Warning: Permanently added '[localhost]:19260' (ECDSA) to the list of known hosts. 2025/08/31 16:23:33 fuzzer started 2025/08/31 16:23:33 dialing manager at localhost:43077 syzkaller login: [ 52.176098] cgroup: Unknown subsys name 'net' [ 52.263909] cgroup: Unknown subsys name 'cpuset' [ 52.285278] cgroup: Unknown subsys name 'rlimit' 2025/08/31 16:23:44 syscalls: 2214 2025/08/31 16:23:44 code coverage: enabled 2025/08/31 16:23:44 comparison tracing: enabled 2025/08/31 16:23:44 extra coverage: enabled 2025/08/31 16:23:44 setuid sandbox: enabled 2025/08/31 16:23:44 namespace sandbox: enabled 2025/08/31 16:23:44 Android sandbox: enabled 2025/08/31 16:23:44 fault injection: enabled 2025/08/31 16:23:44 leak checking: enabled 2025/08/31 16:23:44 net packet injection: enabled 2025/08/31 16:23:44 net device setup: enabled 2025/08/31 16:23:44 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/31 16:23:44 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/31 16:23:44 USB emulation: enabled 2025/08/31 16:23:44 hci packet injection: enabled 2025/08/31 16:23:44 wifi device emulation: enabled 2025/08/31 16:23:44 802.15.4 emulation: enabled 2025/08/31 16:23:44 fetching corpus: 50, signal 20725/22536 (executing program) 2025/08/31 16:23:44 fetching corpus: 100, signal 28554/32051 (executing program) 2025/08/31 16:23:44 fetching corpus: 150, signal 40323/45244 (executing program) 2025/08/31 16:23:44 fetching corpus: 200, signal 47931/54191 (executing program) 2025/08/31 16:23:44 fetching corpus: 250, signal 54301/61806 (executing program) 2025/08/31 16:23:44 fetching corpus: 300, signal 58374/67196 (executing program) 2025/08/31 16:23:44 fetching corpus: 350, signal 61431/71530 (executing program) 2025/08/31 16:23:44 fetching corpus: 400, signal 63620/75025 (executing program) 2025/08/31 16:23:45 fetching corpus: 450, signal 67831/80367 (executing program) 2025/08/31 16:23:45 fetching corpus: 500, signal 70839/84506 (executing program) 2025/08/31 16:23:45 fetching corpus: 550, signal 72578/87450 (executing program) 2025/08/31 16:23:45 fetching corpus: 600, signal 75122/91128 (executing program) 2025/08/31 16:23:45 fetching corpus: 650, signal 77334/94427 (executing program) 2025/08/31 16:23:45 fetching corpus: 700, signal 79654/97791 (executing program) 2025/08/31 16:23:45 fetching corpus: 750, signal 83309/102274 (executing program) 2025/08/31 16:23:45 fetching corpus: 800, signal 86124/105928 (executing program) 2025/08/31 16:23:45 fetching corpus: 850, signal 88333/109023 (executing program) 2025/08/31 16:23:45 fetching corpus: 900, signal 90071/111724 (executing program) 2025/08/31 16:23:45 fetching corpus: 950, signal 91841/114372 (executing program) 2025/08/31 16:23:45 fetching corpus: 1000, signal 93763/117135 (executing program) 2025/08/31 16:23:46 fetching corpus: 1050, signal 95192/119478 (executing program) 2025/08/31 16:23:46 fetching corpus: 1100, signal 96729/121852 (executing program) 2025/08/31 16:23:46 fetching corpus: 1150, signal 98682/124525 (executing program) 2025/08/31 16:23:46 fetching corpus: 1200, signal 100677/127274 (executing program) 2025/08/31 16:23:46 fetching corpus: 1250, signal 101769/129215 (executing program) 2025/08/31 16:23:46 fetching corpus: 1300, signal 105526/133195 (executing program) 2025/08/31 16:23:46 fetching corpus: 1350, signal 106930/135350 (executing program) 2025/08/31 16:23:46 fetching corpus: 1400, signal 108077/137299 (executing program) 2025/08/31 16:23:46 fetching corpus: 1450, signal 109640/139511 (executing program) 2025/08/31 16:23:46 fetching corpus: 1500, signal 110508/141198 (executing program) 2025/08/31 16:23:46 fetching corpus: 1550, signal 111516/142955 (executing program) 2025/08/31 16:23:46 fetching corpus: 1600, signal 112827/144919 (executing program) 2025/08/31 16:23:47 fetching corpus: 1650, signal 113987/146672 (executing program) 2025/08/31 16:23:47 fetching corpus: 1700, signal 114929/148349 (executing program) 2025/08/31 16:23:47 fetching corpus: 1750, signal 116334/150268 (executing program) 2025/08/31 16:23:47 fetching corpus: 1800, signal 117526/151978 (executing program) 2025/08/31 16:23:47 fetching corpus: 1850, signal 118709/153715 (executing program) 2025/08/31 16:23:47 fetching corpus: 1900, signal 120061/155545 (executing program) 2025/08/31 16:23:47 fetching corpus: 1950, signal 121289/157251 (executing program) 2025/08/31 16:23:47 fetching corpus: 2000, signal 122454/158932 (executing program) 2025/08/31 16:23:47 fetching corpus: 2050, signal 123295/160356 (executing program) 2025/08/31 16:23:47 fetching corpus: 2100, signal 124461/161952 (executing program) 2025/08/31 16:23:47 fetching corpus: 2150, signal 125268/163448 (executing program) 2025/08/31 16:23:48 fetching corpus: 2200, signal 126190/164922 (executing program) 2025/08/31 16:23:48 fetching corpus: 2250, signal 126758/166109 (executing program) 2025/08/31 16:23:48 fetching corpus: 2300, signal 127389/167318 (executing program) 2025/08/31 16:23:48 fetching corpus: 2350, signal 128236/168718 (executing program) 2025/08/31 16:23:48 fetching corpus: 2400, signal 129090/170085 (executing program) 2025/08/31 16:23:48 fetching corpus: 2450, signal 129514/171152 (executing program) 2025/08/31 16:23:48 fetching corpus: 2500, signal 130038/172304 (executing program) 2025/08/31 16:23:48 fetching corpus: 2550, signal 131313/173866 (executing program) 2025/08/31 16:23:48 fetching corpus: 2600, signal 132028/175052 (executing program) 2025/08/31 16:23:48 fetching corpus: 2650, signal 132689/176220 (executing program) 2025/08/31 16:23:48 fetching corpus: 2700, signal 133248/177337 (executing program) 2025/08/31 16:23:48 fetching corpus: 2750, signal 133718/178434 (executing program) 2025/08/31 16:23:48 fetching corpus: 2800, signal 134410/179563 (executing program) 2025/08/31 16:23:49 fetching corpus: 2850, signal 135525/180987 (executing program) 2025/08/31 16:23:49 fetching corpus: 2900, signal 136159/182100 (executing program) 2025/08/31 16:23:49 fetching corpus: 2950, signal 137071/183314 (executing program) 2025/08/31 16:23:49 fetching corpus: 3000, signal 137608/184387 (executing program) 2025/08/31 16:23:49 fetching corpus: 3050, signal 138356/185558 (executing program) 2025/08/31 16:23:49 fetching corpus: 3100, signal 139553/186875 (executing program) 2025/08/31 16:23:49 fetching corpus: 3150, signal 140327/188008 (executing program) 2025/08/31 16:23:49 fetching corpus: 3200, signal 140899/189074 (executing program) 2025/08/31 16:23:49 fetching corpus: 3250, signal 141819/190153 (executing program) 2025/08/31 16:23:49 fetching corpus: 3300, signal 142366/191119 (executing program) 2025/08/31 16:23:49 fetching corpus: 3350, signal 142821/192042 (executing program) 2025/08/31 16:23:49 fetching corpus: 3400, signal 143373/192985 (executing program) 2025/08/31 16:23:49 fetching corpus: 3450, signal 143731/193892 (executing program) 2025/08/31 16:23:50 fetching corpus: 3500, signal 144155/194785 (executing program) 2025/08/31 16:23:50 fetching corpus: 3550, signal 144738/195708 (executing program) 2025/08/31 16:23:50 fetching corpus: 3600, signal 145218/196619 (executing program) 2025/08/31 16:23:50 fetching corpus: 3650, signal 145697/197535 (executing program) 2025/08/31 16:23:50 fetching corpus: 3700, signal 146297/198478 (executing program) 2025/08/31 16:23:50 fetching corpus: 3750, signal 146805/199379 (executing program) 2025/08/31 16:23:50 fetching corpus: 3800, signal 147245/200216 (executing program) 2025/08/31 16:23:50 fetching corpus: 3850, signal 147612/201022 (executing program) 2025/08/31 16:23:50 fetching corpus: 3900, signal 148241/201905 (executing program) 2025/08/31 16:23:50 fetching corpus: 3950, signal 148615/202677 (executing program) 2025/08/31 16:23:50 fetching corpus: 4000, signal 149184/203513 (executing program) 2025/08/31 16:23:51 fetching corpus: 4050, signal 149766/204435 (executing program) 2025/08/31 16:23:51 fetching corpus: 4100, signal 150275/205260 (executing program) 2025/08/31 16:23:51 fetching corpus: 4150, signal 150652/206011 (executing program) 2025/08/31 16:23:51 fetching corpus: 4200, signal 151256/206825 (executing program) 2025/08/31 16:23:51 fetching corpus: 4250, signal 151938/207699 (executing program) 2025/08/31 16:23:51 fetching corpus: 4300, signal 152335/208426 (executing program) 2025/08/31 16:23:51 fetching corpus: 4350, signal 152661/209169 (executing program) 2025/08/31 16:23:51 fetching corpus: 4400, signal 153218/210005 (executing program) 2025/08/31 16:23:51 fetching corpus: 4450, signal 154207/210845 (executing program) 2025/08/31 16:23:51 fetching corpus: 4500, signal 154569/211570 (executing program) 2025/08/31 16:23:51 fetching corpus: 4550, signal 154960/212285 (executing program) 2025/08/31 16:23:52 fetching corpus: 4600, signal 155295/212982 (executing program) 2025/08/31 16:23:52 fetching corpus: 4650, signal 155869/213703 (executing program) 2025/08/31 16:23:52 fetching corpus: 4700, signal 156392/214420 (executing program) 2025/08/31 16:23:52 fetching corpus: 4750, signal 156720/215064 (executing program) 2025/08/31 16:23:52 fetching corpus: 4800, signal 157092/215742 (executing program) 2025/08/31 16:23:52 fetching corpus: 4850, signal 157475/216432 (executing program) 2025/08/31 16:23:52 fetching corpus: 4900, signal 157958/217087 (executing program) 2025/08/31 16:23:52 fetching corpus: 4950, signal 158289/217753 (executing program) 2025/08/31 16:23:52 fetching corpus: 5000, signal 158735/218466 (executing program) 2025/08/31 16:23:52 fetching corpus: 5050, signal 158984/219096 (executing program) 2025/08/31 16:23:52 fetching corpus: 5100, signal 159475/219730 (executing program) 2025/08/31 16:23:52 fetching corpus: 5150, signal 159915/220348 (executing program) 2025/08/31 16:23:53 fetching corpus: 5200, signal 160366/220994 (executing program) 2025/08/31 16:23:53 fetching corpus: 5250, signal 160867/221626 (executing program) 2025/08/31 16:23:53 fetching corpus: 5300, signal 161276/222242 (executing program) 2025/08/31 16:23:53 fetching corpus: 5350, signal 161733/222876 (executing program) 2025/08/31 16:23:53 fetching corpus: 5400, signal 162739/223551 (executing program) 2025/08/31 16:23:53 fetching corpus: 5450, signal 163053/224147 (executing program) 2025/08/31 16:23:53 fetching corpus: 5500, signal 163471/224718 (executing program) 2025/08/31 16:23:53 fetching corpus: 5550, signal 163886/225305 (executing program) 2025/08/31 16:23:53 fetching corpus: 5600, signal 164233/225519 (executing program) 2025/08/31 16:23:53 fetching corpus: 5650, signal 164818/225523 (executing program) 2025/08/31 16:23:53 fetching corpus: 5700, signal 165105/225528 (executing program) 2025/08/31 16:23:53 fetching corpus: 5750, signal 165471/225549 (executing program) 2025/08/31 16:23:54 fetching corpus: 5800, signal 165858/225718 (executing program) 2025/08/31 16:23:54 fetching corpus: 5850, signal 166235/225724 (executing program) 2025/08/31 16:23:54 fetching corpus: 5900, signal 166981/225859 (executing program) 2025/08/31 16:23:54 fetching corpus: 5950, signal 167594/225864 (executing program) 2025/08/31 16:23:54 fetching corpus: 6000, signal 168139/225868 (executing program) 2025/08/31 16:23:54 fetching corpus: 6050, signal 168587/225873 (executing program) 2025/08/31 16:23:54 fetching corpus: 6100, signal 169045/225996 (executing program) 2025/08/31 16:23:54 fetching corpus: 6150, signal 