Warning: Permanently added '[localhost]:40757' (ECDSA) to the list of known hosts. 2025/09/01 08:24:57 fuzzer started 2025/09/01 08:24:58 dialing manager at localhost:35473 syzkaller login: [ 50.338353] cgroup: Unknown subsys name 'net' [ 50.391166] cgroup: Unknown subsys name 'cpuset' [ 50.407117] cgroup: Unknown subsys name 'rlimit' 2025/09/01 08:25:09 syscalls: 2214 2025/09/01 08:25:09 code coverage: enabled 2025/09/01 08:25:09 comparison tracing: enabled 2025/09/01 08:25:09 extra coverage: enabled 2025/09/01 08:25:09 setuid sandbox: enabled 2025/09/01 08:25:09 namespace sandbox: enabled 2025/09/01 08:25:09 Android sandbox: enabled 2025/09/01 08:25:09 fault injection: enabled 2025/09/01 08:25:09 leak checking: enabled 2025/09/01 08:25:09 net packet injection: enabled 2025/09/01 08:25:09 net device setup: enabled 2025/09/01 08:25:09 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 08:25:09 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 08:25:09 USB emulation: enabled 2025/09/01 08:25:09 hci packet injection: enabled 2025/09/01 08:25:09 wifi device emulation: enabled 2025/09/01 08:25:09 802.15.4 emulation: enabled 2025/09/01 08:25:09 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 08:25:09 fetching corpus: 50, signal 34019/36694 (executing program) 2025/09/01 08:25:09 fetching corpus: 100, signal 39856/43484 (executing program) 2025/09/01 08:25:10 fetching corpus: 150, signal 46174/50523 (executing program) 2025/09/01 08:25:10 fetching corpus: 200, signal 52621/57427 (executing program) 2025/09/01 08:25:10 fetching corpus: 250, signal 59422/64379 (executing program) 2025/09/01 08:25:10 fetching corpus: 300, signal 63208/68441 (executing program) 2025/09/01 08:25:10 fetching corpus: 350, signal 67069/72393 (executing program) 2025/09/01 08:25:10 fetching corpus: 400, signal 71039/76306 (executing program) 2025/09/01 08:25:10 fetching corpus: 450, signal 74668/79812 (executing program) 2025/09/01 08:25:10 fetching corpus: 500, signal 76939/82074 (executing program) 2025/09/01 08:25:11 fetching corpus: 550, signal 78914/84065 (executing program) 2025/09/01 08:25:11 fetching corpus: 600, signal 81834/86691 (executing program) 2025/09/01 08:25:11 fetching corpus: 650, signal 84635/89106 (executing program) 2025/09/01 08:25:11 fetching corpus: 700, signal 88295/91977 (executing program) 2025/09/01 08:25:11 fetching corpus: 750, signal 90426/93703 (executing program) 2025/09/01 08:25:11 fetching corpus: 800, signal 92053/94969 (executing program) 2025/09/01 08:25:11 fetching corpus: 850, signal 94333/96577 (executing program) 2025/09/01 08:25:12 fetching corpus: 900, signal 95976/97739 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98291 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98365 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98458 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98557 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98642 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98723 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98807 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98910 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/98993 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99072 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99167 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99241 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99322 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99392 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99470 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99545 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99618 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99698 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99799 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99886 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/99977 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100072 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100149 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100220 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100308 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100399 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100487 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100568 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100652 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100732 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100795 (executing program) 2025/09/01 08:25:12 fetching corpus: 933, signal 96704/100795 (executing program) 2025/09/01 08:25:14 starting 8 fuzzer processes 08:25:14 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chroot(&(0x7f00000006c0)='./file0\x00') 08:25:14 executing program 1: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5b800, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010700)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010800)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010900)="2200170000000000001700080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012c00190000000000001964000000000000647809140b2a3a08000000010000010a46494c452e434f4c3b31002600180000000000001800080000000008007809140b2a3a08020000010000010546494c45302a001a0000000000001a0a0000000000000a7809140b2a3a08000000010000010846494c45312e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45322e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45332e3b3100"/288, 0x120, 