Starting Update UTMP about System Runlevel Changes... [ OK ] Finished Update UTMP about System Runlevel Changes. [ 39.110133] audit: type=1400 audit(1756717771.176:6): avc: denied { checkpoint_restore } for pid=218 comm="agetty" capability=40 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:49525' (ECDSA) to the list of known hosts. 2025/09/01 09:09:35 fuzzer started 2025/09/01 09:09:35 dialing manager at localhost:35473 syzkaller login: [ 43.568317] cgroup: Unknown subsys name 'net' [ 43.707059] cgroup: Unknown subsys name 'cpuset' [ 43.745416] cgroup: Unknown subsys name 'rlimit' 2025/09/01 09:09:45 syscalls: 2214 2025/09/01 09:09:45 code coverage: enabled 2025/09/01 09:09:45 comparison tracing: enabled 2025/09/01 09:09:45 extra coverage: enabled 2025/09/01 09:09:45 setuid sandbox: enabled 2025/09/01 09:09:45 namespace sandbox: enabled 2025/09/01 09:09:45 Android sandbox: enabled 2025/09/01 09:09:45 fault injection: enabled 2025/09/01 09:09:45 leak checking: enabled 2025/09/01 09:09:45 net packet injection: enabled 2025/09/01 09:09:45 net device setup: enabled 2025/09/01 09:09:45 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 09:09:45 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 09:09:45 USB emulation: enabled 2025/09/01 09:09:45 hci packet injection: enabled 2025/09/01 09:09:45 wifi device emulation: enabled 2025/09/01 09:09:45 802.15.4 emulation: enabled 2025/09/01 09:09:45 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 09:09:46 fetching corpus: 49, signal 30923/34022 (executing program) 2025/09/01 09:09:46 fetching corpus: 99, signal 42722/46880 (executing program) 2025/09/01 09:09:46 fetching corpus: 149, signal 48101/53384 (executing program) 2025/09/01 09:09:46 fetching corpus: 199, signal 53451/59719 (executing program) 2025/09/01 09:09:46 fetching corpus: 249, signal 59796/66804 (executing program) 2025/09/01 09:09:46 fetching corpus: 299, signal 64654/72407 (executing program) 2025/09/01 09:09:46 fetching corpus: 349, signal 67442/76047 (executing program) 2025/09/01 09:09:46 fetching corpus: 399, signal 71135/80358 (executing program) 2025/09/01 09:09:47 fetching corpus: 449, signal 75359/85031 (executing program) 2025/09/01 09:09:47 fetching corpus: 499, signal 77818/88082 (executing program) 2025/09/01 09:09:47 fetching corpus: 549, signal 80368/91182 (executing program) 2025/09/01 09:09:47 fetching corpus: 599, signal 82324/93700 (executing program) 2025/09/01 09:09:47 fetching corpus: 649, signal 84268/96143 (executing program) 2025/09/01 09:09:47 fetching corpus: 699, signal 87340/99448 (executing program) 2025/09/01 09:09:47 fetching corpus: 749, signal 89570/102029 (executing program) 2025/09/01 09:09:47 fetching corpus: 799, signal 92532/105046 (executing program) 2025/09/01 09:09:47 fetching corpus: 849, signal 94498/107244 (executing program) 2025/09/01 09:09:48 fetching corpus: 899, signal 96177/109190 (executing program) 2025/09/01 09:09:48 fetching corpus: 949, signal 98147/111325 (executing program) 2025/09/01 09:09:48 fetching corpus: 999, signal 99760/113117 (executing program) 2025/09/01 09:09:48 fetching corpus: 1049, signal 100851/114516 (executing program) 2025/09/01 09:09:48 fetching corpus: 1099, signal 102248/116083 (executing program) 2025/09/01 09:09:48 fetching corpus: 1149, signal 104071/117887 (executing program) 2025/09/01 09:09:48 fetching corpus: 1199, signal 105572/119422 (executing program) 2025/09/01 09:09:48 fetching corpus: 1249, signal 106780/120768 (executing program) 2025/09/01 09:09:48 fetching corpus: 1299, signal 108179/122158 (executing program) 2025/09/01 09:09:49 fetching corpus: 1349, signal 109305/123417 (executing program) 2025/09/01 09:09:49 fetching corpus: 1399, signal 110201/124448 (executing program) 2025/09/01 09:09:49 fetching corpus: 1449, signal 111366/125646 (executing program) 2025/09/01 09:09:49 fetching corpus: 1499, signal 112615/126822 (executing program) 2025/09/01 09:09:49 fetching corpus: 1549, signal 113656/127890 (executing program) 2025/09/01 09:09:49 fetching corpus: 1599, signal 114420/128722 (executing program) 2025/09/01 09:09:49 fetching corpus: 1649, signal 115208/129603 (executing program) 2025/09/01 09:09:49 fetching corpus: 1699, signal 115890/130380 (executing program) 2025/09/01 09:09:49 fetching corpus: 1749, signal 116917/131273 (executing program) 2025/09/01 09:09:49 fetching corpus: 1799, signal 119738/132992 (executing program) 2025/09/01 09:09:50 fetching corpus: 1849, signal 120774/133850 (executing program) 2025/09/01 09:09:50 fetching corpus: 1899, signal 122106/134814 (executing program) 2025/09/01 09:09:50 fetching corpus: 1949, signal 122640/135345 (executing program) 2025/09/01 09:09:50 fetching corpus: 1999, signal 123450/136018 (executing program) 2025/09/01 09:09:50 fetching corpus: 2049, signal 124051/136616 (executing program) 2025/09/01 09:09:50 fetching corpus: 2099, signal 124993/137279 (executing program) 2025/09/01 09:09:50 fetching corpus: 2149, signal 126461/138177 (executing program) 2025/09/01 09:09:50 fetching corpus: 2199, signal 128046/139011 (executing program) 2025/09/01 09:09:50 fetching corpus: 2249, signal 129035/139555 (executing program) 2025/09/01 09:09:51 fetching corpus: 2299, signal 130060/140176 (executing program) 2025/09/01 09:09:51 fetching corpus: 2349, signal 131023/140729 (executing program) 2025/09/01 09:09:51 fetching corpus: 2399, signal 131855/141299 (executing program) 2025/09/01 09:09:51 fetching corpus: 2449, signal 133224/141937 (executing program) 2025/09/01 09:09:51 fetching corpus: 2499, signal 134055/142363 (executing program) 2025/09/01 09:09:51 fetching corpus: 2549, signal 135284/142920 (executing program) 2025/09/01 09:09:51 fetching corpus: 2599, signal 136290/143348 (executing program) 2025/09/01 09:09:51 fetching corpus: 2649, signal 137030/143693 (executing program) 2025/09/01 09:09:51 fetching corpus: 2699, signal 137825/144011 (executing program) 2025/09/01 09:09:52 fetching corpus: 2749, signal 138266/144215 (executing program) 2025/09/01 09:09:52 fetching corpus: 2799, signal 139814/144648 (executing program) 2025/09/01 09:09:52 fetching corpus: 2849, signal 140399/144878 (executing program) 2025/09/01 09:09:52 fetching corpus: 2899, signal 140897/145037 (executing program) 2025/09/01 09:09:52 fetching corpus: 2949, signal 141456/145196 (executing program) 2025/09/01 09:09:52 fetching corpus: 2999, signal 142013/145369 (executing program) 2025/09/01 09:09:52 fetching corpus: 3049, signal 142698/145523 (executing program) 2025/09/01 09:09:52 fetching corpus: 3099, signal 143106/145622 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145708 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145739 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145772 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145801 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145830 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145862 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145893 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145927 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145959 (executing program) 2025/09/01 09:09:52 fetching corpus: 3121, signal 143437/145959 (executing program) 2025/09/01 09:09:55 starting 8 fuzzer processes 09:09:55 executing program 0: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000200)="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") 09:09:55 executing program 2: setxattr$incfs_id(&(0x7f00000012c0)='./file1\x00', &(0x7f0000001300), 