Warning: Permanently added '[localhost]:12266' (ECDSA) to the list of known hosts. 2025/11/27 08:24:54 fuzzer started 2025/11/27 08:24:54 dialing manager at localhost:36809 syzkaller login: [ 60.255332] cgroup: Unknown subsys name 'net' [ 60.335441] cgroup: Unknown subsys name 'cpuset' [ 60.368330] cgroup: Unknown subsys name 'rlimit' 2025/11/27 08:25:06 syscalls: 2214 2025/11/27 08:25:06 code coverage: enabled 2025/11/27 08:25:06 comparison tracing: enabled 2025/11/27 08:25:06 extra coverage: enabled 2025/11/27 08:25:06 setuid sandbox: enabled 2025/11/27 08:25:06 namespace sandbox: enabled 2025/11/27 08:25:06 Android sandbox: enabled 2025/11/27 08:25:06 fault injection: enabled 2025/11/27 08:25:06 leak checking: enabled 2025/11/27 08:25:06 net packet injection: enabled 2025/11/27 08:25:06 net device setup: enabled 2025/11/27 08:25:06 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/11/27 08:25:06 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/11/27 08:25:06 USB emulation: enabled 2025/11/27 08:25:06 hci packet injection: enabled 2025/11/27 08:25:06 wifi device emulation: enabled 2025/11/27 08:25:06 802.15.4 emulation: enabled 2025/11/27 08:25:06 fetching corpus: 0, signal 0/2000 (executing program) 2025/11/27 08:25:06 fetching corpus: 42, signal 19960/23585 (executing program) 2025/11/27 08:25:06 fetching corpus: 86, signal 31888/37004 (executing program) 2025/11/27 08:25:06 fetching corpus: 131, signal 37723/44260 (executing program) 2025/11/27 08:25:06 fetching corpus: 181, signal 45606/53345 (executing program) 2025/11/27 08:25:06 fetching corpus: 231, signal 59242/67716 (executing program) 2025/11/27 08:25:06 fetching corpus: 281, signal 63476/73105 (executing program) 2025/11/27 08:25:06 fetching corpus: 331, signal 67535/78234 (executing program) 2025/11/27 08:25:06 fetching corpus: 381, signal 71827/83532 (executing program) 2025/11/27 08:25:06 fetching corpus: 431, signal 75861/88491 (executing program) 2025/11/27 08:25:06 fetching corpus: 481, signal 79519/93037 (executing program) 2025/11/27 08:25:06 fetching corpus: 531, signal 81967/96403 (executing program) 2025/11/27 08:25:07 fetching corpus: 581, signal 84331/99690 (executing program) 2025/11/27 08:25:07 fetching corpus: 631, signal 87430/103551 (executing program) 2025/11/27 08:25:07 fetching corpus: 681, signal 91283/107996 (executing program) 2025/11/27 08:25:07 fetching corpus: 731, signal 93936/111364 (executing program) 2025/11/27 08:25:07 fetching corpus: 781, signal 95362/113682 (executing program) 2025/11/27 08:25:07 fetching corpus: 831, signal 97408/116417 (executing program) 2025/11/27 08:25:07 fetching corpus: 881, signal 99003/118754 (executing program) 2025/11/27 08:25:07 fetching corpus: 931, signal 100511/121044 (executing program) 2025/11/27 08:25:07 fetching corpus: 981, signal 101777/123096 (executing program) 2025/11/27 08:25:07 fetching corpus: 1031, signal 104089/125950 (executing program) 2025/11/27 08:25:08 fetching corpus: 1081, signal 106573/128877 (executing program) 2025/11/27 08:25:08 fetching corpus: 1131, signal 107812/130805 (executing program) 2025/11/27 08:25:08 fetching corpus: 1181, signal 108930/132597 (executing program) 2025/11/27 08:25:08 fetching corpus: 1231, signal 110108/134396 (executing program) 2025/11/27 08:25:08 fetching corpus: 1281, signal 112010/136718 (executing program) 2025/11/27 08:25:08 fetching corpus: 1331, signal 113878/138956 (executing program) 2025/11/27 08:25:08 fetching corpus: 1381, signal 115922/141333 (executing program) 2025/11/27 08:25:08 fetching corpus: 1430, signal 117457/143311 (executing program) 2025/11/27 08:25:08 fetching corpus: 1480, signal 118506/144927 (executing program) 2025/11/27 08:25:09 fetching corpus: 1530, signal 119452/146385 (executing program) 2025/11/27 08:25:09 fetching corpus: 1580, signal 120980/148259 (executing program) 2025/11/27 08:25:09 fetching corpus: 1630, signal 122223/149946 (executing program) 2025/11/27 08:25:09 fetching corpus: 1680, signal 123050/151354 (executing program) 2025/11/27 08:25:09 fetching corpus: 1730, signal 124198/152920 (executing program) 2025/11/27 08:25:09 fetching corpus: 1780, signal 125237/154411 (executing program) 2025/11/27 08:25:09 fetching corpus: 1828, signal 126079/155766 (executing program) 2025/11/27 08:25:09 fetching corpus: 1876, signal 127687/157560 (executing program) 2025/11/27 