Warning: Permanently added '[localhost]:25680' (ECDSA) to the list of known hosts. 2025/08/29 09:16:02 fuzzer started 2025/08/29 09:16:03 dialing manager at localhost:43077 syzkaller login: [ 50.102215] cgroup: Unknown subsys name 'net' [ 50.168791] cgroup: Unknown subsys name 'cpuset' [ 50.205517] cgroup: Unknown subsys name 'rlimit' 2025/08/29 09:16:13 syscalls: 2214 2025/08/29 09:16:13 code coverage: enabled 2025/08/29 09:16:13 comparison tracing: enabled 2025/08/29 09:16:13 extra coverage: enabled 2025/08/29 09:16:13 setuid sandbox: enabled 2025/08/29 09:16:13 namespace sandbox: enabled 2025/08/29 09:16:13 Android sandbox: enabled 2025/08/29 09:16:13 fault injection: enabled 2025/08/29 09:16:13 leak checking: enabled 2025/08/29 09:16:13 net packet injection: enabled 2025/08/29 09:16:13 net device setup: enabled 2025/08/29 09:16:13 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 09:16:13 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 09:16:13 USB emulation: enabled 2025/08/29 09:16:13 hci packet injection: enabled 2025/08/29 09:16:13 wifi device emulation: enabled 2025/08/29 09:16:13 802.15.4 emulation: enabled 2025/08/29 09:16:13 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 09:16:13 fetching corpus: 50, signal 22224/25579 (executing program) 2025/08/29 09:16:13 fetching corpus: 100, signal 34908/39467 (executing program) 2025/08/29 09:16:13 fetching corpus: 150, signal 48279/53637 (executing program) 2025/08/29 09:16:13 fetching corpus: 200, signal 53496/59848 (executing program) 2025/08/29 09:16:14 fetching corpus: 250, signal 60078/67133 (executing program) 2025/08/29 09:16:14 fetching corpus: 300, signal 63715/71626 (executing program) 2025/08/29 09:16:14 fetching corpus: 350, signal 67271/75915 (executing program) 2025/08/29 09:16:14 fetching corpus: 400, signal 69531/78964 (executing program) 2025/08/29 09:16:14 fetching corpus: 450, signal 72523/82534 (executing program) 2025/08/29 09:16:14 fetching corpus: 500, signal 74951/85619 (executing program) 2025/08/29 09:16:14 fetching corpus: 550, signal 78195/89323 (executing program) 2025/08/29 09:16:15 fetching corpus: 600, signal 80659/92284 (executing program) 2025/08/29 09:16:15 fetching corpus: 650, signal 83553/95537 (executing program) 2025/08/29 09:16:15 fetching corpus: 700, signal 85137/97683 (executing program) 2025/08/29 09:16:15 fetching corpus: 750, signal 87028/100009 (executing program) 2025/08/29 09:16:15 fetching corpus: 800, signal 89506/102647 (executing program) 2025/08/29 09:16:15 fetching corpus: 850, signal 91541/104967 (executing program) 2025/08/29 09:16:15 fetching corpus: 900, signal 93934/107543 (executing program) 2025/08/29 09:16:15 fetching corpus: 950, signal 95757/109559 (executing program) 2025/08/29 09:16:15 fetching corpus: 1000, signal 97211/111280 (executing program) 2025/08/29 09:16:15 fetching corpus: 1050, signal 98549/112874 (executing program) 2025/08/29 09:16:16 fetching corpus: 1100, signal 100369/114768 (executing program) 2025/08/29 09:16:16 fetching corpus: 1150, signal 102471/116811 (executing program) 2025/08/29 09:16:16 fetching corpus: 1200, signal 104232/118526 (executing program) 2025/08/29 09:16:16 fetching corpus: 1250, signal 105564/119956 (executing program) 2025/08/29 09:16:16 fetching corpus: 1300, signal 107013/121439 (executing program) 2025/08/29 09:16:16 fetching corpus: 1350, signal 108484/122906 (executing program) 2025/08/29 09:16:16 fetching corpus: 1400, signal 109989/124332 (executing program) 2025/08/29 09:16:16 fetching corpus: 1450, signal 111435/125699 (executing program) 2025/08/29 09:16:17 fetching corpus: 1500, signal 112261/126727 (executing program) 2025/08/29 09:16:17 fetching corpus: 1550, signal 113609/128085 (executing program) 2025/08/29 09:16:17 fetching corpus: 1600, signal 115039/129319 (executing program) 2025/08/29 09:16:17 fetching corpus: 1650, signal 116452/130498 (executing program) 2025/08/29 09:16:17 fetching corpus: 1700, signal 117910/131692 (executing program) 2025/08/29 09:16:17 fetching corpus: 1750, signal 118628/132442 (executing program) 2025/08/29 09:16:17 fetching corpus: 1800, signal 119332/133181 (executing program) 2025/08/29 09:16:17 fetching corpus: 1850, signal 120194/133969 (executing program) 2025/08/29 09:16:17 fetching corpus: 1900, signal 120903/134669 (executing program) 2025/08/29 09:16:17 fetching corpus: 1950, signal 121743/135391 (executing program) 2025/08/29 09:16:18 fetching corpus: 2000, signal 123159/136365 (executing program) 2025/08/29 09:16:18 fetching corpus: 2050, signal 123932/137086 (executing program) 2025/08/29 09:16:18 fetching corpus: 2100, signal 124824/137812 (executing program) 2025/08/29 09:16:18 fetching corpus: 2150, signal 125761/138506 (executing program) 2025/08/29 09:16:18 fetching corpus: 2200, signal 126827/139364 (executing program) 2025/08/29 09:16:18 fetching corpus: 2250, signal 127644/139940 (executing program) 2025/08/29 09:16:18 fetching corpus: 2300, signal 128426/140460 (executing program) 2025/08/29 09:16:18 fetching corpus: 2350, signal 129244/140971 (executing program) 2025/08/29 09:16:19 fetching corpus: 2400, signal 130113/141496 (executing program) 2025/08/29 09:16:19 fetching corpus: 