Warning: Permanently added '[localhost]:42063' (ED25519) to the list of known hosts.
2025/11/13 14:38:38 parsed 1 programs
syzkaller login: [   83.931603][ T5312] cgroup: Unknown subsys name 'net'
[   84.000427][ T5312] cgroup: Unknown subsys name 'cpuset'
[   84.005797][ T5312] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   85.632287][ T5312] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   89.152882][ T5326] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   90.263758][ T5342] chnl_net:caif_netlink_parms(): no params data found
[   90.332654][ T5342] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.336150][ T5342] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.340112][ T5342] bridge_slave_0: entered allmulticast mode
[   90.344573][ T5342] bridge_slave_0: entered promiscuous mode
[   90.351222][ T5342] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.354353][ T5342] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.357925][ T5342] bridge_slave_1: entered allmulticast mode
[   90.361171][ T5342] bridge_slave_1: entered promiscuous mode
[   90.384634][ T5342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.390860][ T5342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.414109][ T5342] team0: Port device team_slave_0 added
[   90.418799][ T5342] team0: Port device team_slave_1 added
[   90.445228][ T5342] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.448659][ T5342] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.459576][ T5342] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.465650][ T5342] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.469246][ T5342] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.480897][ T5342] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.514832][ T5342] hsr_slave_0: entered promiscuous mode
[   90.518203][ T5342] hsr_slave_1: entered promiscuous mode
[   90.665967][ T5342] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   90.675560][ T5342] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   90.683011][ T5342] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   90.689974][ T5342] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   90.718674][ T5342] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.721859][ T5342] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.725648][ T5342] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.728948][ T5342] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.785935][ T5342] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.800149][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.804863][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.817551][ T5342] 8021q: adding VLAN 0 to HW filter on device team0
[   90.828905][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.831818][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.841695][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.845234][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.024212][ T5342] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.062976][ T5342] veth0_vlan: entered promiscuous mode
[   91.073186][ T5342] veth1_vlan: entered promiscuous mode
[   91.099518][ T5342] veth0_macvtap: entered promiscuous mode
[   91.105200][ T5342] veth1_macvtap: entered promiscuous mode
[   91.124347][ T5342] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.134609][ T5342] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.146246][   T54] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.156260][   T54] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.171328][   T54] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.175102][   T54] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.328986][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.378961][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.427619][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.499654][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.872780][   T10] cfg80211: failed to load regulatory.db