169383/225997 (executing program) 2025/08/31 16:23:54 fetching corpus: 6200, signal 169875/226006 (executing program) 2025/08/31 16:23:54 fetching corpus: 6250, signal 170115/226008 (executing program) 2025/08/31 16:23:54 fetching corpus: 6300, signal 170508/226011 (executing program) 2025/08/31 16:23:54 fetching corpus: 6350, signal 170925/226012 (executing program) 2025/08/31 16:23:55 fetching corpus: 6400, signal 171203/226027 (executing program) 2025/08/31 16:23:55 fetching corpus: 6450, signal 171660/226112 (executing program) 2025/08/31 16:23:55 fetching corpus: 6500, signal 171939/226122 (executing program) 2025/08/31 16:23:55 fetching corpus: 6550, signal 172404/226124 (executing program) 2025/08/31 16:23:55 fetching corpus: 6600, signal 172933/226250 (executing program) 2025/08/31 16:23:55 fetching corpus: 6650, signal 173466/226298 (executing program) 2025/08/31 16:23:55 fetching corpus: 6700, signal 173913/226339 (executing program) 2025/08/31 16:23:55 fetching corpus: 6750, signal 174369/226343 (executing program) 2025/08/31 16:23:55 fetching corpus: 6800, signal 174692/226347 (executing program) 2025/08/31 16:23:55 fetching corpus: 6850, signal 174982/226366 (executing program) 2025/08/31 16:23:55 fetching corpus: 6900, signal 175276/226369 (executing program) 2025/08/31 16:23:55 fetching corpus: 6950, signal 175722/226369 (executing program) 2025/08/31 16:23:56 fetching corpus: 7000, signal 176006/226374 (executing program) 2025/08/31 16:23:56 fetching corpus: 7050, signal 176316/226378 (executing program) 2025/08/31 16:23:56 fetching corpus: 7100, signal 176650/226378 (executing program) 2025/08/31 16:23:56 fetching corpus: 7150, signal 176926/226379 (executing program) 2025/08/31 16:23:56 fetching corpus: 7200, signal 177638/226397 (executing program) 2025/08/31 16:23:56 fetching corpus: 7250, signal 177884/226416 (executing program) 2025/08/31 16:23:56 fetching corpus: 7300, signal 178134/226424 (executing program) 2025/08/31 16:23:56 fetching corpus: 7350, signal 178466/226427 (executing program) 2025/08/31 16:23:56 fetching corpus: 7400, signal 178757/226429 (executing program) 2025/08/31 16:23:56 fetching corpus: 7450, signal 179123/226430 (executing program) 2025/08/31 16:23:56 fetching corpus: 7500, signal 179404/226436 (executing program) 2025/08/31 16:23:57 fetching corpus: 7550, signal 179692/226455 (executing program) 2025/08/31 16:23:57 fetching corpus: 7600, signal 180067/226456 (executing program) 2025/08/31 16:23:57 fetching corpus: 7650, signal 180446/226463 (executing program) 2025/08/31 16:23:57 fetching corpus: 7700, signal 180813/226469 (executing program) 2025/08/31 16:23:57 fetching corpus: 7750, signal 181081/226470 (executing program) 2025/08/31 16:23:57 fetching corpus: 7800, signal 181411/226471 (executing program) 2025/08/31 16:23:57 fetching corpus: 7850, signal 181665/226477 (executing program) 2025/08/31 16:23:57 fetching corpus: 7900, signal 181940/226478 (executing program) 2025/08/31 16:23:57 fetching corpus: 7950, signal 182305/226480 (executing program) 2025/08/31 16:23:57 fetching corpus: 8000, signal 182687/226495 (executing program) 2025/08/31 16:23:57 fetching corpus: 8050, signal 183001/226529 (executing program) 2025/08/31 16:23:58 fetching corpus: 8100, signal 183796/226548 (executing program) 2025/08/31 16:23:58 fetching corpus: 8150, signal 184130/226553 (executing program) 2025/08/31 16:23:58 fetching corpus: 8200, signal 184337/226563 (executing program) 2025/08/31 16:23:58 fetching corpus: 8250, signal 184652/226565 (executing program) 2025/08/31 16:23:58 fetching corpus: 8300, signal 185095/226572 (executing program) 2025/08/31 16:23:58 fetching corpus: 8350, signal 185372/226575 (executing program) 2025/08/31 16:23:58 fetching corpus: 8400, signal 185591/226575 (executing program) 2025/08/31 16:23:58 fetching corpus: 8450, signal 185920/226575 (executing program) 2025/08/31 16:23:58 fetching corpus: 8500, signal 186067/226578 (executing program) 2025/08/31 16:23:58 fetching corpus: 8550, signal 186447/226580 (executing program) 2025/08/31 16:23:58 fetching corpus: 8600, signal 186658/226582 (executing program) 2025/08/31 16:23:58 fetching corpus: 8650, signal 186910/226590 (executing program) 2025/08/31 16:23:58 fetching corpus: 8700, signal 187113/226591 (executing program) 2025/08/31 16:23:58 fetching corpus: 8750, signal 187440/226601 (executing program) 2025/08/31 16:23:59 fetching corpus: 8800, signal 187773/226603 (executing program) 2025/08/31 16:23:59 fetching corpus: 8850, signal 187958/226604 (executing program) 2025/08/31 16:23:59 fetching corpus: 8900, signal 188265/226617 (executing program) 2025/08/31 16:23:59 fetching corpus: 8950, signal 188746/226617 (executing program) 2025/08/31 16:23:59 fetching corpus: 9000, signal 188982/226625 (executing program) 2025/08/31 16:23:59 fetching corpus: 9050, signal 189194/226630 (executing program) 2025/08/31 16:23:59 fetching corpus: 9100, signal 189499/226639 (executing program) 2025/08/31 16:23:59 fetching corpus: 9150, signal 189855/226642 (executing program) 2025/08/31 16:23:59 fetching corpus: 9200, signal 190055/226643 (executing program) 2025/08/31 16:23:59 fetching corpus: 9250, signal 190276/226645 (executing program) 2025/08/31 16:23:59 fetching corpus: 9300, signal 190557/226646 (executing program) 2025/08/31 16:23:59 fetching corpus: 9350, signal 190759/226649 (executing program) 2025/08/31 16:24:00 fetching corpus: 9400, signal 191114/226661 (executing program) 2025/08/31 16:24:00 fetching corpus: 9450, signal 191316/226662 (executing program) 2025/08/31 16:24:00 fetching corpus: 9500, signal 191531/226667 (executing program) 2025/08/31 16:24:00 fetching corpus: 9550, signal 191789/226670 (executing program) 2025/08/31 16:24:00 fetching corpus: 9600, signal 192051/226689 (executing program) 2025/08/31 16:24:00 fetching corpus: 9650, signal 192315/226697 (executing program) 2025/08/31 16:24:00 fetching corpus: 9700, signal 192682/226701 (executing program) 2025/08/31 16:24:00 fetching corpus: 9750, signal 193030/226708 (executing program) 2025/08/31 16:24:00 fetching corpus: 9800, signal 193205/226709 (executing program) 2025/08/31 16:24:00 fetching corpus: 9850, signal 193428/226739 (executing program) 2025/08/31 16:24:01 fetching corpus: 9900, signal 193599/226742 (executing program) 2025/08/31 16:24:01 fetching corpus: 9950, signal 193920/226749 (executing program) 2025/08/31 16:24:01 fetching corpus: 10000, signal 194115/226749 (executing program) 2025/08/31 16:24:01 fetching corpus: 10050, signal 194506/226751 (executing program) 2025/08/31 16:24:01 fetching corpus: 10100, signal 194709/226751 (executing program) 2025/08/31 16:24:01 fetching corpus: 10150, signal 194946/226751 (executing program) 2025/08/31 16:24:01 fetching corpus: 10200, signal 195155/226752 (executing program) 2025/08/31 16:24:01 fetching corpus: 10250, signal 195530/226755 (executing program) 2025/08/31 16:24:01 fetching corpus: 10300, signal 195768/226770 (executing program) 2025/08/31 16:24:01 fetching corpus: 10350, signal 196120/226774 (executing program) 2025/08/31 16:24:01 fetching corpus: 10400, signal 196465/226779 (executing program) 2025/08/31 16:24:01 fetching corpus: 10450, signal 196677/226779 (executing program) 2025/08/31 16:24:02 fetching corpus: 10500, signal 196817/226783 (executing program) 2025/08/31 16:24:02 fetching corpus: 10550, signal 197179/226784 (executing program) 2025/08/31 16:24:02 fetching corpus: 10600, signal 197469/226793 (executing program) 2025/08/31 16:24:02 fetching corpus: 10650, signal 197645/226793 (executing program) 2025/08/31 16:24:02 fetching corpus: 10700, signal 197807/226802 (executing program) 2025/08/31 16:24:02 fetching corpus: 10750, signal 197993/226802 (executing program) 2025/08/31 16:24:02 fetching corpus: 10800, signal 198158/226814 (executing program) 2025/08/31 16:24:02 fetching corpus: 10850, signal 198369/226814 (executing program) 2025/08/31 16:24:02 fetching corpus: 10900, signal 198573/226828 (executing program) 2025/08/31 16:24:03 fetching corpus: 10950, signal 198765/226830 (executing program) 2025/08/31 16:24:03 fetching corpus: 11000, signal 198897/226832 (executing program) 2025/08/31 16:24:03 fetching corpus: 11050, signal 199075/226836 (executing program) 2025/08/31 16:24:03 fetching corpus: 11100, signal 199297/226837 (executing program) 2025/08/31 16:24:03 fetching corpus: 11150, signal 199497/226838 (executing program) 2025/08/31 16:24:03 fetching corpus: 11200, signal 199627/226839 (executing program) 2025/08/31 16:24:03 fetching corpus: 11250, signal 200015/226846 (executing program) 2025/08/31 16:24:03 fetching corpus: 11300, signal 200201/226851 (executing program) 2025/08/31 16:24:03 fetching corpus: 11350, signal 200406/226851 (executing program) 2025/08/31 16:24:03 fetching corpus: 11400, signal 200721/226856 (executing program) 2025/08/31 16:24:03 fetching corpus: 11450, signal 200936/226862 (executing program) 2025/08/31 16:24:04 fetching corpus: 11500, signal 201177/226865 (executing program) 2025/08/31 16:24:04 fetching corpus: 11550, signal 201310/226865 (executing program) 2025/08/31 16:24:04 fetching corpus: 11600, signal 201605/226866 (executing program) 2025/08/31 16:24:04 fetching corpus: 11650, signal 201832/226906 (executing program) 2025/08/31 16:24:04 fetching corpus: 11700, signal 201964/226910 (executing program) 2025/08/31 16:24:04 fetching corpus: 11750, signal 202172/226915 (executing program) 2025/08/31 16:24:04 fetching corpus: 11800, signal 202370/226915 (executing program) 2025/08/31 16:24:04 fetching corpus: 11850, signal 202548/226915 (executing program) 2025/08/31 16:24:04 fetching corpus: 11900, signal 202700/226916 (executing program) 2025/08/31 16:24:04 fetching corpus: 11950, signal 202827/226920 (executing program) 2025/08/31 16:24:04 fetching corpus: 12000, signal 202985/226922 (executing program) 2025/08/31 16:24:04 fetching corpus: 12050, signal 203183/226930 (executing program) 2025/08/31 16:24:05 fetching corpus: 12100, signal 203349/226932 (executing program) 2025/08/31 16:24:05 fetching corpus: 12150, signal 203556/226944 (executing program) 2025/08/31 16:24:05 fetching corpus: 12200, signal 203741/226944 (executing program) 2025/08/31 16:24:05 fetching corpus: 12250, signal 203883/226945 (executing program) 2025/08/31 16:24:05 fetching corpus: 12300, signal 204038/226956 (executing program) 2025/08/31 16:24:05 fetching corpus: 12350, signal 204240/226956 (executing program) 2025/08/31 16:24:05 fetching corpus: 12400, signal 204372/226966 (executing program) 2025/08/31 16:24:05 fetching corpus: 12450, signal 204537/226983 (executing program) 2025/08/31 16:24:05 fetching corpus: 12500, signal 204767/226988 (executing program) 2025/08/31 16:24:05 fetching corpus: 12550, signal 204907/226988 (executing program) 2025/08/31 16:24:05 fetching corpus: 12600, signal 205073/226988 (executing program) 2025/08/31 16:24:05 fetching corpus: 12600, signal 205073/226988 (executing program) 2025/08/31 16:24:07 starting 8 fuzzer processes 16:24:07 executing program 0: r0 = timerfd_create(0x7, 0x0) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) timerfd_settime(r1, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, &(0x7f0000000080)) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2800, 0x0) timerfd_gettime(r2, &(0x7f0000000100)) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, &(0x7f0000000140)) r3 = syz_open_dev$vcsu(&(0x7f00000001c0), 0xfffffffffffff4c6, 0x101c01) close_range(r1, r3, 0x2) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000200)) dup(r0) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) timerfd_settime(r1, 0x1, &(0x7f0000000280)={{r4, r5+10000000}, {0x0, 0x3938700}}, &(0x7f00000002c0)) r6 = open_tree(r3, &(0x7f0000000300)='./file0\x00', 0x0) getsockopt$EBT_SO_GET_ENTRIES(r6, 0x0, 0x81, &(0x7f0000000440)={'filter\x00', 0x0, 0x3, 0x59, [0x1de2d1ea, 0x3, 0x593, 0xeeb2, 0x9, 0x7], 0x8, &(0x7f0000000340)=[{}, {}, {}, {}, {}, {}, {}, {}], &(0x7f00000003c0)=""/89}, &(0x7f00000004c0)=0x78) openat$hpet(0xffffffffffffff9c, &(0x7f0000000500), 0x4000, 0x0) pipe(&(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) pread64(r7, &(0x7f0000000580)=""/132, 0x84, 0x0) r9 = syz_open_pts(r8, 0x8401) close_range(r7, r9, 0x0) ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(0xffffffffffffffff, 0x80083314, &(0x7f0000000680)) 16:24:07 executing program 1: sync() sync() sync() sync() sync() sync() clock_gettime(0x6, &(0x7f0000000000)) sync() sync() sync() sync() sync() sync() r0 = semget(0x1, 0x4, 0x482) semtimedop(r0, &(0x7f0000000040)=[{0x1, 0x6, 0x400}], 0x1, &(0x7f0000000080)={0x0, 0x3938700}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) epoll_pwait2(r1, &(0x7f0000000100)=[{}], 0x1, &(0x7f0000000140), &(0x7f0000000180)={[0xb4ab]}, 0x8) sync() sync() sync() 16:24:07 executing program 7: r0 = getpgrp(0x0) prlimit64(r0, 0x8, &(0x7f0000000000)={0x9, 0x3ff}, &(0x7f0000000040)) prlimit64(r0, 0xd, &(0x7f0000000080)={0x1f, 0xe4}, &(0x7f00000000c0)) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x180, 0x0) r1 = getpgid(r0) getpgrp(r1) tgkill(r0, r1, 0x2e) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xfe, 0x2, 0x3, 0xf8, 0x0, 0x8, 0x140, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xf4d, 0x2, @perf_config_ext={0x10001, 0x8}, 0x0, 0x3b2, 0x1, 0x5, 0x6, 0xa32, 0x50c4, 0x0, 0x1ff, 0x0, 0x5}, r0, 0x0, 0xffffffffffffffff, 0x2) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000380)={0x0, 0x0}) rt_tgsigqueueinfo(r2, r1, 0x1a, &(0x7f0000000400)={0xf, 0x5, 0x6}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002480)=[{{&(0x7f0000000480), 0x6e, &(0x7f0000000780)=[{&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000600)=""/73, 0x49}, {&(0x7f0000000680)=""/9, 0x9}, {&(0x7f00000006c0)=""/90, 0x5a}, {&(0x7f0000000740)=""/59, 0x3b}], 0x5}}, {{&(0x7f0000000800), 0x6e, &(0x7f0000001e00)=[{&(0x7f0000000880)=""/214, 0xd6}, {&(0x7f0000000980)=""/61, 0x3d}, {&(0x7f00000009c0)=""/144, 0x90}, {&(0x7f0000000a80)=""/193, 0xc1}, {&(0x7f0000000b80)=""/4096, 0x1000}, {&(0x7f0000001b80)=""/195, 0xc3}, {&(0x7f0000001c80)=""/101, 0x65}, {&(0x7f0000001d00)=""/228, 0xe4}], 0x8, &(0x7f0000001e80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}}, {{&(0x7f0000001fc0), 0x6e, &(0x7f0000002140)=[{&(0x7f0000002040)=""/93, 0x5d}, {&(0x7f00000020c0)=""/92, 0x5c}], 0x2, &(0x7f0000002180)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f00000021c0), 0x6e, &(0x7f0000002380)=[{&(0x7f0000002240)=""/198, 0xc6}, {&(0x7f0000002340)=""/3, 0x3}], 0x2, &(0x7f00000023c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}], 0x4, 0x100, &(0x7f0000002580)) capset(&(0x7f00000025c0)={0x19980330, r3}, &(0x7f0000002600)={0x3, 0xffff, 0x1, 0x4000, 0x7, 0x5a}) chroot(&(0x7f0000002640)='./file0\x00') waitid$P_PIDFD(0x3, r4, &(0x7f0000002680), 0x1000000, 0x0) removexattr(&(0x7f0000002700)='./file0\x00', &(0x7f0000002740)=@random={'btrfs.', '\x00'}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r5, 0xc018937e, &(0x7f0000002780)={{0x1, 0x1, 0x18, r7, @out_args}, './file0\x00'}) ioctl$EXT4_IOC_MIGRATE(r8, 0x6609) setrlimit(0xa, &(0x7f00000027c0)={0x100000000, 0x101}) ioctl$TIOCGPGRP(r6, 0x540f, &(0x7f0000002800)=0x0) syz_open_procfs$namespace(r9, &(0x7f0000002840)='ns/uts\x00') 16:24:07 executing program 2: ioctl$FAT_IOCTL_GET_ATTRIBUTES(0xffffffffffffffff, 0x80047210, &(0x7f0000000000)) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)={{0x107, 0x2, 0xdf, 0x251, 0x22c, 0x9, 0x3ca, 0x3}, "e515cd3fcffec1ebcd852dce5c456d15f8958645e9e0a575068844023328996692787ac7078a0cb5dfb1502002bd228bd98a1c", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x853) setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000900)=0x2, 0x4) write$vga_arbiter(r0, &(0x7f0000000940)=@unlock_all, 0xb) setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000980)=0x1, 0x4) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f00000009c0)) readahead(r0, 0x41e7, 0x1) ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f0000000a40)={0x3, 0x1, 0x7, 0x1}) write$vga_arbiter(r0, &(0x7f0000000a80)=@target={'target ', {'PCI:', '12', ':', '17', ':', '4', '.', '0'}}, 0x15) sendto$inet(0xffffffffffffffff, &(0x7f0000000ac0)="f21c50164d940076d46ec2488cca50d49703aed8dd429f7ba020a75afd307dd11574c65d07d0b03911589343b8d089851a5d4ac56a84a1b9bb", 0x39, 0x4000, 0x0, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000b00), 0x6, 0x301100) fremovexattr(r1, &(0x7f0000000b40)=@known='user.incfs.size\x00') getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000b80)=""/151, &(0x7f0000000c40)=0x97) splice(r1, &(0x7f0000000c80)=0xff, r0, &(0x7f0000000cc0), 0xffffffff, 0x1) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000d00), 0x4240, 0x0) setsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000000d40)=0x5, 0x4) ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000d80)={'wg0\x00'}) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000dc0)=0x2000) write$binfmt_script(r0, &(0x7f0000000e00)={'#! ', './file0', [{0x20, '\x13$-%{^.'}, {0x20, '{{'}, {}], 0xa, "5be9c123236edff15f3f86904c543a28590d6b803eaa3181042a7cb5e7a483201ffd4035a8ffffb01ce6bbe5778a65bdb44302a7c54f3634d61eac8b6c3007f9c584b1c14b9723d17d09f8519e9dc9d9b10a138eeaeb29d2e0d51bebf22890ede47fd26e27824d5e38a79a"}, 0x82) 16:24:08 executing program 3: ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000000)={0x4, 0x3f}) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000040)={0x0, 0x0, 0x2, 0x0, '\x00', [{0xffffffff, 0x80000000, 0x64d5, 0x2c99, 0x8, 0x6}, {0x0, 0xfffffff7, 0x7, 0xfffffffffffffffe, 0x101, 0x8}], ['\x00', '\x00']}) newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x2000) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x804, &(0x7f00000002c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@version_9p2000}, {@version_L}, {@access_uid={'access', 0x3d, 0xee00}}, {@privport}], [{@defcontext={'defcontext', 0x3d, 'root'}}, {@pcr={'pcr', 0x3d, 0x3f}}, {@uid_gt={'uid>', r0}}, {@context={'context', 0x3d, 'user_u'}}]}}) newfstatat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x800) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000480)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x94d}}, './file0\x00'}) flock(r1, 0x1) newfstatat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x100) newfstatat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x0) recvmsg$unix(r1, &(0x7f00000007c0)={&(0x7f0000000680)=@abs, 0x6e, &(0x7f0000000700), 0x0, &(0x7f0000000740)=[@rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x70}, 0x2002) chown(&(0x7f0000000640)='./file0\x00', r3, r2) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000800), 0x80040, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(r4, 0x4010942a, &(0x7f0000000840)={0x1, 0x9}) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r1, 0x29, 0x37, &(0x7f0000000880)={0x0, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x6}, @ra={0x5, 0x2, 0x2}]}, 0x10) ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x8030942b, &(0x7f00000008c0)={0x28f10040, {0x20, 0x3, 0x1000, 0x8, 0x4}}) r5 = geteuid() mount$9p_unix(&(0x7f0000000900)='./file0\x00', &(0x7f0000000940)='./file0\x00', &(0x7f0000000980), 0x10000, &(0x7f00000009c0)={'trans=unix,', {[{@msize={'msize', 0x3d, 0x98fe890}}, {@access_uid={'access', 0x3d, r5}}, {@afid={'afid', 0x3d, 0x80000000}}, {@loose}, {@cache_mmap}, {@uname={'uname', 0x3d, 'wfdno'}}], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) pipe2(&(0x7f0000000a80)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r6, 0xc0189372, &(0x7f0000000ac0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3f}}, './file0\x00'}) lstat(&(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40)) 16:24:08 executing program 4: r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x194, r0, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x108, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5af64333}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x22}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78f55f48}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xaad88d2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x390d682}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x58e760fa}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4bd2063e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c981b60}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2a6315ce}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x49}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x18}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x20}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x614d3311}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf1}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x50d3a602}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x93}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa1}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1b1e8fe6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x40337aae}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7737aa6a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x606e5d5f}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7ebeed26}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x529bf5e6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x89}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x78, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x51}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xdb}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56fa060c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x60}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfc}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x380a1a45}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x29b9b703}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xb688b4b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x425c1aa}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x177a21d4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bcf78ee}]}]}]}, 0x194}, 0x1, 0x0, 0x0, 0x20004041}, 0x0) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_LBT_MODE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r1, 0x0, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0xc4051}, 0x0) sendmsg$NL80211_CMD_UNEXPECTED_FRAME(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x20, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7, 0x69}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x40004}, 0x400c0) sendmsg$NLBL_MGMT_C_PROTOCOLS(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x48, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x35}}, @NLBL_MGMT_A_DOMAIN={0x6, 0x1, '*\x00'}, @NLBL_MGMT_A_DOMAIN={0x7, 