Warning: Permanently added '[localhost]:17876' (ECDSA) to the list of known hosts.
2025/09/01 08:23:10 fuzzer started
2025/09/01 08:23:11 dialing manager at localhost:35473
syzkaller login: [   59.109134] cgroup: Unknown subsys name 'net'
[   59.150581] cgroup: Unknown subsys name 'cpuset'
[   59.159863] cgroup: Unknown subsys name 'rlimit'
2025/09/01 08:23:21 syscalls: 2214
2025/09/01 08:23:21 code coverage: enabled
2025/09/01 08:23:21 comparison tracing: enabled
2025/09/01 08:23:21 extra coverage: enabled
2025/09/01 08:23:21 setuid sandbox: enabled
2025/09/01 08:23:21 namespace sandbox: enabled
2025/09/01 08:23:21 Android sandbox: enabled
2025/09/01 08:23:21 fault injection: enabled
2025/09/01 08:23:21 leak checking: enabled
2025/09/01 08:23:21 net packet injection: enabled
2025/09/01 08:23:21 net device setup: enabled
2025/09/01 08:23:21 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 08:23:21 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 08:23:21 USB emulation: enabled
2025/09/01 08:23:21 hci packet injection: enabled
2025/09/01 08:23:21 wifi device emulation: enabled
2025/09/01 08:23:21 802.15.4 emulation: enabled
2025/09/01 08:23:21 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 08:23:22 fetching corpus: 50, signal 22960/26042 (executing program)
2025/09/01 08:23:22 fetching corpus: 100, signal 35823/39638 (executing program)
2025/09/01 08:23:22 fetching corpus: 150, signal 46557/50835 (executing program)
2025/09/01 08:23:22 fetching corpus: 200, signal 53101/57848 (executing program)
2025/09/01 08:23:22 fetching corpus: 250, signal 56492/61773 (executing program)
2025/09/01 08:23:22 fetching corpus: 300, signal 64648/69616 (executing program)
2025/09/01 08:23:22 fetching corpus: 350, signal 67449/72641 (executing program)
2025/09/01 08:23:23 fetching corpus: 400, signal 70245/75616 (executing program)
2025/09/01 08:23:23 fetching corpus: 450, signal 72683/78108 (executing program)
2025/09/01 08:23:23 fetching corpus: 500, signal 77460/82337 (executing program)
2025/09/01 08:23:23 fetching corpus: 550, signal 79803/84533 (executing program)
2025/09/01 08:23:23 fetching corpus: 600, signal 81453/86166 (executing program)
2025/09/01 08:23:23 fetching corpus: 650, signal 84437/88663 (executing program)
2025/09/01 08:23:23 fetching corpus: 700, signal 86390/90323 (executing program)
2025/09/01 08:23:24 fetching corpus: 750, signal 89347/92570 (executing program)
2025/09/01 08:23:24 fetching corpus: 800, signal 92269/94659 (executing program)
2025/09/01 08:23:24 fetching corpus: 850, signal 93903/95862 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/96858 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/96940 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97002 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97092 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97166 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97243 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97308 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97396 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97485 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97574 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97651 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97731 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97821 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97895 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/97968 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98033 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98102 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98194 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98275 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98344 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98433 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98505 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98572 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98669 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98750 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98815 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98890 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/98980 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/99050 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/99127 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/99219 (executing program)
2025/09/01 08:23:24 fetching corpus: 899, signal 95270/99219 (executing program)
2025/09/01 08:23:27 starting 8 fuzzer processes
08:23:27 executing program 0:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x12, 0x0, 0x0)

08:23:27 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
write$bt_hci(r0, &(0x7f00000000c0)={0x2, @le_create_cis={{0x2064, 0x1}}}, 0x5)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
shutdown(r1, 0x0)

08:23:27 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa006}, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000280)={@local, @remote, @val={@void}, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x6, 0x0, @loopback, @dev}, @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}, 0x0)

08:23:27 executing program 2:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:23:27 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
ioprio_set$uid(0x0, 0x0, 0x2000)

08:23:27 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000dff4655fdff4655f0100ffff53ef010001000000def4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e33393232303833393500"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a5a61a17476642268b9f70cd9d05b303010000000c00000000000000def4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000d4000f000300040000000000000000000f00c7e0", 0x20, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000def4655fdef4655fdef4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000def4655fdff4655fdff4655f00000000000004000200000000000000050000001500"/64, 0x40, 0x1600}, {&(0x7f0000010f00)="20000000706b0911706b091100000000def4655f00"/32, 0x20, 0x1680}, {&(0x7f0000011000)="c0410000002c0000def4655fdef4655fdef4655f0000000000000200160000000000000000000000160000001700000018000000190000001a0000001b0000001c0000001d0000001e0000001f00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000def4655f000000000000000000000000000002ea00"/192, 0xc0, 0x2800}, {&(0x7f0000011100)="ed4100003c000000dff4655fdff4655fdff4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000003330002500000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2a00}, {&(0x7f0000011200)="ed8100001a040000dff4655fdff4655fdff4655f0000000000000100040000000000000001000000210000002200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000507d044100000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011300)="ffa1000026000000dff4655fdff4655fdff4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3339323230383339352f66696c65302f66696c6530000000000000000000000000000000000000000000005300b05d00000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xa0, 0x2e00}, {&(0x7f0000011400)="ed8100000a000000dff4655fdff4655fdff4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d02741e300000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3000}, {&(0x7f0000011500)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000dff4655fdff4655fdff4655f0000000000000200120000000000000001000000230000002400000025000000260000002700000028000000290000002a0000002b0000000000000000000000000000000000000000000000000000002fe9e02200000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xc0, 0x31e0}, {&(0x7f0000011600)="ed81000064000000dff4655fdff4655fdff4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cbaee901500000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x3400}, {&(0x7f0000011700)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x35c0}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x5400}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x5800}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x6400}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x6800}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x6c00}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x7000}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x7400}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x7800}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x7c00}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0x8000}, {&(0x7f0000012400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x8400}], 0x0, &(0x7f0000012900))

