Warning: Permanently added '10.128.0.74' (ED25519) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
[ 21.869915][ T28] audit: type=1400 audit(1749309820.567:64): avc: denied { execmem } for pid=284 comm="syz-executor120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 21.896588][ T28] audit: type=1400 audit(1749309820.597:65): avc: denied { create } for pid=291 comm="syz-executor120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 21.926661][ T28] audit: type=1400 audit(1749309820.597:66): avc: denied { ioctl } for pid=291 comm="syz-executor120" path="socket:[8860]" dev="sockfs" ino=8860 ioctlcmd=0x48e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
executing program
[ 23.925806][ T296] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 23.925832][ T291] Bluetooth: hci0: Opcode 0x080f failed: -110
[ 24.005801][ T298] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 24.005815][ T301] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 24.005849][ T301] Bluetooth: hci3: command 0x1003 tx timeout
[ 24.012073][ T300] Bluetooth: hci3: Opcode 0x1003 failed: -110
executing program
[ 26.005786][ T292] Bluetooth: hci0: Opcode 0x080f failed: -110
[ 26.005791][ T300] Bluetooth: hci1: command 0x1003 tx timeout
[ 26.005837][ T296] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 26.880292][ T290] Bluetooth: hci0: Opcode 0x080f failed: -4
[ 28.085854][ T296] Bluetooth: hci2: Opcode 0x1003 failed: -110
executing program
executing program
[ 28.965824][ T303] Bluetooth: hci0: command 0x080f tx timeout
[ 28.965836][ T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 28.978236][ T293] Bluetooth: hci0: Opcode 0x080f failed: -4
[ 28.984394][ T294] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 28.990510][ T306] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 28.996646][ T307] Bluetooth: hci0: Opcode 0x080f failed: -22
executing program
executing program
executing program
[ 31.045835][ T303] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 31.045835][ T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 31.045885][ T45] Bluetooth: hci1: command 0x1003 tx timeout
[ 31.125807][ T296] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 31.125807][ T301] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 31.125852][ T301] Bluetooth: hci2: command 0x1003 tx timeout
[ 31.132020][ T300] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 33.125766][ T308] Bluetooth: hci0: Opcode 0x080f failed: -110
executing program
executing program
[ 34.035560][ T309] Bluetooth: hci0: Opcode 0x080f failed: -4
[ 34.055757][ T311] Bluetooth: hci0: Opcode 0x080f failed: -4
[ 34.061761][ T310] Bluetooth: hci0: Opcode 0x080f failed: -4
[ 34.067776][ T312] Bluetooth: hci0: Opcode 0x080f failed: -4
executing program
executing program
executing program
[ 36.085812][ T303] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 36.085822][ T45] Bluetooth: hci1: command 0x1003 tx timeout
[ 36.085841][ T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 36.091956][ T300] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 36.110203][ T316] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 36.116333][ T314] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 36.122926][ T318] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 36.129049][ T319] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 36.136145][ T320] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 36.165781][ T300] Bluetooth: hci3: command 0x1003 tx timeout
[ 36.165823][ T298] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 36.171850][ T300] Bluetooth: hci2: command 0x1003 tx timeout
