Warning: Permanently added '[localhost]:43762' (ECDSA) to the list of known hosts.
2025/08/29 09:42:38 fuzzer started
2025/08/29 09:42:38 dialing manager at localhost:43077
syzkaller login: [ 51.294540] cgroup: Unknown subsys name 'net'
[ 51.366841] cgroup: Unknown subsys name 'cpuset'
[ 51.380903] cgroup: Unknown subsys name 'rlimit'
2025/08/29 09:42:48 syscalls: 2214
2025/08/29 09:42:48 code coverage: enabled
2025/08/29 09:42:48 comparison tracing: enabled
2025/08/29 09:42:48 extra coverage: enabled
2025/08/29 09:42:48 setuid sandbox: enabled
2025/08/29 09:42:48 namespace sandbox: enabled
2025/08/29 09:42:48 Android sandbox: enabled
2025/08/29 09:42:48 fault injection: enabled
2025/08/29 09:42:48 leak checking: enabled
2025/08/29 09:42:48 net packet injection: enabled
2025/08/29 09:42:48 net device setup: enabled
2025/08/29 09:42:48 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 09:42:48 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 09:42:48 USB emulation: enabled
2025/08/29 09:42:48 hci packet injection: enabled
2025/08/29 09:42:48 wifi device emulation: enabled
2025/08/29 09:42:48 802.15.4 emulation: enabled
2025/08/29 09:42:48 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 09:42:48 fetching corpus: 50, signal 28621/31815 (executing program)
2025/08/29 09:42:48 fetching corpus: 100, signal 40449/44763 (executing program)
2025/08/29 09:42:48 fetching corpus: 150, signal 44809/50363 (executing program)
2025/08/29 09:42:48 fetching corpus: 200, signal 51452/57997 (executing program)
2025/08/29 09:42:48 fetching corpus: 250, signal 54413/62087 (executing program)
2025/08/29 09:42:48 fetching corpus: 300, signal 60798/69156 (executing program)
2025/08/29 09:42:49 fetching corpus: 350, signal 64249/73519 (executing program)
2025/08/29 09:42:49 fetching corpus: 400, signal 67959/78000 (executing program)
2025/08/29 09:42:49 fetching corpus: 450, signal 69605/80563 (executing program)
2025/08/29 09:42:49 fetching corpus: 500, signal 73859/85383 (executing program)
2025/08/29 09:42:49 fetching corpus: 550, signal 76036/88237 (executing program)
2025/08/29 09:42:49 fetching corpus: 600, signal 80078/92578 (executing program)
2025/08/29 09:42:49 fetching corpus: 650, signal 82421/95509 (executing program)
2025/08/29 09:42:49 fetching corpus: 700, signal 84309/97960 (executing program)
2025/08/29 09:42:49 fetching corpus: 750, signal 87864/101670 (executing program)
2025/08/29 09:42:50 fetching corpus: 800, signal 90131/104335 (executing program)
2025/08/29 09:42:50 fetching corpus: 850, signal 91693/106345 (executing program)
2025/08/29 09:42:50 fetching corpus: 900, signal 93672/108641 (executing program)
2025/08/29 09:42:50 fetching corpus: 950, signal 96151/111261 (executing program)
2025/08/29 09:42:50 fetching corpus: 1000, signal 97832/113284 (executing program)
2025/08/29 09:42:50 fetching corpus: 1050, signal 99104/114959 (executing program)
2025/08/29 09:42:50 fetching corpus: 1100, signal 100339/116548 (executing program)
2025/08/29 09:42:50 fetching corpus: 1150, signal 102916/119139 (executing program)
2025/08/29 09:42:50 fetching corpus: 1200, signal 104555/120986 (executing program)
2025/08/29 09:42:51 fetching corpus: 1250, signal 107013/123446 (executing program)
2025/08/29 09:42:51 fetching corpus: 1300, signal 107980/124670 (executing program)
2025/08/29 09:42:51 fetching corpus: 1350, signal 109353/126169 (executing program)
2025/08/29 09:42:51 fetching corpus: 1400, signal 110319/127336 (executing program)
2025/08/29 09:42:51 fetching corpus: 1450, signal 110927/128397 (executing program)
2025/08/29 09:42:51 fetching corpus: 1500, signal 112596/129976 (executing program)
2025/08/29 09:42:51 fetching corpus: 1550, signal 113748/131243 (executing program)
2025/08/29 09:42:51 fetching corpus: 1600, signal 115233/132672 (executing program)
2025/08/29 09:42:51 fetching corpus: 1650, signal 116682/134039 (executing program)
2025/08/29 09:42:51 fetching corpus: 1700, signal 117947/135262 (executing program)
2025/08/29 09:42:52 fetching corpus: 1750, signal 118817/136238 (executing program)
2025/08/29 09:42:52 fetching corpus: 1800, signal 119979/137321 (executing program)
2025/08/29 09:42:52 fetching corpus: 1850, signal 121025/138346 (executing program)
2025/08/29 09:42:52 fetching corpus: 1900, signal 121740/139193 (executing program)
2025/08/29 09:42:52 fetching corpus: 1950, signal 122461/139977 (executing program)
2025/08/29 09:42:52 fetching corpus: 2000, signal 123323/140817 (executing program)
2025/08/29 09:42:52 fetching corpus: 2050, signal 124076/141619 (executing program)
2025/08/29 09:42:52 fetching corpus: 2100, signal 124704/142370 (executing program)
2025/08/29 09:42:52 fetching corpus: 2150, signal 125906/143245 (executing program)
2025/08/29 09:42:52 fetching corpus: 2200, signal 127381/144218 (executing program)
2025/08/29 09:42:52 fetching corpus: 2250, signal 128530/145071 (executing program)
2025/08/29 09:42:53 fetching corpus: 2300, signal 129428/145801 (executing program)
2025/08/29 09:42:53 fetching corpus: 2350, signal 130632/146614 (executing program)
2025/08/29 09:42:53 fetching corpus: 2400, signal 131562/147326 (executing program)
2025/08/29 09:42:53 fetching corpus: 2450, signal 132137/147830 (executing program)
2025/08/29 09:42:53 fetching corpus: 2500, signal 132796/148382 (executing program)
2025/08/29 09:42:53 fetching corpus: 2550, signal 133568/148973 (executing program)
2025/08/29 09:42:53 fetching corpus: 2600, signal 134773/149627 (executing program)
2025/08/29 09:42:53 fetching corpus: 2650, signal 135173/150023 (executing program)
2025/08/29 09:42:53 fetching corpus: 2700, signal 135911/150481 (executing program)
2025/08/29 09:42:53 fetching corpus: 2750, signal 136811/151029 (executing program)
2025/08/29 09:42:54 fetching corpus: 2800, signal 137201/151380 (executing program)
2025/08/29 09:42:54 fetching corpus: 2850, signal 138003/151854 (executing program)
2025/08/29 09:42:54 fetching corpus: 2900, signal 138540/152222 (executing program)
2025/08/29 09:42:54 fetching corpus: 2950, signal 139223/152614 (executing program)
2025/08/29 09:42:54 fetching corpus: 3000, signal 139934/153014 (executing program)
2025/08/29 09:42:54 fetching corpus: 3050, signal 140447/153330 (executing program)
2025/08/29 09:42:54 fetching corpus: 3100, signal 141344/153734 (executing program)
2025/08/29 09:42:54 fetching corpus: 3150, signal 141911/154119 (executing program)
2025/08/29 09:42:54 fetching corpus: 3200, signal 142558/154424 (executing program)
2025/08/29 09:42:54 fetching corpus: 3250, signal 143546/154882 (executing program)
2025/08/29 09:42:55 fetching corpus: 3300, signal 144480/155148 (executing program)
2025/08/29 09:42:55 fetching corpus: 3350, signal 145123/155496 (executing program)
2025/08/29 09:42:55 fetching corpus: 3400, signal 145857/155698 (executing program)
2025/08/29 09:42:55 fetching corpus: 3450, signal 146387/155899 (executing program)
2025/08/29 09:42:55 fetching corpus: 3500, signal 146924/156098 (executing program)
2025/08/29 09:42:55 fetching corpus: 3550, signal 147461/156254 (executing program)
2025/08/29 09:42:55 fetching corpus: 3600, signal 148088/156401 (executing program)
2025/08/29 09:42:55 fetching corpus: 3650, signal 148663/156590 (executing program)
2025/08/29 09:42:55 fetching corpus: 3700, signal 149091/156709 (executing program)
2025/08/29 09:42:56 fetching corpus: 3750, signal 149675/156815 (executing program)
2025/08/29 09:42:56 fetching corpus: 3800, signal 150104/156862 (executing program)
2025/08/29 09:42:56 fetching corpus: 3850, signal 150602/156868 (executing program)
2025/08/29 09:42:56 fetching corpus: 3900, signal 151191/156878 (executing program)
2025/08/29 09:42:56 fetching corpus: 3950, signal 151907/156881 (executing program)
2025/08/29 09:42:56 fetching corpus: 4000, signal 152197/156881 (executing program)
2025/08/29 09:42:56 fetching corpus: 4050, signal 152655/156891 (executing program)
2025/08/29 09:42:56 fetching corpus: 4100, signal 153150/156895 (executing program)
2025/08/29 09:42:56 fetching corpus: 4150, signal 153593/156907 (executing program)
2025/08/29 09:42:56 fetching corpus: 4200, signal 153958/156915 (executing program)
2025/08/29 09:42:56 fetching corpus: 4250, signal 154451/156974 (executing program)
2025/08/29 09:42:57 fetching corpus: 4286, signal 154766/156976 (executing program)
2025/08/29 09:42:57 fetching corpus: 4286, signal 154766/156976 (executing program)
2025/08/29 09:42:59 starting 8 fuzzer processes
09:42:59 executing program 0:
eventfd(0x0)
r0 = fork()
pidfd_open(r0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
wait4(0x0, &(0x7f0000000000), 0x1, &(0x7f0000000100))
09:42:59 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
09:42:59 executing program 4:
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x44032, 0xffffffffffffffff, 0x40000)
[ 71.527731] audit: type=1400 audit(1756460579.081:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
09:42:59 executing program 7:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000001c0)='./file0\x00', 0x12000e81)
inotify_add_watch(r0, &(0x7f0000000100)='.\x00', 0xc0000010)
09:42:59 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001f40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="0b35517c57e47e57dcdfeb9a3c2eeb3caa4a781b1ed1b1856fe54df3b899ecf9c812cf81d943dc2e90a971aaf4a99d124307383bfcbf5d8e5862c68ec78c565cf7428104e0350ea124eded57", 0x4c}], 0x1}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000680)="cb", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x3, 0x80c0)
09:42:59 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
09:42:59 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
pipe(&(0x7f00000000c0))
close_range(r0, 0xffffffffffffffff, 0x0)
09:42:59 executing program 6:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x16, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0)
[ 72.646887] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 72.649795] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 72.652780] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 72.656954] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 72.660883] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 72.769561] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 72.772158] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 72.773993] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 72.781753] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 72.788838] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 72.907872] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 72.911095] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 72.913818] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 72.932011] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 72.934109] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 72.937615] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 72.939839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 72.942823] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 72.944688] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 72.951649] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 72.955787] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 72.955823] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 72.956963] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 72.958227] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 72.967169] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 72.975487] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 72.980954] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 72.982825] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 72.987671] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 72.989250] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 72.991139] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 72.995653] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 73.004943] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 73.007597] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 73.008149] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 73.010860] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 73.025994] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 73.035696] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 73.040149] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 73.042907] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 74.678042] Bluetooth: hci0: command tx timeout
