Warning: Permanently added '[localhost]:47653' (ECDSA) to the list of known hosts. 2025/09/01 11:43:56 fuzzer started 2025/09/01 11:43:57 dialing manager at localhost:35473 syzkaller login: [ 52.109591] cgroup: Unknown subsys name 'net' [ 52.139246] cgroup: Unknown subsys name 'cpuset' [ 52.147709] cgroup: Unknown subsys name 'rlimit' 2025/09/01 11:44:07 syscalls: 2214 2025/09/01 11:44:07 code coverage: enabled 2025/09/01 11:44:07 comparison tracing: enabled 2025/09/01 11:44:07 extra coverage: enabled 2025/09/01 11:44:07 setuid sandbox: enabled 2025/09/01 11:44:07 namespace sandbox: enabled 2025/09/01 11:44:07 Android sandbox: enabled 2025/09/01 11:44:07 fault injection: enabled 2025/09/01 11:44:07 leak checking: enabled 2025/09/01 11:44:07 net packet injection: enabled 2025/09/01 11:44:07 net device setup: enabled 2025/09/01 11:44:07 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 11:44:07 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 11:44:07 USB emulation: enabled 2025/09/01 11:44:07 hci packet injection: enabled 2025/09/01 11:44:07 wifi device emulation: enabled 2025/09/01 11:44:07 802.15.4 emulation: enabled 2025/09/01 11:44:07 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 11:44:07 fetching corpus: 50, signal 14019/17724 (executing program) 2025/09/01 11:44:07 fetching corpus: 99, signal 27607/32726 (executing program) 2025/09/01 11:44:07 fetching corpus: 149, signal 35002/41538 (executing program) 2025/09/01 11:44:07 fetching corpus: 199, signal 40993/48889 (executing program) 2025/09/01 11:44:07 fetching corpus: 249, signal 49542/58451 (executing program) 2025/09/01 11:44:07 fetching corpus: 299, signal 54654/64690 (executing program) 2025/09/01 11:44:07 fetching corpus: 349, signal 59622/70678 (executing program) 2025/09/01 11:44:07 fetching corpus: 399, signal 63227/75360 (executing program) 2025/09/01 11:44:07 fetching corpus: 449, signal 65761/78963 (executing program) 2025/09/01 11:44:07 fetching corpus: 499, signal 68882/83073 (executing program) 2025/09/01 11:44:08 fetching corpus: 549, signal 73064/88042 (executing program) 2025/09/01 11:44:08 fetching corpus: 599, signal 74912/90949 (executing program) 2025/09/01 11:44:08 fetching corpus: 649, signal 78801/95575 (executing program) 2025/09/01 11:44:08 fetching corpus: 699, signal 80686/98379 (executing program) 2025/09/01 11:44:08 fetching corpus: 749, signal 83400/101829 (executing program) 2025/09/01 11:44:08 fetching corpus: 799, signal 84840/104190 (executing program) 2025/09/01 11:44:08 fetching corpus: 849, signal 86684/106815 (executing program) 2025/09/01 11:44:08 fetching corpus: 899, signal 90227/110783 (executing program) 2025/09/01 11:44:08 fetching corpus: 949, signal 92765/113847 (executing program) 2025/09/01 11:44:08 fetching corpus: 999, signal 94685/116370 (executing program) 2025/09/01 11:44:08 fetching corpus: 1049, signal 96420/118675 (executing program) 2025/09/01 11:44:09 fetching corpus: 1099, signal 97911/120830 (executing program) 2025/09/01 11:44:09 fetching corpus: 1149, signal 99626/123095 (executing program) 2025/09/01 11:44:09 fetching corpus: 1199, signal 100695/124863 (executing program) 2025/09/01 11:44:09 fetching corpus: 1249, signal 102430/127107 (executing program) 2025/09/01 11:44:09 fetching corpus: 1299, signal 103939/129115 (executing program) 2025/09/01 11:44:09 fetching corpus: 1349, signal 106240/131647 (executing program) 2025/09/01 11:44:09 fetching corpus: 1399, signal 107737/133579 (executing program) 2025/09/01 11:44:09 fetching corpus: 1449, signal 108865/135241 (executing program) 2025/09/01 11:44:09 fetching corpus: 1499, signal 110082/136995 (executing program) 2025/09/01 11:44:09 fetching corpus: 1549, signal 111494/138812 (executing program) 2025/09/01 11:44:10 fetching corpus: 1599, signal 113179/140742 (executing program) 2025/09/01 11:44:10 fetching corpus: 1649, signal 114133/142196 (executing program) 2025/09/01 11:44:10 fetching corpus: 1699, signal 115106/143618 (executing program) 2025/09/01 11:44:10 fetching corpus: 1749, signal 116124/145044 (executing program) 2025/09/01 11:44:10 fetching corpus: 1799, signal 117233/146535 (executing program) 2025/09/01 11:44:10 fetching corpus: 1849, signal 118234/147983 (executing program) 2025/09/01 11:44:10 fetching corpus: 1899, signal 119389/149480 (executing program) 2025/09/01 11:44:10 fetching corpus: 1949, signal 120303/150743 (executing program) 2025/09/01 11:44:10 fetching corpus: 1999, signal 121338/152138 (executing program) 2025/09/01 11:44:10 fetching corpus: 2049, signal 122347/153426 (executing program) 2025/09/01 11:44:10 fetching corpus: 2099, signal 123163/154658 (executing program) 2025/09/01 11:44:11 fetching corpus: 2149, signal 125122/156530 (executing program) 2025/09/01 11:44:11 fetching corpus: 2199, signal 125888/157612 (executing program) 2025/09/01 11:44:11 fetching corpus: 2249, signal 126548/158630 (executing program) 2025/09/01 11:44:11 fetching corpus: 2299, signal 127981/160078 (executing program) 2025/09/01 11:44:11 fetching corpus: 2349, signal 129077/161363 (executing program) 2025/09/01 11:44:11 fetching corpus: 2399, signal 129751/162342 (executing