Warning: Permanently added '[localhost]:17045' (ECDSA) to the list of known hosts. 2025/09/01 06:23:15 fuzzer started 2025/09/01 06:23:15 dialing manager at localhost:43077 syzkaller login: [ 51.644916] cgroup: Unknown subsys name 'net' [ 51.698700] cgroup: Unknown subsys name 'cpuset' [ 51.710179] cgroup: Unknown subsys name 'rlimit' 2025/09/01 06:23:25 syscalls: 2214 2025/09/01 06:23:25 code coverage: enabled 2025/09/01 06:23:25 comparison tracing: enabled 2025/09/01 06:23:25 extra coverage: enabled 2025/09/01 06:23:25 setuid sandbox: enabled 2025/09/01 06:23:25 namespace sandbox: enabled 2025/09/01 06:23:25 Android sandbox: enabled 2025/09/01 06:23:25 fault injection: enabled 2025/09/01 06:23:25 leak checking: enabled 2025/09/01 06:23:25 net packet injection: enabled 2025/09/01 06:23:25 net device setup: enabled 2025/09/01 06:23:25 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 06:23:25 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 06:23:25 USB emulation: enabled 2025/09/01 06:23:25 hci packet injection: enabled 2025/09/01 06:23:25 wifi device emulation: enabled 2025/09/01 06:23:25 802.15.4 emulation: enabled 2025/09/01 06:23:26 fetching corpus: 50, signal 16315/18180 (executing program) 2025/09/01 06:23:26 fetching corpus: 100, signal 30025/33508 (executing program) 2025/09/01 06:23:26 fetching corpus: 150, signal 34646/39737 (executing program) 2025/09/01 06:23:26 fetching corpus: 200, signal 40851/47397 (executing program) 2025/09/01 06:23:26 fetching corpus: 250, signal 50252/58049 (executing program) 2025/09/01 06:23:26 fetching corpus: 300, signal 54478/63603 (executing program) 2025/09/01 06:23:26 fetching corpus: 350, signal 59111/69437 (executing program) 2025/09/01 06:23:26 fetching corpus: 400, signal 63811/75294 (executing program) 2025/09/01 06:23:26 fetching corpus: 450, signal 66618/79302 (executing program) 2025/09/01 06:23:26 fetching corpus: 500, signal 69016/82914 (executing program) 2025/09/01 06:23:26 fetching corpus: 550, signal 72161/87173 (executing program) 2025/09/01 06:23:27 fetching corpus: 600, signal 73793/90049 (executing program) 2025/09/01 06:23:27 fetching corpus: 650, signal 76976/94211 (executing program) 2025/09/01 06:23:27 fetching corpus: 700, signal 79683/97880 (executing program) 2025/09/01 06:23:27 fetching corpus: 750, signal 81003/100328 (executing program) 2025/09/01 06:23:27 fetching corpus: 800, signal 83395/103642 (executing program) 2025/09/01 06:23:27 fetching corpus: 850, signal 85903/107044 (executing program) 2025/09/01 06:23:27 fetching corpus: 900, signal 87235/109439 (executing program) 2025/09/01 06:23:27 fetching corpus: 950, signal 89709/112705 (executing program) 2025/09/01 06:23:27 fetching corpus: 1000, signal 92087/115906 (executing program) 2025/09/01 06:23:27 fetching corpus: 1050, signal 94591/119133 (executing program) 2025/09/01 06:23:27 fetching corpus: 1100, signal 96363/121752 (executing program) 2025/09/01 06:23:27 fetching corpus: 1150, signal 97789/124064 (executing program) 2025/09/01 06:23:28 fetching corpus: 1200, signal 99946/126944 (executing program) 2025/09/01 06:23:28 fetching corpus: 1250, signal 102215/129854 (executing program) 2025/09/01 06:23:28 fetching corpus: 1300, signal 103879/132231 (executing program) 2025/09/01 06:23:28 fetching corpus: 1350, signal 105297/134398 (executing program) 2025/09/01 06:23:28 fetching corpus: 1400, signal 106294/136231 (executing program) 2025/09/01 06:23:28 fetching corpus: 1450, signal 108012/138603 (executing program) 2025/09/01 06:23:28 fetching corpus: 1500, signal 109137/140532 (executing program) 2025/09/01 06:23:28 fetching corpus: 1550, signal 110791/142817 (executing program) 2025/09/01 06:23:28 fetching corpus: 1600, signal 111628/144460 (executing program) 2025/09/01 06:23:28 fetching corpus: 1650, signal 113008/146489 (executing program) 2025/09/01 06:23:28 fetching corpus: 1700, signal 114644/148681 (executing program) 2025/09/01 06:23:29 fetching corpus: 1750, signal 115626/150324 (executing program) 2025/09/01 06:23:29 fetching corpus: 1800, signal 117290/152511 (executing program) 2025/09/01 06:23:29 fetching corpus: 1850, signal 118430/154249 (executing program) 2025/09/01 06:23:29 fetching corpus: 1900, signal 119922/156301 (executing program) 2025/09/01 06:23:29 fetching corpus: 1950, signal 122392/158957 (executing program) 2025/09/01 06:23:29 fetching corpus: 2000, signal 123247/160448 (executing program) 2025/09/01 06:23:29 fetching corpus: 2050, signal 124449/162186 (executing program) 2025/09/01 06:23:29 fetching corpus: 2100, signal 125104/163502 (executing program) 2025/09/01 06:23:29 fetching corpus: 2150, signal 125712/164762 (executing program) 2025/09/01 06:23:29 fetching corpus: 2200, signal 126618/166215 (executing program) 2025/09/01 06:23:30 fetching corpus: 2250, signal 127495/167649 (executing program) 2025/09/01 06:23:30 fetching corpus: 2300, signal 128532/169179 (executing program) 2025/09/01 06:23:30 fetching corpus: 2350, signal 129301/170535 (executing program) 2025/09/01 06:23:30 fetching corpus: 2400, signal 130179/171908 (executing program) 2025/09/01 06:23:30 fetching corpus: 2450, signal 130913/173187 (executing program) 2025/09/01 06:23:30 fetching corpus: 2500, signal 131848/174580 (executing program) 2025/09/01 06:23:30 fetching corpus: 2550, signal 132597/175810 (executing program) 2025/09/01 06:23:30 fetching corpus: 2600, signal 133861/177380 (executing program) 2025/09/01 06:23:30 fetching corpus: 2650, signal 134653/178649 (executing program) 2025/09/01 06:23:30 fetching corpus: 2700, signal 135700/179991 (executing program) 2025/09/01 06:23:30 fetching corpus: 2750, signal 136692/181371 (executing program) 2025/09/01 06:23:31 fetching corpus: 2800, signal 137738/182711 (executing program) 2025/09/01 06:23:31 fetching corpus: 2850, signal 138298/183820 (executing program) 2025/09/01 06:23:31 fetching corpus: 2900, signal 139074/185074 (executing program) 2025/09/01 06:23:31 fetching corpus: 2950, signal 139698/186189 (executing program) 2025/09/01 06:23:31 fetching corpus: 3000, signal 140464/187325 (executing program) 2025/09/01 06:23:31 fetching corpus: 3050, signal 141089/188422 (executing program) 2025/09/01 06:23:31 fetching corpus: 3100, signal 141902/189538 (executing program) 2025/09/01 06:23:31 fetching corpus: 3150, signal 142568/190603 (executing program) 2025/09/01 06:23:31 fetching corpus: 3200, signal 143436/191809 (executing program) 2025/09/01 06:23:31 fetching corpus: 3250, signal 143981/192846 (executing program) 2025/09/01 06:23:31 fetching corpus: 3300, signal 144746/193961 (executing program) 2025/09/01 06:23:32 fetching corpus: 3350, signal 145317/194972 (executing program) 2025/09/01 06:23:32 fetching corpus: 3400, signal 146124/196046 (executing program) 2025/09/01 06:23:32 fetching corpus: 3450, signal 146537/196952 (executing program) 2025/09/01 06:23:32 fetching corpus: 3500, signal 147106/197864 (executing program) 2025/09/01 06:23:32 fetching corpus: 3550, signal 147662/198803 (executing program) 2025/09/01 06:23:32 fetching corpus: 3600, signal 148139/199717 (executing program) 2025/09/01 06:23:32 fetching corpus: 3650, signal 148940/200695 (executing program) 2025/09/01 06:23:32 fetching corpus: 3700, signal 149366/201548 (executing program) 2025/09/01 06:23:32 fetching corpus: 3750, signal 149800/202374 (executing program) 2025/09/01 06:23:32 fetching corpus: 3800, signal 150327/203290 (executing program) 2025/09/01 06:23:32 fetching corpus: 3850, signal 150735/204160 (executing program) 2025/09/01 06:23:33 fetching corpus: 3900, signal 151252/205003 (executing program) 2025/09/01 06:23:33 fetching corpus: 3950, signal 151813/205899 (executing program) 2025/09/01 06:23:33 fetching corpus: 4000, signal 152291/206758 (executing program) 2025/09/01 06:23:33 fetching corpus: 4050, signal 152806/207601 (executing program) 2025/09/01 06:23:33 fetching corpus: 4100, signal 153332/208404 (executing program) 2025/09/01 06:23:33 fetching corpus: 4150, signal 153708/209174 (executing program) 2025/09/01 06:23:33 fetching corpus: 4200, signal 154285/210004 (executing program) 2025/09/01 06:23:33 fetching corpus: 4250, signal 155022/210851 (executing program) 2025/09/01 06:23:33 fetching corpus: 4300, signal 155411/211587 (executing program) 2025/09/01 06:23:33 fetching corpus: 4350, signal 155879/212346 (executing program) 2025/09/01 06:23:33 fetching corpus: 4400, signal 156251/213095 (executing program) 2025/09/01 06:23:33 fetching corpus: 4450, signal 156801/213869 (executing program) 2025/09/01 06:23:34 fetching corpus: 4500, signal 157357/214732 (executing program) 2025/09/01 06:23:34 fetching corpus: 4550, signal 157858/215557 (executing program) 2025/09/01 06:23:34 fetching corpus: 4600, signal 158164/216276 (executing program) 2025/09/01 06:23:34 fetching corpus: 4650, signal 158587/216991 (executing program) 2025/09/01 06:23:34 fetching corpus: 4700, signal 158892/217717 (executing program) 2025/09/01 06:23:34 fetching corpus: 4750, signal 159314/218366 (executing program) 2025/09/01 06:23:34 fetching corpus: 4800, signal 159745/219046 (executing program) 2025/09/01 06:23:34 fetching corpus: 4850, signal 160319/219766 (executing program) 2025/09/01 06:23:34 fetching corpus: 4900, signal 161237/220512 (executing program) 2025/09/01 06:23:34 fetching corpus: 4950, signal 161637/221174 (executing program) 2025/09/01 06:23:34 fetching corpus: 5000, signal 162126/221810 (executing program) 2025/09/01 06:23:34 fetching corpus: 5050, signal 162558/222431 (executing program) 2025/09/01 06:23:35 fetching corpus: 5100, signal 162881/223060 (executing program) 2025/09/01 06:23:35 fetching corpus: 5150, signal 163238/223698 (executing program) 2025/09/01 06:23:35 fetching corpus: 5200, signal 163728/224331 (executing program) 2025/09/01 06:23:35 fetching corpus: 5250, signal 164251/224967 (executing program) 2025/09/01 06:23:35 fetching corpus: 5300, signal 164484/225537 (executing program) 2025/09/01 06:23:35 fetching corpus: 5350, signal 164796/226150 (executing program) 2025/09/01 06:23:35 fetching corpus: 5400, signal 165154/226746 (executing program) 2025/09/01 06:23:35 fetching corpus: 5450, signal 165946/227356 (executing program) 2025/09/01 06:23:35 fetching corpus: 5500, signal 166327/227950 (executing program) 2025/09/01 06:23:35 fetching corpus: 5550, signal 166722/228496 (executing program) 2025/09/01 06:23:36 fetching corpus: 5600, signal 167360/229025 (executing program) 2025/09/01 06:23:36 fetching corpus: 5650, signal 167896/229613 (executing program) 2025/09/01 06:23:36 fetching corpus: 5700, signal 168188/229770 (executing program) 2025/09/01 06:23:36 fetching corpus: 5750, signal 168493/229770 (executing program) 2025/09/01 06:23:36 fetching corpus: 5800, signal 168767/229785 (executing program) 2025/09/01 06:23:36 fetching corpus: 5850, signal 169092/229795 (executing program) 2025/09/01 06:23:36 fetching corpus: 5900, signal 169603/229808 (executing program) 2025/09/01 06:23:36 fetching corpus: 5950, signal 169944/229812 (executing program) 2025/09/01 06:23:36 fetching corpus: 6000, signal 170211/229815 (executing program) 2025/09/01 06:23:36 fetching corpus: 6050, signal 170493/229829 (executing program) 2025/09/01 06:23:36 fetching corpus: 6100, signal 170814/229829 (executing program) 2025/09/01 06:23:36 fetching corpus: 6150, signal 171536/229841 (executing program) 2025/09/01 06:23:37 fetching corpus: 6200, signal 171814/229841 (executing program) 2025/09/01 06:23:37 fetching corpus: 6250, signal 172124/229846 (executing program) 2025/09/01 06:23:37 fetching corpus: 6300, signal 172496/229847 (executing program) 2025/09/01 06:23:37 fetching corpus: 6350, signal 172904/229853 (executing program) 2025/09/01 06:23:37 fetching corpus: 6400, signal 173111/229856 (executing program) 2025/09/01 06:23:37 fetching corpus: 6450, signal 173336/229859 (executing program) 2025/09/01 06:23:37 fetching corpus: 6500, signal 173606/229859 (executing program) 2025/09/01 06:23:37 fetching corpus: 6550, signal 174033/229875 (executing program) 2025/09/01 06:23:37 fetching corpus: 6600, signal 174289/229906 (executing program) 2025/09/01 06:23:37 fetching corpus: 6650, signal 174658/229908 (executing program) 2025/09/01 06:23:37 fetching corpus: 6700, signal 175038/229909 (executing program) 2025/09/01 06:23:38 fetching corpus: 6750, signal 175493/229917 (executing program) 2025/09/01 06:23:38 fetching corpus: 6800, signal 175894/229920 (executing program) 2025/09/01 06:23:38 fetching corpus: 6850, signal 176133/229928 (executing program) 2025/09/01 06:23:38 fetching corpus: 6900, signal 176453/229928 (executing program) 2025/09/01 06:23:38 fetching corpus: 6950, signal 176751/229932 (executing program) 2025/09/01 06:23:38 fetching corpus: 7000, signal 177069/229939 (executing program) 2025/09/01 06:23:38 fetching corpus: 7050, signal 177469/229939 (executing program) 2025/09/01 06:23:38 fetching corpus: 7100, signal 177877/229939 (executing program) 2025/09/01 06:23:38 fetching corpus: 7150, signal 178288/229939 (executing program) 2025/09/01 06:23:38 fetching corpus: 7200, signal 178557/229944 (executing program) 2025/09/01 06:23:38 fetching corpus: 7250, signal 178776/229946 (executing program) 2025/09/01 06:23:38 fetching corpus: 7300, signal 178978/229947 (executing program) 2025/09/01 06:23:38 fetching corpus: 7350, signal 179179/229955 (executing program) 2025/09/01 06:23:38 fetching corpus: 7400, signal 179460/229955 (executing program) 2025/09/01 06:23:39 fetching corpus: 7450, signal 179679/229959 (executing program) 2025/09/01 06:23:39 fetching corpus: 7500, signal 180016/230044 (executing program) 2025/09/01 06:23:39 fetching corpus: 7550, signal 180346/230045 (executing program) 2025/09/01 06:23:39 fetching corpus: 7600, signal 180696/230053 (executing program) 2025/09/01 06:23:39 fetching corpus: 7650, signal 181052/230062 (executing program) 2025/09/01 06:23:39 fetching corpus: 7700, signal 181368/230063 (executing program) 2025/09/01 06:23:39 fetching corpus: 7750, signal 181657/230064 (executing program) 2025/09/01 06:23:39 fetching corpus: 7800, signal 181857/230071 (executing program) 2025/09/01 06:23:39 fetching corpus: 7850, signal 182135/230074 (executing program) 2025/09/01 06:23:39 fetching corpus: 7900, signal 182477/230076 (executing program) 2025/09/01 06:23:39 fetching corpus: 7950, signal 182683/230078 (executing program) 2025/09/01 06:23:39 fetching corpus: 8000, signal 183041/230083 (executing program) 2025/09/01 06:23:40 fetching corpus: 8050, signal 183450/230190 (executing program) 2025/09/01 06:23:40 fetching corpus: 8100, signal 183894/230195 (executing program) 2025/09/01 06:23:40 fetching corpus: 8150, signal 184161/230195 (executing program) 2025/09/01 06:23:40 fetching corpus: 8200, signal 184417/230195 (executing program) 2025/09/01 06:23:40 fetching corpus: 8250, signal 184747/230197 (executing program) 2025/09/01 06:23:40 fetching corpus: 8300, signal 185203/230202 (executing program) 2025/09/01 06:23:40 fetching corpus: 8350, signal 185581/230289 (executing program) 2025/09/01 06:23:40 fetching corpus: 8400, signal 185883/230290 (executing program) 2025/09/01 06:23:40 fetching corpus: 8450, signal 186094/230294 (executing program) 2025/09/01 06:23:40 fetching corpus: 8500, signal 186400/230294 (executing program) 2025/09/01 06:23:40 fetching corpus: 8550, signal 186651/230301 (executing program) 2025/09/01 06:23:40 fetching corpus: 8600, signal 186914/230303 (executing program) 2025/09/01 06:23:41 fetching corpus: 8650, signal 187147/230303 (executing program) 2025/09/01 06:23:41 fetching corpus: 8700, signal 187437/230306 (executing program) 2025/09/01 06:23:41 fetching corpus: 8750, signal 187752/230330 (executing program) 2025/09/01 06:23:41 fetching corpus: 8800, signal 187968/230330 (executing program) 2025/09/01 06:23:41 fetching corpus: 8850, signal 188178/230339 (executing program) 2025/09/01 06:23:41 fetching corpus: 8900, signal 188406/230378 (executing program) 2025/09/01 06:23:41 fetching corpus: 8950, signal 188586/230383 (executing program) 2025/09/01 06:23:41 fetching corpus: 9000, signal 188865/230383 (executing program) 2025/09/01 06:23:41 fetching corpus: 9050, signal 189037/230385 (executing program) 2025/09/01 06:23:41 fetching corpus: 9100, signal 189236/230395 (executing program) 2025/09/01 06:23:41 fetching corpus: 9150, signal 189600/230404 (executing program) 2025/09/01 06:23:41 fetching corpus: 9200, signal 189793/230409 (executing program) 2025/09/01 06:23:41 fetching corpus: 9250, signal 190147/230411 (executing program) 2025/09/01 06:23:42 fetching corpus: 9300, signal 190501/230413 (executing program) 2025/09/01 06:23:42 fetching corpus: 9350, signal 190771/230413 (executing program) 2025/09/01 06:23:42 fetching corpus: 9400, signal 191205/230417 (executing program) 2025/09/01 06:23:42 fetching corpus: 9450, signal 191586/230419 (executing program) 2025/09/01 06:23:42 fetching corpus: 9500, signal 191766/230426 (executing program) 2025/09/01 06:23:42 fetching corpus: 9550, signal 192099/230437 (executing program) 2025/09/01 06:23:42 fetching corpus: 9600, signal 192420/230440 (executing program) 2025/09/01 06:23:42 fetching corpus: 9650, signal 192711/230441 (executing program) 2025/09/01 06:23:42 fetching corpus: 9700, signal 192854/230450 (executing program) 2025/09/01 06:23:42 fetching corpus: 9750, signal 193225/230458 (executing program) 2025/09/01 06:23:43 fetching corpus: 9800, signal 193395/230464 (executing program) 2025/09/01 06:23:43 fetching corpus: 9850, signal 193578/230467 (executing program) 2025/09/01 06:23:43 fetching corpus: 9900, signal 193845/230468 (executing program) 2025/09/01 06:23:43 fetching corpus: 9950, signal 194096/230473 (executing program) 2025/09/01 06:23:43 fetching corpus: 10000, signal 194327/230487 (executing program) 2025/09/01 06:23:43 fetching corpus: 10050, signal 194621/230533 (executing program) 2025/09/01 06:23:43 fetching corpus: 10100, signal 194811/230535 (executing program) 2025/09/01 06:23:43 fetching corpus: 10150, signal 195021/230541 (executing program) 2025/09/01 06:23:43 fetching corpus: 10200, signal 195277/230551 (executing program) 2025/09/01 06:23:43 fetching corpus: 10250, signal 195417/230551 (executing program) 2025/09/01 06:23:43 fetching corpus: 10300, signal 195671/230552 (executing program) 2025/09/01 06:23:43 fetching corpus: 10350, signal 195809/230554 (executing program) 2025/09/01 06:23:44 fetching corpus: 10400, signal 195998/230554 (executing program) 2025/09/01 06:23:44 fetching corpus: 10450, signal 196246/230560 (executing program) 2025/09/01 06:23:44 fetching corpus: 10500, signal 196491/230561 (executing program) 2025/09/01 06:23:44 fetching