[ 74.869438] Bluetooth: hci1: command tx timeout
[ 75.061540] Bluetooth: hci4: command tx timeout
[ 75.061576] Bluetooth: hci2: command tx timeout
[ 75.062262] Bluetooth: hci6: command tx timeout
[ 75.062801] Bluetooth: hci5: command tx timeout
[ 75.063148] Bluetooth: hci3: command tx timeout
[ 75.127395] Bluetooth: hci7: command tx timeout
[ 76.725840] Bluetooth: hci0: command tx timeout
[ 76.919352] Bluetooth: hci1: command tx timeout
[ 77.109517] Bluetooth: hci3: command tx timeout
[ 77.109978] Bluetooth: hci4: command tx timeout
[ 77.110996] Bluetooth: hci6: command tx timeout
[ 77.111447] Bluetooth: hci2: command tx timeout
[ 77.111834] Bluetooth: hci5: command tx timeout
[ 77.174457] Bluetooth: hci7: command tx timeout
[ 78.774403] Bluetooth: hci0: command tx timeout
[ 78.966579] Bluetooth: hci1: command tx timeout
[ 79.157472] Bluetooth: hci6: command tx timeout
[ 79.157928] Bluetooth: hci5: command tx timeout
[ 79.158303] Bluetooth: hci2: command tx timeout
[ 79.159143] Bluetooth: hci4: command tx timeout
[ 79.159546] Bluetooth: hci3: command tx timeout
[ 79.221424] Bluetooth: hci7: command tx timeout
[ 80.822442] Bluetooth: hci0: command tx timeout
[ 81.014527] Bluetooth: hci1: command tx timeout
[ 81.206453] Bluetooth: hci4: command tx timeout
[ 81.206884] Bluetooth: hci3: command tx timeout
[ 81.207270] Bluetooth: hci2: command tx timeout
[ 81.207809] Bluetooth: hci5: command tx timeout
[ 81.208189] Bluetooth: hci6: command tx timeout
[ 81.270465] Bluetooth: hci7: command tx timeout
[ 107.637582] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.638250] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.818921] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.819599] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.974236] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.975298] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.190570] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.191205] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.235482] audit: type=1400 audit(1756460615.786:8): avc: denied { open } for pid=3849 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 108.238643] audit: type=1400 audit(1756460615.786:9): avc: denied { kernel } for pid=3849 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 108.316840] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.317491] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:43:35 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
[ 108.412706] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.413306] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:43:35 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
[ 108.481683] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.482283] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.482497] audit: type=1400 audit(1756460616.034:10): avc: denied { watch_reads } for pid=3868 comm="syz-executor.7" path="/syzkaller-testdir507547873/syzkaller.lJeHof/0" dev="sda" ino=15971 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1
09:43:36 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
09:43:36 executing program 7:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000001c0)='./file0\x00', 0x12000e81)
inotify_add_watch(r0, &(0x7f0000000100)='.\x00', 0xc0000010)
[ 108.546627] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.547230] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:43:36 executing program 7:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000001c0)='./file0\x00', 0x12000e81)
inotify_add_watch(r0, &(0x7f0000000100)='.\x00', 0xc0000010)
[ 108.601286] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.601916] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:43:36 executing program 1:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000001c0)='./file0\x00', 0x12000e81)
inotify_add_watch(r0, &(0x7f0000000100)='.\x00', 0xc0000010)
09:43:36 executing program 1:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000001c0)='./file0\x00', 0x12000e81)
inotify_add_watch(r0, &(0x7f0000000100)='.\x00', 0xc0000010)
[ 108.665330] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.666220] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:43:36 executing program 1:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000001c0)='./file0\x00', 0x12000e81)
inotify_add_watch(r0, &(0x7f0000000100)='.\x00', 0xc0000010)
[ 108.770134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.770905] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.814165] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.815425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.872709] audit: type=1400 audit(1756460616.425:11): avc: denied { watch_reads } for pid=3896 comm="syz-executor.3" path="/syzkaller-testdir038856384/syzkaller.C44BCG/0/file0" dev="sda" ino=15982 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1
[ 108.914142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.914822] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.962763] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.963295] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 109.017436] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 109.018027] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 109.075111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 109.075784] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:43:36 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
pipe(&(0x7f00000000c0))
close_range(r0, 0xffffffffffffffff, 0x0)
09:43:36 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
pipe(&(0x7f00000000c0))
close_range(r0, 0xffffffffffffffff, 0x0)
09:43:36 executing program 6:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x16, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0)
09:43:36 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001f40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="0b35517c57e47e57dcdfeb9a3c2eeb3caa4a781b1ed1b1856fe54df3b899ecf9c812cf81d943dc2e90a971aaf4a99d124307383bfcbf5d8e5862c68ec78c565cf7428104e0350ea124eded57", 0x4c}], 0x1}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000680)="cb", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x3, 0x80c0)
09:43:36 executing program 4:
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x44032, 0xffffffffffffffff, 0x40000)
09:43:36 executing program 7:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000001c0)='./file0\x00', 0x12000e81)
inotify_add_watch(r0, &(0x7f0000000100)='.\x00', 0xc0000010)
09:43:36 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
09:43:36 executing program 0:
eventfd(0x0)
r0 = fork()
pidfd_open(r0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
wait4(0x0, &(0x7f0000000000), 0x1, &(0x7f0000000100))
09:43:36 executing program 4:
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x44032, 0xffffffffffffffff, 0x40000)
09:43:36 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001f40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="0b35517c57e47e57dcdfeb9a3c2eeb3caa4a781b1ed1b1856fe54df3b899ecf9c812cf81d943dc2e90a971aaf4a99d124307383bfcbf5d8e5862c68ec78c565cf7428104e0350ea124eded57", 0x4c}], 0x1}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000680)="cb", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x3, 0x80c0)
09:43:36 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x1)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0xd10)
pipe(&(0x7f00000000c0))
close_range(r0, 0xffffffffffffffff, 0x0)
09:43:36 executing program 7:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000875000/0x2000)=nil, 0x4)
09:43:36 executing program 6:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x16, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0)
09:43:36 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
[ 109.432055] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 109.433003] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.433609] CPU: 0 UID: 0 PID: 3941 Comm: syz-executor.1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.435108] Tainted: [W]=WARN
[ 109.435942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.437942] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.439116] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.443824] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.444253] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.444815] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.445375] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.445945] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.446513] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.447078] FS: 00007f5ac358b700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 109.447713] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.448177] CR2: 0000555560b89c58 CR3: 0000000045d19000 CR4: 0000000000350ef0
[ 109.448745] Call Trace:
[ 109.448952]
[ 109.449137] ? __pfx_perf_tp_event+0x10/0x10
[ 109.449492] ? lock_acquire+0x15e/0x2f0
[ 109.449824] ? __is_insn_slot_addr+0x2e/0x290
[ 109.450193] ? find_held_lock+0x2b/0x80
[ 109.450517] ? __is_insn_slot_addr+0x136/0x290
[ 109.450889] ? lock_release+0xc8/0x290
[ 109.451211] ? __is_insn_slot_addr+0x140/0x290
[ 109.451587] ? kernel_text_address+0x5b/0xc0
[ 109.451945] ? __kernel_text_address+0xd/0x40
[ 109.452308] ? unwind_get_return_address+0x59/0xa0
[ 109.452706] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 109.453136] ? arch_stack_walk+0x9c/0xf0
[ 109.453463] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.453875] ? stack_depot_save_flags+0x2c/0xa20
[ 109.454262] perf_trace_run_bpf_submit+0xef/0x180
[ 109.454654] perf_trace_contention_begin+0x235/0x3e0
[ 109.455065] ? find_get_context+0xcb/0x680
[ 109.455411] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.455855] ? lock_acquire+0x15e/0x2f0
[ 109.456175] ? find_get_context+0x177/0x680
[ 109.456529] trace_contention_begin+0xae/0x110
[ 109.456898] __mutex_lock+0x14b/0x1020
[ 109.457220] ? find_get_context+0x177/0x680
[ 109.457572] ? find_get_context+0x177/0x680
[ 109.457930] ? __pfx___mutex_lock+0x10/0x10
[ 109.458281] ? __create_object+0x59/0x80
[ 109.458615] ? lockdep_init_map_type+0x4b/0x240
[ 109.458990] ? lockdep_init_map_type+0x4b/0x240
[ 109.459367] ? debug_mutex_init+0x37/0x70
[ 109.459704] find_get_context+0x177/0x680
[ 109.460041] ? __pfx_find_get_context+0x10/0x10
[ 109.460418] ? security_capable+0x2f/0x90
[ 109.460754] __do_sys_perf_event_open+0xa16/0x2c20
[ 109.461154] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 109.461580] ? find_held_lock+0x2b/0x80
[ 109.461917] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.462338] do_syscall_64+0xbf/0x360
[ 109.462649] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.463061] RIP: 0033:0x7f5ac6015b19
[ 109.463363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 109.464785] RSP: 002b:00007f5ac358b188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 109.465388] RAX: ffffffffffffffda RBX: 00007f5ac6128f60 RCX: 00007f5ac6015b19
[ 109.465958] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000340
[ 109.466517] RBP: 00007f5ac606ff6d R08: 0000000000000000 R09: 0000000000000000