2450, signal 131132/142053 (executing program) 2025/08/29 09:16:19 fetching corpus: 2500, signal 131940/142543 (executing program) 2025/08/29 09:16:19 fetching corpus: 2550, signal 132524/142912 (executing program) 2025/08/29 09:16:19 fetching corpus: 2600, signal 133323/143334 (executing program) 2025/08/29 09:16:19 fetching corpus: 2650, signal 134382/144066 (executing program) 2025/08/29 09:16:19 fetching corpus: 2700, signal 134912/144415 (executing program) 2025/08/29 09:16:19 fetching corpus: 2750, signal 135729/144847 (executing program) 2025/08/29 09:16:19 fetching corpus: 2800, signal 136495/145205 (executing program) 2025/08/29 09:16:20 fetching corpus: 2850, signal 137285/145509 (executing program) 2025/08/29 09:16:20 fetching corpus: 2900, signal 137950/145924 (executing program) 2025/08/29 09:16:20 fetching corpus: 2950, signal 138696/146198 (executing program) 2025/08/29 09:16:20 fetching corpus: 3000, signal 139351/146430 (executing program) 2025/08/29 09:16:20 fetching corpus: 3050, signal 140196/146676 (executing program) 2025/08/29 09:16:20 fetching corpus: 3100, signal 140734/146870 (executing program) 2025/08/29 09:16:20 fetching corpus: 3150, signal 141984/147110 (executing program) 2025/08/29 09:16:20 fetching corpus: 3200, signal 142519/147269 (executing program) 2025/08/29 09:16:20 fetching corpus: 3250, signal 143037/147434 (executing program) 2025/08/29 09:16:20 fetching corpus: 3300, signal 143605/147551 (executing program) 2025/08/29 09:16:21 fetching corpus: 3350, signal 144415/147646 (executing program) 2025/08/29 09:16:21 fetching corpus: 3400, signal 144847/147715 (executing program) 2025/08/29 09:16:21 fetching corpus: 3450, signal 145410/147786 (executing program) 2025/08/29 09:16:21 fetching corpus: 3457, signal 145596/147831 (executing program) 2025/08/29 09:16:21 fetching corpus: 3457, signal 145596/147843 (executing program) 2025/08/29 09:16:21 fetching corpus: 3457, signal 145596/147843 (executing program) 2025/08/29 09:16:24 starting 8 fuzzer processes 09:16:24 executing program 0: fspick(0xffffffffffffffff, 0x0, 0x65d8a0e9032edf87) 09:16:24 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x34, &(0x7f0000000000), 0x4) 09:16:24 executing program 7: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x200000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73662a7b3b00088001000240000004f801002000400000000000000000008000"/64, 0x40}, {&(0x7f0000010100)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x800}, {&(0x7f0000010200)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x1000}, {&(0x7f0000010300)="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", 0x120, 0x1800}, {&(0x7f0000010500)="2e20202020202020202020100016e870325132510000e87032510300000000002e2e202020202020202020100016e870325132510000e870325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200016e870325132510000e870325104001a040000", 0x80, 0x42000}, {&(0x7f0000010600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x82000}, {&(0x7f0000010b00)='syzkallers\x00'/32, 0x20, 0xc2000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x142000}], 0x0, &(0x7f0000010d00)) 09:16:24 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000003900)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@rights={{0x14, 0x1, 0x1, [r0]}}], 0x18}}], 0x1, 0x0) semget(0x1, 0x0, 0x0) 09:16:24 executing program 3: write$tun(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="00001e74408d0000a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f08d6c2cf47288f8895dca6e85d1f1f7d4666d7035828c4690bca329e"], 0x52) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454c8, 0x0) 09:16:24 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) timer_create(0x0, 0x0, &(0x7f0000000200)) timer_gettime(0x0, &(0x7f0000000100)) 09:16:24 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/ipv6_route\x00') pread64(r0, &(0x7f0000000200)=""/183, 0xb7, 0x0) 09:16:24 executing program 6: ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) [ 71.190963] audit: type=1400 audit(1756458984.273:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 72.458829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.461331] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.463754] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.467555] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 72.474475] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 72.476852] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.478525] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 72.483431] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.484969] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 72.488702] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 72.523732] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 72.527973] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 72.532807] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 72.546881] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 72.549794] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 72.584323] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 72.591795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 72.594445] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 