[   92.270191][ T5377] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   92.274343][ T5377] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   92.278148][ T5377] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   92.281838][ T5377] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   92.285425][ T5377] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   92.600137][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.603603][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.637864][ T1047] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.641329][ T1047] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.382873][   T13] bridge_slave_1: left allmulticast mode
[   94.385471][   T13] bridge_slave_1: left promiscuous mode
[   94.408020][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.431817][   T13] bridge_slave_0: left allmulticast mode
[   94.434446][   T13] bridge_slave_0: left promiscuous mode
[   94.446817][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.019183][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   95.025814][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   95.038679][   T13] bond0 (unregistering): Released all slaves
[   95.128998][   T13] hsr_slave_0: left promiscuous mode
[   95.131767][   T13] hsr_slave_1: left promiscuous mode
[   95.140381][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   95.143353][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   95.157566][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   95.160975][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   95.178438][   T13] veth1_macvtap: left promiscuous mode
[   95.181103][   T13] veth0_macvtap: left promiscuous mode
[   95.183594][   T13] veth1_vlan: left promiscuous mode
[   95.185925][   T13] veth0_vlan: left promiscuous mode
[   95.441012][   T13] team0 (unregistering): Port device team_slave_1 removed
[   95.458512][   T13] team0 (unregistering): Port device team_slave_0 removed
2025/11/13 14:38:54 executed programs: 0
[   97.672236][ T5377] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   97.676013][ T5377] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   97.685174][ T5377] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   97.689500][ T5377] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   97.692883][ T5377] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   98.103778][ T5448] chnl_net:caif_netlink_parms(): no params data found
[   98.172454][ T5448] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.175459][ T5448] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.178934][ T5448] bridge_slave_0: entered allmulticast mode
[   98.182802][ T5448] bridge_slave_0: entered promiscuous mode
[   98.188557][ T5448] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.191757][ T5448] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.194990][ T5448] bridge_slave_1: entered allmulticast mode
[   98.199680][ T5448] bridge_slave_1: entered promiscuous mode
[   98.221810][ T5448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   98.228422][ T5448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.250171][ T5448] team0: Port device team_slave_0 added
[   98.255764][ T5448] team0: Port device team_slave_1 added
[   98.278901][ T5448] batman_adv: batadv0: Adding interface: batadv_slave_0