08:25:09 fetching corpus: 1926, signal 128696/158928 (executing program) 2025/11/27 08:25:09 fetching corpus: 1976, signal 129802/160340 (executing program) 2025/11/27 08:25:10 fetching corpus: 2026, signal 131491/162124 (executing program) 2025/11/27 08:25:10 fetching corpus: 2076, signal 132301/163370 (executing program) 2025/11/27 08:25:10 fetching corpus: 2126, signal 133361/164705 (executing program) 2025/11/27 08:25:10 fetching corpus: 2176, signal 134134/165857 (executing program) 2025/11/27 08:25:10 fetching corpus: 2225, signal 135414/167308 (executing program) 2025/11/27 08:25:10 fetching corpus: 2275, signal 136584/168648 (executing program) 2025/11/27 08:25:10 fetching corpus: 2325, signal 137502/169887 (executing program) 2025/11/27 08:25:10 fetching corpus: 2375, signal 138610/171195 (executing program) 2025/11/27 08:25:10 fetching corpus: 2425, signal 139687/172383 (executing program) 2025/11/27 08:25:10 fetching corpus: 2475, signal 141275/173887 (executing program) 2025/11/27 08:25:11 fetching corpus: 2524, signal 142064/174907 (executing program) 2025/11/27 08:25:11 fetching corpus: 2574, signal 142945/175945 (executing program) 2025/11/27 08:25:11 fetching corpus: 2624, signal 143727/176967 (executing program) 2025/11/27 08:25:11 fetching corpus: 2674, signal 144592/177995 (executing program) 2025/11/27 08:25:11 fetching corpus: 2724, signal 145566/179042 (executing program) 2025/11/27 08:25:11 fetching corpus: 2774, signal 146078/179908 (executing program) 2025/11/27 08:25:11 fetching corpus: 2824, signal 146857/180808 (executing program) 2025/11/27 08:25:11 fetching corpus: 2873, signal 147763/181787 (executing program) 2025/11/27 08:25:11 fetching corpus: 2923, signal 148304/182552 (executing program) 2025/11/27 08:25:11 fetching corpus: 2973, signal 149021/183379 (executing program) 2025/11/27 08:25:11 fetching corpus: 3022, signal 149838/184269 (executing program) 2025/11/27 08:25:11 fetching corpus: 3071, signal 150476/185096 (executing program) 2025/11/27 08:25:12 fetching corpus: 3121, signal 151565/186089 (executing program) 2025/11/27 08:25:12 fetching corpus: 3171, signal 152388/186951 (executing program) 2025/11/27 08:25:12 fetching corpus: 3221, signal 153008/187697 (executing program) 2025/11/27 08:25:12 fetching corpus: 3271, signal 153516/188420 (executing program) 2025/11/27 08:25:12 fetching corpus: 3321, signal 154463/189249 (executing program) 2025/11/27 08:25:12 fetching corpus: 3370, signal 155048/189964 (executing program) 2025/11/27 08:25:12 fetching corpus: 3420, signal 155827/190731 (executing program) 2025/11/27 08:25:12 fetching corpus: 3469, signal 156475/191445 (executing program) 2025/11/27 08:25:12 fetching corpus: 3519, signal 157183/192179 (executing program) 2025/11/27 08:25:12 fetching corpus: 3569, signal 157686/192794 (executing program) 2025/11/27 08:25:12 fetching corpus: 3618, signal 158403/193454 (executing program) 2025/11/27 08:25:12 fetching corpus: 3667, signal 158973/194087 (executing program) 2025/11/27 08:25:13 fetching corpus: 3717, signal 159813/194777 (executing program) 2025/11/27 08:25:13 fetching corpus: 3764, signal 160548/195386 (executing program) 2025/11/27 08:25:13 fetching corpus: 3813, signal 161177/195994 (executing program) 2025/11/27 08:25:13 fetching corpus: 3863, signal 161698/196597 (executing program) 2025/11/27 08:25:13 fetching corpus: 3913, signal 162235/197180 (executing program) 2025/11/27 08:25:13 fetching corpus: 3963, signal 162876/197772 (executing program) 2025/11/27 08:25:13 fetching corpus: 4012, signal 163295/198292 (executing program) 2025/11/27 08:25:13 fetching corpus: 4062, signal 163756/198814 (executing program) 2025/11/27 08:25:13 fetching corpus: 4112, signal 164382/199322 (executing program) 2025/11/27 08:25:14 fetching corpus: 4162, signal 164851/199819 (executing program) 2025/11/27 08:25:14 fetching corpus: 4212, signal 165347/200331 (executing program) 2025/11/27 08:25:14 fetching corpus: 4262, signal 165938/200827 (executing program) 2025/11/27 08:25:14 fetching corpus: 4312, signal 166436/201313 (executing program) 2025/11/27 08:25:14 fetching corpus: 4362, signal 167049/201793 (executing program) 2025/11/27 08:25:14 fetching corpus: 4412, signal 167537/202239 (executing program) 2025/11/27 08:25:14 fetching corpus: 4462, signal 168046/202694 (executing program) 2025/11/27 08:25:14 