syzkaller login: [ 91.941249][ T10] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:1248' (ED25519) to the list of known hosts.
2025/11/13 11:39:27 parsed 1 programs
[ 113.338610][ T5327] cgroup: Unknown subsys name 'net'
[ 113.425732][ T5327] cgroup: Unknown subsys name 'cpuset'
[ 113.431008][ T5327] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 114.992543][ T5327] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 118.726982][ T5335] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 119.830248][ T184] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.833591][ T184] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.866382][ T3070] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.869596][ T3070] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.017073][ T5362] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 120.020727][ T5362] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 120.025355][ T46] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 120.028700][ T46] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 120.032870][ T46] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 121.281502][ T5381] chnl_net:caif_netlink_parms(): no params data found
[ 121.354626][ T5381] bridge0: port 1(bridge_slave_0) entered blocking state
[ 121.358561][ T5381] bridge0: port 1(bridge_slave_0) entered disabled state
[ 121.362630][ T5381] bridge_slave_0: entered allmulticast mode
[ 121.366789][ T5381] bridge_slave_0: entered promiscuous mode
[ 121.373077][ T5381] bridge0: port 2(bridge_slave_1) entered blocking state
[ 121.376302][ T5381] bridge0: port 2(bridge_slave_1) entered disabled state
[ 121.379315][ T5381] bridge_slave_1: entered allmulticast mode
[ 121.383283][ T5381] bridge_slave_1: entered promiscuous mode
[ 121.406164][ T5381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 121.412684][ T5381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 121.434900][ T5381] team0: Port device team_slave_0 added
[ 121.439737][ T5381] team0: Port device team_slave_1 added
[ 121.460943][ T5381] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 121.464473][ T5381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 121.475983][ T5381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 121.483852][ T5381] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 121.486737][ T5381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 121.497330][ T5381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 121.530579][ T5381] hsr_slave_0: entered promiscuous mode
[ 121.534696][ T5381] hsr_slave_1: entered promiscuous mode
[ 121.712988][ T5381] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 121.721972][ T5381] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 121.729692][ T5381] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 121.736358][ T5381] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 121.768214][ T5381] bridge0: port 2(bridge_slave_1) entered blocking state
[ 121.771595][ T5381] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 121.775338][ T5381] bridge0: port 1(bridge_slave_0) entered blocking state
[ 121.778447][ T5381] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 121.836092][ T5381] 8021q: adding VLAN 0 to HW filter on device bond0
[ 121.849639][ T184] bridge0: port 1(bridge_slave_0) entered disabled state
[ 121.856189][ T184] bridge0: port 2(bridge_slave_1) entered disabled state
[ 121.866262][ T5381] 8021q: adding VLAN 0 to HW filter on device team0
[ 121.876643][ T184] bridge0: port 1(bridge_slave_0) entered blocking state
[ 121.879525][ T184] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 121.895197][ T184] bridge0: port 2(bridge_slave_1) entered blocking state
[ 121.898343][ T184] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 122.070964][ T5381] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 122.110271][ T5381] veth0_vlan: entered promiscuous mode
[ 122.118795][ T5381] veth1_vlan: entered promiscuous mode
[ 122.144289][ T5381] veth0_macvtap: entered promiscuous mode
[ 122.149846][ T5381] veth1_macvtap: entered promiscuous mode
[ 122.166772][ T5381] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 122.175690][ T5381] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 122.184001][ T3070] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.188167][ T3070] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.191574][ T3070] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.206452][ T3070] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.348188][ T1047] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 122.411272][ T1047] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 122.474026][ T1047] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 122.577194][ T1047] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/11/13 11:39:40 executed programs: 0