program) 2025/09/01 11:44:11 fetching corpus: 2449, signal 130636/163391 (executing program) 2025/09/01 11:44:11 fetching corpus: 2499, signal 131568/164539 (executing program) 2025/09/01 11:44:11 fetching corpus: 2549, signal 132356/165556 (executing program) 2025/09/01 11:44:11 fetching corpus: 2599, signal 133173/166537 (executing program) 2025/09/01 11:44:12 fetching corpus: 2649, signal 133983/167551 (executing program) 2025/09/01 11:44:12 fetching corpus: 2699, signal 134540/168377 (executing program) 2025/09/01 11:44:12 fetching corpus: 2749, signal 135290/169320 (executing program) 2025/09/01 11:44:12 fetching corpus: 2799, signal 135904/170153 (executing program) 2025/09/01 11:44:12 fetching corpus: 2849, signal 137041/171308 (executing program) 2025/09/01 11:44:12 fetching corpus: 2899, signal 137559/172088 (executing program) 2025/09/01 11:44:12 fetching corpus: 2949, signal 138236/172930 (executing program) 2025/09/01 11:44:12 fetching corpus: 2999, signal 138828/173669 (executing program) 2025/09/01 11:44:12 fetching corpus: 3049, signal 139510/174467 (executing program) 2025/09/01 11:44:12 fetching corpus: 3099, signal 140365/175327 (executing program) 2025/09/01 11:44:12 fetching corpus: 3149, signal 140918/176081 (executing program) 2025/09/01 11:44:13 fetching corpus: 3199, signal 141549/176878 (executing program) 2025/09/01 11:44:13 fetching corpus: 3249, signal 141992/177558 (executing program) 2025/09/01 11:44:13 fetching corpus: 3299, signal 142595/178292 (executing program) 2025/09/01 11:44:13 fetching corpus: 3349, signal 143236/179008 (executing program) 2025/09/01 11:44:13 fetching corpus: 3399, signal 143919/179714 (executing program) 2025/09/01 11:44:13 fetching corpus: 3449, signal 144781/180511 (executing program) 2025/09/01 11:44:13 fetching corpus: 3499, signal 145456/181185 (executing program) 2025/09/01 11:44:13 fetching corpus: 3549, signal 145866/181758 (executing program) 2025/09/01 11:44:13 fetching corpus: 3599, signal 146574/182460 (executing program) 2025/09/01 11:44:13 fetching corpus: 3649, signal 147117/183095 (executing program) 2025/09/01 11:44:13 fetching corpus: 3699, signal 147809/183772 (executing program) 2025/09/01 11:44:14 fetching corpus: 3749, signal 148114/184344 (executing program) 2025/09/01 11:44:14 fetching corpus: 3799, signal 148654/184922 (executing program) 2025/09/01 11:44:14 fetching corpus: 3849, signal 149120/185514 (executing program) 2025/09/01 11:44:14 fetching corpus: 3899, signal 149395/186041 (executing program) 2025/09/01 11:44:14 fetching corpus: 3949, signal 149824/186575 (executing program) 2025/09/01 11:44:14 fetching corpus: 3999, signal 150267/187118 (executing program) 2025/09/01 11:44:14 fetching corpus: 4049, signal 151007/187677 (executing program) 2025/09/01 11:44:14 fetching corpus: 4099, signal 151705/188254 (executing program) 2025/09/01 11:44:14 fetching corpus: 4149, signal 152162/188735 (executing program) 2025/09/01 11:44:14 fetching corpus: 4199, signal 152643/189230 (executing program) 2025/09/01 11:44:15 fetching corpus: 4249, signal 153231/189756 (executing program) 2025/09/01 11:44:15 fetching corpus: 4299, signal 153747/190246 (executing program) 2025/09/01 11:44:15 fetching corpus: 4349, signal 154285/190715 (executing program) 2025/09/01 11:44:15 fetching corpus: 4399, signal 154958/191155 (executing program) 2025/09/01 11:44:15 fetching corpus: 4449, signal 155434/191578 (executing program) 2025/09/01 11:44:15 fetching corpus: 4499, signal 155932/191999 (executing program) 2025/09/01 11:44:15 fetching corpus: 4549, signal 156413/192414 (executing program) 2025/09/01 11:44:15 fetching corpus: 4599, signal 156834/192826 (executing program) 2025/09/01 11:44:15 fetching corpus: 4649, signal 157382/193212 (executing program) 2025/09/01 11:44:15 fetching corpus: 4699, signal 157747/193614 (executing program) 2025/09/01 11:44:16 fetching corpus: 4749, signal 158382/193783 (executing program) 2025/09/01 11:44:16 fetching corpus: 4799, signal 158949/193809 (executing program) 2025/09/01 11:44:16 fetching corpus: 4849, signal 159264/193832 (executing program) 2025/09/01 11:44:16 fetching corpus: 4899, signal 159812/193839 (executing program) 2025/09/01 11:44:16 fetching corpus: 4949, signal 160302/193840 (executing program) 2025/09/01 11:44:16 fetching corpus: 4999, signal 160693/193841 (executing program) 2025/09/01 11:44:16 fetching corpus: 5049, signal 161057/193845 (executing program) 2025/09/01 11:44:16 fetching corpus: 5098, signal 161416/193890 (executing program) 2025/09/01 11:44:16 fetching corpus: 5148, signal 161836/193894 (executing program) 2025/09/01 11:44:16 fetching corpus: 5198, signal 162402/193900 (executing program) 2025/09/01 11:44:16 fetching corpus: 5248, signal 162802/193912 (executing program) 2025/09/01 11:44:16 fetching corpus: 5298, signal 163012/193929 (executing program) 2025/09/01 11:44:16 fetching corpus: 5348, signal 163332/193930 (executing program) 2025/09/01 11:44:17 fetching corpus: 5398, signal 163758/193944 (executing program) 2025/09/01 11:44:17 fetching corpus: 5448, signal 164322/193971 (executing program) 2025/09/01 11:44:17 fetching corpus: 