fetching corpus: 4512, signal 168521/203118 (executing program) 2025/11/27 08:25:14 fetching corpus: 4562, signal 169238/203580 (executing program) 2025/11/27 08:25:14 fetching corpus: 4612, signal 169738/204027 (executing program) 2025/11/27 08:25:14 fetching corpus: 4662, signal 170124/204453 (executing program) 2025/11/27 08:25:14 fetching corpus: 4712, signal 170467/204816 (executing program) 2025/11/27 08:25:15 fetching corpus: 4760, signal 171107/205227 (executing program) 2025/11/27 08:25:15 fetching corpus: 4810, signal 171741/205610 (executing program) 2025/11/27 08:25:15 fetching corpus: 4860, signal 172121/205984 (executing program) 2025/11/27 08:25:15 fetching corpus: 4910, signal 172581/206323 (executing program) 2025/11/27 08:25:15 fetching corpus: 4960, signal 173099/206683 (executing program) 2025/11/27 08:25:15 fetching corpus: 5008, signal 173630/207070 (executing program) 2025/11/27 08:25:15 fetching corpus: 5058, signal 174117/207430 (executing program) 2025/11/27 08:25:15 fetching corpus: 5108, signal 174537/207755 (executing program) 2025/11/27 08:25:16 fetching corpus: 5158, signal 174993/207755 (executing program) 2025/11/27 08:25:16 fetching corpus: 5208, signal 175346/207768 (executing program) 2025/11/27 08:25:16 fetching corpus: 5256, signal 175913/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5306, signal 176350/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5356, signal 176771/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5406, signal 177226/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5456, signal 177605/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5506, signal 178085/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5556, signal 178476/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5606, signal 178918/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5656, signal 179193/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5706, signal 179581/207769 (executing program) 2025/11/27 08:25:16 fetching corpus: 5756, signal 180059/207823 (executing program) 2025/11/27 08:25:16 fetching corpus: 5806, signal 180468/207824 (executing program) 2025/11/27 08:25:17 fetching corpus: 5856, signal 180806/207824 (executing program) 2025/11/27 08:25:17 fetching corpus: 5906, signal 181250/207824 (executing program) 2025/11/27 08:25:17 fetching corpus: 5956, signal 181547/207824 (executing program) 2025/11/27 08:25:17 fetching corpus: 6006, signal 182041/207824 (executing program) 2025/11/27 08:25:17 fetching corpus: 6056, signal 182355/207824 (executing program) 2025/11/27 08:25:17 fetching corpus: 6106, signal 182600/207824 (executing program) 2025/11/27 08:25:17 fetching corpus: 6156, signal 182949/207824 (executing program) 2025/11/27 08:25:17 fetching corpus: 6206, signal 183259/207847 (executing program) 2025/11/27 08:25:17 fetching corpus: 6256, signal 183504/207847 (executing program) 2025/11/27 08:25:17 fetching corpus: 6306, signal 183849/207847 (executing program) 2025/11/27 08:25:18 fetching corpus: 6356, signal 184163/207847 (executing program) 2025/11/27 08:25:18 fetching corpus: 6406, signal 184397/207847 (executing program) 2025/11/27 08:25:18 fetching corpus: 6456, signal 184648/207847 (executing program) 2025/11/27 08:25:18 fetching corpus: 6506, signal 184911/207847 (executing program) 2025/11/27 08:25:18 fetching corpus: 6556, signal 185307/207847 (executing program) 2025/11/27 08:25:18 fetching corpus: 6606, signal 185757/207853 (executing program) 2025/11/27 08:25:18 fetching corpus: 6656, signal 186012/207853 (executing program) 2025/11/27 08:25:18 fetching corpus: 6706, signal 186407/207853 (executing program) 2025/11/27 08:25:18 fetching corpus: 6756, signal 186705/207853 (executing program) 2025/11/27 08:25:18 fetching corpus: 6806, signal 186952/207853 (executing program) 2025/11/27 08:25:18 fetching corpus: 6856, signal 187293/207853 (executing program) 2025/11/27 08:25:19 fetching corpus: 6906, signal 187626/207853 (executing program) 2025/11/27 08:25:19 fetching corpus: 6956, signal 187985/207853 (executing program) 2025/11/27 08:25:19 fetching corpus: 7004, signal 188317/207853 (executing program) 2025/11/27 08:25:19 fetching corpus: 7054, signal 188686/207853 (executing program) 2025/11/27 08:25:19 fetching corpus: 7104, signal 189102/207854 (executing program) 2025/11/27 08:25:19 fetching corpus: 7154, signal 