34:20 fetching corpus: 8300, signal 187157/193902 (executing program)
2025/09/01 11:34:20 fetching corpus: 8350, signal 187332/193905 (executing program)
2025/09/01 11:34:20 fetching corpus: 8400, signal 187988/193909 (executing program)
2025/09/01 11:34:20 fetching corpus: 8450, signal 188290/193913 (executing program)
2025/09/01 11:34:20 fetching corpus: 8500, signal 188468/193915 (executing program)
2025/09/01 11:34:20 fetching corpus: 8550, signal 188824/193924 (executing program)
2025/09/01 11:34:20 fetching corpus: 8600, signal 189146/193929 (executing program)
2025/09/01 11:34:21 fetching corpus: 8650, signal 189387/193929 (executing program)
2025/09/01 11:34:21 fetching corpus: 8700, signal 189668/193937 (executing program)
2025/09/01 11:34:21 fetching corpus: 8750, signal 189855/193945 (executing program)
2025/09/01 11:34:21 fetching corpus: 8800, signal 190370/193958 (executing program)
2025/09/01 11:34:21 fetching corpus: 8850, signal 190562/193958 (executing program)
2025/09/01 11:34:21 fetching corpus: 8900, signal 190781/193960 (executing program)
2025/09/01 11:34:21 fetching corpus: 8950, signal 191036/193992 (executing program)
2025/09/01 11:34:21 fetching corpus: 9000, signal 191333/194011 (executing program)
2025/09/01 11:34:21 fetching corpus: 9015, signal 191379/194011 (executing program)
2025/09/01 11:34:21 fetching corpus: 9015, signal 191379/194011 (executing program)
2025/09/01 11:34:23 starting 8 fuzzer processes
11:34:23 executing program 1:
r0 = eventfd(0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$eventfd(r0, &(0x7f0000000040), 0x8)
11:34:23 executing program 0:
mq_open(&(0x7f0000003940)=']&\xa3,(\x00', 0x0, 0x0, &(0x7f0000003980))
11:34:23 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f0000000040)=ANY=[])
mknodat$loop(r0, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
[ 80.453695] audit: type=1400 audit(1756726463.175:7): avc: denied { execmem } for pid=270 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:34:23 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
getsockname$packet(r0, 0x0, &(0x7f0000000980))
11:34:23 executing program 3:
perf_event_open(&(0x7f0000003740)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
11:34:23 executing program 7:
signalfd(0xffffffffffffffff, &(0x7f0000000480), 0x8)
11:34:23 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x20901, 0x0)
pwritev2(r0, &(0x7f0000000080)=[{0x0}, {&(0x7f0000000040)="c4", 0xa00}], 0x2e, 0x0, 0x0, 0x0)
11:34:23 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3946", 0x7}], 0x1)
[ 81.596453] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 81.598421] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 81.601604] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 81.603465] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 81.606007] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 81.607650] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 81.612149] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 81.614042] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 81.619511] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 81.620760] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 81.788795] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 81.796554] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 81.798676] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 81.803052] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 81.807007] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 81.808612] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 81.811450] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 81.813481] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 81.814514] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 81.816528] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 81.876130] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 81.876938] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 81.878929] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 81.881898] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 81.886865] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 81.888131] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 81.891503] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 81.901105] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 81.901536] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 81.902440] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 81.904425] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 81.905020] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 81.913359] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 81.923537] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 81.925491] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 81.932084] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 81.933254] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 81.939060] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 81.940815] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 81.950935] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 83.694295] Bluetooth: hci1: command tx timeout
[ 83.694307] Bluetooth: hci0: command tx timeout
[ 83.886136] Bluetooth: hci3: command tx timeout
[ 83.886419] Bluetooth: hci2: command tx timeout
[ 84.013874] Bluetooth: hci6: command tx timeout
[ 84.014310] Bluetooth: hci7: command tx timeout
[ 84.015058] Bluetooth: hci5: command tx timeout
[ 84.077865] Bluetooth: hci4: command tx timeout
[ 85.742164] Bluetooth: hci1: command tx timeout
[ 85.742799] Bluetooth: hci0: command tx timeout
[ 85.933823] Bluetooth: hci2: command tx timeout
[ 85.935140] Bluetooth: hci3: command tx timeout
[ 86.061922] Bluetooth: hci5: command tx timeout
[ 86.062890] Bluetooth: hci7: command tx timeout
[ 86.063299] Bluetooth: hci6: command tx timeout
[ 86.125868] Bluetooth: hci4: command tx timeout
[ 87.789860] Bluetooth: hci1: command tx timeout
[ 87.791507] Bluetooth: hci0: command tx timeout
[ 87.982793] Bluetooth: hci3: command tx timeout
[ 87.982821] Bluetooth: hci2: command tx timeout
[ 88.109807] Bluetooth: hci6: command tx timeout
[ 88.111819] Bluetooth: hci7: command tx timeout
[ 88.111836] Bluetooth: hci5: command tx timeout
[ 88.173872] Bluetooth: hci4: command tx timeout
[ 89.837832] Bluetooth: hci0: command tx timeout
[ 89.837855] Bluetooth: hci1: command tx timeout
[ 90.029946] Bluetooth: hci2: command tx timeout
[ 90.030210] Bluetooth: hci3: command tx timeout
[ 90.157867] Bluetooth: hci7: command tx timeout
[ 90.157921] Bluetooth: hci6: command tx timeout
[ 90.158293] Bluetooth: hci5: command tx timeout
[ 90.222801] Bluetooth: hci4: command tx timeout
[ 121.149899] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.150530] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.369126] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.370862] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.497325] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.498406] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.608661] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.609440] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.751358] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.752680] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.799146] audit: type=1400 audit(1756726504.519:8): avc: denied { open } for pid=3833 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 121.804849] audit: type=1400 audit(1756726504.520:9): avc: denied { kernel } for pid=3833 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 121.864754] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.865455] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.961614] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.962764] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.010969] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.012070] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.107235] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.107902] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.178009] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.179097] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.290007] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.290705] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.377645] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.378402] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.493694] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.496407] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.564577] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.565683] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.794462] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.795133] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.822766] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.823347] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.018891] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 123.019916] I/O error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 5 prio class 2
