Warning: Permanently added '[localhost]:28576' (ECDSA) to the list of known hosts.
2025/09/01 08:42:48 fuzzer started
2025/09/01 08:42:48 dialing manager at localhost:35473
syzkaller login: [ 51.477323] cgroup: Unknown subsys name 'net'
[ 51.531726] cgroup: Unknown subsys name 'cpuset'
[ 51.546215] cgroup: Unknown subsys name 'rlimit'
2025/09/01 08:42:59 syscalls: 2214
2025/09/01 08:42:59 code coverage: enabled
2025/09/01 08:42:59 comparison tracing: enabled
2025/09/01 08:42:59 extra coverage: enabled
2025/09/01 08:42:59 setuid sandbox: enabled
2025/09/01 08:42:59 namespace sandbox: enabled
2025/09/01 08:42:59 Android sandbox: enabled
2025/09/01 08:42:59 fault injection: enabled
2025/09/01 08:42:59 leak checking: enabled
2025/09/01 08:42:59 net packet injection: enabled
2025/09/01 08:42:59 net device setup: enabled
2025/09/01 08:42:59 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 08:42:59 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 08:42:59 USB emulation: enabled
2025/09/01 08:42:59 hci packet injection: enabled
2025/09/01 08:42:59 wifi device emulation: enabled
2025/09/01 08:42:59 802.15.4 emulation: enabled
2025/09/01 08:42:59 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 08:42:59 fetching corpus: 50, signal 24287/27526 (executing program)
2025/09/01 08:42:59 fetching corpus: 100, signal 33574/38043 (executing program)
2025/09/01 08:42:59 fetching corpus: 150, signal 47587/52693 (executing program)
2025/09/01 08:43:00 fetching corpus: 200, signal 53007/58951 (executing program)
2025/09/01 08:43:00 fetching corpus: 250, signal 58373/65017 (executing program)
2025/09/01 08:43:00 fetching corpus: 300, signal 62738/70077 (executing program)
2025/09/01 08:43:00 fetching corpus: 350, signal 66805/74731 (executing program)
2025/09/01 08:43:00 fetching corpus: 400, signal 69958/78487 (executing program)
2025/09/01 08:43:00 fetching corpus: 450, signal 72895/81980 (executing program)
2025/09/01 08:43:00 fetching corpus: 500, signal 76467/85876 (executing program)
2025/09/01 08:43:00 fetching corpus: 550, signal 79157/88909 (executing program)
2025/09/01 08:43:00 fetching corpus: 600, signal 80857/91088 (executing program)
2025/09/01 08:43:01 fetching corpus: 650, signal 85289/95378 (executing program)
2025/09/01 08:43:01 fetching corpus: 700, signal 87594/97889 (executing program)
2025/09/01 08:43:01 fetching corpus: 750, signal 89818/100304 (executing program)
2025/09/01 08:43:01 fetching corpus: 800, signal 92020/102591 (executing program)
2025/09/01 08:43:01 fetching corpus: 850, signal 93782/104501 (executing program)
2025/09/01 08:43:01 fetching corpus: 900, signal 96909/107333 (executing program)
2025/09/01 08:43:01 fetching corpus: 950, signal 100030/110080 (executing program)
2025/09/01 08:43:01 fetching corpus: 1000, signal 102191/112146 (executing program)
2025/09/01 08:43:01 fetching corpus: 1050, signal 103573/113578 (executing program)
2025/09/01 08:43:02 fetching corpus: 1100, signal 104568/114695 (executing program)
2025/09/01 08:43:02 fetching corpus: 1150, signal 105844/115952 (executing program)
2025/09/01 08:43:02 fetching corpus: 1200, signal 108046/117736 (executing program)
2025/09/01 08:43:02 fetching corpus: 1250, signal 109426/118984 (executing program)
2025/09/01 08:43:02 fetching corpus: 1300, signal 110631/120056 (executing program)
2025/09/01 08:43:02 fetching corpus: 1350, signal 112209/121339 (executing program)
2025/09/01 08:43:02 fetching corpus: 1400, signal 113127/122216 (executing program)
2025/09/01 08:43:02 fetching corpus: 1450, signal 114426/123236 (executing program)
2025/09/01 08:43:03 fetching corpus: 1500, signal 115323/124001 (executing program)
2025/09/01 08:43:03 fetching corpus: 1550, signal 116416/124873 (executing program)
2025/09/01 08:43:03 fetching corpus: 1600, signal 117530/125764 (executing program)
2025/09/01 08:43:03 fetching corpus: 1650, signal 118747/126593 (executing program)
2025/09/01 08:43:03 fetching corpus: 1700, signal 120325/127601 (executing program)
2025/09/01 08:43:03 fetching corpus: 1750, signal 121414/128356 (executing program)
2025/09/01 08:43:03 fetching corpus: 1800, signal 122721/129113 (executing program)
2025/09/01 08:43:03 fetching corpus: 1850, signal 123578/129673 (executing program)
2025/09/01 08:43:03 fetching corpus: 1900, signal 124799/130415 (executing program)
2025/09/01 08:43:04 fetching corpus: 1950, signal 125771/130955 (executing program)
2025/09/01 08:43:04 fetching corpus: 2000, signal 126686/131436 (executing program)
2025/09/01 08:43:04 fetching corpus: 2050, signal 128188/132091 (executing program)
2025/09/01 08:43:04 fetching corpus: 2100, signal 128843/132421 (executing program)
2025/09/01 08:43:04 fetching corpus: 2150, signal 130229/132997 (executing program)
2025/09/01 08:43:04 fetching corpus: 2200, signal 131040/133349 (executing program)