0xb800}, {&(0x7f0000010b00)="2200180000000000001800080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012a0020000000000000201a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xc000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xc800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0xd000}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x10000}], 0x0, &(0x7f0000011300)) 08:25:14 executing program 3: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) 08:25:14 executing program 4: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x114, &(0x7f0000000000)) [ 66.335475] audit: type=1400 audit(1756715114.741:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 08:25:14 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x80000, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029293ac6f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aa5252614100"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029293ac6f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0, 0xc00}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4000}, {&(0x7f0000010600)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4200}, {&(0x7f0000010700)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4400}, {&(0x7f0000010800)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4600}, {&(0x7f0000010900)="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", 0x120, 0x4800}, {&(0x7f0000010b00)="2e2020202020202020202010004eec70325132510000ec7032510300000000002e2e20202020202020202010004eec70325132510000ec70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202020004fec70325132510000ec70325104001a040000", 0x80, 0x14800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x24800}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0x34800}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x54800}], 0x0, &(0x7f0000011300)) 08:25:14 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000400)={&(0x7f00000002c0), 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0) 08:25:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FREQUENCIES={0x14, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0xfffffffc}, {0x8}]}]}, 0x30}}, 0x0) 08:25:14 executing program 6: r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) [ 67.529022] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 67.533130] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 67.537627] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 67.542029] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 67.549410] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.592386] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 67.596167] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 67.597850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.601618] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.604712] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.607704] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 67.609834] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 67.613412] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 67.623105] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 67.628160] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 67.722706] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 67.724889] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 67.726692] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 67.732727] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 67.736418] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 67.748445] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 67.795202] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 67.808676] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 67.811251] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 67.813460] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 67.815360] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 67.817244] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 67.825705] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 67.836859] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 67.839133] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 67.840615] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 67.847241] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 67.853180] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 67.854840] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 67.857764] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 67.863269] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 67.923484] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 67.924608] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 67.937224] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 67.948659] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 69.626500] Bluetooth: hci1: command tx timeout [ 69.626680] Bluetooth: hci0: command tx timeout [ 69.691948] Bluetooth: hci2: command tx timeout [ 69.754019] Bluetooth: hci3: command tx timeout [ 69.946013] Bluetooth: hci5: command tx timeout [ 69.946124] Bluetooth: hci4: command tx timeout [ 70.010115] Bluetooth: hci6: command tx timeout [ 70.010619] Bluetooth: hci7: command tx timeout [ 71.674382] Bluetooth: hci1: command tx timeout [ 71.676965] Bluetooth: hci0: command tx timeout [ 71.738960] Bluetooth: hci2: command tx timeout [ 71.802975] Bluetooth: hci3: command tx timeout [ 71.994084] Bluetooth: hci4: command tx timeout [ 71.996735] Bluetooth: hci5: command tx timeout [ 72.058031] Bluetooth: hci6: command tx