[ 109.467076] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 109.467633] R13: 00007ffd69ce89df R14: 00007f5ac358b300 R15: 0000000000022000
[ 109.468195]
[ 109.468383] Modules linked in:
[ 109.468650] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 109.469330] ---[ end trace 0000000000000000 ]---
[ 109.469570] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.469587] CPU: 1 UID: 0 PID: 3936 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.469608] Tainted: [D]=DIE, [W]=WARN
[ 109.469612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.469620] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.469645] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.469658] RSP: 0018:ffff888043bd7580 EFLAGS: 00010212
[ 109.469669] RAX: 0000000000000032 RBX: ffffffffffffffa2 RCX: ffffc90004cb0000
[ 109.469684] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000192
[ 109.469692] RBP: ffff888043bd77f0 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.469700] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.469707] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.469717] FS: 00007f8ff708a700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.469728] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.469736] CR2: 00007ffd93b7aea8 CR3: 0000000042e74000 CR4: 0000000000350ef0
[ 109.469744] Call Trace:
[ 109.469749]
[ 109.469754] ? __bfs+0x10d/0x240
[ 109.469768] ? __pfx_perf_tp_event+0x10/0x10
[ 109.469786] ? __lock_acquire+0x11d5/0x1b70
[ 109.469802] ? do_raw_spin_lock+0x123/0x260
[ 109.469818] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 109.469834] ? lock_release+0x1c7/0x290
[ 109.469847] ? lock_acquire+0x18c/0x2f0
[ 109.469860] ? lock_release+0x1c7/0x290
[ 109.469873] ? lock_release+0x1c7/0x290
[ 109.469888] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.469903] perf_trace_run_bpf_submit+0xef/0x180
[ 109.469921] perf_trace_contention_begin+0x235/0x3e0
[ 109.469938] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.469952] ? trace_sched_exit_tp+0xbf/0x100
[ 109.469971] ? lock_acquire+0x18c/0x2f0
[ 109.469985] trace_contention_begin+0xae/0x110
[ 109.470000] __mutex_lock+0x14b/0x1020
[ 109.470019] ? pcpu_alloc_noprof+0xaa0/0x1170
[ 109.470037] ? pcpu_alloc_noprof+0xaa0/0x1170
[ 109.470427] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.471015] ? do_raw_spin_lock+0x123/0x260
[ 109.471961] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.472256] ? __pfx___mutex_lock+0x10/0x10
[ 109.472905] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.473258] ? __pfx___mutex_trylock_common+0x10/0x10
[ 109.474724]
[ 109.475107] ? lock_release+0xc8/0x290
[ 109.475675] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.476222] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.476794] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.477341] ? __mutex_lock+0x32f/0x1020
[ 109.477958] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.478573] ? perf_trace_init+0x4d/0x2f0
[ 109.478591] pcpu_alloc_noprof+0xaa0/0x1170
[ 109.479037] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.479592] ? __pfx___mutex_lock+0x10/0x10
[ 109.479807] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.479992] perf_trace_event_init+0x366/0xa10
[ 109.480253] FS: 00007f5ac358b700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 109.480597] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 109.480938] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.481273] perf_trace_init+0x1a4/0x2f0
[ 109.481648] CR2: 0000555560b89c58 CR3: 0000000045d19000 CR4: 0000000000350ef0
[ 109.481954] perf_tp_event_init+0xa6/0x120
[ 109.482260] note: syz-executor.1[3941] exited with preempt_count 2
[ 109.482567] perf_try_init_event+0x140/0x9f0
[ 109.498467] perf_event_alloc.part.0+0x118e/0x45f0
[ 109.498870] ? perf_event_alloc.part.0+0x1074/0x45f0
[ 109.499283] ? __fget_files+0x203/0x3b0
[ 109.499606] ? __pfx_perf_event_alloc.part.0+0x10/0x10
[ 109.500030] ? find_held_lock+0x2b/0x80
[ 109.500355] ? __do_sys_perf_event_open+0x11df/0x2c20
[ 109.500772] __do_sys_perf_event_open+0x719/0x2c20
[ 109.501170] ? __pfx_do_futex+0x10/0x10
[ 109.501496] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 109.501930] ? find_held_lock+0x2b/0x80
[ 109.502259] ? xfd_validate_state+0x55/0x180
[ 109.502621] do_syscall_64+0xbf/0x360
[ 109.502931] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.503346] RIP: 0033:0x7f8ff9b14b19
[ 109.503642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 109.505073] RSP: 002b:00007f8ff708a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 109.505672] RAX: ffffffffffffffda RBX: 00007f8ff9c27f60 RCX: 00007f8ff9b14b19
[ 109.506243] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000340
[ 109.506807] RBP: 00007f8ff9b6ef6d R08: 0000000000000000 R09: 0000000000000000
[ 109.507370] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 109.507933] R13: 00007ffc270a69af R14: 00007f8ff708a300 R15: 0000000000022000
[ 109.508496]
[ 109.508686] Modules linked in:
[ 109.508947] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI
[ 109.509822] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.510002] ---[ end trace 0000000000000000 ]---
[ 109.510412] CPU: 0 UID: 0 PID: 98 Comm: systemd-journal Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.510434] Tainted: [D]=DIE, [W]=WARN
[ 109.510438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.510446] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.510467] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.510479] RSP: 0018:ffff88801556f6c0 EFLAGS: 00010212
[ 109.510489] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 109.510497] RDX: ffff888009a7d280 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.510504] RBP: ffff88801556f930 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.510512] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.510520] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.510529] FS: 00007f0d509d1900(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 109.510540] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.510548] CR2: 0000555560b89c58 CR3: 000000000eaa3000 CR4: 0000000000350ef0
[ 109.510555] Call Trace:
[ 109.510561]
[ 109.510568] ? unwind_get_return_address+0x59/0xa0
[ 109.510589] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 109.510607] ? __pfx_perf_tp_event+0x10/0x10
[ 109.510623] ? stack_trace_save+0x8e/0xc0
[ 109.510636] ? stack_depot_save_flags+0x2c/0xa20
[ 109.510652] ? trace_sched_set_need_resched_tp+0xd4/0x110
[ 109.510671] ? __resched_curr+0x2a2/0x330
[ 109.510687] ? __pfx___resched_curr+0x10/0x10
[ 109.510704] ? update_se+0x1ba/0x670
[ 109.510718] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.510733] perf_trace_run_bpf_submit+0xef/0x180
[ 109.510750] perf_trace_contention_begin+0x235/0x3e0
[ 109.510765] ? lock_is_held_type+0x9e/0x120
[ 109.510784] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.510798] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.510811] ? lock_acquire+0x18c/0x2f0
[ 109.510826] trace_contention_begin+0xae/0x110
[ 109.510840] __mutex_lock+0x14b/0x1020
[ 109.510856] ? ep_send_events+0xff/0xaa0
[ 109.510871] ? ep_send_events+0xff/0xaa0
[ 109.510885] ? __pfx___mutex_lock+0x10/0x10
[ 109.510902] ? lock_acquire+0x15e/0x2f0
[ 109.510914] ? find_held_lock+0x2b/0x80
[ 109.510931] ? schedule+0x2c7/0x390
[ 109.510945] ? lock_release+0xc8/0x290
[ 109.510958] ep_send_events+0xff/0xaa0
[ 109.510972] ? schedule_hrtimeout_range_clock+0x1c0/0x310
[ 109.510986] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10
[ 109.511001] ? __pfx_ep_send_events+0x10/0x10
[ 109.511015] ? lock_release+0xc8/0x290
[ 109.511029] do_epoll_wait+0x42e/0xee0
[ 109.511044] ? __pfx_do_epoll_wait+0x10/0x10
[ 109.511058] ? populate_seccomp_data+0x213/0x540
[ 109.511074] ? __pfx_ep_autoremove_wake_function+0x10/0x10
[ 109.511089] ? __pfx___seccomp_filter+0x10/0x10
[ 109.511104] __x64_sys_epoll_wait+0x15b/0x280
[ 109.511119] ? __task_pid_nr_ns+0x2e/0x4f0
[ 109.511521] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.512412] ? __pfx___x64_sys_epoll_wait+0x10/0x10
[ 109.512731] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.513366] ? __secure_computing+0x18d/0x290
[ 109.513748] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.515145] do_syscall_64+0xbf/0x360
[ 109.515159] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.515584]
[ 109.516121] RIP: 0033:0x7f0d5129a116
[ 109.516692] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.517232] Code: 10 89 7c 24 0c 89 4c 24 1c e8 86 6c f8 ff 44 8b 54 24 1c 8b 54 24 18 41 89 c0 48 8b 74 24 10 8b 7c 24 0c b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 32 44 89 c7 89 44 24 0c e8 b6 6c f8 ff 8b 44
[ 109.517809] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.518346] RSP: 002b:00007ffc2645ec30 EFLAGS: 00000293
[ 109.518988] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.519420] ORIG_RAX: 00000000000000e8
[ 109.519427] RAX: ffffffffffffffda RBX: 000055a0632bf360 RCX: 00007f0d5129a116
[ 109.519989] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.520192] RDX: 0000000000000015 RSI: 000055a0632c57d0 RDI: 0000000000000008
[ 109.520387] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.520750] RBP: ffffffffffffffff R08: 0000000000000000 R09: 00007f0d51626000
[ 109.521174] FS: 00007f8ff708a700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.521510] R10: 00000000ffffffff R11: 0000000000000293 R12: 0000000000000001
[ 109.521519] R13: 0000000000000015 R14: 0000000000000000 R15: 0000000000000000
[ 109.521850] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.522216]
[ 109.522658] CR2: 00007ffd93b7aea8 CR3: 0000000042e74000 CR4: 0000000000350ef0
[ 109.522961] Modules linked in:
[ 109.523317] note: syz-executor.7[3936] exited with preempt_count 2
[ 109.523662] ---[ end trace 0000000000000000 ]---
[ 109.524115] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#4] SMP KASAN NOPTI
[ 109.524387] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.524778] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.525108] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.525546] CPU: 1 UID: 0 PID: 288 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.525958] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.526270] Tainted: [D]=DIE, [W]=WARN
[ 109.526627]
[ 109.526921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.527232] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.527548] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.527887] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.528199] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.528521] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.528795] RSP: 0018:ffff888015d4f440 EFLAGS: 00010212
[ 109.529091] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.529394]
[ 109.529399] RAX: 0000000000000032 RBX: ffffffffffffffa2 RCX: 0000000000000002
[ 109.529831] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.530286] RDX: ffff8880168f5280 RSI: ffffffff818995b7 RDI: 0000000000000192
[ 109.530644] FS: 00007f0d509d1900(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 109.530934] RBP: ffff888015d4f6b0 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.531237] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.531577] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.531587] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.531956] CR2: 0000555560b89c58 CR3: 000000000eaa3000 CR4: 0000000000350ef0
[ 109.532390] FS: 000055557554c400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.532403] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.532758] note: systemd-journal[98] exited with preempt_count 2
[ 109.533108] CR2: 00007ffd93b7aea8 CR3: 000000004213a000 CR4: 0000000000350ef0
[ 109.565292] Call Trace:
[ 109.565502]
[ 109.565692] ? __is_insn_slot_addr+0x136/0x290
