Warning: Permanently added '[localhost]:64314' (ECDSA) to the list of known hosts. 2025/09/01 11:58:28 fuzzer started 2025/09/01 11:58:28 dialing manager at localhost:35473 syzkaller login: [ 51.363308] cgroup: Unknown subsys name 'net' [ 51.411119] cgroup: Unknown subsys name 'cpuset' [ 51.428590] cgroup: Unknown subsys name 'rlimit' 2025/09/01 11:58:39 syscalls: 2214 2025/09/01 11:58:39 code coverage: enabled 2025/09/01 11:58:39 comparison tracing: enabled 2025/09/01 11:58:39 extra coverage: enabled 2025/09/01 11:58:39 setuid sandbox: enabled 2025/09/01 11:58:39 namespace sandbox: enabled 2025/09/01 11:58:39 Android sandbox: enabled 2025/09/01 11:58:39 fault injection: enabled 2025/09/01 11:58:39 leak checking: enabled 2025/09/01 11:58:39 net packet injection: enabled 2025/09/01 11:58:39 net device setup: enabled 2025/09/01 11:58:39 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 11:58:39 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 11:58:39 USB emulation: enabled 2025/09/01 11:58:39 hci packet injection: enabled 2025/09/01 11:58:39 wifi device emulation: enabled 2025/09/01 11:58:39 802.15.4 emulation: enabled 2025/09/01 11:58:39 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 11:58:39 fetching corpus: 50, signal 24146/27644 (executing program) 2025/09/01 11:58:39 fetching corpus: 100, signal 33916/38861 (executing program) 2025/09/01 11:58:39 fetching corpus: 150, signal 39957/46286 (executing program) 2025/09/01 11:58:39 fetching corpus: 200, signal 44813/52483 (executing program) 2025/09/01 11:58:40 fetching corpus: 250, signal 50969/59764 (executing program) 2025/09/01 11:58:40 fetching corpus: 300, signal 55141/65115 (executing program) 2025/09/01 11:58:40 fetching corpus: 350, signal 58313/69507 (executing program) 2025/09/01 11:58:40 fetching corpus: 400, signal 62106/74312 (executing program) 2025/09/01 11:58:40 fetching corpus: 450, signal 64339/77709 (executing program) 2025/09/01 11:58:40 fetching corpus: 500, signal 67643/81978 (executing program) 2025/09/01 11:58:40 fetching corpus: 550, signal 72208/87217 (executing program) 2025/09/01 11:58:40 fetching corpus: 600, signal 74969/90879 (executing program) 2025/09/01 11:58:40 fetching corpus: 650, signal 78081/94731 (executing program) 2025/09/01 11:58:40 fetching corpus: 700, signal 81236/98587 (executing program) 2025/09/01 11:58:41 fetching corpus: 750, signal 83008/101244 (executing program) 2025/09/01 11:58:41 fetching corpus: 800, signal 85846/104734 (executing program) 2025/09/01 11:58:41 fetching corpus: 850, signal 88053/107624 (executing program) 2025/09/01 11:58:41 fetching corpus: 900, signal 91250/111280 (executing program) 2025/09/01 11:58:41 fetching corpus: 950, signal 93166/113866 (executing program) 2025/09/01 11:58:41 fetching corpus: 1000, signal 95138/116454 (executing program) 2025/09/01 11:58:41 fetching corpus: 1050, signal 96993/118953 (executing program) 2025/09/01 11:58:41 fetching corpus: 1100, signal 98281/120952 (executing program) 2025/09/01 11:58:41 fetching corpus: 1150, signal 99116/122610 (executing program) 2025/09/01 11:58:41 fetching corpus: 1200, signal 100521/124689 (executing program) 2025/09/01 11:58:41 fetching corpus: 1250, signal 101890/126660 (executing program) 2025/09/01 11:58:41 fetching corpus: 1300, signal 103199/128511 (executing program) 2025/09/01 11:58:42 fetching corpus: 1350, signal 105154/130875 (executing program) 2025/09/01 11:58:42 fetching corpus: 1400, signal 106857/132947 (executing program) 2025/09/01 11:58:42 fetching corpus: 1450, signal 108231/134839 (executing program) 2025/09/01 11:58:42 fetching corpus: 1500, signal 109744/136731 (executing program) 2025/09/01 11:58:42 fetching corpus: 1550, signal 111057/138502 (executing program) 2025/09/01 11:58:42 fetching corpus: 1600, signal 112145/140113 (executing program) 2025/09/01 11:58:42 fetching corpus: 1650, signal 113116/141627 (executing program) 2025/09/01 11:58:42 fetching corpus: 1700, signal 114466/143317 (executing program) 2025/09/01 11:58:42 fetching corpus: 1750, signal 115160/144568 (executing program) 2025/09/01 11:58:42 fetching corpus: 1800, signal 116208/146082 (executing program) 2025/09/01 11:58:42 fetching corpus: 1850, signal 117286/147600 (executing program) 2025/09/01 11:58:43 fetching corpus: 1900, signal 118431/149037 (executing program) 2025/09/01 11:58:43 fetching corpus: 1950, signal 119517/150522 (executing program) 2025/09/01 11:58:43 fetching corpus: 2000, signal 120643/151967 (executing program) 2025/09/01 11:58:43 fetching corpus: 2050, signal 122055/153543 (executing program) 2025/09/01 11:58:43 fetching corpus: 2100, signal 124154/155465 (executing program) 2025/09/01 11:58:43 fetching corpus: 2150, signal 124940/156599 (executing program) 2025/09/01 11:58:43 fetching corpus: 2200, signal 126205/158062 (executing program) 2025/09/01 11:58:43 fetching corpus: 2250, signal 127182/159301 (executing program) 2025/09/01 11:58:43 fetching corpus: 2300, signal 127832/160378 (executing program) 2025/09/01 11:58:43 fetching