[ 123.021149] Buffer I/O error on dev sr0, logical block 0, lost async page write
[ 123.022278] Buffer I/O error on dev sr0, logical block 1, lost async page write
[ 123.023384] Buffer I/O error on dev sr0, logical block 2, lost async page write
[ 123.024522] Buffer I/O error on dev sr0, logical block 3, lost async page write
[ 123.025638] Buffer I/O error on dev sr0, logical block 4, lost async page write
[ 123.077398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 123.078231] I/O error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 5 prio class 2
[ 123.079397] Buffer I/O error on dev sr0, logical block 0, lost async page write
[ 123.080512] Buffer I/O error on dev sr0, logical block 1, lost async page write
[ 123.081606] Buffer I/O error on dev sr0, logical block 2, lost async page write
[ 123.082695] Buffer I/O error on dev sr0, logical block 3, lost async page write
[ 123.083825] Buffer I/O error on dev sr0, logical block 4, lost async page write
11:35:05 executing program 1:
r0 = eventfd(0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$eventfd(r0, &(0x7f0000000040), 0x8)
11:35:05 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
getsockname$packet(r0, 0x0, &(0x7f0000000980))
11:35:05 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3946", 0x7}], 0x1)
11:35:05 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f0000000040)=ANY=[])
mknodat$loop(r0, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
11:35:05 executing program 0:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f0000000040)=ANY=[])
mknodat$loop(r0, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
11:35:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000022c0)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x0, 0xaa, &(0x7f0000000480)=""/170}, &(0x7f0000001240)="05ae46670f9d", 0x0, 0x0, 0x0, 0x0, 0x0})
11:35:05 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e})
rmdir(&(0x7f0000000480)='./file0\x00')
11:35:05 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x20901, 0x0)
pwritev2(r0, &(0x7f0000000080)=[{0x0}, {&(0x7f0000000040)="c4", 0xa00}], 0x2e, 0x0, 0x0, 0x0)
11:35:05 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f0000000040)=ANY=[])
mknodat$loop(r0, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
11:35:05 executing program 1:
r0 = eventfd(0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$eventfd(r0, &(0x7f0000000040), 0x8)
[ 123.222203] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 123.222695] I/O error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 5 prio class 2
11:35:05 executing program 3:
timer_create(0x9, &(0x7f00000001c0)={0x0, 0xb, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x77359400}, {0x0, 0x989680}}, 0x0)
11:35:06 executing program 0:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f0000000040)=ANY=[])
mknodat$loop(r0, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
11:35:06 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
getsockname$packet(r0, 0x0, &(0x7f0000000980))
11:35:06 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3946", 0x7}], 0x1)
11:35:06 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x20901, 0x0)
pwritev2(r0, &(0x7f0000000080)=[{0x0}, {&(0x7f0000000040)="c4", 0xa00}], 0x2e, 0x0, 0x0, 0x0)
11:35:06 executing program 1:
r0 = eventfd(0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$eventfd(r0, &(0x7f0000000040), 0x8)
11:35:06 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000022c0)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x0, 0xaa, &(0x7f0000000480)=""/170}, &(0x7f0000001240)="05ae46670f9d", 0x0, 0x0, 0x0, 0x0, 0x0})
[ 123.436219] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 123.437197] I/O error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 5 prio class 2
[ 123.439500] kmemleak: Found object by alias at 0x607f1a63eb7c
[ 123.439523] CPU: 0 UID: 0 PID: 3918 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 123.439547] Tainted: [W]=WARN
[ 123.439553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 123.439561] Call Trace:
[ 123.439567]
[ 123.439573] dump_stack_lvl+0xca/0x120
[ 123.439604] __lookup_object+0x94/0xb0
[ 123.439626] delete_object_full+0x27/0x70
[ 123.439647] free_percpu+0x30/0x1160
[ 123.439668] ? arch_uprobe_clear_state+0x16/0x140
[ 123.439694] futex_hash_free+0x38/0xc0
[ 123.439712] mmput+0x2d3/0x390
[ 123.439742] do_exit+0x79d/0x2970
[ 123.439767] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 123.439785] ? zap_other_threads+0x2b9/0x3a0
[ 123.439806] ? __pfx_do_exit+0x10/0x10
[ 123.439823] ? do_group_exit+0x1c3/0x2a0
[ 123.439842] ? _raw_spin_unlock_irq+0x23/0x40
[ 123.439865] do_group_exit+0xd3/0x2a0
[ 123.439885] __x64_sys_exit_group+0x3e/0x50
[ 123.439903] x64_sys_call+0x18c5/0x18d0
[ 123.439923] do_syscall_64+0xbf/0x360
[ 123.439939] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.439954] RIP: 0033:0x7fc7f5842b19
[ 123.439965] Code: Unable to access opcode bytes at 0x7fc7f5842aef.
[ 123.439972] RSP: 002b:00007ffd5a23f9f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 123.439986] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fc7f5842b19
[ 123.439996] RDX: 00007fc7f57f572b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 123.440006] RBP: 0000000000000000 R08: 0000001b2d124298 R09: 0000000000000000
[ 123.440015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 123.440023] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd5a23fae0
[ 123.440043]
[ 123.440048] kmemleak: Object (percpu) 0x607f1a63eb78 (size 8):
[ 123.440057] kmemleak: comm "syz-executor.1", pid 3926, jiffies 4294790318
[ 123.440066] kmemleak: min_count = 1
[ 123.440071] kmemleak: count = 0
[ 123.440075] kmemleak: flags = 0x21
[ 123.440080] kmemleak: checksum = 0
[ 123.440085] kmemleak: backtrace:
[ 123.440089] pcpu_alloc_noprof+0x87a/0x1170
[ 123.440109] perf_trace_event_init+0x366/0xa10
[ 123.440127] perf_trace_init+0x1a4/0x2f0
[ 123.440143] perf_tp_event_init+0xa6/0x120
[ 123.440163] perf_try_init_event+0x140/0x9f0
[ 123.440180] perf_event_alloc.part.0+0x118e/0x45f0
[ 123.440202] __do_sys_perf_event_open+0x719/0x2c20
[ 123.440219] do_syscall_64+0xbf/0x360
[ 123.440231] entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:35:06 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f0000000040)=ANY=[])
mknodat$loop(r0, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
11:35:06 executing program 0:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa40024, &(0x7f0000000040)=ANY=[])
mknodat$loop(r0, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
11:35:06 executing program 6:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000480)="8b68f60e9b3946", 0x7}], 0x1)
11:35:06 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000022c0)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x0, 0xaa, &(0x7f0000000480)=""/170}, &(0x7f0000001240)="05ae46670f9d", 0x0, 0x0, 0x0, 0x0, 0x0})
11:35:06 executing program 3:
sendmsg$IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$PTP_PEROUT_REQUEST(r0, 0xc0603d0f, &(0x7f00000000c0))
11:35:06 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x20901, 0x0)
pwritev2(r0, &(0x7f0000000080)=[{0x0}, {&(0x7f0000000040)="c4", 0xa00}], 0x2e, 0x0, 0x0, 0x0)
11:35:06 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
getsockname$packet(r0, 0x0, &(0x7f0000000980))
11:35:06 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000005880)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
connect$unix(r1, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e)
[ 123.667230] kmemleak: Found object by alias at 0x607f1a63eb7c
[ 123.667252] CPU: 0 UID: 0 PID: 3934 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 123.667273] Tainted: [W]=WARN
[ 123.667277] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 123.667285] Call Trace:
[ 123.667289]
[ 123.667294] dump_stack_lvl+0xca/0x120
[ 123.667322] __lookup_object+0x94/0xb0
[ 123.667340] delete_object_full+0x27/0x70
[ 123.667358] free_percpu+0x30/0x1160
[ 123.667376] ? arch_uprobe_clear_state+0x16/0x140
[ 123.667398] futex_hash_free+0x38/0xc0
[ 123.667414] mmput+0x2d3/0x390
[ 123.667434] do_exit+0x79d/0x2970
[ 123.667450] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 123.667465] ? zap_other_threads+0x2b9/0x3a0
[ 123.667483] ? __pfx_do_exit+0x10/0x10
[ 123.667497] ? do_group_exit+0x1c3/0x2a0
[ 123.667514] ? _raw_spin_unlock_irq+0x23/0x40
[ 123.667533] do_group_exit+0xd3/0x2a0
[ 123.667550] __x64_sys_exit_group+0x3e/0x50
[ 123.667565] x64_sys_call+0x18c5/0x18d0
[ 123.667583] do_syscall_64+0xbf/0x360
[ 123.667597] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.667609] RIP: 0033:0x7fc7f5842b19
[ 123.667619] Code: Unable to access opcode bytes at 0x7fc7f5842aef.