72.605573] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 72.607031] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 72.609985] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 72.613485] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 72.617740] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 72.621141] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 72.630173] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 72.692747] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 72.700883] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 72.706075] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 72.715753] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 72.717300] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 72.722830] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 72.733559] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 72.737338] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 72.744549] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 72.745926] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 72.748551] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 72.774016] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 72.779399] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 72.788355] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 72.802026] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 74.551223] Bluetooth: hci1: command tx timeout [ 74.552629] Bluetooth: hci0: command tx timeout [ 74.614208] Bluetooth: hci2: command tx timeout [ 74.678478] Bluetooth: hci4: command tx timeout [ 74.679596] Bluetooth: hci3: command tx timeout [ 74.870285] Bluetooth: hci5: command tx timeout [ 74.870305] Bluetooth: hci7: command tx timeout [ 74.870672] Bluetooth: hci6: command tx timeout [ 76.598177] Bluetooth: hci0: command tx timeout [ 76.599189] Bluetooth: hci1: command tx timeout [ 76.662193] Bluetooth: hci2: command tx timeout [ 76.726173] Bluetooth: hci3: command tx timeout [ 76.727554] Bluetooth: hci4: command tx timeout [ 76.918211] Bluetooth: hci5: command tx timeout [ 76.918232] Bluetooth: hci7: command tx timeout [ 76.919279] Bluetooth: hci6: command tx timeout [ 78.649140] Bluetooth: hci1: command tx timeout [ 78.649573] Bluetooth: hci0: command tx timeout [ 78.710157] Bluetooth: hci2: command tx timeout [ 78.775199] Bluetooth: hci4: command tx timeout [ 78.775306] Bluetooth: hci3: command tx timeout [ 78.966312] Bluetooth: hci6: command tx timeout [ 78.966412] Bluetooth: hci7: command tx timeout [ 78.966889] Bluetooth: hci5: command tx timeout [ 80.694410] Bluetooth: hci0: command tx timeout [ 80.696261] Bluetooth: hci1: command tx timeout [ 80.759349] Bluetooth: hci2: command tx timeout [ 80.822420] Bluetooth: hci3: command tx timeout [ 80.822529] Bluetooth: hci4: command tx timeout [ 81.014222] Bluetooth: hci5: command tx timeout [ 81.014303] Bluetooth: hci6: command tx timeout [ 81.014731] Bluetooth: hci7: command tx timeout [ 121.452367] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.453496] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.736548] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.737524] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.124342] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.125067] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.339734] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.340426] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.395246] audit: type=1400 audit(1756459035.475:8): avc: denied { open } for pid=3810 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.401293] audit: type=1400 audit(1756459035.476:9): avc: denied { kernel } for pid=3810 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 09:17:15 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000003900)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@rights={{0x14, 0x1, 0x1, [r0]}}], 0x18}}], 0x1, 0x0) semget(0x1, 0x0, 0x0) [ 122.549342] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.550025] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:17:15 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000003900)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@rights={{0x14, 0x1, 0x1, [r0]}}], 0x18}}], 0x1, 0x0) semget(0x1, 0x0, 0x0) [ 122.815208] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.817164] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:17:15 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000003900)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@rights={{0x14, 0x1, 0x1, [r0]}}], 0x18}}], 0x1, 0x0) semget(0x1, 0x0, 0x0) 09:17:16 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000), 0x4) 09:17:16 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000), 0x4) 09:17:16 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/ipv6_route\x00') pread64(r0, &(0x7f0000000200)=""/183, 0xb7, 0x0) 09:17:16 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000), 0x4) 09:17:16 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000), 0x4) [ 