08:23:27 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)

08:23:27 executing program 6:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040))
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000008c0), 0x3e)

[   75.311611] audit: type=1400 audit(1756715007.363:7): avc:  denied  { execmem } for  pid=283 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   76.569608] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   76.573177] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   76.574962] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   76.580644] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   76.583652] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   76.639491] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   76.644155] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   76.653627] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   76.654997] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   76.662626] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   76.665071] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   76.668228] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   76.670964] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   76.698758] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   76.703882] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   76.715897] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   76.717441] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   76.726905] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   76.728186] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   76.740238] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   76.740758] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   76.741762] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   76.745500] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   76.748284] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   76.750654] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   76.755002] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   76.755109] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   76.758190] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   76.760860] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   76.764133] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   76.766569] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   76.773174] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   76.774502] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   76.775266] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   76.786825] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   76.789757] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   76.805989] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   76.807634] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   76.828624] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   76.835456] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   78.604018] Bluetooth: hci0: command tx timeout
[   78.731483] Bluetooth: hci1: command tx timeout
[   78.795545] Bluetooth: hci2: command tx timeout
[   78.796848] Bluetooth: hci3: command tx timeout
[   78.859470] Bluetooth: hci7: command tx timeout
[   78.860502] Bluetooth: hci5: command tx timeout
[   78.861238] Bluetooth: hci6: command tx timeout
[   78.862024] Bluetooth: hci4: command tx timeout
[   80.652034] Bluetooth: hci0: command tx timeout
[   80.779427] Bluetooth: hci1: command tx timeout
[   80.843496] Bluetooth: hci3: command tx timeout
[   80.843943] Bluetooth: hci2: command tx timeout
[   80.909433] Bluetooth: hci5: command tx timeout
[   80.909885] Bluetooth: hci7: command tx timeout
[   80.910239] Bluetooth: hci6: command tx timeout
[   80.910630] Bluetooth: hci4: command tx timeout
[   82.699484] Bluetooth: hci0: command tx timeout
[   82.827441] Bluetooth: hci1: command tx timeout
[   82.891457] Bluetooth: hci3: command tx timeout
[   82.892233] Bluetooth: hci2: command tx timeout
[   82.956606] Bluetooth: hci4: command tx timeout
[   82.958466] Bluetooth: hci6: command tx timeout
[   82.958752] Bluetooth: hci7: command tx timeout
[   82.959263] Bluetooth: hci5: command tx timeout
[   84.748482] Bluetooth: hci0: command tx timeout
[   84.876399] Bluetooth: hci1: command tx timeout
[   84.940531] Bluetooth: hci2: command tx timeout
[   84.941028] Bluetooth: hci3: command tx timeout
[   85.004074] Bluetooth: hci7: command tx timeout
[   85.004547] Bluetooth: hci6: command tx timeout
[   85.004616] Bluetooth: hci4: command tx timeout
[   85.004942] Bluetooth: hci5: command tx timeout
[  113.648971] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.649659] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.840878] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.841528] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.019642] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.020270] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.194869] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.195707] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.293414] audit: type=1400 audit(1756715046.344:8): avc:  denied  { open } for  pid=3833 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  114.300437] audit: type=1400 audit(1756715046.344:9): avc:  denied  { kernel } for  pid=3833 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
08:24:06 executing program 2:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:06 executing program 2:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:06 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
write$bt_hci(r0, &(0x7f00000000c0)={0x2, @le_create_cis={{0x2064, 0x1}}}, 0x5)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
shutdown(r1, 0x0)

[  114.659093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.659868] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:24:06 executing program 2:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

[  114.743010] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.744074] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:24:06 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
write$bt_hci(r0, &(0x7f00000000c0)={0x2, @le_create_cis={{0x2064, 0x1}}}, 0x5)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
shutdown(r1, 0x0)

[  114.822232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.823063] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:24:06 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
write$bt_hci(r0, &(0x7f00000000c0)={0x2, @le_create_cis={{0x2064, 0x1}}}, 0x5)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
shutdown(r1, 0x0)

08:24:06 executing program 2:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

[  114.952388] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.952997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:24:07 executing program 2:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

[  115.019199] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.019904] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.086256] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.086967] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.115289] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.115902] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.168297] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.168945] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.202782] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.203404] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.235248] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.235847] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.283166] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.283767] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.307181] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.307767] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.417155] loop5: detected capacity change from 0 to 512
[  115.434665] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
08:24:07 executing program 1:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:07 executing program 2:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:07 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa006}, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000280)={@local, @remote, @val={@void}, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x6, 0x0, @loopback, @dev}, @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}, 0x0)

[  115.462175] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
08:24:07 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
ioprio_set$uid(0x0, 0x0, 0x2000)

08:24:07 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)

08:24:07 executing program 6:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040))
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000008c0), 0x3e)

08:24:07 executing program 0:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x12, 0x0, 0x0)