[   98.281573][ T5448] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   98.292173][ T5448] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   98.298559][ T5448] batman_adv: batadv0: Adding interface: batadv_slave_1
[   98.301487][ T5448] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   98.312781][ T5448] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   98.349310][ T5448] hsr_slave_0: entered promiscuous mode
[   98.352419][ T5448] hsr_slave_1: entered promiscuous mode
[   98.779084][ T5448] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   98.797737][ T5448] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   98.804962][ T5448] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   98.818507][ T5448] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   98.963010][ T5448] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.998019][ T5448] 8021q: adding VLAN 0 to HW filter on device team0
[   99.014008][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.017194][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.050894][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.053905][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.380368][ T5448] 8021q: adding VLAN 0 to HW filter on device batadv0
[   99.454634][ T5448] veth0_vlan: entered promiscuous mode
[   99.472858][ T5448] veth1_vlan: entered promiscuous mode
[   99.518380][ T5448] veth0_macvtap: entered promiscuous mode
[   99.539208][ T5448] veth1_macvtap: entered promiscuous mode
[   99.564872][ T5448] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.580740][ T5448] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.606717][ T1038] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.610095][ T1038] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.613554][ T1038] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.632308][ T1038] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.708022][ T5377] Bluetooth: hci0: command tx timeout
[   99.733569][ T1047] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.744625][ T1047] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.784407][ T1038] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.797546][ T1038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.880773][ T5492] loop0: detected capacity change from 0 to 16
[  100.157835][ T5492] erofs (device loop0): mounted with root inode @ nid 36.
[  100.178976][ T5492] ------------[ cut here ]------------
[  100.181778][ T5492] WARNING: CPU: 0 PID: 5492 at fs/dax.c:224 get_next_unlocked_entry+0x329/0x340
[  100.185450][ T5492] Modules linked in:
[  100.187719][ T5492] CPU: 0 UID: 0 PID: 5492 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  100.192176][ T5492] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.196598][ T5492] RIP: 0010:get_next_unlocked_entry+0x329/0x340
[  100.199274][ T5492] Code: 45 1d 10 48 3b 84 24 c0 00 00 00 75 22 4c 89 e8 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 3e 8a f9 08 cc e8 08 59 6e ff 90 <0f> 0b 90 eb a0 e8 6d a6 f6 08 66 66 66 66 2e 0f 1f 84 00 00 00 00
[  100.207794][ T5492] RSP: 0018:ffffc90002b7e8a0 EFLAGS: 00010093
[  100.211129][ T5492] RAX: ffffffff8251ba68 RBX: 1ffff9200056fd9c RCX: ffff8880354e4900
[  100.214750][ T5492] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  100.218190][ T5492] RBP: ffffc90002b7e9b0 R08: ffffc90002b7e937 R09: 0000000000000000
[  100.221633][ T5492] R10: ffffc90002b7e900 R11: fffff5200056fd27 R12: ffffc90002b7e918
[  100.225141][ T5492] R13: ffffea00010af380 R14: ffffc90002b7e900 R15: dffffc0000000000
[  100.228590][ T5492] FS:  0000555581eb2500(0000) GS:ffff88808d730000(0000) knlGS:0000000000000000
[  100.232209][ T5492] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  100.235097][ T5492] CR2: 0000557f23763138 CR3: 00000000424dd000 CR4: 0000000000352ef0