[ 109.566073] ? lock_release+0x1c7/0x290
[ 109.566404] ? __pfx_perf_tp_event+0x10/0x10
[ 109.566769] ? __is_insn_slot_addr+0x140/0x290
[ 109.567122] ? kernel_text_address+0x5b/0xc0
[ 109.567455] ? lock_release+0x1c7/0x290
[ 109.567752] ? __kernel_text_address+0xd/0x40
[ 109.568094] ? unwind_get_return_address+0x59/0xa0
[ 109.568508] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 109.568962] ? arch_stack_walk+0x9c/0xf0
[ 109.569305] ? stack_trace_save+0x8e/0xc0
[ 109.569648] ? stack_depot_save_flags+0x2c/0xa20
[ 109.570049] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.570469] ? lock_release+0x1c7/0x290
[ 109.570789] perf_trace_run_bpf_submit+0xef/0x180
[ 109.571180] perf_trace_contention_begin+0x235/0x3e0
[ 109.571560] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.571976] ? lock_acquire+0x18c/0x2f0
[ 109.572275] ? __kernel_text_address+0xd/0x40
[ 109.572611] ? lock_acquire+0x18c/0x2f0
[ 109.572909] ? do_raw_spin_lock+0x123/0x260
[ 109.573233] trace_contention_begin+0xae/0x110
[ 109.573576] __mutex_lock+0x14b/0x1020
[ 109.573879] ? bdev_open+0x3e9/0xe40
[ 109.574162] ? bdev_open+0x3e9/0xe40
[ 109.574440] ? find_inode_fast+0x261/0x610
[ 109.574760] ? __pfx___mutex_lock+0x10/0x10
[ 109.575089] ? __pfx_ilookup+0x10/0x10
[ 109.575399] ? lock_acquire+0x18c/0x2f0
[ 109.575736] ? _atomic_dec_and_lock+0x96/0x110
[ 109.576130] ? disk_block_events+0x21/0x140
[ 109.576503] bdev_open+0x3e9/0xe40
[ 109.576810] ? iput+0x62/0x80
[ 109.577081] blkdev_open+0x277/0x400
[ 109.577388] do_dentry_open+0x71c/0x1420
[ 109.577726] ? __pfx_blkdev_open+0x10/0x10
[ 109.578070] vfs_open+0x82/0x3f0
[ 109.578351] ? may_open+0x1f3/0x420
[ 109.578655] path_openat+0x1c3f/0x2880
[ 109.578972] ? stack_trace_save+0x8e/0xc0
[ 109.579307] ? __pfx_path_openat+0x10/0x10
[ 109.579649] ? stack_depot_save_flags+0x2c/0xa20
[ 109.580045] ? do_mkdirat+0x254/0x3d0
[ 109.580368] ? __x64_sys_mkdir+0xf3/0x140
[ 109.580723] do_filp_open+0x1e8/0x450
[ 109.581038] ? __pfx_do_filp_open+0x10/0x10
[ 109.581383] ? lock_acquire+0x18c/0x2f0
[ 109.581714] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 109.582092] ? lock_release+0x1c7/0x290
[ 109.582412] ? alloc_fd+0x2c1/0x560
[ 109.582707] do_sys_openat2+0x104/0x1b0
[ 109.583031] ? __pfx_do_sys_openat2+0x10/0x10
[ 109.583398] ? putname.part.0+0x11b/0x160
[ 109.583736] __x64_sys_openat+0x142/0x200
[ 109.584085] ? __pfx___x64_sys_openat+0x10/0x10
[ 109.584466] do_syscall_64+0xbf/0x360
[ 109.584779] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.585200] RIP: 0033:0x7f7e90c86a04
[ 109.585486] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[ 109.586815] RSP: 002b:00007ffd93b7c670 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 109.587368] RAX: ffffffffffffffda RBX: 00007ffd93b7c770 RCX: 00007f7e90c86a04
[ 109.587889] RDX: 0000000000000002 RSI: 00007ffd93b7c7b0 RDI: 00000000ffffff9c
[ 109.588410] RBP: 00007ffd93b7c7b0 R08: 0000000000000000 R09: 00007ffd93b7c580
[ 109.588931] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 109.589452] R13: 0000000000000000 R14: 0000000000000006 R15: 00007ffd93b7c7b0
[ 109.589982]
[ 109.590174] Modules linked in:
[ 109.590441] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#5] SMP KASAN NOPTI
[ 109.591380] ---[ end trace 0000000000000000 ]---
[ 109.591408] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.591822] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.592475] CPU: 0 UID: 0 PID: 3934 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.592496] Tainted: [D]=DIE, [W]=WARN
[ 109.592501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.592508] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.592533] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.592545] RSP: 0018:ffff888043be7540 EFLAGS: 00010212
[ 109.592555] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 109.592563] RDX: ffff88801548b700 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.592571] RBP: ffff888043be77b0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.592579] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.592587] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.592597] FS: 000055557c15a400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 109.592609] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.592617] CR2: 00007f8ff7069718 CR3: 0000000042e74000 CR4: 0000000000350ef0
[ 109.592625] Call Trace:
[ 109.592629]
[ 109.592637] ? __pfx_perf_tp_event+0x10/0x10
[ 109.592652] ? __kernel_text_address+0xd/0x40
[ 109.592669] ? arch_stack_walk+0x9c/0xf0
[ 109.592685] ? stack_trace_save+0x8e/0xc0
[ 109.592700] ? stack_depot_save_flags+0x2c/0xa20
[ 109.592714] ? lock_acquire+0x18c/0x2f0
[ 109.592729] ? lock_release+0x1c7/0x290
[ 109.592742] ? lock_acquire+0x18c/0x2f0
[ 109.592754] ? lock_acquire+0x18c/0x2f0
[ 109.592767] ? lock_release+0x1c7/0x290
[ 109.592780] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.592795] perf_trace_run_bpf_submit+0xef/0x180
[ 109.592812] perf_trace_contention_begin+0x235/0x3e0
[ 109.592828] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.592842] ? lock_acquire+0x18c/0x2f0
[ 109.592856] trace_contention_begin+0xae/0x110
[ 109.592870] __mutex_lock+0x14b/0x1020
[ 109.592888] ? freezer_fork+0xc1/0x500
[ 109.592901] ? freezer_fork+0xc1/0x500
[ 109.592913] ? delete_node+0x20e/0x730
[ 109.592929] ? __pfx___mutex_lock+0x10/0x10
[ 109.592946] ? __radix_tree_replace+0x117/0x300
[ 109.592962] ? lock_acquire+0x18c/0x2f0
[ 109.592974] ? do_raw_spin_lock+0x123/0x260
[ 109.592989] ? lock_release+0x1c7/0x290
[ 109.593002] freezer_fork+0xc1/0x500
[ 109.593014] cgroup_post_fork+0x31f/0x9a0
[ 109.593031] ? __pfx_cgroup_post_fork+0x10/0x10
[ 109.593046] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 109.593061] ? lock_release+0x1c7/0x290
[ 109.593074] copy_process+0x5e31/0x73c0
[ 109.593090] ? __pfx_copy_process+0x10/0x10
[ 109.593101] ? lock_acquire+0x18c/0x2f0
[ 109.593529] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.594473] ? lock_release+0x1c7/0x290
[ 109.594488] ? __pfx_lru_add+0x10/0x10
[ 109.594807] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.595470] kernel_clone+0xea/0x7f0
[ 109.595485] ? __pfx_kernel_clone+0x10/0x10
[ 109.595859]
[ 109.597305] ? vma_start_read+0x304/0x8e0
[ 109.597755] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.598319] ? __pfx___handle_mm_fault+0x10/0x10
[ 109.598901] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.599467] ? css_rstat_updated+0x1b8/0x4d0
[ 109.600056] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.600638] ? __pfx_css_rstat_updated+0x10/0x10
[ 109.601298] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.601769] __do_sys_clone+0xce/0x120
[ 109.601783] ? __pfx___do_sys_clone+0x10/0x10
[ 109.602367] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.602566] ? count_memcg_events+0x32b/0x420
[ 109.602756] FS: 000055557554c400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.603118] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.603496] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.603817] do_syscall_64+0xbf/0x360
[ 109.604149] CR2: 00007ffd93b7aea8 CR3: 000000004213a000 CR4: 0000000000350ef0
[ 109.604523] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.604858] note: syz-executor.3[288] exited with preempt_count 2
[ 109.605170] RIP: 0033:0x7f8ff9b15f41
[ 109.625626] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 109.627054] RSP: 002b:00007ffc270a68f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 109.627651] RAX: ffffffffffffffda RBX: 00007f8ff7069700 RCX: 00007f8ff9b15f41
[ 109.628207] RDX: 00007f8ff70699d0 RSI: 00007f8ff70692f0 RDI: 00000000003d0f00
[ 109.628767] RBP: 00007ffc270a6b30 R08: 00007f8ff7069700 R09: 00007f8ff7069700
[ 109.629324] R10: 00007f8ff70699d0 R11: 0000000000000206 R12: 00007ffc270a69ae
[ 109.629886] R13: 00007ffc270a69af R14: 00007f8ff7069300 R15: 0000000000022000
[ 109.630447]
[ 109.630636] Modules linked in:
[ 109.630898] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#6] SMP KASAN NOPTI
[ 109.631725] ---[ end trace 0000000000000000 ]---
[ 109.631786] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.632162] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.632757] CPU: 1 UID: 0 PID: 34 Comm: kworker/u9:1 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.632776] Tainted: [D]=DIE, [W]=WARN
[ 109.632781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.632788] Workqueue: events_unbound cfg80211_wiphy_work
[ 109.632804] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.632820] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.632832] RSP: 0018:ffff888009a97700 EFLAGS: 00010212
[ 109.632841] RAX: 0000000000000032 RBX: ffffffffffffffa2 RCX: 0000000000000002
[ 109.632849] RDX: ffff888009a7b700 RSI: ffffffff818995b7 RDI: 0000000000000192
[ 109.632856] RBP: ffff888009a97970 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.632864] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.632871] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.632881] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.632892] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.632899] CR2: 00007ffd93b7aea8 CR3: 000000004213a000 CR4: 0000000000350ef0
[ 109.632907] Call Trace:
[ 109.632911]
[ 109.632917] ? __pfx_perf_tp_event+0x10/0x10
[ 109.632934] ? ret_from_fork_asm+0x1a/0x30
[ 109.632950] ? stack_trace_save+0x8e/0xc0
[ 109.632964] ? stack_depot_save_flags+0x2c/0xa20
[ 109.632976] ? kasan_save_stack+0x34/0x50
[ 109.632991] ? kasan_save_stack+0x24/0x50
[ 109.633004] ? kasan_save_track+0x14/0x30
[ 109.633017] ? __kasan_save_free_info+0x3a/0x60
[ 109.633029] ? __kasan_slab_free+0x3f/0x50
[ 109.633043] ? kmem_cache_free+0x2a1/0x540
[ 109.633054] ? kfree_skbmem+0x18a/0x1f0
[ 109.633068] ? sk_skb_reason_drop+0x10e/0x1b0
[ 109.633088] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.633103] perf_trace_run_bpf_submit+0xef/0x180
[ 109.633120] perf_trace_contention_begin+0x235/0x3e0
[ 109.633135] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.633149] ? lock_acquire+0x18c/0x2f0
[ 109.633163] trace_contention_begin+0xae/0x110
[ 109.633177] __mutex_lock+0x14b/0x1020
[ 109.633193] ? cfg80211_wiphy_work+0x7e/0x480
[ 109.633204] ? cfg80211_wiphy_work+0x7e/0x480
[ 109.633215] ? lock_release+0x1c7/0x290
[ 109.633229] ? __pfx___mutex_lock+0x10/0x10
[ 109.633611] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.634517] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 109.634827] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.635484] ? __pfx_try_to_wake_up+0x10/0x10
[ 109.635921]
[ 109.636288] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.637718] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.638128] cfg80211_wiphy_work+0x7e/0x480
[ 109.638690] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.639251] process_one_work+0x8e1/0x19c0
[ 109.639812] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.640372] ? __pfx_process_one_work+0x10/0x10
[ 109.640928] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.641562] ? move_linked_works+0x172/0x270
[ 109.641583] ? assign_work+0x196/0x240
[ 109.642034] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.642599] worker_thread+0x67e/0xe90
[ 109.642816] FS: 000055557c15a400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 109.642998] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.643341] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.643672] ? __pfx_worker_thread+0x10/0x10
[ 109.644003] CR2: 00007f8ff7069718 CR3: 0000000042e74000 CR4: 0000000000350ef0
[ 109.644374] kthread+0x3c8/0x740
[ 109.644704] note: syz-executor.7[3934] exited with preempt_count 2
[ 109.645024] ? __pfx_kthread+0x10/0x10
[ 109.662480] ? ret_from_fork+0x23/0x430
[ 109.662818] ? lock_release+0xc8/0x290
[ 109.663137] ? __pfx_kthread+0x10/0x10
[ 109.663458] ret_from_fork+0x34b/0x430
[ 109.663780] ? __pfx_kthread+0x10/0x10
