Warning: Permanently added '[localhost]:1503' (ECDSA) to the list of known hosts. 2022/11/01 10:51:10 fuzzer started 2022/11/01 10:51:10 dialing manager at localhost:42881 syzkaller login: [ 36.270974] cgroup: Unknown subsys name 'net' [ 36.383668] cgroup: Unknown subsys name 'rlimit' 2022/11/01 10:51:23 syscalls: 2217 2022/11/01 10:51:23 code coverage: enabled 2022/11/01 10:51:23 comparison tracing: enabled 2022/11/01 10:51:23 extra coverage: enabled 2022/11/01 10:51:23 setuid sandbox: enabled 2022/11/01 10:51:23 namespace sandbox: enabled 2022/11/01 10:51:23 Android sandbox: enabled 2022/11/01 10:51:23 fault injection: enabled 2022/11/01 10:51:23 leak checking: enabled 2022/11/01 10:51:23 net packet injection: enabled 2022/11/01 10:51:23 net device setup: enabled 2022/11/01 10:51:23 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/11/01 10:51:23 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/11/01 10:51:23 USB emulation: enabled 2022/11/01 10:51:23 hci packet injection: enabled 2022/11/01 10:51:23 wifi device emulation: enabled 2022/11/01 10:51:23 802.15.4 emulation: enabled 2022/11/01 10:51:23 fetching corpus: 0, signal 0/2000 (executing program) 2022/11/01 10:51:23 fetching corpus: 50, signal 30768/33828 (executing program) 2022/11/01 10:51:23 fetching corpus: 100, signal 44140/48136 (executing program) 2022/11/01 10:51:24 fetching corpus: 150, signal 53882/58591 (executing program) 2022/11/01 10:51:24 fetching corpus: 200, signal 62582/67849 (executing program) 2022/11/01 10:51:24 fetching corpus: 250, signal 69518/75169 (executing program) 2022/11/01 10:51:24 fetching corpus: 300, signal 78638/84285 (executing program) 2022/11/01 10:51:24 fetching corpus: 350, signal 83178/89087 (executing program) 2022/11/01 10:51:25 fetching corpus: 400, signal 87373/93469 (executing program) 2022/11/01 10:51:25 fetching corpus: 450, signal 91647/97730 (executing program) 2022/11/01 10:51:25 fetching corpus: 500, signal 95307/101348 (executing program) 2022/11/01 10:51:25 fetching corpus: 550, signal 98739/104731 (executing program) 2022/11/01 10:51:25 fetching corpus: 600, signal 101873/107797 (executing program) 2022/11/01 10:51:26 fetching corpus: 650, signal 104868/110621 (executing program) 2022/11/01 10:51:26 fetching corpus: 700, signal 107385/112960 (executing program) 2022/11/01 10:51:26 fetching corpus: 750, signal 112398/117132 (executing program) 2022/11/01 10:51:26 fetching corpus: 800, signal 114972/119358 (executing program) 2022/11/01 10:51:26 fetching corpus: 850, signal 118502/122190 (executing program) 2022/11/01 10:51:27 fetching corpus: 900, signal 121493/124604 (executing program) 2022/11/01 10:51:27 fetching corpus: 950, signal 123707/126325 (executing program) 2022/11/01 10:51:27 fetching corpus: 1000, signal 126430/128283 (executing program) 2022/11/01 10:51:27 fetching corpus: 1050, signal 128423/129683 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/130770 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/130798 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/130826 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/130854 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/130891 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/130919 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/130952 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/130985 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131010 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131039 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131070 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131093 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131119 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131147 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131174 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131207 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131229 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131259 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131279 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131314 (executing program) 2022/11/01 10:51:27 fetching corpus: 1094, signal 130074/131344 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131376 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131407 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131441 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131466 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131488 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131522 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131552 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131585 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131619 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131649 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131673 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131712 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131746 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131776 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131798 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131819 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131841 