corpus: 10550, signal 196659/230562 (executing program) 2025/09/01 06:23:44 fetching corpus: 10600, signal 196829/230578 (executing program) 2025/09/01 06:23:44 fetching corpus: 10650, signal 197213/230586 (executing program) 2025/09/01 06:23:44 fetching corpus: 10700, signal 197486/230587 (executing program) 2025/09/01 06:23:44 fetching corpus: 10750, signal 197621/230588 (executing program) 2025/09/01 06:23:44 fetching corpus: 10800, signal 197791/230590 (executing program) 2025/09/01 06:23:44 fetching corpus: 10850, signal 197939/230590 (executing program) 2025/09/01 06:23:44 fetching corpus: 10900, signal 198140/230598 (executing program) 2025/09/01 06:23:44 fetching corpus: 10950, signal 198425/230628 (executing program) 2025/09/01 06:23:45 fetching corpus: 11000, signal 198602/230636 (executing program) 2025/09/01 06:23:45 fetching corpus: 11050, signal 198831/230644 (executing program) 2025/09/01 06:23:45 fetching corpus: 11100, signal 199017/230645 (executing program) 2025/09/01 06:23:45 fetching corpus: 11150, signal 199247/230662 (executing program) 2025/09/01 06:23:45 fetching corpus: 11200, signal 199492/230674 (executing program) 2025/09/01 06:23:45 fetching corpus: 11250, signal 199712/230674 (executing program) 2025/09/01 06:23:45 fetching corpus: 11300, signal 199951/230674 (executing program) 2025/09/01 06:23:45 fetching corpus: 11350, signal 200144/230674 (executing program) 2025/09/01 06:23:45 fetching corpus: 11400, signal 200294/230686 (executing program) 2025/09/01 06:23:45 fetching corpus: 11450, signal 200506/230693 (executing program) 2025/09/01 06:23:45 fetching corpus: 11500, signal 200689/230710 (executing program) 2025/09/01 06:23:45 fetching corpus: 11550, signal 200945/230711 (executing program) 2025/09/01 06:23:45 fetching corpus: 11600, signal 201137/230713 (executing program) 2025/09/01 06:23:45 fetching corpus: 11650, signal 201353/230717 (executing program) 2025/09/01 06:23:46 fetching corpus: 11700, signal 201476/230718 (executing program) 2025/09/01 06:23:46 fetching corpus: 11750, signal 201764/230718 (executing program) 2025/09/01 06:23:46 fetching corpus: 11800, signal 202084/230721 (executing program) 2025/09/01 06:23:46 fetching corpus: 11850, signal 202334/230725 (executing program) 2025/09/01 06:23:46 fetching corpus: 11900, signal 202595/230725 (executing program) 2025/09/01 06:23:46 fetching corpus: 11950, signal 202757/230731 (executing program) 2025/09/01 06:23:46 fetching corpus: 12000, signal 202916/230747 (executing program) 2025/09/01 06:23:46 fetching corpus: 12050, signal 203162/230747 (executing program) 2025/09/01 06:23:46 fetching corpus: 12100, signal 203448/230748 (executing program) 2025/09/01 06:23:46 fetching corpus: 12150, signal 203641/230748 (executing program) 2025/09/01 06:23:46 fetching corpus: 12200, signal 203787/230751 (executing program) 2025/09/01 06:23:46 fetching corpus: 12250, signal 204025/230756 (executing program) 2025/09/01 06:23:47 fetching corpus: 12300, signal 204228/230759 (executing program) 2025/09/01 06:23:47 fetching corpus: 12350, signal 204455/230759 (executing program) 2025/09/01 06:23:47 fetching corpus: 12400, signal 204780/230761 (executing program) 2025/09/01 06:23:47 fetching corpus: 12450, signal 204921/230768 (executing program) 2025/09/01 06:23:47 fetching corpus: 12500, signal 205102/230773 (executing program) 2025/09/01 06:23:47 fetching corpus: 12550, signal 205348/230774 (executing program) 2025/09/01 06:23:47 fetching corpus: 12600, signal 205559/230781 (executing program) 2025/09/01 06:23:47 fetching corpus: 12650, signal 205763/230786 (executing program) 2025/09/01 06:23:47 fetching corpus: 12679, signal 205822/230787 (executing program) 2025/09/01 06:23:47 fetching corpus: 12679, signal 205822/230787 (executing program) 2025/09/01 06:23:49 starting 8 fuzzer processes 06:23:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x44ff, 0x101100) ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f0000000040)) r1 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x401, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000100)="9eb3edd0cb4827a0ef4add0a02c84761f92c33dca2de0c32ce56bcbdc2bb5c8b0c442b19312db8549ed9bbc3e839a36c12c63c7b2f71eca23a6a657be7af0f3270bd9f082257fb617a4aaa8c3814417777c3e0546d4ad7576075d9f1d11954774a18e4d1f578ed6aace3a34bc6cb47fac6d3d9cbf99d2f8bc0d17862d437c13718dfbee4e08a3a327119627b150df7", 0x8f, 0x8}], 0x20000, &(0x7f0000000200)={[{@size={'size', 0x3d, [0x70, 0x6b, 0x65, 0x65, 0x25, 0x36, 0x25, 0x39]}}, {@huge_always}, {@mpol={'mpol', 0x3d, {'local', '', @void}}}, {@mode={'mode', 0x3d, 0x7ff}}], [{@smackfsroot={'smackfsroot', 0x3d, '/dev/sg#\x00'}}]}) fcntl$addseals(r1, 0x409, 0x2) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001480)='sessionid\x00') lseek(r2, 0x7fffffff, 0x3) r3 = dup(r1) r4 = syz_open_dev$mouse(&(0x7f00000014c0), 0x80, 0x141000) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r4, 0x7, &(0x7f0000001500)=r3, 0x1) r5 = openat(0xffffffffffffff9c, &(0x7f0000001540)='./file0\x00', 0x4c0080, 0x2) syz_io_uring_setup(0x5dfe, &(0x7f0000001580)={0x0, 0xaea5, 0x4, 0x0, 0x15f, 0x0, r5}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001600), &(0x7f0000001640)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001680)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0xee01}}, './file0\x00'}) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r6, 0xa, 0x0, r7) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r4, 0x40485404, &(0x7f00000016c0)={{0x0, 0x0, 0x80, 0x2, 0x7}, 0x2}) r8 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) pipe(&(0x7f0000001740)={0xffffffffffffffff, 0xffffffffffffffff}) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r8, 0x7, &(0x7f0000001780)=r9, 0x1) r10 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r10, 0x6611) 06:23:49 executing program 2: io_submit(0x0, 0x2, &(0x7f0000000240)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000000)="88b4f421ca05555c696e66040e7b16334c383297083e6db2a68d99020eb24c747966dfdf2eac23b900eb70a310932c5624e760d9f1ff3154f6c4cf9a9c3254e971cbe50bb8b9c10d5fe74dddc665a0c5551858b24690c358b4ebc754861fd9867dac2bceebc8e3e135ccaa673871ba7ce8531a05d6eacc4b3aea9cef2df91c01d6e065f636ba4eed8c", 0x89, 0x2, 0x0, 0x2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x5, 0xffe0, 0xffffffffffffffff, &(0x7f0000000100)="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", 0xfa, 0x4, 0x0, 0x1}]) r0 = socket$inet6(0xa, 0x800, 0x0) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x2, 0x44, 0x4}, 0x18) r2 = dup3(r0, r1, 0x0) write$binfmt_script(r0, &(0x7f0000000300)={'#! ', './file0', [{}, {0x20, '\\'}, {0x20, '.+$:/\'^'}], 0xa, "496dddfc9219f25fc4b324176afd4d5ec26abaa8c0b44701acb19ccc2fb08f361fde450492b11871c53d235ca00d09def8058ea9e858a91f518b90de958c865a28fc4d9b2ca60cb3b73f76515a8d7ddcd63e4aae7f1bf98159f9cad3dba2006e2ce3c5c882d7a1f1d2c060fcab3892794128ecf98799f37a752c26620aae9e4662f488dc3bc879e1c3b025cd729a75b656c4d4f2a65985769965dd93db779b639fc98d1fddb8700ec91b0b340003d17f9491ccaaa12ef4cf94093983c1ee220e1f345a5a3435ab5c2668e1e589239551060ea2"}, 0xe9) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'wg2\x00', 0x0}) setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000440)={'mangle\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f00000004c0)={@remote, r3}, 0x14) setsockopt$inet6_group_source_req(r2, 0x29, 0x2f, &(0x7f0000000500)={0x5ab, {{0xa, 0x4e21, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x30}}, {{0xa, 0x4e24, 0x77, @empty, 0x7}}}, 0x108) r4 = accept$packet(r2, &(0x7f0000000640)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000680)=0x14) io_submit(0x0, 0x1, &(0x7f0000000800)=[&(0x7f00000007c0)={0x0, 0x0, 0x0, 0x7, 0x80, r4, &(0x7f00000006c0)="c0fc2912bd5ed2b773b86c0e01905fdd22a572331bd98c85115253078f9c1702388169fb0582398125e53d5f8e331fcf3d9e49399f4107ce9fc0cab5341770555d99929d19344925de515b5be094389685308a42b661c6b6120fa42e75db94eb610174b123383881d087f6884210d96799de30bdfe96b190b51b1e254a9fdfb1cae4cf06b1f2fb33ab9f228891e62d25810c94787076883f68976bc1e633e43df74ccb64efc12fc82097fbd4492b3a7232653642fcfd02c67ebe68983ab7f84fb39b7f8ee0c2bdcfb2d23ad4ab2a561575062925aa0273c7c4f561", 0xdb, 0x2, 0x0, 0x1, r2}]) setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000840)={'nat\x00', 0x2, [{}, {}]}, 0x48) openat$vcsu(0xffffffffffffff9c, &(0x7f00000008c0), 0x20000, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000900)='./file0\x00', 0x48) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000940)={{0x1, 0x1, 0x18, r1, {0x4}}, './file0\x00'}) setsockopt$inet6_group_source_req(r5, 0x29, 0x2f, &(0x7f0000000980)={0x4, {{0xa, 0x4e21, 0x6, @dev={0xfe, 0x80, '\x00', 0x3d}, 0x7}}, {{0xa, 0x4e20, 0xff, @dev={0xfe, 0x80, '\x00', 0xc}, 0xa6}}}, 0x108) recvmsg(0xffffffffffffffff, &(0x7f0000000fc0)={&(0x7f0000000ac0)=@in6={0xa, 0x0, 0x0, @local}, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000b40)=""/56, 0x38}, {&(0x7f0000000b80)=""/221, 0xdd}, {&(0x7f0000000c80)=""/33, 0x21}, {&(0x7f0000000cc0)=""/55, 0x37}, {&(0x7f0000000d00)}, {&(0x7f0000000d40)=""/49, 0x31}, {&(0x7f0000000d80)=""/156, 0x9c}], 0x7, &(0x7f0000000ec0)=""/239, 0xef}, 0x140) getsockname(r0, &(0x7f0000001000)=@nl=@unspec, &(0x7f0000001080)=0x80) r6 = syz_io_uring_complete(0x0) getsockopt$sock_buf(r6, 0x1, 0x1a, &(0x7f00000010c0)=""/188, &(0x7f0000001180)=0xbc) 06:23:49 