[ 109.664100] ret_from_fork_asm+0x1a/0x30
[ 109.664437]
[ 109.664630] Modules linked in:
[ 109.664895] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#7] SMP KASAN NOPTI
[ 109.665784] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.665806] ---[ end trace 0000000000000000 ]---
[ 109.666382] CPU: 0 UID: 0 PID: 3940 Comm: syz-executor.1 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.666402] Tainted: [D]=DIE, [W]=WARN
[ 109.666407] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.666414] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.666431] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.666442] RSP: 0018:ffff8880166b7540 EFLAGS: 00010212
[ 109.666452] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 109.666459] RDX: ffff888043db0000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.666467] RBP: ffff8880166b77b0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.666475] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.666482] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.666491] FS: 0000555558514400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 109.666502] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.666510] CR2: 00007f5ac356a718 CR3: 0000000045d19000 CR4: 0000000000350ef0
[ 109.666517] Call Trace:
[ 109.666521]
[ 109.666528] ? __pfx_perf_tp_event+0x10/0x10
[ 109.666543] ? __kernel_text_address+0xd/0x40
[ 109.666559] ? arch_stack_walk+0x9c/0xf0
[ 109.666574] ? stack_trace_save+0x8e/0xc0
[ 109.666589] ? stack_depot_save_flags+0x2c/0xa20
[ 109.666603] ? lock_acquire+0x18c/0x2f0
[ 109.666617] ? lock_release+0x1c7/0x290
[ 109.666630] ? lock_acquire+0x18c/0x2f0
[ 109.666643] ? lock_acquire+0x18c/0x2f0
[ 109.666655] ? lock_release+0x1c7/0x290
[ 109.666668] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.666683] perf_trace_run_bpf_submit+0xef/0x180
[ 109.666700] perf_trace_contention_begin+0x235/0x3e0
[ 109.666715] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.666730] ? lock_acquire+0x18c/0x2f0
[ 109.666744] trace_contention_begin+0xae/0x110
[ 109.666758] __mutex_lock+0x14b/0x1020
[ 109.666776] ? freezer_fork+0xc1/0x500
[ 109.666788] ? freezer_fork+0xc1/0x500
[ 109.666800] ? delete_node+0x20e/0x730
[ 109.666815] ? __pfx___mutex_lock+0x10/0x10
[ 109.666832] ? __radix_tree_replace+0x117/0x300
[ 109.666848] ? lock_acquire+0x18c/0x2f0
[ 109.666860] ? do_raw_spin_lock+0x123/0x260
[ 109.666875] ? lock_release+0x1c7/0x290
[ 109.666888] freezer_fork+0xc1/0x500
[ 109.666900] cgroup_post_fork+0x31f/0x9a0
[ 109.666917] ? __pfx_cgroup_post_fork+0x10/0x10
[ 109.666931] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 109.667331] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.668284] ? lock_release+0x1c7/0x290
[ 109.668299] copy_process+0x5e31/0x73c0
[ 109.668630] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.669298] ? __pfx_copy_process+0x10/0x10
[ 109.669682] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.671088] ? lock_acquire+0x18c/0x2f0
[ 109.671528]
[ 109.672086] ? lock_release+0x1c7/0x290
[ 109.672686] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.673239] ? __pfx_lru_add+0x10/0x10
[ 109.673821] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.674366] kernel_clone+0xea/0x7f0
[ 109.675028] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.675520] ? __pfx_kernel_clone+0x10/0x10
[ 109.675534] ? vma_start_read+0x304/0x8e0
[ 109.676058] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.676263] ? __pfx___handle_mm_fault+0x10/0x10
[ 109.676446] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.676774] ? css_rstat_updated+0x1b8/0x4d0
[ 109.677100] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.677410] ? __pfx_css_rstat_updated+0x10/0x10
[ 109.677732] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.678098] __do_sys_clone+0xce/0x120
[ 109.678401] CR2: 00007ffd93b7aea8 CR3: 000000004213a000 CR4: 0000000000350ef0
[ 109.678695] ? __pfx___do_sys_clone+0x10/0x10
[ 109.678987] note: kworker/u9:1[34] exited with preempt_count 2
[ 109.679292] ? count_memcg_events+0x32b/0x420
[ 109.697941] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.698358] do_syscall_64+0xbf/0x360
[ 109.698662] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.699068] RIP: 0033:0x7f5ac6016f41
[ 109.699364] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 109.700768] RSP: 002b:00007ffd69ce8928 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 109.701360] RAX: ffffffffffffffda RBX: 00007f5ac356a700 RCX: 00007f5ac6016f41
[ 109.701919] RDX: 00007f5ac356a9d0 RSI: 00007f5ac356a2f0 RDI: 00000000003d0f00
[ 109.702473] RBP: 00007ffd69ce8b60 R08: 00007f5ac356a700 R09: 00007f5ac356a700
[ 109.703034] R10: 00007f5ac356a9d0 R11: 0000000000000206 R12: 00007ffd69ce89de
[ 109.703588] R13: 00007ffd69ce89df R14: 00007f5ac356a300 R15: 0000000000022000
[ 109.704146]
[ 109.704336] Modules linked in:
[ 109.704596] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#8] SMP KASAN NOPTI
[ 109.705328] ---[ end trace 0000000000000000 ]---
[ 109.705412] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.705425] CPU: 1 UID: 0 PID: 113 Comm: systemd-udevd Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.705443] Tainted: [D]=DIE, [W]=WARN
[ 109.705447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.705454] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.705471] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.705482] RSP: 0018:ffff88800a4378c0 EFLAGS: 00010212
[ 109.705492] RAX: 0000000000000032 RBX: ffffffffffffffa2 RCX: 0000000000000002
[ 109.705499] RDX: ffff8880158b9b80 RSI: ffffffff818995b7 RDI: 0000000000000192
[ 109.705507] RBP: ffff88800a437b30 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.705514] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.705522] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.705531] FS: 00007f7ef44e68c0(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.705542] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.705549] CR2: 00007ffd93b7aea8 CR3: 000000000bd8f000 CR4: 0000000000350ef0
[ 109.705557] Call Trace:
[ 109.705560]
[ 109.705564] ? lock_acquire+0x18c/0x2f0
[ 109.705579] ? __pfx_perf_tp_event+0x10/0x10
[ 109.705594] ? __kernel_text_address+0xd/0x40
[ 109.705607] ? unwind_get_return_address+0x59/0xa0
[ 109.705624] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 109.705638] ? arch_stack_walk+0x9c/0xf0
[ 109.705651] ? stack_trace_save+0x8e/0xc0
[ 109.705664] ? stack_depot_save_flags+0x2c/0xa20
[ 109.705683] ? kasan_save_stack+0x34/0x50
[ 109.705697] ? kasan_save_stack+0x24/0x50
[ 109.705709] ? kasan_save_track+0x14/0x30
[ 109.705722] ? __kasan_save_free_info+0x3a/0x60
[ 109.705733] ? __kasan_slab_free+0x3f/0x50
[ 109.705748] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.705763] ? map_id_range_up+0x1d5/0x350
[ 109.705778] perf_trace_run_bpf_submit+0xef/0x180
[ 109.705795] perf_trace_contention_begin+0x235/0x3e0
[ 109.705809] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.705824] ? lock_acquire+0x18c/0x2f0
[ 109.705837] trace_contention_begin+0xae/0x110
[ 109.705851] __mutex_lock+0x14b/0x1020
[ 109.706232] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.706779] ? fdget_pos+0x2a8/0x380
[ 109.706793] ? fdget_pos+0x2a8/0x380
[ 109.707701] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.707976] ? __pfx___mutex_lock+0x10/0x10
[ 109.708625] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.708953] ? __pfx_kernfs_iop_getattr+0x10/0x10
[ 109.710382]
[ 109.710748] ? vfs_getattr_nosec+0x2bc/0x3e0
[ 109.711297] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.711814] ? populate_seccomp_data+0x213/0x540
[ 109.712383] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.712894] ? __seccomp_filter+0x535/0xfa0
[ 109.713459] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.714035] ? __pfx___do_sys_newfstat+0x10/0x10
[ 109.714496] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.715002] fdget_pos+0x2a8/0x380
[ 109.715208] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.715380] __x64_sys_getdents64+0xe0/0x2c0
[ 109.715698] FS: 0000555558514400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 109.716017] ? __pfx___x64_sys_getdents64+0x10/0x10
[ 109.716375] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.716720] ? __secure_computing+0x18d/0x290
[ 109.717135] CR2: 00007f5ac356a718 CR3: 0000000045d19000 CR4: 0000000000350ef0
[ 109.717430] do_syscall_64+0xbf/0x360
[ 109.717442] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.717763] note: syz-executor.1[3940] exited with preempt_count 2
[ 109.718104] RIP: 0033:0x7f7ef496d9c7
[ 109.733561] Code: 0f 1f 00 48 8b 47 20 c3 66 2e 0f 1f 84 00 00 00 00 00 90 48 81 fa ff ff ff 7f b8 ff ff ff 7f 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 99 74 0f 00 f7 d8 64 89 02 48
[ 109.734878] RSP: 002b:00007ffe5abfa0b8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[ 109.735429] RAX: ffffffffffffffda RBX: 0000562f122248a0 RCX: 00007f7ef496d9c7
[ 109.735947] RDX: 0000000000008000 RSI: 0000562f122248d0 RDI: 0000000000000012
[ 109.736465] RBP: 0000562f122248d0 R08: 0000000000000030 R09: 00007f7ef4a65be0
[ 109.736983] R10: 0000000000000010 R11: 0000000000000293 R12: fffffffffffffe00
[ 109.737505] R13: 0000562f122248a4 R14: 0000000000000000 R15: 0000562f121b4db0
[ 109.738034]
[ 109.738210] Modules linked in:
[ 109.738592] ---[ end trace 0000000000000000 ]---
[ 109.738945] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.739297] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.740699] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.741093] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.741638] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.742166] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.742703] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.743228] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.743765] FS: 00007f7ef44e68c0(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.744366] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.744794] CR2: 00007ffd93b7aea8 CR3: 000000000bd8f000 CR4: 0000000000350ef0
[ 109.745316] note: systemd-udevd[113] exited with preempt_count 2
[ 109.745953] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#9] SMP KASAN NOPTI
[ 109.746773] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.747257] kmemleak: Found object by alias at 0x607f1a634c4c
[ 109.747271] CPU: 0 UID: 0 PID: 3942 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.747289] Tainted: [D]=DIE, [W]=WARN
[ 109.747293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.747299] Call Trace:
[ 109.747303]
[ 109.747307] dump_stack_lvl+0xca/0x120
[ 109.747327] __lookup_object+0x94/0xb0
[ 109.747342] delete_object_full+0x27/0x70
[ 109.747362] free_percpu+0x30/0x1160
[ 109.747379] ? arch_uprobe_clear_state+0x16/0x140
[ 109.747396] futex_hash_free+0x38/0xc0
[ 109.747410] mmput+0x2d3/0x390
[ 109.747427] do_exit+0x79d/0x2970
[ 109.747441] ? __pfx_do_exit+0x10/0x10
[ 109.747454] ? find_held_lock+0x2b/0x80
[ 109.747471] ? get_signal+0x835/0x2340
[ 109.747489] do_group_exit+0xd3/0x2a0
[ 109.747503] get_signal+0x2315/0x2340
[ 109.747519] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.747531] ? __pfx_get_signal+0x10/0x10
[ 109.747547] ? __schedule+0xe91/0x3590
[ 109.747563] arch_do_signal_or_restart+0x80/0x790
[ 109.747580] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 109.747595] ? __x64_sys_futex+0x1c9/0x4d0
[ 109.747608] ? __x64_sys_futex+0x1d2/0x4d0
[ 109.747620] ? __sys_socket+0x9f/0x260
[ 109.747635] ? __pfx___x64_sys_futex+0x10/0x10
[ 109.747647] ? xfd_validate_state+0x55/0x180
[ 109.747666] exit_to_user_mode_loop+0x8b/0x110
[ 109.747678] do_syscall_64+0x2f7/0x360
[ 109.747688] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.747699] RIP: 0033:0x7f8fdf965b19
[ 109.747707] Code: Unable to access opcode bytes at 0x7f8fdf965aef.