[  100.238775][ T5492] Call Trace:
[  100.240311][ T5492]  <TASK>
[  100.241651][ T5492]  ? __pfx_get_next_unlocked_entry+0x10/0x10
[  100.244278][ T5492]  ? __pfx_wake_exceptional_entry_func+0x10/0x10
[  100.247080][ T5492]  ? __lock_acquire+0xab9/0xd20
[  100.249405][ T5492]  grab_mapping_entry+0x176/0x660
[  100.251561][ T5492]  ? __pfx_grab_mapping_entry+0x10/0x10
[  100.253907][ T5492]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  100.256456][ T5492]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.258638][ T5492]  dax_iomap_fault+0x8ab/0x18d0
[  100.260807][ T5492]  ? stack_depot_save_flags+0x41b/0x860
[  100.263168][ T5492]  ? __pfx_dax_iomap_fault+0x10/0x10
[  100.265450][ T5492]  ? kasan_save_track+0x4f/0x80
[  100.267604][ T5492]  ? kasan_save_track+0x3e/0x80
[  100.269707][ T5492]  ? __kasan_slab_alloc+0x6c/0x80
[  100.271924][ T5492]  ? kmem_cache_alloc_noprof+0x367/0x6e0
[  100.274406][ T5492]  ? ptlock_alloc+0x20/0x70
[  100.276352][ T5492]  ? pte_alloc_one+0x7a/0x310
[  100.278481][ T5492]  ? __do_fault+0xd1/0x390
[  100.280478][ T5492]  ? __handle_mm_fault+0x1719/0x5400
[  100.282981][ T5492]  ? handle_mm_fault+0x40a/0x8e0
[  100.285351][ T5492]  ? __get_user_pages+0x165c/0x2a00
[  100.287739][ T5492]  ? get_user_pages_remote+0x2f1/0xac0
[  100.290149][ T5492]  ? uprobe_write+0x1b6/0x2160
[  100.292345][ T5492]  ? uprobe_write_opcode+0xa8/0xf0
[  100.294647][ T5492]  ? set_swbp+0x121/0x290
[  100.296705][ T5492]  ? install_breakpoint+0x451/0x5a0
[  100.299134][ T5492]  ? register_for_each_vma+0xabb/0xc30
[  100.301637][ T5492]  ? uprobe_apply+0xfb/0x270
[  100.303757][ T5492]  ? trace_uprobe_register+0x4df/0x560
[  100.306246][ T5492]  ? perf_trace_event_init+0x19a/0x9d0
[  100.308681][ T5492]  ? perf_uprobe_init+0x12e/0x1a0
[  100.310849][ T5492]  ? perf_uprobe_event_init+0xe6/0x180
[  100.313003][ T5492]  ? perf_try_init_event+0x17f/0x870
[  100.315060][ T5492]  ? perf_event_alloc+0x133e/0x2be0
[  100.317329][ T5492]  ? __se_sys_perf_event_open+0x772/0x1d70
[  100.319653][ T5492]  ? do_syscall_64+0xfa/0xfa0
[  100.321681][ T5492]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.324419][ T5492]  ? __raw_spin_lock_init+0x45/0x100
[  100.327035][ T5492]  ? pte_alloc_one+0x1f9/0x310
[  100.329191][ T5492]  __do_fault+0x138/0x390
[  100.331148][ T5492]  __handle_mm_fault+0x1719/0x5400
[  100.333329][ T5492]  ? __pfx___handle_mm_fault+0x10/0x10
[  100.335707][ T5492]  ? __pfx___might_resched+0x10/0x10
[  100.337865][ T5492]  handle_mm_fault+0x40a/0x8e0
[  100.339790][ T5492]  __get_user_pages+0x165c/0x2a00
[  100.341937][ T5492]  get_user_pages_remote+0x2f1/0xac0
[  100.344174][ T5492]  ? iomap_iter_advance+0x282/0x2f0
[  100.346471][ T5492]  ? __pfx_get_user_pages_remote+0x10/0x10
[  100.349038][ T5492]  ? insn_get_prefixes+0xe6e/0x1ca0
[  100.351407][ T5492]  uprobe_write+0x1b6/0x2160
[  100.353461][ T5492]  ? insn_get_opcode+0xb12/0x11b0
[  100.355693][ T5492]  ? __pfx_verify_opcode+0x10/0x10
[  100.357887][ T5492]  ? __pfx_uprobe_write+0x10/0x10
[  100.360129][ T5492]  ? insn_get_immediate+0x32a/0x1280
[  100.362470][ T5492]  ? insn_get_modrm+0x57/0x7d0
[  100.364639][ T5492]  uprobe_write_opcode+0xa8/0xf0
[  100.367065][ T5492]  ? insn_rip_relative+0xc6/0x130
[  100.369513][ T5492]  ? __pfx_uprobe_write_opcode+0x10/0x10
[  100.372123][ T5492]  ? arch_uprobe_analyze_insn+0xc77/0x1400
[  100.374892][ T5492]  set_swbp+0x121/0x290
[  100.376727][ T5492]  ? __pfx_set_swbp+0x10/0x10
[  100.378868][ T5492]  install_breakpoint+0x451/0x5a0
[  100.381033][ T5492]  register_for_each_vma+0xabb/0xc30
[  100.383264][ T5492]  ? uprobe_apply+0x75/0x270