0x0, 0x0, 0x0) rename(&(0x7f0000001380)='./file1\x00', &(0x7f00000013c0)='./file1\x00') 09:09:55 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0) sendfile(r0, r0, 0x0, 0xb67) 09:09:55 executing program 3: r0 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x1, 0x0) read(r0, &(0x7f0000000200)=""/4096, 0x1000) [ 63.220517] audit: type=1400 audit(1756717795.286:7): avc: denied { execmem } for pid=275 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:09:55 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040), 0x4) getsockopt$packet_buf(r0, 0x107, 0x12, 0x0, &(0x7f0000000240)) 09:09:55 executing program 6: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/arp\x00') openat$hpet(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64(r0, &(0x7f0000000180)=""/123, 0x7b, 0x8) 09:09:55 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6, 0x3, {0x0, 0xfd}}]}, 0x1c}}, 0x0) 09:09:55 executing program 5: syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) [ 64.449176] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 64.451434] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 64.453376] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 64.463429] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 64.465753] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 64.468705] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 64.470208] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 64.477526] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 64.487337] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 64.493054] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 64.525789] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 64.527484] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 64.531892] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 64.533239] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 64.535816] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 64.540402] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 64.542729] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 64.548101] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 64.557258] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 64.568659] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 64.690787] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 64.699349] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 64.710348] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 64.723288] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 64.733514] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 64.763796] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 64.767307] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 64.775170] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 64.790222] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 64.800534] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 64.803477] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 64.806781] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 64.809555] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 64.815316] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 64.817052] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 64.823185] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 64.869114] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 64.883298] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 64.899122] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 64.924425] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 66.543342] Bluetooth: hci0: command tx timeout [ 66.544106] Bluetooth: hci1: command tx timeout [ 66.607040] Bluetooth: hci3: command tx timeout [ 66.607965] Bluetooth: hci2: command tx timeout [ 66.798941] Bluetooth: hci4: command tx timeout [ 66.862938] Bluetooth: hci6: command tx timeout [ 66.991956] Bluetooth: hci7: command tx timeout [ 67.055004] Bluetooth: hci5: command tx timeout [ 68.592059] Bluetooth: hci0: command tx timeout [ 68.593242] Bluetooth: hci1: command tx timeout [ 68.655133] Bluetooth: hci2: command tx timeout [ 68.656487] Bluetooth: hci3: command tx timeout [ 68.847003] Bluetooth: hci4: command tx timeout [ 68.912150] Bluetooth: hci6: command tx timeout [ 69.039917] Bluetooth: hci7: command tx timeout [ 69.103139] Bluetooth: hci5: command tx timeout [ 70.639233] Bluetooth: hci1: command tx timeout [ 70.641215] Bluetooth: hci0: command tx timeout [ 70.703118] Bluetooth: hci3: command tx timeout [ 70.704135] Bluetooth: hci2: command tx timeout [ 70.895063] Bluetooth: hci4: command tx timeout [ 70.958970] Bluetooth: hci6: command tx timeout [ 71.087015] Bluetooth: hci7: command tx timeout [ 71.152883] Bluetooth: hci5: command tx timeout [ 72.687316] Bluetooth: hci1: command tx timeout [ 72.688696] Bluetooth: hci0: command tx timeout [ 72.750998] Bluetooth: hci3: command tx timeout [ 72.751774] Bluetooth: hci2: command tx timeout [ 72.943238] Bluetooth: hci4: command tx timeout [ 73.007005] Bluetooth: hci6: command tx timeout [ 73.135914] Bluetooth: hci7: command tx timeout [ 73.198989] Bluetooth: hci5: command tx timeout [ 102.543223] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.544242] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.723976] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.724600] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:10:35 executing program 6: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/arp\x00') openat$hpet(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64(r0, &(0x7f0000000180)=""/123, 0x7b, 0x8) 09:10:35 executing program 6: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/arp\x00') openat$hpet(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64(r0, &(0x7f0000000180)=""/123, 0x7b, 0x8) [ 103.354905] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.355513] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:10:35 executing program 6: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/arp\x00') openat$hpet(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64(r0, &(0x7f0000000180)=""/123, 0x7b, 0x8) [ 103.494907] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.495522] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:10:35 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000002840)=0xffffffffffffffff, 0x4) sendmmsg$inet6(r0, &(0x7f0000004f80)=[{{0x0, 0x0, &(0x7f0000002500)=[{&(0x7f0000000100)="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", 0x21e}, {&(0x7f0000001100), 0x2a6}, {0x0, 0x2}], 0x3}}], 0x1, 0x8000015) [ 103.649933] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.650561] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:10:35 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000002840)=0xffffffffffffffff, 0x4) sendmmsg$inet6(r0, &(0x7f0000004f80)=[{{0x0, 0x0, &(0x7f0000002500)=[{&(0x7f0000000100)="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", 0x21e}, {&(0x7f0000001100), 0x2a6}, {0x0, 0x2}], 0x3}}], 0x1, 0x8000015) 09:10:35 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000002840)=0xffffffffffffffff, 0x4) sendmmsg$inet6(r0, &(0x7f0000004f80)=[{{0x0, 