corpus: 2350, signal 128711/161523 (executing program) 2025/09/01 11:58:43 fetching corpus: 2400, signal 129613/162676 (executing program) 2025/09/01 11:58:44 fetching corpus: 2450, signal 130497/163747 (executing program) 2025/09/01 11:58:44 fetching corpus: 2500, signal 131181/164666 (executing program) 2025/09/01 11:58:44 fetching corpus: 2550, signal 131861/165647 (executing program) 2025/09/01 11:58:44 fetching corpus: 2600, signal 132881/166782 (executing program) 2025/09/01 11:58:44 fetching corpus: 2650, signal 133986/167947 (executing program) 2025/09/01 11:58:44 fetching corpus: 2700, signal 135019/169071 (executing program) 2025/09/01 11:58:44 fetching corpus: 2750, signal 135644/169985 (executing program) 2025/09/01 11:58:44 fetching corpus: 2800, signal 137040/171171 (executing program) 2025/09/01 11:58:44 fetching corpus: 2850, signal 138068/172184 (executing program) 2025/09/01 11:58:44 fetching corpus: 2900, signal 138814/173053 (executing program) 2025/09/01 11:58:45 fetching corpus: 2950, signal 139468/173868 (executing program) 2025/09/01 11:58:45 fetching corpus: 3000, signal 140163/174729 (executing program) 2025/09/01 11:58:45 fetching corpus: 3050, signal 140972/175658 (executing program) 2025/09/01 11:58:45 fetching corpus: 3100, signal 141568/176403 (executing program) 2025/09/01 11:58:45 fetching corpus: 3150, signal 142479/177280 (executing program) 2025/09/01 11:58:45 fetching corpus: 3200, signal 143152/178040 (executing program) 2025/09/01 11:58:45 fetching corpus: 3250, signal 143615/178716 (executing program) 2025/09/01 11:58:45 fetching corpus: 3300, signal 144197/179474 (executing program) 2025/09/01 11:58:45 fetching corpus: 3350, signal 144688/180142 (executing program) 2025/09/01 11:58:45 fetching corpus: 3400, signal 145301/180830 (executing program) 2025/09/01 11:58:45 fetching corpus: 3450, signal 145993/181568 (executing program) 2025/09/01 11:58:45 fetching corpus: 3500, signal 146527/182232 (executing program) 2025/09/01 11:58:46 fetching corpus: 3550, signal 147465/183006 (executing program) 2025/09/01 11:58:46 fetching corpus: 3600, signal 147873/183647 (executing program) 2025/09/01 11:58:46 fetching corpus: 3650, signal 148803/184355 (executing program) 2025/09/01 11:58:46 fetching corpus: 3700, signal 149684/184989 (executing program) 2025/09/01 11:58:46 fetching corpus: 3750, signal 150433/185584 (executing program) 2025/09/01 11:58:46 fetching corpus: 3800, signal 151276/186192 (executing program) 2025/09/01 11:58:46 fetching corpus: 3850, signal 151755/186720 (executing program) 2025/09/01 11:58:46 fetching corpus: 3900, signal 152237/187257 (executing program) 2025/09/01 11:58:46 fetching corpus: 3950, signal 152859/187825 (executing program) 2025/09/01 11:58:47 fetching corpus: 4000, signal 153372/188319 (executing program) 2025/09/01 11:58:47 fetching corpus: 4050, signal 153908/188806 (executing program) 2025/09/01 11:58:47 fetching corpus: 4100, signal 154398/189287 (executing program) 2025/09/01 11:58:47 fetching corpus: 4150, signal 154784/189792 (executing program) 2025/09/01 11:58:47 fetching corpus: 4200, signal 155224/190258 (executing program) 2025/09/01 11:58:47 fetching corpus: 4250, signal 155749/190703 (executing program) 2025/09/01 11:58:47 fetching corpus: 4300, signal 156078/191118 (executing program) 2025/09/01 11:58:47 fetching corpus: 4350, signal 156570/191594 (executing program) 2025/09/01 11:58:47 fetching corpus: 4400, signal 157098/192040 (executing program) 2025/09/01 11:58:47 fetching corpus: 4450, signal 157566/192445 (executing program) 2025/09/01 11:58:47 fetching corpus: 4500, signal 157922/192845 (executing program) 2025/09/01 11:58:48 fetching corpus: 4550, signal 158273/193274 (executing program) 2025/09/01 11:58:48 fetching corpus: 4600, signal 158636/193679 (executing program) 2025/09/01 11:58:48 fetching corpus: 4650, signal 159206/194102 (executing program) 2025/09/01 11:58:48 fetching corpus: 4700, signal 159648/194491 (executing program) 2025/09/01 11:58:48 fetching corpus: 4750, signal 160026/194857 (executing program) 2025/09/01 11:58:48 fetching corpus: 4800, signal 160496/194887 (executing program) 2025/09/01 11:58:48 fetching corpus: 4850, signal 160813/194892 (executing program) 2025/09/01 11:58:48 fetching corpus: 4900, signal 161238/194921 (executing program) 2025/09/01 11:58:48 fetching corpus: 4950, signal 161778/194928 (executing program) 2025/09/01 11:58:48 fetching corpus: 5000, signal 162440/194933 (executing program) 2025/09/01 11:58:48 fetching corpus: 5050, signal 162887/194937 (executing program) 2025/09/01 11:58:49 fetching corpus: 5100, signal 163292/194939 (executing program) 2025/09/01 11:58:49 fetching corpus: 5150, signal 163625/194951 (executing program) 2025/09/01 11:58:49 fetching corpus: 5200, signal 163964/194953 (executing program) 2025/09/01 11:58:49 fetching corpus: 5250, signal 164360/194956 (executing program) 2025/09/01 11:58:49 fetching corpus: 5300, signal 164932/195048 (executing program) 2025/09/01 11:58:49 fetching corpus: 