[ 123.667624] RSP: 002b:00007ffd5a23f9f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 123.667637] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fc7f5842b19
[ 123.667646] RDX: 00007fc7f57f572b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 123.667654] RBP: 0000000000000000 R08: 0000001b2d1241f0 R09: 0000000000000000
[ 123.667661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 123.667669] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd5a23fae0
[ 123.667685]
[ 123.667689] kmemleak: Object (percpu) 0x607f1a63eb78 (size 8):
[ 123.667697] kmemleak: comm "syz-executor.4", pid 3943, jiffies 4294790531
[ 123.667705] kmemleak: min_count = 1
[ 123.667709] kmemleak: count = 0
[ 123.667713] kmemleak: flags = 0x21
[ 123.667721] kmemleak: checksum = 0
[ 123.667725] kmemleak: backtrace:
[ 123.667729] pcpu_alloc_noprof+0x87a/0x1170
[ 123.667746] perf_trace_event_init+0x366/0xa10
[ 123.667768] perf_trace_init+0x1a4/0x2f0
[ 123.667781] perf_tp_event_init+0xa6/0x120
[ 123.667799] perf_try_init_event+0x140/0x9f0
[ 123.667814] perf_event_alloc.part.0+0x118e/0x45f0
[ 123.667832] __do_sys_perf_event_open+0x719/0x2c20
[ 123.667846] do_syscall_64+0xbf/0x360
[ 123.667856] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.668946] ------------[ cut here ]------------
[ 123.689362] WARNING: fs/namespace.c:1434 at mntput_no_expire+0x78e/0xbe0, CPU#1: syz-executor.2/280
[ 123.690071] Modules linked in:
[ 123.690391] CPU: 1 UID: 0 PID: 280 Comm: syz-executor.2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 123.692816] Tainted: [W]=WARN
[ 123.693715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 123.695516] RIP: 0010:mntput_no_expire+0x78e/0xbe0
[ 123.695935] Code: 05 d6 30 81 04 01 e8 71 df 91 ff e9 41 fc ff ff e8 27 47 b4 ff 31 ff 44 89 ee e8 4d 42 b4 ff 45 85 ed 79 09 e8 13 47 b4 ff 90 <0f> 0b 90 e8 0a 47 b4 ff e8 b5 2d fc 02 31 ff 89 c5 89 c6 e8 2a 42
[ 123.697276] RSP: 0018:ffff88801606fce0 EFLAGS: 00010293
[ 123.697673] RAX: 0000000000000000 RBX: 1ffff11002c0dfa1 RCX: ffffffff81bfaf93
[ 123.698214] RDX: ffff888018a6d280 RSI: ffffffff81bfaf9d RDI: 0000000000000005
[ 123.698756] RBP: ffff88801f925340 R08: 0000000000000001 R09: 0000000000000000
[ 123.699281] R10: 00000000ffffffff R11: 0000000000000001 R12: ffff88801606fd48
[ 123.699827] R13: 00000000ffffffff R14: ffff88801f925340 R15: ffff88801f925428
[ 123.700354] FS: 0000555579214400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 123.700960] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 123.701391] CR2: 000055558ef4ec58 CR3: 000000003f1b8000 CR4: 0000000000350ef0
[ 123.701931] Call Trace:
[ 123.702151]
[ 123.702347] ? __pfx_mntput_no_expire+0x10/0x10
[ 123.702781] ? dput.part.0+0xce/0x930
[ 123.703135] ? lock_release+0xc8/0x290
[ 123.703510] path_umount+0x6e0/0x1100
[ 123.703893] ? kmem_cache_free+0x2a1/0x540
[ 123.704280] ? __pfx_path_umount+0x10/0x10
[ 123.704667] ? putname.part.0+0x11b/0x160
[ 123.705134] __x64_sys_umount+0x15c/0x190
[ 123.705515] ? __pfx___x64_sys_umount+0x10/0x10
[ 123.705971] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 123.706451] do_syscall_64+0xbf/0x360
[ 123.706832] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.707301] RIP: 0033:0x7f2df1606f87
[ 123.707646] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 123.709295] RSP: 002b:00007ffcd11bd0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 123.710014] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f2df1606f87
[ 123.710654] RDX: 00007ffcd11bd199 RSI: 000000000000000a RDI: 00007ffcd11bd190
[ 123.711324] RBP: 00007ffcd11bd190 R08: 00000000ffffffff R09: 00007ffcd11bcf60
[ 123.711991] R10: 0000555579215c7b R11: 0000000000000246 R12: 00007f2df165f105
[ 123.712629] R13: 00007ffcd11be250 R14: 0000555579215c20 R15: 00007ffcd11be290
[ 123.713301]
[ 123.713520] irq event stamp: 148969
[ 123.713871] hardirqs last enabled at (148979): [] __up_console_sem+0x78/0x80
[ 123.714648] hardirqs last disabled at (148986): [] __up_console_sem+0x5d/0x80
[ 123.715456] softirqs last enabled at (148834): [] handle_softirqs+0x50c/0x770
[ 123.716275] softirqs last disabled at (148827): [] __irq_exit_rcu+0xc4/0x100
[ 123.717073] ---[ end trace 0000000000000000 ]---
[ 123.721270] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 123.721818] I/O error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 5 prio class 2
11:35:06 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000005880)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
connect$unix(r1, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e)
11:35:06 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = epoll_create(0x2b)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100))
r2 = epoll_create(0x6)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x20000011})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
epoll_create(0x2b)
11:35:06 executing program 6:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000005880)={0x7b804100, 0x0, &(0x7f0000000280), 0x0, {0x1e}, 0x0, 0x0, &(0x7f0000000240)=""/10, 0x0}, 0x58)
11:35:06 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0xc, 0x0, 0x0)
11:35:06 executing program 0:
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000))
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2284, 0x0)
11:35:06 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000022c0)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x0, 0xaa, &(0x7f0000000480)=""/170}, &(0x7f0000001240)="05ae46670f9d", 0x0, 0x0, 0x0, 0x0, 0x0})
11:35:06 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
fdatasync(r0)
11:35:06 executing program 4:
syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=ANY=[])
r0 = inotify_init()
r1 = inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0xd400080b)
inotify_rm_watch(r0, r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mkdirat(r2, &(0x7f00000000c0)='./file0\x00', 0x0)
[ 123.808144] capability: warning: `syz-executor.0' uses deprecated v2 capabilities in a way that may be insecure
[ 123.824592] audit: type=1400 audit(1756726506.546:10): avc: denied { block_suspend } for pid=3948 comm="syz-executor.3" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[ 123.836517] kmemleak: Found object by alias at 0x607f1a63eb7c
[ 123.836534] CPU: 1 UID: 0 PID: 3947 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 123.836553] Tainted: [W]=WARN