08:24:07 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000dff4655fdff4655f0100ffff53ef010001000000def4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e33393232303833393500"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a5a61a17476642268b9f70cd9d05b303010000000c00000000000000def4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000d4000f000300040000000000000000000f00c7e0", 0x20, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000def4655fdef4655fdef4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000def4655fdff4655fdff4655f00000000000004000200000000000000050000001500"/64, 0x40, 0x1600}, {&(0x7f0000010f00)="20000000706b0911706b091100000000def4655f00"/32, 0x20, 0x1680}, {&(0x7f0000011000)="c0410000002c0000def4655fdef4655fdef4655f0000000000000200160000000000000000000000160000001700000018000000190000001a0000001b0000001c0000001d0000001e0000001f00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000def4655f000000000000000000000000000002ea00"/192, 0xc0, 0x2800}, {&(0x7f0000011100)="ed4100003c000000dff4655fdff4655fdff4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000003330002500000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2a00}, {&(0x7f0000011200)="ed8100001a040000dff4655fdff4655fdff4655f0000000000000100040000000000000001000000210000002200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000507d044100000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011300)="ffa1000026000000dff4655fdff4655fdff4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3339323230383339352f66696c65302f66696c6530000000000000000000000000000000000000000000005300b05d00000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xa0, 0x2e00}, {&(0x7f0000011400)="ed8100000a000000dff4655fdff4655fdff4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d02741e300000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3000}, {&(0x7f0000011500)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000dff4655fdff4655fdff4655f0000000000000200120000000000000001000000230000002400000025000000260000002700000028000000290000002a0000002b0000000000000000000000000000000000000000000000000000002fe9e02200000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xc0, 0x31e0}, {&(0x7f0000011600)="ed81000064000000dff4655fdff4655fdff4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cbaee901500000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x3400}, {&(0x7f0000011700)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x35c0}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x5400}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x5800}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x6400}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x6800}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x6c00}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x7000}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x7400}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x7800}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x7c00}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0x8000}, {&(0x7f0000012400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x8400}], 0x0, &(0x7f0000012900))

08:24:07 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
ioprio_set$uid(0x0, 0x0, 0x2000)

08:24:07 executing program 6:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040))
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000008c0), 0x3e)

08:24:07 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa006}, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000280)={@local, @remote, @val={@void}, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x6, 0x0, @loopback, @dev}, @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}, 0x0)

[  115.548212] loop5: detected capacity change from 0 to 512
08:24:07 executing program 0:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x12, 0x0, 0x0)

08:24:07 executing program 6:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040))
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000008c0), 0x3e)

[  115.571172] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
08:24:07 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)

08:24:07 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa006}, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000280)={@local, @remote, @val={@void}, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x6, 0x0, @loopback, @dev}, @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}, 0x0)

[  115.642196] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
08:24:07 executing program 1:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:07 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000dff4655fdff4655f0100ffff53ef010001000000def4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e33393232303833393500"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a5a61a17476642268b9f70cd9d05b303010000000c00000000000000def4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000d4000f000300040000000000000000000f00c7e0", 0x20, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000def4655fdef4655fdef4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000def4655fdff4655fdff4655f00000000000004000200000000000000050000001500"/64, 0x40, 0x1600}, {&(0x7f0000010f00)="20000000706b0911706b091100000000def4655f00"/32, 0x20, 0x1680}, {&(0x7f0000011000)="c0410000002c0000def4655fdef4655fdef4655f0000000000000200160000000000000000000000160000001700000018000000190000001a0000001b0000001c0000001d0000001e0000001f00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000def4655f000000000000000000000000000002ea00"/192, 0xc0, 0x2800}, {&(0x7f0000011100)="ed4100003c000000dff4655fdff4655fdff4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000003330002500000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2a00}, {&(0x7f0000011200)="ed8100001a040000dff4655fdff4655fdff4655f0000000000000100040000000000000001000000210000002200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000507d044100000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011300)="ffa1000026000000dff4655fdff4655fdff4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3339323230383339352f66696c65302f66696c6530000000000000000000000000000000000000000000005300b05d00000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xa0, 0x2e00}, {&(0x7f0000011400)="ed8100000a000000dff4655fdff4655fdff4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d02741e300000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3000}, {&(0x7f0000011500)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000dff4655fdff4655fdff4655f0000000000000200120000000000000001000000230000002400000025000000260000002700000028000000290000002a0000002b0000000000000000000000000000000000000000000000000000002fe9e02200000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xc0, 0x31e0}, {&(0x7f0000011600)="ed81000064000000dff4655fdff4655fdff4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cbaee901500000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x3400}, {&(0x7f0000011700)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x35c0}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x5400}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x5800}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x6400}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x6800}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x6c00}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x7000}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x7400}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x7800}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x7c00}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0x8000}, {&(0x7f0000012400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x8400}], 0x0, &(0x7f0000012900))

08:24:07 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
ioprio_set$uid(0x0, 0x0, 0x2000)

08:24:07 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa006}, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000280)={@local, @remote, @val={@void}, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x6, 0x0, @loopback, @dev}, @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}, 0x0)

08:24:07 executing program 0:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x12, 0x0, 0x0)

08:24:07 executing program 6:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:07 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa006}, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000280)={@local, @remote, @val={@void}, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x6, 0x0, @loopback, @dev}, @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}, 0x0)

08:24:07 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)

[  115.757295] loop5: detected capacity change from 0 to 512
08:24:07 executing program 4:
syz_emit_ethernet(0x82, &(0x7f0000000040)={@dev, @broadcast, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "55c216", 0x4c, 0x2f, 0x0, @loopback, @private0, {[@fragment={0x33}]}}}}}, 0x0)