0x0, &(0x7f0000002500)=[{&(0x7f0000000100)="339a99743f4231b67608ac44af744a51a716bbd6fe79f103807d022e1ebb7698441aa442854a520082cd1728b5647335d0f9ea526906ac1a05d13f094ff4613b3026e8ece8ab5d6c199ac8d0ced8daa4dfe34a307e13be36a4abc29acb2ab40722c1326e7a6351f79ab5e898d203b612487d938bfcd2bee4551441539863a75928a217eea4767e17165028485178898a0f4d70ec13965c8948432e36f91b7206393fdda3a0e07d1ba6637a0a13fb52eb77d7c74c73d60102d7715cc7a52f19dd3778fe22c4187fcfc42173619c97e4bac2f2b543e1aa6b58503174f020df9478786c0670c3a40c2ef532b0102b2cce4a071e900e9137bc1d64c48a81746a6e491b576a84a1b857b43b08140bb5bb5e11c97d1ee2a12279b61c095cb7e8f05b0d405fd1c580dd48e7979155944420f0bb00710457ebd25277c72c82f6f9cdb8f98c3614ea3af96c36e08b4cf6ac29746966950499fb42b8e49e7170f7de2efff1aa7a505748281d9e987e2edce01baec3e9320348f3c284cd4eb126fb7bf7f3a9c3faf1a0daa7c3307bcd3ac1102689f371a6d65a97cb8d2407c49fc847cb86522e95995705179b142051287a0934c31249ccdddecbb2ffe5566550a52dcababe0eee11a379b35462d57103af4814539e9283b65f451161e077fb34653322de24a3f1d1332a52bfb85cc47c9cb8b45d72bea38494e5678d4516262d1072870587411e03d659bfffcf16fc3bfca477e1c252de2c3c845039c72e1e247d3063", 0x21e}, {&(0x7f0000001100), 0x2a6}, {0x0, 0x2}], 0x3}}], 0x1, 0x8000015) [ 103.843380] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.844039] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:10:35 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000002840)=0xffffffffffffffff, 0x4) sendmmsg$inet6(r0, &(0x7f0000004f80)=[{{0x0, 0x0, &(0x7f0000002500)=[{&(0x7f0000000100)="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", 0x21e}, {&(0x7f0000001100), 0x2a6}, {0x0, 0x2}], 0x3}}], 0x1, 0x8000015) [ 104.031419] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.032073] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.133393] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.134052] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.230227] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.230889] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.357682] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.358372] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.409180] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.409798] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.455635] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.455680] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.554663] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.555302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.623726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.624894] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.130449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.131441] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.159503] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.160181] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:10:37 executing program 0: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000200)="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") 09:10:37 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0xa0840, 0x0) ioctl$DVD_READ_STRUCT(r0, 0x5392, &(0x7f0000000480)=@manufact={0x4, 0x0, 0x800, "cd33ebe03c1c2e4b12dbbd929c630121f1f07490cc8a110ba7d427d126e09efab8619a57c855d7fa1e270d5ef66cc1fe9427b45dcb8cac604c8a1b2a5fb33698f44c7af8fbd9ea42b8f7c15e147f2e8ee04d95b1a51ea926c2916ad4a22246080ee46333aba3441f15cfd7058fb42ad8353712b235b94f0286837b375bd38655bb834f292efd7a17d0a22749e00f361b669c6a31ab8a7a17d09f5f1be34b412019b8a2472f5a3145c1f0b49af8b9395bb586b334345395df2d09c626d1c58a303dbbf7981b6a44658c42a6bdc54879fb9f66d449d757331260dff634fc18592eb0d38595ef30d6dccc10c93e9a654500dab50648519c6bb846d02c50479d158b060cd5cbb608130b7e09f1529a77acfb34ff23dc2c02f07a70b71a2e59d3b8d97173037df770f16db114eba7eca3e2e767f92385470faeb95d44d5eb3b71dd3e444e5c18f0d6c26226009388fd4fb38d108ceb3e3d5c53ebf557b6cc6f2cbfffd87a0839f74f6886d886c914f45f69bbc9ab9158357fe3cc393bcc17cc771df8558ffa935928d5f280c05ba76fd89093272d4687a6dd31599ae4664bc667ac2c86c4d8fa2f97ddd018011ec2f10fba48af140510e063de02391b82c2ddfdc75bd69a6e1b3498278d534d9f12296cd5f1ec4f7a8036eb424da16352fe30bf1c81b77a73e690c018070e5afa4b431e60a99b806ae4bb06510e9696770f8796baa680d0223b57d5a80001c27ba5692148ee870da071157eb49feb5dad2eda05c82693d6500534fad8359940ec310a81a789145233b4b5b0acc185640e1cfc820aefc1ef1393877692adc5f50815b6dd22bc808901a21441dd31d935894121adfb80c0fb6c275a6ca866c7b2ea522f714db0ef4c0bd4c3095a0f5bff58f0f59359211c630259ad0c7901f34799c2838d75b11f0aecc6200588227d9cebbb5ba57084dfa22541619020ea515b437bcbf4f68d791c767d19d8bda06283d6c1e53717c82c1348b0b42482f3d11120117708d6fc93e84da3d4839aad10ce85fae6afc190753b79a87db00213f0c8ad330e66db821e22ab1f710bd8e9a76d76de97843e79613ec8993fed4c13ff4b3170c9c1f16f2d3404578eedb5d609c8e84d6bf35286aa7ea5bcdc5ae341e1911a73765400688d681f275d670d39159075e94a64b0575d9ae823e48b8d79d14ea3a8824183e5a4c8376530f32fd97df2464fb2cc6829c85655b7ab274c5b3acb8724b8cea83080e3d798294be7181ee1e14426e84abf24f3ca0245b4770c2446a74493d77ac01a40e94a685bc6d645c833d53460cbba007c22dd9de268ae221025e90b0e338011cbe0639eb57c15420727b3a78af3ce0782556dcd815f96272c97ca204ef3e073bd6b7d3097f0bc2f9d28ed8994002b8c8d7ca6cbaa761b6e6c76f4d37643e8bebbc32086af0a9df85714739abb926146f71cdab64edbf1eac62f67ed51ccee8e674ea8fd1eef862f810e0f6d901cc80a9b4f38f0b67a0824a8db12b941e53ed525ffdca71ea884a434904a3292d6b8e2004eb0e8766f1b9410dbb807aa0d4bd8c87ea429359a240f495e2a3f3ce803b5c7038f3ad9f3319bf998af71fabaf03769c76b3560c738b9e7f9622981f43b06d1e90c93028080590a13ebc6ce725f1257a77fb3f276fc703363a3c79ec63caf2ed370c1fa098ccc4ddee9b2571c4c44011e371e7a1441e4ac514696068ef37c7ef33bcf461b43c82c5a5724f53ae31b135619772891bb957f1c8c5d7a6f10447616198aa999e403c960ab7aff45203579539dac54ccf3b75927d19a43fb238be3fd24b1a6995bf83bd2df6891480c7dbd7536b374ef3e74c087149f051af901d71803cc7f12c09750938517448db0b0583f24bc8b648bd7a9a3c1c27ad15b7a4fce7d8daa31984d51679eb10d14f4da8d1fbfbbc15f16890aee733d45236f8aa062bd917649996f41b928eb31ac1538ba1e927cefaffcf9844604a3c380656fdd25a3c519a1a8cad35a6fb62ae982a426f84673a03c9610cef35d507625d0f9fa7b8b0b406b484a13dce6e44a846b04e7930463f0d3877f129d90b51b81e5a29ab9ca5e6ad64e0c6bd00a153f360fd754161d86b65f3a25a971803f6fb45fd6e5159cceee34b6013cc3b064d83b8a502ec17f755180dead379e940c46ba469c5856f0801502ef03dc4232dfcdc40dee6b479bda2dbcdb6320ee79695b5f4f8fd32b42b8130a166b0c8ba86292e58db66c54489abd3c415dbf3d1c19176f193d2dff0bce32a6d2f74d9e7638056390173e6f542c97472aef61c50259446f5becf768d60e97b24adcb872dcc40a33b2d6d8495fdb80fc781a7d5027b808f9b7b187f20f48f6f8d3a5d496ff458902568a6eb9cdc16e9d46dd5a1e8d028ce2cc82f2d6e1bce3bcd0a6ec87fb085ec2fe98789ea5c1a5657b91a93e1c22cd4e3a320776cede57216f8017c20e8b700bb84e6905ef2a26a3903505cefa8b0a7b3de0c161a9200737b8453995374eb2cec7b67e64c98e45eba4ea65df8a4f2b14ebb8249f827a7edd4c2c8b2051ec2993fe48bb8f756b9456e69b5523d8396ec1418be1a716e1f5708408be77136ea43f7b62e5eda26a4ace9f958798e922d2a22a04cd85dff134a1400abe6bb81c5f37a59391caac5f9b255d2b1e1e38ba3428ee74146220fac6f34065c1412d93a251ed18612e1b4afdd6270b64cc11e1de033489eedc16dfed4193c9ae02686b46b8aa10f0abaf9aac81d07d4896597a17e47ca558eb4677f306eb9844f9cf9b1781bd59a2b192a31cfa45db955fc5402ccd4c9efa35301b0b3ed4bc4bd1294dcfe286f45199f2bd8d531bf3c71b65d10cd67a95730ccb08cccf6d6390758425758c1f63d907d54a5c9d48873997e6ad7482c8"}) 09:10:37 executing program 5: syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) 09:10:37 executing program 2: setxattr$incfs_id(&(0x7f00000012c0)='./file1\x00', &(0x7f0000001300), 0x0, 0x0, 0x0) rename(&(0x7f0000001380)='./file1\x00', &(0x7f00000013c0)='./file1\x00') 09:10:37 executing program 3: r0 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x1, 0x0) read(r0, &(0x7f0000000200)=""/4096, 0x1000) 09:10:37 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0) sendfile(r0, r0, 0x0, 0xb67) 09:10:37 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040), 0x4) getsockopt$packet_buf(r0, 0x107, 0x12, 0x0, &(0x7f0000000240)) 09:10:37 