5350, signal 165442/195064 (executing program) 2025/09/01 11:58:49 fetching corpus: 5400, signal 165909/195109 (executing program) 2025/09/01 11:58:49 fetching corpus: 5450, signal 166253/195122 (executing program) 2025/09/01 11:58:49 fetching corpus: 5500, signal 166705/195128 (executing program) 2025/09/01 11:58:49 fetching corpus: 5550, signal 167017/195131 (executing program) 2025/09/01 11:58:49 fetching corpus: 5600, signal 167375/195136 (executing program) 2025/09/01 11:58:49 fetching corpus: 5650, signal 167741/195138 (executing program) 2025/09/01 11:58:50 fetching corpus: 5700, signal 168169/195149 (executing program) 2025/09/01 11:58:50 fetching corpus: 5750, signal 169075/195161 (executing program) 2025/09/01 11:58:50 fetching corpus: 5800, signal 169462/195161 (executing program) 2025/09/01 11:58:50 fetching corpus: 5850, signal 169726/195167 (executing program) 2025/09/01 11:58:50 fetching corpus: 5900, signal 170030/195174 (executing program) 2025/09/01 11:58:50 fetching corpus: 5950, signal 170378/195202 (executing program) 2025/09/01 11:58:50 fetching corpus: 6000, signal 170737/195246 (executing program) 2025/09/01 11:58:50 fetching corpus: 6050, signal 171034/195272 (executing program) 2025/09/01 11:58:50 fetching corpus: 6100, signal 171409/195273 (executing program) 2025/09/01 11:58:50 fetching corpus: 6150, signal 171639/195279 (executing program) 2025/09/01 11:58:50 fetching corpus: 6200, signal 171942/195298 (executing program) 2025/09/01 11:58:51 fetching corpus: 6250, signal 172308/195299 (executing program) 2025/09/01 11:58:51 fetching corpus: 6300, signal 172708/195300 (executing program) 2025/09/01 11:58:51 fetching corpus: 6350, signal 173071/195306 (executing program) 2025/09/01 11:58:51 fetching corpus: 6400, signal 173358/195306 (executing program) 2025/09/01 11:58:51 fetching corpus: 6450, signal 173799/195325 (executing program) 2025/09/01 11:58:51 fetching corpus: 6500, signal 174059/195349 (executing program) 2025/09/01 11:58:51 fetching corpus: 6550, signal 174362/195356 (executing program) 2025/09/01 11:58:51 fetching corpus: 6600, signal 174717/195363 (executing program) 2025/09/01 11:58:51 fetching corpus: 6650, signal 175030/195365 (executing program) 2025/09/01 11:58:51 fetching corpus: 6700, signal 175307/195368 (executing program) 2025/09/01 11:58:52 fetching corpus: 6750, signal 175619/195373 (executing program) 2025/09/01 11:58:52 fetching corpus: 6800, signal 176009/195384 (executing program) 2025/09/01 11:58:52 fetching corpus: 6850, signal 176392/195384 (executing program) 2025/09/01 11:58:52 fetching corpus: 6900, signal 176685/195406 (executing program) 2025/09/01 11:58:52 fetching corpus: 6950, signal 176981/195432 (executing program) 2025/09/01 11:58:52 fetching corpus: 7000, signal 177277/195446 (executing program) 2025/09/01 11:58:52 fetching corpus: 7050, signal 177625/195446 (executing program) 2025/09/01 11:58:52 fetching corpus: 7100, signal 177898/195449 (executing program) 2025/09/01 11:58:52 fetching corpus: 7150, signal 178087/195465 (executing program) 2025/09/01 11:58:52 fetching corpus: 7200, signal 178641/195477 (executing program) 2025/09/01 11:58:52 fetching corpus: 7250, signal 178985/195509 (executing program) 2025/09/01 11:58:52 fetching corpus: 7300, signal 179399/195516 (executing program) 2025/09/01 11:58:53 fetching corpus: 7350, signal 179647/195528 (executing program) 2025/09/01 11:58:53 fetching corpus: 7400, signal 179908/195532 (executing program) 2025/09/01 11:58:53 fetching corpus: 7450, signal 180569/195581 (executing program) 2025/09/01 11:58:53 fetching corpus: 7500, signal 180916/195581 (executing program) 2025/09/01 11:58:53 fetching corpus: 7550, signal 181339/195583 (executing program) 2025/09/01 11:58:53 fetching corpus: 7600, signal 181580/195591 (executing program) 2025/09/01 11:58:53 fetching corpus: 7650, signal 181925/195591 (executing program) 2025/09/01 11:58:53 fetching corpus: 7700, signal 182298/195609 (executing program) 2025/09/01 11:58:53 fetching corpus: 7750, signal 182572/195610 (executing program) 2025/09/01 11:58:53 fetching corpus: 7800, signal 182802/195619 (executing program) 2025/09/01 11:58:54 fetching corpus: 7850, signal 183118/195622 (executing program) 2025/09/01 11:58:54 fetching corpus: 7900, signal 183461/195623 (executing program) 2025/09/01 11:58:54 fetching corpus: 7950, signal 183858/195626 (executing program) 2025/09/01 11:58:54 fetching corpus: 8000, signal 184129/195626 (executing program) 2025/09/01 11:58:54 fetching corpus: 8050, signal 184427/195627 (executing program) 2025/09/01 11:58:54 fetching corpus: 8100, signal 184724/195629 (executing program) 2025/09/01 11:58:54 fetching corpus: 8150, signal 184931/195631 (executing program) 2025/09/01 11:58:54 fetching corpus: 8200, signal 185469/195637 (executing program) 2025/09/01 11:58:54 fetching corpus: 8250, signal 185672/195640 (executing program) 2025/09/01 11:58:54 fetching corpus: 8300, signal 186017/195654 (executing program) 2025/09/01 11:58:54 fetching corpus: 8350, signal 