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/route\x00') ioctl$BLKALIGNOFF(r0, 0x127a, &(0x7f0000000040)) ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f0000000080)) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f00000000c0)={0x2, 0x1f, 0x2, 0x1}) ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000100)) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000200)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) statx(r0, &(0x7f00000002c0)='./file0\x00', 0x2000, 0x100, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000400)=0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2000) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000280)='system.posix_acl_default\x00', &(0x7f0000000500)={{}, {0x1, 0x2}, [{0x2, 0x1, r3}, {0x2, 0x0, r4}], {}, [{0x8, 0x4, 0xffffffffffffffff}, {0x8, 0x5, 0xee00}, {}, {0x8, 0x2, r5}, {0x8, 0x0, 0xffffffffffffffff}], {}, {0x20, 0x1}}, 0x5c, 0x0) setxattr$security_ima(&(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), &(0x7f0000000600)=@md5={0x1, "e7a073d06785ee58a47faf8bd2fc5558"}, 0x11, 0x1) ioctl$BLKDISCARD(r1, 0x1277, &(0x7f0000000640)=0x1ff) pread64(r0, &(0x7f0000000680)=""/119, 0x77, 0xc726) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000700)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$BLKFLSBUF(r6, 0x1261, &(0x7f0000000740)=0x7fffffff) r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000780), 0x40, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r7, 0xc0189376, &(0x7f00000007c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f0000000800)={{r8}, 0x0, 0x77f04c27, 0x2}) 06:23:49 executing program 3: bind$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000040), &(0x7f00000000c0)=0x68) sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x40, 0x6, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x1}, [@IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000004}, 0xc0) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e22, 0xffff, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c) r1 = dup3(r0, r0, 0x80000) bind$bt_sco(r1, &(0x7f0000000240), 0x8) listen(r0, 0x6) ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000280)) accept$unix(r1, 0x0, &(0x7f00000002c0)) setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000300)=@req3={0x0, 0x1, 0x7, 0x80000000, 0x2, 0x4c140d91, 0x3}, 0x1c) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000380)={0x7, &(0x7f0000000340)=[{0x0, 0x4, 0x8, 0x7}, {0xfff7, 0x2, 0xff, 0x4}, {0x80, 0x81, 0xfd, 0x42}, {0x6, 0x5, 0x0, 0x8}, {0x9ec, 0x9, 0x80, 0x4}, {0xf42, 0xff, 0x1f, 0x69}, {0x0, 0xfc, 0x7}]}) vmsplice(r2, &(0x7f00000004c0)=[{&(0x7f00000003c0)="d12a8f424e041acd02e1434e1457324dcb2ea2c9aac2c3c0a0070ae55d0922592c710019ee67a8e46ed9fa80653c4fd21df5f5a9b70f533b9d1bcdef47ba6ff15fde794cc11ed531b588fc80f368a8d46fbaecc0746f73078e629872211a091270583f0698a34405d18239f68d00c08d50606166b33fe28e6021a6c216b26bd79a80da036db896477f773812d0a56375350ce8d25f7899386bfb89c5f6bd18df7fe04cab8f04c286c4db74271fb3aec68664e65ab0299c31d541a055484844bc8a5d96f826bc284b6c29345a9cf1db712e2a273dd86c", 0xd6}], 0x1, 0x3) ioctl$SIOCGSTAMP(r1, 0x8906, &(0x7f0000000500)) sendmsg$AUDIT_SET_FEATURE(r1, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x20, 0x3fa, 0x200, 0x70bd2d, 0x25dfdbff, {0x1, 0x0, 0x0, 0x1}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x8001}, 0x4020000) r3 = signalfd4(r0, &(0x7f0000000640)={[0x9]}, 0x8, 0x80800) ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000000680)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000700)={0x8, &(0x7f00000006c0)=[{0x7f, 0x0, 0x6, 0xaa}, {0x385, 0x0, 0x8, 0x3}, {0x4, 0x7, 0x1, 0x1}, {0x9, 0x3, 0x20, 0x7}, {0x0, 0x8, 0x1, 0xfffffff9}, {0x2, 0x1, 0x1, 0x175}, {0x9, 0x81, 0x4, 0xffffffff}, {0x4, 0x2, 0xfb, 0x9}]}) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000740), 0x181101, 0x0) flock(r4, 0xb) 06:23:49 executing program 4: modify_ldt$read(0x0, &(0x7f0000000000)=""/247, 0xf7) modify_ldt$read(0x0, &(0x7f0000000100)=""/164, 0xa4) modify_ldt$read(0x0, &(0x7f00000001c0)=""/166, 0xa6) modify_ldt$read(0x0, &(0x7f0000000280)=""/184, 0xb8) modify_ldt$read(0x0, &(0x7f0000000340)=""/30, 0x1e) modify_ldt$read(0x0, &(0x7f0000000380)=""/208, 0xd0) modify_ldt$read(0x0, &(0x7f0000000480)=""/13, 0xd) modify_ldt$read(0x0, &(0x7f00000004c0)=""/4096, 0x1000) modify_ldt$read(0x0, &(0x7f00000014c0)=""/216, 0xd8) modify_ldt$read(0x0, &(0x7f00000015c0)=""/124, 0x7c) modify_ldt$read(0x0, &(0x7f0000001640)=""/10, 0xa) modify_ldt$read(0x0, &(0x7f0000001680)=""/246, 0xf6) modify_ldt$read(0x0, &(0x7f0000001780)=""/4096, 0x1000) modify_ldt$read(0x0, &(0x7f0000002780)=""/255, 0xff) modify_ldt$read(0x0, &(0x7f0000002880)=""/75, 0x4b) modify_ldt$read(0x0, &(0x7f0000002900)=""/255, 0xff) modify_ldt$read(0x0, &(0x7f0000002a00)=""/132, 0x84) modify_ldt$read(0x0, &(0x7f0000002ac0)=""/95, 0x5f) modify_ldt$read(0x0, &(0x7f0000002b40)=""/102, 0x66) modify_ldt$read(0x0, &(0x7f0000002bc0)=""/235, 0xeb) 06:23:49 executing program 7: r0 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x58, r0, 0x2, 0x70bd2a, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @empty}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x18}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private2}]}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x0) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, 0x0, 0x400, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}]}, 0x2c}}, 0x4000000) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000a80)={&(0x7f0000000300)={0x74c, r1, 0x300, 0x70bd28, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x6003}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_FRAME={0x704, 0x33, @data_frame={@qos_no_ht={{@type00={{0x0, 0x2, 0xe}, {0x1d6a}, @device_a, @device_a, @initial, {0x4, 0x58}}, {0x8, 0x1, 0x2, 0x0, 0x32}}, {@type10={{0x0, 0x2, 0xa, 0x1, 0x0, 0x1, 0x1, 0x1}, {0x8}, @from_mac=@device_b, @device_b, @from_mac=@device_b, {0x9, 0x6}}, {0xb, 0x0, 0x1, 0x1, 0xb9}}}, @random="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"}}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x1b}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0xf7}, @NL80211_ATTR_MAC={0xa}]}, 0x74c}, 0x1, 0x0, 0x0, 0x40014}, 0x4) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_ACCEPT(r2, &(0x7f0000000c00)={&(0x7f0000000b00), 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x54, r0, 0x10, 0x70bd29, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private0}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, 0x54}, 0x1, 0x0, 0x0, 0x4800}, 0x4004010) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_ADDDEF(r3, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x8040000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x48, 0x0, 0x20, 0x70bd29, 0x25dfdbfc, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @ipv4={'\x00', '\xff\xff', @loopback}}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2c}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @local}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x1f}]}, 0x48}, 0x1, 0x0, 0x0, 0x40080}, 0x800) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000dc0), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x1002000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x20, r4, 0x2, 0x70bd26, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8000, 0x31}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4040004}, 0x20000015) r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000f00), r3) sendmsg$NLBL_UNLABEL_C_STATICADD(r3, &(0x7f0000001000)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x80401002}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f40)={0x70, r5, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @private=0xa010101}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_SECCTX={0x25, 0x7, 'system_u:object_r:ping_exec_t:s0\x00'}]}, 0x70}, 0x1, 0x0, 0x0, 0x44048000}, 0x4000) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f00000011c0)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001180)={&(0x7f0000001080)={0xc8, r1, 0x200, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_4ADDR={0x5}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "227b45ffda0ea2eee424b04b2ab8a010b1858eefc929e0d9"}, @NL80211_ATTR_MNTR_FLAGS={0x1c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "c4831eac7617db2c87eed9b68694b39c730a53f690ea5a53"}, @NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}]]}, 0xc8}, 0x1, 0x0, 0x0, 0x800}, 0x2000c004) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001240), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000001340)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001300)={&(0x7f0000001280)={0x70, r6, 0x4, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0x38}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x70}, 0x1, 0x0, 0x0, 0x4008814}, 0x4) r7 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendmsg$NFT_BATCH(r7, &(0x7f00000015c0)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001580)={&(0x7f00000013c0)={{0x14}, [@NFT_MSG_NEWRULE={0xa0, 0x6, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x54, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x73}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x5e}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x88f5}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x73}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELCHAIN={0xc0, 