[ 109.747712] RSP: 002b:00007f8fdcedb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 109.747723] RAX: ffffffffffffffe0 RBX: 00007f8fdfa78f60 RCX: 00007f8fdf965b19
[ 109.747730] RDX: 0000000000000003 RSI: 0000000020001f40 RDI: 0000000000000003
[ 109.747737] RBP: 00007f8fdf9bff6d R08: 0000000000000000 R09: 0000000000000000
[ 109.747744] R10: 00000000000080c0 R11: 0000000000000246 R12: 0000000000000000
[ 109.747751] R13: 00007ffe4f8425cf R14: 00007f8fdcedb300 R15: 0000000000022000
[ 109.747761]
[ 109.747765] kmemleak: Object (percpu) 0x607f1a634c48 (size 8):
[ 109.747772] kmemleak: comm "syz-executor.1", pid 3941, jiffies 4294776060
[ 109.747779] kmemleak: min_count = 1
[ 109.747783] kmemleak: count = 0
[ 109.747786] kmemleak: flags = 0x21
[ 109.747790] kmemleak: checksum = 0
[ 109.747794] kmemleak: backtrace:
[ 109.747798] pcpu_alloc_noprof+0x87a/0x1170
[ 109.747812] perf_trace_event_init+0x366/0xa10
[ 109.747826] perf_trace_init+0x1a4/0x2f0
[ 109.747837] perf_tp_event_init+0xa6/0x120
[ 109.747853] perf_try_init_event+0x140/0x9f0
[ 109.747866] perf_event_alloc.part.0+0x118e/0x45f0
[ 109.747883] __do_sys_perf_event_open+0x719/0x2c20
[ 109.747895] do_syscall_64+0xbf/0x360
[ 109.747903] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.768494] CPU: 1 UID: 0 PID: 3858 Comm: kworker/u8:2 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.769431] Tainted: [D]=DIE, [W]=WARN
[ 109.769746] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.770406] Workqueue: ipv6_addrconf addrconf_dad_work
[ 109.770840] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.771220] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.772667] RSP: 0018:ffff888016d87680 EFLAGS: 00010212
[ 109.773098] RAX: 0000000000000032 RBX: ffffffffffffffa2 RCX: 0000000000000002
[ 109.773676] RDX: ffff88804468d280 RSI: ffffffff818995b7 RDI: 0000000000000192
[ 109.774253] RBP: ffff888016d878f0 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.774820] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.775392] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.775963] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.776602] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.777070] CR2: 00007ffd93b7aea8 CR3: 0000000042e74000 CR4: 0000000000350ef0
[ 109.777639] Call Trace:
[ 109.777859]
[ 109.778045] ? __pfx_perf_tp_event+0x10/0x10
[ 109.778407] ? do_raw_write_lock+0x11c/0x3a0
[ 109.778775] ? do_raw_write_lock+0x11c/0x3a0
[ 109.779135] ? lock_acquire+0x18c/0x2f0
[ 109.779456] ? __asan_memcpy+0x3d/0x60
[ 109.779773] ? neigh_resolve_output+0x49a/0x7f0
[ 109.780150] ? lock_release+0x1c7/0x290
[ 109.780476] ? ip6_finish_output2+0x988/0x1aa0
[ 109.780878] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.781286] perf_trace_run_bpf_submit+0xef/0x180
[ 109.781687] perf_trace_contention_begin+0x235/0x3e0
[ 109.782098] ? __mutex_unlock_slowpath+0x157/0x750
[ 109.782502] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.782953] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 109.783382] ? lock_release+0x1c7/0x290
[ 109.783707] ? lock_acquire+0x18c/0x2f0
[ 109.784035] trace_contention_begin+0xae/0x110
[ 109.784409] __mutex_lock+0x14b/0x1020
[ 109.784732] ? addrconf_dad_work+0xf6/0x11a0
[ 109.785093] ? addrconf_dad_work+0xf6/0x11a0
[ 109.785457] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 109.785839] ? __pfx___mutex_lock+0x10/0x10
[ 109.786194] ? __update_load_avg_se+0x428/0xa40
[ 109.786576] ? lock_release+0x1c7/0x290
[ 109.786902] ? __virt_addr_valid+0x100/0x5d0
[ 109.787267] addrconf_dad_work+0xf6/0x11a0
[ 109.787618] ? __pfx_addrconf_dad_work+0x10/0x10
[ 109.788007] ? lock_acquire+0x18c/0x2f0
[ 109.788334] ? lock_release+0x1c7/0x290
[ 109.788660] process_one_work+0x8e1/0x19c0
[ 109.789010] ? __pfx_process_one_work+0x10/0x10
[ 109.789385] ? move_linked_works+0x172/0x270
[ 109.789753] ? assign_work+0x196/0x240
[ 109.790071] worker_thread+0x67e/0xe90
[ 109.790390] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.790810] ? __pfx_worker_thread+0x10/0x10
[ 109.791166] kthread+0x3c8/0x740
[ 109.791445] ? __pfx_kthread+0x10/0x10
[ 109.791763] ? ret_from_fork+0x23/0x430
[ 109.792089] ? lock_release+0xc8/0x290
[ 109.792408] ? __pfx_kthread+0x10/0x10
[ 109.792723] ret_from_fork+0x34b/0x430
[ 109.793045] ? __pfx_kthread+0x10/0x10
[ 109.793366] ret_from_fork_asm+0x1a/0x30
[ 109.793712]
[ 109.793901] Modules linked in:
[ 109.796057] ---[ end trace 0000000000000000 ]---
[ 109.797082] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.797494] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.798973] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.799415] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.800004] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.800602] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.801187] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.801790] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.802387] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.803040] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.803524] CR2: 00007ffd93b7aea8 CR3: 0000000042e74000 CR4: 0000000000350ef0
[ 109.804097] note: kworker/u8:2[3858] exited with preempt_count 2
[ 109.804759] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#10] SMP KASAN NOPTI
[ 109.805658] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.806269] CPU: 1 UID: 0 PID: 270 Comm: kworker/u10:4 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.807209] Tainted: [D]=DIE, [W]=WARN
[ 109.807517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.808179] Workqueue: events_unbound cfg80211_wiphy_work
[ 109.808620] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.809005] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.810464] RSP: 0018:ffff88800f58f700 EFLAGS: 00010212
[ 109.810889] RAX: 0000000000000032 RBX: ffffffffffffffa2 RCX: 0000000000000002
[ 109.811462] RDX: ffff8880185a8000 RSI: ffffffff818995b7 RDI: 0000000000000192
[ 109.812034] RBP: ffff88800f58f970 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.812607] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.813178] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.813759] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.814408] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.814878] CR2: 00007ffd93b7aea8 CR3: 0000000042e74000 CR4: 0000000000350ef0
[ 109.815450] Call Trace:
[ 109.815662]
[ 109.815846] ? lock_release+0xc8/0x290
[ 109.816167] ? __pfx_perf_tp_event+0x10/0x10
[ 109.816529] ? arch_stack_walk+0x86/0xf0
[ 109.816865] ? ret_from_fork_asm+0x1a/0x30
[ 109.817213] ? stack_trace_save+0x8e/0xc0
[ 109.817548] ? stack_depot_save_flags+0x2c/0xa20
[ 109.817941] ? kasan_save_stack+0x34/0x50
[ 109.818281] ? kasan_save_stack+0x24/0x50
[ 109.818621] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.819031] perf_trace_run_bpf_submit+0xef/0x180
[ 109.819427] perf_trace_contention_begin+0x235/0x3e0
[ 109.819844] ? trace_pelt_cfs_tp+0xdf/0x130
[ 109.820191] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.820643] ? __pick_eevdf+0x326/0x570
[ 109.820965] ? update_curr+0x71/0x500
[ 109.821273] ? lock_acquire+0x18c/0x2f0
[ 109.821599] trace_contention_begin+0xae/0x110
[ 109.821982] __mutex_lock+0x14b/0x1020
[ 109.822302] ? cfg80211_wiphy_work+0x7e/0x480
[ 109.822672] ? cfg80211_wiphy_work+0x7e/0x480
[ 109.823035] ? lock_release+0x1c7/0x290
[ 109.823354] ? lock_release+0x1c7/0x290
[ 109.823676] ? __pfx___mutex_lock+0x10/0x10
[ 109.824029] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 109.824442] ? __pfx_try_to_wake_up+0x10/0x10
[ 109.824818] cfg80211_wiphy_work+0x7e/0x480
[ 109.825169] process_one_work+0x8e1/0x19c0
[ 109.825515] ? __pfx_process_one_work+0x10/0x10
[ 109.825902] ? move_linked_works+0x172/0x270
[ 109.826266] ? assign_work+0x196/0x240
[ 109.826587] worker_thread+0x67e/0xe90
[ 109.826907] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.827337] ? __pfx_worker_thread+0x10/0x10
[ 109.827694] kthread+0x3c8/0x740
[ 109.827974] ? __pfx_kthread+0x10/0x10
[ 109.828294] ? ret_from_fork+0x23/0x430
[ 109.828622] ? lock_release+0xc8/0x290
[ 109.828942] ? __pfx_kthread+0x10/0x10
[ 109.829263] ret_from_fork+0x34b/0x430
[ 109.829587] ? __pfx_kthread+0x10/0x10
[ 109.829909] ret_from_fork_asm+0x1a/0x30
[ 109.830246]
[ 109.830438] Modules linked in:
[ 109.830796] ---[ end trace 0000000000000000 ]---
[ 109.831178] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.831628] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.833197] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.833753] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.834523] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.835095] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.835730] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.836301] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.836994] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.837819] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.838300] CR2: 00007ffd93b7aea8 CR3: 0000000042e74000 CR4: 0000000000350ef0
[ 109.838899] note: kworker/u10:4[270] exited with preempt_count 2
[ 109.841483] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#11] SMP KASAN NOPTI
[ 109.842390] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.842996] CPU: 1 UID: 0 PID: 286 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.843944] Tainted: [D]=DIE, [W]=WARN
[ 109.844254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.844915] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.845293] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.846520] systemd-journal (98) used greatest stack depth: 24616 bytes left
[ 109.846747] RSP: 0018:ffff88801bd276c0 EFLAGS: 00010212
[ 109.847766] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 109.848337] RDX: ffff888016f05280 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.848927] RBP: ffff88801bd27930 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.849525] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.850132] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.850732] FS: 0000555576d32400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.851409] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.851898] CR2: 00007ffd93b7aea8 CR3: 000000003df67000 CR4: 0000000000350ef0
[ 109.852503] Call Trace:
[ 109.852730]
[ 109.852926] ? kasan_save_stack+0x34/0x50
[ 109.853285] ? __do_wait+0x218/0x8f0
[ 109.853620] ? __pfx_perf_tp_event+0x10/0x10
[ 109.854016] ? delete_node+0x20e/0x730
[ 109.854359] ? destroy_inode+0x12b/0x1b0
[ 109.854709] ? __radix_tree_delete+0x13e/0x380
[ 109.855106] ? radix_tree_delete_item+0xef/0x230
[ 109.855515] ? lock_acquire+0x18c/0x2f0
[ 109.855858] ? lock_acquire+0x18c/0x2f0
[ 109.856202] ? lock_release+0x1c7/0x290
[ 109.856548] ? __virt_addr_valid+0x100/0x5d0
[ 109.856931] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.857381] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.857816] perf_trace_run_bpf_submit+0xef/0x180
[ 109.858232] perf_trace_contention_begin+0x235/0x3e0
[ 109.858672] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.859149] ? __pfx_release_task+0x10/0x10
[ 109.859518] ? lock_acquire+0x18c/0x2f0
[ 109.859863] ? lock_release+0x1c7/0x290
[ 109.860204] trace_contention_begin+0xae/0x110
[ 109.860600] __mutex_lock+0x14b/0x1020
[ 109.860941] ? anon_pipe_write+0x12a/0x1a80
[ 109.861307] ? anon_pipe_write+0x12a/0x1a80
[ 109.861672] ? avc_has_perm+0x12b/0x1d0
[ 109.862034] ? __pfx___mutex_lock+0x10/0x10
[ 109.862408] ? __pfx_wait_consider_task+0x10/0x10
[ 109.862818] ? lock_acquire+0x18c/0x2f0
[ 109.863161] ? inode_has_perm+0x170/0x1c0
[ 109.863510] anon_pipe_write+0x12a/0x1a80
[ 109.863863] ? lock_release+0x1c7/0x290
[ 109.864209] ? lock_acquire+0x18c/0x2f0
[ 109.864559] ? __pfx_anon_pipe_write+0x10/0x10
[ 109.864948] ? selinux_file_permission+0x99/0x600
[ 109.865366] ? security_file_permission+0x22/0x90
[ 109.865830] vfs_write+0xbe9/0x1150
[ 109.866153] ? __pfx_anon_pipe_write+0x10/0x10
[ 109.866551] ? __pfx_vfs_write+0x10/0x10
[ 109.866904] ? __do_sys_wait4+0xb3/0x150
[ 109.867259] ? common_nsleep+0xaa/0xd0
[ 109.867604] ksys_write+0x1ef/0x240
[ 109.867925] ? __pfx_ksys_write+0x10/0x10
[ 109.868285] do_syscall_64+0xbf/0x360
[ 109.868620] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.869071] RIP: 0033:0x7f8fdf9185ff