186366/195654 (executing program) 2025/09/01 11:58:54 fetching corpus: 8400, signal 186698/195685 (executing program) 2025/09/01 11:58:55 fetching corpus: 8450, signal 187004/195686 (executing program) 2025/09/01 11:58:55 fetching corpus: 8500, signal 187226/195690 (executing program) 2025/09/01 11:58:55 fetching corpus: 8550, signal 187470/195693 (executing program) 2025/09/01 11:58:55 fetching corpus: 8600, signal 187760/195698 (executing program) 2025/09/01 11:58:55 fetching corpus: 8650, signal 188091/195705 (executing program) 2025/09/01 11:58:55 fetching corpus: 8700, signal 188331/195707 (executing program) 2025/09/01 11:58:55 fetching corpus: 8750, signal 188571/195716 (executing program) 2025/09/01 11:58:55 fetching corpus: 8800, signal 188807/195744 (executing program) 2025/09/01 11:58:55 fetching corpus: 8850, signal 189230/195748 (executing program) 2025/09/01 11:58:55 fetching corpus: 8900, signal 189416/195759 (executing program) 2025/09/01 11:58:55 fetching corpus: 8950, signal 189724/195809 (executing program) 2025/09/01 11:58:55 fetching corpus: 9000, signal 190044/195809 (executing program) 2025/09/01 11:58:55 fetching corpus: 9050, signal 190335/195810 (executing program) 2025/09/01 11:58:56 fetching corpus: 9100, signal 192005/195811 (executing program) 2025/09/01 11:58:56 fetching corpus: 9150, signal 192190/195813 (executing program) 2025/09/01 11:58:56 fetching corpus: 9200, signal 192484/195816 (executing program) 2025/09/01 11:58:56 fetching corpus: 9250, signal 192815/195841 (executing program) 2025/09/01 11:58:56 fetching corpus: 9259, signal 192834/195841 (executing program) 2025/09/01 11:58:56 fetching corpus: 9259, signal 192834/195841 (executing program) 2025/09/01 11:58:58 starting 8 fuzzer processes 11:58:58 executing program 0: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) 11:58:58 executing program 1: r0 = memfd_create(&(0x7f0000001b80)='(\xc8\xf5\x82j\xca', 0x3) fcntl$addseals(r0, 0x409, 0x4) ftruncate(r0, 0x8) 11:58:58 executing program 2: pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$P9_RFLUSH(r0, &(0x7f0000000040)={0x7}, 0xfffffdef) 11:58:58 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) setresuid(0x0, 0xee01, 0x0) ioctl$TCSETAF(r0, 0x4b72, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, "9371b2b01ed9598e"}) 11:58:58 executing program 3: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fstat(r0, &(0x7f0000000840)) 11:58:58 executing program 7: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f00000001c0)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) setsockopt$bt_hci_HCI_TIME_STAMP(r0, 0x0, 0x3, 0x0, 0x0) [ 80.735378] audit: type=1400 audit(1756727938.512:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:58:58 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xaa, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x8000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 11:58:58 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) timer_create(0x0, 0x0, &(0x7f0000000200)) timer_delete(0x0) [ 81.921266] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.923900] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.925973] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.936161] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.946126] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.039938] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.043956] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.045922] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.049424] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.051620] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.128315] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.132802] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.135303] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.149660] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.158272] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.174788] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.180250] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 82.182022] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.185532] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.187607] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.189073] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 82.193382] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 82.224005] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 82.253007] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.260091] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.264169] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.267948] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 82.273949] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.275266] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 82.278795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.279778] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 82.281717] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 