0x5, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}, @NFTA_CHAIN_COUNTERS={0x64, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x7fff}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x1f}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x5ee}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x2}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xfffffffffffffffc}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x2}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xb5c}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x9}]}, @NFTA_CHAIN_COUNTERS={0x34, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xb4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xd3f9}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x8}]}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}]}], {0x14}}, 0x188}, 0x1, 0x0, 0x0, 0x4040000}, 0x80) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000001740)={&(0x7f0000001640)={0x10, 0x0, 0x0, 0x20440000}, 0xc, &(0x7f0000001700)={&(0x7f0000001680)={0x70, r6, 0x114, 0x70bd2c, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_AUTO_OPEN_PLINKS={0x5, 0x7, 0x44}, @NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL={0x6, 0xc, 0x401}, @NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT={0x8, 0x17, 0x5}]}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_POWER_MODE={0x8, 0x1a, 0x2}, @NL80211_MESHCONF_RETRY_TIMEOUT={0x6, 0x1, 0xdc}, @NL80211_MESHCONF_FORWARDING={0x5}]}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0xff}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x80000000}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x6}]}, 0x70}, 0x1, 0x0, 0x0, 0x4001}, 0x8000) 06:23:49 executing program 5: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x226800, 0x0) ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000300)={{'\x00', 0x3}, {0xc9e}, 0x100, 0x0, 0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)="df90f5146c93", 0x6, 0x0, &(0x7f0000000100)={0x2, 0xf8, {0x0, 0xc, 0x5d, "9321d7a0d5e2c0393d7257d82a00ebf4692552cc2934df56aca3bff40663e0f992680902e131e77ad9d371d3cc7c4a844cb070b8195234c6fbb5385721e858c89fcdabe16c9b6c08bc9bb562b3627c5a9d51287f2e9e81cf443ab2101b", 0x8e, "35e27fa71bc3b4493b6e40edb66faf91c312c40cb0870cfdb5adfe023c29e56e2710cca9d6fe3e7f66af0de5cd97241a8dc85c08e81cbc312581a7b9c10a98136d6e8d72b255c56a94aebdfb7a740eeecf3c67282b4c3b0540666b050b7d413f06c13df4daa615f088d8844accf901641fd12614be92f88da63db9bf7b6d9ba1166dd2f361ba78a182c9d6e37812"}, 0xe6, "b145d64023d3cd50b7cbccacc8b4754005117f6f069ddbe342338434abbd1278fdf3cdd3232ec9b1d2e7068bba62deba921c8514c32643974c4ede480f861346450e8f96ce7d83d28c56e131f99a88bb868e83d3fbc9d555cd8cc0ba2ff0dbb77048e9a74224faef4d3c0549c6dc6463124f5fdf8886fb62f95fb7e9cdb00c80ef3a3cef7243f12f9922f7ec6d9e261d75b0c5de3e90d8dcd8d4c6b7c9ad2d5b17355255d847135d02c701e16baf04ea1187a0e65ed2142e079da6239d7dd7466bf6f9ff6113c94b92fe567737800b3987248e795632046caecec9859c9cd13bf9265ceb4f59"}, 0x1ea}) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000380)={{0x1, 0x1, 0x18, r0, {0xb74}}, './file0\x00'}) r2 = creat(&(0x7f00000003c0)='./file0\x00', 0xa) ioctl$PTP_EXTTS_REQUEST2(r2, 0x40103d0b, &(0x7f0000000400)={0x8, 0x2}) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000440)=0x7) sendmsg$nl_xfrm(r1, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)=@flushsa={0x1c, 0x1c, 0x400, 0x70bd29, 0x25dfdbfb, {0x6c}, [@extra_flags={0x8, 0x18, 0xfff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4801}, 0x80) pipe(&(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r4, &(0x7f0000000700)={&(0x7f00000005c0)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes128\x00'}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000640)="bd65510f9d1eabef30", 0x9}, {&(0x7f0000000680)="57443ed0a32b6c086d94cbb9e9e8ab6a26217e", 0x13}], 0x2, 0xfffffffffffffffc}, 0x4008000) recvmmsg(r1, &(0x7f0000006e00)=[{{&(0x7f0000000740)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000001b00)=[{&(0x7f00000007c0)=""/176, 0xb0}, {&(0x7f0000000880)=""/4096, 0x1000}, {&(0x7f0000001880)=""/114, 0x72}, {&(0x7f0000001900)=""/182, 0xb6}, {&(0x7f00000019c0)=""/11, 0xb}, {&(0x7f0000001a00)=""/234, 0xea}], 0x6}, 0x37}, {{&(0x7f0000001b80)=@in, 0x80, &(0x7f0000003e80)=[{&(0x7f0000001c00)=""/75, 0x4b}, {&(0x7f0000001c80)=""/4096, 0x1000}, {&(0x7f0000002c80)=""/185, 0xb9}, {&(0x7f0000002d40)=""/4096, 0x1000}, {&(0x7f0000003d40)=""/130, 0x82}, {&(0x7f0000003e00)=""/75, 0x4b}], 0x6}, 0x3}, {{&(0x7f0000003f00)=@alg, 0x80, &(0x7f0000004300)=[{&(0x7f0000003f80)=""/227, 0xe3}, {&(0x7f0000004080)=""/239, 0xef}, {&(0x7f0000004180)=""/123, 0x7b}, {&(0x7f0000004200)=""/223, 0xdf}], 0x4}, 0x2}, {{&(0x7f0000004340)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000005600)=[{&(0x7f00000043c0)=""/4096, 0x1000}, {&(0x7f00000053c0)=""/150, 0x96}, {&(0x7f0000005480)=""/112, 0x70}, {&(0x7f0000005500)=""/237, 0xed}], 0x4, &(0x7f0000005640)=""/40, 0x28}, 0x40}, {{0x0, 0x0, &(0x7f0000006680)=[{&(0x7f0000005680)=""/4096, 0x1000}], 0x1, &(0x7f00000066c0)=""/143, 0x8f}, 0x3}, {{0x0, 0x0, &(0x7f0000006c80)=[{&(0x7f0000006780)=""/175, 0xaf}, {&(0x7f0000006840)=""/1, 0x1}, {&(0x7f0000006880)=""/60, 0x3c}, {&(0x7f00000068c0)=""/2, 0x2}, {&(0x7f0000006900)=""/202, 0xca}, {&(0x7f0000006a00)=""/86, 0x56}, {&(0x7f0000006a80)=""/254, 0xfe}, {&(0x7f0000006b80)=""/204, 0xcc}], 0x8, &(0x7f0000006d00)=""/253, 0xfd}}], 0x6, 0x60, 0x0) r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000006f80), 0x109000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000007000)={'macvtap0\x00', 0x0}) sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000007140)={&(0x7f0000006fc0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000007100)={&(0x7f0000007040)={0x8c, 0x0, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000014}, 0x440c0) recvmmsg(r4, &(0x7f0000008680)=[{{&(0x7f0000007180)=@l2tp6, 0x80, &(0x7f0000007300)=[{&(0x7f0000007200)=""/249, 0xf9}], 0x1, &(0x7f0000007340)=""/20, 0x14}, 0x8d0}, {{&(0x7f0000007380)=@qipcrtr, 0x80, &(0x7f0000008640)=[{&(0x7f0000007400)=""/136, 0x88}, {&(0x7f00000074c0)=""/4096, 0x1000}, {&(0x7f00000084c0)=""/139, 0x8b}, {&(0x7f0000008580)=""/133, 0x85}], 0x4}, 0x8}], 0x2, 0x10000, &(0x7f0000008700)={0x77359400}) r7 = accept4(r2, 0x0, &(0x7f0000008740), 0x800) sendmsg$IPSET_CMD_GET_BYNAME(r7, &(0x7f0000008880)={&(0x7f0000008780)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000008840)={&(0x7f00000087c0)={0x5c, 0xe, 0x6, 0x0, 0x0, 0x0, {0x3, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x5c}}, 0x80c0) vmsplice(r1, &(0x7f00000089c0)=[{&(0x7f00000088c0)="764f144af50d616eea60d51a4df7529a528ca3aab485214e63bb7d794393b96fada08f2100957718969bfd3d4cb8d3d9070fd2de1d2e190478d36bbf5edfd216081a9d914adc8d1cce4c3ced8f77357976e042d4bb3a03c3c1e340f46bfe4a5ecf42ebf1cb8b759b0675f8644cb1d21a0c5fb06684c1764f4f1f9dadc7aa4f9d86c3840bd112b58173e7bc6392297ef14d12563681e056e16ced329a956eb3e71b0e0ca4554a6293ee652e3ee29998e99293af84c778eb2f1d23dea1d579cb9701b0e6bdf3baa64bb2269774a01826cbeffe408c7dbe732edbadef2d506ea58aa55fe2bb71b923d5fd0478cff8a4d20584ebdc519ce344863d50610401283f", 0xff}], 0x1, 0x1) getsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000008a00)={{{@in6, @in6=@private0}}, {{@in=@dev}, 0x0, @in6=@private1}}, &(0x7f0000008b00)=0xe8) fcntl$setstatus(r3, 0x4, 0x40800) bind$packet(0xffffffffffffffff, &(0x7f0000008b80)={0x11, 0x1c, 0x0, 0x1, 0x45, 0x6, @random="50f19c890030"}, 0x14) [ 85.678579] audit: type=1400 audit(1756707829.567:7): avc: denied { execmem } for pid=273 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 06:23:49 executing program 6: fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, 0x0}) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000040)={0x0, r0}) sendmsg$TIPC_NL_NET_GET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f00000000c0)={0x1e0, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffffe}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x81}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x800}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x400000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x461c}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}]}]}, @TIPC_NLA_NODE={0x180, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "3b78a5d309ea5c4137ab9f8980249c1c79d08edc"}}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "deb0964848b14a66d90a7a25f546cf747229243014de"}}, @TIPC_NLA_NODE_ID={0xb1, 0x3, "6247d37c0f6295170b24632e12c21f418d7b6102e1681c8d96e34269288d1d9a793b6d27f8c732b0d2902b6bb8b28acfc3199f33d0e09ff2ced126b0c16310842d17dd951a39e425c7764adde49336039c630fc0f914400aaf7b46367982b68915eeaf58deb3d9a552452b47b2b76074a009864c928e104b2a6b0eae60502be2a8ae281a3c20cb20598c4ae9d1e338e0912d313972269f6e5c9f3635855fe2e67cc9eedfc161781d7a13516681"}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "92f58cda920edbce9bfeab0f4ad9dc1e93770ee9579c61742b59f8e7"}}]}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x4000}, 0x90) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) fsetxattr$security_evm(r1, &(0x7f0000000340), &(0x7f0000000380)=@ng={0x4, 0x10, "97785e4f80eec339cedce1fa1923e62e"}, 0x12, 0x1) getpeername(r1, &(0x7f00000003c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000440)=0x80) ioctl$int_in(r1, 0x5452, &(0x7f0000000480)=0xbb4) perf_event_open(&(0x7f0000000500)={0x5, 0x80, 0x6, 0x7b, 0x8, 0x24, 0x0, 0x1, 0x10000, 