[ 124.667917][ T4671] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 124.671877][ T4671] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 124.678498][ T4671] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 124.682389][ T4671] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 124.685743][ T4671] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 124.816041][ T1047] bridge_slave_1: left allmulticast mode
[ 124.818735][ T1047] bridge_slave_1: left promiscuous mode
[ 124.822351][ T1047] bridge0: port 2(bridge_slave_1) entered disabled state
[ 124.843770][ T1047] bridge_slave_0: left allmulticast mode
[ 124.846227][ T1047] bridge_slave_0: left promiscuous mode
[ 124.849511][ T1047] bridge0: port 1(bridge_slave_0) entered disabled state
[ 125.268811][ T1047] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 125.275171][ T1047] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 125.279985][ T1047] bond0 (unregistering): Released all slaves
[ 125.403551][ T1047] hsr_slave_0: left promiscuous mode
[ 125.418402][ T1047] hsr_slave_1: left promiscuous mode
[ 125.421393][ T1047] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 125.432289][ T1047] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 125.443155][ T1047] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 125.446355][ T1047] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 125.476889][ T1047] veth1_macvtap: left promiscuous mode
[ 125.479634][ T1047] veth0_macvtap: left promiscuous mode
[ 125.493370][ T1047] veth1_vlan: left promiscuous mode
[ 125.495810][ T1047] veth0_vlan: left promiscuous mode
[ 125.855628][ T1047] team0 (unregistering): Port device team_slave_1 removed
[ 125.873938][ T1047] team0 (unregistering): Port device team_slave_0 removed
[ 126.363747][ T5437] chnl_net:caif_netlink_parms(): no params data found
[ 126.520061][ T5437] bridge0: port 1(bridge_slave_0) entered blocking state
[ 126.528710][ T5437] bridge0: port 1(bridge_slave_0) entered disabled state
[ 126.531571][ T5437] bridge_slave_0: entered allmulticast mode
[ 126.544953][ T5437] bridge_slave_0: entered promiscuous mode
[ 126.734484][ T4671] Bluetooth: hci0: command tx timeout
[ 126.776189][ T5437] bridge0: port 2(bridge_slave_1) entered blocking state
[ 126.779227][ T5437] bridge0: port 2(bridge_slave_1) entered disabled state
[ 126.784800][ T5437] bridge_slave_1: entered allmulticast mode
[ 126.788721][ T5437] bridge_slave_1: entered promiscuous mode
[ 126.861085][ T5437] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 126.904678][ T5437] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 127.054372][ T5437] team0: Port device team_slave_0 added
[ 127.076163][ T5437] team0: Port device team_slave_1 added
[ 127.142810][ T5437] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 127.145784][ T5437] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 127.172808][ T5437] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 127.204527][ T5437] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 127.207635][ T5437] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 127.252514][ T5437] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 127.360833][ T5437] hsr_slave_0: entered promiscuous mode
[ 127.376668][ T5437] hsr_slave_1: entered promiscuous mode
[ 127.894076][ T5437] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 127.913424][ T5437] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 127.919782][ T5437] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 127.938586][ T5437] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 128.070090][ T5437] 8021q: adding VLAN 0 to HW filter on device bond0
[ 128.100680][ T5437] 8021q: adding VLAN 0 to HW filter on device team0
[ 128.118802][ T1050] bridge0: port 1(bridge_slave_0) entered blocking state
[ 128.121845][ T1050] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 128.154179][ T1047] bridge0: port 2(bridge_slave_1) entered blocking state
[ 128.157265][ T1047] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 128.471494][ T5437] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 128.555241][ T5437] veth0_vlan: entered promiscuous mode
[ 128.575630][ T5437] veth1_vlan: entered promiscuous mode
[ 128.623487][ T5437] veth0_macvtap: entered promiscuous mode
[ 128.637162][ T5437] veth1_macvtap: entered promiscuous mode
[ 128.667568][ T5437] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 128.686521][ T5437] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 128.717340][ T184] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.729202][ T184] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.744368][ T184] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.748002][ T184] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.812931][ T4671] Bluetooth: hci0: command tx timeout
[ 128.844521][ T31] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.848182][ T31] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 128.905975][ T184] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.910271][ T184] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.017623][ T5499] loop0: detected capacity change from 0 to 16
[ 129.253210][ T5499] erofs (device loop0): mounted with root inode @ nid 36.