executing program
executing program
executing program
executing program
executing program
[ 36.177916][ T301] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 36.183873][ T296] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 36.190000][ T303] Bluetooth: hci4: command 0x1003 tx timeout
[ 38.245781][ T300] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 38.245781][ T298] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 38.245824][ T300] Bluetooth: hci4: command 0x1003 tx timeout
[ 38.251883][ T298] Bluetooth: hci2: command 0x1003 tx timeout
[ 38.257992][ T303] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 38.263960][ T296] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 38.269926][ T322] Bluetooth: hci0: Opcode 0x080f failed: -110
executing program
[ 40.325779][ T298] Bluetooth: hci0: command 0x080f tx timeout
[ 40.325775][ T301] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 40.405747][ T303] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 40.405757][ T301] Bluetooth: hci1: command 0x1003 tx timeout
executing program
executing program
executing program
[ 41.212976][ T321] Bluetooth: hci0: Opcode 0x080f failed: -4
[ 41.219111][ T324] Bluetooth: hci0: Opcode 0x080f failed: -4
[ 41.225183][ T323] Bluetooth: hci0: Opcode 0x080f failed: -4
[ 41.245297][ T325] Bluetooth: hci0: Opcode 0x080f failed: -4
executing program
executing program
executing program
executing program
executing program
[ 43.285810][ T303] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 43.285810][ T296] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 43.285861][ T296] Bluetooth: hci2: command 0x1003 tx timeout
[ 43.291980][ T326] Bluetooth: hci0: Opcode 0x080f failed: -110
[ 43.298028][ T301] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 45.365809][ T303] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 45.365809][ T298] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 45.365854][ T298] Bluetooth: hci4: command 0x1003 tx timeout
[ 45.371944][ T303] Bluetooth: hci1: command 0x1003 tx timeout
[ 45.378020][ T296] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 45.384067][ T301] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 45.390360][ T300] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 45.396315][ T302] Bluetooth: hci0: command 0x1003 tx timeout
executing program
executing program
executing program
executing program
[ 45.414507][ T330] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 45.420546][ T331] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 45.426658][ T332] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 45.432898][ T333] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 45.439720][ T334] Bluetooth: hci0: Opcode 0x080f failed: -22
executing program
[ 47.525807][ T300] Bluetooth: hci4: command 0x1003 tx timeout
[ 47.525803][ T45] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 47.525842][ T45] Bluetooth: hci2: command 0x1003 tx timeout
[ 47.531922][ T300] Bluetooth: hci1: command 0x1003 tx timeout
[ 47.538027][ T301] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 47.543991][ T296] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 47.556130][ T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 47.562156][ T303] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
executing program
executing program
executing program
executing program