[  115.795474] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
08:24:07 executing program 7:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:07 executing program 0:
shmget$private(0x0, 0x4000, 0x540019a0, &(0x7f0000ffc000/0x4000)=nil)

[  115.844288] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
08:24:07 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000dff4655fdff4655f0100ffff53ef010001000000def4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e33393232303833393500"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a5a61a17476642268b9f70cd9d05b303010000000c00000000000000def4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000d4000f000300040000000000000000000f00c7e0", 0x20, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000def4655fdef4655fdef4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000def4655fdff4655fdff4655f00000000000004000200000000000000050000001500"/64, 0x40, 0x1600}, {&(0x7f0000010f00)="20000000706b0911706b091100000000def4655f00"/32, 0x20, 0x1680}, {&(0x7f0000011000)="c0410000002c0000def4655fdef4655fdef4655f0000000000000200160000000000000000000000160000001700000018000000190000001a0000001b0000001c0000001d0000001e0000001f00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000def4655f000000000000000000000000000002ea00"/192, 0xc0, 0x2800}, {&(0x7f0000011100)="ed4100003c000000dff4655fdff4655fdff4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000003330002500000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2a00}, {&(0x7f0000011200)="ed8100001a040000dff4655fdff4655fdff4655f0000000000000100040000000000000001000000210000002200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000507d044100000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011300)="ffa1000026000000dff4655fdff4655fdff4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3339323230383339352f66696c65302f66696c6530000000000000000000000000000000000000000000005300b05d00000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xa0, 0x2e00}, {&(0x7f0000011400)="ed8100000a000000dff4655fdff4655fdff4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d02741e300000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3000}, {&(0x7f0000011500)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000dff4655fdff4655fdff4655f0000000000000200120000000000000001000000230000002400000025000000260000002700000028000000290000002a0000002b0000000000000000000000000000000000000000000000000000002fe9e02200000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000", 0xc0, 0x31e0}, {&(0x7f0000011600)="ed81000064000000dff4655fdff4655fdff4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cbaee901500000000000000000000000000000000000000000000000020000000706b0911706b0911706b0911dff4655f706b09110000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x3400}, {&(0x7f0000011700)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x35c0}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x5400}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x5800}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x6400}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x6800}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x6c00}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x7000}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x7400}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x7800}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x7c00}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0x8000}, {&(0x7f0000012400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x8400}], 0x0, &(0x7f0000012900))

08:24:07 executing program 4:
syz_emit_ethernet(0x82, &(0x7f0000000040)={@dev, @broadcast, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "55c216", 0x4c, 0x2f, 0x0, @loopback, @private0, {[@fragment={0x33}]}}}}}, 0x0)

08:24:07 executing program 1:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:07 executing program 6:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:07 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000019300)={0x2c, r1, 0xd, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}]}, 0x2c}}, 0x0)

08:24:07 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa006}, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000280)={@local, @remote, @val={@void}, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x6, 0x0, @loopback, @dev}, @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}, 0x0)

08:24:07 executing program 0:
shmget$private(0x0, 0x4000, 0x540019a0, &(0x7f0000ffc000/0x4000)=nil)

08:24:07 executing program 7:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

[  115.930390] loop5: detected capacity change from 0 to 512
[  115.957745] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.031298] kmemleak: Found object by alias at 0x607f1a63dd3c
[  116.031316] CPU: 0 UID: 0 PID: 3977 Comm: syz-executor.2 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  116.031339] Tainted: [W]=WARN
[  116.031343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  116.031350] Call Trace:
[  116.031354]  <TASK>
[  116.031359]  dump_stack_lvl+0xca/0x120
[  116.031389]  __lookup_object+0x94/0xb0
[  116.031407]  delete_object_full+0x27/0x70
[  116.031424]  free_percpu+0x30/0x1160
[  116.031442]  ? arch_uprobe_clear_state+0x16/0x140
[  116.031462]  futex_hash_free+0x38/0xc0
[  116.031477]  mmput+0x2d3/0x390
[  116.031497]  do_exit+0x79d/0x2970
[  116.031519]  ? signal_wake_up_state+0x85/0x120
[  116.031536]  ? zap_other_threads+0x2b9/0x3a0
[  116.031552]  ? __pfx_do_exit+0x10/0x10
[  116.031566]  ? do_group_exit+0x1c3/0x2a0
[  116.031580]  ? lock_release+0xc8/0x290
[  116.031598]  do_group_exit+0xd3/0x2a0
[  116.031613]  __x64_sys_exit_group+0x3e/0x50
[  116.031628]  x64_sys_call+0x18c5/0x18d0
[  116.031644]  do_syscall_64+0xbf/0x360
[  116.031657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.031670] RIP: 0033:0x7fbe9db34b19
[  116.031679] Code: Unable to access opcode bytes at 0x7fbe9db34aef.
[  116.031684] RSP: 002b:00007ffe9a5abe98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  116.031696] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fbe9db34b19
[  116.031705] RDX: 00007fbe9dae772b RSI: ffffffffffffffbc RDI: 0000000000000000
[  116.031712] RBP: 0000000000000000 R08: 0000001b2db21ba0 R09: 0000000000000000
[  116.031719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.031726] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffe9a5abf80
[  116.031742]  </TASK>
[  116.031746] kmemleak: Object (percpu) 0x607f1a63dd38 (size 8):
[  116.031753] kmemleak:   comm "syz-executor.5", pid 3979, jiffies 4294782779
[  116.031760] kmemleak:   min_count = 1
[  116.031764] kmemleak:   count = 0
[  116.031768] kmemleak:   flags = 0x21
[  116.031772] kmemleak:   checksum = 0
[  116.031776] kmemleak:   backtrace:
[  116.031780]  pcpu_alloc_noprof+0x87a/0x1170
[  116.031796]  alloc_vfsmnt+0x135/0x6e0
[  116.031810]  vfs_create_mount.part.0+0x40/0x440
[  116.031826]  path_mount+0x1637/0x1dd0
[  116.031838]  __x64_sys_mount+0x27b/0x300
[  116.031850]  do_syscall_64+0xbf/0x360
[  116.031859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.100106] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
08:24:08 executing program 0:
shmget$private(0x0, 0x4000, 0x540019a0, &(0x7f0000ffc000/0x4000)=nil)