[ 129.261982][ T5499] ------------[ cut here ]------------
[ 129.264665][ T5499] WARNING: CPU: 0 PID: 5499 at fs/dax.c:224 get_next_unlocked_entry+0x329/0x340
[ 129.268498][ T5499] Modules linked in:
[ 129.270426][ T5499] CPU: 0 UID: 0 PID: 5499 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 129.276682][ T5499] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 129.282594][ T5499] RIP: 0010:get_next_unlocked_entry+0x329/0x340
[ 129.285691][ T5499] Code: 45 1d 10 48 3b 84 24 c0 00 00 00 75 22 4c 89 e8 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 3e 8a f9 08 cc e8 08 59 6e ff 90 <0f> 0b 90 eb a0 e8 6d a6 f6 08 66 66 66 66 2e 0f 1f 84 00 00 00 00
[ 129.293944][ T5499] RSP: 0018:ffffc90002afe8a0 EFLAGS: 00010093
[ 129.296459][ T5499] RAX: ffffffff8251ba68 RBX: 1ffff9200055fd9c RCX: ffff888000fbc900
[ 129.299782][ T5499] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 129.303303][ T5499] RBP: ffffc90002afe9b0 R08: ffffc90002afe937 R09: 0000000000000000
[ 129.306972][ T5499] R10: ffffc90002afe900 R11: fffff5200055fd27 R12: ffffc90002afe918
[ 129.310604][ T5499] R13: ffffea000130c700 R14: ffffc90002afe900 R15: dffffc0000000000
[ 129.314107][ T5499] FS: 0000555586b99500(0000) GS:ffff88808d730000(0000) knlGS:0000000000000000
[ 129.318494][ T5499] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 129.322316][ T5499] CR2: 0000000000000000 CR3: 0000000059b5f000 CR4: 0000000000352ef0
[ 129.326656][ T5499] Call Trace:
[ 129.328620][ T5499]
[ 129.330322][ T5499] ? __pfx_get_next_unlocked_entry+0x10/0x10
[ 129.333785][ T5499] ? __pfx_wake_exceptional_entry_func+0x10/0x10
[ 129.337305][ T5499] ? __lock_acquire+0xab9/0xd20
[ 129.339886][ T5499] grab_mapping_entry+0x176/0x660
[ 129.342171][ T5499] ? __pfx_grab_mapping_entry+0x10/0x10
[ 129.344376][ T5499] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 129.346944][ T5499] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.349134][ T5499] dax_iomap_fault+0x8ab/0x18d0
[ 129.351214][ T5499] ? stack_depot_save_flags+0x41b/0x860
[ 129.353577][ T5499] ? __pfx_dax_iomap_fault+0x10/0x10
[ 129.355770][ T5499] ? kasan_save_track+0x4f/0x80
[ 129.357871][ T5499] ? kasan_save_track+0x3e/0x80
[ 129.360001][ T5499] ? __kasan_slab_alloc+0x6c/0x80
[ 129.362133][ T5499] ? kmem_cache_alloc_noprof+0x367/0x6e0
[ 129.364501][ T5499] ? ptlock_alloc+0x20/0x70
[ 129.366446][ T5499] ? pte_alloc_one+0x7a/0x310
[ 129.368601][ T5499] ? __do_fault+0xd1/0x390
[ 129.370537][ T5499] ? __handle_mm_fault+0x1719/0x5400
[ 129.372837][ T5499] ? handle_mm_fault+0x40a/0x8e0
[ 129.375065][ T5499] ? __get_user_pages+0x165c/0x2a00
[ 129.377206][ T5499] ? get_user_pages_remote+0x2f1/0xac0
[ 129.379529][ T5499] ? uprobe_write+0x1b6/0x2160
[ 129.381626][ T5499] ? uprobe_write_opcode+0xa8/0xf0
[ 129.384046][ T5499] ? set_swbp+0x121/0x290
[ 129.386006][ T5499] ? install_breakpoint+0x451/0x5a0
[ 129.388386][ T5499] ? register_for_each_vma+0xabb/0xc30
[ 129.390731][ T5499] ? uprobe_apply+0xfb/0x270
[ 129.392714][ T5499] ? trace_uprobe_register+0x4df/0x560
[ 129.395089][ T5499] ? perf_trace_event_init+0x19a/0x9d0
[ 129.397522][ T5499] ? perf_uprobe_init+0x12e/0x1a0