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6, 0x3, {0x0, 0xfd}}]}, 0x1c}}, 0x0) 09:10:37 executing program 2: setxattr$incfs_id(&(0x7f00000012c0)='./file1\x00', &(0x7f0000001300), 0x0, 0x0, 0x0) rename(&(0x7f0000001380)='./file1\x00', &(0x7f00000013c0)='./file1\x00') 09:10:37 executing program 0: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000200)="db4a991ba205010cbf9f556f65e9c529c6affd76c7a76f638cea9ef49be20be1f0cc2c3d707c79b64c0fd413f623008d8f4f95ddd52e3d3f12cd2ceb143f160e0be60f88c838eaa7103573ec0a3aebdbecd0594480adce693b2b4b58a291f6991d6d70dea1e825515f1df31be653690081ff19fcbc9ff4bfb4cffd1a87bb6d042cc0d4484c6b028308c4f653b11a79cfe2b7c823044051a753effa6798c346714014ca6a6fde7e0a070b0f59805487db3afb7dadb55ab763c1825638415dbef3613d155399bcf3671d22832d96f65ade339ba39a379cd24eeedb24cfd7b16e3397cb3415aeb2c89964b9c36f2d2fbc97b2af2ab27912479ee5fb7d78dab9728d") 09:10:37 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0) sendfile(r0, r0, 0x0, 0xb67) 09:10:37 executing program 3: r0 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x1, 0x0) read(r0, &(0x7f0000000200)=""/4096, 0x1000) 09:10:37 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040), 0x4) getsockopt$packet_buf(r0, 0x107, 0x12, 0x0, &(0x7f0000000240)) 09:10:37 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6, 0x3, {0x0, 0xfd}}]}, 0x1c}}, 0x0) 09:10:37 executing program 5: syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) 09:10:37 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0xa0840, 0x0) ioctl$DVD_READ_STRUCT(r0, 0x5392, &(0x7f0000000480)=@manufact={0x4, 0x0, 0x800, "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"}) 09:10:37 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040), 0x4) getsockopt$packet_buf(r0, 0x107, 0x12, 0x0, &(0x7f0000000240)) 09:10:37 executing program 2: setxattr$incfs_id(&(0x7f00000012c0)='./file1\x00', &(0x7f0000001300), 0x0, 0x0, 0x0) rename(&(0x7f0000001380)='./file1\x00', &(0x7f00000013c0)='./file1\x00') 09:10:37 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0) sendfile(r0, r0, 0x0, 0xb67) 09:10:37 executing program 0: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000200)="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") 09:10:37 executing program 3: r0 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x1, 0x0) read(r0, &(0x7f0000000200)=""/4096, 0x1000) 09:10:37 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV4_HTHRESH={0x6, 0x3, {0x0, 0xfd}}]}, 0x1c}}, 0x0) 09:10:37 executing program 5: syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) 09:10:37 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000140)=""/187, 0xbb, 0x0) 09:10:37 executing program 0: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0x0, 0x11, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="45889f7eb7f43a863414ee0dea85a0bd4e", 0x0, 0x0, 0x0, 0x0, 0x0}) 09:10:37 executing program 7: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) socket$nl_audit(0x10, 0x3, 0x9) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 09:10:37 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0xa0840, 0x0) ioctl$DVD_READ_STRUCT(r0, 0x5392, &(0x7f0000000480)=@manufact={0x4, 0x0, 0x800, "cd33ebe03c1c2e4b12dbbd929c630121f1f07490cc8a110ba7d427d126e09efab8619a57c855d7fa1e270d5ef66cc1fe9427b45dcb8cac604c8a1b2a5fb33698f44c7af8fbd9ea42b8f7c15e147f2e8ee04d95b1a51ea926c2916ad4a22246080ee46333aba3441f15cfd7058fb42ad8353712b235b94f0286837b375bd38655bb834f292efd7a17d0a22749e00f361b669c6a31ab8a7a17d09f5f1be34b412019b8a2472f5a3145c1f0b49af8b9395bb586b334345395df2d09c626d1c58a303dbbf7981b6a44658c42a6bdc54879fb9f66d449d757331260dff634fc18592eb0d38595ef30d6dccc10c93e9a654500dab50648519c6bb846d02c50479d158b060cd5cbb608130b7e09f1529a77acfb34ff23dc2c02f07a70b71a2e59d3b8d97173037df770f16db114eba7eca3e2e767f92385470faeb95d44d5eb3b71dd3e444e5c18f0d6c26226009388fd4fb38d108ceb3e3d5c53ebf557b6cc6f2cbfffd87a0839f74f6886d886c914f45f69bbc9ab9158357fe3cc393bcc17cc771df8558ffa935928d5f280c05ba76fd89093272d4687a6dd31599ae4664bc667ac2c86c4d8fa2f97ddd018011ec2f10fba48af140510e063de02391b82c2ddfdc75bd69a6e1b3498278d534d9f12296cd5f1ec4f7a8036eb424da16352fe30bf1c81b77a73e690c018070e5afa4b431e60a99b806ae4bb06510e9696770f8796baa680d0223b57d5a80001c27ba5692148ee870da071157eb49feb5dad2eda05c82693d6500534fad8359940ec310a81a789145233b4b5b0acc185640e1cfc820aefc1ef1393877692adc5f50815b6dd22bc808901a21441dd31d935894121adfb80c0fb6c275a6ca866c7b2ea522f714db0ef4c0bd4c3095a0f5bff58f0f59359211c630259ad0c7901f34799c2838d75b11f0aecc6200588227d9cebbb5ba57084dfa22541619020ea515b437bcbf4f68d791c767d19d8bda06283d6c1e53717c82c1348b0b42482f3d11120117708d6fc93e84da3d4839aad10ce85fae6afc190753b79a87db00213f0c8ad330e66db821e22ab1f710bd8e9a76d76de97843e79613ec8993fed4c13ff4b3170c9c1f16f2d3404578eedb5d609c8e84d6bf35286aa7ea5bcdc5ae341e1911a73765400688d681f275d670d39159075e94a64b0575d9ae823e48b8d79d14ea3a8824183e5a4c8376530f32fd97df2464fb2cc6829c85655b7ab274c5b3acb8724b8cea83080e3d798294be7181ee1e14426e84abf24f3ca0245b4770c2446a74493d77ac01a40e94a685bc6d645c833d53460cbba007c22dd9de268ae221025e90b0e338011cbe0639eb57c15420727b3a78af3ce0782556dcd815f96272c97ca204ef3e073bd6b7d3097f0bc2f9d28ed8994002b8c8d7ca6cbaa761b6e6c76f4d37643e8bebbc32086af0a9df85714739abb926146f71cdab64edbf1eac62f67ed51ccee8e674ea8fd1eef862f810e0f6d901cc80a9b4f38f0b67a0824a8db12b941e53ed525ffdca71ea884a434904a3292d6b8e2004eb0e8766f1b9410dbb807aa0d4bd8c87ea429359a240f495e2a3f3ce803b5c7038f3ad9f3319bf998af71fabaf03769c76b3560c738b9e7f9622981f43b06d1e90c93028080590a13ebc6ce725f1257a77fb3f276fc703363a3c79ec63caf2ed370c1fa098ccc4ddee9b2571c4c44011e371e7a1441e4ac514696068ef37c7ef33bcf461b43c82c5a5724f53ae31b135619772891bb957f1c8c5d7a6f10447616198aa999e403c960ab7aff45203579539dac54ccf3b75927d19a43fb238be3fd24b1a6995bf83bd2df6891480c7dbd7536b374ef3e74c087149f051af901d71803cc7f12c09750938517448db0b0583f24bc8b648bd7a9a3c1c27ad15b7a4fce7d8daa31984d51679eb10d14f4da8d1fbfbbc15f16890aee733d45236f8aa062bd917649996f41b928eb31ac1538ba1e927cefaffcf9844604a3c380656fdd25a3c519a1a8cad35a6fb62ae982a426f84673a03c9610cef35d507625d0f9fa7b8b0b406b484a13dce6e44a846b04e7930463f0d3877f129d90b51b81e5a29ab9ca5e6ad64e0c6bd00a153f360fd754161d86b65f3a25a971803f6fb45fd6e5159cceee34b6013cc3b064d83b8a502ec17f755180dead379e940c46ba469c5856f0801502ef03dc4232dfcdc40dee6b479bda2dbcdb6320ee79695b5f4f8fd32b42b8130a166b0c8ba86292e58db66c54489abd3c415dbf3d1c19176f193d2dff0bce32a6d2f74d9e7638056390173e6f542c97472aef61c50259446f5becf768d60e97b24adcb872dcc40a33b2d6d8495fdb80fc781a7d5027b808f9b7b187f20f48f6f8d3a5d496ff458902568a6eb9cdc16e9d46dd5a1e8d028ce2cc82f2d6e1bce3bcd0a6ec87fb085ec2fe98789ea5c1a5657b91a93e1c22cd4e3a320776cede57216f8017c20e8b700bb84e6905ef2a26a3903505cefa8b0a7b3de0c161a9200737b8453995374eb2cec7b67e64c98e45eba4ea65df8a4f2b14ebb8249f827a7edd4c2c8b2051ec2993fe48bb8f756b9456e69b5523d8396ec1418be1a716e1f5708408be77136ea43f7b62e5eda26a4ace9f958798e922d2a22a04cd85dff134a1400abe6bb81c5f37a59391caac5f9b255d2b1e1e38ba3428ee74146220fac6f34065c1412d93a251ed18612e1b4afdd6270b64cc11e1de033489eedc16dfed4193c9ae02686b46b8aa10f0abaf9aac81d07d4896597a17e47ca558eb4677f306eb9844f9cf9b1781bd59a2b192a31cfa45db955fc5402ccd4c9efa35301b0b3ed4bc4bd1294dcfe286f45199f2bd8d531bf3c71b65d10cd67a95730ccb08cccf6d6390758425758c1f63d907d54a5c9d48873997e6ad7482c8"}) [ 105.685936] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 105.686704] sr 1:0:0:0: [sr0] tag#0 CDB: Play audio(10) [ 105.687170] sr 1:0:0:0: [sr0] tag#0 CDB[00]: 45 88 9f 7e b7 f4 3a 86 34 14 ee 0d ea 85 a0 bd [ 105.687903] sr 1:0:0:0: [sr0] tag#0 CDB[10]: 4e 