0x1, ']:\x00'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private0}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xffffffffffffffff}]}, 0x48}, 0x1, 0x0, 0x0, 0x41}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000780)={&(0x7f0000000680)={0xec, r0, 0x200, 0x70bd28, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0xd8, 0xc, 0x0, 0x1, [{0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9fd4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbf28}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x40710c67}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb11d}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x38d02099}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2cb8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xadac}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x831b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6e3fc0df}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x80000001}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2b5a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcb41}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x51d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4149d70d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5d3f}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9d09}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xdd6da16}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4144db0e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe75c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x435efa98}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5fcb}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x376d3f6d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x9192000}]}]}]}, 0xec}}, 0x4000) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000840), r2) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000880)={'wpan3\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000008c0)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_DEV(r2, &(0x7f0000000a00)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000900)={0x9c, r3, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_SEC_DEVICE={0x3c, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_PAN_ID={0x6, 0x2, 0xffff}, @NL802154_DEV_ATTR_KEY_MODE={0x8}, @NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0x2}, @NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xaaa1}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5, 0x5, 0x1}]}, @NL802154_ATTR_SEC_DEVICE={0x3c, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_FRAME_COUNTER={0x6, 0x1, 0x80}, @NL802154_DEV_ATTR_KEY_MODE={0x8}, @NL802154_DEV_ATTR_PAN_ID={0x6, 0x2, 0x2}, @NL802154_DEV_ATTR_KEY_MODE={0x8}, @NL802154_DEV_ATTR_FRAME_COUNTER={0x6, 0x1, 0x5}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5}, @NL802154_DEV_ATTR_PAN_ID={0x6, 0x2, 0x1}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x40004}, 0x200008d6) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r2, &(0x7f0000000b00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x20, 0x0, 0x200, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000b80), 0xffffffffffffffff) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000c80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000bc0)={0x68, r6, 0x400, 0x70bd29, 0x4, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}]}, 0x68}, 0x1, 0x0, 0x0, 0x41}, 0x80000) r7 = syz_genetlink_get_family_id$gtp(&(0x7f0000000d00), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000dc0)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x14, r7, 0x400, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4010000}, 0x40) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000e40)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000f00)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x34, 0x0, 0x100, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x3, 0x38}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x38}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x2008048) sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f0000001000)={&(0x7f0000000f40), 0xc, &(0x7f0000000fc0)={&(0x7f0000000f80)={0x38, 0x3e9, 0x2, 0x70bd2b, 0x25dfdbfc, {0x4, 0x0, 0x1, 0xffffffffffffffff, 0x51b7, 0x40, 0x1, 0xe7b0, 0x0, 0x9}, ["", "", "", "", ""]}, 0x38}}, 0x4000850) [ 86.600756] audit: type=1400 audit(1756657448.055:7): avc: denied { execmem } for pid=276 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:24:08 executing program 5: keyctl$clear(0x7, 0xfffffffffffffffc) r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)="b0adcc4e82ab55886fa7a0f32746eb79499e2c56cc6a9e9bc8bdaa4961993ad15c2e8a60e776e9560799c623c91bdc28e18eeb0d02458193c6967ba3af5e3ee6b3d9eccf40f795ce0ec3e8373433d72e3525b5cc42523e6e5b930275401a73b9496600f4828042451a012e4ae57afce0ad671c7567025de4666197", 0x7b, 0xfffffffffffffffa) r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, r1) r3 = request_key(&(0x7f0000000180)='blacklist\x00', &(0x7f00000001c0)={'syz', 0x3}, &(0x7f0000000200)='syz', r2) keyctl$search(0xa, r0, &(0x7f00000002c0)='cifs.spnego\x00', &(0x7f0000000300)={'syz', 0x1}, r3) r4 = add_key$fscrypt_v1(&(0x7f0000000340), &(0x7f0000000380)={'fscrypt:', @desc3}, &(0x7f00000003c0)={0x0, "9f0df826806b79dde146c04577a41ffb1a3cc607a73e27a9dec14bcce84bc34ace14a166d1c9174c8878e415c963bce08b75e4591231a05841f31e73ad8cdff4", 0x36}, 0x48, r2) keyctl$link(0x8, r2, 0xfffffffffffffffd) r5 = request_key(&(0x7f0000000440)='ceph\x00', &(0x7f0000000480)={'syz', 0x1}, &(0x7f00000004c0)='syz', r4) r6 = add_key$keyring(&(0x7f0000000500), &(0x7f0000000540)={'syz', 0x2}, 0x0, 0x0, r4) keyctl$KEYCTL_MOVE(0x1e, r6, r3, r4, 0x1) keyctl$KEYCTL_MOVE(0x1e, 0x0, r1, r4, 0x0) keyctl$update(0x2, r4, &(0x7f0000000580)="28f382ae1a5beac6dc5d278e2514a0f29e7635d6ce6ea8fb38d207993cda9185dfd7dcda5719d37409fde227acdbae7ab50b084a35285aa7416e4cf25a2acedc128e484fe7df20713fd8a519b90721244f1c8635aec8f9cf177517885d7da9b607061c254b896d89", 0x68) keyctl$restrict_keyring(0x1d, r4, &(0x7f0000000600)='cifs.idmap\x00', &(0x7f0000000640)='\xfd\x00') request_key(&(0x7f0000000680)='id_resolver\x00', &(0x7f00000006c0)={'syz', 0x0}, &(0x7f0000000700)='cifs.spnego\x00', r5) r7 = add_key$keyring(&(0x7f00000007c0), &(0x7f0000000800)={'syz', 0x2}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x3}, 0x0, 0x0, r7) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000840)='logon\x00', &(0x7f0000000880)=@chain={'key_or_keyring:', r7}) keyctl$instantiate(0xc, r2, &(0x7f00000008c0)=@encrypted_update={'update ', 'ecryptfs', 0x20, 'user:', '-&'}, 0x18, r5) keyctl$read(0xb, r4, &(0x7f0000000900)=""/4096, 0x1000) 16:24:08 executing program 6: ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000)) ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000040)) r0 = accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14, 0x0) ioctl$SIOCGSTAMP(r0, 0x8906, &(0x7f0000000100)) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000180)={'ip6gre0\x00', r1, 0x29, 0x1, 0x4, 0x7, 0x20, @private0, @loopback, 0x80, 0x10, 0x6, 0x3}}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x801220}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x54, 0x0, 0x400, 0x70bd2d, 0x7573, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x10000}, @BATADV_ATTR_HOP_PENALTY={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x40}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r3}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r4 = syz_open_dev$vcsn(&(0x7f0000000440), 0x1, 0x4000) ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000600)={'ip6gre0\x00', &(0x7f0000000580)={'ip6_vti0\x00', r3, 0x4, 0x2, 0x3f, 0x1, 0xd, @private2={0xfc, 0x2, '\x00', 0x1}, @empty, 0x8, 0x20, 0x64}}) sendmsg$FOU_CMD_ADD(r4, &(0x7f00000006c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x34, 0x0, 0x20, 0x70bd2c, 0x25dfdbfb, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e22}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e22}, @FOU_ATTR_IFINDEX={0x8, 0xb, r5}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) recvmmsg(r0, &(0x7f0000002700)=[{{&(0x7f0000000800)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000940)=[{&(0x7f0000000880)=""/133, 0x85}], 0x1, &(0x7f0000000980)}, 0x7}, {{&(0x7f00000009c0)=@un=@abs, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000a40)=""/31, 0x1f}, {&(0x7f0000000a80)=""/67, 0x43}, {&(0x7f0000000b00)=""/208, 0xd0}, {&(0x7f0000000c00)=""/117, 0x75}, {&(0x7f0000000c80)=""/33, 0x21}, {&(0x7f0000000cc0)=""/99, 0x63}, {&(0x7f0000000d40)=""/217, 0xd9}], 0x7, &(0x7f0000000ec0)=""/19, 0x13}, 0xffffffff}, {{&(0x7f0000000f00)=@hci, 0x80, &(0x7f00000023c0)=[{&(0x7f0000000f80)=""/237, 0xed}, {&(0x7f0000001080)=""/230, 0xe6}, {&(0x7f0000001180)=""/198, 0xc6}, {&(0x7f0000001280)=""/137, 0x89}, {&(0x7f0000001340)=""/4096, 0x1000}, {&(0x7f0000002340)=""/114, 0x72}], 0x6}, 0x4}, {{&(0x7f0000002440)=@ll={0x11, 0x0, 0x0}, 0x80, &(0x7f00000026c0)=[{&(0x7f00000024c0)=""/223, 0xdf}, {&(0x7f00000025c0)=""/194, 0xc2}], 0x2}, 0x5}], 0x4, 0x40010060, &(0x7f0000002800)) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000002900)={'tunl0\x00', &(0x7f0000002840)={'gretap0\x00', r6, 0x80, 0x700, 0x6, 0x3, {{0x28, 0x4, 0x0, 0x8, 0xa0, 0x67, 0x0, 0xfa, 0x29, 0x0, @multicast1, @dev={0xac, 0x14, 0x14, 0x1a}, {[@timestamp_prespec={0x44, 0x24, 0x2e, 0x3, 0x6, [{@private=0xa010100, 0xa055}, {@broadcast, 0x1}, {@broadcast, 0x7}, {@loopback, 0x3}]}, @timestamp={0x44, 0x1c, 0xd9, 0x0, 0x3, [0x3ff, 0x800, 0x9, 0xae0, 0x80, 0x1]}, @noop, @noop, @generic={0x7, 0xb, "9ce21f0079b2778af4"}, @timestamp_prespec={0x44, 0x2c, 0x5a, 0x3, 0x6, [{@broadcast, 0x3b}, {@dev={0xac, 0x14, 0x14, 0x39}}, {@private=0xa010101, 0x20}, {@broadcast, 0x9b}, {@multicast2, 0x9}]}, @ssrr={0x89, 0x13, 0x8b, [@rand_addr, @multicast1, @multicast1, @dev={0xac, 0x14, 0x14, 0x23}]}]}}}}}) r7 = accept(r0, &(0x7f0000002940)=@ethernet={0x0, @random}, 0xfffffffffffffffd) ioctl$SIOCGSTAMP(r7, 0x8906, &(0x7f00000029c0)) setxattr$trusted_overlay_origin(&(0x7f0000002a00)='./file0\x00', &(0x7f0000002a40), &(0x7f0000002a80), 0x2, 0x3) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000002ac0)={{0x1, 0x1, 0x18, r4, {0x9}}, './file0\x00'}) ioctl$SIOCGSTAMP(r8, 0x8906, &(0x7f0000002b00)) r9 = syz_open_dev$vcsu(&(0x7f0000002b40), 0x401, 0x400100) dup3(r4, r9, 0x0) ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f0000002bc0)={0x100000001, 0xed4, 0x5, 0x0, 0x0, [{}, {{r4}, 0xffffffffffff2eb0}, {{r0}, 0x3f}, {{r4}, 0x2}, {{r0}, 0x10001}]}) [ 87.916506] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 87.920687] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.921871] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 87.925346] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.927156] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 87.929645] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.935622] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.938377] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 87.940733] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 87.953978] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 88.048824] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 88.063926] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 88.065789] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 88.085775] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 88.087415] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 