0xd, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f00000004c0), 0x8}, 0x4000, 0x5, 0x8acb, 0x4, 0x4, 0x5, 0x2, 0x0, 0x100, 0x0, 0x1000}, r0, 0x1, r1, 0x3) r2 = syz_mount_image$tmpfs(&(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', 0x434, 0x3, &(0x7f0000000840)=[{&(0x7f0000000600)="a964abc87400ba4b586f3cfc1ad6cc6d4a3a79fa60690eddf3c1ff4d6a0093d24290912bc80a8d507d4e1b92ca766236f6e9c470784407ab65d5b34b633f1313a2aa036246bbe16a890f19f45667dc2e9e09aff0ee8054e33eeca965957ac7d0f92183944187c36bada7c04db468e33960b38d3abbd4b6100024281cc5b64c9d2a0fd6d6119e758fcbc6527ca5cb0bd0a1054d19b5d026e01ea56eff127190c400cce1553183e9187879a0b849bdee53c6b0184d944af5bf0c4f1f7194448c6b5e7409", 0xc3, 0xcd78}, {&(0x7f0000000700)="e7a680717e8add4e7eeb3873a092fa0ca8a176e36557bae7a4e3c2bf1ac09d5e802b6e29ac7b318f4f34fb6877cdb3cc03b01aad87dfcbed7060ce8ba0cbdff0814c07eb9f7548fd119d7ab18d5009e76ec73522274976d544cf4575266b7c34f49f7eb6d5cfe901a4a5faa1c74665f81dd329edc874580ef338eaedc37a09e036c05ef77efa964581c2953aff84b31651c77cb6c169d6b138f5186bfc1dae7deb7429445960f05892ebe7d0159879b5d96d1aeaaf095386792a4b2e0d53de71d7cac41d7e4c11a230f2b33442274bf89c7981e6e38494bcf07e137651902b80f686ee9c2697b82d15dd37c991909a56244f3689", 0xf4, 0x40}, {&(0x7f0000000800)="e8945583c473c2dea2534b21fadb7e11652088c0667a5fdbdc8d79148de0da369133fbd2a6a6ea1acf1dec", 0x2b, 0xfffffffffffffeff}], 0x8, &(0x7f00000008c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x78, 0x38]}}, {@gid={'gid', 0x3d, 0xee01}}, {@uid={'uid', 0x3d, 0xee01}}], [{@euid_eq}, {@mask={'mask', 0x3d, 'MAY_READ'}}]}) utimensat(r2, &(0x7f0000000940)='./file0\x00', &(0x7f0000000980)={{0x0, 0x2710}, {0x0, 0xea60}}, 0x0) listxattr(&(0x7f00000009c0)='./file0\x00', &(0x7f0000000a00)=""/46, 0x2e) r3 = fsmount(r1, 0x0, 0x81) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000a80), r1) sendmsg$TIPC_NL_PEER_REMOVE(r3, &(0x7f0000000dc0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000ac0)={0x298, r4, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xce5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x200}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7ff}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x401}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}]}, @TIPC_NLA_SOCK={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x36a5}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x401}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0x84, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfc000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6f}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_LINK={0x114, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x76f}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff8}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8}]}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc0000000}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000000}, @TIPC_NLA_CON_FLAG={0x8}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xfb}]}]}, 0x298}, 0x1, 0x0, 0x0, 0x40}, 0x8d5) r5 = mq_open(&(0x7f0000000e00)='-\x00', 0x40, 0x0, &(0x7f0000000e40)={0x5, 0x3, 0x8, 0x3}) r6 = open_tree(r3, &(0x7f0000000ec0)='./file0\x00', 0x40000) splice(r5, &(0x7f0000000e80)=0x1, r6, &(0x7f0000000f00)=0xab3, 0xff, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r3, 0xf501, 0x0) r7 = socket$netlink(0x10, 0x3, 0x24) sendmsg$NL80211_CMD_ADD_TX_TS(r7, &(0x7f0000001040)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x64, 0x0, 0x1, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0xb}}}}, [@NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x7}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x5}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x3}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x64}, 0x1, 0x0, 0x0, 0x14000000}, 0x800) [ 86.796841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 86.800772] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 86.804124] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.810937] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.815621] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.925648] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.942021] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.943598] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.943987] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.953833] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.954838] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.957360] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.966802] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.988495] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.998909] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 87.003712] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.005939] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.006095] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 87.009710] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 87.011461] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.015045] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 87.020061] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.021884] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 87.023730] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 87.025627] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 87.027914] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.031049] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 87.038798] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 87.058200] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 87.062951] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 87.067137] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 87.069248] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 87.071655] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 87.074687] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 87.081549] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 87.088965] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 87.091263] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 87.113696] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 87.138916] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 87.144218] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 88.889921] Bluetooth: hci0: command tx timeout [ 89.018744] Bluetooth: hci1: command tx timeout [ 89.145560] Bluetooth: hci4: command tx timeout [ 89.145654] Bluetooth: hci5: command tx timeout [ 89.146230] Bluetooth: hci2: command tx timeout [ 89.147331] Bluetooth: hci3: command tx timeout [ 89.209545] Bluetooth: hci6: command tx timeout [ 89.209841] Bluetooth: hci7: command tx timeout [ 90.937558] Bluetooth: hci0: command tx timeout [ 91.066547] Bluetooth: hci1: command tx timeout [ 91.193496] Bluetooth: hci3: command tx timeout [ 91.193589] Bluetooth: hci5: command tx timeout [ 91.194025] Bluetooth: hci4: command tx timeout [ 91.194503] Bluetooth: hci2: command tx timeout [ 91.257469] Bluetooth: hci6: command tx timeout [ 91.257588] Bluetooth: hci7: command tx timeout [ 92.986435] Bluetooth: hci0: command tx timeout [ 93.113442] Bluetooth: hci1: command tx timeout [ 93.241533] Bluetooth: hci2: command tx timeout [ 93.241978] Bluetooth: hci3: command tx timeout [ 93.242853] Bluetooth: hci4: command tx timeout [ 93.243243] Bluetooth: hci5: command tx timeout [ 93.305458] Bluetooth: hci7: command tx timeout [ 93.305873] Bluetooth: hci6: command tx timeout [ 95.034490] Bluetooth: hci0: command tx timeout [ 95.161467] Bluetooth: hci1: command tx timeout [ 95.289573] Bluetooth: hci3: command tx timeout [ 95.289988] Bluetooth: hci5: command tx timeout [ 95.291007] Bluetooth: hci4: command tx timeout [ 95.291426] Bluetooth: hci2: command tx timeout [ 95.353450] Bluetooth: hci7: command tx timeout [ 95.353849] Bluetooth: hci6: command tx timeout [ 123.987498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.988175] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.146776] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.147888] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.566270] loop0: detected capacity change from 0 to 2 [ 124.593007] loop0: detected capacity change from 0 to 2 [ 124.624242] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.625417] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.728159] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.728820] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.790698] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.791310] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.930678] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.931294] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.476941] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.477631] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.554934] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.555562] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.675624] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.676245] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.814406] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.815028] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.002211] loop6: detected capacity change from 0 to 16382 [ 126.003979] tmpfs: Bad value for 'nr_inodes' [ 126.072226] loop6: detected capacity change from 0 to 16382 [ 126.073209] tmpfs: Bad value for 'nr_inodes' [ 126.284531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.285167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.339706] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.340318] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.657635] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.658247] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.694053] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.694662] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.799743] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 126.942641] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.943237] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.964726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.965342] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 06:24:42 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4442, 0x0) writev(r0, &(0x7f0000001640)=[{&(0x7f0000000080)="b9", 0x1}, {0x0}, {&(0x7f0000001580)}], 0x3) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x44840, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x1e, &(0x7f0000000080), 0x4) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x119000, 0x0) fgetxattr(r4, &(0x7f0000000200)=@known='user.incfs.size\x00', &(0x7f0000000240)=""/169, 0xa9) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000180)={'wlan0\x00'}) ioctl$DVD_AUTH(r2, 0x5308, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x1, 0x1, 0x7, 0x9, 0x0, 0x20, 0x10080, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x401, 0x1, @perf_bp={&(0x7f0000000140), 0x6}, 0x8004, 0x3ff, 0x2, 0x1, 0x7, 0x9, 0x1f, 0x0, 0xfffffff9, 0x0, 0x200080000001}, r1, 0xa, r2, 0xd) 06:24:42 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x4e20, 0xfff, @local}}, 0x0, 0x0, 0x3e, 0x0, "80bee4f84f995bbe423fbc75283b5ab87b03af7ea6a830b4a12b23617f72326b5a137a4c8f14456bc860cdc35f04070b4a29ec4703dbb26f90c96c2e340fbfeea0da416d2e76594dc3498678504beb33"}, 0xd8) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x0, 0x0, 0x2, 0x1, 0x0, 0x7}, 0x20) r1 = socket$inet6(0xa, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000180)={'syztnl2\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x4, 0x9, 0x6, 0x0, 0x36, @remote, @mcast1, 0x0, 0x10, 0x1, 0x5}}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x1e, &(0x7f0000000080), 0x4) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000300)={{{@in6=@dev, @in=@private}}, {{@in6=@empty}, 0x0, @in=@multicast2}}, &(0x7f0000000040)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000001c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x31, r2}) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0xb8, 0x0, 0x1, 0x6, 0x2, 0x1ff}, 0x20) 06:24:42 executing program 3: r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x78, 0x0, 0xfe, 0x0, 0x0, 0x200, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x3, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x44840, 0x0) ioctl$DVD_AUTH(r2, 0x5308, 0x0) r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_PORT_GET(r2, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0xd4, r3, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}]}, 0xd4}, 0x1, 0x0, 0x0, 0x804}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1) sendmsg$NL80211_CMD_GET_SURVEY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000125bd7000000000000500000008000300", @ANYRES32=r4, @ANYBLOB="0c47774391ac890099001f0000006c000000"], 0x28}}, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000400)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) sendmsg$TIPC_CMD_SET_LINK_TOL(r6, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x68, 0x0, 0x1, 0x70bd2a, 0x25dfdbfe, {{}, {}, {0x4c, 0x18, {0x7f, @media='ib\x00'}}}, ["", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000800) 06:24:42 executing program 1: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x44840, 0x0) ioctl$DVD_AUTH(r0, 0x5308, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000080), 0x4) syz_mount_image$tmpfs(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0xc0ed0000, &(0x7f0000000000)=ANY=[]) 06:24:42 executing program 6: syz_emit_ethernet(0x3f, &(0x7f0000000040)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa0086dd6000000300093a00fe8000000000000000000000000000bbfe8000000000000000000000000000aa800090780000000053"], 0x0) 06:24:42 executing program 7: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0xa, &(0x7f0000000100)=[{0x0, 0x40, 0x60, 0x1}, {0x3c3f, 0x5, 0x9, 0x6}, {0x800, 0x6, 0x3, 0x4}, {0x9, 0x1, 0x56}, {0x1, 0x80, 0x40, 0x8}, {0x401, 0x6, 0xaf, 0x3}, {0x0, 0x81, 0xff, 0x5d56}, {0xfff, 0x3f, 0x7f, 0x23}, {0x7, 0x0, 0x1f, 0x3}, {0x400, 0x3f, 0x27, 0x1ff}]}) openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x42, 0x0) fchmodat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0) 06:24:42 executing program 5: prlimit64(0x0, 0x6, &(0x7f00000000c0)={0x9}, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xb, 0x0, &(0x7f00000001c0)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r1) syz_io_uring_setup(0x354a, &(0x7f0000000100)={0x0, 0x0, 0x20, 0x3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000080), &(0x7f0000000200)) [ 138.887495] audit: type=1400 audit(1756707882.772:8): avc: denied { open } for pid=3914 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 138.892452] audit: type=1400 audit(1756707882.773:9): avc: denied { kernel } for pid=3914 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 138.938726] tmpfs: Unknown parameter 'nl80211' 06:24:42 executing program 6: perf_event_open(&(0x7f0000000600)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x44840, 0x0) ioctl$DVD_AUTH(r0, 0x5308, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, r0, 0x3) fork() [ 138.979115] tmpfs: Unknown parameter 'nl80211' 06:24:42 executing program 0: ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=0x0) ptrace$setregset(0x4205, r0, 0x4, &(0x7f0000000140)={&(0x7f00000000c0)="384f91de899c149558460a97010ffad87af0db729bbe570c278510f62cee66ba5e76820e086b2b224f88ad81cb2cc090f19a7a32a801be147e5f153e152f0df1defb5ec98ecc839fefff02468ff8288ef71247f1510f7a4b734850e2d8bc8f0c15150e046bf909cded3994650be6c37c6b6c16708fbeb5a246f9c6c3b4", 0x7d}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000080), 0x4) r2 = fork() getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f000000b700)={{{@in6=@dev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private1}, 0x0, @in6=@mcast1}}, &(0x7f0000004480)=0xe8) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f000000b840), 0x20000, 0x0) r5 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r6, 0x6, 0x1e, &(0x7f0000000080), 0x4) r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f000000b880), 0x111000, 0x0) r8 = syz_open_dev$sg(&(0x7f000000b8c0), 0x0, 0x200) [ 139.113375] Oops: general protection fault, probably for non-canonical address 0xf6fffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 139.114336] KASAN: maybe wild-memory-access in range [0xb800000000000190-0xb800000000000197] [ 139.115131] CPU: 0 UID: 0 PID: 3945 Comm: syz-executor.5 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 139.119908] Tainted: [W]=WARN [ 139.120725] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 139.123111] RIP: 0010:perf_tp_event+0x175/0xe70 [ 139.123861] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 139.125423] RSP: 0018:ffff88801b7e7800 EFLAGS: 00010212 [ 139.125851] RAX: 1700000000000032 RBX: b7ffffffffffffa0 RCX: ffffc900070c2000 [ 139.126420] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: b800000000000190 [ 139.127250] RBP: ffff88801b7e7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16ab8 [ 139.127853] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 139.128445] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 139.129046] FS: 00007f4c481f1700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 139.129721] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 139.130210] CR2: 00007fd7cbca8f64 CR3: 000000001fca5000 CR4: 0000000000350ef0 [ 139.130809] Call Trace: [ 139.131031] [ 139.131220] ? perf_swevent_event+0x63/0x3f0 [ 139.131601] ? __pfx_perf_tp_event+0x10/0x10 [ 139.131981] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 139.132405] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 139.132837] ? perf_swevent_event+0x63/0x3f0 [ 139.133209] ? perf_tp_event+0x807/0xe70 [ 139.133559] ? __lock_acquire+0xc65/0x1b70 [ 139.133927] ? __pfx_perf_tp_event+0x10/0x10 [ 139.134310] ? lock_acquire+0x15e/0x2f0 [ 139.134650] ? find_held_lock+0x2b/0x80 [ 139.134995] ? perf_trace_run_bpf_submit+0xef/0x180 [ 139.135418] perf_trace_run_bpf_submit+0xef/0x180 [ 139.135836] perf_trace_lock+0x337/0x5d0 [ 139.136178] ? __pfx_perf_trace_lock+0x10/0x10 [ 139.136578] ? lock_acquire+0x15e/0x2f0 [ 139.136918] ? futex_ref_get+0x48/0x300 [ 139.137258] ? futex_ref_get+0x114/0x300 [ 139.137604] ? futex_hash+0x15c/0x390 [ 139.137925] lock_release+0x1ab/0x290 [ 139.138246] ? futex_hash+0x15c/0x390 [ 139.138572] futex_ref_get+0x119/0x300 [ 139.138905] ? futex_hash+0x15c/0x390 [ 139.139225] futex_hash+0x70/0x390 [ 139.139533] futex_wake+0x143/0x540 [ 139.139849] ? __pfx_perf_trace_lock+0x10/0x10 [ 139.140236] ? __pfx_futex_wake+0x10/0x10 [ 139.140595] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 139.141037] ? lock_release+0xc8/0x290 [ 139.141371] do_futex+0x26d/0x370 [ 139.141675] ? __pfx_do_futex+0x10/0x10 [ 139.142011] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 139.142459] ? find_held_lock+0x2b/0x80 [ 139.142806] __x64_sys_futex+0x1c9/0x4d0 [ 139.143152] ? __pfx___x64_sys_futex+0x10/0x10 [ 139.143539] ? xfd_validate_state+0x55/0x180 [ 139.143923] do_syscall_64+0xbf/0x360 [ 139.144243] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.144687] RIP: 0033:0x7f4c4ac7bb19 [ 139.145007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 139.146519] RSP: 002b:00007f4c481f1218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 139.147150] RAX: ffffffffffffffda RBX: 00007f4c4ad8ef68 RCX: 00007f4c4ac7bb19 [ 139.147753] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4c4ad8ef6c [ 139.148348] RBP: 00007f4c4ad8ef60 R08: 000000000000000e R09: 0000000000000000 [ 139.148958] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f4c4ad8ef6c [ 139.149559] R13: 00007ffd16ba264f R14: 00007f4c481f1300 R15: 0000000000022000 [ 139.150153] [ 139.150351] Modules linked in: [ 139.150658] Oops: general protection fault, probably for non-canonical address 0xf6fffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 139.151572] KASAN: maybe wild-memory-access in range [0xb800000000000190-0xb800000000000197] [ 139.152263] CPU: 0 UID: 0 PID: 3945 Comm: syz-executor.5 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 139.153251] Tainted: [D]=DIE, [W]=WARN [ 139.153556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 139.154240] RIP: 0010:perf_tp_event+0x175/0xe70 [ 139.154638] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 139.156129] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 139.156573] RAX: 1700000000000032 RBX: b7ffffffffffffa0 RCX: ffffffff81898973 [ 139.157165] RDX: ffff888047108000 RSI: ffffffff818995b7 RDI: b800000000000190 [ 139.157759] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc16ab8 [ 139.158340] R10: 0000000000000000 R11: ffff88801f5c0098 R12: dffffc0000000000 [ 139.158929] R13: 0000000000000000 R14: ffff88806ce31490 R15: dffffc0000000000 [ 139.159513] FS: 00007f4c481f1700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 139.160178] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 139.160664] CR2: 00007fd7cbca8f64 CR3: 000000001fca5000 CR4: 0000000000350ef0 [ 139.161252] Call Trace: [ 139.161472] [ 139.161664] ? __pfx_perf_tp_event+0x10/0x10 [ 139.162042] ? sched_clock_cpu+0x6c/0x4e0 [ 139.162401] ? lock_is_held_type+0x9e/0x120 [ 139.162775] ? lock_is_held_type+0x9e/0x120 [ 139.163141] ? perf_trace_lock+0xb5/0x5d0 [ 139.163491] ? perf_trace_lock+0xb5/0x5d0 [ 139.163845] ? __pfx_perf_trace_lock+0x10/0x10 [ 139.164222] ? kvm_sched_clock_read+0x16/0x30 [ 139.164604] ? sched_clock+0x37/0x60 [ 139.164943] ? sched_clock_cpu+0x6c/0x4e0 [ 139.165291] ? perf_trace_run_bpf_submit+0xef/0x180 [ 139.165715] perf_trace_run_bpf_submit+0xef/0x180 [ 139.166126] perf_trace_lock+0x337/0x5d0 [ 139.166467] ? place_entity+0x300/0x410 [ 139.166807] ? kvm_sched_clock_read+0x16/0x30 [ 139.167185] ? __pfx_perf_trace_lock+0x10/0x10 [ 139.167572] ? check_preempt_wakeup_fair+0x6e/0x950 [ 139.167995] ? sched_ttwu_pending+0x2e0/0x4a0 [ 139.168375] lock_release+0x1ab/0x290 [ 139.168697] ? ttwu_do_activate+0x1a4/0x8a0 [ 139.169071] _raw_spin_unlock+0x16/0x40 [ 139.169410] sched_ttwu_pending+0x2e0/0x4a0 [ 139.169784] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 139.170199] ? hrtimer_interrupt+0x652/0x830 [ 139.170580] __flush_smp_call_function_queue+0x434/0x740 [ 139.171045] __sysvec_call_function_single+0x6d/0x370 [ 139.171486] sysvec_call_function_single+0xa1/0xc0 [ 139.171903] [ 139.172091] [ 139.172285] asm_sysvec_call_function_single+0x1a/0x20 [ 139.172726] RIP: 0010:oops_exit+0x0/0x50 [ 139.173081] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27 [ 139.174585] RSP: 0018:ffff88801b7e7690 EFLAGS: 00000202 [ 139.175030] RAX: 000000000002c8b9 RBX: 0000000000000212 RCX: ffffc900070c2000 [ 139.175612] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 139.176195] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90 [ 139.176792] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801b7e7758 [ 139.177385] R13: 0000000000000000 R14: f6fffc0000000032 R15: 0000000000000000 [ 139.177990] ? oops_end+0x4a/0xe0 [ 139.178297] oops_end+0x65/0xe0 [ 139.178585] exc_general_protection+0x1a2/0x330 [ 139.178983] asm_exc_general_protection+0x26/0x30 [ 139.179379] RIP: 0010:perf_tp_event+0x175/0xe70 [ 139.179776] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 139.181290] RSP: 0018:ffff88801b7e7800 EFLAGS: 00010212 [ 139.181734] RAX: 1700000000000032 RBX: b7ffffffffffffa0 RCX: ffffc900070c2000 [ 139.182322] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: b800000000000190 [ 139.182914] RBP: ffff88801b7e7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16ab8 [ 139.183505] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 139.184096] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 139.184691] ? perf_tp_event+0x167/0xe70 [ 139.185045] ? perf_swevent_event+0x63/0x3f0 [ 139.185431] ? __pfx_perf_tp_event+0x10/0x10 [ 139.185808] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 139.186231] ? tracing_gen_ctx_irq_test+0x167/0x1f0 [ 139.186652] ? perf_swevent_event+0x63/0x3f0 [ 139.187031] ? perf_tp_event+0x807/0xe70 [ 139.187373] ? __lock_acquire+0xc65/0x1b70 [ 139.187738] ? __pfx_perf_tp_event+0x10/0x10 [ 139.188115] ? lock_acquire+0x15e/0x2f0 [ 139.188448] ? find_held_lock+0x2b/0x80 [ 139.188801] ? perf_trace_run_bpf_submit+0xef/0x180 [ 139.189216] perf_trace_run_bpf_submit+0xef/0x180 [ 139.189639] perf_trace_lock+0x337/0x5d0 [ 139.189990] ? __pfx_perf_trace_lock+0x10/0x10 [ 139.190376] ? lock_acquire+0x15e/0x2f0 [ 139.190709] ? futex_ref_get+0x48/0x300 [ 139.191041] ? futex_ref_get+0x114/0x300 [ 139.191381] ? futex_hash+0x15c/0x390 [ 139.191704] lock_release+0x1ab/0x290 [ 139.192028] ? futex_hash+0x15c/0x390 [ 139.192343] futex_ref_get+0x119/0x300 [ 139.192671] ? futex_hash+0x15c/0x390 [ 139.192985] futex_hash+0x70/0x390 [ 139.193277] futex_wake+0x143/0x540 [ 139.193578] ? __pfx_perf_trace_lock+0x10/0x10 [ 139.193949] ? __pfx_futex_wake+0x10/0x10 [ 139.194286] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 139.194699] ? lock_release+0xc8/0x290 [ 139.195018] do_futex+0x26d/0x370 [ 139.195302] ? __pfx_do_futex+0x10/0x10 [ 139.195626] ? __pfx___do_sys_perf_event_open+0x10/0x10 [ 139.196053] ? find_held_lock+0x2b/0x80 [ 139.196388] __x64_sys_futex+0x1c9/0x4d0 [ 139.196732] ? __pfx___x64_sys_futex+0x10/0x10 [ 139.197123] ? xfd_validate_state+0x55/0x180 [ 139.197505] do_syscall_64+0xbf/0x360 [ 139.197825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.198253] RIP: 0033:0x7f4c4ac7bb19 [ 139.198575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 139.200065] RSP: 002b:00007f4c481f1218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 139.200693] RAX: ffffffffffffffda RBX: 00007f4c4ad8ef68 RCX: 00007f4c4ac7bb19 [ 139.201281] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4c4ad8ef6c [ 139.201878] RBP: 00007f4c4ad8ef60 R08: 000000000000000e R09: 0000000000000000 [ 139.202472] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f4c4ad8ef6c [ 139.203070] R13: 00007ffd16ba264f R14: 00007f4c481f1300 R15: 0000000000022000 [ 139.203663] [ 139.203858] Modules linked in: [ 139.204127] ---[ end trace 0000000000000000 ]--- [ 139.204521] RIP: 0010:perf_tp_event+0x175/0xe70 [ 139.204920] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 139.206431] RSP: 0018:ffff88801b7e7800 EFLAGS: 00010212 [ 139.206876] RAX: 1700000000000032 RBX: b7ffffffffffffa0 RCX: ffffc900070c2000 [ 139.207465] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: b800000000000190 [ 139.208054] RBP: ffff88801b7e7a70 R08: ffff88806ce31340 R09: ffffe8ffffc16ab8 [ 139.208645] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 139.209247] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 139.209845] FS: 00007f4c481f1700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 139.210511] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 139.210997] CR2: 00007fd7cbca8f64 CR3: 000000001fca5000 CR4: 0000000000350ef0 [ 139.211593] Kernel panic - not syncing: Fatal exception in interrupt [ 139.212381] Kernel Offset: disabled [ 139.212688] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 06:24:43 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88801b7e7160 R8 =0000000000000000 R9 =ffffed100134a046 R10=0000000000000020 R11=552030203a555043 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f4c481f1700 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe4400000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd7cbca8f64 CR3=000000001fca5000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f4c4ad627c000007f4c4ad627c8 XMM02=00007f4c4ad627e000007f4c4ad627c0 XMM03=00007f4c4ad627c800007f4c4ad627c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=0000000000000001 RCX=000000000000000d RDX=0000000000000000 RSI=ffffffff85c1c760 RDI=ffff888009753afc RBP=ffff888009753700 RSP=ffff888009776d30 R8 =ffffffff84c93ca0 R9 =0000000000000000 R10=000000000003be53 R11=0000000000000544 R12=0000000000000000 R13=ffff888009776e18 R14=ffff888009776e11 R15=ffff888009776dd0 RIP=ffffffff815bead0 RFL=00000217 [----APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe6a00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fad39434018 CR3=000000000ea7c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000