[  100.384949][ T5492]  uprobe_apply+0xfb/0x270
[  100.386790][ T5492]  trace_uprobe_register+0x4df/0x560
[  100.388971][ T5492]  perf_trace_event_init+0x19a/0x9d0
[  100.391141][ T5492]  perf_uprobe_init+0x12e/0x1a0
[  100.393233][ T5492]  perf_uprobe_event_init+0xe6/0x180
[  100.395387][ T5492]  perf_try_init_event+0x17f/0x870
[  100.397524][ T5492]  ? perf_event_alloc+0xf61/0x2be0
[  100.399565][ T5492]  perf_event_alloc+0x133e/0x2be0
[  100.401602][ T5492]  ? perf_event_alloc+0xf61/0x2be0
[  100.403901][ T5492]  ? __pfx_perf_event_alloc+0x10/0x10
[  100.406311][ T5492]  ? find_lively_task_by_vpid+0x19/0x290
[  100.408732][ T5492]  ? find_lively_task_by_vpid+0x19/0x290
[  100.411077][ T5492]  ? find_lively_task_by_vpid+0x19/0x290
[  100.413263][ T5492]  __se_sys_perf_event_open+0x772/0x1d70
[  100.415572][ T5492]  ? up_write+0x1c4/0x420
[  100.417410][ T5492]  ? __pfx___se_sys_perf_event_open+0x10/0x10
[  100.420091][ T5492]  ? __pfx___se_sys_futex+0x10/0x10
[  100.422367][ T5492]  ? fput+0xa0/0xd0
[  100.424090][ T5492]  ? do_syscall_64+0xbe/0xfa0
[  100.426102][ T5492]  ? __x64_sys_perf_event_open+0x20/0xc0
[  100.428616][ T5492]  do_syscall_64+0xfa/0xfa0
[  100.430638][ T5492]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.433026][ T5492]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.435803][ T5492]  ? clear_bhb_loop+0x60/0xb0
[  100.438009][ T5492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.440858][ T5492] RIP: 0033:0x7fe38998f6c9
[  100.443313][ T5492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.452941][ T5492] RSP: 002b:00007ffe19690378 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  100.457005][ T5492] RAX: ffffffffffffffda RBX: 00007fe389be5fa0 RCX: 00007fe38998f6c9
[  100.460201][ T5492] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000000c0
[  100.463574][ T5492] RBP: 00007fe389a11f91 R08: 0000000000000000 R09: 0000000000000000
[  100.467009][ T5492] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  100.470660][ T5492] R13: 00007fe389be5fa0 R14: 00007fe389be5fa0 R15: 0000000000000005
[  100.474431][ T5492]  </TASK>
[  100.475826][ T5492] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  100.479198][ T5492] CPU: 0 UID: 0 PID: 5492 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  100.483158][ T5492] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.487479][ T5492] Call Trace:
[  100.488875][ T5492]  <TASK>
[  100.490077][ T5492]  dump_stack_lvl+0x99/0x250
[  100.492172][ T5492]  ? __asan_memcpy+0x40/0x70
[  100.494209][ T5492]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.496346][ T5492]  ? __pfx__printk+0x10/0x10
[  100.498113][ T5492]  vpanic+0x237/0x6d0
[  100.499763][ T5492]  ? __pfx_vpanic+0x10/0x10
[  100.501612][ T5492]  panic+0xb9/0xc0
[  100.503196][ T5492]  ? __pfx_panic+0x10/0x10
[  100.505060][ T5492]  __warn+0x31b/0x4b0
[  100.506726][ T5492]  ? get_next_unlocked_entry+0x329/0x340
[  100.509109][ T5492]  ? get_next_unlocked_entry+0x329/0x340
[  100.511505][ T5492]  report_bug+0x2be/0x4f0
[  100.513343][ T5492]  ? get_next_unlocked_entry+0x329/0x340
[  100.515935][ T5492]  ? get_next_unlocked_entry+0x329/0x340
[  100.518509][ T5492]  ? get_next_unlocked_entry+0x32b/0x340
[  100.520964][ T5492]  handle_bug+0x84/0x160
[  100.522927][ T5492]  exc_invalid_op+0x1a/0x50
[  100.525010][ T5492]  asm_exc_invalid_op+0x1a/0x20
[  100.527303][ T5492] RIP: 0010:get_next_unlocked_entry+0x329/0x340
[  100.530175][ T5492] Code: 45 1d 10 48 3b 84 24 c0 00 00 00 75 22 4c 89 e8 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 3e 8a f9 08 cc e8 08 59 6e ff 90 <0f> 0b 90 eb a0 e8 6d a6 f6 08 66 66 66 66 2e 0f 1f 84 00 00 00 00
[  100.538563][ T5492] RSP: 0018:ffffc90002b7e8a0 EFLAGS: 00010093