timeout [ 72.058425] Bluetooth: hci7: command tx timeout [ 73.722975] Bluetooth: hci0: command tx timeout [ 73.723009] Bluetooth: hci1: command tx timeout [ 73.785991] Bluetooth: hci2: command tx timeout [ 73.850155] Bluetooth: hci3: command tx timeout [ 74.042094] Bluetooth: hci5: command tx timeout [ 74.042129] Bluetooth: hci4: command tx timeout [ 74.105988] Bluetooth: hci7: command tx timeout [ 74.105999] Bluetooth: hci6: command tx timeout [ 75.769976] Bluetooth: hci1: command tx timeout [ 75.771000] Bluetooth: hci0: command tx timeout [ 75.833970] Bluetooth: hci2: command tx timeout [ 75.897974] Bluetooth: hci3: command tx timeout [ 76.089976] Bluetooth: hci5: command tx timeout [ 76.089994] Bluetooth: hci4: command tx timeout [ 76.154046] Bluetooth: hci6: command tx timeout [ 76.155957] Bluetooth: hci7: command tx timeout [ 103.250224] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.250901] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.421309] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.421934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.544680] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.545439] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.618037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.618669] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.638285] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.638880] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.702138] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.702757] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.705807] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.706421] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.771671] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.773305] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.816042] loop2: detected capacity change from 0 to 1352 [ 103.825775] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.826405] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.828202] loop1: detected capacity change from 0 to 732 08:25:52 executing program 1: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5b800, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010700)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010800)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010900)="2200170000000000001700080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012c00190000000000001964000000000000647809140b2a3a08000000010000010a46494c452e434f4c3b31002600180000000000001800080000000008007809140b2a3a08020000010000010546494c45302a001a0000000000001a0a0000000000000a7809140b2a3a08000000010000010846494c45312e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45322e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45332e3b3100"/288, 0x120, 0xb800}, {&(0x7f0000010b00)="2200180000000000001800080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012a0020000000000000201a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xc000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xc800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0xd000}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x10000}], 0x0, &(0x7f0000011300)) [ 103.899108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.899714] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:25:52 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x80000, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029293ac6f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aa5252614100"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029293ac6f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0, 0xc00}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4000}, {&(0x7f0000010600)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4200}, {&(0x7f0000010700)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4400}, {&(0x7f0000010800)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4600}, {&(0x7f0000010900)="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", 0x120, 0x4800}, {&(0x7f0000010b00)="2e2020202020202020202010004eec70325132510000ec7032510300000000002e2e20202020202020202010004eec70325132510000ec70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202020004fec70325132510000ec70325104001a040000", 0x80, 0x14800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x24800}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0x34800}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x54800}], 0x0, &(0x7f0000011300)) [ 103.912331] loop1: detected capacity change from 0 to 732 [ 103.922253] loop2: detected capacity change from 0 to 1352 08:25:52 executing program 1: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5b800, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010700)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010800)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010900)="2200170000000000001700080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012c00190000000000001964000000000000647809140b2a3a08000000010000010a46494c452e434f4c3b31002600180000000000001800080000000008007809140b2a3a08020000010000010546494c45302a001a0000000000001a0a0000000000000a7809140b2a3a08000000010000010846494c45312e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45322e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45332e3b3100"/288, 0x120, 