09:10:37 executing program 0: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0x0, 0x11, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="45889f7eb7f43a863414ee0dea85a0bd4e", 0x0, 0x0, 0x0, 0x0, 0x0}) 09:10:37 executing program 3: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 09:10:37 executing program 1: pread64(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffff5b3) 09:10:37 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000140)=""/187, 0xbb, 0x0) 09:10:37 executing program 7: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) socket$nl_audit(0x10, 0x3, 0x9) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 09:10:37 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0xa0840, 0x0) ioctl$DVD_READ_STRUCT(r0, 0x5392, &(0x7f0000000480)=@manufact={0x4, 0x0, 0x800, "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"}) [ 105.823886] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 105.824717] sr 1:0:0:0: [sr0] tag#0 CDB: Play audio(10) [ 105.825254] sr 1:0:0:0: [sr0] tag#0 CDB[00]: 45 88 9f 7e b7 f4 3a 86 34 14 ee 0d ea 85 a0 bd [ 105.825946] sr 1:0:0:0: [sr0] tag#0 CDB[10]: 4e 09:10:37 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000140)=""/187, 0xbb, 0x0) 09:10:38 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000140)=""/187, 0xbb, 0x0) 09:10:38 executing program 7: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) socket$nl_audit(0x10, 0x3, 0x9) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 09:10:38 executing program 1: pread64(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffff5b3) 09:10:38 executing program 3: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 09:10:38 executing program 6: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000001bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0x20}}], 0x2, 0x0) 09:10:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(r0, 0x11, 0x64, 0x0, 0x0) 09:10:38 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) sendmmsg$sock(r0, &(0x7f0000000600)=[{{&(0x7f0000000200)=@nfc={0x27, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000300)="e557ce3bd6d952e732a1369d550d", 0xe}], 0x1}}, {{&(0x7f0000000000)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "e8afc870753ff6119517271f31116d25438a6fe9b5be0fe0bc98ec86fa7d229ea58ff66ffeeeeaacf7659d58bb0c057b08a4030000000000000100"}, 0x80, 0x0}}], 0x2, 0x0) 09:10:38 executing program 0: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0x0, 0x11, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="45889f7eb7f43a863414ee0dea85a0bd4e", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 106.051137] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 106.051979] sr 1:0:0:0: [sr0] tag#0 CDB: Play audio(10) [ 106.052431] sr 1:0:0:0: [sr0] tag#0 CDB[00]: 45 88 9f 7e b7 f4 3a 86 34 14 ee 0d ea 85 a0 bd [ 106.053137] sr 1:0:0:0: [sr0] tag#0 CDB[10]: 4e [ 106.069145] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list 09:10:38 executing program 6: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000001bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0x20}}], 0x2, 0x0) 09:10:38 executing program 1: pread64(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffff5b3) 09:10:38 executing program 3: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 09:10:38 executing program 0: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0x0, 0x11, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="45889f7eb7f43a863414ee0dea85a0bd4e", 0x0, 0x0, 0x0, 0x0, 0x0}) 09:10:38 executing program 4: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) [ 106.157894] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 106.158728] sr 1:0:0:0: [sr0] tag#0 CDB: Play audio(10) [ 106.159182] sr 1:0:0:0: [sr0] tag#0 CDB[00]: 45 88 9f 7e b7 f4 3a 86 34 14 ee 0d ea 85 a0 bd [ 106.159879] sr 1:0:0:0: [sr0] tag#0 CDB[10]: 4e 09:10:38 executing program 4: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 09:10:38 executing program 3: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 09:10:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(r0, 0x11, 0x64, 0x0, 0x0) 09:10:38 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) sendmmsg$sock(r0, &(0x7f0000000600)=[{{&(0x7f0000000200)=@nfc={0x27, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000300)="e557ce3bd6d952e732a1369d550d", 0xe}], 0x1}}, {{&(0x7f0000000000)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "e8afc870753ff6119517271f31116d25438a6fe9b5be0fe0bc98ec86fa7d229ea58ff66ffeeeeaacf7659d58bb0c057b08a4030000000000000100"}, 0x80, 0x0}}], 0x2, 0x0) 09:10:38 executing program 7: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) socket$nl_audit(0x10, 0x3, 0x9) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 09:10:38 executing program 0: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x2}, 0x401, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xf, 0xffffffffffffffff, 0x0) poll(0x0, 0x0, 0x63) sendfile(r1, r2, 0x0, 0xa0103) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendfile(r3, r4, 0x0, 0xa0103) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r6, r5, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r7, 0xffffffffffffffff, 0x0, 0x0) r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r9, r8, 0x0, 0x40000) 09:10:38 executing program 6: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000001bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0x20}}], 0x2, 0x0) [ 106.305448] kmemleak: Found object by alias at 0x607f1a63e66c [ 106.305473] CPU: 1 UID: 0 PID: 4011 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 106.305491] Tainted: [W]=WARN [ 106.305495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 106.305502] Call Trace: [ 106.305506] [ 106.305511] dump_stack_lvl+0xca/0x120 [ 106.305536] __lookup_object+0x94/0xb0 [ 106.305553] delete_object_full+0x27/0x70 [ 106.305570] free_percpu+0x30/0x1160 [ 106.305586] ? arch_uprobe_clear_state+0x16/0x140 [ 106.305607] futex_hash_free+0x38/0xc0 [ 106.305621] mmput+0x2d3/0x390 [ 106.305641] do_exit+0x79d/0x2970 [ 106.305659] ? __pfx_do_exit+0x10/0x10 [ 106.305673] ? find_held_lock+0x2b/0x80 [ 106.305691] ? get_signal+0x835/0x2340 [ 106.305712] do_group_exit+0xd3/0x2a0 [ 106.305727] get_signal+0x2315/0x2340 [ 106.305745] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 106.305762] ? __pfx_get_signal+0x10/0x10 [ 106.305779] ? __schedule+0xe91/0x3590 [ 106.305801] arch_do_signal_or_restart+0x80/0x790 [ 106.305819] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 106.305835] ? __x64_sys_futex+0x1c9/0x4d0 [ 106.305848] ? __x64_sys_futex+0x1d2/0x4d0 [ 106.305863] ? __pfx___x64_sys_futex+0x10/0x10 [ 106.305882] exit_to_user_mode_loop+0x8b/0x110 [ 106.305895] do_syscall_64+0x2f7/0x360 [ 106.305909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.305921] RIP: 0033:0x7f5928ac7b19 [ 106.305930] Code: Unable to access opcode bytes at 0x7f5928ac7aef. [ 106.305935] RSP: 002b:00007f592603d218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 106.305946] RAX: 0000000000000001 RBX: 00007f5928bdaf68 RCX: 00007f5928ac7b19 [ 106.305954] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5928bdaf6c [ 106.305961] RBP: 00007f5928bdaf60 R08: 000000000000000e R09: 0000000000000000 [ 106.305968] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5928bdaf6c [ 106.305975] R13: 00007ffd98f2a8cf R14: 00007f592603d300 R15: 0000000000022000 [ 106.305991] [ 106.305995] kmemleak: Object (percpu) 0x607f1a63e668 (size 8): [ 106.306002] kmemleak: comm "syz-executor.3", pid 4015, jiffies 4294773192 [ 