82.291144] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 82.293387] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 82.299753] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 82.301115] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 82.305820] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 82.307203] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 82.330381] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 82.331813] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 84.016277] Bluetooth: hci0: command tx timeout [ 84.079545] Bluetooth: hci1: command tx timeout [ 84.208202] Bluetooth: hci4: command tx timeout [ 84.271686] Bluetooth: hci2: command tx timeout [ 84.335697] Bluetooth: hci5: command tx timeout [ 84.336298] Bluetooth: hci3: command tx timeout [ 84.399537] Bluetooth: hci7: command tx timeout [ 84.400078] Bluetooth: hci6: command tx timeout [ 86.064196] Bluetooth: hci0: command tx timeout [ 86.127645] Bluetooth: hci1: command tx timeout [ 86.257494] Bluetooth: hci4: command tx timeout [ 86.319516] Bluetooth: hci2: command tx timeout [ 86.383568] Bluetooth: hci3: command tx timeout [ 86.384025] Bluetooth: hci5: command tx timeout [ 86.447588] Bluetooth: hci6: command tx timeout [ 86.448039] Bluetooth: hci7: command tx timeout [ 88.113536] Bluetooth: hci0: command tx timeout [ 88.174536] Bluetooth: hci1: command tx timeout [ 88.303529] Bluetooth: hci4: command tx timeout [ 88.367515] Bluetooth: hci2: command tx timeout [ 88.431670] Bluetooth: hci5: command tx timeout [ 88.432127] Bluetooth: hci3: command tx timeout [ 88.495545] Bluetooth: hci7: command tx timeout [ 88.495993] Bluetooth: hci6: command tx timeout [ 90.161369] Bluetooth: hci0: command tx timeout [ 90.225486] Bluetooth: hci1: command tx timeout [ 90.351529] Bluetooth: hci4: command tx timeout [ 90.415530] Bluetooth: hci2: command tx timeout [ 90.479608] Bluetooth: hci3: command tx timeout [ 90.480055] Bluetooth: hci5: command tx timeout [ 90.543586] Bluetooth: hci7: command tx timeout [ 90.544037] Bluetooth: hci6: command tx timeout [ 119.639604] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.640303] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.772176] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.772819] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.948001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.948803] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.111096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.111772] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:59:38 executing program 6: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_flowlabel\x00') pread64(r0, &(0x7f0000000040)=""/218, 0xda, 0x1) 11:59:38 executing program 1: r0 = memfd_create(&(0x7f0000001b80)='(\xc8\xf5\x82j\xca', 0x3) fcntl$addseals(r0, 0x409, 0x4) ftruncate(r0, 0x8) [ 120.675601] audit: type=1400 audit(1756727978.451:8): avc: denied { open } for pid=3789 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.682395] audit: type=1400 audit(1756727978.451:9): avc: denied { kernel } for pid=3789 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 11:59:38 executing program 6: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_flowlabel\x00') pread64(r0, &(0x7f0000000040)=""/218, 0xda, 0x1) 11:59:38 executing program 1: r0 = memfd_create(&(0x7f0000001b80)='(\xc8\xf5\x82j\xca', 0x3) fcntl$addseals(r0, 0x409, 0x4) ftruncate(r0, 0x8) 11:59:38 executing program 1: r0 = memfd_create(&(0x7f0000001b80)='(\xc8\xf5\x82j\xca', 0x3) fcntl$addseals(r0, 0x409, 0x4) ftruncate(r0, 0x8) 11:59:38 executing program 6: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_flowlabel\x00') pread64(r0, &(0x7f0000000040)=""/218, 0xda, 0x1) 11:59:38 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) semop(0x0, &(0x7f0000000340)=[{}], 0x1) 11:59:38 executing program 6: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_flowlabel\x00') pread64(r0, &(0x7f0000000040)=""/218, 0xda, 0x1) [ 121.280721] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.281321] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.411702] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.412311] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.554525] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.555130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.672073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.672711] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.794042] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.794753] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.880867] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.881644] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.972069] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.972937] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.013074] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.013830] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.079397] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.080140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.106267] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.107223] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.193080] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.194033] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.261879] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.263339] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:59:40 