0xb800}, {&(0x7f0000010b00)="2200180000000000001800080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012a0020000000000000201a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xc000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xc800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0xd000}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x10000}], 0x0, &(0x7f0000011300)) [ 103.970765] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.971458] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 08:25:52 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x80000, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029293ac6f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aa5252614100"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029293ac6f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0, 0xc00}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4000}, {&(0x7f0000010600)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4200}, {&(0x7f0000010700)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4400}, {&(0x7f0000010800)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4600}, {&(0x7f0000010900)="53595a4b414c4c45522020080000ec80325132510000ec80325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202010004fec70325132510000ec70325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c453120202020202020004fec70325132510000ec70325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c453220202020202020004fec70325132510000ec70325106002823000041660069006c0065002e000f00d263006f006c0064000000ffff0000ffffffff46494c457e312020434f4c20004fec70325132510000ec703251070064000000", 0x120, 0x4800}, {&(0x7f0000010b00)="2e2020202020202020202010004eec70325132510000ec7032510300000000002e2e20202020202020202010004eec70325132510000ec70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202020004fec70325132510000ec70325104001a040000", 0x80, 0x14800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x24800}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0x34800}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x54800}], 0x0, &(0x7f0000011300)) [ 103.991511] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.992144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.004326] loop1: detected capacity change from 0 to 732 08:25:52 executing program 1: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x5b800, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010700)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010800)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010900)="2200170000000000001700080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012c00190000000000001964000000000000647809140b2a3a08000000010000010a46494c452e434f4c3b31002600180000000000001800080000000008007809140b2a3a08020000010000010546494c45302a001a0000000000001a0a0000000000000a7809140b2a3a08000000010000010846494c45312e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45322e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45332e3b3100"/288, 0x120, 0xb800}, {&(0x7f0000010b00)="2200180000000000001800080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012a0020000000000000201a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xc000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xc800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0xd000}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x10000}], 0x0, &(0x7f0000011300)) [ 104.040554] loop2: detected capacity change from 0 to 1352 [ 104.051596] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.052258] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.056642] loop1: detected capacity change from 0 to 732 08:25:52 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x80000, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029293ac6f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aa5252614100"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029293ac6f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0, 0xc00}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4000}, {&(0x7f0000010600)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4200}, {&(0x7f0000010700)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4400}, {&(0x7f0000010800)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4600}, {&(0x7f0000010900)="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", 0x120, 0x4800}, {&(0x7f0000010b00)="2e2020202020202020202010004eec70325132510000ec7032510300000000002e2e20202020202020202010004eec70325132510000ec70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202020004fec70325132510000ec70325104001a040000", 0x80, 0x14800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x24800}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0x34800}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x54800}], 0x0, &(0x7f0000011300)) 08:25:52 executing program 5: clock_adjtime(0x0, &(0x7f0000000500)={0xa7, 0x0, 0x1, 0x7f, 0x20, 0x8001, 0x80000000, 0x7, 0x40, 0x100000001, 0x5, 0x3, 0x41aa11f0, 0x3, 0x80000001, 0x5, 0x5, 0x0, 0x1, 0x8001, 0xab, 0x8, 0x7, 0xfffffffffffffffb, 0x80000001, 0x1000}) [ 104.131728] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.132867] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.141208] loop2: detected capacity change from 0 to 1352 [ 104.188633] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.189293] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.192991] audit: type=1400 audit(1756715152.597:8): avc: denied { open } for pid=3894 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 104.200402] audit: type=1400 audit(1756715152.597:9): avc: denied { kernel } for pid=3894 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 