[ 129.399801][ T5499] ? perf_uprobe_event_init+0xe6/0x180
[ 129.402205][ T5499] ? perf_try_init_event+0x17f/0x870
[ 129.404390][ T5499] ? perf_event_alloc+0x133e/0x2be0
[ 129.406608][ T5499] ? __se_sys_perf_event_open+0x772/0x1d70
[ 129.409081][ T5499] ? do_syscall_64+0xfa/0xfa0
[ 129.411117][ T5499] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.413760][ T5499] ? __raw_spin_lock_init+0x45/0x100
[ 129.416019][ T5499] ? pte_alloc_one+0x1f9/0x310
[ 129.418098][ T5499] __do_fault+0x138/0x390
[ 129.420028][ T5499] __handle_mm_fault+0x1719/0x5400
[ 129.422288][ T5499] ? __pfx___handle_mm_fault+0x10/0x10
[ 129.424671][ T5499] ? __pfx___might_resched+0x10/0x10
[ 129.426881][ T5499] handle_mm_fault+0x40a/0x8e0
[ 129.429015][ T5499] __get_user_pages+0x165c/0x2a00
[ 129.431030][ T5499] get_user_pages_remote+0x2f1/0xac0
[ 129.433354][ T5499] ? iomap_iter_advance+0x282/0x2f0
[ 129.435657][ T5499] ? __pfx_get_user_pages_remote+0x10/0x10
[ 129.438288][ T5499] ? insn_get_prefixes+0xe6e/0x1ca0
[ 129.440533][ T5499] uprobe_write+0x1b6/0x2160
[ 129.442512][ T5499] ? insn_get_opcode+0xb12/0x11b0
[ 129.444739][ T5499] ? __pfx_verify_opcode+0x10/0x10
[ 129.446940][ T5499] ? __pfx_uprobe_write+0x10/0x10
[ 129.449122][ T5499] ? insn_get_immediate+0x32a/0x1280
[ 129.451354][ T5499] ? insn_get_modrm+0x57/0x7d0
[ 129.453748][ T5499] uprobe_write_opcode+0xa8/0xf0
[ 129.456457][ T5499] ? insn_rip_relative+0xc6/0x130
[ 129.459147][ T5499] ? __pfx_uprobe_write_opcode+0x10/0x10
[ 129.461600][ T5499] ? arch_uprobe_analyze_insn+0xc77/0x1400
[ 129.464195][ T5499] set_swbp+0x121/0x290
[ 129.466051][ T5499] ? __pfx_set_swbp+0x10/0x10
[ 129.467957][ T5499] install_breakpoint+0x451/0x5a0
[ 129.470095][ T5499] register_for_each_vma+0xabb/0xc30
[ 129.472412][ T5499] ? uprobe_apply+0x75/0x270
[ 129.474555][ T5499] uprobe_apply+0xfb/0x270
[ 129.476681][ T5499] trace_uprobe_register+0x4df/0x560
[ 129.479071][ T5499] perf_trace_event_init+0x19a/0x9d0
[ 129.481392][ T5499] perf_uprobe_init+0x12e/0x1a0
[ 129.483580][ T5499] perf_uprobe_event_init+0xe6/0x180
[ 129.485954][ T5499] perf_try_init_event+0x17f/0x870
[ 129.488253][ T5499] ? perf_event_alloc+0xf61/0x2be0
[ 129.490512][ T5499] perf_event_alloc+0x133e/0x2be0
[ 129.492748][ T5499] ? perf_event_alloc+0xf61/0x2be0
[ 129.495040][ T5499] ? __pfx_perf_event_alloc+0x10/0x10
[ 129.497471][ T5499] ? find_lively_task_by_vpid+0x19/0x290
[ 129.499954][ T5499] ? find_lively_task_by_vpid+0x19/0x290
[ 129.502420][ T5499] ? find_lively_task_by_vpid+0x19/0x290
[ 129.504917][ T5499] __se_sys_perf_event_open+0x772/0x1d70
[ 129.507436][ T5499] ? up_write+0x1c4/0x420
[ 129.509347][ T5499] ? __pfx___se_sys_perf_event_open+0x10/0x10
[ 129.512022][ T5499] ? __pfx___se_sys_futex+0x10/0x10
[ 129.513979][ T5499] ? fput+0xa0/0xd0
[ 129.515645][ T5499] ? do_syscall_64+0xbe/0xfa0
[ 129.517444][ T5499] ? __x64_sys_perf_event_open+0x20/0xc0
[ 129.520110][ T5499] do_syscall_64+0xfa/0xfa0
[ 129.522055][ T5499] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.524359][ T5499] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.527125][ T5499] ? clear_bhb_loop+0x60/0xb0
[ 129.529162][ T5499] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.531811][ T5499] RIP: 0033:0x7fb06e98f6c9