08:24:08 executing program 6:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r2)
close_range(r0, 0xffffffffffffffff, 0x0)

08:24:08 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000019300)={0x2c, r1, 0xd, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}]}, 0x2c}}, 0x0)

08:24:08 executing program 4:
syz_emit_ethernet(0x82, &(0x7f0000000040)={@dev, @broadcast, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "55c216", 0x4c, 0x2f, 0x0, @loopback, @private0, {[@fragment={0x33}]}}}}}, 0x0)

08:24:08 executing program 7:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 1:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 2:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 0:
shmget$private(0x0, 0x4000, 0x540019a0, &(0x7f0000ffc000/0x4000)=nil)

08:24:08 executing program 1:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 4:
syz_emit_ethernet(0x82, &(0x7f0000000040)={@dev, @broadcast, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "55c216", 0x4c, 0x2f, 0x0, @loopback, @private0, {[@fragment={0x33}]}}}}}, 0x0)

08:24:08 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000019300)={0x2c, r1, 0xd, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}]}, 0x2c}}, 0x0)

08:24:08 executing program 7:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 2:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000019300)={0x2c, r1, 0xd, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}]}, 0x2c}}, 0x0)

08:24:08 executing program 1:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 7:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 2:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 5:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 0:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 6:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 4:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 2:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x541b, 0x0)

08:24:08 executing program 3:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 7:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 5:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000640), &(0x7f0000000680)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0))
umount2(&(0x7f0000000140)='./file0\x00', 0xc)

08:24:08 executing program 5:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

[  116.512665] kmemleak: Found object by alias at 0x607f1a63dd3c
[  116.512690] CPU: 1 UID: 0 PID: 4041 Comm: syz-executor.2 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  116.512709] Tainted: [W]=WARN
[  116.512713] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  116.512720] Call Trace:
[  116.512724]  <TASK>
[  116.512729]  dump_stack_lvl+0xca/0x120
[  116.512755]  __lookup_object+0x94/0xb0
[  116.512773]  delete_object_full+0x27/0x70
[  116.512789]  free_percpu+0x30/0x1160
[  116.512806]  ? arch_uprobe_clear_state+0x16/0x140
[  116.512826]  futex_hash_free+0x38/0xc0
[  116.512841]  mmput+0x2d3/0x390
[  116.512860]  do_exit+0x79d/0x2970
[  116.512878]  ? __pfx_do_exit+0x10/0x10
[  116.512892]  ? find_held_lock+0x2b/0x80
[  116.512911]  ? get_signal+0x835/0x2340
[  116.512931]  do_group_exit+0xd3/0x2a0
[  116.512947]  get_signal+0x2315/0x2340
[  116.512964]  ? put_task_stack+0xd2/0x240
[  116.512979]  ? __pfx_get_signal+0x10/0x10
[  116.512996]  ? __schedule+0xe91/0x3590
[  116.513017]  arch_do_signal_or_restart+0x80/0x790
[  116.513036]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  116.513053]  ? __x64_sys_futex+0x1c9/0x4d0
[  116.513065]  ? __x64_sys_futex+0x1d2/0x4d0
[  116.513080]  ? __pfx___x64_sys_futex+0x10/0x10
[  116.513093]  ? selinux_file_ioctl+0xb9/0x280
[  116.513115]  exit_to_user_mode_loop+0x8b/0x110
[  116.513128]  do_syscall_64+0x2f7/0x360
[  116.513141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.513154] RIP: 0033:0x7fbe9db34b19
[  116.513163] Code: Unable to access opcode bytes at 0x7fbe9db34aef.
[  116.513168] RSP: 002b:00007fbe9b0aa218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  116.513180] RAX: 0000000000000001 RBX: 00007fbe9dc47f68 RCX: 00007fbe9db34b19
[  116.513188] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbe9dc47f6c
[  116.513195] RBP: 00007fbe9dc47f60 R08: 000000000000000e R09: 0000000000000000
[  116.513202] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fbe9dc47f6c
[  116.513209] R13: 00007ffe9a5abc6f R14: 00007fbe9b0aa300 R15: 0000000000022000
[  116.513224]  </TASK>
[  116.513228] kmemleak: Object (percpu) 0x607f1a63dd38 (size 8):
[  116.513235] kmemleak:   comm "syz-executor.1", pid 4036, jiffies 4294783277
[  116.513242] kmemleak:   min_count = 1
[  116.513246] kmemleak:   count = 0
[  116.513250] kmemleak:   flags = 0x21
[  116.513254] kmemleak:   checksum = 0
[  116.513257] kmemleak:   backtrace:
[  116.513261]  pcpu_alloc_noprof+0x87a/0x1170
[  116.513277]  alloc_vfsmnt+0x135/0x6e0
[  116.513291]  vfs_create_mount.part.0+0x40/0x440
[  116.513306]  path_mount+0x1637/0x1dd0
[  116.513318]  __x64_sys_mount+0x27b/0x300
[  116.513335]  do_syscall_64+0xbf/0x360
[  116.513344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
08:24:08 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000640), &(0x7f0000000680)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0))
umount2(&(0x7f0000000140)='./file0\x00', 0xc)