106.306009] kmemleak: min_count = 1 [ 106.306013] kmemleak: count = 0 [ 106.306016] kmemleak: flags = 0x21 [ 106.306020] kmemleak: checksum = 0 [ 106.306024] kmemleak: backtrace: [ 106.306028] pcpu_alloc_noprof+0x87a/0x1170 [ 106.306043] alloc_vfsmnt+0x135/0x6e0 [ 106.306057] vfs_create_mount.part.0+0x40/0x440 [ 106.306073] path_mount+0x1637/0x1dd0 [ 106.306085] __x64_sys_mount+0x27b/0x300 [ 106.306097] do_syscall_64+0xbf/0x360 [ 106.306106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.338748] audit: type=1400 audit(1756717838.403:8): avc: denied { open } for pid=4016 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 106.350152] audit: type=1400 audit(1756717838.404:9): avc: denied { kernel } for pid=4016 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 09:10:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(r0, 0x11, 0x64, 0x0, 0x0) 09:10:38 executing program 1: pread64(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffff5b3) 09:10:38 executing program 4: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 09:10:38 executing program 6: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000001bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0x20}}], 0x2, 0x0) 09:10:38 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) sendmmsg$sock(r0, &(0x7f0000000600)=[{{&(0x7f0000000200)=@nfc={0x27, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000300)="e557ce3bd6d952e732a1369d550d", 0xe}], 0x1}}, {{&(0x7f0000000000)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "e8afc870753ff6119517271f31116d25438a6fe9b5be0fe0bc98ec86fa7d229ea58ff66ffeeeeaacf7659d58bb0c057b08a4030000000000000100"}, 0x80, 0x0}}], 0x2, 0x0) 09:10:38 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000001140)=""/4098) 09:10:38 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETVESABLANK(r0, 0x541c, &(0x7f0000000040)=0xd) 09:10:38 executing program 0: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x2}, 0x401, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xf, 0xffffffffffffffff, 0x0) poll(0x0, 0x0, 0x63) sendfile(r1, r2, 0x0, 0xa0103) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendfile(r3, r4, 0x0, 0xa0103) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r6, r5, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r7, 0xffffffffffffffff, 0x0, 0x0) r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r9, r8, 0x0, 0x40000) 09:10:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(r0, 0x11, 0x64, 0x0, 0x0) 09:10:38 executing program 6: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x2}, 0x401, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xf, 0xffffffffffffffff, 0x0) poll(0x0, 0x0, 0x63) sendfile(r1, r2, 0x0, 0xa0103) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendfile(r3, r4, 0x0, 0xa0103) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r6, r5, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r7, 0xffffffffffffffff, 0x0, 0x0) r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r9, r8, 0x0, 0x40000) 09:10:38 executing program 1: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x2}, 0x401, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xf, 0xffffffffffffffff, 0x0) poll(0x0, 0x0, 0x63) sendfile(r1, r2, 0x0, 0xa0103) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendfile(r3, r4, 0x0, 0xa0103) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r6, r5, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r7, 0xffffffffffffffff, 0x0, 0x0) r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r9, r8, 0x0, 0x40000) [ 106.893188] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 106.894907] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 106.894934] CPU: 0 UID: 0 PID: 4044 Comm: syz-executor.0 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 106.894969] Tainted: [W]=WARN [ 106.894977] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 106.894991] RIP: 0010:perf_tp_event+0x175/0xe70 [ 106.895030] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 106.895052] RSP: 0018:ffff888015986dc0 EFLAGS: 00010212 [ 106.895073] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900009aa000 [ 106.895089] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 106.895103] RBP: ffff888015987030 R08: ffff88806ce31340 R09: ffffe8ffffc15b68 [ 106.895119] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 106.895133] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 106.895152] FS: 00007fe220cbf700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 106.895173] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 106.895189] CR2: 000055556516ec58 CR3: 00000000426b9000 CR4: 0000000000350ef0 [ 106.895204] Call Trace: [ 106.895212] [ 106.895227] ? unwind_next_frame+0xb9/0x2540 [ 106.895266] ? __pfx_perf_tp_event+0x10/0x10 [ 106.895300] ? find_held_lock+0x2b/0x80 [ 106.895334] ? unwind_next_frame+0x3b2/0x2540 [ 106.895369] ? lock_release+0xc8/0x290 [ 106.895399] ? unwind_next_frame+0x3bc/0x2540 [ 106.895432] ? do_syscall_64+0xbf/0x360 [ 106.895456] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.895480] ? kernel_text_address+0x11/0xc0 [ 106.895509] ? __kernel_text_address+0xd/0x40 [ 106.895536] ? unwind_get_return_address+0x59/0xa0 [ 106.895570] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 106.895600] ? arch_stack_walk+0x76/0xf0 [ 106.895641] ? perf_trace_run_bpf_submit+0xef/0x180 [ 106.895672] ? __pfx_perf_trace_lock+0x10/0x10 [ 106.895715] perf_trace_run_bpf_submit+0xef/0x180 [ 106.895753] perf_trace_lock+0x337/0x5d0 [ 106.895786] ? __pfx_perf_trace_lock+0x10/0x10 [ 106.895813] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 106.895848] ? lock_acquire+0x15e/0x2f0 [ 106.895873] ? bio_associate_blkg_from_css+0x426/0x1380 [ 106.895908] ? bio_associate_blkg_from_css+0x747/0x1380 [ 106.895940] lock_release+0x1ab/0x290 [ 106.895970] bio_associate_blkg_from_css+0x74c/0x1380 [ 106.896006] ? lock_is_held_type+0x9e/0x120 [ 106.896045] bio_associate_blkg+0x10e/0x2a0 [ 106.896076] bio_init+0x2dd/0x570 [ 106.896106] bio_alloc_bioset+0x472/0x8c0 09:10:38 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) sendmmsg$sock(r0, &(0x7f0000000600)=[{{&(0x7f0000000200)=@nfc={0x27, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000300)="e557ce3bd6d952e732a1369d550d", 0xe}], 0x1}}, {{&(0x7f0000000000)=@nfc_llcp={0x27, 0x2, 0x0, 0x0, 0x0, 0x0, "e8afc870753ff6119517271f31116d25438a6fe9b5be0fe0bc98ec86fa7d229ea58ff66ffeeeeaacf7659d58bb0c057b08a4030000000000000100"}, 0x80, 0x0}}], 0x2, 0x0) [ 106.937539] ? __pfx_bio_alloc_bioset+0x10/0x10 [ 106.937583] ? __ext4_get_inode_loc+0x670/0x1390 [ 106.937618] iomap_dio_alloc_bio.isra.0+0x88/0xc0 [ 106.937647] iomap_dio_bio_iter+0x8aa/0x1550 [ 106.937689] ? __pfx_iomap_dio_bio_iter+0x10/0x10 09:10:39 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000001140)=""/4098) 09:10:39 executing program 2: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x2}, 0x401, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xf, 0xffffffffffffffff, 0x0) poll(0x0, 0x0, 0x63) sendfile(r1, r2, 0x0, 0xa0103) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendfile(r3, r4, 0x0, 0xa0103) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r6, r5, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r7, 0xffffffffffffffff, 0x0, 0x0) r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r9, r8, 0x0, 0x40000) 09:10:39 executing program 4: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x2}, 0x401, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xf, 0xffffffffffffffff, 0x0) poll(0x0, 0x0, 0x63) sendfile(r1, r2, 0x0, 