[ 129.533774][ T5499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 129.541623][ T5499] RSP: 002b:00007ffe14678ec8 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 129.545146][ T5499] RAX: ffffffffffffffda RBX: 00007fb06ebe5fa0 RCX: 00007fb06e98f6c9
[ 129.548416][ T5499] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000000c0
[ 129.551680][ T5499] RBP: 00007fb06ea11f91 R08: 0000000000000000 R09: 0000000000000000
[ 129.554938][ T5499] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 129.558250][ T5499] R13: 00007fb06ebe5fa0 R14: 00007fb06ebe5fa0 R15: 0000000000000005
[ 129.561517][ T5499]
[ 129.563168][ T5499] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 129.566846][ T5499] CPU: 0 UID: 0 PID: 5499 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 129.570924][ T5499] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 129.575567][ T5499] Call Trace:
[ 129.577018][ T5499]
[ 129.578367][ T5499] dump_stack_lvl+0x99/0x250
[ 129.580403][ T5499] ? __asan_memcpy+0x40/0x70
[ 129.582436][ T5499] ? __pfx_dump_stack_lvl+0x10/0x10
[ 129.584708][ T5499] ? __pfx__printk+0x10/0x10
[ 129.586733][ T5499] vpanic+0x237/0x6d0
[ 129.588541][ T5499] ? __pfx_vpanic+0x10/0x10
[ 129.590468][ T5499] panic+0xb9/0xc0
[ 129.592103][ T5499] ? __pfx_panic+0x10/0x10
[ 129.594076][ T5499] __warn+0x31b/0x4b0
[ 129.595820][ T5499] ? get_next_unlocked_entry+0x329/0x340
[ 129.598155][ T5499] ? get_next_unlocked_entry+0x329/0x340
[ 129.600451][ T5499] report_bug+0x2be/0x4f0
[ 129.602287][ T5499] ? get_next_unlocked_entry+0x329/0x340
[ 129.604699][ T5499] ? get_next_unlocked_entry+0x329/0x340
[ 129.607111][ T5499] ? get_next_unlocked_entry+0x32b/0x340
[ 129.609602][ T5499] handle_bug+0x84/0x160
[ 129.611539][ T5499] exc_invalid_op+0x1a/0x50
[ 129.613548][ T5499] asm_exc_invalid_op+0x1a/0x20
[ 129.615492][ T5499] RIP: 0010:get_next_unlocked_entry+0x329/0x340
[ 129.618306][ T5499] Code: 45 1d 10 48 3b 84 24 c0 00 00 00 75 22 4c 89 e8 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 3e 8a f9 08 cc e8 08 59 6e ff 90 <0f> 0b 90 eb a0 e8 6d a6 f6 08 66 66 66 66 2e 0f 1f 84 00 00 00 00
[ 129.626420][ T5499] RSP: 0018:ffffc90002afe8a0 EFLAGS: 00010093
[ 129.629091][ T5499] RAX: ffffffff8251ba68 RBX: 1ffff9200055fd9c RCX: ffff888000fbc900
[ 129.632467][ T5499] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 129.635971][ T5499] RBP: ffffc90002afe9b0 R08: ffffc90002afe937 R09: 0000000000000000
[ 129.639489][ T5499] R10: ffffc90002afe900 R11: fffff5200055fd27 R12: ffffc90002afe918
[ 129.642901][ T5499] R13: ffffea000130c700 R14: ffffc90002afe900 R15: dffffc0000000000
[ 129.646318][ T5499] ? get_next_unlocked_entry+0x328/0x340
[ 129.648912][ T5499] ? __pfx_get_next_unlocked_entry+0x10/0x10
[ 129.651574][ T5499] ? __pfx_wake_exceptional_entry_func+0x10/0x10
[ 129.654270][ T5499] ? __lock_acquire+0xab9/0xd20
[ 129.656443][ T5499] grab_mapping_entry+0x176/0x660
[ 129.658679][ T5499] ? __pfx_grab_mapping_entry+0x10/0x10
[ 129.661140][ T5499] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 129.663895][ T5499] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.666164][ T5499] dax_iomap_fault+0x8ab/0x18d0