08:25:52 executing program 5: clock_adjtime(0x0, &(0x7f0000000500)={0xa7, 0x0, 0x1, 0x7f, 0x20, 0x8001, 0x80000000, 0x7, 0x40, 0x100000001, 0x5, 0x3, 0x41aa11f0, 0x3, 0x80000001, 0x5, 0x5, 0x0, 0x1, 0x8001, 0xab, 0x8, 0x7, 0xfffffffffffffffb, 0x80000001, 0x1000}) [ 104.327335] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.328074] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.430810] audit: type=1400 audit(1756715152.836:10): avc: denied { watch_reads } for pid=3904 comm="syz-executor.6" path="/syzkaller-testdir903965640/syzkaller.X1s9Us/0" dev="sda" ino=15973 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1 08:25:52 executing program 1: prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x0) 08:25:52 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x21, 0x0, 0x0) 08:25:52 executing program 5: clock_adjtime(0x0, &(0x7f0000000500)={0xa7, 0x0, 0x1, 0x7f, 0x20, 0x8001, 0x80000000, 0x7, 0x40, 0x100000001, 0x5, 0x3, 0x41aa11f0, 0x3, 0x80000001, 0x5, 0x5, 0x0, 0x1, 0x8001, 0xab, 0x8, 0x7, 0xfffffffffffffffb, 0x80000001, 0x1000}) 08:25:52 executing program 2: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) 08:25:52 executing program 3: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) 08:25:52 executing program 6: r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) 08:25:52 executing program 4: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x114, &(0x7f0000000000)) 08:25:52 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chroot(&(0x7f00000006c0)='./file0\x00') 08:25:53 executing program 2: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) 08:25:53 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x21, 0x0, 0x0) 08:25:53 executing program 4: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x114, &(0x7f0000000000)) 08:25:53 executing program 1: prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x0) 08:25:53 executing program 3: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) 08:25:53 executing program 5: clock_adjtime(0x0, &(0x7f0000000500)={0xa7, 0x0, 0x1, 0x7f, 0x20, 0x8001, 0x80000000, 0x7, 0x40, 0x100000001, 0x5, 0x3, 0x41aa11f0, 0x3, 0x80000001, 0x5, 0x5, 0x0, 0x1, 0x8001, 0xab, 0x8, 0x7, 0xfffffffffffffffb, 0x80000001, 0x1000}) 08:25:53 executing program 6: r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) 08:25:53 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x21, 0x0, 0x0) 08:25:53 executing program 2: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) 08:25:53 executing program 4: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_sigqueueinfo(r0, 0x114, &(0x7f0000000000)) 08:25:53 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chroot(&(0x7f00000006c0)='./file0\x00') 08:25:53 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x21, 0x0, 0x0) 08:25:53 executing program 6: r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) 08:25:53 executing program 5: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chroot(&(0x7f00000006c0)='./file0\x00') 08:25:53 executing program 1: prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x0) [ 104.862976] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 104.863942] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 104.864623] CPU: 1 UID: 0 PID: 3957 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 104.866709] Tainted: [W]=WARN [ 104.867358] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 104.868962] RIP: 0010:perf_tp_event+0x175/0xe70 [ 104.870286] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 104.873703] RSP: 0018:ffff8880457f7600 EFLAGS: 00010212 [ 104.874137] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc900090d2000 [ 104.874809] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 104.875431] RBP: ffff8880457f7870 R08: ffff88806cf31340 R09: ffffe8ffffd16858 [ 104.876079] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 104.876908] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 104.877498] FS: 00007f3b25b65700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 104.878148] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 104.878618] CR2: 00005555860eec18 CR3: 00000000446a6000 CR4: 0000000000350ef0 [ 104.879192] Call Trace: [ 104.879405] [ 104.879600] ? __pfx_perf_tp_event+0x10/0x10 [ 104.879987] ? perf_trace_run_bpf_submit+0xef/0x180 [ 104.880403] perf_trace_run_bpf_submit+0xef/0x180 [ 104.880808] perf_trace_lock+0x337/0x5d0 [ 104.881150] ? __pfx_perf_trace_lock+0x10/0x10 [ 104.881537] ? lock_acquire+0x15e/0x2f0 [ 104.881867] ? futex_ref_get+0x48/0x300 [ 104.882195] ? futex_ref_get+0x114/0x300 [ 104.882525] ? futex_hash+0x15c/0x390 [ 104.882836] lock_release+0x1ab/0x290 [ 104.883151] ? futex_hash+0x15c/0x390 [ 104.883464] futex_ref_get+0x119/0x300 [ 104.883782] ? futex_hash+0x15c/0x390 [ 104.884092] futex_hash+0x70/0x390 [ 104.884385] futex_wait_setup+0xae/0x550 [ 104.884725] __futex_wait+0x151/0x300 [ 104.885046] ? __pfx___futex_wait+0x10/0x10 [ 104.885412] ? __pfx_futex_wake_mark+0x10/0x10 [ 104.885795] futex_wait+0xde/0x380 [ 104.886092] ? __pfx_futex_wait+0x10/0x10 [ 104.886438] ? perf_trace_lock+0xb5/0x5d0 [ 104.886784] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 104.887214] do_futex+0x2ee/0x370 [ 104.887505] ? __pfx_do_futex+0x10/0x10 [ 104.887833] ? do_raw_spin_lock+0x123/0x260 [ 104.888191] __x64_sys_futex+0x1c9/0x4d0 [ 104.888526] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 104.888951] ? __pfx___x64_sys_futex+0x10/0x10 [ 104.889338] ? kcov_ioctl+0x386/0x6c0 [ 104.889655] ? fput+0x6a/0x100 [ 104.889941] do_syscall_64+0xbf/0x360 [ 104.890259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.890679] RIP: 0033:0x7f3b285efb19 [ 104.890986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 104.892441] RSP: 002b:00007f3b25b65218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 104.893047] RAX: ffffffffffffffda RBX: 00007f3b28702f68 RCX: 00007f3b285efb19 [ 104.893619] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3b28702f68 [ 104.894191] RBP: 00007f3b28702f60 R08: 00007f3b25b65700 R09: 0000000000000000 [ 104.894752] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3b28702f6c [ 104.895317] R13: 00007ffff3e7fcbf R14: 00007f3b25b65300 R15: 0000000000022000 [ 104.895890] [ 104.896081] Modules linked in: [ 104.896489] ---[ end trace 0000000000000000 ]--- [ 104.896867] RIP: 0010:perf_tp_event+0x175/0xe70 [ 104.897337] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 104.900189] RSP: 0018:ffff8880457f7600 EFLAGS: 00010212 [ 104.900621] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc900090d2000 [ 104.902414] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 104.903060] RBP: ffff8880457f7870 R08: ffff88806cf31340 R09: ffffe8ffffd16858 [ 104.903629] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 104.904283] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 104.904946] FS: 00007f3b25b65700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 104.905601] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 104.906156] CR2: 00005555860eec18 CR3: 00000000446a6000 CR4: 0000000000350ef0 [ 104.906731] note: syz-executor.6[3957] exited with preempt_count 1 [ 104.907304] BUG: sleeping function called from invalid context at ./include/linux/percpu-rwsem.h:51 [ 104.908084] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 3957, name: syz-executor.6 [ 104.908761] preempt_count: 0, expected: 0 [ 104.909143] RCU nest depth: 2, expected: 0 [ 104.909488] INFO: lockdep is turned off. [ 104.909807] CPU: 1 UID: 0 PID: 3957 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 104.909826] Tainted: [D]=DIE, [W]=WARN [ 104.909830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 104.909838] Call Trace: [ 104.909841] [ 104.909846] dump_stack_lvl+0xfa/0x120 [ 104.909873] __might_resched+0x2f3/0x510 [ 104.909887] exit_signals+0x25/0x940 [ 104.909909] do_exit+0x2db/0x2970 [ 104.909926] ? _printk+0xbe/0xf0 [ 104.909939] ? __pfx__printk+0x10/0x10 [ 104.909952] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 104.909964] ? __pfx_do_exit+0x10/0x10 [ 104.909977] ? kcov_ioctl+0x386/0x6c0 [ 104.909992] make_task_dead+0x174/0x3b0 [ 104.910005] ? do_syscall_64+0xbf/0x360 [ 104.910016] rewind_stack_and_make_dead+0x16/0x20 [ 104.910033] RIP: 0033:0x7f3b285efb19 [ 104.910042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 104.910054] RSP: 002b:00007f3b25b65218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 104.910065] RAX: ffffffffffffffda RBX: 00007f3b28702f68 RCX: 00007f3b285efb19 [ 104.910073] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3b28702f68 [ 104.910080] RBP: 00007f3b28702f60 R08: 00007f3b25b65700 R09: 0000000000000000 [ 104.910087] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3b28702f6c [ 104.910095] R13: 00007ffff3e7fcbf R14: 00007f3b25b65300 R15: 0000000000022000 [ 104.910106] 08:25:54 executing program 3: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff) keyctl$search(0xa, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) 08:25:54 executing program 0: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chroot(&(0x7f00000006c0)='./file0\x00') 08:25:54 executing program 1: prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x0) 08:25:54 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chroot(&(0x7f00000006c0)='./file0\x00') 08:25:54 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chroot(&(0x7f00000006c0)='./file0\x00') 08:25:54 executing program 5: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$nfs(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chroot(&(0x7f00000006c0)='./file0\x00') [ 105.753378] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 105.754289] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 105.754893] CPU: 0 UID: 0 PID: 3970 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 105.755821] Tainted: [D]=DIE, [W]=WARN [ 105.756119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 105.756758] RIP: 0010:perf_tp_event+0x175/0xe70 [ 105.757138] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 105.758607] RSP: 0018:ffff888045a5f800 EFLAGS: 00010212 [ 105.759037] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 105.759601] RDX: ffff888017328000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 105.760173] RBP: ffff888045a5fa70 R08: ffff88806ce31340 R09: ffffe8ffffc16858 [ 105.760754] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 105.761336] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 105.761937] FS: 0000555576fa2400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 105.762618] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 105.763107] CR2: 0000555576fa3c18 CR3: 000000000d100000 CR4: 0000000000350ef0 [ 105.763699] Call Trace: [ 105.763919] [ 105.764106] ? arch_scale_cpu_capacity+0x17/0xa0 [ 105.764497] ? __pfx_perf_tp_event+0x10/0x10 [ 105.764853] ? __asan_memset+0x24/0x50 [ 105.765176] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.765574] ? __pfx___mutex_lock+0x10/0x10 [ 105.765956] ? perf_trace_lock+0xb5/0x5d0 [ 105.766312] ? kvm_sched_clock_read+0x16/0x30 [ 105.766702] ? sched_clock+0x37/0x60 [ 105.767023] ? sched_clock_cpu+0x6c/0x4e0 [ 105.767377] ? perf_trace_run_bpf_submit+0xef/0x180 [ 105.767809] perf_trace_run_bpf_submit+0xef/0x180 [ 105.768246] perf_trace_lock+0x337/0x5d0 [ 105.768590] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.768998] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.769409] ? get_futex_key+0x592/0x14a0 [ 105.769758] ? futex_ref_get+0x114/0x300 [ 105.770093] ? futex_hash+0x15c/0x390 [ 105.770401] lock_release+0x1ab/0x290 [ 105.770711] ? futex_hash+0x15c/0x390 [ 105.771017] futex_ref_get+0x119/0x300 [ 105.771329] ? futex_hash+0x15c/0x390 [ 105.771632] futex_hash+0x70/0x390 [ 105.771922] futex_wake+0x143/0x540 [ 105.772220] ? put_pid+0x1f/0x30 [ 105.772495] ? kernel_clone+0x204/0x7f0 [ 105.772819] ? __pfx_futex_wake+0x10/0x10 [ 105.773156] ? __pfx_kernel_clone+0x10/0x10 [ 105.773507] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 105.773933] ? finish_task_switch.isra.0+0x206/0x840 [ 105.774350] do_futex+0x26d/0x370 [ 105.774633] ? __pfx_do_futex+0x10/0x10 [ 105.774956] ? __pfx___do_sys_clone+0x10/0x10 [ 105.775318] ? __pfx___schedule+0x10/0x10 [ 105.775657] __x64_sys_futex+0x1c9/0x4d0 [ 105.775988] ? __pfx___x64_sys_futex+0x10/0x10 [ 105.776359] ? xfd_validate_state+0x55/0x180 [ 105.776724] do_syscall_64+0xbf/0x360 [ 105.777030] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 105.777444] RIP: 0033:0x7f74898c5b19 [ 105.777739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 105.779169] RSP: 002b:00007ffe7e87dd58 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 105.779773] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f74898c5b19 [ 105.780334] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f74899d8f68 [ 105.780893] RBP: 00007f74899d8f60 R08: 00007f7486e3b700 R09: 0000000000000000 [ 105.781472] R10: 00007f7486e3b700 R11: 0000000000000246 R12: 00007f74899dda68 [ 105.782035] R13: 00007ffe7e87de60 R14: 00007f74899d8f60 R15: 0000000000019ca4 [ 105.782610] [ 105.782802] Modules linked in: [ 105.783088] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI [ 105.783958] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 105.784551] CPU: 0 UID: 0 PID: 3970 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 105.785493] Tainted: [D]=DIE, [W]=WARN [ 105.785794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 105.786435] RIP: 0010:perf_tp_event+0x175/0xe70 [ 105.786812] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 105.788234] RSP: 0018:ffff88806ce08ac0 EFLAGS: 00010012 [ 105.788686] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 105.789265] RDX: ffff888017328000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 105.789863] RBP: ffff88806ce08d30 R08: ffff88806ce31490 R09: ffffe8ffffc16858 [ 105.790420] R10: 0000000000000000 R11: ffff88806ce08ff8 R12: dffffc0000000000 [ 105.790978] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000 [ 105.791540] FS: 0000555576fa2400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 105.792169] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 105.792625] CR2: 0000555576fa3c18 CR3: 000000000d100000 CR4: 0000000000350ef0 [ 105.793189] Call Trace: [ 105.793438] [ 105.793620] ? sysvec_apic_timer_interrupt+0x6b/0x80 [ 105.794050] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 105.794488] ? ___slab_alloc+0x2e1/0xf30 [ 105.794841] ? __pfx_perf_tp_event+0x10/0x10 [ 105.795227] ? trace_pelt_se_tp+0xdf/0x130 [ 105.795588] ? __cgroup_account_cputime+0x88/0xc0 [ 105.795994] ? perf_trace_lock+0xb5/0x5d0 [ 105.796343] ? perf_trace_lock+0xb5/0x5d0 [ 105.796674] ? __resched_curr+0x2a2/0x330 [ 105.797007] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.797379] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.797743] ? x86_pmu_filter+0x61/0xb0 [ 105.798065] ? merge_sched_in+0xcb/0x1810 [ 105.798394] ? __pfx_x86_pmu_filter+0x10/0x10 [ 105.798754] ? perf_event_groups_first+0x29d/0x370 [ 105.799146] ? __asan_memcpy+0x3d/0x60 [ 105.799461] ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150 [ 105.799946] ? lock_release+0x1c7/0x290 [ 105.800270] ? perf_trace_run_bpf_submit+0xef/0x180 [ 105.800671] ? kvm_sched_clock_read+0x16/0x30 [ 105.801034] perf_trace_run_bpf_submit+0xef/0x180 [ 105.801434] perf_trace_lock+0x337/0x5d0 [ 105.801761] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.802130] ? x86_pmu_enable+0x108/0xcd0 [ 105.802462] ? __perf_install_in_context+0x503/0xb90 [ 105.802860] lock_release+0x1ab/0x290 [ 105.803168] _raw_spin_unlock+0x16/0x40 [ 105.803489] __perf_install_in_context+0x503/0xb90 [ 105.803882] ? __pfx___perf_install_in_context+0x10/0x10 [ 105.804309] ? __pfx_remote_function+0x10/0x10 [ 105.804680] remote_function+0x129/0x1b0 [ 105.805008] __flush_smp_call_function_queue+0x20d/0x740 [ 105.805455] __sysvec_call_function_single+0x6d/0x370 [ 105.805846] sysvec_call_function_single+0xa1/0xc0 [ 105.806242] [ 105.806429] [ 105.806614] asm_sysvec_call_function_single+0x1a/0x20 [ 105.807051] RIP: 0010:oops_exit+0x0/0x50 [ 105.807401] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 105.808890] RSP: 0018:ffff888045a5f690 EFLAGS: 00000202 [ 105.809332] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f [ 105.809917] RDX: ffff888017328000 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 105.810508] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 105.811093] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888045a5f758 [ 105.811683] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 