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131875 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131894 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131917 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131941 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131967 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131992 (executing program) 2022/11/01 10:51:28 fetching corpus: 1094, signal 130074/131992 (executing program) 2022/11/01 10:51:30 starting 8 fuzzer processes 10:51:30 executing program 0: timer_create(0x2, 0x0, &(0x7f00000001c0)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x77359400}, {0x77359400}}, 0x0) timer_settime(0x0, 0x0, &(0x7f00000005c0)={{0x0, 0x3938700}, {0x77359400}}, 0x0) timer_delete(0x0) 10:51:30 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) 10:51:30 executing program 2: syz_mount_image$vfat(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0xfe2c, 0x0, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000000)='./file1\x00', 0x0) rename(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000180)='./file1\x00') 10:51:30 executing program 3: shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x2000) shmat(r0, &(0x7f0000fef000/0x3000)=nil, 0x6000) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000) mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) 10:51:31 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000480), 0x0, 0x0) ioctl$EVIOCSFF(r0, 0x40304580, 0x0) 10:51:31 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='syscall\x00') read$usbmon(r0, &(0x7f0000000000)=""/182, 0xb6) [ 56.673751] audit: type=1400 audit(1667299891.037:6): avc: denied { execmem } for pid=289 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:51:31 executing program 6: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000080)={0x0, 0x1, 0x6}, 0x10) 10:51:31 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/locks\x00', 0x300, 0x0) socket$unix(0x1, 0x2, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 58.045311] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 58.046961] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 58.048650] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 58.050551] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 58.051395] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 58.053601] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 58.054608] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 58.056440] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 58.057815] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 58.108135] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 58.112423] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 58.114652] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 58.115895] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 58.117097] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 58.118467] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 58.119838] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 58.121963] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 58.123027] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 58.124109] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 58.125095] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 58.126086] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 58.127028] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 58.128557] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 58.130040] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 58.132067] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 58.133743] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 58.135683] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 58.136596] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 58.137896] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 58.138773] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 58.139977] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 58.140849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 58.144480] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 58.147165] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 58.150280] Bluetooth: hci2: HCI_REQ-0x0c1a [ 58.151842] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 58.152771] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 58.153093] Bluetooth: hci0: HCI_REQ-0x0c1a [ 58.153592] Bluetooth: hci1: HCI_REQ-0x0c1a [ 58.155289] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 58.156644] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 58.162704] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 58.163973] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 58.164830] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 58.176929] Bluetooth: hci4: HCI_REQ-0x0c1a [ 58.177027] Bluetooth: hci3: HCI_REQ-0x0c1a [ 58.181666] Bluetooth: hci5: HCI_REQ-0x0c1a [ 58.195523] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 58.208658] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 58.212813] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 58.220668] Bluetooth: hci6: HCI_REQ-0x0c1a [ 58.255603] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 