[ 129.668294][ T5499] ? stack_depot_save_flags+0x41b/0x860
[ 129.670736][ T5499] ? __pfx_dax_iomap_fault+0x10/0x10
[ 129.673142][ T5499] ? kasan_save_track+0x4f/0x80
[ 129.675285][ T5499] ? kasan_save_track+0x3e/0x80
[ 129.677602][ T5499] ? __kasan_slab_alloc+0x6c/0x80
[ 129.679867][ T5499] ? kmem_cache_alloc_noprof+0x367/0x6e0
[ 129.682343][ T5499] ? ptlock_alloc+0x20/0x70
[ 129.684344][ T5499] ? pte_alloc_one+0x7a/0x310
[ 129.686413][ T5499] ? __do_fault+0xd1/0x390
[ 129.688529][ T5499] ? __handle_mm_fault+0x1719/0x5400
[ 129.690897][ T5499] ? handle_mm_fault+0x40a/0x8e0
[ 129.693044][ T5499] ? __get_user_pages+0x165c/0x2a00
[ 129.695250][ T5499] ? get_user_pages_remote+0x2f1/0xac0
[ 129.697640][ T5499] ? uprobe_write+0x1b6/0x2160
[ 129.699714][ T5499] ? uprobe_write_opcode+0xa8/0xf0
[ 129.701875][ T5499] ? set_swbp+0x121/0x290
[ 129.703796][ T5499] ? install_breakpoint+0x451/0x5a0
[ 129.706258][ T5499] ? register_for_each_vma+0xabb/0xc30
[ 129.708776][ T5499] ? uprobe_apply+0xfb/0x270
[ 129.710789][ T5499] ? trace_uprobe_register+0x4df/0x560
[ 129.713209][ T5499] ? perf_trace_event_init+0x19a/0x9d0
[ 129.715631][ T5499] ? perf_uprobe_init+0x12e/0x1a0
[ 129.717855][ T5499] ? perf_uprobe_event_init+0xe6/0x180
[ 129.720191][ T5499] ? perf_try_init_event+0x17f/0x870
[ 129.722388][ T5499] ? perf_event_alloc+0x133e/0x2be0
[ 129.724506][ T5499] ? __se_sys_perf_event_open+0x772/0x1d70
[ 129.727077][ T5499] ? do_syscall_64+0xfa/0xfa0
[ 129.729149][ T5499] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.731573][ T5499] ? __raw_spin_lock_init+0x45/0x100
[ 129.733581][ T5499] ? pte_alloc_one+0x1f9/0x310
[ 129.735460][ T5499] __do_fault+0x138/0x390
[ 129.737209][ T5499] __handle_mm_fault+0x1719/0x5400
[ 129.739256][ T5499] ? __pfx___handle_mm_fault+0x10/0x10
[ 129.741540][ T5499] ? __pfx___might_resched+0x10/0x10
[ 129.743835][ T5499] handle_mm_fault+0x40a/0x8e0
[ 129.745827][ T5499] __get_user_pages+0x165c/0x2a00
[ 129.747833][ T5499] get_user_pages_remote+0x2f1/0xac0
[ 129.750097][ T5499] ? iomap_iter_advance+0x282/0x2f0
[ 129.752362][ T5499] ? __pfx_get_user_pages_remote+0x10/0x10
[ 129.754727][ T5499] ? insn_get_prefixes+0xe6e/0x1ca0
[ 129.756941][ T5499] uprobe_write+0x1b6/0x2160
[ 129.758891][ T5499] ? insn_get_opcode+0xb12/0x11b0
[ 129.761103][ T5499] ? __pfx_verify_opcode+0x10/0x10
[ 129.763385][ T5499] ? __pfx_uprobe_write+0x10/0x10
[ 129.765592][ T5499] ? insn_get_immediate+0x32a/0x1280
[ 129.768033][ T5499] ? insn_get_modrm+0x57/0x7d0
[ 129.770113][ T5499] uprobe_write_opcode+0xa8/0xf0
[ 129.772305][ T5499] ? insn_rip_relative+0xc6/0x130
[ 129.774546][ T5499] ? __pfx_uprobe_write_opcode+0x10/0x10
[ 129.777042][ T5499] ? arch_uprobe_analyze_insn+0xc77/0x1400
[ 129.779557][ T5499] set_swbp+0x121/0x290
[ 129.781331][ T5499] ? __pfx_set_swbp+0x10/0x10
[ 129.783162][ T5499] install_breakpoint+0x451/0x5a0
[ 129.785457][ T5499] register_for_each_vma+0xabb/0xc30
[ 129.787837][ T5499] ? uprobe_apply+0x75/0x270
[ 129.789772][ T5499] uprobe_apply+0xfb/0x270
[ 129.791796][ T5499] trace_uprobe_register+0x4df/0x560
[ 129.794107][ T5499] perf_trace_event_init+0x19a/0x9d0