[ 123.836557] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 123.836564] Call Trace:
[ 123.836569]
[ 123.836573] dump_stack_lvl+0xca/0x120
[ 123.836600] __lookup_object+0x94/0xb0
[ 123.836622] delete_object_full+0x27/0x70
[ 123.836639] free_percpu+0x30/0x1160
[ 123.836656] ? arch_uprobe_clear_state+0x16/0x140
[ 123.836676] futex_hash_free+0x38/0xc0
[ 123.836691] mmput+0x2d3/0x390
[ 123.836710] do_exit+0x79d/0x2970
[ 123.836724] ? lock_release+0xc8/0x290
[ 123.836741] ? __pfx_do_exit+0x10/0x10
[ 123.836755] ? find_held_lock+0x2b/0x80
[ 123.836772] ? get_signal+0x835/0x2340
[ 123.836793] do_group_exit+0xd3/0x2a0
[ 123.836808] get_signal+0x2315/0x2340
[ 123.836827] ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[ 123.836846] ? __pfx_get_signal+0x10/0x10
[ 123.836862] ? do_futex+0x135/0x370
[ 123.836876] ? __pfx_do_futex+0x10/0x10
[ 123.836888] ? ip_setsockopt+0x71/0x110
[ 123.836906] arch_do_signal_or_restart+0x80/0x790
[ 123.836924] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 123.836941] ? __x64_sys_futex+0x1c9/0x4d0
[ 123.836953] ? __x64_sys_futex+0x1d2/0x4d0
[ 123.836968] ? __pfx___x64_sys_futex+0x10/0x10
[ 123.836982] ? __sys_setsockopt+0x13f/0x1a0
[ 123.837004] exit_to_user_mode_loop+0x8b/0x110
[ 123.837017] do_syscall_64+0x2f7/0x360
[ 123.837030] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.837042] RIP: 0033:0x7fc7f5842b19
[ 123.837051] Code: Unable to access opcode bytes at 0x7fc7f5842aef.
[ 123.837057] RSP: 002b:00007fc7f2db8218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 123.837068] RAX: fffffffffffffe00 RBX: 00007fc7f5955f68 RCX: 00007fc7f5842b19
[ 123.837076] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc7f5955f68
[ 123.837083] RBP: 00007fc7f5955f60 R08: 0000000000000000 R09: 0000000000000000
[ 123.837090] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc7f5955f6c
[ 123.837097] R13: 00007ffd5a23f7cf R14: 00007fc7f2db8300 R15: 0000000000022000
[ 123.837112]
[ 123.837116] kmemleak: Object (percpu) 0x607f1a63eb78 (size 8):
[ 123.837123] kmemleak: comm "syz-executor.6", pid 3951, jiffies 4294790715
[ 123.837130] kmemleak: min_count = 1
[ 123.837134] kmemleak: count = 0
[ 123.837137] kmemleak: flags = 0x21
[ 123.837141] kmemleak: checksum = 0
[ 123.837145] kmemleak: backtrace:
[ 123.837148] pcpu_alloc_noprof+0x87a/0x1170
[ 123.837164] alloc_vfsmnt+0x135/0x6e0
[ 123.837178] vfs_create_mount.part.0+0x40/0x440
[ 123.837193] fc_mount_longterm+0x126/0x160
[ 123.837208] mq_init_ns+0x42e/0x630
[ 123.837218] copy_ipcs+0x38d/0x630
[ 123.837227] create_new_namespaces+0x210/0xab0
[ 123.837244] copy_namespaces+0x45c/0x580
[ 123.837259] copy_process+0x2649/0x73c0
[ 123.837270] kernel_clone+0xea/0x7f0
[ 123.837280] __do_sys_clone3+0x1f5/0x280
[ 123.837290] do_syscall_64+0xbf/0x360
[ 123.837300] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.862841] audit: type=1400 audit(1756726506.559:11): avc: denied { watch_reads } for pid=3956 comm="syz-executor.4" path="/syzkaller-testdir179904257/syzkaller.1cN8Mk/4/file0" dev="tmpfs" ino=1 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=dir permissive=1
[ 123.863074] kmemleak: Cannot insert 0x607f1a63eb7c into the object search tree (overlaps existing)
[ 123.863094] CPU: 0 UID: 0 PID: 3951 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 123.863112] Tainted: [W]=WARN
11:35:06 executing program 0:
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000))
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2284, 0x0)
[ 123.863116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 123.863124] Call Trace:
[ 123.863128]
[ 123.863134] dump_stack_lvl+0xca/0x120
[ 123.863160] __link_object+0x190/0x210
[ 123.863179] __create_object+0x48/0x80
[ 123.863197] pcpu_alloc_noprof+0x87a/0x1170
[ 123.863223] __percpu_counter_init_many+0x44/0x360
[ 123.863241] ? __pfx_xfrm6_net_init+0x10/0x10
[ 123.863260] xfrm6_net_init+0x4e/0x1a0
[ 123.863278] ? __pfx_xfrm6_net_init+0x10/0x10
[ 123.863296] ops_init+0x1e1/0x650
[ 123.863311] setup_net+0x10d/0x320
[ 123.863321] ? lockdep_init_map_type+0x4b/0x240
[ 123.863337] ? __pfx_setup_net+0x10/0x10
[ 123.863349] ? debug_mutex_init+0x37/0x70
[ 123.863369] copy_net_ns+0x2e3/0x650
[ 123.863383] create_new_namespaces+0x3f6/0xab0
[ 123.863406] copy_namespaces+0x45c/0x580
[ 123.863424] copy_process+0x2649/0x73c0
[ 123.863438] ? lock_release+0xc8/0x290
[ 123.863458] ? __pfx_copy_process+0x10/0x10
[ 123.863471] ? __might_fault+0xe0/0x190
[ 123.863488] ? _copy_from_user+0x5b/0xd0
[ 123.863506] kernel_clone+0xea/0x7f0
[ 123.863520] ? __pfx_kernel_clone+0x10/0x10
[ 123.863537] ? __pfx_futex_wake+0x10/0x10
[ 123.863558] __do_sys_clone3+0x1f5/0x280
[ 123.863570] ? __pfx___do_sys_clone3+0x10/0x10
[ 123.863591] ? find_held_lock+0x2b/0x80
[ 123.863609] ? __x64_sys_futex+0x1c9/0x4d0
[ 123.863622] ? __x64_sys_futex+0x1d2/0x4d0
[ 123.863637] ? __pfx___x64_sys_futex+0x10/0x10
[ 123.863651] ? xfd_validate_state+0x55/0x180
[ 123.863674] do_syscall_64+0xbf/0x360
[ 123.863688] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.863700] RIP: 0033:0x7f13c9e8ab19
[ 123.863710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 123.863726] RSP: 002b:00007f13c7400188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 123.863738] RAX: ffffffffffffffda RBX: 00007f13c9f9df60 RCX: 00007f13c9e8ab19
[ 123.863746] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020005880
[ 123.863752] RBP: 00007f13c9ee4f6d R08: 0000000000000000 R09: 0000000000000000
[ 123.863759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 123.863776] R13: 00007ffc7334698f R14: 00007f13c7400300 R15: 0000000000022000
[ 123.863792]
[ 123.864235] kmemleak: Kernel memory leak detector disabled
[ 123.864240] kmemleak: Object (percpu) 0x607f1a63eb78 (size 8):
[ 123.864247] kmemleak: comm "syz-executor.6", pid 3951, jiffies 4294790715
[ 123.864254] kmemleak: min_count = 1
[ 123.864258] kmemleak: count = 0
[ 123.864262] kmemleak: flags = 0x21
[ 123.864265] kmemleak: checksum = 0
[ 123.864269] kmemleak: backtrace:
[ 123.864272] pcpu_alloc_noprof+0x87a/0x1170
[ 123.864288] alloc_vfsmnt+0x135/0x6e0
[ 123.864304] vfs_create_mount.part.0+0x40/0x440
[ 123.864319] fc_mount_longterm+0x126/0x160
[ 123.864334] mq_init_ns+0x42e/0x630
[ 123.864344] copy_ipcs+0x38d/0x630