0xa0103) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendfile(r3, r4, 0x0, 0xa0103) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r6, r5, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r7, 0xffffffffffffffff, 0x0, 0x0) r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) sendfile(r9, r8, 0x0, 0x40000) [ 106.937711] ? iomap_iter+0x723/0xdb0 [ 106.937753] __iomap_dio_rw+0x10a1/0x1cf0 [ 106.937799] ? __pfx___iomap_dio_rw+0x10/0x10 [ 106.937819] ? stop_this_handle+0x230/0x510 [ 106.937893] ? ext4_dirty_inode+0xf1/0x130 [ 106.937922] ? __mark_inode_dirty+0x254/0xd00 [ 106.937958] iomap_dio_rw+0x40/0xa0 [ 106.937985] ext4_file_write_iter+0x1196/0x1990 [ 106.938025] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 106.938048] ? trace_kmalloc+0x1f/0xb0 [ 106.938081] ? iter_file_splice_write+0x1cd/0x11f0 [ 106.938114] ? splice_from_pipe_next.part.0+0x165/0x510 [ 106.938157] iter_file_splice_write+0xa3b/0x11f0 [ 106.938211] ? __pfx_iter_file_splice_write+0x10/0x10 [ 106.938277] ? lock_is_held_type+0x9e/0x120 [ 106.938311] ? __pfx_iter_file_splice_write+0x10/0x10 [ 106.938349] direct_splice_actor+0x192/0x7b0 [ 106.938388] splice_direct_to_actor+0x347/0x9d0 [ 106.938424] ? __pfx_direct_splice_actor+0x10/0x10 [ 106.938465] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 106.938502] ? lock_acquire+0x15e/0x2f0 [ 106.938535] do_splice_direct+0x179/0x250 [ 106.938569] ? __pfx_do_splice_direct+0x10/0x10 [ 106.938604] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 106.938642] ? security_file_permission+0x22/0x90 [ 106.938685] do_sendfile+0xa8e/0xdc0 [ 106.938718] ? __pfx_do_sendfile+0x10/0x10 [ 106.938739] ? do_raw_spin_lock+0x123/0x260 [ 106.938775] ? kfree+0x231/0x550 [ 106.938805] ? lock_release+0xc8/0x290 [ 106.938836] __x64_sys_sendfile64+0x1d3/0x210 [ 106.938868] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 106.938900] ? fput+0x6a/0x100 [ 106.938939] do_syscall_64+0xbf/0x360 [ 106.938966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.938990] RIP: 0033:0x7fe22376ab19 [ 106.939011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 106.939034] RSP: 002b:00007fe220cbf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 106.939058] RAX: ffffffffffffffda RBX: 00007fe22387e020 RCX: 00007fe22376ab19 [ 106.939075] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 106.939089] RBP: 00007fe2237c4f6d R08: 0000000000000000 R09: 0000000000000000 [ 106.939104] R10: 00000000000a0103 R11: 0000000000000246 R12: 0000000000000000 [ 106.939118] R13: 00007fff5a4a802f R14: 00007fe220cbf300 R15: 0000000000022000 [ 106.939154] [ 106.939162] Modules linked in: [ 106.940223] ---[ end trace 0000000000000000 ]--- [ 106.940240] RIP: 0010:perf_tp_event+0x175/0xe70 [ 106.940276] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 106.940298] RSP: 0018:ffff888015986dc0 EFLAGS: 00010212 [ 106.940319] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900009aa000 [ 106.940334] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 106.940350] RBP: ffff888015987030 R08: ffff88806ce31340 R09: ffffe8ffffc15b68 [ 106.940366] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 106.940380] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 106.940399] FS: 00007fe220cbf700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 106.940422] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 106.940437] CR2: 000055556516ec58 CR3: 00000000426b9000 CR4: 0000000000350ef0 [ 106.940454] note: syz-executor.0[4044] exited with preempt_count 1 [ 106.940505] ------------[ cut here ]------------ [ 106.940513] WARNING: kernel/exit.c:898 at do_exit+0x1c36/0x2970, CPU#0: syz-executor.0/4044 [ 106.940551] Modules linked in: [ 106.940570] CPU: 0 UID: 0 PID: 4044 Comm: syz-executor.0 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 106.940607] Tainted: [D]=DIE, [W]=WARN [ 106.940616] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 106.940629] RIP: 0010:do_exit+0x1c36/0x2970 [ 106.940657] Code: 96 0a 00 00 c7 43 18 00 00 00 00 e9 21 e6 ff ff e8 ef b3 38 00 bf 02 24 00 00 e8 f5 ab 0b 00 e9 41 ff ff ff e8 db b3 38 00 90 <0f> 0b 90 e9 87 e4 ff ff e8 cd b3 38 00 4c 89 e6 bf 05 06 00 00 e8 [ 106.940679] RSP: 0018:ffff888015987e40 EFLAGS: 00010246 [ 106.940698] RAX: 0000000000040000 RBX: 0000000000000200 RCX: ffffc900009aa000 [ 106.940713] RDX: 0000000000040000 RSI: ffffffff813b42d5 RDI: ffff88801d256468 [ 106.940728] RBP: ffff88801d255280 R08: 0000000000000001 R09: fffffbfff0f126d8 [ 106.940744] R10: 0000000000000200 R11: 0000000000000001 R12: 000000000000000b [ 106.940758] R13: 0000000000002710 R14: dffffc0000000032 R15: 0000000000000000 [ 106.940776] FS: 00007fe220cbf700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 106.940797] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 106.940813] CR2: 000055556516ec58 CR3: 00000000426b9000 CR4: 0000000000350ef0 [ 106.940828] Call Trace: [ 106.941644] [ 107.027562] ? _printk+0xbe/0xf0 [ 107.028393] ? __pfx__printk+0x10/0x10 [ 107.029267] ? __pfx_do_exit+0x10/0x10 [ 107.030219] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 107.031110] make_task_dead+0x174/0x3b0 [ 107.031936] ? do_syscall_64+0xbf/0x360 [ 107.032725] rewind_stack_and_make_dead+0x16/0x20 [ 107.033597] RIP: 0033:0x7fe22376ab19 [ 107.034380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 107.037661] RSP: 002b:00007fe220cbf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 107.039083] RAX: ffffffffffffffda RBX: 00007fe22387e020 RCX: 00007fe22376ab19 [ 107.040307] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 107.041514] RBP: 00007fe2237c4f6d R08: 0000000000000000 R09: 0000000000000000 [ 107.042723] R10: 00000000000a0103 R11: 0000000000000246 R12: 0000000000000000 [ 107.043941] R13: 00007fff5a4a802f R14: 00007fe220cbf300 R15: 0000000000022000 [ 107.045157] [ 107.045560] irq event stamp: 923 [ 107.046150] hardirqs last enabled at (923): [] cond_local_irq_enable.isra.0+0x2e/0x40 [ 107.047764] hardirqs last disabled at (922): [] exc_general_protection+0x32/0x330 [ 107.049295] softirqs last enabled at (824): [] kernel_fpu_end+0x59/0x70 [ 107.050690] softirqs last disabled at (822): [] kernel_fpu_begin_mask+0x1b7/0x290 [ 107.052221] ---[ end trace 0000000000000000 ]--- [ 107.053037] BUG: sleeping function called from invalid context at ./include/linux/percpu-rwsem.h:51 [ 107.054530] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 4044, name: syz-executor.0 [ 107.056002] preempt_count: 0, expected: 0 [ 107.056685] RCU nest depth: 3, expected: 0 [ 107.057405] INFO: lockdep is turned off. [ 107.058109] CPU: 0 UID: 0 PID: 4044 Comm: syz-executor.0 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 107.058149] Tainted: [D]=DIE, [W]=WARN [ 107.058157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.058171] Call Trace: [ 107.058178] [ 107.058187] dump_stack_lvl+0xfa/0x120 [ 107.058227] __might_resched+0x2f3/0x510 [ 107.058254] exit_signals+0x25/0x940 [ 107.058290] do_exit+0x2db/0x2970 [ 107.058318] ? _printk+0xbe/0xf0 [ 107.058344] ? __pfx__printk+0x10/0x10 [ 107.058372] ? __pfx_do_exit+0x10/0x10 [ 107.058398] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 107.058434] make_task_dead+0x174/0x3b0 [ 107.058461] ? do_syscall_64+0xbf/0x360 [ 107.058484] rewind_stack_and_make_dead+0x16/0x20 [ 107.058517] RIP: 0033:0x7fe22376ab19 [ 107.058536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 107.058559] RSP: 002b:00007fe220cbf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 107.058582] RAX: ffffffffffffffda RBX: 00007fe22387e020 RCX: 00007fe22376ab19 [ 