[ 47.574295][ T302] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 47.580568][ T335] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 47.586630][ T337] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 47.593146][ T338] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 47.599328][ T336] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 47.605478][ T339] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 49.605742][ C1] ==================================================================
[ 49.613960][ C1] BUG: KASAN: use-after-free in __run_timers+0x32b/0x9a0
[ 49.621141][ C1] Write of size 8 at addr ffff88810cd5ca00 by task swapper/1/0
[ 49.628669][ C1]
[ 49.630977][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.1.138-syzkaller-00056-g7af56ffc913d #0
[ 49.640404][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 49.650440][ C1] Call Trace:
[ 49.653702][ C1]
[ 49.656524][ C1] __dump_stack+0x21/0x24
[ 49.660874][ C1] dump_stack_lvl+0xee/0x150
[ 49.665453][ C1] ? __cfi_dump_stack_lvl+0x8/0x8
[ 49.670453][ C1] ? update_rq_clock+0x1c1/0x5c0
[ 49.675370][ C1] ? __run_timers+0x32b/0x9a0
[ 49.680022][ C1] print_address_description+0x71/0x210
[ 49.685546][ C1] print_report+0x4a/0x60
[ 49.689870][ C1] kasan_report+0x122/0x150
[ 49.694361][ C1] ? __run_timers+0x32b/0x9a0
[ 49.699010][ C1] __asan_report_store8_noabort+0x17/0x20
[ 49.704795][ C1] __run_timers+0x32b/0x9a0
[ 49.709341][ C1] ? sched_clock+0x9/0x10
[ 49.713662][ C1] ? sched_clock_cpu+0x6e/0x250
[ 49.718504][ C1] ? calc_index+0x200/0x200
[ 49.722996][ C1] ? kvm_sched_clock_read+0x18/0x40
[ 49.728169][ C1] run_timer_softirq+0x6a/0xf0
[ 49.732999][ C1] handle_softirqs+0x1d7/0x600
[ 49.735834][ T45] Bluetooth: hci4: command 0x1003 tx timeout
[ 49.737755][ C1] ? irqtime_account_irq+0xc4/0x240
[ 49.743854][ T45] Bluetooth: hci3: command 0x1003 tx timeout
[ 49.749004][ C1] __irq_exit_rcu+0x52/0xf0
[ 49.749026][ C1] irq_exit_rcu+0x9/0x10
[ 49.755009][ T300] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 49.759488][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0
[ 49.759512][ C1]
[ 49.763828][ T298] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 49.769878][ C1]
[ 49.769893][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 49.769921][ C1] RIP: 0010:default_idle+0xf/0x20
[ 49.775571][ T296] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 49.778493][ C1] Code: e9 47 ff ff ff 00 00 cc cc 00 00 90 90 90 90 90 90 90 90 90 90 90 b8 0c 67 40 a5 55 48 89 e5 66 90 0f 00 2d 23 79 56 00 fb f4 <5d> c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90
[ 49.778509][ C1] RSP: 0018:ffffc90000147dd8 EFLAGS: 00000257
[ 49.778526][ C1] RAX: ffff8881f7100000 RBX: ffff8881003b2880 RCX: 7686f5f8d90f7100
[ 49.784591][ T303] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 49.787507][ C1] RDX: 0000000000000001 RSI: ffffffff85a9f680 RDI: ffffffff85a9f640
[ 49.787522][ C1] RBP: ffffc90000147dd8 R08: dffffc0000000000 R09: ffffed103ee26917
[ 49.787535][ C1] R10: 0000000000000000 R11: ffffffff84efba50 R12: 0000000000000000
[ 49.868244][ C1] R13: 0000000000000000 R14: ffff8881003b2880 R15: dffffc0000000000
[ 49.876196][ C1] ? __cfi_default_idle+0x10/0x10
[ 49.881208][ C1] arch_cpu_idle+0x1c/0x20
[ 49.885682][ C1] default_idle_call+0x71/0x1d0
[ 49.890510][ C1] do_idle+0x1a7/0x520
[ 49.894550][ C1] ? try_to_wake_up+0x613/0x1220
[ 49.899461][ C1] ? idle_inject_timer_fn+0x60/0x60
[ 49.904718][ C1] ? _raw_spin_unlock_irqrestore+0x5a/0x80
[ 49.910500][ C1] ? complete+0x167/0x1c0
[ 49.914818][ C1] cpu_startup_entry+0x43/0x60
[ 49.919583][ C1] start_secondary+0x119/0x120
[ 49.924323][ C1] secondary_startup_64_no_verify+0xce/0xdb
[ 49.930189][ C1]
[ 49.933180][ C1]
[ 49.935476][ C1] Allocated by task 335:
[ 49.939686][ C1] kasan_set_track+0x4b/0x70
[ 49.944252][ C1] kasan_save_alloc_info+0x25/0x30
[ 49.949334][ C1] __kasan_kmalloc+0x95/0xb0
[ 49.953911][ C1] __kmalloc+0xb1/0x1e0
[ 49.958079][ C1] hci_alloc_dev_priv+0x27/0x1bd0
[ 49.963100][ C1] hci_uart_tty_ioctl+0x3d6/0xa20
[ 49.968108][ C1] tty_ioctl+0x8ef/0xc60
[ 49.972328][ C1] __se_sys_ioctl+0x12f/0x1b0
[ 49.976982][ C1] __x64_sys_ioctl+0x7b/0x90
[ 49.981558][ C1] x64_sys_call+0x58b/0x9a0
[ 49.986035][ C1] do_syscall_64+0x4c/0xa0
[ 49.990446][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 49.996314][ C1]
[ 49.998612][ C1] Freed by task 339:
[ 50.002487][ C1] kasan_set_track+0x4b/0x70
[ 50.007046][ C1] kasan_save_free_info+0x31/0x50
[ 50.012051][ C1] ____kasan_slab_free+0x132/0x180
[ 50.017147][ C1] __kasan_slab_free+0x11/0x20
[ 50.021897][ C1] slab_free_freelist_hook+0xc2/0x190
[ 50.027260][ C1] __kmem_cache_free+0xb7/0x1b0
[ 50.032102][ C1] kfree+0x6f/0xf0
[ 50.035821][ C1] hci_release_dev+0x13ad/0x1500
[ 50.040744][ C1] bt_host_release+0x82/0x90
[ 50.045310][ C1] device_release+0xa4/0x1d0
[ 50.049880][ C1] kobject_put+0x19d/0x280
[ 50.054282][ C1] put_device+0x1f/0x30
[ 50.058415][ C1] hci_dev_cmd+0x265/0x720
[ 50.062819][ C1] hci_sock_ioctl+0x41e/0x7f0
[ 50.067650][ C1] sock_do_ioctl+0x101/0x310
[ 50.072228][ C1] sock_ioctl+0x4d8/0x6e0
[ 50.076541][ C1] __se_sys_ioctl+0x12f/0x1b0
[ 50.081278][ C1] __x64_sys_ioctl+0x7b/0x90
[ 50.085841][ C1] x64_sys_call+0x58b/0x9a0
[ 50.090325][ C1] do_syscall_64+0x4c/0xa0
[ 50.094713][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 50.100588][ C1]
[ 50.102899][ C1] Last potentially related work creation:
[ 50.108586][ C1] kasan_save_stack+0x3a/0x60
[ 50.113245][ C1] __kasan_record_aux_stack+0xb6/0xc0
[ 50.118684][ C1] kasan_record_aux_stack_noalloc+0xb/0x10
[ 50.124491][ C1] insert_work+0x51/0x300
[ 50.128806][ C1] __queue_work+0x9b1/0xd30
[ 50.133314][ C1] queue_work_on+0xd2/0x140
[ 50.137856][ C1] __hci_cmd_sync_sk+0xa3e/0xcf0
[ 50.142785][ C1] hci_cmd_sync_status+0x53/0x120
[ 50.147795][ C1] hci_dev_cmd+0x628/0x720
[ 50.152193][ C1] hci_sock_ioctl+0x41e/0x7f0
[ 50.156852][ C1] sock_do_ioctl+0x101/0x310
[ 50.161418][ C1] sock_ioctl+0x4d8/0x6e0
[ 50.165723][ C1] __se_sys_ioctl+0x12f/0x1b0
[ 50.170377][ C1] __x64_sys_ioctl+0x7b/0x90
[ 50.175028][ C1] x64_sys_call+0x58b/0x9a0
[ 50.179504][ C1] do_syscall_64+0x4c/0xa0
[ 50.183893][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 50.189760][ C1]
[ 50.192061][ C1] Second to last potentially related work creation:
[ 50.198630][ C1] kasan_save_stack+0x3a/0x60
[ 50.203289][ C1] __kasan_record_aux_stack+0xb6/0xc0
[ 50.208659][ C1] kasan_record_aux_stack_noalloc+0xb/0x10
[ 50.214460][ C1] insert_work+0x51/0x300
[ 50.218765][ C1] __queue_work+0x9b1/0xd30
[ 50.223239][ C1] queue_work_on+0xd2/0x140
[ 50.227710][ C1] __hci_cmd_sync_sk+0xa3e/0xcf0
[ 50.232621][ C1] hci_cmd_sync_status+0x53/0x120
[ 50.237615][ C1] hci_dev_cmd+0x628/0x720
[ 50.242015][ C1] hci_sock_ioctl+0x41e/0x7f0
[ 50.246659][ C1] sock_do_ioctl+0x101/0x310
[ 50.251399][ C1] sock_ioctl+0x4d8/0x6e0
[ 50.255726][ C1] __se_sys_ioctl+0x12f/0x1b0
[ 50.260382][ C1] __x64_sys_ioctl+0x7b/0x90
[ 50.264951][ C1] x64_sys_call+0x58b/0x9a0
[ 50.269429][ C1] do_syscall_64+0x4c/0xa0
[ 50.273999][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 50.279970][ C1]
[ 50.282279][ C1] The buggy address belongs to the object at ffff88810cd5c000
[ 50.282279][ C1] which belongs to the cache kmalloc-8k of size 8192
[ 50.296304][ C1] The buggy address is located 2560 bytes inside of