08:24:08 executing program 6:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 0:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 3:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 7:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 4:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 0:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 2:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x541b, 0x0)

08:24:08 executing program 6:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 3:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 5:
r0 = gettid()
waitid(0x2, r0, 0x0, 0x2, 0x0)

08:24:08 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000640), &(0x7f0000000680)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0))
umount2(&(0x7f0000000140)='./file0\x00', 0xc)

08:24:08 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x2a, 0x0, &(0x7f0000000140)=0x47)

08:24:08 executing program 2:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x541b, 0x0)

08:24:08 executing program 4:
r0 = msgget$private(0x0, 0x400)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/4096)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000001000)=""/108)
r1 = msgget(0x0, 0x247)
msgsnd(r1, &(0x7f0000001080)={0x1, "72fe24676ca3d3db859c226e467ccaed5b9e086bcf8e7a7bd0ff31a40d34aa8f028f865a3fdaca3cd996ccac71ffaaff38cffc4d6864fa69dca7fbf879083ccbb23b2ffd67f4a8efb75a7e9405719994380d11ce25a69126143b328d105af30807e927b426920fa81300efe7163902d0e460183fda3e485ec0a3cdd319af026c1f00b11d5b7276ffd28575d7ec2d76698c681977d9929074767445daae2a5d3b01173f4fb2ad3fd6ef11e394ed0c929dfcaf0e0e38f0fba3d1effdc9d4d2e84f841a8f0e6fd7192466cea9d462a80b909e3159036b592fcce469e4b64651782664e337e4"}, 0xec, 0x800)
r2 = msgget(0x0, 0x100)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000001180)=""/216)
r3 = msgget(0x2, 0x4)
msgctl$MSG_STAT(r3, 0xb, &(0x7f0000001280)=""/116)
msgget(0x1, 0x251)

08:24:08 executing program 0:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000100)=""/136)

08:24:08 executing program 6:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
select(0x40, &(0x7f0000000080)={0x8}, 0x0, 0x0, 0x0)

08:24:08 executing program 0:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000100)=""/136)

08:24:08 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x2a, 0x0, &(0x7f0000000140)=0x47)

08:24:08 executing program 2:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x541b, 0x0)

08:24:08 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000640), &(0x7f0000000680)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0))
umount2(&(0x7f0000000140)='./file0\x00', 0xc)

08:24:08 executing program 5:
r0 = gettid()
waitid(0x2, r0, 0x0, 0x2, 0x0)

08:24:08 executing program 6:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
select(0x40, &(0x7f0000000080)={0x8}, 0x0, 0x0, 0x0)

08:24:08 executing program 4:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
select(0x40, &(0x7f0000000080)={0x8}, 0x0, 0x0, 0x0)

08:24:08 executing program 3:
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
io_setup(0x572, &(0x7f0000000140))

08:24:08 executing program 0:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000100)=""/136)

08:24:08 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x2a, 0x0, &(0x7f0000000140)=0x47)

08:24:09 executing program 0:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000100)=""/136)

08:24:09 executing program 5:
r0 = gettid()
waitid(0x2, r0, 0x0, 0x2, 0x0)

08:24:09 executing program 4:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
select(0x40, &(0x7f0000000080)={0x8}, 0x0, 0x0, 0x0)

08:24:09 executing program 6:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
select(0x40, &(0x7f0000000080)={0x8}, 0x0, 0x0, 0x0)

08:24:09 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x2a, 0x0, &(0x7f0000000140)=0x47)

08:24:09 executing program 3:
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
io_setup(0x572, &(0x7f0000000140))

08:24:09 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/devices.allow\x00', 0x2, 0x0)
setresuid(0xee01, 0xee00, 0x0)
write$cgroup_pid(r0, &(0x7f00000000c0), 0x12)

08:24:09 executing program 2:
getrusage(0x0, &(0x7f00000028c0))

08:24:09 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/devices.allow\x00', 0x2, 0x0)
setresuid(0xee01, 0xee00, 0x0)
write$cgroup_pid(r0, &(0x7f00000000c0), 0x12)

08:24:09 executing program 3:
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
io_setup(0x572, &(0x7f0000000140))

08:24:09 executing program 5:
r0 = gettid()
waitid(0x2, r0, 0x0, 0x2, 0x0)

08:24:09 executing program 0:
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x100010, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, 0x0, 0x24045890)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0)
clone3(&(0x7f0000001c00)={0x4000, 0x0, 0x0, &(0x7f0000001a40), {0x20}, &(0x7f0000001a80)=""/188, 0xbc, &(0x7f0000001b40)=""/95, &(0x7f0000001bc0)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff], 0x3}, 0x58)

08:24:09 executing program 6:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
select(0x40, &(0x7f0000000080)={0x8}, 0x0, 0x0, 0x0)

08:24:09 executing program 4:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
select(0x40, &(0x7f0000000080)={0x8}, 0x0, 0x0, 0x0)

08:24:09 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
arch_prctl$ARCH_GET_FS(0x1003, 0x0)