189404/207865 (executing program) 2025/11/27 08:25:19 fetching corpus: 7204, signal 189801/207865 (executing program) 2025/11/27 08:25:19 fetching corpus: 7254, signal 190112/207865 (executing program) 2025/11/27 08:25:19 fetching corpus: 7304, signal 190406/207865 (executing program) 2025/11/27 08:25:19 fetching corpus: 7354, signal 190768/207865 (executing program) 2025/11/27 08:25:19 fetching corpus: 7404, signal 191110/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7454, signal 191358/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7504, signal 191839/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7554, signal 192306/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7604, signal 192632/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7654, signal 192983/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7704, signal 193437/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7754, signal 193707/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7804, signal 194092/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7854, signal 194387/207865 (executing program) 2025/11/27 08:25:20 fetching corpus: 7904, signal 194709/207865 (executing program) 2025/11/27 08:25:21 fetching corpus: 7954, signal 195038/207865 (executing program) 2025/11/27 08:25:21 fetching corpus: 8004, signal 195423/207866 (executing program) 2025/11/27 08:25:21 fetching corpus: 8054, signal 195657/207867 (executing program) 2025/11/27 08:25:21 fetching corpus: 8104, signal 196041/207867 (executing program) 2025/11/27 08:25:21 fetching corpus: 8154, signal 196255/207884 (executing program) 2025/11/27 08:25:21 fetching corpus: 8204, signal 196544/207885 (executing program) 2025/11/27 08:25:21 fetching corpus: 8254, signal 196887/207885 (executing program) 2025/11/27 08:25:21 fetching corpus: 8304, signal 197113/207885 (executing program) 2025/11/27 08:25:21 fetching corpus: 8354, signal 197462/207885 (executing program) 2025/11/27 08:25:21 fetching corpus: 8404, signal 197774/207885 (executing program) 2025/11/27 08:25:21 fetching corpus: 8453, signal 198036/207885 (executing program) 2025/11/27 08:25:22 fetching corpus: 8503, signal 198250/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8553, signal 198544/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8603, signal 198925/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8653, signal 199135/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8701, signal 199402/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8751, signal 199702/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8801, signal 199979/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8851, signal 200326/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8901, signal 200577/207896 (executing program) 2025/11/27 08:25:22 fetching corpus: 8951, signal 200914/207896 (executing program) 2025/11/27 08:25:23 fetching corpus: 9001, signal 201199/207925 (executing program) 2025/11/27 08:25:23 fetching corpus: 9051, signal 201388/207925 (executing program) 2025/11/27 08:25:23 fetching corpus: 9101, signal 201633/207925 (executing program) 2025/11/27 08:25:23 fetching corpus: 9151, signal 201903/207930 (executing program) 2025/11/27 08:25:23 fetching corpus: 9201, signal 202162/207930 (executing program) 2025/11/27 08:25:23 fetching corpus: 9251, signal 202496/207930 (executing program) 2025/11/27 08:25:23 fetching corpus: 9299, signal 202801/207931 (executing program) 2025/11/27 08:25:23 fetching corpus: 9349, signal 203116/207931 (executing program) 2025/11/27 08:25:23 fetching corpus: 9399, signal 203291/207931 (executing program) 2025/11/27 08:25:23 fetching corpus: 9449, signal 203604/207931 (executing program) 2025/11/27 08:25:24 fetching corpus: 9499, signal 203889/207931 (executing program) 2025/11/27 08:25:24 fetching corpus: 9549, signal 204121/207932 (executing program) 2025/11/27 08:25:24 fetching corpus: 9599, signal 204487/207932 (executing program) 2025/11/27 08:25:24 fetching corpus: 9648, signal 204849/207932 (executing program) 2025/11/27 08:25:24 fetching corpus: 9698, signal 205277/207932 (executing program) 2025/11/27 08:25:24 fetching corpus: 9748, signal 205454/207933 (executing program) 2025/11/27 08:25:24 fetching corpus: 9798, signal 205687/207933 (executing program) 2025/11/27 08:25:24 fetching corpus: 9847, signal 205946/207933 (executing