5498, signal 164907/193977 (executing program) 2025/09/01 11:44:17 fetching corpus: 5548, signal 165230/193985 (executing program) 2025/09/01 11:44:17 fetching corpus: 5598, signal 165642/194008 (executing program) 2025/09/01 11:44:17 fetching corpus: 5648, signal 165968/194021 (executing program) 2025/09/01 11:44:17 fetching corpus: 5698, signal 166208/194024 (executing program) 2025/09/01 11:44:17 fetching corpus: 5748, signal 166561/194027 (executing program) 2025/09/01 11:44:17 fetching corpus: 5798, signal 167441/194052 (executing program) 2025/09/01 11:44:17 fetching corpus: 5848, signal 167919/194060 (executing program) 2025/09/01 11:44:17 fetching corpus: 5898, signal 168334/194083 (executing program) 2025/09/01 11:44:17 fetching corpus: 5948, signal 169069/194104 (executing program) 2025/09/01 11:44:18 fetching corpus: 5998, signal 169701/194109 (executing program) 2025/09/01 11:44:18 fetching corpus: 6048, signal 169962/194111 (executing program) 2025/09/01 11:44:18 fetching corpus: 6098, signal 170393/194113 (executing program) 2025/09/01 11:44:18 fetching corpus: 6148, signal 170706/194113 (executing program) 2025/09/01 11:44:18 fetching corpus: 6198, signal 170955/194115 (executing program) 2025/09/01 11:44:18 fetching corpus: 6248, signal 171628/194118 (executing program) 2025/09/01 11:44:18 fetching corpus: 6298, signal 172114/194124 (executing program) 2025/09/01 11:44:18 fetching corpus: 6348, signal 172407/194145 (executing program) 2025/09/01 11:44:18 fetching corpus: 6398, signal 172707/194167 (executing program) 2025/09/01 11:44:18 fetching corpus: 6448, signal 173202/194183 (executing program) 2025/09/01 11:44:18 fetching corpus: 6498, signal 173610/194183 (executing program) 2025/09/01 11:44:18 fetching corpus: 6548, signal 173884/194183 (executing program) 2025/09/01 11:44:18 fetching corpus: 6598, signal 174305/194196 (executing program) 2025/09/01 11:44:19 fetching corpus: 6648, signal 174531/194213 (executing program) 2025/09/01 11:44:19 fetching corpus: 6698, signal 175074/194217 (executing program) 2025/09/01 11:44:19 fetching corpus: 6748, signal 175580/194218 (executing program) 2025/09/01 11:44:19 fetching corpus: 6798, signal 175924/194219 (executing program) 2025/09/01 11:44:19 fetching corpus: 6848, signal 176291/194263 (executing program) 2025/09/01 11:44:19 fetching corpus: 6898, signal 176592/194270 (executing program) 2025/09/01 11:44:19 fetching corpus: 6948, signal 176956/194274 (executing program) 2025/09/01 11:44:19 fetching corpus: 6998, signal 177244/194288 (executing program) 2025/09/01 11:44:19 fetching corpus: 7048, signal 177472/194292 (executing program) 2025/09/01 11:44:19 fetching corpus: 7098, signal 177876/194311 (executing program) 2025/09/01 11:44:19 fetching corpus: 7148, signal 178144/194312 (executing program) 2025/09/01 11:44:20 fetching corpus: 7198, signal 178511/194315 (executing program) 2025/09/01 11:44:20 fetching corpus: 7248, signal 178792/194320 (executing program) 2025/09/01 11:44:20 fetching corpus: 7297, signal 179242/194322 (executing program) 2025/09/01 11:44:20 fetching corpus: 7347, signal 179703/194362 (executing program) 2025/09/01 11:44:20 fetching corpus: 7397, signal 179952/194366 (executing program) 2025/09/01 11:44:20 fetching corpus: 7447, signal 180102/194373 (executing program) 2025/09/01 11:44:20 fetching corpus: 7497, signal 180433/194377 (executing program) 2025/09/01 11:44:20 fetching corpus: 7547, signal 180873/194377 (executing program) 2025/09/01 11:44:20 fetching corpus: 7597, signal 181160/194377 (executing program) 2025/09/01 11:44:20 fetching corpus: 7647, signal 181470/194379 (executing program) 2025/09/01 11:44:20 fetching corpus: 7697, signal 181629/194385 (executing program) 2025/09/01 11:44:20 fetching corpus: 7747, signal 181996/194386 (executing program) 2025/09/01 11:44:21 fetching corpus: 7797, signal 182496/194397 (executing program) 2025/09/01 11:44:21 fetching corpus: 7847, signal 182808/194399 (executing program) 2025/09/01 11:44:21 fetching corpus: 7897, signal 183092/194401 (executing program) 2025/09/01 11:44:21 fetching corpus: 7947, signal 183366/194413 (executing program) 2025/09/01 11:44:21 fetching corpus: 7996, signal 183676/194460 (executing program) 2025/09/01 11:44:21 fetching corpus: 8046, signal 183969/194469 (executing program) 2025/09/01 11:44:21 fetching corpus: 8096, signal 184557/194502 (executing program) 2025/09/01 11:44:21 fetching corpus: 8146, signal 184820/194504 (executing program) 2025/09/01 11:44:21 fetching corpus: 8196, signal 185226/194507 (executing program) 2025/09/01 11:44:21 fetching corpus: 8246, signal 185549/194508 (executing program) 2025/09/01 11:44:21 fetching corpus: 8296, signal 185840/194508 (executing program) 2025/09/01 11:44:21 fetching corpus: 8346, signal 186110/194523 (executing program) 2025/09/01 11:44:21 fetching corpus: 8396, signal 186331/194529 (executing program) 2025/09/01 11:44:22 fetching corpus: 8446, signal 186523/194535 (executing program) 2025/09/01 11:44:22 fetching corpus: 8496, signal 186789/194540 (executing program) 2025/09/01 11:44:22 fetching corpus: 8546, signal 187027/194547 (executing program) 