08:24:09 executing program 7:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000019bc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f000001a080)=ANY=[@ANYBLOB='4'], 0x38}}], 0x1, 0x0, 0x0)
sendmmsg$unix(r0, &(0x7f0000019180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f000001a080), 0x18}}], 0x4d, 0x0)

08:24:09 executing program 3:
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
io_setup(0x572, &(0x7f0000000140))

08:24:09 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast1=0xe0000002, @local, @local}, 0xc)
setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000000280)={@multicast1=0xe0000002, @local, @empty}, 0xc)

[  117.171027] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[  117.171917] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  117.172578] CPU: 1 UID: 0 PID: 4133 Comm: syz-executor.2 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  117.173489] Tainted: [W]=WARN
[  117.173731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  117.174357] RIP: 0010:perf_tp_event+0x175/0xe70
[  117.174727] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  117.177821] RSP: 0018:ffff8880167df780 EFLAGS: 00010012
[  117.178743] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90004433000
[  117.180368] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  117.181774] RBP: ffff8880167df9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15d38
[  117.183295] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  117.183847] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  117.184388] FS:  00007fbe9b0aa700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  117.184995] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.185438] CR2: 00007fbe9dc48018 CR3: 0000000043ae9000 CR4: 0000000000350ef0
[  117.185980] Call Trace:
[  117.186179]  <TASK>
[  117.186361]  ? __pfx_perf_tp_event+0x10/0x10
[  117.186711]  ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150
[  117.187184]  ? lock_acquire+0x15e/0x2f0
[  117.187497]  ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10
[  117.187995]  ? lock_is_held_type+0x9e/0x120
[  117.188336]  ? lock_is_held_type+0x9e/0x120
[  117.188675]  ? ctx_sched_in+0x134/0x9b0
[  117.188984]  ? css_rstat_updated+0x1b8/0x4d0
[  117.189334]  ? __pfx_css_rstat_updated+0x10/0x10
[  117.189708]  ? lock_is_held_type+0x9e/0x120
[  117.190046]  ? trace_pelt_se_tp+0xdf/0x130
[  117.190375]  ? perf_trace_run_bpf_submit+0xef/0x180
[  117.190766]  ? lock_is_held_type+0x9e/0x120
[  117.191104]  perf_trace_run_bpf_submit+0xef/0x180
[  117.191485]  perf_trace_preemptirq_template+0x259/0x430
[  117.191899]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  117.192346]  ? check_preempt_wakeup_fair+0x406/0x950
[  117.192738]  ? find_held_lock+0x2b/0x80
[  117.193053]  ? try_to_wake_up+0x8ae/0x11d0
[  117.193387]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[  117.193780]  trace_irq_enable.constprop.0+0xa6/0x100
[  117.194169]  trace_hardirqs_on+0x26/0x40
[  117.194484]  _raw_spin_unlock_irqrestore+0x2c/0x50
[  117.194868]  try_to_wake_up+0x8ae/0x11d0
[  117.195189]  ? __pfx_try_to_wake_up+0x10/0x10
[  117.195550]  ? plist_del+0x122/0x270
[  117.195844]  ? find_held_lock+0x2b/0x80
[  117.196158]  ? futex_wake+0x474/0x540
[  117.196459]  wake_up_q+0xa1/0x130
[  117.196738]  futex_wake+0x47e/0x540
[  117.197032]  ? __pfx_futex_wake+0x10/0x10
[  117.197358]  ? __do_sys_perf_event_open+0x44d/0x2c20
[  117.197758]  ? lock_release+0xc8/0x290
[  117.198085]  do_futex+0x26d/0x370
[  117.198375]  ? __pfx_do_futex+0x10/0x10
[  117.198691]  ? __pfx___do_sys_perf_event_open+0x10/0x10
[  117.199105]  ? find_held_lock+0x2b/0x80
[  117.199422]  __x64_sys_futex+0x1c9/0x4d0
[  117.199750]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  117.200200]  ? __pfx___x64_sys_futex+0x10/0x10
[  117.200559]  ? xfd_validate_state+0x55/0x180
[  117.200912]  do_syscall_64+0xbf/0x360
[  117.201212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.201609] RIP: 0033:0x7fbe9db34b19
[  117.201899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  117.203279] RSP: 002b:00007fbe9b0aa218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  117.203864] RAX: ffffffffffffffda RBX: 00007fbe9dc47f68 RCX: 00007fbe9db34b19
[  117.204413] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbe9dc47f6c
[  117.204957] RBP: 00007fbe9dc47f60 R08: 000000000000000e R09: 0000000000000000
[  117.205498] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fbe9dc47f6c
[  117.206040] R13: 00007ffe9a5abc6f R14: 00007fbe9b0aa300 R15: 0000000000022000
[  117.206583]  </TASK>
[  117.206767] Modules linked in:
[  117.207018] ---[ end trace 0000000000000000 ]---
[  117.207379] RIP: 0010:perf_tp_event+0x175/0xe70
[  117.207751] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  117.209139] RSP: 0018:ffff8880167df780 EFLAGS: 00010012
[  117.209547] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90004433000
[  117.210091] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  117.210636] RBP: ffff8880167df9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15d38
[  117.211180] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  117.211728] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  117.212277] FS:  00007fbe9b0aa700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  117.212892] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.213337] CR2: 00007fbe9dc48018 CR3: 0000000043ae9000 CR4: 0000000000350ef0
[  117.213884] note: syz-executor.2[4133] exited with irqs disabled
[  117.214395] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[  117.215238] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  117.215911] CPU: 1 UID: 0 PID: 4133 Comm: syz-executor.2 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  117.216818] Tainted: [D]=DIE, [W]=WARN