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x0, 0x0) read$snapshot(r0, &(0x7f0000000000)=""/86, 0x56) 11:59:40 executing program 5: creat(&(0x7f00000003c0)='./file0\x00', 0x0) r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0xd400080b) r1 = inotify_init() inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000000) inotify_add_watch(r1, &(0x7f0000000080)='./file0\x00', 0x800) 11:59:40 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/igmp6\x00') pread64(r0, &(0x7f0000000140)=""/4096, 0x1000, 0x4) 11:59:40 executing program 2: perf_event_open(&(0x7f0000000140)={0x1, 0x88, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 11:59:40 executing program 6: ioperm(0x0, 0x6, 0x3) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x84840) 11:59:40 executing program 3: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fstat(r0, &(0x7f0000000840)) 11:59:40 executing program 4: r0 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$chown(0x4, r0, 0xee00, 0xffffffffffffffff) 11:59:40 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={[0x10000]}, 0x8) [ 122.667936] audit: type=1400 audit(1756727980.444:10): avc: denied { watch_reads } for pid=3917 comm="syz-executor.5" path="/syzkaller-testdir293971222/syzkaller.g2Oomh/1/file0" dev="sda" ino=16002 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 11:59:40 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/pcmcia', 0x0, 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) setresuid(0x0, r1, 0x0) symlinkat(&(0x7f00000003c0)='./file0\x00', r0, &(0x7f0000000400)='./file0\x00') 11:59:40 executing program 3: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fstat(r0, &(0x7f0000000840)) 11:59:40 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000001c00)={{0x1}}) 11:59:40 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0) r2 = dup2(r0, r1) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x13, r2, 0x0) syz_io_uring_complete(r3) 11:59:40 executing program 1: syz_emit_ethernet(0x6a, &(0x7f0000000080)={@local, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @redirect={0x5, 0x0, 0x0, @dev, {0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @multicast1, {[@ssrr={0x89, 0x1b, 0x0, [@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, @dev, @loopback, @private, @loopback]}, @cipso={0x86, 0xe, 0x0, [{0x0, 0x5, "36dfce"}, {0x0, 0x3, 'y'}]}]}}}}}}}, 0x0) 11:59:40 executing program 5: creat(&(0x7f00000003c0)='./file0\x00', 0x0) r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0xd400080b) r1 = inotify_init() inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x10000000) inotify_add_watch(r1, &(0x7f0000000080)='./file0\x00', 0x800) 11:59:40 executing program 6: r0 = io_uring_setup(0x44a, &(0x7f0000000040)) io_uring_register$IORING_REGISTER_FILES(r0, 0x1a, &(0x7f00000000c0)=[0xffffffffffffffff], 0x1) 11:59:40 executing program 7: sendmsg$IPVS_CMD_SET_DEST(0xffffffffffffffff, 0x0, 0xccfdaec38af308bd) [ 122.792359] BUG: unable to handle page fault for address: ffffed10212c9296 [ 122.792972] #PF: supervisor read access in kernel mode [ 122.793380] #PF: error_code(0x0000) - not-present page [ 122.793798] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 122.794256] Oops: Oops: 0000 [#1] SMP KASAN NOPTI [ 122.795534] CPU: 0 UID: 0 PID: 3943 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 122.798423] Tainted: [W]=WARN [ 122.799240] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 122.801528] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.802691] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.805028] RSP: 0018:ffff88801ddef800 EFLAGS: 00010216 [ 122.805452] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc900040aa000 [ 122.806009] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881096494b0 [ 122.806580] RBP: ffff88801ddefa70 R08: ffff88806ce31340 R09: ffffe8ffffc16748 [ 122.807148] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 122.807725] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 122.808298] FS: 00007f4fe9453700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 122.808936] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.809397] CR2: ffffed10212c9296 CR3: 000000001de6b000 CR4: 0000000000350ef0 [ 122.809965] Call Trace: [ 122.810173] [ 122.810359] ? perf_swevent_event+0x63/0x3f0 [ 122.810728] ? __pfx_perf_tp_event+0x10/0x10 [ 122.811102] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 122.811514] ? perf_swevent_event+0x63/0x3f0 [ 122.811879] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 122.812283] ? perf_swevent_event+0x63/0x3f0 [ 122.812650] ? perf_tp_event+0x807/0xe70 [ 122.812984] ? __pfx_perf_tp_event+0x10/0x10 [ 