2025/09/01 08:43:04 fetching corpus: 2250, signal 131939/133760 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/133942 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/133981 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134001 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134029 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134062 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134101 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134137 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134174 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134206 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134246 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134280 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134315 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134346 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134387 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134413 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134452 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134488 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134521 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134558 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134588 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134605 (executing program)
2025/09/01 08:43:04 fetching corpus: 2292, signal 132419/134605 (executing program)
2025/09/01 08:43:06 starting 8 fuzzer processes
08:43:06 executing program 0:
remap_file_pages(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff, 0x0)
08:43:06 executing program 6:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000002440)=ANY=[])
08:43:06 executing program 1:
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
08:43:06 executing program 7:
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@raw={0x8, 0xfe, {"82b80c082b"}}, 0x0)
08:43:06 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x16, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x30000000}, 0x0, 0x4, 0x6c0, 0x9, 0x6, 0x71, 0x5, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r0, 0x2)
openat$random(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000003c0)={0xffffffffffffffff, 0x71, 0x8})
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)
pwritev2(r1, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000000)="1e", 0x300000}], 0x2, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x7, r1, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
08:43:06 executing program 3:
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00')
close_range(r0, 0xffffffffffffffff, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000240)=""/42, 0xff30, 0xfffffffeffc)
08:43:06 executing program 4:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f00000000c0)="f9ef228853802bdb858bff046848ec6b1fd74b8ca5173303669c19f29e0c1c37a1ecb808", 0x24, 0xa00, &(0x7f0000000000)={0x2, 0x0, @empty}, 0x10)
[ 69.289180] audit: type=1400 audit(1756716186.815:7): avc: denied { execmem } for pid=275 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:43:06 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats})
[ 70.552784] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 70.555052] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 70.559646] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 70.564055] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 70.565893] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 70.568788] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 70.575244] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 70.576621] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 70.579150] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 70.583104] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 70.584425] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 70.585137] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 70.589077] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 70.591577] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 70.598145] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 70.599571] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 70.607287] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 70.610720] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 70.612079] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 70.616734] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 70.622169] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 70.624543] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 70.625895] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 70.634051] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 70.639074] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 70.640683] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 70.645118] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 70.658804] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 70.661298] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 