[ 50.296304][ C1] 8192-byte region [ffff88810cd5c000, ffff88810cd5e000)
[ 50.309760][ C1]
[ 50.312068][ C1] The buggy address belongs to the physical page:
[ 50.318465][ C1] page:ffffea0004335600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10cd58
[ 50.328666][ C1] head:ffffea0004335600 order:3 compound_mapcount:0 compound_pincount:0
[ 50.336954][ C1] flags: 0x4000000000010200(slab|head|zone=1)
[ 50.346136][ C1] raw: 4000000000010200 ffffea0004335a00 dead000000000003 ffff888100043500
[ 50.354774][ C1] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[ 50.363319][ C1] page dumped because: kasan: bad access detected
[ 50.369706][ C1] page_owner tracks the page as allocated
[ 50.375402][ C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2000(__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 2016148786, free_ts 0
[ 50.393525][ C1] post_alloc_hook+0x1f5/0x210
[ 50.398280][ C1] prep_new_page+0x1c/0x110
[ 50.402753][ C1] get_page_from_freelist+0x2c6e/0x2ce0
[ 50.408268][ C1] __alloc_pages+0x19e/0x3a0
[ 50.412831][ C1] alloc_slab_page+0x6e/0xf0
[ 50.417491][ C1] new_slab+0x98/0x3d0
[ 50.421540][ C1] ___slab_alloc+0x6f6/0xb50
[ 50.426100][ C1] __slab_alloc+0x5e/0xa0
[ 50.430397][ C1] __kmem_cache_alloc_node+0x203/0x2c0
[ 50.435827][ C1] __kmalloc_node+0xa1/0x1e0
[ 50.440389][ C1] kvmalloc_node+0x294/0x480
[ 50.444950][ C1] sbitmap_init_node+0x43b/0x580
[ 50.449855][ C1] scsi_realloc_sdev_budget_map+0x24e/0x3a0
[ 50.455733][ C1] scsi_alloc_sdev+0x7ee/0xac0
[ 50.460482][ C1] scsi_probe_and_add_lun+0x192/0x3bb0
[ 50.465918][ C1] __scsi_scan_target+0x1e8/0xbb0
[ 50.471000][ C1] page_owner free stack trace missing
[ 50.476431][ C1]
[ 50.478733][ C1] Memory state around the buggy address:
[ 50.484346][ C1] ffff88810cd5c900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 50.492377][ C1] ffff88810cd5c980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 50.500579][ C1] >ffff88810cd5ca00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 50.508694][ C1] ^
[ 50.512730][ C1] ffff88810cd5ca80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 50.520854][ C1] ffff88810cd5cb00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 50.528990][ C1] ==================================================================
[ 50.537033][ C1] Disabling lock debugging due to kernel taint
[ 50.543282][ C1] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[ 50.543379][ T303] Bluetooth: hci2: command 0x1003 tx timeout
[ 50.555060][ C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 50.555075][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.1.138-syzkaller-00056-g7af56ffc913d #0
[ 50.561211][ T298] Bluetooth: hci0: command 0x1003 tx timeout
[ 50.569623][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 50.569634][ C1] RIP: 0010:__queue_work+0x575/0xd30
[ 50.602671][ C1] Code: 39 2b 0f 84 b9 00 00 00 e8 f8 d2 28 00 4c 89 ff e8 70 c6 a8 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 dc 29 6d 00 49 8b 7d 00 e8 53 c2
[ 50.622603][ C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046
[ 50.628660][ C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff8881003b2880
[ 50.636616][ C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[ 50.645104][ C1] RBP: ffffc900001b0d08 R08: fffffffffffffffb R09: 0000000000000007
[ 50.653056][ C1] R10: ffffed10219ab939 R11: 1ffff110219ab939 R12: dffffc0000000000
[ 50.661014][ C1] R13: 0000000000000000 R14: ffff88810cd5c9c8 R15: 0000000000000008
[ 50.668964][ C1] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 50.677902][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 50.684476][ C1] CR2: 0000200000000000 CR3: 00000001254ab000 CR4: 00000000003506a0