105.812230] ? add_taint+0x5f/0xd0 [ 105.812500] ? oops_end+0x4a/0xe0 [ 105.812771] oops_end+0x65/0xe0 [ 105.813053] exc_general_protection+0x1a2/0x330 [ 105.813475] asm_exc_general_protection+0x26/0x30 [ 105.813877] RIP: 0010:perf_tp_event+0x175/0xe70 [ 105.814277] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 105.815660] RSP: 0018:ffff888045a5f800 EFLAGS: 00010212 [ 105.816059] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 105.816654] RDX: ffff888017328000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 105.817233] RBP: ffff888045a5fa70 R08: ffff88806ce31340 R09: ffffe8ffffc16858 [ 105.817814] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 105.818368] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 105.818926] ? perf_tp_event+0x167/0xe70 [ 105.819261] ? arch_scale_cpu_capacity+0x17/0xa0 [ 105.819640] ? __pfx_perf_tp_event+0x10/0x10 [ 105.819997] ? __asan_memset+0x24/0x50 [ 105.820319] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.820683] ? __pfx___mutex_lock+0x10/0x10 [ 105.821024] ? perf_trace_lock+0xb5/0x5d0 [ 105.821343] ? kvm_sched_clock_read+0x16/0x30 [ 105.821681] ? sched_clock+0x37/0x60 [ 105.821965] ? sched_clock_cpu+0x6c/0x4e0 [ 105.822295] ? perf_trace_run_bpf_submit+0xef/0x180 [ 105.822693] perf_trace_run_bpf_submit+0xef/0x180 [ 105.823088] perf_trace_lock+0x337/0x5d0 [ 105.823414] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.823768] ? __pfx_perf_trace_lock+0x10/0x10 [ 105.824113] ? get_futex_key+0x592/0x14a0 [ 105.824432] ? futex_ref_get+0x114/0x300 [ 105.824756] ? futex_hash+0x15c/0x390 [ 105.825061] lock_release+0x1ab/0x290 [ 105.825381] ? futex_hash+0x15c/0x390 [ 105.825684] futex_ref_get+0x119/0x300 [ 105.825997] ? futex_hash+0x15c/0x390 [ 105.826302] futex_hash+0x70/0x390 [ 105.826591] futex_wake+0x143/0x540 [ 105.826887] ? put_pid+0x1f/0x30 [ 105.827163] ? kernel_clone+0x204/0x7f0 [ 105.827480] ? __pfx_futex_wake+0x10/0x10 [ 105.827813] ? __pfx_kernel_clone+0x10/0x10 [ 105.828155] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 105.828569] ? finish_task_switch.isra.0+0x206/0x840 [ 105.828982] do_futex+0x26d/0x370 [ 105.829261] ? __pfx_do_futex+0x10/0x10 [ 105.829582] ? __pfx___do_sys_clone+0x10/0x10 [ 105.829937] ? __pfx___schedule+0x10/0x10 [ 105.830268] __x64_sys_futex+0x1c9/0x4d0 [ 105.830596] ? __pfx___x64_sys_futex+0x10/0x10 [ 105.830963] ? xfd_validate_state+0x55/0x180 [ 105.831324] do_syscall_64+0xbf/0x360 [ 105.831631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 105.832043] RIP: 0033:0x7f74898c5b19 [ 105.832340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 105.833757] RSP: 002b:00007ffe7e87dd58 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 105.834317] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f74898c5b19 [ 105.834841] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f74899d8f68 [ 105.835367] RBP: 00007f74899d8f60 R08: 00007f7486e3b700 R09: 0000000000000000 [ 105.835886] R10: 00007f7486e3b700 R11: 0000000000000246 R12: 00007f74899dda68 [ 105.836435] R13: 00007ffe7e87de60 R14: 00007f74899d8f60 R15: 0000000000019ca4 [ 105.837000] [ 105.837186] Modules linked in: [ 105.837452] ---[ end trace 0000000000000000 ]--- [ 105.837819] RIP: 0010:perf_tp_event+0x175/0xe70 [ 105.838195] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 105.839586] RSP: 0018:ffff8880457f7600 EFLAGS: 00010212 [ 105.839978] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc900090d2000 [ 105.840535] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 105.841090] RBP: ffff8880457f7870 R08: ffff88806cf31340 R09: ffffe8ffffd16858 [ 105.841656] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 105.842210] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 105.842766] FS: 0000555576fa2400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 105.843406] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 105.843865] CR2: 0000555576fa3c18 CR3: 000000000d100000 CR4: 0000000000350ef0 [ 105.844398] Kernel panic - not syncing: Fatal exception in interrupt [ 105.845056] Kernel Offset: disabled [ 105.845357] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 08:25:53 Registers: info registers vcpu 0 RAX=0000000000005e5d RBX=0000000000000000 RCX=ffffffff8179cd6d RDX=0000000000040000 RSI=0000000080000001 RDI=0000000000000000 RBP=0000000080000001 RSP=ffff8880457c7170 R8 =ffff88806ce31340 R9 =ffffe8ffffc16858 R10=0000000000000000 R11=0000000000006cee R12=0000000000000001 R13=000000000000002c R14=ffff88806ce31340 R15=dffffc0000000000 RIP=ffffffff8173f1e8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f47656c0700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe6d00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f47656bffe8 CR3=0000000009dd4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000a60ce07b00000000cec3662e XMM01=000000000000000003515b82db34ca11 XMM02=0000000000000000333bebdfd0a6a21d XMM03=00007f47682317c800007f47682317c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff8880457f6ef0 R8 =0000000000000000 R9 =ffffed1001669046 R10=0000000000000030 R11=0000000065646f43 R12=0000000000000030 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3b25b65700 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe4000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005555860eec18 CR3=00000000446a6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f3b286d67c000007f3b286d67c8 XMM02=00007f3b286d67e000007f3b286d67c0 XMM03=00007f3b286d67c800007f3b286d67c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000