70.663201] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 70.666111] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 70.674532] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 70.680417] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 70.686255] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 70.687474] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 70.689052] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 70.694955] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 70.697869] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 70.703185] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 70.705705] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 72.641602] Bluetooth: hci0: command tx timeout
[ 72.642504] Bluetooth: hci2: command tx timeout
[ 72.705012] Bluetooth: hci1: command tx timeout
[ 72.706019] Bluetooth: hci3: command tx timeout
[ 72.768991] Bluetooth: hci7: command tx timeout
[ 72.770951] Bluetooth: hci6: command tx timeout
[ 72.771617] Bluetooth: hci4: command tx timeout
[ 72.772985] Bluetooth: hci5: command tx timeout
[ 74.689516] Bluetooth: hci0: command tx timeout
[ 74.690079] Bluetooth: hci2: command tx timeout
[ 74.753903] Bluetooth: hci3: command tx timeout
[ 74.754431] Bluetooth: hci1: command tx timeout
[ 74.817095] Bluetooth: hci7: command tx timeout
[ 74.817606] Bluetooth: hci6: command tx timeout
[ 74.818213] Bluetooth: hci4: command tx timeout
[ 74.818671] Bluetooth: hci5: command tx timeout
[ 76.736954] Bluetooth: hci0: command tx timeout
[ 76.737425] Bluetooth: hci2: command tx timeout
[ 76.801880] Bluetooth: hci3: command tx timeout
[ 76.802419] Bluetooth: hci1: command tx timeout
[ 76.864905] Bluetooth: hci5: command tx timeout
[ 76.865417] Bluetooth: hci6: command tx timeout
[ 76.865955] Bluetooth: hci4: command tx timeout
[ 76.866414] Bluetooth: hci7: command tx timeout
[ 78.784892] Bluetooth: hci0: command tx timeout
[ 78.785398] Bluetooth: hci2: command tx timeout
[ 78.849877] Bluetooth: hci1: command tx timeout
[ 78.850369] Bluetooth: hci3: command tx timeout
[ 78.914050] Bluetooth: hci7: command tx timeout
[ 78.914534] Bluetooth: hci4: command tx timeout
[ 78.915616] Bluetooth: hci6: command tx timeout
[ 78.916080] Bluetooth: hci5: command tx timeout
[ 106.916392] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 106.917189] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.129685] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.130837] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.466632] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.467289] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.544554] audit: type=1400 audit(1756716225.069:8): avc: denied { open } for pid=3835 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 107.548195] audit: type=1400 audit(1756716225.070:9): avc: denied { kernel } for pid=3835 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 107.593709] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.594334] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:43:45 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats})
[ 107.779559] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.780162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:43:45 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats})
[ 107.872161] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.872759] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:43:45 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats})
[ 108.008018] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.009184] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:43:45 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats})
[ 108.072007] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.072612] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:43:45 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats})
[ 108.118153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.118701] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:43:45 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats})
[ 108.195441] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.196210] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.237774] audit: type=1400 audit(1756716225.764:10): avc: denied { write } for pid=3888 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 108.251547] mmap: syz-executor.0 (3891) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 108.265617] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.266274] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.402170] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.403181] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.433380] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.433999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.470600] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.471448] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.535230] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.536135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.578674] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.579427] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:43:46 executing program 0:
remap_file_pages(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff, 0x0)
08:43:46 executing program 5:
openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="02c9e012000e000520153f0a0003000010b90007000400"], 0x17)
syz_emit_vhci(&(0x7f0000000340)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="03c80024d0a4f59906c11a26eaec30126ea2650838b69877c8fa4b2915a255a1000801000700a23b012515fc1a260979e1003e5ec1134905ae3527ff6192"], 0x3e)
syz_emit_vhci(&(0x7f0000000180)=ANY=[], 0x1a)
init_module(0x0, 0xfffc2, 0x0)
init_module(&(0x7f0000000180)='9u\x10\xac`)\xbe\a\xb2<^{}\xdc)\x00', 0xc, &(0x7f0000000200)='-\x00\x02T\xb0V>\x8d\x99\xcb\x94\xd5\xb0\x01\x98\x01\xa5x\xf7v8q\xf1P\xf4(\x7f\xbc\r\x1e$\r\xcf\'\x8aGQR`\xad\x1fT\xfc\x1a\x06\xe7\xb8vva\x11\xb7\x19\xd8\xc9\xa35D\xf6g\xa2\x8fU<\xcc\x01\x9b~2\x12\xc3y\x87>\xbc\xbd\xf8\xc7\x86\xaa\xcaHv)l\xc4\x1b$\x8e}\x03\x00,')
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000300)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x7, 0x0, 0x406}}}, 0x7)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRES64], 0x9)
r1 = syz_open_dev$vcsa(&(0x7f0000000400), 0x8, 0x40000)
setsockopt$WPAN_SECURITY(r1, 0x0, 0x1, &(0x7f0000000440)=0x1, 0x4)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04000700000000"], 0x6)
syz_open_dev$vcsa(&(0x7f00000000c0), 0x1ff0000000000000, 0x200000)
bind$802154_dgram(r0, &(0x7f00000001c0)={0x24, @short={0x2, 0x3, 0xaaa2}}, 0xfffffffffffffe78)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(0xffffffffffffffff, 0xc0105303, &(0x7f0000000200)={0x81, 0x0, 0x40})
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(0xffffffffffffffff, 0xc0a85322, &(0x7f0000000600))
syz_emit_vhci(&(0x7f0000000480)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xb8}, "d133c9e09cc40737df92573b1a92858ddbbec0d4db659b3492aa8d5c8c20b4d42ea8c08637dea9f54deb236116de135f75e9aecd02db1587641c58a591cb3d4fc86475e0a748b4683d76e41f04444e6080d0dbf85f9325de44a36cc630d66a51438b12e2ca5c5a064094988853d562ff7b4fd17598b2990c7c2588f7790c00bb9d288b1776dc401022626fb5cff26509372de57addd5530615adc98ad0cf6a422e0be3a6bc8ba64b8e4de6fb197d89b9ac4a04b63ed76a3a"}, 0xbc)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xa)
close_range(r2, r1, 0x0)
08:43:46 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x16, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x30000000}, 0x0, 0x4, 0x6c0, 0x9, 0x6, 0x71, 0x5, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r0, 0x2)
openat$random(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000003c0)={0xffffffffffffffff, 0x71, 0x8})
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)
pwritev2(r1, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000000)="1e", 0x300000}], 0x2, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x7, r1, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
08:43:46 executing program 1:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x16, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x30000000}, 0x0, 0x4, 0x6c0, 0x9, 0x6, 0x71, 0x5, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r0, 0x2)
openat$random(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000003c0)={0xffffffffffffffff, 0x71, 0x8})
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)
pwritev2(r1, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000000)="1e", 0x300000}], 0x2, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x7, r1, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
08:43:46 executing program 4:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f00000000c0)="f9ef228853802bdb858bff046848ec6b1fd74b8ca5173303669c19f29e0c1c37a1ecb808", 0x24, 0xa00, &(0x7f0000000000)={0x2, 0x0, @empty}, 0x10)
08:43:46 executing program 7:
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@raw={0x8, 0xfe, {"82b80c082b"}}, 0x0)
08:43:46 executing program 3:
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00')
close_range(r0, 0xffffffffffffffff, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000240)=""/42, 0xff30, 0xfffffffeffc)
08:43:46 executing program 6:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000002440)=ANY=[])
[ 108.804758] Bluetooth: hci0: Received unexpected HCI Event 0x00
08:43:46 executing program 7:
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@raw={0x8, 0xfe, {"82b80c082b"}}, 0x0)
[ 108.819554] Bluetooth: hci0: Received unexpected HCI Event 0x00
08:43:46 executing program 6:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000002440)=ANY=[])
08:43:46 executing program 0:
remap_file_pages(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff, 0x0)
08:43:46 executing program 3:
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00')