2025/09/01 11:44:22 fetching corpus: 8596, signal 187312/194547 (executing program) 2025/09/01 11:44:22 fetching corpus: 8646, signal 187780/194555 (executing program) 2025/09/01 11:44:22 fetching corpus: 8696, signal 187996/194561 (executing program) 2025/09/01 11:44:22 fetching corpus: 8746, signal 188191/194564 (executing program) 2025/09/01 11:44:22 fetching corpus: 8796, signal 188397/194565 (executing program) 2025/09/01 11:44:22 fetching corpus: 8846, signal 188599/194567 (executing program) 2025/09/01 11:44:22 fetching corpus: 8896, signal 188899/194570 (executing program) 2025/09/01 11:44:22 fetching corpus: 8946, signal 190735/194574 (executing program) 2025/09/01 11:44:23 fetching corpus: 8996, signal 190992/194582 (executing program) 2025/09/01 11:44:23 fetching corpus: 9046, signal 191543/194585 (executing program) 2025/09/01 11:44:23 fetching corpus: 9073, signal 191741/194591 (executing program) 2025/09/01 11:44:23 fetching corpus: 9073, signal 191741/194591 (executing program) 2025/09/01 11:44:25 starting 8 fuzzer processes 11:44:25 executing program 0: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) modify_ldt$write2(0x2, 0x0, 0x10) 11:44:25 executing program 1: r0 = io_uring_setup(0x5885, &(0x7f0000000480)) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r1, &(0x7f0000001fc0)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast2}, 0x10, &(0x7f0000000800)=[{&(0x7f0000000240)="06d5267a31baebee05970a797e1571307b155ac093438ad5d7ba18323765048879fca0d76fa8b8d7c027e291fb287a778538618d225294e0b76fc6903754f2c2c79c11fd4a6c4735f822eef28c700c7e2df622a6a6406024a2201b1cac024562139e91615be858ca550cb6e770213d535e16a8b28c50871f89efe60aeb74f2943f20992b6442d7cf1f", 0x89}, {&(0x7f0000000300)="413230529e1f9877c26aeffb147485608444bd389b1ddad0691708da493d25f995cbcc82734d7b2b085ab5e12b0cb2ee281808073553a9c0defee0ef48139828bac58b36e9c22ac55bd7adc8e6e20f99c1e157faaf6c1cead23b46a20a5e5976dea1be4330fb30812d991ac17d999a616400f6c3264bb7c03a606b267f9329456db4", 0x82}, {&(0x7f00000003c0)="86b9f1f27f2f713f4653f2e7dd2454a7995e461d9018dc6878df13318a457773473fed320e82aa668c7655243b9ba127b633658ffe243cc89cf4bb4d69962100d932fde53f47b7f015cb3df44fde7c2e4df9f8286aa1b71480a9876de21e7d", 0x5f}, {&(0x7f0000000440)="78daeab66fa97603330a537e46862dfc7665b7d1f7421cec109ea256398669d61f37", 0x22}, {&(0x7f00000004c0)="194ca9ac88e03495ba7d6c6fb80d2c29b82824e91f04a0cb96d57d2be335fa5dbc4b06cf9eed995c1d4378a45593870579b22d0b1f88f38a3d713733ee4feb022f37717023cc7607708c3d4c3856813a8c804998a312ae3b32f40a939f14cf45eee34ce27acf306ee2d53c0008763ab21289529fa47b3a1aa8c48385278ea9fe50999d4115282b0fc83cb2a84fd93e5c8614050e6e6def29b76c4cd002d8c34ef19d1f28d77bde110f98a83de1b378731781cc878ee0ea61f5ddfdd15deb3d", 0xbf}, {&(0x7f0000000580)="89b96b18f29df6265464b8d02d4c4ffa8e4953667f5a91880e8d3bb24078712db2e0ed716a977ae903922093c276978b07fe5b84ca047fe7bb1ec9fa97886609ad236491651ed59866208c7eb52de1083f361d945f628bdc2313b01832ce4ad445d0eb6466b3692736d9143b004f6a733277f0db41f772c6f604f5dcb310f45fbc1980121d33aad79d9b76c51f0a2a73b9", 0x91}, {&(0x7f0000000640)="1e15260904ffb6285296ae11e0cedd604a49580dc573aba7ee188313dce1ae4651a4bb5e00445abd5765bec5777ab8ac836f6e52856284077df111e9c25806a15f14d2f2020e7ffca1253e95aec6efc6689f96", 0x53}, {&(0x7f00000006c0)="0c497acead4b14feca96be0e0c4019d6d6fb74f60cb2e3308884a311acad9d", 0x1f}, {&(0x7f0000000700)="12bc976dd6f76e44d85124b01846e3e7416c93a2ed752777bb27f3f0cf2b1d548fa8f05141e46b32e8dddfb9d735a0a33d29030de12c3af725f2bab34d4a1cee365f255bc4fa8cfbb366f808964b5fd436a642ad453386fb118daf84d54b7e51cf464ef35bb2b209e2afdf8ca011c4caabaac56ea63dca6f22c7256f3d5bbbc6d4f52de1705bbbd64ba49c80f7d41cab853857d4204193d7e8d9929379bc0de3510abfd3faffd27d2ce11fd639a8a9a505ab638ae27acf47a36fe7330355d8e2c2d117ecd09703ab36", 0xc9}], 0x9, &(0x7f0000000a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @remote}}}], 0x20}}, {{&(0x7f0000000a40)={0x2, 0x0, @dev}, 0x10, &(0x7f0000001c00)=[{&(0x7f0000000a80)="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", 0x1b2}], 0x1}}], 0x2, 0x20048804) close_range(r0, 0xffffffffffffffff, 0x0) 11:44:25 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='loginuid\x00') fgetxattr(r0, &(0x7f0000000040)=@known='trusted.overlay.nlink\x00', &(0x7f0000000080)=""/228, 0xe4) 11:44:25 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_STATION(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}]}, 0x20}}, 0x0) 11:44:25 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000001100)=[{{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000500)="abc8", 0x2}, {0x0}], 0x2}}, {{0x0, 0x0, 0x0}}], 0x2, 0x44009) [ 80.515178] audit: type=1400 audit(1756727065.645:7): avc: denied { execmem } for pid=271 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:44:25 executing program 4: io_setup(0x572, &(0x7f0000000140)=0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0xaf, 0x0, 0x0, r1, 0x0, 0x17}]) 11:44:25 executing program 5: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = memfd_secret(0x80000) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x40002, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r2) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x2a4000, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0xb) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2) unshare(0x8020080) unshare(0x8040000) unshare(0x280) semget(0x1, 