58.265547] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 58.291932] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 58.297640] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 58.361328] Bluetooth: hci7: HCI_REQ-0x0c1a [ 60.172716] Bluetooth: hci0: command 0x0409 tx timeout [ 60.172736] Bluetooth: hci2: command 0x0409 tx timeout [ 60.235518] Bluetooth: hci6: command 0x0409 tx timeout [ 60.235543] Bluetooth: hci3: command 0x0409 tx timeout [ 60.236392] Bluetooth: hci1: command 0x0409 tx timeout [ 60.237052] Bluetooth: hci5: command 0x0409 tx timeout [ 60.237906] Bluetooth: hci4: command 0x0409 tx timeout [ 60.428387] Bluetooth: hci7: command 0x0409 tx timeout [ 62.219969] Bluetooth: hci0: command 0x041b tx timeout [ 62.219987] Bluetooth: hci2: command 0x041b tx timeout [ 62.283332] Bluetooth: hci5: command 0x041b tx timeout [ 62.284386] Bluetooth: hci4: command 0x041b tx timeout [ 62.284406] Bluetooth: hci1: command 0x041b tx timeout [ 62.284734] Bluetooth: hci3: command 0x041b tx timeout [ 62.285081] Bluetooth: hci6: command 0x041b tx timeout [ 62.475374] Bluetooth: hci7: command 0x041b tx timeout [ 64.267433] Bluetooth: hci0: command 0x040f tx timeout [ 64.268332] Bluetooth: hci2: command 0x040f tx timeout [ 64.331847] Bluetooth: hci3: command 0x040f tx timeout [ 64.331874] Bluetooth: hci1: command 0x040f tx timeout [ 64.331907] Bluetooth: hci4: command 0x040f tx timeout [ 64.332637] Bluetooth: hci5: command 0x040f tx timeout [ 64.333029] Bluetooth: hci6: command 0x040f tx timeout [ 64.524327] Bluetooth: hci7: command 0x040f tx timeout [ 66.315398] Bluetooth: hci2: command 0x0419 tx timeout [ 66.315975] Bluetooth: hci0: command 0x0419 tx timeout [ 66.379372] Bluetooth: hci6: command 0x0419 tx timeout [ 66.379888] Bluetooth: hci4: command 0x0419 tx timeout [ 66.380384] Bluetooth: hci1: command 0x0419 tx timeout [ 66.380837] Bluetooth: hci5: command 0x0419 tx timeout [ 66.381299] Bluetooth: hci3: command 0x0419 tx timeout [ 66.571301] Bluetooth: hci7: command 0x0419 tx timeout [ 112.037047] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.038201] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.041417] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 112.187458] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.188046] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.189422] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 113.452013] audit: type=1400 audit(1667299947.815:7): avc: denied { open } for pid=3745 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 113.453465] audit: type=1400 audit(1667299947.815:8): avc: denied { kernel } for pid=3745 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 113.544263] hrtimer: interrupt took 19607 ns [ 113.855712] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.856377] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.857892] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 114.016651] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.017343] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.018907] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 114.043656] BUG: unable to handle page fault for address: ffffed100fffc000 [ 114.044217] #PF: supervisor write access in kernel mode [ 114.044582] #PF: error_code(0x0002) - not-present page [ 114.044929] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0 [ 114.048842] Oops: 0002 [#1] PREEMPT SMP KASAN NOPTI [ 114.049200] CPU: 1 PID: 3746 Comm: syz-executor.3 Not tainted 6.1.0-rc3-next-20221101 #1 [ 114.049764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 114.050556] RIP: 0010:__memset+0x24/0x50 [ 114.050982] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 0d d4 12 00 66 66 2e 0f 1f 84 00 [ 114.052709] RSP: 0018:ffff888015247cc0 EFLAGS: 00010212 [ 114.053224] RAX: 0000000000000000 RBX: ffff88800bf880c0 RCX: 1ffffe21fe5fd257 [ 114.053896] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000 [ 114.054575] RBP: ffff88800bfa1500 R08: 0000000000000005 R09: ffffed10017f1018 [ 114.055261] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800bfa1500 [ 114.055945] R13: ffff88800bf880c0 R14: ffffffff815f2620 R15: 1ffff11001126e1f [ 114.056641] FS: 00007f92dbe8c700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000 [ 114.057429] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.057980] CR2: ffffed100fffc000 CR3: 000000001e2a2000 CR4: 0000000000350ee0 [ 114.058668] Call Trace: [ 114.058936] [ 114.059163] kasan_unpoison+0x23/0x60 [ 114.059546] mempool_exit+0x1c2/0x330 [ 114.059933] bioset_exit+0x2c9/0x630 [ 114.060326] disk_release+0x143/0x490 [ 114.060721] ? disk_release+0x0/0x490 [ 114.061015] ? device_release+0x0/0x250 [ 114.061307] device_release+0xa2/0x250 [ 114.061590] ? device_release+0x0/0x250 [ 114.061876] kobject_put+0x173/0x280 [ 114.062147] put_device+0x1b/0x40 [ 114.062399] put_disk+0x41/0x60 [ 114.062643] loop_control_ioctl+0x4d1/0x630 [ 114.062956] ? loop_control_ioctl+0x0/0x630 [ 114.063268] ? selinux_file_ioctl+0xb1/0x270 [ 114.063594] ? loop_control_ioctl+0x0/0x630 [ 114.063901] __x64_sys_ioctl+0x19a/0x220 [ 114.064198] do_syscall_64+0x3b/0xa0 [ 114.064482] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 114.064845] RIP: 