123.513310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.514021] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.677769] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.678624] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.736369] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.737160] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.766150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.766828] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.843147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.843763] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.886014] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.886779] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.980237] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.980974] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.993536] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.994421] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.040583] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.042788] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.117515] loop7: detected capacity change from 0 to 5152 [ 124.137765] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.138591] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:17:17 executing program 0: fspick(0xffffffffffffffff, 0x0, 0x65d8a0e9032edf87) 09:17:17 executing program 1: write$tun(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="00001e74408d0000a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f08d6c2cf47288f8895dca6e85d1f1f7d4666d7035828c4690bca329e"], 0x52) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454c8, 0x0) 09:17:17 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/ipv6_route\x00') pread64(r0, &(0x7f0000000200)=""/183, 0xb7, 0x0) 09:17:17 executing program 3: write$tun(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="00001e74408d0000a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f08d6c2cf47288f8895dca6e85d1f1f7d4666d7035828c4690bca329e"], 0x52) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454c8, 0x0) 09:17:17 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@commit={'commit', 0x3d, 0x7fffffff}}]}) 09:17:17 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x34, &(0x7f0000000000), 0x4) 09:17:17 executing program 6: ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) 09:17:17 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) timer_create(0x0, 0x0, &(0x7f0000000200)) timer_gettime(0x0, &(0x7f0000000100)) [ 124.441996] EXT4-fs: Invalid commit interval 2147483647, must be smaller than 2147483 [ 124.451418] EXT4-fs: Invalid commit interval 2147483647, must be smaller than 2147483 09:17:17 executing program 0: fspick(0xffffffffffffffff, 0x0, 0x65d8a0e9032edf87) 09:17:17 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@commit={'commit', 0x3d, 0x7fffffff}}]}) 09:17:17 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x34, &(0x7f0000000000), 0x4) 09:17:17 executing program 6: ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) 09:17:17 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) timer_create(0x0, 0x0, &(0x7f0000000200)) timer_gettime(0x0, &(0x7f0000000100)) 09:17:17 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/ipv6_route\x00') pread64(r0, &(0x7f0000000200)=""/183, 0xb7, 0x0) [ 124.586576] EXT4-fs: Invalid commit interval 2147483647, must be smaller than 2147483 09:17:17 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@commit={'commit', 0x3d, 0x7fffffff}}]}) [ 124.710261] EXT4-fs: Invalid commit interval 2147483647, must be smaller than 2147483 [ 134.694192] unregister_netdevice: waiting for vcan0 to become free. Usage count = 0 VM DIAGNOSIS: 09:17:27 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81431051 RDX=ffff88800f2f3700 RSI=0000000000000000 RDI=0000000000000001 RBP=ffff8880434ab700 RSP=ffff888015effc98 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000001 R13=0000000000000000 R14=0000000000000001 R15=00007f51ac0df9d0 RIP=ffffffff8173e780 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f51acceb900 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe2400000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f51ac0ec390 CR3=000000000c14d000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=ffbd4ebe4c2ff636000000000014e938 XMM05=d3fdd5f48436fbd700000000000aead0 XMM06=eda4d7694dd8e60b00000000000ae988 XMM07=a1fcdcf819d7e1e500000000000ae728 XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000 XMM10=00000000000000000020000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=ffff88801b65ff58 RCX=ffffffff817c2b86 RDX=0000000000000000 RSI=0000000000000008 RDI=ffff88806cf31850 RBP=ffff88801b65ff48 RSP=ffff88801b65ff28 R8 =0000000000000000 R9 =fffffbfff0c8758a R10=ffffffff8643ac57 R11=0000000000000000 R12=0000000000000048 R13=0000000000000048 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff817c2ca1 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe7c4df0700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe5e00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe7b0036048 CR3=000000000e6b3000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000100000000000000000 XMM04=00007fe7c4def10000007fe7c4def140 XMM05=00000000000000008bc582a7831f0900 XMM06=00007fe7c4def1400000000000000000 XMM07=00000000000000000000000000000000 XMM08=2e726f7475636578652d7a7973223d6d XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000