[ 123.864354] create_new_namespaces+0x210/0xab0
[ 123.864369] copy_namespaces+0x45c/0x580
[ 123.864385] copy_process+0x2649/0x73c0
[ 123.864395] kernel_clone+0xea/0x7f0
[ 123.864405] __do_sys_clone3+0x1f5/0x280
[ 123.864415] do_syscall_64+0xbf/0x360
[ 123.864424] entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:35:06 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
rseq(0x0, 0x0, 0x0, 0x0)
11:35:06 executing program 5:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x300489830ddf23be, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='maps\x00')
lseek(r1, 0xd20e, 0x0)
11:35:06 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000005880)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
connect$unix(r1, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e)
[ 123.943315] kmemleak: Found object by alias at 0x607f1a63eb7c
[ 123.943333] CPU: 1 UID: 0 PID: 3970 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 123.943351] Tainted: [W]=WARN
[ 123.943355] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 123.943363] Call Trace:
[ 123.943367]
[ 123.943372] dump_stack_lvl+0xca/0x120
[ 123.943398] __lookup_object+0x94/0xb0
[ 123.943415] delete_object_full+0x27/0x70
[ 123.943432] free_percpu+0x30/0x1160
[ 123.943449] ? arch_uprobe_clear_state+0x16/0x140
[ 123.943470] futex_hash_free+0x38/0xc0
[ 123.943485] mmput+0x2d3/0x390
[ 123.943504] do_exit+0x79d/0x2970
[ 123.943520] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 123.943535] ? __pfx_do_exit+0x10/0x10
[ 123.943549] ? find_held_lock+0x2b/0x80
[ 123.943567] ? get_signal+0x835/0x2340
[ 123.943587] do_group_exit+0xd3/0x2a0
[ 123.943603] get_signal+0x2315/0x2340
[ 123.943621] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 123.943637] ? __pfx_get_signal+0x10/0x10
[ 123.943653] ? __schedule+0xe91/0x3590
[ 123.943675] arch_do_signal_or_restart+0x80/0x790
11:35:06 executing program 0:
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000))
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2284, 0x0)
[ 123.943693] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 123.943710] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 123.943728] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 123.943739] ? __x64_sys_openat+0x142/0x200
[ 123.943757] ? __pfx___x64_sys_futex+0x10/0x10
[ 123.943783] exit_to_user_mode_loop+0x8b/0x110
[ 123.943796] do_syscall_64+0x2f7/0x360
[ 123.943809] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.943821] RIP: 0033:0x7fc7f5842b19
[ 123.943831] Code: Unable to access opcode bytes at 0x7fc7f5842aef.
[ 123.943836] RSP: 002b:00007fc7f2d97218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 123.943847] RAX: 0000000000000001 RBX: 00007fc7f5956028 RCX: 00007fc7f5842b19
[ 123.943855] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc7f595602c
[ 123.943862] RBP: 00007fc7f5956020 R08: 000000000000000e R09: 0000000000000000
[ 123.943869] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fc7f595602c
[ 123.943876] R13: 00007ffd5a23f7cf R14: 00007fc7f2d97300 R15: 0000000000022000
[ 123.943892]
[ 123.943896] kmemleak: Object (percpu) 0x607f1a63eb78 (size 8):
[ 123.943902] kmemleak: comm "syz-executor.6", pid 3951, jiffies 4294790715
[ 123.943910] kmemleak: min_count = 1
[ 123.943913] kmemleak: count = 0
[ 123.943917] kmemleak: flags = 0x21
[ 123.943921] kmemleak: checksum = 0
[ 123.943924] kmemleak: backtrace:
[ 123.943928] pcpu_alloc_noprof+0x87a/0x1170
[ 123.943944] alloc_vfsmnt+0x135/0x6e0
[ 123.943958] vfs_create_mount.part.0+0x40/0x440
[ 123.943973] fc_mount_longterm+0x126/0x160
[ 123.943988] mq_init_ns+0x42e/0x630
[ 123.943998] copy_ipcs+0x38d/0x630
[ 123.944008] create_new_namespaces+0x210/0xab0
[ 123.944025] copy_namespaces+0x45c/0x580
[ 123.944040] copy_process+0x2649/0x73c0
[ 123.944051] kernel_clone+0xea/0x7f0
[ 123.944061] __do_sys_clone3+0x1f5/0x280
[ 123.944071] do_syscall_64+0xbf/0x360
[ 123.944081] entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:35:06 executing program 5:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x300489830ddf23be, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='maps\x00')
lseek(r1, 0xd20e, 0x0)
11:35:06 executing program 7:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = timerfd_create(0x0, 0x0)
timerfd_gettime(r0, &(0x7f0000000040))
[ 124.002235] kmemleak: Found object by alias at 0x607f1a63eb7c
[ 124.002255] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.002274] Tainted: [W]=WARN
[ 124.002278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.002286] Workqueue: events bpf_prog_free_deferred
[ 124.002308] Call Trace:
[ 124.002313]
[ 124.002317] dump_stack_lvl+0xca/0x120
[ 124.002349] __lookup_object+0x94/0xb0
[ 124.002368] delete_object_full+0x27/0x70
[ 124.002385] free_percpu+0x30/0x1160
[ 124.002406] __bpf_prog_free+0x12f/0x190
[ 124.002417] bpf_prog_free_deferred+0x2e5/0x420
[ 124.002433] process_one_work+0x8e1/0x19c0
[ 124.002455] ? __pfx_process_one_work+0x10/0x10
[ 124.002470] ? move_linked_works+0x172/0x270
[ 124.002492] ? assign_work+0x196/0x240
[ 124.002507] worker_thread+0x67e/0xe90
[ 124.002523] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 124.002541] ? __pfx_worker_thread+0x10/0x10
[ 124.002556] kthread+0x3c8/0x740
[ 124.002570] ? __pfx_kthread+0x10/0x10
[ 124.002582] ? ret_from_fork+0x23/0x430
[ 124.002601] ? lock_release+0xc8/0x290
[ 124.002617] ? __pfx_kthread+0x10/0x10
[ 124.002630] ret_from_fork+0x34b/0x430
[ 124.002648] ? __pfx_kthread+0x10/0x10
[ 124.002660] ret_from_fork_asm+0x1a/0x30
[ 124.002685]
[ 124.002689] kmemleak: Object (percpu) 0x607f1a63eb78 (size 8):
[ 124.002696] kmemleak: comm "syz-executor.6", pid 3951, jiffies 4294790715
[ 124.002705] kmemleak: min_count = 1
[ 124.002709] kmemleak: count = 0
[ 124.002712] kmemleak: flags = 0x21
[ 124.002720] kmemleak: checksum = 0
[ 124.002724] kmemleak: backtrace:
[ 124.002728] pcpu_alloc_noprof+0x87a/0x1170
[ 124.002744] alloc_vfsmnt+0x135/0x6e0
[ 124.002759] vfs_create_mount.part.0+0x40/0x440
[ 124.002774] fc_mount_longterm+0x126/0x160
[ 124.002789] mq_init_ns+0x42e/0x630
[ 124.002800] copy_ipcs+0x38d/0x630
[ 124.002809] create_new_namespaces+0x210/0xab0
[ 124.002826] copy_namespaces+0x45c/0x580
[ 124.002841] copy_process+0x2649/0x73c0
[ 124.002853] kernel_clone+0xea/0x7f0
[ 124.002863] __do_sys_clone3+0x1f5/0x280
[ 124.002874] do_syscall_64+0xbf/0x360