close_range(r0, 0xffffffffffffffff, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000240)=""/42, 0xff30, 0xfffffffeffc)
08:43:46 executing program 4:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f00000000c0)="f9ef228853802bdb858bff046848ec6b1fd74b8ca5173303669c19f29e0c1c37a1ecb808", 0x24, 0xa00, &(0x7f0000000000)={0x2, 0x0, @empty}, 0x10)
08:43:46 executing program 5:
openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="02c9e012000e000520153f0a0003000010b90007000400"], 0x17)
syz_emit_vhci(&(0x7f0000000340)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="03c80024d0a4f59906c11a26eaec30126ea2650838b69877c8fa4b2915a255a1000801000700a23b012515fc1a260979e1003e5ec1134905ae3527ff6192"], 0x3e)
syz_emit_vhci(&(0x7f0000000180)=ANY=[], 0x1a)
init_module(0x0, 0xfffc2, 0x0)
init_module(&(0x7f0000000180)='9u\x10\xac`)\xbe\a\xb2<^{}\xdc)\x00', 0xc, &(0x7f0000000200)='-\x00\x02T\xb0V>\x8d\x99\xcb\x94\xd5\xb0\x01\x98\x01\xa5x\xf7v8q\xf1P\xf4(\x7f\xbc\r\x1e$\r\xcf\'\x8aGQR`\xad\x1fT\xfc\x1a\x06\xe7\xb8vva\x11\xb7\x19\xd8\xc9\xa35D\xf6g\xa2\x8fU<\xcc\x01\x9b~2\x12\xc3y\x87>\xbc\xbd\xf8\xc7\x86\xaa\xcaHv)l\xc4\x1b$\x8e}\x03\x00,')
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000300)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x7, 0x0, 0x406}}}, 0x7)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRES64], 0x9)
r1 = syz_open_dev$vcsa(&(0x7f0000000400), 0x8, 0x40000)
setsockopt$WPAN_SECURITY(r1, 0x0, 0x1, &(0x7f0000000440)=0x1, 0x4)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04000700000000"], 0x6)
syz_open_dev$vcsa(&(0x7f00000000c0), 0x1ff0000000000000, 0x200000)
bind$802154_dgram(r0, &(0x7f00000001c0)={0x24, @short={0x2, 0x3, 0xaaa2}}, 0xfffffffffffffe78)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(0xffffffffffffffff, 0xc0105303, &(0x7f0000000200)={0x81, 0x0, 0x40})
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(0xffffffffffffffff, 0xc0a85322, &(0x7f0000000600))
syz_emit_vhci(&(0x7f0000000480)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xb8}, "d133c9e09cc40737df92573b1a92858ddbbec0d4db659b3492aa8d5c8c20b4d42ea8c08637dea9f54deb236116de135f75e9aecd02db1587641c58a591cb3d4fc86475e0a748b4683d76e41f04444e6080d0dbf85f9325de44a36cc630d66a51438b12e2ca5c5a064094988853d562ff7b4fd17598b2990c7c2588f7790c00bb9d288b1776dc401022626fb5cff26509372de57addd5530615adc98ad0cf6a422e0be3a6bc8ba64b8e4de6fb197d89b9ac4a04b63ed76a3a"}, 0xbc)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xa)
close_range(r2, r1, 0x0)
08:43:46 executing program 6:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000002440)=ANY=[])
08:43:46 executing program 7:
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@raw={0x8, 0xfe, {"82b80c082b"}}, 0x0)
08:43:46 executing program 0:
remap_file_pages(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff, 0x0)
08:43:46 executing program 1:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x16, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x30000000}, 0x0, 0x4, 0x6c0, 0x9, 0x6, 0x71, 0x5, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r0, 0x2)
openat$random(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000003c0)={0xffffffffffffffff, 0x71, 0x8})
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)
pwritev2(r1, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000000)="1e", 0x300000}], 0x2, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x7, r1, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
08:43:46 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x16, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x30000000}, 0x0, 0x4, 0x6c0, 0x9, 0x6, 0x71, 0x5, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r0, 0x2)
openat$random(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000003c0)={0xffffffffffffffff, 0x71, 0x8})
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)
pwritev2(r1, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000000)="1e", 0x300000}], 0x2, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x7, r1, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
[ 108.987136] Bluetooth: hci0: Received unexpected HCI Event 0x00
[ 108.993944] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[ 108.994863] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 108.995571] CPU: 1 UID: 0 PID: 3940 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 108.997564] Tainted: [W]=WARN
[ 108.998194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 108.999859] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.001233] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.004760] RSP: 0018:ffff888044bdf780 EFLAGS: 00010012
[ 109.005182] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 109.005737] RDX: ffff88800f8a8000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 109.006292] RBP: ffff888044bdf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16460