107.058598] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 107.058612] RBP: 00007fe2237c4f6d R08: 0000000000000000 R09: 0000000000000000 [ 107.058626] R10: 00000000000a0103 R11: 0000000000000246 R12: 0000000000000000 [ 107.058641] R13: 00007fff5a4a802f R14: 00007fe220cbf300 R15: 0000000000022000 [ 107.058663] [ 107.092997] syz-executor.0 (4044) used greatest stack depth: 24000 bytes left 09:10:39 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETVESABLANK(r0, 0x541c, &(0x7f0000000040)=0xd) [ 107.429262] kmemleak: Found object by alias at 0x607f1a63e66c [ 107.429283] CPU: 1 UID: 0 PID: 4061 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 107.429303] Tainted: [D]=DIE, [W]=WARN [ 107.429307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.429315] Call Trace: [ 107.429319] [ 107.429324] dump_stack_lvl+0xca/0x120 [ 107.429353] __lookup_object+0x94/0xb0 [ 107.429371] delete_object_full+0x27/0x70 [ 107.429387] free_percpu+0x30/0x1160 [ 107.429404] ? arch_uprobe_clear_state+0x16/0x140 [ 107.429423] futex_hash_free+0x38/0xc0 [ 107.429437] mmput+0x2d3/0x390 [ 107.429456] do_exit+0x79d/0x2970 [ 107.429469] ? lock_release+0x1c7/0x290 [ 107.429485] ? __pfx_do_exit+0x10/0x10 [ 107.429498] ? do_raw_spin_lock+0x123/0x260 [ 107.429513] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 107.429530] do_group_exit+0xd3/0x2a0 [ 107.429546] get_signal+0x2315/0x2340 [ 107.429569] ? __pfx_get_signal+0x10/0x10 [ 107.429586] ? do_futex+0x135/0x370 [ 107.429598] ? __pfx_do_futex+0x10/0x10 [ 107.429612] arch_do_signal_or_restart+0x80/0x790 [ 107.429629] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 107.429645] ? __x64_sys_futex+0x1c9/0x4d0 [ 107.429658] ? __x64_sys_futex+0x1d2/0x4d0 [ 107.429672] ? __pfx___x64_sys_futex+0x10/0x10 [ 107.429685] ? xfd_validate_state+0x55/0x180 [ 107.429702] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 107.429719] exit_to_user_mode_loop+0x8b/0x110 [ 107.429732] do_syscall_64+0x2f7/0x360 [ 107.429744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.429756] RIP: 0033:0x7f5928ac7b19 [ 107.429766] Code: Unable to access opcode bytes at 0x7f5928ac7aef. [ 107.429771] RSP: 002b:00007f592601c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 107.429783] RAX: fffffffffffffe00 RBX: 00007f5928bdb028 RCX: 00007f5928ac7b19 [ 107.429791] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5928bdb028 [ 107.429798] RBP: 00007f5928bdb020 R08: 0000000000000000 R09: 0000000000000000 [ 107.429806] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5928bdb02c [ 107.429813] R13: 00007ffd98f2a8cf R14: 00007f592601c300 R15: 0000000000022000 [ 107.429828] [ 107.429832] kmemleak: Object (percpu) 0x607f1a63e668 (size 8): [ 107.429839] kmemleak: comm "syz-executor.2", pid 4062, jiffies 4294774073 [ 107.429846] kmemleak: min_count = 1 [ 107.429850] kmemleak: count = 0 [ 107.429854] kmemleak: flags = 0x21 [ 107.429858] kmemleak: checksum = 0 [ 107.429862] kmemleak: backtrace: [ 107.429866] pcpu_alloc_noprof+0x87a/0x1170 [ 107.429882] percpu_ref_init+0x37/0x400 [ 107.429893] blkg_alloc+0xe9/0x7d0 [ 107.429905] blkg_create+0xe08/0x1420 [ 107.429918] bio_associate_blkg_from_css+0xe06/0x1380 [ 107.429932] bio_associate_blkg+0x10e/0x2a0 [ 107.429946] bio_init+0x2dd/0x570 [ 107.429959] bio_alloc_bioset+0x472/0x8c0 [ 107.429974] iomap_dio_alloc_bio.isra.0+0x88/0xc0 [ 107.429986] iomap_dio_bio_iter+0x8aa/0x1550 [ 107.429995] __iomap_dio_rw+0x10a1/0x1cf0 [ 107.430005] iomap_dio_rw+0x40/0xa0 [ 107.430014] ext4_file_write_iter+0xe0b/0x1990 [ 107.430026] iter_file_splice_write+0xa3b/0x11f0 [ 107.430043] direct_splice_actor+0x192/0x7b0 [ 107.430059] splice_direct_to_actor+0x347/0x9d0 [ 107.632818] kmemleak: Found object by alias at 0x607f1a63db6c [ 107.632860] CPU: 0 UID: 0 PID: 4063 Comm: syz-executor.1 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 107.632899] Tainted: [D]=DIE, [W]=WARN [ 107.632907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 107.632920] Call Trace: [ 107.632928] [ 107.632936] dump_stack_lvl+0xca/0x120 [ 107.632978] __lookup_object+0x94/0xb0 [ 107.633010] delete_object_full+0x27/0x70 [ 107.633042] free_percpu+0x30/0x1160 [ 107.633074] ? arch_uprobe_clear_state+0x16/0x140 [ 107.633109] futex_hash_free+0x38/0xc0 [ 107.633136] mmput+0x2d3/0x390 [ 107.633170] do_exit+0x79d/0x2970 [ 107.633196] ? signal_wake_up_state+0x85/0x120 [ 107.633226] ? zap_other_threads+0x2b9/0x3a0 [ 107.633256] ? __pfx_do_exit+0x10/0x10 [ 107.633281] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 107.633313] ? lock_release+0x1c7/0x290 [ 107.633341] do_group_exit+0xd3/0x2a0 [ 107.633369] __x64_sys_exit_group+0x3e/0x50 [ 107.633397] x64_sys_call+0x18c5/0x18d0 [ 107.633427] do_syscall_64+0xbf/0x360 [ 107.633450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.633473] RIP: 0033:0x7fc8bec15b19 [ 107.633490] Code: Unable to access opcode bytes at 0x7fc8bec15aef. [ 107.633500] RSP: 002b:00007fffa9d80ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 107.633523] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fc8bec15b19 [ 107.633538] RDX: 00007fc8bebc872b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 107.633552] RBP: 0000000000000000 R08: 0000001b2d137bf8 R09: 0000000000000000 [ 107.633566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 107.633580] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffa9d80ba0 [ 107.633601] [ 107.633608] kmemleak: Object (percpu) 0x607f1a63db68 (size 8): [ 107.633622] kmemleak: comm "syz-executor.1", pid 4069, jiffies 4294774186 [ 107.633636] kmemleak: min_count = 1 [ 107.633643] kmemleak: count = 0 [ 107.633650] kmemleak: flags = 0x21 [ 107.633658] kmemleak: checksum = 0 [ 107.633666] kmemleak: backtrace: [ 107.633672] pcpu_alloc_noprof+0x87a/0x1170 [ 107.633703] percpu_ref_init+0x37/0x400 [ 107.633723] blkg_alloc+0xe9/0x7d0 [ 107.633747] blkg_create+0xe08/0x1420 [ 107.633772] bio_associate_blkg_from_css+0xe06/0x1380 [ 107.633800] bio_associate_blkg+0x10e/0x2a0 [ 107.633827] bio_init+0x2dd/0x570 [ 107.633852] bio_alloc_bioset+0x472/0x8c0 [ 107.633882] iomap_dio_alloc_bio.isra.0+0x88/0xc0 [ 107.633903] iomap_dio_bio_iter+0x8aa/0x1550 [ 107.633923] __iomap_dio_rw+0x10a1/0x1cf0 [ 107.633942] iomap_dio_rw+0x40/0xa0 [ 107.633960] ext4_file_write_iter+0xe0b/0x1990 [ 107.633982] iter_file_splice_write+0xa3b/0x11f0 [ 107.634015] direct_splice_actor+0x192/0x7b0 [ 107.634045] splice_direct_to_actor+0x347/0x9d0 VM DIAGNOSIS: 09:10:39 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888015986698 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=552030203a555043 R12=0000000000000000 R13=ffffffff88729290 R14=ffffffff88729240 R15=ffffffff88729500 RIP=ffffffff828e515d RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe220cbf700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe6000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055556516ec58 CR3=00000000426b9000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000ff000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88806ce3de20 RCX=ffffffff816880fc RDX=ffff888017508000 RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880171f7988 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1 R12=ffffed100d9c7bc5 R13=ffff88806ce3de28 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555867f6400 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe1900000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2da24000 CR3=00000000420d7000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007f95be2697c800007f95be2697c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000