[ 124.002884] entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:35:06 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
rseq(0x0, 0x0, 0x0, 0x0)
11:35:06 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000005880)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
connect$unix(r1, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e)
[ 124.063921] kmemleak: Found object by alias at 0x607f1a63eb7c
[ 124.063939] CPU: 1 UID: 0 PID: 3979 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.063958] Tainted: [W]=WARN
[ 124.063961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.063969] Call Trace:
[ 124.063973]
[ 124.063978] dump_stack_lvl+0xca/0x120
[ 124.064004] __lookup_object+0x94/0xb0
[ 124.064023] delete_object_full+0x27/0x70
[ 124.064039] free_percpu+0x30/0x1160
[ 124.064058] ? arch_uprobe_clear_state+0x16/0x140
[ 124.064078] futex_hash_free+0x38/0xc0
[ 124.064093] mmput+0x2d3/0x390
[ 124.064112] do_exit+0x79d/0x2970
[ 124.064126] ? signal_wake_up_state+0x85/0x120
[ 124.064146] ? zap_other_threads+0x2b9/0x3a0
[ 124.064162] ? __pfx_do_exit+0x10/0x10
[ 124.064175] ? do_group_exit+0x1c3/0x2a0
[ 124.064189] ? lock_release+0xc8/0x290
[ 124.064206] do_group_exit+0xd3/0x2a0
[ 124.064222] __x64_sys_exit_group+0x3e/0x50
[ 124.064236] x64_sys_call+0x18c5/0x18d0
[ 124.064251] do_syscall_64+0xbf/0x360
[ 124.064265] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.064276] RIP: 0033:0x7fc7f5842b19
[ 124.064285] Code: Unable to access opcode bytes at 0x7fc7f5842aef.
[ 124.064290] RSP: 002b:00007ffd5a23f9f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 124.064302] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fc7f5842b19
[ 124.064310] RDX: 00007fc7f57f572b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 124.064317] RBP: 0000000000000000 R08: 0000001b2d126a50 R09: 0000000000000000
[ 124.064324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 124.064331] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd5a23fae0
[ 124.064346]
[ 124.064350] kmemleak: Object (percpu) 0x607f1a63eb78 (size 8):
[ 124.064357] kmemleak: comm "syz-executor.6", pid 3951, jiffies 4294790715
[ 124.064364] kmemleak: min_count = 1
[ 124.064368] kmemleak: count = 0
[ 124.064372] kmemleak: flags = 0x21
[ 124.064375] kmemleak: checksum = 0
[ 124.064379] kmemleak: backtrace:
[ 124.064383] pcpu_alloc_noprof+0x87a/0x1170
[ 124.064399] alloc_vfsmnt+0x135/0x6e0
[ 124.064413] vfs_create_mount.part.0+0x40/0x440
[ 124.064428] fc_mount_longterm+0x126/0x160
[ 124.064443] mq_init_ns+0x42e/0x630
[ 124.064454] copy_ipcs+0x38d/0x630
[ 124.064463] create_new_namespaces+0x210/0xab0
[ 124.064480] copy_namespaces+0x45c/0x580
[ 124.064495] copy_process+0x2649/0x73c0
[ 124.064506] kernel_clone+0xea/0x7f0
[ 124.064516] __do_sys_clone3+0x1f5/0x280
[ 124.064526] do_syscall_64+0xbf/0x360
[ 124.064536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:35:06 executing program 6:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000005880)={0x7b804100, 0x0, &(0x7f0000000280), 0x0, {0x1e}, 0x0, 0x0, &(0x7f0000000240)=""/10, 0x0}, 0x58)
11:35:06 executing program 0:
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000))
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2284, 0x0)
11:35:06 executing program 7:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = timerfd_create(0x0, 0x0)
timerfd_gettime(r0, &(0x7f0000000040))
11:35:06 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
rseq(0x0, 0x0, 0x0, 0x0)
11:35:06 executing program 6:
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000005880)={0x7b804100, 0x0, &(0x7f0000000280), 0x0, {0x1e}, 0x0, 0x0, &(0x7f0000000240)=""/10, 0x0}, 0x58)
11:35:06 executing program 5:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x300489830ddf23be, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='maps\x00')
lseek(r1, 0xd20e, 0x0)
11:35:06 executing program 1:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000240008000f80100", 0x18}], 0x0, &(0x7f0000010d00))
11:35:06 executing program 7:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = timerfd_create(0x0, 0x0)
timerfd_gettime(r0, &(0x7f0000000040))
11:35:06 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0x6628, 0x0)
11:35:06 executing program 2:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = epoll_create(0x2b)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100))
r2 = epoll_create(0x6)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x20000011})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
epoll_create(0x2b)
11:35:06 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = epoll_create(0x2b)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100))
r2 = epoll_create(0x6)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x20000011})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
epoll_create(0x2b)
[ 124.211088] I/O error, dev loop1, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 124.212065] FAT-fs (loop1): Directory bread(block 3) failed
[ 124.212757] I/O error, dev loop1, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 124.215604] FAT-fs (loop1): Directory bread(block 4) failed
[ 124.217037] I/O error, dev loop1, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 124.217941] FAT-fs (loop1): Directory bread(block 5) failed
[ 124.218746] I/O error, dev loop1, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
11:35:06 executing program 7:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = timerfd_create(0x0, 0x0)
timerfd_gettime(r0, &(0x7f0000000040))
[ 124.220267] FAT-fs (loop1): Directory bread(block 6) failed
[ 124.230598] I/O error, dev loop1, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 124.231396] FAT-fs (loop1): Directory bread(block 3) failed
[ 124.232566] FAT-fs (loop1): Directory bread(block 4) failed
[ 124.234457] FAT-fs (loop1): Directory bread(block 5) failed
11:35:06 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
rseq(0x0, 0x0, 0x0, 0x0)
[ 124.237686] FAT-fs (loop1): Directory bread(block 6) failed
11:35:06 executing program 5:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x300489830ddf23be, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='maps\x00')
lseek(r1, 0xd20e, 0x0)
11:35:06 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0x6628, 0x0)