[ 109.006860] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.007415] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.007970] FS: 000055557582c400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 109.008597] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.009055] CR2: 000055557582dc18 CR3: 000000001e022000 CR4: 0000000000350ef0
[ 109.009614] Call Trace:
[ 109.009822]
[ 109.010009] ? __pfx_perf_tp_event+0x10/0x10
[ 109.010369] ? arch_scale_cpu_capacity+0x17/0xa0
[ 109.010762] ? cpu_util.constprop.0+0x17d/0x340
[ 109.011143] ? __asan_memset+0x24/0x50
[ 109.011459] ? sched_balance_find_dst_group+0xa9a/0x1c00
[ 109.011886] ? lock_release+0xc8/0x290
[ 109.012204] ? __pfx_sched_balance_find_dst_group+0x10/0x10
[ 109.012647] ? __lock_acquire+0x694/0x1b70
[ 109.012983] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.013384] perf_trace_run_bpf_submit+0xef/0x180
[ 109.013776] perf_trace_preemptirq_template+0x259/0x430
[ 109.014196] ? __pick_eevdf+0x326/0x570
[ 109.014514] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 109.014982] ? update_curr+0x39e/0x500
[ 109.015294] ? find_held_lock+0x2b/0x80
[ 109.015618] ? try_to_wake_up+0x8ae/0x11d0
[ 109.015960] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 109.016369] trace_irq_enable.constprop.0+0xa6/0x100
[ 109.016771] trace_hardirqs_on+0x26/0x40
[ 109.017092] _raw_spin_unlock_irqrestore+0x2c/0x50
[ 109.017486] try_to_wake_up+0x8ae/0x11d0
[ 109.017815] ? __pfx_try_to_wake_up+0x10/0x10
[ 109.018177] ? plist_del+0x122/0x270
[ 109.018477] ? find_held_lock+0x2b/0x80
[ 109.018804] ? futex_wake+0x474/0x540
[ 109.019118] wake_up_q+0xa1/0x130
[ 109.019404] futex_wake+0x47e/0x540
[ 109.019701] ? __pfx_futex_wake+0x10/0x10
[ 109.020036] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.020450] ? finish_task_switch.isra.0+0x206/0x840
[ 109.020866] do_futex+0x26d/0x370
[ 109.021154] ? __pfx_do_futex+0x10/0x10
[ 109.021472] ? __pfx___schedule+0x10/0x10
[ 109.021806] __x64_sys_futex+0x1c9/0x4d0
[ 109.022129] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 109.022586] ? __pfx___x64_sys_futex+0x10/0x10
[ 109.022960] ? xfd_validate_state+0x55/0x180
[ 109.023324] do_syscall_64+0xbf/0x360
[ 109.023629] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.024043] RIP: 0033:0x7f60df085b19
[ 109.024337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 109.025753] RSP: 002b:00007ffc0bfd8ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 109.026342] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f60df085b19
[ 109.026906] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f60df198f68
[ 109.027465] RBP: 00007f60df198f60 R08: 00007f60dc5fb700 R09: 0000000000000000
[ 109.028027] R10: 00007f60dc5fb700 R11: 0000000000000246 R12: 00007f60df19d070
[ 109.028584] R13: 00007ffc0bfd8bd0 R14: 00007f60df198f60 R15: 000000000001a900
[ 109.029145]
[ 109.029334] Modules linked in:
[ 109.029592] ---[ end trace 0000000000000000 ]---
[ 109.029964] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.030339] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.031768] RSP: 0018:ffff888044bdf780 EFLAGS: 00010012
[ 109.032185] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 109.032739] RDX: ffff88800f8a8000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 109.033301] RBP: ffff888044bdf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16460
[ 109.033857] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.034425] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.034990] FS: 000055557582c400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 109.035618] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.036073] CR2: 000055557582dc18 CR3: 000000001e022000 CR4: 0000000000350ef0
[ 109.036633] note: syz-executor.6[3940] exited with irqs disabled
[ 109.037165] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[ 109.038046] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 109.038724] CPU: 1 UID: 0 PID: 3940 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 109.039670] Tainted: [D]=DIE, [W]=WARN
[ 109.039978] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.040621] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.041005] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.042892] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[ 109.043369] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 109.043932] RDX: ffff88800f8a8000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 109.044622] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd16460
[ 109.045182] R10: 0000000000000000 R11: ffff888019d6b498 R12: dffffc0000000000
[ 109.045789] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 109.046437] FS: 000055557582c400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 109.047076] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.047666] CR2: 000055557582dc18 CR3: 000000001e022000 CR4: 0000000000350ef0
[ 109.048226] Call Trace:
[ 109.048435]
[ 109.048614] ? css_rstat_updated+0x1b8/0x4d0