122.813350] ? __perf_install_in_context+0x503/0xb90 [ 122.813766] ? do_raw_spin_unlock+0x53/0x220 [ 122.814135] ? perf_trace_run_bpf_submit+0xef/0x180 [ 122.814543] perf_trace_run_bpf_submit+0xef/0x180 [ 122.814936] perf_trace_lock+0x337/0x5d0 [ 122.815276] ? __pfx_perf_trace_lock+0x10/0x10 [ 122.815658] ? lock_acquire+0x15e/0x2f0 [ 122.815985] ? futex_ref_get+0x48/0x300 [ 122.816307] ? futex_ref_get+0x114/0x300 [ 122.816638] ? futex_hash+0x15c/0x390 [ 122.816943] lock_release+0x1ab/0x290 [ 122.817253] ? futex_hash+0x15c/0x390 [ 122.817563] futex_ref_get+0x119/0x300 [ 122.817876] ? futex_hash+0x15c/0x390 [ 122.818188] futex_hash+0x70/0x390 [ 122.818484] futex_wake+0x143/0x540 [ 122.818788] ? __pfx_perf_trace_lock+0x10/0x10 [ 122.819161] ? __pfx_futex_wake+0x10/0x10 [ 122.819508] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 122.819924] ? lock_release+0xc8/0x290 [ 122.820245] do_futex+0x26d/0x370 [ 122.820536] ? __pfx_do_futex+0x10/0x10 [ 122.820857] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 122.821291] ? find_held_lock+0x2b/0x80 [ 122.821625] __x64_sys_futex+0x1c9/0x4d0 [ 122.821961] ? __pfx___x64_sys_futex+0x10/0x10 [ 122.822335] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 122.822762] do_syscall_64+0xbf/0x360 [ 122.823077] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.823498] RIP: 0033:0x7f4febeddb19 [ 122.823800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.825237] RSP: 002b:00007f4fe9453218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.825839] RAX: ffffffffffffffda RBX: 00007f4febff0f68 RCX: 00007f4febeddb19 [ 122.826401] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4febff0f6c [ 122.826966] RBP: 00007f4febff0f60 R08: 000000000000000e R09: 0000000000000000 [ 122.827539] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f4febff0f6c [ 122.828107] R13: 00007ffeb075526f R14: 00007f4fe9453300 R15: 0000000000022000 [ 122.828681] [ 122.828873] Modules linked in: [ 122.829134] CR2: ffffed10212c9296 [ 122.829413] ---[ end trace 0000000000000000 ]--- [ 122.829787] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.830172] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.831629] RSP: 0018:ffff88801ddef800 EFLAGS: 00010216 [ 122.832056] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc900040aa000 [ 122.832627] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881096494b0 [ 122.833195] RBP: ffff88801ddefa70 R08: ffff88806ce31340 R09: ffffe8ffffc16748 [ 122.833766] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 122.834335] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 122.834905] FS: 00007f4fe9453700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 122.835551] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.836014] CR2: ffffed10212c9296 CR3: 000000001de6b000 CR4: 0000000000350ef0 [ 122.836584] note: syz-executor.4[3943] exited with irqs disabled [ 122.837091] BUG: unable to handle page fault for address: ffffed10212c9296 [ 122.837644] #PF: supervisor read access in kernel mode [ 122.838053] #PF: error_code(0x0000) - not-present page [ 122.838465] PGD 7ffd4067 P4D 7ffd4067 PUD 7ffd3067 PMD 0 [ 122.838915] Oops: Oops: 0000 [#2] SMP KASAN NOPTI [ 122.839301] CPU: 0 UID: 0 PID: 3943 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 122.840254] Tainted: [D]=DIE, [W]=WARN [ 122.840556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 122.841199] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.841575] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.842990] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010016 [ 122.843412] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: 0000000000000002 [ 122.843967] RDX: ffff888013de5280 RSI: ffffffff8189a4e7 RDI: ffff8881096494b0 [ 122.844524] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16748 [ 122.845084] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000 [ 122.845641] R13: 0000000000000024 R14: ffff88806ce31490 R15: dffffc0000000000 [ 122.846195] FS: 00007f4fe9453700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 122.846824] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.847279] CR2: ffffed10212c9296 CR3: 000000001de6b000 CR4: 0000000000350ef0 [ 122.847845] Call Trace: [ 122.848053] [ 122.848234] ? __pfx_perf_tp_event+0x10/0x10 [ 122.848591] ? stack_depot_save_flags+0x2c/0xa20 [ 122.848972] ? kasan_save_stack+0x34/0x50 [ 122.849309] ? kasan_save_stack+0x24/0x50 [ 122.849638] ? kasan_save_track+0x14/0x30 [ 122.849971] ? __kasan_save_free_info+0x3a/0x60 [ 122.850340] ? __kasan_slab_free+0x3f/0x50 [ 122.850677] ? kmem_cache_free+0x2a1/0x540 [ 122.851012] ? rcu_core+0x7c8/0x1800 [ 122.851314] ? handle_softirqs+0x1b1/0x770 [ 122.851664] ? __irq_exit_rcu+0xc4/0x100 [ 122.851992] ? irq_exit_rcu+0x9/0x20 [ 122.852289] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 122.852695] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 122.853124] ? lock_acquire+0x5b/0x2f0 [ 122.853434] ? _raw_spin_lock+0x2b/0x40 [ 122.853752] ? __pte_offset_map_lock+0x120/0x330 [ 122.854131] ? do_wp_page+0x7f5/0x3430 [ 