11:35:06 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = epoll_create(0x2b)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100))
r2 = epoll_create(0x6)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x20000011})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
epoll_create(0x2b)
11:35:07 executing program 2:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = epoll_create(0x2b)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100))
r2 = epoll_create(0x6)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x20000011})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
epoll_create(0x2b)
11:35:07 executing program 1:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000240008000f80100", 0x18}], 0x0, &(0x7f0000010d00))
11:35:07 executing program 7:
timer_create(0x0, &(0x7f0000001a80)={0x0, 0x29, 0x0, @thr={0x0, 0x0}}, &(0x7f0000001ac0))
11:35:07 executing program 4:
syslog(0x2, &(0x7f0000000000), 0x0)
[ 124.310524] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 124.311406] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 124.311977] CPU: 1 UID: 0 PID: 4023 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.312864] Tainted: [W]=WARN
[ 124.313102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.313717] RIP: 0010:perf_tp_event+0x175/0xe70
[ 124.314080] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 124.315412] RSP: 0018:ffff88801790f780 EFLAGS: 00010012
[ 124.315819] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90008628000
[ 124.316342] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 124.316866] RBP: ffff88801790f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16b78
[ 124.317390] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 124.317914] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 124.318440] FS: 00007f3113a15700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 124.319032] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 124.319460] CR2: 00007f31165b3018 CR3: 000000000c2bb000 CR4: 0000000000350ef0
[ 124.319993] Call Trace:
[ 124.320189]
[ 124.320362] ? __is_insn_slot_addr+0x140/0x290
[ 124.320716] ? __pfx_perf_tp_event+0x10/0x10
[ 124.321051] ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150
[ 124.321509] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10
[ 124.321982] ? lock_is_held_type+0x9e/0x120
[ 124.322312] ? lock_is_held_type+0x9e/0x120
[ 124.322642] ? ctx_sched_in+0x134/0x9b0
[ 124.322940] ? kasan_save_stack+0x10/0x50
[ 124.323255] ? __pfx_ctx_sched_in+0x10/0x10
[ 124.323575] ? init_file+0x95/0x4c0
[ 124.323865] ? find_held_lock+0x2b/0x80
[ 124.324176] ? perf_trace_run_bpf_submit+0xef/0x180
[ 124.324552] ? lock_release+0xc8/0x290
[ 124.324875] perf_trace_run_bpf_submit+0xef/0x180
[ 124.325272] perf_trace_preemptirq_template+0x259/0x430
[ 124.325697] ? mark_held_locks+0x49/0x80
[ 124.326023] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 124.326493] ? _raw_spin_lock_irqsave+0x53/0x60
[ 124.326870] trace_irq_disable.constprop.0+0xa6/0x100
[ 124.327281] _raw_spin_lock_irqsave+0x53/0x60
[ 124.327645] try_to_wake_up+0xa0/0x11d0
[ 124.327980] ? __pfx_try_to_wake_up+0x10/0x10
[ 124.328345] ? plist_del+0x122/0x270
[ 124.328649] ? find_held_lock+0x2b/0x80
[ 124.328973] ? futex_wake+0x474/0x540
[ 124.329282] wake_up_q+0xa1/0x130
[ 124.329572] futex_wake+0x47e/0x540
[ 124.329869] ? __pfx_futex_wake+0x10/0x10
[ 124.330206] ? __do_sys_perf_event_open+0x44d/0x2c20
[ 124.330611] ? lock_release+0xc8/0x290
[ 124.330928] do_futex+0x26d/0x370
[ 124.331211] ? __pfx_do_futex+0x10/0x10
[ 124.331529] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 124.331961] ? find_held_lock+0x2b/0x80
[ 124.332284] __x64_sys_futex+0x1c9/0x4d0
[ 124.332610] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 124.333073] ? __pfx___x64_sys_futex+0x10/0x10
[ 124.333468] do_syscall_64+0xbf/0x360
[ 124.333777] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.334200] RIP: 0033:0x7f311649fb19
[ 124.334501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 124.335953] RSP: 002b:00007f3113a15218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 124.336558] RAX: ffffffffffffffda RBX: 00007f31165b2f68 RCX: 00007f311649fb19
[ 124.337123] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f31165b2f6c
[ 124.337686] RBP: 00007f31165b2f60 R08: 000000000000000e R09: 0000000000000000
[ 124.338250] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f31165b2f6c
[ 124.338815] R13: 00007ffd90e19fdf R14: 00007f3113a15300 R15: 0000000000022000
[ 124.339384]
[ 124.339576] Modules linked in:
[ 124.339844] ---[ end trace 0000000000000000 ]---
[ 124.340218] RIP: 0010:perf_tp_event+0x175/0xe70
[ 124.340591] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 124.342023] RSP: 0018:ffff88801790f780 EFLAGS: 00010012
[ 124.342447] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90008628000
[ 124.343012] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 124.343577] RBP: ffff88801790f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16b78
[ 124.344152] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 124.344721] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 124.345296] FS: 00007f3113a15700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 124.345930] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 124.346391] CR2: 00007f31165b3018 CR3: 000000000c2bb000 CR4: 0000000000350ef0
[ 124.346963] note: syz-executor.3[4023] exited with irqs disabled
[ 124.347526] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 124.348409] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 124.349011] CPU: 1 UID: 0 PID: 4023 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.349959] Tainted: [D]=DIE, [W]=WARN
[ 124.350265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.350915] RIP: 0010:perf_tp_event+0x175/0xe70
[ 124.351296] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 124.352715] RSP: 0018:ffff88806cf08ac0 EFLAGS: 00010012
[ 124.353125] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 124.353689] RDX: ffff888016590000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 124.354254] RBP: ffff88806cf08d30 R08: ffff88806cf313e8 R09: ffffe8ffffd16b78
[ 124.354815] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 124.355376] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 124.355946] FS: 00007f3113a15700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 124.356581] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 124.357043] CR2: 00007f31165b3018 CR3: 000000000c2bb000 CR4: 0000000000350ef0