[ 109.869394] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 109.870942] RSP: 002b:00007ffe4f8427f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 109.871599] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f8fdf9185ff
[ 109.872218] RDX: 000000000000000c RSI: 00007ffe4f8428e0 RDI: 00000000000000f8
[ 109.872835] RBP: 00007ffe4f84287c R08: 0000000000000000 R09: 00007f8fdfa55000
[ 109.873457] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 109.874075] R13: 000000000001aaa8 R14: 0000000000000003 R15: 00007ffe4f8428e0
[ 109.874690]
[ 109.874899] Modules linked in:
[ 109.876149] ---[ end trace 0000000000000000 ]---
[ 109.877339] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.877831] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.879409] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.879853] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.880513] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.881110] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.881761] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.882368] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.882957] FS: 0000555576d32400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.883641] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.884127] CR2: 00007ffd93b7aea8 CR3: 000000003df67000 CR4: 0000000000350ef0
[ 109.884731] note: syz-executor.2[286] exited with preempt_count 2
[ 109.886503] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#12] SMP KASAN NOPTI
[ 109.887429] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.888046] CPU: 1 UID: 0 PID: 1 Comm: systemd Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.888955] Tainted: [D]=DIE, [W]=WARN
[ 109.889273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.889957] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.890347] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.891826] RSP: 0018:ffff8880095476c0 EFLAGS: 00010212
[ 109.892263] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 109.892847] RDX: ffff8880094f8000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.893430] RBP: ffff888009547930 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.894024] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.894606] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.895193] FS: 00007f2baa854900(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.895847] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.896323] CR2: 00007ffd93b7aea8 CR3: 000000000f78b000 CR4: 0000000000350ef0
[ 109.896910] Call Trace:
[ 109.897124]
[ 109.897316] ? kasan_save_stack+0x34/0x50
[ 109.897664] ? __pfx_perf_tp_event+0x10/0x10
[ 109.898045] ? kfree_skbmem+0x18a/0x1f0
[ 109.898380] ? ___sys_recvmsg+0xf1/0x190
[ 109.898726] ? __sys_recvmsg+0x14d/0x200
[ 109.899067] ? do_syscall_64+0xbf/0x360
[ 109.899400] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.899838] ? __lock_acquire+0x694/0x1b70
[ 109.900192] ? map_id_range_up+0x1d5/0x350
[ 109.900548] ? __pfx_map_id_range_up+0x10/0x10
[ 109.900933] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 109.901364] ? css_rstat_updated+0x1b8/0x4d0
[ 109.901751] ? __pfx_css_rstat_updated+0x10/0x10
[ 109.902148] ? lock_is_held_type+0x9e/0x120
[ 109.902520] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.902940] perf_trace_run_bpf_submit+0xef/0x180
[ 109.903346] perf_trace_contention_begin+0x235/0x3e0
[ 109.903768] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.904229] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.904663] ? lock_acquire+0x18c/0x2f0
[ 109.904996] trace_contention_begin+0xae/0x110
[ 109.905378] __mutex_lock+0x14b/0x1020
[ 109.905716] ? ep_send_events+0xff/0xaa0
[ 109.906057] ? ep_send_events+0xff/0xaa0
[ 109.906400] ? __pfx___mutex_lock+0x10/0x10
[ 109.906762] ? lock_acquire+0x15e/0x2f0
[ 109.907093] ? find_held_lock+0x2b/0x80
[ 109.907430] ? schedule+0x2c7/0x390
[ 109.907738] ? lock_release+0xc8/0x290
[ 109.908066] ep_send_events+0xff/0xaa0
[ 109.908395] ? schedule_hrtimeout_range_clock+0x1c0/0x310
[ 109.908849] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10
[ 109.909335] ? __pfx_ep_send_events+0x10/0x10
[ 109.909719] ? lock_release+0xc8/0x290
[ 109.910050] do_epoll_wait+0x42e/0xee0
[ 109.910381] ? __pfx_do_epoll_wait+0x10/0x10
[ 109.910752] ? __pfx_css_rstat_updated+0x10/0x10
[ 109.911154] ? __pfx_ep_autoremove_wake_function+0x10/0x10
[ 109.911620] ? handle_mm_fault+0x590/0x9b0
[ 109.911976] __x64_sys_epoll_wait+0x15b/0x280
[ 109.912355] ? __task_pid_nr_ns+0x2e/0x4f0
[ 109.912706] ? __pfx___x64_sys_epoll_wait+0x10/0x10
[ 109.913120] ? __task_pid_nr_ns+0x1a6/0x4f0
[ 109.913475] ? lock_release+0xc8/0x290
[ 109.913807] ? lock_is_held_type+0x9e/0x120
[ 109.914169] do_syscall_64+0xbf/0x360
[ 109.914486] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.914914] RIP: 0033:0x7f2bab031116
[ 109.915226] Code: 10 89 7c 24 0c 89 4c 24 1c e8 86 6c f8 ff 44 8b 54 24 1c 8b 54 24 18 41 89 c0 48 8b 74 24 10 8b 7c 24 0c b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 32 44 89 c7 89 44 24 0c e8 b6 6c f8 ff 8b 44
[ 109.916709] RSP: 002b:00007fffa1aace00 EFLAGS: 00000293 ORIG_RAX: 00000000000000e8
[ 109.917332] RAX: ffffffffffffffda RBX: 000055805d53db70 RCX: 00007f2bab031116
[ 109.917926] RDX: 000000000000002f RSI: 000055805dd9ffa0 RDI: 0000000000000005
[ 109.918507] RBP: ffffffffffffffff R08: 0000000000000000 R09: f893dfdd3aabb100
[ 109.919087] R10: 00000000ffffffff R11: 0000000000000293 R12: 0000000000000001
[ 109.919670] R13: 000000000000002f R14: 0000000000000000 R15: 0000558040628b4e
[ 109.920260]
[ 109.920457] Modules linked in:
[ 109.920797] ---[ end trace 0000000000000000 ]---
[ 109.921192] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.921673] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.923278] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.923783] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.924431] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.925014] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.925689] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.926282] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.926890] FS: 00007f2baa854900(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.927565] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.928046] CR2: 00007ffd93b7aea8 CR3: 000000000f78b000 CR4: 0000000000350ef0
[ 109.928650] note: systemd[1] exited with preempt_count 2
[ 109.929127] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#13] SMP KASAN NOPTI
[ 109.930053] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.930678] CPU: 1 UID: 0 PID: 3812 Comm: systemd-udevd Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.931645] Tainted: [D]=DIE, [W]=WARN
[ 109.931962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.932636] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.933027] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.934519] RSP: 0018:ffff88804447f6c0 EFLAGS: 00010212
[ 109.934959] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 109.935547] RDX: ffff888007160000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.936129] RBP: ffff88804447f930 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.936708] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.937290] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.937885] FS: 00007f7ef44e68c0(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.938545] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.939026] CR2: 00007ffd93b7aea8 CR3: 0000000044983000 CR4: 0000000000350ef0
[ 109.939612] Call Trace:
[ 109.939827]
[ 109.940018] ? __pfx_perf_tp_event+0x10/0x10
[ 109.940392] ? try_to_wake_up+0x8ae/0x11d0
[ 109.940744] ? lock_release+0xc8/0x290
[ 109.941069] ? lock_release+0xc8/0x290
[ 109.941393] ? do_raw_spin_unlock+0x53/0x220
[ 109.941770] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 109.942194] ? try_to_wake_up+0x8ae/0x11d0
[ 109.942551] ? __pfx_try_to_wake_up+0x10/0x10
[ 109.942931] ? css_rstat_updated+0x1b8/0x4d0
[ 109.943306] ? __pfx_css_rstat_updated+0x10/0x10
[ 109.943703] ? lock_is_held_type+0x9e/0x120
[ 109.944066] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.944480] perf_trace_run_bpf_submit+0xef/0x180
[ 109.944884] perf_trace_contention_begin+0x235/0x3e0
[ 109.945304] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.945772] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.946203] ? lock_acquire+0x18c/0x2f0
[ 109.946540] trace_contention_begin+0xae/0x110
[ 109.946924] __mutex_lock+0x14b/0x1020
[ 109.947242] ? ep_send_events+0xff/0xaa0
[ 109.947570] ? ep_send_events+0xff/0xaa0
[ 109.947897] ? __pfx___mutex_lock+0x10/0x10
[ 109.948243] ? lock_acquire+0x15e/0x2f0
[ 109.948542] ? find_held_lock+0x2b/0x80
[ 109.948844] ? schedule+0x2c7/0x390
[ 109.949120] ? lock_release+0xc8/0x290
[ 109.949414] ep_send_events+0xff/0xaa0
[ 109.949713] ? schedule_hrtimeout_range_clock+0x1c0/0x310
[ 109.950119] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10
[ 109.950553] ? __pfx_ep_send_events+0x10/0x10
[ 109.950894] ? lock_release+0xc8/0x290
[ 109.951188] do_epoll_wait+0x42e/0xee0
[ 109.951482] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 109.951869] ? __pfx_do_epoll_wait+0x10/0x10
[ 109.952201] ? populate_seccomp_data+0x213/0x540
[ 109.952556] ? __pfx_ep_autoremove_wake_function+0x10/0x10
[ 109.952971] ? __pfx___seccomp_filter+0x10/0x10
[ 109.953320] __x64_sys_epoll_wait+0x15b/0x280
[ 109.953660] ? __pfx___x64_sys_epoll_wait+0x10/0x10
[ 109.954037] ? ksys_write+0x1a3/0x240
[ 109.954323] ? __secure_computing+0x18d/0x290
[ 109.954664] do_syscall_64+0xbf/0x360
[ 109.954951] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.955331] RIP: 0033:0x7f7ef49a50d6
[ 109.955609] Code: 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 18 48 89 74 24
[ 109.956924] RSP: 002b:00007ffe5abfa188 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8
[ 109.957477] RAX: ffffffffffffffda RBX: 0000562f121b14e0 RCX: 00007f7ef49a50d6
[ 109.958003] RDX: 0000000000000002 RSI: 0000562f121c16a0 RDI: 0000000000000003
[ 109.958521] RBP: ffffffffffffffff R08: 0000000000000002 R09: 0000000000000004
[ 109.959038] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001
[ 109.959556] R13: 0000000000000002 R14: 0000562efe3ce2e6 R15: 0000000000000000
[ 109.960076]
[ 109.960252] Modules linked in:
[ 109.960539] ---[ end trace 0000000000000000 ]---
[ 109.960891] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.961240] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.962579] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 109.962971] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 109.963504] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.964024] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 109.964611] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 109.965232] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 109.965777] FS: 00007f7ef44e68c0(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.966379] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.966805] CR2: 00007ffd93b7aea8 CR3: 0000000044983000 CR4: 0000000000350ef0
[ 109.967326] note: systemd-udevd[3812] exited with preempt_count 2
[ 109.967884] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#14] SMP KASAN NOPTI
[ 109.968276] kmemleak: Found object by alias at 0x607f1a634c4c
[ 109.968296] CPU: 0 UID: 0 PID: 286 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.968316] Tainted: [D]=DIE, [W]=WARN
[ 109.968320] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.968327] Call Trace:
[ 109.968331]
[ 109.968336] dump_stack_lvl+0xca/0x120
[ 109.968366] __lookup_object+0x94/0xb0
[ 109.968383] delete_object_full+0x27/0x70
[ 109.968398] free_percpu+0x30/0x1160
[ 109.968414] ? arch_uprobe_clear_state+0x16/0x140
[ 109.968432] futex_hash_free+0x38/0xc0
[ 109.968446] mmput+0x2d3/0x390
[ 109.968464] do_exit+0x79d/0x2970
[ 109.968477] ? _printk+0xbe/0xf0
[ 109.968491] ? __pfx__printk+0x10/0x10
[ 109.968503] ? __pfx_do_exit+0x10/0x10
[ 109.968515] ? __pfx_ksys_write+0x10/0x10
[ 109.968529] make_task_dead+0x174/0x3b0
[ 109.968542] ? do_syscall_64+0xbf/0x360
[ 109.968553] rewind_stack_and_make_dead+0x16/0x20
[ 109.968570] RIP: 0033:0x7f8fdf9185ff
[ 109.968579] Code: Unable to access opcode bytes at 0x7f8fdf9185d5.