88.091327] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 88.098900] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 88.102695] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 88.104413] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 88.107239] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 88.108516] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 88.110067] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 88.113875] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 88.115838] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 88.117672] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 88.121832] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 88.123068] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 88.124495] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 88.126563] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 88.127855] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 88.129376] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 88.136065] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 88.138323] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 88.141038] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 88.145331] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 88.146752] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 88.211796] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 88.213929] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 88.217542] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 88.223661] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 90.006182] Bluetooth: hci1: command tx timeout [ 90.007362] Bluetooth: hci0: command tx timeout [ 90.197381] Bluetooth: hci4: command tx timeout [ 90.198598] Bluetooth: hci7: command tx timeout [ 90.199540] Bluetooth: hci2: command tx timeout [ 90.200471] Bluetooth: hci3: command tx timeout [ 90.261553] Bluetooth: hci6: command tx timeout [ 90.262844] Bluetooth: hci5: command tx timeout [ 92.053332] Bluetooth: hci0: command tx timeout [ 92.054124] Bluetooth: hci1: command tx timeout [ 92.245473] Bluetooth: hci7: command tx timeout [ 92.246494] Bluetooth: hci3: command tx timeout [ 92.248180] Bluetooth: hci2: command tx timeout [ 92.248909] Bluetooth: hci4: command tx timeout [ 92.309348] Bluetooth: hci6: command tx timeout [ 92.310061] Bluetooth: hci5: command tx timeout [ 94.101344] Bluetooth: hci1: command tx timeout [ 94.102118] Bluetooth: hci0: command tx timeout [ 94.293477] Bluetooth: hci7: command tx timeout [ 94.294484] Bluetooth: hci2: command tx timeout [ 94.296293] Bluetooth: hci3: command tx timeout [ 94.296978] Bluetooth: hci4: command tx timeout [ 94.357653] Bluetooth: hci5: command tx timeout [ 94.358665] Bluetooth: hci6: command tx timeout [ 96.149373] Bluetooth: hci0: command tx timeout [ 96.149849] Bluetooth: hci1: command tx timeout [ 96.341287] Bluetooth: hci3: command tx timeout [ 96.341748] Bluetooth: hci4: command tx timeout [ 96.342144] Bluetooth: hci7: command tx timeout [ 96.342610] Bluetooth: hci2: command tx timeout [ 96.405283] Bluetooth: hci6: command tx timeout [ 96.405685] Bluetooth: hci5: command tx timeout [ 131.297358] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.298032] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 131.440251] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 131.440863] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:24:53 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000280)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYRES16, @ANYRES32=0x0, @ANYBLOB="0800061001"], 0x30}}, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r1) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f00000001c0)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000019300)={0x2c, r2, 0xd, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}]}, 0x2c}}, 0x0) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000019300)={0x2c, r4, 0xd, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}]}, 0x2c}}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan1\x00', 0x0}) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r7) ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f00000001c0)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000019300)={0x2c, r8, 0xd, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}]}, 0x2c}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_DEV(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="8c000000", @ANYRES16=0x0, @ANYBLOB="00012bbd7000fbdbdf251a00000008000300", @ANYRES32=r3, @ANYBLOB="0c000600020000000000000024002380050005000100000005000500000000000800060000000000080006000000000008000300", @ANYRES32=r5, @ANYBLOB="08000300", @ANYRES32=r6, @ANYBLOB="1a5bf7e1", @ANYRES32=0x0, @ANYBLOB="2000238006000200000000000c0004000201aaaaaaaaaaaa06000300a2aa000008000300", @ANYRES32=r9, @ANYBLOB], 0x8c}, 0x1, 0x0, 0x0, 0x4000}, 0x24000811) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), 0xffffffffffffffff) r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000880)={0x0, 0x26dff9b1, &(0x7f0000000840)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000000000000002100000005002000000000000c00050051000000aaaaaaaa09001f0070687930"], 0x34}}, 0x0) [ 132.265747] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.266420] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 132.390832] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.391672] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 132.516114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.517333] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:24:53 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="2321202e2f66696c653120058f2048df47a4b2d5b19c5daab04082539cba60ef6c1f9bb5c4f74689c99726a66c367515d282c105dc3ed64b72a97c49b41fa1f00f82811ea1b8c4dab3508f624f1f9b91fd7ac2dfce42e459f9b51d3e07c5769d08c1c7d8732ab674c9e85975bf0fdc2d225d3c01402a608f91287b93bf82a705ddf48e92207d55a15b1d62c8f3fd573b0949d9d25c2f97f67bdec6ac2b35ce625100cc801d44edd8fadb3765"], 0xc) close(r0) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0) [ 132.600785] process 'syz-executor.3' launched './file1' with NULL argv: empty string added 16:24:54 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x5000, 0x0, &(0x7f0000ffb000/0x5000)=nil) r1 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil) shmat(r1, &(0x7f0000400000/0xc00000)=nil, 0x5000) shmat(r1, &(0x7f0000ffd000/0x3000)=nil, 0x0) shmat(r0, &(0x7f0000ffb000/0x2000)=nil, 0x4000) madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) [ 132.684249] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.684832] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 132.710868] audit: type=1400 audit(1756657494.163:8): avc: denied { open } for pid=3713 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 132.717631] audit: type=1400 audit(1756657494.164:9): avc: denied { kernel } for pid=3713 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 16:24:54 executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, r0, 0x800, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0xbb4, 0x30}}}}, ["", "", "", "", "", "", "", "", "", ""]}, 0xfffffffffffffd4b}, 0x1, 0x0, 0x0, 0x80}, 0x4000040) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5c000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d41", 0x34, 0xb800}], 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='map=off,gid=', @ANYRESHEX=0x0, @ANYBLOB=',hide,uid=', @ANYRESHEX=0x0, @ANYBLOB=', ']) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r3, 0x1, 0x0, 0x0, {0x1a}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, r5}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000006e00)={{{@in6=@empty, @in6=@ipv4={""/10, ""/2, @private}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}}}, &(0x7f0000006f00)=0xe8) accept4$packet(0xffffffffffffffff, &(0x7f0000007040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000007080)=0x14, 0x800) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) r11 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r9, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r10, 0x1, 0x0, 0x0, {0x1a}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}]}]}, 0x20}}, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r8, 0x8916, &(0x7f0000000000)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, r12}) sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f0000007b00)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000007ac0)={&(0x7f00000070c0)={0x9f8, 0x0, 0x20, 0x70bd25, 0x25dfdbfc, {}, [{{0x8}, {0x170, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffffd}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}]}}, {{0x8}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x16c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x11, 0x81, 0x40, 0x8}, {0x810c, 0x80, 0x3f, 0xff}]}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0x10c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x10}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x800, 0x0, 0x2, 0x3}, {0x2, 0x7f, 0x9, 0x43d6}, {0x100, 0x40, 0xdb, 0xfa000000}, {0x200, 0xed, 0x5, 0x9}]}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xffff8000}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x200, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x84, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x54, 0x4, [{0x7, 0x1, 0x8, 0x1f}, {0x7a7, 0x3f, 0x5, 0x9}, {0x6, 0x5, 0x26, 0x4}, {0x5, 0x97, 0x5, 0x74b3}, {0x6000, 0xf4, 0x7f, 0xe2}, {0xc000, 0x1a, 0xff, 0x7}, {0x2, 0x3, 0x40, 0x8000}, {0x5, 0x9, 0x0, 0x9}, {0x7, 0x0, 0x3, 0x9}, {0x4, 0x0, 0x6, 0x2}]}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r5}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}, {{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}]}}, {{0x8}, {0xcc, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x5, 0x3, 0x2, 0x3}, {0x1, 0x5, 0x7f, 0x6}, {0x1, 0x5, 0x9, 0x7}]}}}]}}, {{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xa}}}]}}, {{0x8, 0x1, r7}, {0x134, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x80000001}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x40}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x6, 0x7, 0x6, 0x1f}, {0x0, 0x6, 0x2, 0x1}]}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x20}}, {0x8, 0x6, r12}}}]}}]}, 0x9f8}, 0x1, 0x0, 0x0, 0x20000084}, 0x24000) [ 132.903785] loop3: detected capacity change from 0 to 736 [ 132.909010] iso9660: Unknown parameter ' ' [ 132.973770] loop3: detected capacity change from 0 to 736 [ 132.974804] iso9660: Unknown parameter ' ' 16:24:54 executing program 3: llistxattr(&(0x7f0000000040)='./cgroup/cgroup.procs/file0\x00', &(0x7f0000000240)=""/199, 0xc7) 16:24:54 executing program 3: syz_mount_image$msdos(0x0, 0x0, 0x0, 0x3, &(0x7f0000004140)=[{&(0x7f0000003bc0)='\\', 0x1}, {&(0x7f0000003f80)="fd", 0x1, 0xb31b}, {&(0x7f0000004000)="87", 0x1}], 0x0, 0x0) r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8) io_setup(0x400, &(0x7f0000000000)=0x0) io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) signalfd(r0, &(0x7f0000000140), 0x8) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x80002, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r4) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2000080, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@noextend}, {@dfltgid={'dfltgid', 0x3d, 0xee01}}, {@dfltuid={'dfltuid', 