122.854447] ? __handle_mm_fault+0xde1/0x3260 [ 122.854809] ? handle_mm_fault+0x2c3/0x9b0 [ 122.855149] ? do_user_addr_fault+0x4fa/0xeb0 [ 122.855514] ? exc_page_fault+0xb0/0x180 [ 122.855840] ? asm_exc_page_fault+0x26/0x30 [ 122.856182] ? lock_is_held_type+0x9e/0x120 [ 122.856531] ? perf_trace_run_bpf_submit+0xef/0x180 [ 122.856929] perf_trace_run_bpf_submit+0xef/0x180 [ 122.857316] perf_trace_lock+0x337/0x5d0 [ 122.857641] ? place_entity+0x1c/0x410 [ 122.857952] ? kvm_sched_clock_read+0x16/0x30 [ 122.858315] ? __pfx_perf_trace_lock+0x10/0x10 [ 122.858680] ? check_preempt_wakeup_fair+0x6e/0x950 [ 122.859079] ? sched_ttwu_pending+0x2e0/0x4a0 [ 122.859449] lock_release+0x1ab/0x290 [ 122.859754] ? ttwu_do_activate+0x1a4/0x8a0 [ 122.860100] _raw_spin_unlock+0x16/0x40 [ 122.860420] sched_ttwu_pending+0x2e0/0x4a0 [ 122.860765] ? __pfx_try_to_wake_up+0x10/0x10 [ 122.861131] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 122.861516] ? mark_held_locks+0x49/0x80 [ 122.861843] __flush_smp_call_function_queue+0x434/0x740 [ 122.862276] __sysvec_call_function_single+0x6d/0x370 [ 122.862690] sysvec_call_function_single+0xa1/0xc0 [ 122.863080] [ 122.863261] [ 122.863452] asm_sysvec_call_function_single+0x1a/0x20 [ 122.863869] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 122.864241] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de [ 122.865652] RSP: 0018:ffff88801ddeff28 EFLAGS: 00000246 [ 122.866071] RAX: 0000000000000001 RBX: ffff888013de5280 RCX: ffffffff817c3ab6 [ 122.866627] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 122.867183] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000 [ 122.867748] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff888013de5280 [ 122.868306] R13: 0000000000000009 R14: ffff88801ddef7e0 R15: 0000000000000000 [ 122.868865] ? trace_irq_enable.constprop.0+0x26/0x100 [ 122.869282] ? make_task_dead+0x214/0x3b0 [ 122.869615] ? make_task_dead+0x214/0x3b0 [ 122.869945] ? do_syscall_64+0xbf/0x360 [ 122.870261] rewind_stack_and_make_dead+0x16/0x20 [ 122.870654] RIP: 0033:0x7f4febeddb19 [ 122.870950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.872388] RSP: 002b:00007f4fe9453218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.872981] RAX: ffffffffffffffda RBX: 00007f4febff0f68 RCX: 00007f4febeddb19 [ 122.873537] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4febff0f6c [ 122.874099] RBP: 00007f4febff0f60 R08: 000000000000000e R09: 0000000000000000 [ 122.874652] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f4febff0f6c [ 122.875206] R13: 00007ffeb075526f R14: 00007f4fe9453300 R15: 0000000000022000 [ 122.875775] [ 122.875962] Modules linked in: [ 122.876218] CR2: ffffed10212c9296 [ 122.876491] ---[ end trace 0000000000000000 ]--- [ 122.876857] RIP: 0010:perf_tp_event+0x175/0xe70 [ 122.877232] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 122.878650] RSP: 0018:ffff88801ddef800 EFLAGS: 00010216 [ 122.879067] RAX: 1ffff110212c9296 RBX: ffff8881096492c0 RCX: ffffc900040aa000 [ 122.879628] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff8881096494b0 [ 122.880185] RBP: ffff88801ddefa70 R08: ffff88806ce31340 R09: ffffe8ffffc16748 [ 122.880736] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 122.881295] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 122.881853] FS: 00007f4fe9453700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 122.882479] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.882940] CR2: ffffed10212c9296 CR3: 000000001de6b000 CR4: 0000000000350ef0 [ 122.883502] Kernel panic - not syncing: Fatal exception in interrupt [ 122.884187] Kernel Offset: disabled [ 122.884472] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 11:59:40 Registers: info registers vcpu 0 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88801ddef048 R8 =0000000000000000 R9 =ffffed100175a046 R10=0000000000000030 R11=6572617764726148 R12=0000000000000030 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f4fe9453700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe5100000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=ffffed10212c9296 CR3=000000001de6b000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f4febfc47c000007f4febfc47c8 XMM02=00007f4febfc47e000007f4febfc47c0 XMM03=00007f4febfc47c800007f4febfc47c0 XMM04=ff000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000034a07 RBX=ffff88806ce3de20 RCX=ffffc900038a6000 RDX=0000000000040000 RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88804783f5a0 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1 R12=ffffed100d9c7bc5 R13=ffff88806ce3de28 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff8173f717 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3f848ec700 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe1600000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3f8748a018 CR3=0000000044369000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f3f8745d7c000007f3f8745d7c8 XMM02=00007f3f8745d7e000007f3f8745d7c0 XMM03=00007f3f8745d7c800007f3f8745d7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000