program) 2025/11/27 08:25:24 fetching corpus: 9897, signal 206200/207982 (executing program) 2025/11/27 08:25:24 fetching corpus: 9925, signal 206317/207982 (executing program) 2025/11/27 08:25:24 fetching corpus: 9925, signal 206317/207982 (executing program) 2025/11/27 08:25:26 starting 8 fuzzer processes 08:25:26 executing program 0: syz_read_part_table(0x7000000, 0x0, 0x0) 08:25:26 executing program 7: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='sysfs\x00', 0x0, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r1) umount2(&(0x7f0000000040)='./file0/../file0\x00', 0x0) 08:25:26 executing program 1: ioperm(0x0, 0x4, 0xffffffffffffff01) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) 08:25:26 executing program 2: timerfd_create(0x0, 0x81800) 08:25:26 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='mounts\x00') connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) sendfile(r0, r1, 0x0, 0xffd0) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmmsg$inet6(r0, &(0x7f0000006cc0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000480)={0xa, 0x4e24, 0x0, @remote, 0x7}, 0x1c, 0x0, 0x0, &(0x7f00000005c0)=[@pktinfo={{0x24, 0x29, 0x32, {@empty, r3}}}], 0x28}}], 0x2, 0x0) 08:25:26 executing program 5: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'}) r0 = mq_open(&(0x7f00000001c0)='{#:E,,\x00\x9e\\\xe5\x9a\x86{w\x1f1\xfcN\x85U_0\x96\x13\xab\x12\b\x00\x00\x00\xfe\xc6\xf3\xf9\x05\x8deeU?5\x19\x88\xef;:\xb2#\x1b\\\x98.\x04+\xa3\xc4:\xdbj\xfb\x0f\xf1\xe0y\xe8+9\xa6#\x1e\xf0P\x8c#h\xbb\f\x0e\x18\x87\xc4\n\x92zK/\xe2\x10M8\x9a\xf0\x02\xab,\xb5\xc5\x81\x99\x00'/124, 0x0, 0x0, 0x0) mq_timedsend(r0, &(0x7f0000000040)="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", 0xfa, 0x10000000000, &(0x7f0000000140)={0x0, 0x989680}) r1 = dup2(r0, r0) mq_notify(r1, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000059c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1cb3e5000032000000ff0200000000000000000000000000014c426e93d9a4ed4300000000551d895ee49bf84c4734a9111b00afaf63c749980ae5ff3ff115097fd415ece4bec0ec8b5ac6901c88987f09e63b600c00"/101, @ANYRES32=r1, @ANYRESHEX=r1], 0x28}}], 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000380)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f00000003c0)={0x4, 0xfffffffffffffffd, 0x800, 0x6, 0xc0000000, 0x6}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, 0x2, [@rand_addr]}, 0x14) fsetxattr$trusted_overlay_origin(r3, &(0x7f0000000180), &(0x7f0000000340), 0x2, 0x2) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) clone3(&(0x7f0000000240)={0x61020100, &(0x7f00000056c0), 0x0, 0x0, {}, &(0x7f00000001c0)=""/96, 0x54, 0x0, &(0x7f0000000000), 0x3}, 0x58) [ 90.415280] audit: type=1400 audit(1764231926.666:7): avc: denied { execmem } for pid=281 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 08:25:26 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) inotify_add_watch(r1, 0x0, 0x130) 08:25:26 executing program 6: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x2, 0x0) write$P9_RFLUSH(r0, 0x0, 0x0) [ 91.562175] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 91.563462] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 91.564467] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.565239] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 91.568438] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 91.569827] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 91.570490] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 91.571170] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.579840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.583269] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.584867] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.587697] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.588049] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 91.592294] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.593905] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.625351] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.626577] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.627341] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.629319] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.648045] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.684777] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 