[  100.541198][ T5492] RAX: ffffffff8251ba68 RBX: 1ffff9200056fd9c RCX: ffff8880354e4900
[  100.544664][ T5492] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  100.548216][ T5492] RBP: ffffc90002b7e9b0 R08: ffffc90002b7e937 R09: 0000000000000000
[  100.551771][ T5492] R10: ffffc90002b7e900 R11: fffff5200056fd27 R12: ffffc90002b7e918
[  100.555149][ T5492] R13: ffffea00010af380 R14: ffffc90002b7e900 R15: dffffc0000000000
[  100.558480][ T5492]  ? get_next_unlocked_entry+0x328/0x340
[  100.560859][ T5492]  ? __pfx_get_next_unlocked_entry+0x10/0x10
[  100.563535][ T5492]  ? __pfx_wake_exceptional_entry_func+0x10/0x10
[  100.566299][ T5492]  ? __lock_acquire+0xab9/0xd20
[  100.568565][ T5492]  grab_mapping_entry+0x176/0x660
[  100.570842][ T5492]  ? __pfx_grab_mapping_entry+0x10/0x10
[  100.573321][ T5492]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  100.576272][ T5492]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.578920][ T5492]  dax_iomap_fault+0x8ab/0x18d0
[  100.581450][ T5492]  ? stack_depot_save_flags+0x41b/0x860
[  100.583704][ T5492]  ? __pfx_dax_iomap_fault+0x10/0x10
[  100.586207][ T5492]  ? kasan_save_track+0x4f/0x80
[  100.588440][ T5492]  ? kasan_save_track+0x3e/0x80
[  100.590765][ T5492]  ? __kasan_slab_alloc+0x6c/0x80
[  100.593153][ T5492]  ? kmem_cache_alloc_noprof+0x367/0x6e0
[  100.595728][ T5492]  ? ptlock_alloc+0x20/0x70
[  100.597951][ T5492]  ? pte_alloc_one+0x7a/0x310
[  100.599986][ T5492]  ? __do_fault+0xd1/0x390
[  100.602000][ T5492]  ? __handle_mm_fault+0x1719/0x5400
[  100.604299][ T5492]  ? handle_mm_fault+0x40a/0x8e0
[  100.606312][ T5492]  ? __get_user_pages+0x165c/0x2a00
[  100.608807][ T5492]  ? get_user_pages_remote+0x2f1/0xac0
[  100.611331][ T5492]  ? uprobe_write+0x1b6/0x2160
[  100.613408][ T5492]  ? uprobe_write_opcode+0xa8/0xf0
[  100.615595][ T5492]  ? set_swbp+0x121/0x290
[  100.617474][ T5492]  ? install_breakpoint+0x451/0x5a0
[  100.619633][ T5492]  ? register_for_each_vma+0xabb/0xc30
[  100.621866][ T5492]  ? uprobe_apply+0xfb/0x270
[  100.623845][ T5492]  ? trace_uprobe_register+0x4df/0x560
[  100.626118][ T5492]  ? perf_trace_event_init+0x19a/0x9d0
[  100.628166][ T5492]  ? perf_uprobe_init+0x12e/0x1a0
[  100.630375][ T5492]  ? perf_uprobe_event_init+0xe6/0x180
[  100.632707][ T5492]  ? perf_try_init_event+0x17f/0x870
[  100.635045][ T5492]  ? perf_event_alloc+0x133e/0x2be0
[  100.637367][ T5492]  ? __se_sys_perf_event_open+0x772/0x1d70
[  100.639954][ T5492]  ? do_syscall_64+0xfa/0xfa0
[  100.641940][ T5492]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.644347][ T5492]  ? __raw_spin_lock_init+0x45/0x100
[  100.646375][ T5492]  ? pte_alloc_one+0x1f9/0x310
[  100.648414][ T5492]  __do_fault+0x138/0x390
[  100.649987][ T5492]  __handle_mm_fault+0x1719/0x5400
[  100.652086][ T5492]  ? __pfx___handle_mm_fault+0x10/0x10
[  100.654160][ T5492]  ? __pfx___might_resched+0x10/0x10
[  100.656276][ T5492]  handle_mm_fault+0x40a/0x8e0
[  100.658418][ T5492]  __get_user_pages+0x165c/0x2a00
[  100.660626][ T5492]  get_user_pages_remote+0x2f1/0xac0
[  100.663036][ T5492]  ? iomap_iter_advance+0x282/0x2f0
[  100.665204][ T5492]  ? __pfx_get_user_pages_remote+0x10/0x10
[  100.667800][ T5492]  ? insn_get_prefixes+0xe6e/0x1ca0
[  100.670141][ T5492]  uprobe_write+0x1b6/0x2160
[  100.672184][ T5492]  ? insn_get_opcode+0xb12/0x11b0
[  100.674385][ T5492]  ? __pfx_verify_opcode+0x10/0x10
[  100.676701][ T5492]  ? __pfx_uprobe_write+0x10/0x10
[  100.679112][ T5492]  ? insn_get_immediate+0x32a/0x1280
[  100.681552][ T5492]  ? insn_get_modrm+0x57/0x7d0
[  100.683664][ T5492]  uprobe_write_opcode+0xa8/0xf0
[  100.685869][ T5492]  ? insn_rip_relative+0xc6/0x130