0x3d, r4}}, {@cache_none}], [{@smackfsfloor}, {@dont_hash}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@subj_type={'subj_type', 0x3d, '-+^'}}]}}) 16:24:54 executing program 1: sync() sync() sync() sync() sync() sync() clock_gettime(0x6, &(0x7f0000000000)) sync() sync() sync() sync() sync() sync() r0 = semget(0x1, 0x4, 0x482) semtimedop(r0, &(0x7f0000000040)=[{0x1, 0x6, 0x400}], 0x1, &(0x7f0000000080)={0x0, 0x3938700}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) epoll_pwait2(r1, &(0x7f0000000100)=[{}], 0x1, &(0x7f0000000140), &(0x7f0000000180)={[0xb4ab]}, 0x8) sync() sync() sync() 16:24:54 executing program 6: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x210000, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x20800, 0x0) r2 = syz_mount_image$ext4(&(0x7f0000000300)='ext3\x00', &(0x7f0000000340)='./file0\x00', 0x4, 0x1, &(0x7f0000000440)=[{&(0x7f0000000380)="37ff3ef494460602dd6dae4a4f7b9cc81c3324f5d0f21b6c758e189b7296210cdeb41639c9ad12b9c9e286948a2bbd36f8e985966421438d131bfcf72a971203c86184acaef2cc455c9011916b43804cb91eccfe5f4986d311257d4f187c47995f2c12c5ccc2a4cec156fefa57eb0a82a736e27423dcf41ca98b08a7caf17cd893f6c6bb4234715382", 0x89, 0x5b4e}], 0x2923044, &(0x7f0000000480)={[{@test_dummy_encryption}, {@commit={'commit', 0x3d, 0x9}}, {@usrjquota}, {@grpid}, {@sb}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x1f}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}], [{@hash}, {@fowner_gt={'fowner>', 0xee00}}, {@uid_lt={'uid<', 0xee01}}]}) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000006, 0x12, r2, 0xcb6d6000) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_WOL_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)={0x44, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_WOL_HEADER={0x4}, @ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14}]}, @ETHTOOL_A_WOL_MODES={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xd, 0x4, "48d203e7a5451c196e"}]}]}, 0x44}}, 0x0) io_submit(0x0, 0x2, &(0x7f00000002c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x7ff, r3, &(0x7f0000000080)="e937ef16d0f4c376ebc05fdc76cc0d201d097253d7d99a73fe3401ebe447e9dff646d5b1665870de2da6fb7706d7eb9f0348ef882a52ea1329560be8a3cc2fe8c65e94053a2c3b35d66f9f02a9b785fa883f813247b520c966803861eeec4e3564a65b3ac2c66a0b252626497626166c76091600b7e8fe54fe1579aa0bc6ceea11ff224ec59b3d74095fb1e1e91c87684ee397d423e05d0d32bf2e92d99e5ccaeccb37ec79ee2558175f09b8f0bd6fd6bd20e363aa8e5738983a13c858e85ec2dc212227e9502af343f2fac5cb71a32c55db843b66f6840ca98eefaf04cf991d0eb330bb72f9b4a8b21e5fbcc2d0722d67c469335cbb", 0xf6, 0x40}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x2, r1, &(0x7f00000001c0)="c1d65b949947c08eaaaea5fee9c423785e7b5c35cfffca4772246472c755edb4be93d4d8d81e0fe487f6460cbb768298ad0fe6fc8c819654f218e26494c1c4cf5eed88738b45b4c2693dae1b9643207d7fdedf7bd0a0a68c3cf01e337b78e7f2be8eddfb22893ad19ae211680f303427fb39283d61a7d83ff043b1c1e8a18fb77ae36aa4af6839f90e181772cf38abbbcd", 0x91, 0xe5}]) fcntl$setownex(r0, 0xf, 0x0) [ 133.297878] loop3: detected capacity change from 0 to 179 [ 133.406787] loop6: detected capacity change from 0 to 91 [ 133.424375] ======================================================= [ 133.424375] WARNING: The mand mount option has been deprecated and [ 133.424375] and is ignored by this kernel. Remove the mand [ 133.424375] option from the mount to silence this warning. [ 133.424375] ======================================================= [ 133.499426] loop6: detected capacity change from 0 to 91 [ 133.795320] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 133.795928] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 133.901240] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 133.901859] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.463273] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.463882] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.634582] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.635239] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.988831] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.989546] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.073479] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.074103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.157548] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.158592] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.200028] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.200661] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.752715] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.753802] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.793015] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.793805] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:25:11 executing program 1: timer_create(0x0, 0x0, &(0x7f00000020c0)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) timer_create(0x5, &(0x7f0000000080)={0x0, 0x41, 0x1, @tid=0xffffffffffffffff}, &(0x7f00000000c0)=0x0) timer_settime(r0, 0x1, &(0x7f0000000100), 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000180)={{r1, r2+10000000}, {0x77359400}}, &(0x7f00000001c0)) timer_gettime(0x0, &(0x7f0000000040)) 16:25:11 executing program 6: r0 = inotify_init1(0x80000) ioctl$int_in(r0, 0x5452, &(0x7f00000001c0)=0x8) close(r0) 16:25:11 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)={0x44, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_WOL_HEADER={0x4}, @ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14}]}, @ETHTOOL_A_WOL_MODES={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xd, 0x4, "48d203e7a5451c196e"}]}]}, 0x44}}, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180), 0x20601, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x9) 16:25:11 executing program 7: creat(&(0x7f00000003c0)='./file0\x00', 0x0) creat(0x0, 0x40) r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) write(r0, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0f300cb97f6a204cc586e45dfb949002f61f8fb969dd435dd0c37c5077e5b10cfeafd75205e215b167323a3b971b0ec98e6c3d4d825cae01271cb35cdd091e4872367f354e0dc81a7e4ac79775bc1dcaafe2f5079da79d1989f1ddce6722fc438a7217526cfe75d53471624d6f091e19a7fb699ea27efa9e0fd1914e7c35f297afd9b9b85ff0ce7a982f4fa0c172ea5f06479eec302f30e5df66273717e028f4ca7d4c5b6bc8a3c3c67f688195f22488a15d9e1f7e5fed3a6c2aba7bc308b0e2c5657f4538f4a3bf9b975bb887a901ab3c85261be3e331b741313e78b5ad63b7b1b378e9c79dc4a95b2b4d15cd1d1b808844378f882a72af1e5b0eefd356e0247246e60643204c3b46183dbe4e066c55cb1dcdaa7b70ef43ab2fa4d2b8c4c1a89cb0e325fd9716874d3856cf368efd1f92d21214e55e4de647c37c71887d11f74f9afe1616e3054ceae601e4b3555e243c1882ad42c7730caeb309e7714ad87c55e9fba308cfc4161e562abde3ac4f3d7e0a3584d4928100197f102307c05c0b4b4898b0591bc1433af443478979f28e6136ffb21aaeac2be5490475a08e96bb94fd9d9d3aa2f8a1e147a80ba9bfd04dac3f476ff128476c693ea71f7be47a508c98eddc479eb703d6f17cc5be2182f7c39b0a47eb23e0808b5d87dd2a9ce88eb48", 0x1fe) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setstatus(r0, 0x4, 0x400) sendfile(r0, r1, 0x0, 0xfdef) 16:25:11 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000ddf4655fddf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000001000008000000d2", 0x61, 0x400}], 0x0, &(0x7f0000014100)) r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) read(r0, &(0x7f0000000040)=""/102, 0x66) 16:25:11 executing program 2: ioctl$FAT_IOCTL_GET_ATTRIBUTES(0xffffffffffffffff, 0x80047210, &(0x7f0000000000)) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)={{0x107, 0x2, 0xdf, 0x251, 0x22c, 0x9, 0x3ca, 0x3}, "e515cd3fcffec1ebcd852dce5c456d15f8958645e9e0a575068844023328996692787ac7078a0cb5dfb1502002bd228bd98a1c", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x853) setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000900)=0x2, 0x4) write$vga_arbiter(r0, &(0x7f0000000940)=@unlock_all, 0xb) setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000980)=0x1, 0x4) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f00000009c0)) readahead(r0, 0x41e7, 0x1) ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f0000000a40)={0x3, 0x1, 0x7, 0x1}) write$vga_arbiter(r0, &(0x7f0000000a80)=@target={'target ', {'PCI:', '12', ':', '17', ':', '4', '.', '0'}}, 0x15) sendto$inet(0xffffffffffffffff, &(0x7f0000000ac0)="f21c50164d940076d46ec2488cca50d49703aed8dd429f7ba020a75afd307dd11574c65d07d0b03911589343b8d089851a5d4ac56a84a1b9bb", 0x39, 0x4000, 0x0, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000b00), 0x6, 0x301100) fremovexattr(r1, &(0x7f0000000b40)=@known='user.incfs.size\x00') getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000b80)=""/151, &(0x7f0000000c40)=0x97) splice(r1, &(0x7f0000000c80)=0xff, r0, &(0x7f0000000cc0), 0xffffffff, 0x1) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000d00), 0x4240, 0x0) setsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000000d40)=0x5, 0x4) ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000d80)={'wg0\x00'}) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000dc0)=0x2000) write$binfmt_script(r0, &(0x7f0000000e00)={'#! ', './file0', [{0x20, '\x13$-%{^.'}, {0x20, '{{'}, {}], 0xa, "5be9c123236edff15f3f86904c543a28590d6b803eaa3181042a7cb5e7a483201ffd4035a8ffffb01ce6bbe5778a65bdb44302a7c54f3634d61eac8b6c3007f9c584b1c14b9723d17d09f8519e9dc9d9b10a138eeaeb29d2e0d51bebf22890ede47fd26e27824d5e38a79a"}, 0x82) 16:25:11 executing program 4: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000cc0), 0x8202, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="04002cbd0000000800030000000000000000", @ANYRES32=0x0, @ANYBLOB="0c009900000000006d00000004009100"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2) sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, 0x0, 0x20048804) 16:25:11 executing program 0: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0) r2 = dup2(r1, r0) io_setup(0x400, &(0x7f0000000000)=0x0) io_submit(r3, 0x0, &(0x7f00000001c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x101}]) signalfd(r0, &(0x7f0000000140), 0x8) ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000000)={0xe0, 0x7f, 0x1, 0x5, 0x20, 0x7}) pread64(r2, &(0x7f0000000200)=""/26, 0x1a, 0x7) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = syz_open_dev$vcsa(&(0x7f0000000180), 0x80000001, 0x2c8002) ioctl$FIOCLEX(r5, 0x5451) sendmsg$netlink(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="340000002d00010000000000000000000ca6000000000000000000001800008014004900fe8000000000000000000000004000989d74b53e2fbe818601a6b8cf9d419603d7ba6cf47ca8c0010ae6ffd7359ad5b60de22c438e292ff5504ca8efd162edddfb7f28c3"], 0x34}], 0x1}, 0x40) [ 149.625982] loop5: detected capacity change from 0 to 4 [ 149.636975] random: crng reseeded on system resumption [ 149.656646] EXT4-fs (loop5): unsupported descriptor size 0 [ 149.668694] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 149.718041] loop5: detected capacity change from 0 to 4 [ 149.737650] EXT4-fs (loop5): unsupported descriptor size 0 [ 149.755311] kmemleak: Found object by alias at 0x607f1a639004 [ 149.755342] CPU: 0 UID: 0 PID: 3962 Comm: syz-executor.3 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 149.755379] Tainted: [W]=WARN [ 149.755386] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 149.755400] Call Trace: [ 149.755407] [ 149.755416] dump_stack_lvl+0xca/0x120 [ 149.755464] __lookup_object+0x94/0xb0 [ 149.755497] delete_object_full+0x27/0x70 [ 149.755529] free_percpu+0x30/0x1160 [ 149.755561] ? arch_uprobe_clear_state+0x16/0x140 [ 