0x4, 0x1) 11:44:25 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x19, 0x0, &(0x7f00000004c0)) [ 81.687469] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.690718] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.692720] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.698416] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.700939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.752950] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 81.755908] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 81.758620] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 81.765930] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 81.774614] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 81.886931] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 81.898485] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 81.900900] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 81.910062] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 81.913094] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 81.921866] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 81.930546] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 81.932850] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 81.945560] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 81.950611] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 81.951889] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 81.956632] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 81.959865] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 81.964073] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 81.966166] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 81.968996] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 81.974755] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 81.977070] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 81.978573] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 81.978976] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 81.982925] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 81.986205] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.014147] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.022807] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 82.043594] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.046821] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.048719] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 82.062619] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 82.064176] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 82.108133] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 83.719378] Bluetooth: hci0: command tx timeout [ 83.846424] Bluetooth: hci1: command tx timeout [ 83.974714] Bluetooth: hci2: command tx timeout [ 84.102745] Bluetooth: hci6: command tx timeout [ 84.166516] Bluetooth: hci7: command tx timeout [ 84.167522] Bluetooth: hci3: command tx timeout [ 84.167799] Bluetooth: hci5: command tx timeout [ 84.168500] Bluetooth: hci4: command tx timeout [ 85.767056] Bluetooth: hci0: command tx timeout [ 85.894417] Bluetooth: hci1: command tx timeout [ 86.023402] Bluetooth: hci2: command tx timeout [ 86.152119] Bluetooth: hci6: command tx timeout [ 86.214520] Bluetooth: hci5: command tx timeout [ 86.215589] Bluetooth: hci7: command tx timeout [ 86.216050] Bluetooth: hci3: command tx timeout [ 86.217492] Bluetooth: hci4: command tx timeout [ 87.816462] Bluetooth: hci0: command tx timeout [ 87.942909] Bluetooth: hci1: command tx timeout [ 88.070389] Bluetooth: hci2: command tx timeout [ 88.201343] Bluetooth: hci6: command tx timeout [ 88.263389] Bluetooth: hci3: command tx timeout [ 88.263821] Bluetooth: hci4: command tx timeout [ 88.264203] Bluetooth: hci7: command tx timeout [ 88.264615] Bluetooth: hci5: command tx timeout [ 89.862478] Bluetooth: hci0: command tx timeout [ 89.990429] Bluetooth: hci1: command tx timeout [ 90.120368] Bluetooth: hci2: command tx timeout [ 90.247742] Bluetooth: hci6: command tx timeout [ 90.311417] Bluetooth: hci5: command tx timeout [ 90.311891] Bluetooth: hci7: command tx timeout [ 90.312278] Bluetooth: hci4: command tx timeout [ 90.312707] Bluetooth: hci3: command tx timeout [ 118.561787] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.562794] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.746042] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.746705] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.164402] audit: type=1400 audit(1756727104.297:8): avc: denied { open } for pid=3670 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 119.173565] audit: type=1400 audit(1756727104.299:9): avc: denied { kernel } for pid=3670 