[ 109.048977] ? __pfx_perf_tp_event+0x10/0x10
[ 109.049340] ? trace_pelt_se_tp+0xdf/0x130
[ 109.049678] ? __cgroup_account_cputime+0x31/0xc0
[ 109.050074] ? lock_acquire+0x18c/0x2f0
[ 109.050392] ? update_cfs_group+0x11d/0x260
[ 109.050747] ? lock_release+0x1c7/0x290
[ 109.051068] ? trace_softirq_raise+0xbe/0x100
[ 109.051549] ? run_posix_cpu_timers+0x160/0x7d0
[ 109.052068] ? __raise_softirq_irqoff+0x5f/0x90
[ 109.052437] ? __pfx_run_posix_cpu_timers+0x10/0x10
[ 109.052836] ? sched_balance_trigger+0x1ac/0xcb0
[ 109.053219] ? sched_tick+0x27c/0x6c0
[ 109.053658] ? do_raw_spin_lock+0x123/0x260
[ 109.054010] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 109.054390] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.054798] perf_trace_run_bpf_submit+0xef/0x180
[ 109.055193] perf_trace_preemptirq_template+0x259/0x430
[ 109.055616] ? read_tsc+0x9/0x20
[ 109.055894] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 109.056357] ? clockevents_program_event+0x135/0x360
[ 109.056765] ? tick_program_event+0xac/0x140
[ 109.057173] ? handle_softirqs+0x16e/0x770
[ 109.057666] trace_irq_enable.constprop.0+0xa6/0x100
[ 109.058069] trace_hardirqs_on+0x26/0x40
[ 109.058392] handle_softirqs+0x16e/0x770
[ 109.058724] __irq_exit_rcu+0xc4/0x100
[ 109.059148] irq_exit_rcu+0x9/0x20
[ 109.059437] sysvec_apic_timer_interrupt+0x70/0x80
[ 109.059835]
[ 109.060020]
[ 109.060203] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 109.060618] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 109.060995] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[ 109.062413] RSP: 0018:ffff888044bdff28 EFLAGS: 00000246
[ 109.062838] RAX: 0000000000000001 RBX: ffff88800f8a8000 RCX: ffffffff817c3ab6
[ 109.063396] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 109.063950] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 109.064689] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff88800f8a8000
[ 109.065447] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[ 109.066004] ? trace_irq_enable.constprop.0+0x26/0x100
[ 109.066420] ? make_task_dead+0x214/0x3b0
[ 109.066760] ? make_task_dead+0x214/0x3b0
[ 109.067093] ? do_syscall_64+0xbf/0x360
[ 109.067571] rewind_stack_and_make_dead+0x16/0x20
[ 109.067961] RIP: 0033:0x7f60df085b19
[ 109.068254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 109.069674] RSP: 002b:00007ffc0bfd8ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 109.070263] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f60df085b19
[ 109.070823] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f60df198f68
[ 109.071528] RBP: 00007f60df198f60 R08: 00007f60dc5fb700 R09: 0000000000000000
[ 109.072249] R10: 00007f60dc5fb700 R11: 0000000000000246 R12: 00007f60df19d070
[ 109.072830] R13: 00007ffc0bfd8bd0 R14: 00007f60df198f60 R15: 000000000001a900
[ 109.073387]
[ 109.073576] Modules linked in:
[ 109.073965] ---[ end trace 0000000000000000 ]---
[ 109.074333] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.074703] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.076120] RSP: 0018:ffff888044bdf780 EFLAGS: 00010012
[ 109.076534] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 109.077088] RDX: ffff88800f8a8000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 109.077639] RBP: ffff888044bdf9f0 R08: ffff88806cf31340 R09: ffffe8ffffd16460
[ 109.078198] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.078754] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.079309] FS: 000055557582c400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 109.079932] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.080387] CR2: 000055557582dc18 CR3: 000000001e022000 CR4: 0000000000350ef0
[ 109.080941] Kernel panic - not syncing: Fatal exception in interrupt
[ 109.081644] Kernel Offset: disabled
[ 109.081932] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
08:43:46 Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88806cf3c300 RCX=ffffffff816880fc RDX=ffff88801783d280
RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88800ec076f8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9c6bb1
R12=ffffed100d9e7861 R13=ffff88806cf3c308 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555a23b400 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe5000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d024000 CR3=0000000038008000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888044bdf070
R8 =0000000000000000 R9 =ffffed10015ff046 R10=0000000000000020 R11=0000000065646f43
R12=0000000000000020 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055557582c400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe7400000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000055557582dc18 CR3=000000001e022000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f60df16c7c000007f60df16c7c8
XMM02=00007f60df16c7e000007f60df16c7c0 XMM03=00007f60df16c7c800007f60df16c7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000