[ 50.692523][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 50.700483][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 50.708445][ C1] Call Trace:
[ 50.711722][ C1]
[ 50.714565][ C1] delayed_work_timer_fn+0x61/0x80
[ 50.719674][ C1] ? __cfi_delayed_work_timer_fn+0x10/0x10
[ 50.725460][ C1] call_timer_fn+0x46/0x2a0
[ 50.729946][ C1] ? __cfi_delayed_work_timer_fn+0x10/0x10
[ 50.735745][ C1] __run_timers+0x667/0x9a0
[ 50.740486][ C1] ? calc_index+0x200/0x200
[ 50.744963][ C1] ? kvm_sched_clock_read+0x18/0x40
[ 50.750149][ C1] run_timer_softirq+0x6a/0xf0
[ 50.754894][ C1] handle_softirqs+0x1d7/0x600
[ 50.759629][ C1] ? irqtime_account_irq+0xc4/0x240
[ 50.764813][ C1] __irq_exit_rcu+0x52/0xf0
[ 50.769314][ C1] irq_exit_rcu+0x9/0x10
[ 50.773555][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0
[ 50.779178][ C1]
[ 50.782101][ C1]
[ 50.785008][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 50.790976][ C1] RIP: 0010:default_idle+0xf/0x20
[ 50.796087][ C1] Code: e9 47 ff ff ff 00 00 cc cc 00 00 90 90 90 90 90 90 90 90 90 90 90 b8 0c 67 40 a5 55 48 89 e5 66 90 0f 00 2d 23 79 56 00 fb f4 <5d> c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90
[ 50.815673][ C1] RSP: 0018:ffffc90000147dd8 EFLAGS: 00000257
[ 50.821740][ C1] RAX: ffff8881f7100000 RBX: ffff8881003b2880 RCX: 7686f5f8d90f7100
[ 50.829688][ C1] RDX: 0000000000000001 RSI: ffffffff85a9f680 RDI: ffffffff85a9f640
[ 50.837724][ C1] RBP: ffffc90000147dd8 R08: dffffc0000000000 R09: ffffed103ee26917
[ 50.845689][ C1] R10: 0000000000000000 R11: ffffffff84efba50 R12: 0000000000000000
[ 50.853646][ C1] R13: 0000000000000000 R14: ffff8881003b2880 R15: dffffc0000000000
[ 50.861595][ C1] ? __cfi_default_idle+0x10/0x10
[ 50.866604][ C1] arch_cpu_idle+0x1c/0x20
[ 50.870990][ C1] default_idle_call+0x71/0x1d0
[ 50.875826][ C1] do_idle+0x1a7/0x520
[ 50.879912][ C1] ? try_to_wake_up+0x613/0x1220
[ 50.884823][ C1] ? idle_inject_timer_fn+0x60/0x60
[ 50.889998][ C1] ? _raw_spin_unlock_irqrestore+0x5a/0x80
[ 50.895780][ C1] ? complete+0x167/0x1c0
[ 50.900081][ C1] cpu_startup_entry+0x43/0x60
[ 50.904820][ C1] start_secondary+0x119/0x120
[ 50.909557][ C1] secondary_startup_64_no_verify+0xce/0xdb
[ 50.915421][ C1]
[ 50.918416][ C1] Modules linked in:
[ 50.922283][ C1] ---[ end trace 0000000000000000 ]---
[ 50.927712][ C1] RIP: 0010:__queue_work+0x575/0xd30
[ 50.932980][ C1] Code: 39 2b 0f 84 b9 00 00 00 e8 f8 d2 28 00 4c 89 ff e8 70 c6 a8 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 dc 29 6d 00 49 8b 7d 00 e8 53 c2
[ 50.952557][ C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046
[ 50.958611][ C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff8881003b2880
[ 50.966567][ C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[ 50.974524][ C1] RBP: ffffc900001b0d08 R08: fffffffffffffffb R09: 0000000000000007
[ 50.982495][ C1] R10: ffffed10219ab939 R11: 1ffff110219ab939 R12: dffffc0000000000
[ 50.990554][ C1] R13: 0000000000000000 R14: ffff88810cd5c9c8 R15: 0000000000000008
[ 50.998533][ C1] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 51.007490][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 51.014146][ C1] CR2: 0000200000000000 CR3: 00000001254ab000 CR4: 00000000003506a0
[ 51.022124][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 51.030084][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 51.038067][ C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 51.045547][ C1] Kernel Offset: disabled
[ 51.049869][ C1] Rebooting in 86400 seconds..