[ 109.968584] RSP: 002b:00007ffe4f8427f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 109.968595] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f8fdf9185ff
[ 109.968602] RDX: 000000000000000c RSI: 00007ffe4f8428e0 RDI: 00000000000000f8
[ 109.968609] RBP: 00007ffe4f84287c R08: 0000000000000000 R09: 00007f8fdfa55000
[ 109.968616] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 109.968622] R13: 000000000001aaa8 R14: 0000000000000003 R15: 00007ffe4f8428e0
[ 109.968633]
[ 109.968637] kmemleak: Object (percpu) 0x607f1a634c48 (size 8):
[ 109.968643] kmemleak: comm "syz-executor.1", pid 3941, jiffies 4294776060
[ 109.968650] kmemleak: min_count = 1
[ 109.968654] kmemleak: count = 0
[ 109.968657] kmemleak: flags = 0x21
[ 109.968661] kmemleak: checksum = 0
[ 109.968664] kmemleak: backtrace:
[ 109.968668] pcpu_alloc_noprof+0x87a/0x1170
[ 109.968683] perf_trace_event_init+0x366/0xa10
[ 109.968697] perf_trace_init+0x1a4/0x2f0
[ 109.968709] perf_tp_event_init+0xa6/0x120
[ 109.968725] perf_try_init_event+0x140/0x9f0
[ 109.968737] perf_event_alloc.part.0+0x118e/0x45f0
[ 109.968753] __do_sys_perf_event_open+0x719/0x2c20
[ 109.968765] do_syscall_64+0xbf/0x360
[ 109.968774] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.984463] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 109.985014] CPU: 1 UID: 0 PID: 39 Comm: kworker/1:1 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 109.985857] Tainted: [D]=DIE, [W]=WARN
[ 109.986140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 109.986736] Workqueue: mld mld_dad_work
[ 109.987036] RIP: 0010:perf_tp_event+0x175/0xe70
[ 109.987386] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 109.988699] RSP: 0018:ffff888009cb7700 EFLAGS: 00010212
[ 109.989088] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 109.989606] RDX: ffff888009ca8000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 109.990135] RBP: ffff888009cb7970 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 109.990653] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 109.991170] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 109.991690] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 109.992273] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.992702] CR2: 00007ffd93b7aea8 CR3: 0000000044983000 CR4: 0000000000350ef0
[ 109.993222] Call Trace:
[ 109.993417]
[ 109.993590] ? __pfx_perf_tp_event+0x10/0x10
[ 109.993929] ? lock_acquire+0x18c/0x2f0
[ 109.994227] ? lock_release+0x1c7/0x290
[ 109.994525] ? unwind_next_frame+0x3bc/0x2540
[ 109.994864] ? ret_from_fork_asm+0x1a/0x30
[ 109.995183] ? ret_from_fork_asm+0x1a/0x30
[ 109.995499] ? kernel_text_address+0x11/0xc0
[ 109.995829] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 109.996228] ? arch_stack_walk+0x86/0xf0
[ 109.996531] ? ret_from_fork_asm+0x1a/0x30
[ 109.996849] ? stack_trace_save+0x8e/0xc0
[ 109.997160] ? perf_trace_run_bpf_submit+0xef/0x180
[ 109.997532] perf_trace_run_bpf_submit+0xef/0x180
[ 109.997904] perf_trace_contention_begin+0x235/0x3e0
[ 109.998281] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 109.998695] ? lock_is_held_type+0x9e/0x120
[ 109.999019] ? lock_acquire+0x18c/0x2f0
[ 109.999317] trace_contention_begin+0xae/0x110
[ 109.999659] __mutex_lock+0x14b/0x1020
[ 109.999954] ? mld_dad_work+0x2a/0x1e0
[ 110.000245] ? mld_dad_work+0x2a/0x1e0
[ 110.000536] ? lock_release+0x1c7/0x290
[ 110.000836] ? __pfx___mutex_lock+0x10/0x10
[ 110.001159] ? __virt_addr_valid+0x100/0x5d0
[ 110.001494] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 110.001886] ? __call_rcu_common.constprop.0+0x4c1/0x960
[ 110.002288] ? lock_acquire+0x18c/0x2f0
[ 110.002586] mld_dad_work+0x2a/0x1e0
[ 110.002866] process_one_work+0x8e1/0x19c0
[ 110.003183] ? __pfx_process_one_work+0x10/0x10
[ 110.003530] ? move_linked_works+0x172/0x270
[ 110.003864] ? assign_work+0x196/0x240
[ 110.004156] worker_thread+0x67e/0xe90
[ 110.004448] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 110.004837] ? __pfx_worker_thread+0x10/0x10
[ 110.005167] kthread+0x3c8/0x740
[ 110.005424] ? __pfx_kthread+0x10/0x10
[ 110.005721] ? ret_from_fork+0x23/0x430
[ 110.006026] ? lock_release+0xc8/0x290
[ 110.006317] ? __pfx_kthread+0x10/0x10
[ 110.006608] ret_from_fork+0x34b/0x430
[ 110.006904] ? __pfx_kthread+0x10/0x10
[ 110.007195] ret_from_fork_asm+0x1a/0x30
[ 110.007504]
[ 110.007684] Modules linked in:
[ 110.011438] ---[ end trace 0000000000000000 ]---
[ 110.011791] RIP: 0010:perf_tp_event+0x175/0xe70
[ 110.012143] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 110.014201] RSP: 0018:ffff88801be6f780 EFLAGS: 00010212
[ 110.014618] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[ 110.015141] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 110.015682] RBP: ffff88801be6f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc11c48
[ 110.016203] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 110.016745] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 110.017267] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 110.017880] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 110.018309] CR2: 00007ffd93b7aea8 CR3: 0000000044983000 CR4: 0000000000350ef0
[ 110.018845] note: kworker/1:1[39] exited with preempt_count 2
[ 110.019310] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#15] SMP KASAN NOPTI
[ 110.020131] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 110.020683] CPU: 1 UID: 0 PID: 382 Comm: kworker/u10:6 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 110.021537] Tainted: [D]=DIE, [W]=WARN
[ 110.021830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 110.022428] Workqueue: events_unbound cfg80211_wiphy_work
[ 110.022832] RIP: 0010:perf_tp_event+0x175/0xe70
[ 110.023182] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 110.024497] RSP: 0018:ffff888015837700 EFLAGS: 00010212
[ 110.024889] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 110.025409] RDX: ffff888015f13700 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 110.025934] RBP: ffff888015837970 R08: ffff88806cf31340 R09: ffffe8ffffd11c48
[ 110.026456] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 110.026974] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000
[ 110.027495] FS: 0000000000000000(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 110.028084] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 110.028514] CR2: 00007ffd93b7aea8 CR3: 000000003ba19000 CR4: 0000000000350ef0
[ 110.029034] Call Trace:
[ 110.029228]
[ 110.029404] ? __pfx_perf_tp_event+0x10/0x10
[ 110.029747] ? ret_from_fork_asm+0x1a/0x30
[ 110.030065] ? stack_trace_save+0x8e/0xc0
[ 110.030376] ? stack_depot_save_flags+0x2c/0xa20
[ 110.030733] ? kasan_save_stack+0x34/0x50
[ 110.031043] ? kasan_save_stack+0x24/0x50
[ 110.031352] ? kasan_save_track+0x14/0x30
[ 110.031662] ? __kasan_save_free_info+0x3a/0x60
[ 110.032006] ? __kasan_slab_free+0x3f/0x50
[ 110.032321] ? kmem_cache_free+0x2a1/0x540
[ 110.032633] ? kfree_skbmem+0x18a/0x1f0
[ 110.032930] ? sk_skb_reason_drop+0x10e/0x1b0
[ 110.033269] ? ieee80211_iface_work+0x43c/0x1220
[ 110.033626] ? cfg80211_wiphy_work+0x245/0x480
[ 110.033973] ? process_one_work+0x8e1/0x19c0
[ 110.034302] ? worker_thread+0x67e/0xe90
[ 110.034608] ? kthread+0x3c8/0x740
[ 110.034876] ? ret_from_fork+0x34b/0x430
[ 110.035184] ? perf_trace_run_bpf_submit+0xef/0x180
[ 110.035556] perf_trace_run_bpf_submit+0xef/0x180
[ 110.035918] perf_trace_contention_begin+0x235/0x3e0
[ 110.036294] ? trace_pelt_cfs_tp+0xdf/0x130
[ 110.036612] ? __pfx_perf_trace_contention_begin+0x10/0x10
[ 110.037023] ? __pick_eevdf+0x326/0x570
[ 110.037319] ? update_curr+0x71/0x500
[ 110.037605] ? lock_acquire+0x18c/0x2f0
[ 110.037912] trace_contention_begin+0xae/0x110
[ 110.038254] __mutex_lock+0x14b/0x1020
[ 110.038550] ? cfg80211_wiphy_work+0x7e/0x480
[ 110.038883] ? cfg80211_wiphy_work+0x7e/0x480
[ 110.039218] ? lock_release+0x1c7/0x290
[ 110.039516] ? lock_release+0x1c7/0x290
[ 110.039813] ? __pfx___mutex_lock+0x10/0x10
[ 110.040138] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 110.040516] ? xfd_validate_state+0x55/0x180
[ 110.040849] ? __pfx_try_to_wake_up+0x10/0x10
[ 110.041191] cfg80211_wiphy_work+0x7e/0x480
[ 110.041514] process_one_work+0x8e1/0x19c0
[ 110.041838] ? __pfx_process_one_work+0x10/0x10
[ 110.042185] ? move_linked_works+0x172/0x270
[ 110.042519] ? assign_work+0x196/0x240
[ 110.042811] worker_thread+0x67e/0xe90
[ 110.043103] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 110.043491] ? __pfx_worker_thread+0x10/0x10
[ 110.043822] kthread+0x3c8/0x740
[ 110.044078] ? __pfx_kthread+0x10/0x10
[ 110.044370] ? ret_from_fork+0x23/0x430
[ 110.044672] ? lock_release+0xc8/0x290
[ 110.044967] ? __pfx_kthread+0x10/0x10
[ 110.045258] ret_from_fork+0x34b/0x430
[ 110.045554] ? __pfx_kthread+0x10/0x10
[ 110.045851] ret_from_fork_asm+0x1a/0x30
[ 110.046159]
[ 110.046334] Modules linked in:
[ 110.046628] ---[ end trace 0000000000000000 ]---
[ 110.046922] Kernel panic - not syncing: Attempted to kill init! exitcode=0x0000000b
[ 110.047164] Kernel Offset: disabled
[ 110.048096] ---[ end Kernel panic - not syncing: Attempted to kill init! exitcode=0x0000000b ]---
VM DIAGNOSIS:
09:43:37 Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88801be6f070
R8 =0000000000000000 R9 =ffffed10016ce046 R10=0000000000000020 R11=0000000065646f43
R12=0000000000000020 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f5ac358b700 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe1600000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000555560b89c58 CR3=0000000045d19000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff84bdec0e RDX=fffffbfff0f0ec09
RSI=0000000000000004 RDI=ffffffff87876044 RBP=ffffffff87876044 RSP=ffff888043bd7330
R8 =0000000000000000 R9 =fffffbfff0f0ec08 R10=ffffffff87876047 R11=202c746c75616620
R12=1ffff1100877ae67 R13=0000000000000007 R14=fffffbfff0f0ec08 R15=ffff888043bd7368
RIP=ffffffff84bdec12 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f8ff708a700 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe0600000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffd93b7aea8 CR3=0000000042e74000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000a60ce07b00000000cec3662e XMM01=00000000000000007cfa8e9e97c1717c
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000