0033:0x7f92de916b19 [ 114.065110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.066366] RSP: 002b:00007f92dbe8c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 114.066883] RAX: ffffffffffffffda RBX: 00007f92dea29f60 RCX: 00007f92de916b19 [ 114.067376] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000005 [ 114.067872] RBP: 00007f92de970f6d R08: 0000000000000000 R09: 0000000000000000 [ 114.068376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 114.068869] R13: 00007ffde7eff7ff R14: 00007f92dbe8c300 R15: 0000000000022000 [ 114.069378] [ 114.069546] Modules linked in: [ 114.069778] CR2: ffffed100fffc000 [ 114.070028] ---[ end trace 0000000000000000 ]--- [ 114.070358] RIP: 0010:__memset+0x24/0x50 [ 114.070665] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 0d d4 12 00 66 66 2e 0f 1f 84 00 [ 114.071908] RSP: 0018:ffff888015247cc0 EFLAGS: 00010212 [ 114.072277] RAX: 0000000000000000 RBX: ffff88800bf880c0 RCX: 1ffffe21fe5fd257 [ 114.072781] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000 [ 114.073274] RBP: ffff88800bfa1500 R08: 0000000000000005 R09: ffffed10017f1018 [ 114.073765] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800bfa1500 [ 114.074254] R13: ffff88800bf880c0 R14: ffffffff815f2620 R15: 1ffff11001126e1f [ 114.074741] FS: 00007f92dbe8c700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000 [ 114.075298] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.075695] CR2: ffffed100fffc000 CR3: 000000001e2a2000 CR4: 0000000000350ee0 [ 114.452082] BUG: unable to handle page fault for address: ffffed100fffc000 [ 114.452615] #PF: supervisor write access in kernel mode [ 114.452959] #PF: error_code(0x0002) - not-present page [ 114.453299] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0 [ 114.453738] Oops: 0002 [#2] PREEMPT SMP KASAN NOPTI [ 114.454070] CPU: 0 PID: 3805 Comm: syz-executor.3 Tainted: G D 6.1.0-rc3-next-20221101 #1 [ 114.454679] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 114.455213] RIP: 0010:__memset+0x24/0x50 [ 114.455501] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 0d d4 12 00 66 66 2e 0f 1f 84 00 [ 114.456685] RSP: 0018:ffff88803c12fcc0 EFLAGS: 00010212 [ 114.457036] RAX: 0000000000000000 RBX: ffff88800bf88240 RCX: 1ffffe21fe5fd25d [ 114.457501] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000 [ 114.457960] RBP: ffff88800bfa1500 R08: 0000000000000005 R09: ffffed10017f1048 [ 114.458421] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800bfa1500 [ 114.458889] R13: ffff88800bf88240 R14: ffffffff815f2620 R15: 1ffff11001126a1f [ 114.459351] FS: 00007f92dbe08700(0000) GS:ffff88806d000000(0000) knlGS:0000000000000000 [ 114.459873] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.460255] CR2: ffffed100fffc000 CR3: 000000001e2a2000 CR4: 0000000000350ef0 [ 114.460748] Call Trace: [ 114.460924] [ 114.461078] kasan_unpoison+0x23/0x60 [ 114.461342] mempool_exit+0x1c2/0x330 [ 114.461606] bioset_exit+0x2c9/0x630 [ 114.461863] ? _raw_spin_unlock+0x24/0x50 [ 114.462145] ? blkg_destroy_all.isra.0+0x157/0x230 [ 114.462490] disk_release+0x143/0x490 [ 114.462749] ? disk_release+0x0/0x490 [ 114.463011] ? device_release+0x0/0x250 [ 114.463282] device_release+0xa2/0x250 [ 114.463546] ? device_release+0x0/0x250 [ 114.463813] kobject_put+0x173/0x280 [ 114.464065] put_device+0x1b/0x40 [ 114.464309] put_disk+0x41/0x60 [ 114.464538] loop_control_ioctl+0x4d1/0x630 [ 114.464831] ? loop_control_ioctl+0x0/0x630 [ 114.465122] ? selinux_file_ioctl+0xb1/0x270 [ 114.465429] ? loop_control_ioctl+0x0/0x630 [ 114.465719] __x64_sys_ioctl+0x19a/0x220 [ 114.465999] do_syscall_64+0x3b/0xa0 [ 114.466255] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 114.466596] RIP: 0033:0x7f92de916b19 [ 114.466845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.468017] RSP: 002b:00007f92dbe08188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 114.468525] RAX: ffffffffffffffda RBX: 00007f92dea2a260 RCX: 00007f92de916b19 [ 114.468969] RDX: 0000000000000001 RSI: 0000000000004c81 RDI: 0000000000000005 [ 114.469416] RBP: 00007f92de970f6d R08: 0000000000000000 R09: 0000000000000000 [ 114.469865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 114.470314] R13: 00007ffde7eff7ff R14: 00007f92dbe08300 R15: 0000000000022000 [ 114.470782] [ 114.470940] Modules linked in: [ 114.471160] CR2: ffffed100fffc000 [ 114.471393] ---[ end trace 0000000000000000 ]--- [ 114.471698] RIP: 0010:__memset+0x24/0x50 [ 114.471981] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 0d d4 12 00 66 66 2e 0f 1f 84 00 [ 114.473159] RSP: 0018:ffff888015247cc0 EFLAGS: 00010212 [ 114.473505] RAX: 0000000000000000 RBX: ffff88800bf880c0 RCX: 1ffffe21fe5fd257 [ 114.473969] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000 [ 114.474439] RBP: ffff88800bfa1500 R08: 0000000000000005 R09: ffffed10017f1018 [ 114.474905] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800bfa1500 [ 114.475373] R13: ffff88800bf880c0 R14: ffffffff815f2620 R15: 1ffff11001126e1f [ 114.475839] FS: 00007f92dbe08700(0000) GS:ffff88806d000000(0000) knlGS:0000000000000000 [ 114.476368] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.476747] CR2: ffffed100fffc000 CR3: 000000001e2a2000 CR4: 0000000000350ef0 [ 