149.755600] futex_hash_free+0x38/0xc0 [ 149.755628] mmput+0x2d3/0x390 [ 149.755665] do_exit+0x79d/0x2970 [ 149.755701] ? __pfx_do_exit+0x10/0x10 [ 149.755729] ? find_held_lock+0x2b/0x80 [ 149.755764] ? get_signal+0x835/0x2340 [ 149.755804] do_group_exit+0xd3/0x2a0 [ 149.755834] get_signal+0x2315/0x2340 [ 149.755869] ? __sys_sendto+0x210/0x570 [ 149.755903] ? __pfx___sys_sendto+0x10/0x10 [ 149.755943] ? __pfx_get_signal+0x10/0x10 [ 149.755988] arch_do_signal_or_restart+0x80/0x790 [ 149.756025] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 149.756056] ? fd_install+0x1f0/0x660 [ 149.756081] ? __sys_socket+0x9f/0x260 [ 149.756108] ? __pfx___sys_socket+0x10/0x10 [ 149.756135] ? xfd_validate_state+0x55/0x180 [ 149.756177] exit_to_user_mode_loop+0x8b/0x110 [ 149.756202] do_syscall_64+0x2f7/0x360 [ 149.756226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.756250] RIP: 0033:0x7f9debdf38ac [ 149.756268] Code: Unable to access opcode bytes at 0x7f9debdf3882. [ 149.756278] RSP: 002b:00007f9de93b5020 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 149.756301] RAX: 0000000000000020 RBX: 00007f9de93b5110 RCX: 00007f9debdf38ac [ 149.756316] RDX: 0000000000000020 RSI: 00007f9de93b5160 RDI: 0000000000000004 [ 149.756330] RBP: 0000000000000000 R08: 00007f9de93b5074 R09: 000000000000000c [ 149.756344] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f9de93b50c8 [ 149.756358] R13: 00007f9de93b5160 R14: 0000000000000004 R15: 0000000000000000 [ 149.756390] [ 149.756397] kmemleak: Object (percpu) 0x607f1a639000 (size 8): [ 149.756411] kmemleak: comm "syz-executor.5", pid 289, jiffies 4294800624 [ 149.756426] kmemleak: min_count = 1 [ 149.756433] kmemleak: count = 1 [ 149.756441] kmemleak: flags = 0x21 [ 149.756449] kmemleak: checksum = 0 [ 149.756456] kmemleak: backtrace: [ 149.756462] pcpu_alloc_noprof+0x87a/0x1170 [ 149.756493] __alloc_workqueue+0x74b/0x1820 [ 149.756527] alloc_workqueue_noprof+0xc7/0x200 [ 149.756546] ieee80211_register_hw+0x1ec5/0x3e00 [ 149.756569] mac80211_hwsim_new_radio+0x2758/0x4ef0 [ 149.756594] hwsim_new_radio_nl+0xb0d/0x1250 [ 149.756616] genl_family_rcv_msg_doit+0x1fe/0x2f0 [ 149.756637] genl_rcv_msg+0x532/0x7e0 [ 149.756656] netlink_rcv_skb+0x147/0x430 [ 149.756687] genl_rcv+0x28/0x40 [ 149.756703] netlink_unicast+0x5a7/0x870 [ 149.756734] netlink_sendmsg+0x8ac/0xd80 [ 149.756764] __sys_sendto+0x506/0x570 [ 149.756790] __x64_sys_sendto+0xe1/0x1c0 [ 149.756817] do_syscall_64+0xbf/0x360 [ 149.756834] entry_SYSCALL_64_after_hwframe+0x77/0x7f 16:25:20 executing program 1: timer_create(0x0, 0x0, &(0x7f00000020c0)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) timer_create(0x5, &(0x7f0000000080)={0x0, 0x41, 0x1, @tid=0xffffffffffffffff}, &(0x7f00000000c0)=0x0) timer_settime(r0, 0x1, &(0x7f0000000100), 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000180)={{r1, r2+10000000}, {0x77359400}}, &(0x7f00000001c0)) timer_gettime(0x0, &(0x7f0000000040)) 16:25:20 executing program 0: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001640)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001600)={&(0x7f00000001c0)={0xec4, 0x12, 0x1, 0x0, 0x0, {0x0, 0x8}, [@INET_DIAG_REQ_BYTECODE={0xfd, 0x1, "8f95233490371128c9f024b57820c555638c49572452560371ae64a4de0e1fa6f85c03816d156032742ef5ae866e8268f638153dc462a2861a0cbe290bbe19e88c638ca06facda4a46baf5dd365a496e9ae8d5d536993276a0a33d2a7928c8a7198b0294ac761b1ad3b84a6db36f922368a237ce1c8e5bbc165ca8cb8b06af50fb601e213420f6cd63379c48182018a7fcacb41f0964db3f0e4185892968ceb1688115f9506682f9652a7f0261b7c93cd452f688873e2207d20be61a65da17a2872b06ce86892b0f1ced85112311b9608ce1da197c763035073c468a6494c10bb7e3d3b6fcc7d1185c9f9a20713c77ed0231abffe60ff2aa90"}, @INET_DIAG_REQ_BYTECODE={0x91, 0x1, "a5e48f6f48877dd2051abbb641e079a88c7e208d11d4d4a7e7cab4d9d52a83e41dd735cb976112d431c228a6641f5b23aa5cba3dfb11b95ca6062c3dcc472c753270ff7e1c5dc160e013268a8ce6d03a83fa03f85914e2605985f4a2a6827091d6d7a38bdac9803f089bdb9e8880fd43f5a4904dd03ae279d31c200746e1abdc39d2d1dbe2f4abeaf0b3644e57"}, @INET_DIAG_REQ_BYTECODE={0xbd, 0x1, "474fbaf0253a42bb733b8ebbcae5eb9f589438c312255f5e0451cb76238c45fa99603ff33863d7aee2381a8e7c94484861ff9912fff5bd9281591bc3b9d1770fead1b26b68771114c84c38f0861bbc900479414a129c52f1f894bd30951c72f4b1b4a58b9ec6abb4717dd1a56f0db6c1e2390c1f416fc758413ae9d05ca772c9d41b435315f5d379fa3d85bd270a890479ff3b183a63cdb79396892431e14f76dc47e0bf673f1103912117409e22cba3e69c3e5d01279862c5"}, @INET_DIAG_REQ_BYTECODE={0x4d, 0x1, "5ab2b51262cbe6861c7bf46f1332152122050616d1a5b9f70a0fb9e8fa29fa8f4b78e4e4e6aafa4580dd00c562b9f0804469d828598ba36f3c19c019fe347462fd016a14fb727d36e3"}, @INET_DIAG_REQ_BYTECODE={0x75, 0x1, "3c2df14a6ea8dda34911c554fd5c8c4296bfb1ebdbcc78ea06e578ed3ea618b3e4cef363cb8640511a06371dd8515fa40aca2419af46b8f29f7a50e4af9edb468719cb8c801f0dc17c6b4254615acad28a036bb3e14eba730d8e0e961815d81f30b6064267037f06670558e4911588cdc9"}, @INET_DIAG_REQ_BYTECODE={0x9, 0x1, "6f5988b78f"}, @INET_DIAG_REQ_BYTECODE={0xb4d, 0x1, "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"}]}, 0xec4}}, 0x0) r1 = accept4(r0, &(0x7f0000000000)=@pptp={0x18, 0x2, {0x0, @private}}, &(0x7f0000000080)=0x80, 0x800) sendmsg$SMC_PNETID_DEL(r1, &(0x7f00000010c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, 0x0, 0x10, 0x70bd25, 0x25dfdbfe, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x84}, 0x4) 16:25:20 executing program 2: ioctl$FAT_IOCTL_GET_ATTRIBUTES(0xffffffffffffffff, 0x80047210, &(0x7f0000000000)) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)={{0x107, 0x2, 0xdf, 0x251, 0x22c, 0x9, 0x3ca, 0x3}, "e515cd3fcffec1ebcd852dce5c456d15f8958645e9e0a575068844023328996692787ac7078a0cb5dfb1502002bd228bd98a1c", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x853) setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000900)=0x2, 0x4) write$vga_arbiter(r0, &(0x7f0000000940)=@unlock_all, 0xb) setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000980)=0x1, 0x4) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f00000009c0)) readahead(r0, 0x41e7, 0x1) ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f0000000a40)={0x3, 0x1, 0x7, 0x1}) write$vga_arbiter(r0, &(0x7f0000000a80)=@target={'target ', {'PCI:', '12', ':', '17', ':', '4', '.', '0'}}, 0x15) sendto$inet(0xffffffffffffffff, &(0x7f0000000ac0)="f21c50164d940076d46ec2488cca50d49703aed8dd429f7ba020a75afd307dd11574c65d07d0b03911589343b8d089851a5d4ac56a84a1b9bb", 0x39, 0x4000, 0x0, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000b00), 0x6, 0x301100) fremovexattr(r1, &(0x7f0000000b40)=@known='user.incfs.size\x00') getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000b80)=""/151, &(0x7f0000000c40)=0x97) splice(r1, &(0x7f0000000c80)=0xff, r0, &(0x7f0000000cc0), 0xffffffff, 0x1) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000d00), 0x4240, 0x0) setsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000000d40)=0x5, 0x4) ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000d80)={'wg0\x00'}) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000dc0)=0x2000) write$binfmt_script(r0, &(0x7f0000000e00)={'#! ', './file0', [{0x20, '\x13$-%{^.'}, {0x20, '{{'}, {}], 0xa, "5be9c123236edff15f3f86904c543a28590d6b803eaa3181042a7cb5e7a483201ffd4035a8ffffb01ce6bbe5778a65bdb44302a7c54f3634d61eac8b6c3007f9c584b1c14b9723d17d09f8519e9dc9d9b10a138eeaeb29d2e0d51bebf22890ede47fd26e27824d5e38a79a"}, 0x82) 16:25:20 executing program 6: r0 = inotify_init1(0x80000) ioctl$int_in(r0, 0x5452, &(0x7f00000001c0)=0x8) close(r0) 16:25:20 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x9, 0x6, 0x1f, 0x0, 0x5, 0x8, 0xe, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x6, 0x2, @perf_bp={&(0x7f0000000000), 0x4}, 0x402, 0xfffffffffffff800, 0x3, 0x4, 0x6, 0x10000, 0x2, 0x0, 0x81, 0x0, 0x800}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x9) ioctl$RTC_SET_TIME(r0, 0x7003, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x9, 0x0, 0x49}) 16:25:20 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000000280)="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", 0x17c, 0x400}, {&(0x7f0000000040)="0000000000000000000000003988ecfe769addcaf878772bc043f6970341999833e8e90d2470c4010040", 0x2a, 0x4e0}, {0x0, 0x0, 0x80000}], 0x0, &(0x7f0000013b00)) 16:25:20 executing program 4: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000440008000f80100200040000300000000000000800029386929f153595a4b414c4c4552202046415431322020200e1fbe5b7cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a00", 0xc0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aaf8ffff00f0ff056000ffffff09a0000bc0000de0000f000111200113400115600117800119f0ffff0f00"/96, 0x60, 0x1e0}, {&(0x7f0000010200)="f8ffff00f0ff056000ffffff09a0000bc0000de0000f000111200113400115600117800119f0ffff0f00"/64, 0x40, 0x400}, {&(0x7f0000010300)="f8ffff00f0ff056000ffffff09a0000bc0000de0000f000111200113400115600117800119f0ffff0f00"/64, 0x40, 0x600}, {&(0x7f0000010400)="f8ffff00f0ff056000ffffff09a0000bc0000de0000f000111200113400115600117800119f0ffff0f00"/64, 0x40, 0x800}, {&(0x7f0000010500)="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", 0x120, 0xa00}, {&(0x7f0000010700)="2e20202020202020202020100070e770325132510000e77032510300000000002e2e202020202020202020100070e770325132510000e770325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200070e770325132510000e770325104001a040000", 0x80, 0x1400}, {&(0x7f0000010800)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x1600}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0x1c00}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x4200}], 0x0, &(0x7f0000010f00)) r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8) io_setup(0x400, &(0x7f0000000000)=0x0) io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) signalfd(r0, &(0x7f0000000140), 0x8) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x200, 0x1) 16:25:20 executing program 7: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = clone3(&(0x7f0000000340)={0x101022800, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0), {0x2}, &(0x7f0000000200)=""/4, 0x4, &(0x7f0000000240)=""/131, &(0x7f0000000300)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x3}, 0x58) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xc0, 0x1d, 0xff, 0x0, 0x1ff, 0x30007, 0x5, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x8}, 0x1000, 0x6, 0x400, 0x0, 0x101, 0x0, 0x9, 0x0, 0x10001, 0x0, 0x7fff}, r2, 0x6, r0, 0x0) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) [ 159.093561] BUG: unable to handle page fault for address: ffffed10212c9296 [ 159.094157] #PF: supervisor read access in kernel mode [ 159.094575] #PF: error_code(0x0000) - not-present page [ 159.094979] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 159.095423] Oops: Oops: 0000 [#1] SMP KASAN NOPTI [ 159.095808] CPU: 0 UID: 0 PID: 3987 Comm: syz-executor.3 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 159.096495] loop4: detected capacity change from 0 to 128 [ 159.100212] Tainted: [W]=WARN [ 159.100219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 159.100227] RIP: 0010:perf_tp_event+0x175/0xe70 [ 159.102506] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 159.103917] RSP: 0018:ffff88801b5f7800 EFLAGS: 00010216 [ 159.104334] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc90004a36000 [ 159.104889] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: ffff8881096494b0 [ 159.105442] RBP: ffff88801b5f7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16000 [ 159.105994] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 159.106554] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 159.107109] FS: 00007f9de93b6700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 159.107735] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 159.108187] CR2: ffffed10212c9296 CR3: 000000001e99b000 CR4: 0000000000350ef0 [ 159.108741] Call Trace: [ 159.108950] [ 159.109129] ? perf_swevent_event+0x63/0x3f0 [ 159.109487] ? __pfx_perf_tp_event+0x10/0x10 [ 159.109838] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 159.110235] ? perf_swevent_event+0x63/0x3f0 [ 159.110599] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 159.110992] ? perf_swevent_event+0x63/0x3f0 [ 159.111345] ? perf_tp_event+0x807/0xe70 [ 159.111674] ? __pfx_perf_tp_event+0x10/0x10 [ 159.112026] ? __perf_install_in_context+0x503/0xb90 [ 159.112430] ? do_raw_spin_unlock+0x53/0x220 [ 159.112786] ? perf_trace_run_bpf_submit+0xef/0x180 [ 159.113182] perf_trace_run_bpf_submit+0xef/0x180 [ 159.113571] perf_trace_lock+0x337/0x5d0 [ 159.113899] ? __pfx_perf_trace_lock+0x10/0x10 [ 159.114267] ? lock_acquire+0x15e/0x2f0 [ 159.114591] ? futex_ref_get+0x48/0x300 [ 159.114909] ? futex_ref_get+0x114/0x300 [ 159.115230] ? futex_hash+0x15c/0x390 [ 159.115533] lock_release+0x1ab/0x290 [ 159.115840] ? futex_hash+0x15c/0x390 [ 159.116141] futex_ref_get+0x119/0x300 [ 159.116451] ? futex_hash+0x15c/0x390 [ 159.116753] futex_hash+0x70/0x390 [ 159.117040] futex_wake+0x143/0x540 [ 159.117336] ? __pfx_perf_trace_lock+0x10/0x10 [ 159.117702] ? __pfx_futex_wake+0x10/0x10 [ 159.118033] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 159.118441] ? lock_release+0xc8/0x290 [ 159.118755] do_futex+0x26d/0x370 [ 159.119035] ? __pfx_do_futex+0x10/0x10 [ 159.119352] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 159.119769] ? find_held_lock+0x2b/0x80 [ 159.120091] __x64_sys_futex+0x1c9/0x4d0 [ 159.120415] ? __pfx___x64_sys_futex+0x10/0x10 [ 159.120778] ? xfd_validate_state+0x55/0x180 [ 159.121139] do_syscall_64+0xbf/0x360 [ 159.121443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.121846] RIP: 0033:0x7f9debe40b19 [ 159.122137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 159.123545] RSP: 002b:00007f9de93b6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 159.124131] RAX: ffffffffffffffda RBX: 00007f9debf53f68 RCX: 00007f9debe40b19 [ 159.124680] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9debf53f6c [ 159.125230] RBP: 00007f9debf53f60 R08: 000000000000000e R09: 0000000000000000 [ 159.125778] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f9debf53f6c [ 159.126328] R13: 00007ffcb2069bff R14: 00007f9de93b6300 R15: 0000000000022000 [ 159.126892] [ 159.127078] Modules linked in: [ 159.127336] CR2: ffffed10212c9296 [ 159.127607] ---[ end trace 0000000000000000 ]--- [ 159.127971] RIP: 0010:perf_tp_event+0x175/0xe70 [ 159.128342] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 159.129738] RSP: 0018:ffff88801b5f7800 EFLAGS: 00010216 [ 159.130149] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc90004a36000 [ 159.130708] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: ffff8881096494b0 [ 159.131271] RBP: ffff88801b5f7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16000 [ 159.131824] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 159.132379] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 159.132932] FS: 00007f9de93b6700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 159.133555] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 159.134012] CR2: ffffed10212c9296 CR3: 000000001e99b000 CR4: 0000000000350ef0 [ 159.134574] note: syz-executor.3[3987] exited with irqs disabled [ 159.135077] BUG: unable to handle page fault for address: ffffed10212c9296 [ 159.135609] #PF: supervisor read access in kernel mode [ 159.136015] #PF: error_code(0x0000) - not-present page [ 159.136412] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 159.136848] Oops: Oops: 0000 [#2] SMP KASAN NOPTI [ 159.137222] CPU: 0 UID: 0 PID: 3987 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 159.138134] Tainted: [D]=DIE, [W]=WARN [ 159.138430] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 159.139075] RIP: 0010:perf_tp_event+0x175/0xe70 [ 159.139445] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 159.140827] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010016 [ 159.141235] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: 0000000000000002 [ 159.141785] RDX: ffff88801630d280 RSI: ffffffff818995b7 RDI: ffff8881096494b0 [ 159.142330] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16000 [ 159.142883] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000 [ 159.143430] R13: 0000000000000024 R14: ffff88806ce31490 R15: dffffc0000000000 [ 159.143983] FS: 00007f9de93b6700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 159.144596] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 159.145046] CR2: ffffed10212c9296 CR3: 000000001e99b000 CR4: 0000000000350ef0 [ 159.145593] Call Trace: [ 159.145796] [ 159.145968] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 159.146389] ? arch_stack_walk+0x9c/0xf0 [ 159.146715] ? __pfx_perf_tp_event+0x10/0x10 [ 159.147065] ? stack_trace_save+0x8e/0xc0 [ 159.147390] ? stack_depot_save_flags+0x2c/0xa20 [ 159.147760] ? __kasan_slab_free+0x3f/0x50 [ 159.148095] ? kfree+0x281/0x550 [ 159.148368] ? slab_free_after_rcu_debug+0x6f/0x290 [ 159.148759] ? rcu_core+0x7c8/0x1800 [ 159.149057] ? kasan_save_stack+0x34/0x50 [ 159.149381] ? kasan_save_stack+0x24/0x50 [ 159.149703] ? kasan_save_track+0x14/0x30 [ 159.150027] ? __kasan_save_free_info+0x3a/0x60 [ 159.150388] ? __kasan_slab_free+0x3f/0x50 [ 159.150723] ? slab_free_after_rcu_debug+0xd6/0x290 [ 159.151121] ? rcu_core+0x7c8/0x1800 [ 159.151415] ? handle_softirqs+0x1b1/0x770 [ 159.151751] ? __irq_exit_rcu+0xc4/0x100 [ 159.152075] ? irq_exit_rcu+0x9/0x20 [ 159.152367] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 159.152765] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 159.153181] ? __sanitizer_cov_trace_cmp8+0x8/0x20 [ 159.153562] ? folio_remove_rmap_ptes+0xcf/0x7c0 [ 159.153935] ? unmap_page_range+0x15fc/0x36d0 [ 159.154287] ? unmap_single_vma.constprop.0+0x153/0x230 [ 159.154707] ? unmap_vmas+0x1d6/0x430 [ 159.155007] ? kvm_sched_clock_read+0x16/0x30 [ 159.155361] ? sched_clock+0x37/0x60 [ 159.155664] ? sched_clock_cpu+0x6c/0x4e0 [ 159.155990] ? __lock_acquire+0xc65/0x1b70 [ 159.156323] ? perf_trace_run_bpf_submit+0xef/0x180 [ 159.156715] perf_trace_run_bpf_submit+0xef/0x180 [ 159.157096] perf_trace_lock+0x337/0x5d0 [ 159.157415] ? place_entity+0x300/0x410 [ 159.157730] ? kvm_sched_clock_read+0x16/0x30 [ 159.158090] ? __pfx_perf_trace_lock+0x10/0x10 [ 159.158453] ? check_preempt_wakeup_fair+0x6e/0x950 [ 159.158844] ? sched_ttwu_pending+0x2e0/0x4a0 [ 159.159200] lock_release+0x1ab/0x290 [ 159.159499] ? ttwu_do_activate+0x1a4/0x8a0 [ 159.159840] _raw_spin_unlock+0x16/0x40 [ 159.160155] sched_ttwu_pending+0x2e0/0x4a0 [ 159.160496] ? __pfx_try_to_wake_up+0x10/0x10 [ 159.160852] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 159.161231] ? mark_held_locks+0x49/0x80 [ 159.161554] __flush_smp_call_function_queue+0x434/0x740 [ 159.161979] __sysvec_call_function_single+0x6d/0x370 [ 159.162387] sysvec_call_function_single+0xa1/0xc0 [ 159.162776] [ 159.162954] [ 159.163135] asm_sysvec_call_function_single+0x1a/0x20 [ 159.163541] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 159.163906] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de [ 159.165293] RSP: 0018:ffff88801b5f7f28 EFLAGS: 00000246 [ 159.165699] RAX: 0000000000000001 RBX: ffff88801630d280 RCX: ffffffff817c2b86 [ 159.166243] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 159.166797] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000 [ 159.167344] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff88801630d280 [ 159.167886] R13: 0000000000000009 R14: ffff88801b5f77e0 R15: 0000000000000000 [ 159.168436] ? trace_irq_enable.constprop.0+0x26/0x100 [ 159.168842] ? make_task_dead+0x214/0x3b0 [ 159.169169] ? make_task_dead+0x214/0x3b0 [ 159.169493] ? do_syscall_64+0xbf/0x360 [ 159.169802] rewind_stack_and_make_dead+0x16/0x20 [ 159.170179] RIP: 0033:0x7f9debe40b19 [ 159.170478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 159.171865] RSP: 002b:00007f9de93b6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 159.172445] RAX: ffffffffffffffda RBX: 00007f9debf53f68 RCX: 00007f9debe40b19 [ 159.172991] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9debf53f6c [ 159.173536] RBP: 00007f9debf53f60 R08: 000000000000000e R09: 0000000000000000 [ 159.174079] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f9debf53f6c [ 159.174632] R13: 00007ffcb2069bff R14: 00007f9de93b6300 R15: 0000000000022000 [ 159.175184] [ 159.175371] Modules linked in: [ 159.175624] CR2: ffffed10212c9296 [ 159.175893] ---[ end trace 0000000000000000 ]--- [ 159.176254] RIP: 0010:perf_tp_event+0x175/0xe70 [ 159.176621] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 159.178013] RSP: 0018:ffff88801b5f7800 EFLAGS: 00010216 [ 159.178423] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc90004a36000 [ 159.178977] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: ffff8881096494b0 [ 159.179524] RBP: ffff88801b5f7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16000 [ 159.180070] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 159.180616] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 159.181161] FS: 00007f9de93b6700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 159.181777] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 159.182227] CR2: ffffed10212c9296 CR3: 000000001e99b000 CR4: 0000000000350ef0 [ 159.182785] Kernel panic - not syncing: Fatal exception in interrupt [ 159.183540] Kernel Offset: disabled [ 159.183823] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 16:25:20 Registers: info registers vcpu 0 RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88801b5f7010 R8 =0000000000000000 R9 =ffffed100166e046 R10=0000000000000061 R11=552030203a555043 R12=0000000000000061 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f9de93b6700 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe6300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=ffffed10212c9296 CR3=000000001e99b000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f9debf277c000007f9debf277c8 XMM02=00007f9debf277e000007f9debf277c0 XMM03=00007f9debf277c800007f9debf277c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000a149 RBX=1ffff11003c0fecf RCX=ffffc90005c3f000 RDX=0000000000040000 RSI=ffffffff8154bead RDI=0000000000000001 RBP=0000000000000001 RSP=ffff88801e07f670 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=000000000000002d R13=0000000000000200 R14=ffff88801630d280 R15=ffff88801e07f730 RIP=ffffffff8154beaf RFL=00000016 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff466fa2700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe5800000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff466fa1fe8 CR3=0000000045ecc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00007ff469b137e000007ff469b137c0 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=0000000000000000000000007372656c XMM06=6c616b7a797372656c6c616b7a797372 XMM07=656c6c616b7a797372656c6c616b7a79 XMM08=72656c6c616b7a797372656c6c616b7a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000