91.685799] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 91.689702] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 91.691207] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 91.692466] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 91.693372] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 91.695921] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 91.696796] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 91.697293] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 91.716101] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 91.718268] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 91.726792] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 91.728864] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 91.730154] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 91.735222] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 91.737252] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 91.748216] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 91.758817] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 91.771241] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 91.777339] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 93.653201] Bluetooth: hci1: command tx timeout [ 93.653225] Bluetooth: hci0: command tx timeout [ 93.653888] Bluetooth: hci2: command tx timeout [ 93.716660] Bluetooth: hci3: command tx timeout [ 93.781193] Bluetooth: hci4: command tx timeout [ 93.781226] Bluetooth: hci7: command tx timeout [ 93.844790] Bluetooth: hci6: command tx timeout [ 93.844823] Bluetooth: hci5: command tx timeout [ 95.700750] Bluetooth: hci1: command tx timeout [ 95.701219] Bluetooth: hci2: command tx timeout [ 95.702378] Bluetooth: hci0: command tx timeout [ 95.765603] Bluetooth: hci3: command tx timeout [ 95.828742] Bluetooth: hci7: command tx timeout [ 95.828808] Bluetooth: hci4: command tx timeout [ 95.892610] Bluetooth: hci6: command tx timeout [ 95.894631] Bluetooth: hci5: command tx timeout [ 97.748581] Bluetooth: hci2: command tx timeout [ 97.748666] Bluetooth: hci0: command tx timeout [ 97.749057] Bluetooth: hci1: command tx timeout [ 97.813179] Bluetooth: hci3: command tx timeout [ 97.876579] Bluetooth: hci4: command tx timeout [ 97.877287] Bluetooth: hci7: command tx timeout [ 97.940739] Bluetooth: hci5: command tx timeout [ 97.940761] Bluetooth: hci6: command tx timeout [ 99.796705] Bluetooth: hci0: command tx timeout [ 99.796722] Bluetooth: hci2: command tx timeout [ 99.797662] Bluetooth: hci1: command tx timeout [ 99.861603] Bluetooth: hci3: command tx timeout [ 99.925693] Bluetooth: hci7: command tx timeout [ 99.925741] Bluetooth: hci4: command tx timeout [ 99.988671] Bluetooth: hci6: command tx timeout [ 99.989695] Bluetooth: hci5: command tx timeout [ 123.725120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.725825] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.969576] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.970218] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.193404] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.194587] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.324606] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.325239] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.429872] audit: type=1326 audit(1764231960.680:8): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3815 comm="syz-executor.1" exe="/syz-executor.1" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f65b40eeb19 code=0x0 [ 124.564667] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.565259] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:26:00 executing program 2: timerfd_create(0x0, 0x81800) [ 124.769480] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.770165] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:26:01 executing program 2: timerfd_create(0x0, 0x81800) 08:26:01 executing program 2: timerfd_create(0x0, 0x81800) [ 124.875510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.876282] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:26:01 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)={0x18, 0x76, 0xffffffffffffffff, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}]}, 0x18}], 0x1}, 0x0) [ 124.972581] audit: type=1400 audit(1764231961.223:9): avc: denied { open } for pid=3867 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.978213] audit: type=1400 audit(1764231961.223:10): avc: denied { kernel } for pid=3867 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.061761] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.062395] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:26:01 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)={0x18, 0x76, 0xffffffffffffffff, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}]}, 0x18}], 0x1}, 0x0) [ 125.146110] loop0: detected capacity change from 0 to 229376 [ 125.153894] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.154521] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.165083] loop0: detected capacity change from 0 to 229376 08:26:01 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)={0x18, 0x76, 0xffffffffffffffff, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}]}, 0x18}], 0x1}, 0x0) [ 125.299175] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.300365] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.396090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.396856] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.448632] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.449251] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.486104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.486778] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.492242] [ 125.492395] ================================================ [ 125.492845] WARNING: lock held when returning to user space! [ 125.493292] 6.18.0-rc7-next-20251127 #1 Not tainted [ 125.493689] ------------------------------------------------ [ 125.494679] syz-executor.5/3901 is leaving the kernel with locks still held! [ 125.496193] 1 lock held by syz-executor.5/3901: [ 125.497226] #0: ffff8880161215c8 (&sb->s_type->i_mutex_key#18/1){+.+.}-{4:4}, at: start_creating_noperm+0x84/0xd0 [ 125.506018] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.506675] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.508878] ieee80211 phy16: Selected rate control algorithm 'minstrel_ht' [ 125.520793] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 125.548410] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.549070] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.555847] ieee80211 phy17: Selected rate control algorithm 'minstrel_ht' [ 125.581938] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.582567] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 VM DIAGNOSIS: 08:26:01 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=ffff888015e58000 RCX=0000000000000001 RDX=0000000000000000 RSI=ffffffff84733bbb RDI=ffff888015e583fc RBP=ffff8880185a6ad8 RSP=ffff8880185a69f8 R8 =0000000000000001 R9 =ffff8880185a6ac0 R10=000000000003ccef R11=000000000009caa9 R12=0000000000000000 R13=ffff8880185a6ac8 R14=ffff888015e58000 R15=ffff8880185a6a80 RIP=ffffffff815be7ca RFL=00000213 [----A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555563184400 00000000 00000000 GS =0000 ffff8880e537a000 00000000 00000000 LDT=0000 fffffe5e00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3e72467520 CR3=0000000013772000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000005 XMM01=ffffffffffffff00ffffffffffffffff XMM02=77656e6d70720070756f72672e61746f XMM03=646e756f662b74736f6c002f2e2f002f XMM04=28282828282828282828282828282828 XMM05=00000000000000000000000000000000 XMM06=2020092020202020093a0a4267203436 XMM07=00000000000000000000000000000000 XMM08=722f6c6c696b66722f6372732f2e2e00 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffffffff81b80a77 RCX=0000000000000001 RDX=1ffff110030a2f09 RSI=ffffffff8135e6b2 RDI=ffffffff81b80a77 RBP=ffffffff81b80a77 RSP=ffff888018517798 R8 =0000000000000001 R9 =ffff888018517830 R10=000000000003ccef R11=00000000000281f5 R12=ffff8880185178b8 R13=0000000000000000 R14=ffff8880157c9bc0 R15=0000000000000cc0 RIP=ffffffff8143a497 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3d1ffd38c0 00000000 00000000 GS =0000 ffff8880e547a000 00000000 00000000 LDT=0000 fffffe2c00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f4ef5203018 CR3=000000000c6eb000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=00000000000000006c6175747269762f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055a0d0a77fb0000055a0d0ab9740 XMM06=000000000000000000000000ffffffff XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000002000000000000000200000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000