[ 129.796427][ T5499] perf_uprobe_init+0x12e/0x1a0
[ 129.798585][ T5499] perf_uprobe_event_init+0xe6/0x180
[ 129.800874][ T5499] perf_try_init_event+0x17f/0x870
[ 129.802904][ T5499] ? perf_event_alloc+0xf61/0x2be0
[ 129.805237][ T5499] perf_event_alloc+0x133e/0x2be0
[ 129.807547][ T5499] ? perf_event_alloc+0xf61/0x2be0
[ 129.809891][ T5499] ? __pfx_perf_event_alloc+0x10/0x10
[ 129.812263][ T5499] ? find_lively_task_by_vpid+0x19/0x290
[ 129.814746][ T5499] ? find_lively_task_by_vpid+0x19/0x290
[ 129.817298][ T5499] ? find_lively_task_by_vpid+0x19/0x290
[ 129.819671][ T5499] __se_sys_perf_event_open+0x772/0x1d70
[ 129.822086][ T5499] ? up_write+0x1c4/0x420
[ 129.823994][ T5499] ? __pfx___se_sys_perf_event_open+0x10/0x10
[ 129.826604][ T5499] ? __pfx___se_sys_futex+0x10/0x10
[ 129.828869][ T5499] ? fput+0xa0/0xd0
[ 129.830424][ T5499] ? do_syscall_64+0xbe/0xfa0
[ 129.832296][ T5499] ? __x64_sys_perf_event_open+0x20/0xc0
[ 129.834492][ T5499] do_syscall_64+0xfa/0xfa0
[ 129.836345][ T5499] ? lockdep_hardirqs_on+0x9c/0x150
[ 129.838525][ T5499] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.840919][ T5499] ? clear_bhb_loop+0x60/0xb0
[ 129.842863][ T5499] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.845363][ T5499] RIP: 0033:0x7fb06e98f6c9
[ 129.847406][ T5499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 129.855501][ T5499] RSP: 002b:00007ffe14678ec8 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 129.858921][ T5499] RAX: ffffffffffffffda RBX: 00007fb06ebe5fa0 RCX: 00007fb06e98f6c9
[ 129.862163][ T5499] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000000c0
[ 129.865536][ T5499] RBP: 00007fb06ea11f91 R08: 0000000000000000 R09: 0000000000000000
[ 129.869010][ T5499] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 129.872489][ T5499] R13: 00007fb06ebe5fa0 R14: 00007fb06ebe5fa0 R15: 0000000000000005
[ 129.875966][ T5499]
[ 129.877655][ T5499] Kernel Offset: disabled
[ 129.879549][ T5499] Rebooting in 86400 seconds..
VM DIAGNOSIS:
11:39:45 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000032 RBX=0000000000000032 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90002afe050
R8 =ffff8880338f0237 R9 =1ffff1100671e046 R10=dffffc0000000000 R11=ffffffff85166c10
R12=dffffc0000000000 R13=ffffffff997e4905 R14=ffffffff99af8320 R15=0000000000000000
RIP=ffffffff85166c8c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555586b99500 ffffffff 00c00000
GS =0000 ffff88808d730000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000000000 CR3=0000000059b5f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000010100 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe146791a0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb06ea13050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb06ea1305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb06ea13057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb06ea1306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb06ea130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb06ea131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000060 0000000000000001 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000