[  117.217114] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  117.217739] RIP: 0010:perf_tp_event+0x175/0xe70
[  117.218106] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  117.219488] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[  117.219903] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  117.220448] RDX: ffff88801546b700 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  117.220995] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd15d38
[  117.221536] R10: 0000000000000000 R11: ffff888016331c98 R12: dffffc0000000000
[  117.222078] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[  117.222623] FS:  00007fbe9b0aa700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  117.223237] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.223696] CR2: 00007fbe9dc48018 CR3: 0000000043ae9000 CR4: 0000000000350ef0
[  117.224244] Call Trace:
[  117.224446]  <IRQ>
[  117.224622]  ? __pfx_perf_tp_event+0x10/0x10
[  117.224972]  ? enqueue_task_fair+0xded/0x1e00
[  117.225325]  ? check_preempt_wakeup_fair+0x6e/0x950
[  117.225714]  ? wakeup_preempt+0x140/0x2a0
[  117.226037]  ? lock_release+0x1c7/0x290
[  117.226351]  ? lock_release+0x1c7/0x290
[  117.226666]  ? do_raw_spin_unlock+0x53/0x220
[  117.227013]  ? _raw_spin_unlock_irqrestore+0x22/0x50
[  117.227409]  ? try_to_wake_up+0x8ae/0x11d0
[  117.227749]  ? do_raw_spin_lock+0x123/0x260
[  117.228088]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  117.228458]  ? perf_trace_run_bpf_submit+0xef/0x180
[  117.228849]  perf_trace_run_bpf_submit+0xef/0x180
[  117.229231]  perf_trace_preemptirq_template+0x259/0x430
[  117.229642]  ? read_tsc+0x9/0x20
[  117.229913]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  117.230363]  ? clockevents_program_event+0x135/0x360
[  117.230759]  ? tick_program_event+0xac/0x140
[  117.231103]  ? handle_softirqs+0x16e/0x770
[  117.231437]  trace_irq_enable.constprop.0+0xa6/0x100
[  117.231836]  trace_hardirqs_on+0x26/0x40
[  117.232149]  handle_softirqs+0x16e/0x770
[  117.232473]  __irq_exit_rcu+0xc4/0x100
[  117.232784]  irq_exit_rcu+0x9/0x20
[  117.233063]  sysvec_apic_timer_interrupt+0x70/0x80
[  117.233446]  </IRQ>
[  117.233624]  <TASK>
[  117.233801]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  117.234207] RIP: 0010:make_task_dead+0xa2/0x3b0
[  117.234572] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 <e8> e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[  117.235959] RSP: 0018:ffff8880167dff28 EFLAGS: 00000246
[  117.236367] RAX: 0000000000000001 RBX: ffff88801546b700 RCX: ffffffff817c3ab6
[  117.236910] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[  117.237454] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[  117.238004] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff88801546b700
[  117.238546] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[  117.239092]  ? trace_irq_enable.constprop.0+0x26/0x100
[  117.239497]  ? make_task_dead+0x214/0x3b0
[  117.239830]  ? make_task_dead+0x214/0x3b0
[  117.240154]  ? do_syscall_64+0xbf/0x360
[  117.240465]  rewind_stack_and_make_dead+0x16/0x20
[  117.240851] RIP: 0033:0x7fbe9db34b19
[  117.241142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  117.242515] RSP: 002b:00007fbe9b0aa218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  117.243095] RAX: ffffffffffffffda RBX: 00007fbe9dc47f68 RCX: 00007fbe9db34b19
[  117.243646] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbe9dc47f6c
[  117.244196] RBP: 00007fbe9dc47f60 R08: 000000000000000e R09: 0000000000000000
[  117.244740] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fbe9dc47f6c
[  117.245295] R13: 00007ffe9a5abc6f R14: 00007fbe9b0aa300 R15: 0000000000022000
[  117.245856]  </TASK>
[  117.246049] Modules linked in:
[  117.246299] ---[ end trace 0000000000000000 ]---
[  117.246656] RIP: 0010:perf_tp_event+0x175/0xe70
[  117.247036] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  117.248486] RSP: 0018:ffff8880167df780 EFLAGS: 00010012
[  117.248915] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90004433000
[  117.249454] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  117.249995] RBP: ffff8880167df9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15d38
[  117.250536] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  117.251084] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  117.251673] FS:  00007fbe9b0aa700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  117.252304] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.252761] CR2: 00007fbe9dc48018 CR3: 0000000043ae9000 CR4: 0000000000350ef0
[  117.253318] Kernel panic - not syncing: Fatal exception in interrupt
[  117.253917] Kernel Offset: disabled
[  117.254212] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
08:24:09  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88806cf3c300 RCX=ffffffff816880fc RDX=ffff888015468000
RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880185d76f8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9c6bb1
R12=ffffed100d9e7861 R13=ffff88806cf3c308 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe2400000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbcdde7d718 CR3=000000003541e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff8880167df0f0
R8 =0000000000000000 R9 =ffffed10016c7046 R10=0000000000000066 R11=3838666666662052
R12=0000000000000066 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fbe9b0aa700 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe7400000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbe9dc48018 CR3=0000000043ae9000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007fbe9dc1b7c000007fbe9dc1b7c8
XMM02=00007fbe9dc1b7e000007fbe9dc1b7c0 XMM03=00007fbe9dc1b7c800007fbe9dc1b7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000