[  100.688141][ T5492]  ? __pfx_uprobe_write_opcode+0x10/0x10
[  100.690679][ T5492]  ? arch_uprobe_analyze_insn+0xc77/0x1400
[  100.693721][ T5492]  set_swbp+0x121/0x290
[  100.695854][ T5492]  ? __pfx_set_swbp+0x10/0x10
[  100.698046][ T5492]  install_breakpoint+0x451/0x5a0
[  100.700450][ T5492]  register_for_each_vma+0xabb/0xc30
[  100.702709][ T5492]  ? uprobe_apply+0x75/0x270
[  100.704697][ T5492]  uprobe_apply+0xfb/0x270
[  100.706709][ T5492]  trace_uprobe_register+0x4df/0x560
[  100.709081][ T5492]  perf_trace_event_init+0x19a/0x9d0
[  100.711320][ T5492]  perf_uprobe_init+0x12e/0x1a0
[  100.713395][ T5492]  perf_uprobe_event_init+0xe6/0x180
[  100.715775][ T5492]  perf_try_init_event+0x17f/0x870
[  100.718251][ T5492]  ? perf_event_alloc+0xf61/0x2be0
[  100.720640][ T5492]  perf_event_alloc+0x133e/0x2be0
[  100.722891][ T5492]  ? perf_event_alloc+0xf61/0x2be0
[  100.725132][ T5492]  ? __pfx_perf_event_alloc+0x10/0x10
[  100.727596][ T5492]  ? find_lively_task_by_vpid+0x19/0x290
[  100.730064][ T5492]  ? find_lively_task_by_vpid+0x19/0x290
[  100.732570][ T5492]  ? find_lively_task_by_vpid+0x19/0x290
[  100.735039][ T5492]  __se_sys_perf_event_open+0x772/0x1d70
[  100.737529][ T5492]  ? up_write+0x1c4/0x420
[  100.739478][ T5492]  ? __pfx___se_sys_perf_event_open+0x10/0x10
[  100.742194][ T5492]  ? __pfx___se_sys_futex+0x10/0x10
[  100.744534][ T5492]  ? fput+0xa0/0xd0
[  100.746259][ T5492]  ? do_syscall_64+0xbe/0xfa0
[  100.748345][ T5492]  ? __x64_sys_perf_event_open+0x20/0xc0
[  100.750857][ T5492]  do_syscall_64+0xfa/0xfa0
[  100.752955][ T5492]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.755243][ T5492]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.757796][ T5492]  ? clear_bhb_loop+0x60/0xb0
[  100.759840][ T5492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.762370][ T5492] RIP: 0033:0x7fe38998f6c9
[  100.764413][ T5492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.772219][ T5492] RSP: 002b:00007ffe19690378 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  100.775667][ T5492] RAX: ffffffffffffffda RBX: 00007fe389be5fa0 RCX: 00007fe38998f6c9
[  100.779051][ T5492] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000000c0
[  100.782500][ T5492] RBP: 00007fe389a11f91 R08: 0000000000000000 R09: 0000000000000000
[  100.786004][ T5492] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  100.789462][ T5492] R13: 00007fe389be5fa0 R14: 00007fe389be5fa0 R15: 0000000000000005
[  100.793014][ T5492]  </TASK>
[  100.794774][ T5492] Kernel Offset: disabled
[  100.796611][ T5492] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:38:57  Registers:
info registers vcpu 0

CPU#0
RAX=1ffffffff335f005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=0000000000000000 RDI=0000000000000020 RBP=ffffc90002b7e230 RSP=ffffc90002b7e058
R8 =0000000000000003 R9 =0000000000000004 R10=dffffc0000000000 R11=ffffffff85166b40
R12=dffffc0000000000 R13=dffffc0000000000 R14=ffffffff99af8320 R15=0000000000000000
RIP=ffffffff85166bb7 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555581eb2500 ffffffff 00c00000
GS =0000 ffff88808d730000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000557f23763138 CR3=00000000424dd000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe19690650 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe389a13050
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe389a1305d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe389a13057
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe389a1306b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe389a130f1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe389a131cf
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000