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.211992] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.212785] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.301735] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.302611] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.356185] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.356851] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.454302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.454946] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.584902] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.585813] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.644132] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.644735] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.883995] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.885808] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.988396] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.988996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.383674] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.384288] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.425352] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.426486] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.598831] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.600053] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.648993] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.649637] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.839123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.840093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.873586] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.874180] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:45:07 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDSIGACCEPT(r0, 0x5410, 0x0) 11:45:07 executing program 4: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$SO_COOKIE(r0, 0x1, 0x27, 0x0, &(0x7f0000001440)) 11:45:07 executing program 2: pipe(&(0x7f0000000880)={0xffffffffffffffff}) fcntl$setstatus(r0, 0x407, 0x1002000) pipe(&(0x7f0000000880)={0xffffffffffffffff}) fcntl$setstatus(r1, 0x407, 0x1002000) 11:45:07 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) get_mempolicy(&(0x7f0000000140), 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3) 11:45:07 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f00000021c0)={0x0, {{0xa, 0x0, 0x0, @remote}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) 11:45:07 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='loginuid\x00') fgetxattr(r0, &(0x7f0000000040)=@known='trusted.overlay.nlink\x00', &(0x7f0000000080)=""/228, 0xe4) 11:45:07 executing program 5: pselect6(0x639, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3938700}, 0x0) 11:45:07 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in=@dev, @in6=@empty, 0x0, 0x0, 0x0, 0x7ce, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x0, 0x3c}, 0x0, @in=@dev}}, 0xe8) connect$inet6(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @loopback}, 0x1c) 11:45:07 executing program 2: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x7, &(0x7f0000000140), 0x4) 11:45:07 executing program 4: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getpid() seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x3, &(0x7f0000000140)=[{0x20, 0x0, 0x0, 0x11}, {}, {0x6}]}) r1 = pidfd_open(0x0, 0x0) pidfd_getfd(r1, r1, 0x0) getpgrp(0x0) tgkill(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xb7, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) kcmp(0x0, 0x0, 0x4, r0, 0xffffffffffffffff) pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x0) 11:45:07 executing program 1: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1) r0 = inotify_init1(0x0) r1 = inotify_init() inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000320) inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10) unlink(&(0x7f0000000340)='./file0\x00') 11:45:07 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in=@dev, @in6=@empty, 0x0, 0x0, 0x0, 0x7ce, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x0, 0x3c}, 0x0, @in=@dev}}, 0xe8) connect$inet6(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @loopback}, 0x1c) 11:45:07 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='loginuid\x00') fgetxattr(r0, &(0x7f0000000040)=@known='trusted.overlay.nlink\x00', &(0x7f0000000080)=""/228, 0xe4) 11:45:07 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000280)=@req3={0x1000, 0x1, 0x400, 0x4}, 0x1c) sendmsg(r0, &(0x7f0000000780)={&(0x7f0000000100)=@ieee802154={0x24, @long}, 0x80, 0x0, 0x0, &(0x7f0000000300)=[{0x10, 0x1}], 0x10}, 0x0) [ 122.147591] BUG: unable to handle page fault for address: ffffed10212c9296 [ 122.148168] #PF: supervisor read access in kernel mode [ 122.148573] #PF: error_code(0x0000) - not-present page [ 122.148978] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 122.149422] Oops: Oops: 0000 [#1] SMP KASAN NOPTI [ 122.150413] CPU: 0 UID: 0 PID: 3917 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 122.152866] Tainted: [W]=WARN [ 122.153504] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 122.155570] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.156527] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.158655] RSP: 0018:ffff888047edf780 EFLAGS: 00010016 [ 122.159074] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc90007e40000 [ 122.159626] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881096494b0 [ 122.160172] RBP: ffff888047edf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16b80 [ 122.160725] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000 [ 122.161278] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 122.161836] FS: 00007fa91c1b9700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 122.162472] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.162931] CR2: ffffed10212c9296 CR3: 0000000045a74000 CR4: 0000000000350ef0 [ 122.163489] Call Trace: [ 122.163697] [ 122.163883] ? __pfx_perf_tp_event+0x10/0x10 [ 122.164242] ? __asan_memcpy+0x3d/0x60 [ 122.164557] ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150 [ 122.165042] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10 [ 122.165545] ? lock_is_held_type+0x9e/0x120 [ 122.165894] ? ctx_sched_in+0x134/0x9b0 [ 122.166208] ? kvm_sched_clock_read+0x16/0x30 [ 122.166576] ? sched_clock+0x37/0x60 [ 122.166878] ? sched_clock_cpu+0x6c/0x4e0 [ 122.167210] ? lock_is_held_type+0x9e/0x120 [ 122.167563] ? perf_trace_run_bpf_submit+0xef/0x180 [ 122.167961] ? lock_is_held_type+0x9e/0x120 [ 122.168309] perf_trace_run_bpf_submit+0xef/0x180 [ 122.168697] perf_trace_preemptirq_template+0x259/0x430 [ 122.169116] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 122.169573] ? check_preempt_wakeup_fair+0x406/0x950 [ 122.169972] ? find_held_lock+0x2b/0x80 [ 122.170293] ? try_to_wake_up+0x8ae/0x11d0 [ 122.170642] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 122.171046] trace_irq_enable.constprop.0+0xa6/0x100 [ 122.171443] trace_hardirqs_on+0x26/0x40 [ 122.171765] _raw_spin_unlock_irqrestore+0x2c/0x50 [ 122.172154] try_to_wake_up+0x8ae/0x11d0 [ 122.172478] ? __pfx_try_to_wake_up+0x10/0x10 [ 122.172839] ? plist_del+0x122/0x270 [ 122.173140] ? find_held_lock+0x2b/0x80 [ 122.173460] ? futex_wake+0x474/0x540 [ 122.173768] wake_up_q+0xa1/0x130 [ 122.174053] futex_wake+0x47e/0x540 [ 122.174350] ? __pfx_futex_wake+0x10/0x10 [ 122.174693] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 122.175095] ? lock_release+0xc8/0x290 [ 122.175406] do_futex+0x26d/0x370 [ 122.175687] ? __pfx_do_futex+0x10/0x10 [ 122.176004] __x64_sys_futex+0x1c9/0x4d0 [ 122.176330] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 122.176790] ? __pfx___x64_sys_futex+0x10/0x10 [ 122.177155] ? xfd_validate_state+0x55/0x180 [ 122.177510] do_syscall_64+0xbf/0x360 [ 122.177812] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.178219] RIP: 0033:0x7fa91ec43b19 [ 122.178518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.179925] RSP: 002b:00007fa91c1b9218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.180525] RAX: ffffffffffffffda RBX: 00007fa91ed56f68 RCX: 00007fa91ec43b19 [ 122.181077] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa91ed56f6c [ 122.181632] RBP: 00007fa91ed56f60 R08: 000000000000000e R09: 0000000000000000 [ 122.182183] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fa91ed56f6c [ 122.182745] R13: 00007ffd1995adbf R14: 00007fa91c1b9300 R15: 0000000000022000 [ 122.183301] [ 122.183485] Modules linked in: [ 122.183744] CR2: ffffed10212c9296 [ 122.184015] ---[ end trace 0000000000000000 ]--- [ 122.184384] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.184758] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.186167] RSP: 0018:ffff888047edf780 EFLAGS: 00010016 [ 122.186593] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc90007e40000 [ 122.187144] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881096494b0 [ 122.187698] RBP: ffff888047edf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16b80 [ 122.188253] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000 [ 122.188810] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 122.189368] FS: 00007fa91c1b9700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 122.189995] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.190458] CR2: ffffed10212c9296 CR3: 0000000045a74000 CR4: 0000000000350ef0 [ 122.191022] note: syz-executor.4[3917] exited with irqs disabled [ 122.191552] BUG: unable to handle page fault for address: ffffed10212c9296 [ 122.192095] #PF: supervisor read access in kernel mode [ 122.192505] #PF: error_code(0x0000) - not-present page [ 122.192909] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 122.193352] Oops: Oops: 0000 [#2] SMP KASAN NOPTI [ 122.193733] CPU: 0 UID: 0 PID: 3917 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 122.194665] Tainted: [D]=DIE, [W]=WARN [ 122.194966] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 122.195599] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.195973] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.197376] RSP: 0018:ffff88806ce08b80 EFLAGS: 00010016 [ 122.197793] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: 0000000000000002 [ 122.198349] RDX: ffff888017209b80 RSI: ffffffff8189a4e7 RDI: ffff8881096494b0 [ 122.198909] RBP: ffff88806ce08df0 R08: ffff88806ce313e8 R09: ffffe8ffffc16b80 [ 122.199460] R10: 0000000000000000 R11: 0000000000022075 R12: dffffc0000000000 [ 122.200013] R13: 0000000000000014 R14: ffff88806ce313e8 R15: dffffc0000000000 [ 122.200569] FS: 00007fa91c1b9700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 