[ 124.357606] Call Trace:
[ 124.357804]
[ 124.357974] ? __pfx_perf_tp_event+0x10/0x10
[ 124.358315] ? trace_pelt_se_tp+0xdf/0x130
[ 124.358632] ? __update_load_avg_se+0x428/0xa40
[ 124.358991] ? __cgroup_account_cputime+0x30/0xc0
[ 124.359363] ? update_load_avg+0x17d/0x1ef0
[ 124.359686] ? update_cfs_group+0x11d/0x260
[ 124.360017] ? kvm_sched_clock_read+0x16/0x30
[ 124.360360] ? enqueue_task_fair+0xded/0x1e00
[ 124.360700] ? check_preempt_wakeup_fair+0x6e/0x950
[ 124.361074] ? wakeup_preempt+0x140/0x2a0
[ 124.361386] ? lock_release+0x1c7/0x290
[ 124.361687] ? lock_release+0x1c7/0x290
[ 124.361988] ? perf_trace_run_bpf_submit+0xef/0x180
[ 124.362369] perf_trace_run_bpf_submit+0xef/0x180
[ 124.362737] perf_trace_preemptirq_template+0x259/0x430
[ 124.363132] ? lock_release+0x1c7/0x290
[ 124.363432] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 124.363873] ? lock_acquire+0x18c/0x2f0
[ 124.364175] ? irqentry_enter+0x2a/0x60
[ 124.364488] trace_irq_disable.constprop.0+0xa6/0x100
[ 124.364871] irqentry_enter+0x2a/0x60
[ 124.365163] sysvec_call_function_single+0x18/0xc0
[ 124.365533] asm_sysvec_call_function_single+0x1a/0x20
[ 124.365923] RIP: 0010:handle_softirqs+0x174/0x770
[ 124.366291] Code: c8 83 83 3c 0a 00 00 01 c7 44 24 20 0a 00 00 00 48 89 44 24 18 65 66 c7 05 0f d4 48 06 00 00 e8 72 8f 40 00 fb bb ff ff ff ff <48> c7 c5 c0 c0 a0 85 41 0f bc de 83 c3 01 0f 85 9b 00 00 00 e9 8d
[ 124.367619] RSP: 0018:ffff88806cf08f78 EFLAGS: 00000246
[ 124.368021] RAX: 0000000000000001 RBX: 00000000ffffffff RCX: ffffffff817c3ab6
[ 124.368544] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813bac2e
[ 124.369067] RBP: ffff88801790fe78 R08: 0000000000000000 R09: 0000000000000000
[ 124.369589] R10: ffffffff8643b457 R11: ffff88802032a898 R12: 0000000000000000
[ 124.370111] R13: 0000000000000000 R14: 0000000000000282 R15: 0000000000000000
[ 124.370635] ? trace_irq_enable.constprop.0+0x26/0x100
[ 124.371029] ? handle_softirqs+0x16e/0x770
[ 124.371353] ? handle_softirqs+0x16e/0x770
[ 124.371679] __irq_exit_rcu+0xc4/0x100
[ 124.371987] irq_exit_rcu+0x9/0x20
[ 124.372256] sysvec_apic_timer_interrupt+0x70/0x80
[ 124.372627]
[ 124.372798]
[ 124.372970] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 124.373365] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 124.373720] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[ 124.375041] RSP: 0018:ffff88801790ff28 EFLAGS: 00000246
[ 124.375434] RAX: 0000000000000001 RBX: ffff888016590000 RCX: ffffffff817c3ab6
[ 124.375961] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 124.376482] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 124.377003] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff888016590000
[ 124.377525] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[ 124.378049] ? trace_irq_enable.constprop.0+0x26/0x100
[ 124.378445] ? make_task_dead+0x214/0x3b0
[ 124.378759] ? make_task_dead+0x214/0x3b0
[ 124.379071] ? do_syscall_64+0xbf/0x360
[ 124.379409] rewind_stack_and_make_dead+0x16/0x20
[ 124.379783] RIP: 0033:0x7f311649fb19
[ 124.380063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 124.381387] RSP: 002b:00007f3113a15218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 124.381944] RAX: ffffffffffffffda RBX: 00007f31165b2f68 RCX: 00007f311649fb19
[ 124.382468] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f31165b2f6c
[ 124.382991] RBP: 00007f31165b2f60 R08: 000000000000000e R09: 0000000000000000
[ 124.383512] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f31165b2f6c
[ 124.384041] R13: 00007ffd90e19fdf R14: 00007f3113a15300 R15: 0000000000022000
[ 124.384567]
[ 124.384746] Modules linked in:
[ 124.384990] ---[ end trace 0000000000000000 ]---
[ 124.385336] RIP: 0010:perf_tp_event+0x175/0xe70
[ 124.385693] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 124.387015] RSP: 0018:ffff88801790f780 EFLAGS: 00010012
[ 124.387408] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90008628000
[ 124.387936] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 124.388457] RBP: ffff88801790f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16b78
[ 124.388979] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 124.389499] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 124.390022] FS: 00007f3113a15700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 124.390610] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 124.391039] CR2: 00007f31165b3018 CR3: 000000000c2bb000 CR4: 0000000000350ef0
[ 124.391563] Kernel panic - not syncing: Fatal exception in interrupt
[ 124.392230] Kernel Offset: disabled
[ 124.392503] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
11:35:06 Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=0000000000000100 RCX=ffffffff81b98698 RDX=ffff88801613d280
RSI=ffffffff81b98663 RDI=0000000000000001 RBP=ffff88801660fa98 RSP=ffff88801660fa08
R8 =0000000000000001 R9 =ffffffff81b97d93 R10=0000000000000001 R11=0000000000000001
R12=ffff88801660fc74 R13=00000000000007bf R14=ffff88801660fc38 R15=0000000000000001
RIP=ffffffff81b98665 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f1eb274f8c0 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe6300000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2cf27000 CR3=000000000c19a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f
XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=34706f6f6c2f6b636f6c622f6c617574
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=0000557517ed4cf00000557517e73240
XMM06=0000557517ecb8900000000000000000 XMM07=00000000000000000000000000000000
XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff828e5070 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88801606f600
R8 =0000000000000000 R9 =ffffed1001668046 R10=00000000000fe503 R11=0000000000000001
R12=0000000000000823 R13=0000000000000020 R14=fffffbfff10e52a2 R15=dffffc0000000000
RIP=ffffffff828e50c5 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555579214400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe4000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000055558ef4ec58 CR3=000000003f1b8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000