114.596606] ieee80211 phy6: Selected rate control algorithm 'minstrel_ht' [ 114.669950] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.670598] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.671167] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 114.690070] ieee80211 phy7: Selected rate control algorithm 'minstrel_ht' [ 114.753101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.753614] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.754214] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 114.881504] ieee80211 phy8: Selected rate control algorithm 'minstrel_ht' 10:52:29 executing program 3: shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x2000) shmat(r0, &(0x7f0000fef000/0x3000)=nil, 0x6000) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000) mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) 10:52:29 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) [ 115.050736] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.051284] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.051924] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 115.069709] ieee80211 phy9: Selected rate control algorithm 'minstrel_ht' 10:52:29 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) [ 115.147331] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.147828] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.148597] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:52:29 executing program 3: shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x2000) shmat(r0, &(0x7f0000fef000/0x3000)=nil, 0x6000) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000) mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) 10:52:29 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) 10:52:29 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) 10:52:29 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) [ 115.672902] ieee80211 phy10: Selected rate control algorithm 'minstrel_ht' 10:52:30 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0) [ 115.754329] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.755224] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.756482] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 115.768346] ieee80211 phy11: Selected rate control algorithm 'minstrel_ht' [ 115.829896] ieee80211 phy12: Selected rate control algorithm 'minstrel_ht' [ 115.893126] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.893934] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.894586] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 115.931938] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.932465] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.933058] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 115.948953] ieee80211 phy13: Selected rate control algorithm 'minstrel_ht' [ 116.022232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.023574] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.024850] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 116.311816] ieee80211 phy14: Selected rate control algorithm 'minstrel_ht' [ 116.387490] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.388010] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.389535] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 116.401982] ieee80211 phy15: Selected rate control algorithm 'minstrel_ht' [ 116.499727] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.500535] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.501199] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 120.971341] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 121.099340] Bluetooth: hci7: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 10:52:28 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=ffffffff81375f60 RCX=0000000000000001 RDX=1ffff11007839eec RSI=ffffffff81828834 RDI=ffff88803c1cf7d0 RBP=ffff88803c1cf7a0 RSP=ffff88803c1cf700 R8 =ffffffff85cdd09e R9 =ffffffff85cdd0a2 R10=ffffed1007839eee R11=ffff88803c1cf748 R12=ffff88803c1cf7d0 R13=0000000000000000 R14=ffff888015151ac0 R15=ffff8880136ebab0 RIP=ffffffff81375f6a RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806d000000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe4561b38000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe4561b36000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055d2f48f2040 CR3=000000000db0a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00524f52524500400000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff82451491 RDI=ffffffff879a19e0 RBP=ffffffff879a19a0 RSP=ffff8880152474e0 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff879a19a0 R14=0000000000000010 R15=ffffffff82451480 RIP=ffffffff824514e9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f92dbe8c700 00000000 00000000 GS =0000 ffff88806d100000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe2bd47f3000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe2bd47f1000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=ffffed100fffc000 CR3=000000001e2a2000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=322e6f732e6c6462696c2f756e672d78 XMM02=00322e6f732e6c6462696c2f756e672d XMM03=78756e696c2d34365f3638782f62696c XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000