122.201193] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.201650] CR2: ffffed10212c9296 CR3: 0000000045a74000 CR4: 0000000000350ef0 [ 122.202212] Call Trace: [ 122.202422] [ 122.202599] ? __pfx_perf_tp_event+0x10/0x10 [ 122.202957] ? enqueue_task_fair+0xded/0x1e00 [ 122.203320] ? check_preempt_wakeup_fair+0x6e/0x950 [ 122.203718] ? wakeup_preempt+0x140/0x2a0 [ 122.204047] ? lock_release+0x1c7/0x290 [ 122.204364] ? lock_release+0x1c7/0x290 [ 122.204684] ? do_raw_spin_unlock+0x53/0x220 [ 122.205042] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 122.205444] ? try_to_wake_up+0x8ae/0x11d0 [ 122.205788] ? do_raw_spin_lock+0x123/0x260 [ 122.206134] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 122.206516] ? perf_trace_run_bpf_submit+0xef/0x180 [ 122.206914] perf_trace_run_bpf_submit+0xef/0x180 [ 122.207300] perf_trace_preemptirq_template+0x259/0x430 [ 122.207718] ? read_tsc+0x9/0x20 [ 122.207994] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 122.208454] ? clockevents_program_event+0x135/0x360 [ 122.208860] ? tick_program_event+0xac/0x140 [ 122.209215] ? handle_softirqs+0x16e/0x770 [ 122.209558] trace_irq_enable.constprop.0+0xa6/0x100 [ 122.209954] trace_hardirqs_on+0x26/0x40 [ 122.210283] handle_softirqs+0x16e/0x770 [ 122.210624] __irq_exit_rcu+0xc4/0x100 [ 122.210940] irq_exit_rcu+0x9/0x20 [ 122.211227] sysvec_apic_timer_interrupt+0x70/0x80 [ 122.211615] [ 122.211796] [ 122.211977] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 122.212391] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 122.212762] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de [ 122.214168] RSP: 0018:ffff888047edff28 EFLAGS: 00000246 [ 122.214589] RAX: 0000000000000001 RBX: ffff888017209b80 RCX: ffffffff817c3ab6 [ 122.215142] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 122.215695] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000 [ 122.216248] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff888017209b80 [ 122.216799] R13: 0000000000000009 R14: ffff888047edf760 R15: 0000000000000000 [ 122.217353] ? trace_irq_enable.constprop.0+0x26/0x100 [ 122.217763] ? make_task_dead+0x214/0x3b0 [ 122.218096] ? make_task_dead+0x214/0x3b0 [ 122.218431] ? do_syscall_64+0xbf/0x360 [ 122.218745] rewind_stack_and_make_dead+0x16/0x20 [ 122.219131] RIP: 0033:0x7fa91ec43b19 [ 122.219426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.220827] RSP: 002b:00007fa91c1b9218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.221424] RAX: ffffffffffffffda RBX: 00007fa91ed56f68 RCX: 00007fa91ec43b19 [ 122.221978] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa91ed56f6c [ 122.222540] RBP: 00007fa91ed56f60 R08: 000000000000000e R09: 0000000000000000 [ 122.223091] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fa91ed56f6c [ 122.223644] R13: 00007ffd1995adbf R14: 00007fa91c1b9300 R15: 0000000000022000 [ 122.224199] [ 122.224389] Modules linked in: [ 122.224644] CR2: ffffed10212c9296 [ 122.224918] ---[ end trace 0000000000000000 ]--- [ 122.225285] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.225654] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.227056] RSP: 0018:ffff888047edf780 EFLAGS: 00010016 [ 122.227474] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc90007e40000 [ 122.228028] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881096494b0 [ 122.228583] RBP: ffff888047edf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16b80 [ 122.229138] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000 [ 122.229692] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 122.230246] FS: 00007fa91c1b9700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 122.230876] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.231332] CR2: ffffed10212c9296 CR3: 0000000045a74000 CR4: 0000000000350ef0 [ 122.231888] Kernel panic - not syncing: Fatal exception in interrupt [ 122.232582] Kernel Offset: disabled [ 122.232870] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 11:45:07 Registers: info registers vcpu 0 RAX=0000000000000048 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888047edefc8 R8 =0000000000000000 R9 =ffffed100161e046 R10=0000000000000048 R11=6572617764726148 R12=0000000000000048 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fa91c1b9700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe6300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=ffffed10212c9296 CR3=0000000045a74000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fa91ed2a7c000007fa91ed2a7c8 XMM02=00007fa91ed2a7e000007fa91ed2a7c0 XMM03=00007fa91ed2a7c800007fa91ed2a7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff819e59f2 RDX=ffff888016048000 RSI=ffffffff819e5a15 RDI=0000000000000007 RBP=ffffea0000e7bb80 RSP=ffff888016a9f6b8 R8 =0000000000000000 R9 =fffff940001cf768 R10=0000000000000000 R11=ffff88800e84fab1 R12=8000000039eee007 R13=ffffea0000e7bb80 R14=ffffea0000e7bb80 R15=dffffc0000000000 RIP=ffffffff8173f6b8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055558131b400 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe5e00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffde9666bf8 CR3=000000003fd4c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000