Warning: Permanently added '[localhost]:56054' (ECDSA) to the list of known hosts.
2025/09/01 09:33:29 fuzzer started
2025/09/01 09:33:30 dialing manager at localhost:35473
syzkaller login: [ 51.440550] cgroup: Unknown subsys name 'net'
[ 51.503392] cgroup: Unknown subsys name 'cpuset'
[ 51.517712] cgroup: Unknown subsys name 'rlimit'
2025/09/01 09:33:40 syscalls: 2214
2025/09/01 09:33:40 code coverage: enabled
2025/09/01 09:33:40 comparison tracing: enabled
2025/09/01 09:33:40 extra coverage: enabled
2025/09/01 09:33:40 setuid sandbox: enabled
2025/09/01 09:33:40 namespace sandbox: enabled
2025/09/01 09:33:40 Android sandbox: enabled
2025/09/01 09:33:40 fault injection: enabled
2025/09/01 09:33:40 leak checking: enabled
2025/09/01 09:33:40 net packet injection: enabled
2025/09/01 09:33:40 net device setup: enabled
2025/09/01 09:33:40 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 09:33:40 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 09:33:40 USB emulation: enabled
2025/09/01 09:33:40 hci packet injection: enabled
2025/09/01 09:33:40 wifi device emulation: enabled
2025/09/01 09:33:40 802.15.4 emulation: enabled
2025/09/01 09:33:40 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 09:33:40 fetching corpus: 32, signal 25307/28640 (executing program)
2025/09/01 09:33:40 fetching corpus: 79, signal 35199/39836 (executing program)
2025/09/01 09:33:41 fetching corpus: 129, signal 42207/48028 (executing program)
2025/09/01 09:33:41 fetching corpus: 179, signal 46938/53933 (executing program)
2025/09/01 09:33:41 fetching corpus: 229, signal 52661/60565 (executing program)
2025/09/01 09:33:41 fetching corpus: 279, signal 58053/66743 (executing program)
2025/09/01 09:33:41 fetching corpus: 329, signal 64889/74034 (executing program)
2025/09/01 09:33:41 fetching corpus: 379, signal 68221/78128 (executing program)
2025/09/01 09:33:41 fetching corpus: 429, signal 70170/80907 (executing program)
2025/09/01 09:33:41 fetching corpus: 479, signal 71845/83396 (executing program)
2025/09/01 09:33:41 fetching corpus: 529, signal 75536/87544 (executing program)
2025/09/01 09:33:42 fetching corpus: 579, signal 80430/92599 (executing program)
2025/09/01 09:33:42 fetching corpus: 627, signal 84691/96973 (executing program)
2025/09/01 09:33:42 fetching corpus: 676, signal 87144/99963 (executing program)
2025/09/01 09:33:42 fetching corpus: 726, signal 88988/102287 (executing program)
2025/09/01 09:33:42 fetching corpus: 776, signal 91498/105094 (executing program)
2025/09/01 09:33:42 fetching corpus: 826, signal 92971/107018 (executing program)
2025/09/01 09:33:42 fetching corpus: 876, signal 94698/109153 (executing program)
2025/09/01 09:33:42 fetching corpus: 926, signal 96526/111287 (executing program)
2025/09/01 09:33:43 fetching corpus: 976, signal 98445/113415 (executing program)
2025/09/01 09:33:43 fetching corpus: 1026, signal 100229/115431 (executing program)
2025/09/01 09:33:43 fetching corpus: 1075, signal 101720/117111 (executing program)
2025/09/01 09:33:43 fetching corpus: 1125, signal 103194/118808 (executing program)
2025/09/01 09:33:43 fetching corpus: 1175, signal 104520/120318 (executing program)
2025/09/01 09:33:43 fetching corpus: 1224, signal 106255/122082 (executing program)
2025/09/01 09:33:43 fetching corpus: 1274, signal 107533/123522 (executing program)
2025/09/01 09:33:43 fetching corpus: 1324, signal 109293/125218 (executing program)
2025/09/01 09:33:43 fetching corpus: 1374, signal 110601/126598 (executing program)
2025/09/01 09:33:43 fetching corpus: 1424, signal 111680/127812 (executing program)
2025/09/01 09:33:44 fetching corpus: 1474, signal 112396/128802 (executing program)
2025/09/01 09:33:44 fetching corpus: 1524, signal 113421/129929 (executing program)
2025/09/01 09:33:44 fetching corpus: 1574, signal 115112/131379 (executing program)
2025/09/01 09:33:44 fetching corpus: 1624, signal 115735/132217 (executing program)
2025/09/01 09:33:44 fetching corpus: 1674, signal 116784/133289 (executing program)
2025/09/01 09:33:44 fetching corpus: 1724, signal 117790/134312 (executing program)
2025/09/01 09:33:44 fetching corpus: 1774, signal 119150/135457 (executing program)
2025/09/01 09:33:44 fetching corpus: 1824, signal 120242/136424 (executing program)
2025/09/01 09:33:44 fetching corpus: 1874, signal 121181/137293 (executing program)
2025/09/01 09:33:44 fetching corpus: 1923, signal 122369/138280 (executing program)
2025/09/01 09:33:45 fetching corpus: 1972, signal 123035/138998 (executing program)
2025/09/01 09:33:45 fetching corpus: 2021, signal 123718/139716 (executing program)
2025/09/01 09:33:45 fetching corpus: 2071, signal 124453/140436 (executing program)
2025/09/01 09:33:45 fetching corpus: 2121, signal 125201/141129 (executing program)
2025/09/01 09:33:45 fetching corpus: 2171, signal 126416/141983 (executing program)
2025/09/01 09:33:45 fetching corpus: 2221, signal 127319/142724 (executing program)
2025/09/01 09:33:45 fetching corpus: 2271, signal 127869/143325 (executing program)
2025/09/01 09:33:45 fetching corpus: 2321, signal 129171/144170 (executing program)
2025/09/01 09:33:45 fetching corpus: 2371, signal 130423/144960 (executing program)
2025/09/01 09:33:45 fetching corpus: 2421, signal 131241/145519 (executing program)
2025/09/01 09:33:45 fetching corpus: 2471, signal 131901/146024 (executing program)
2025/09/01 09:33:46 fetching corpus: 2521, signal 132783/146576 (executing program)
2025/09/01 09:33:46 fetching corpus: 2571, signal 133571/147028 (executing program)
2025/09/01 09:33:46 fetching corpus: 2621, signal 134351/147514 (executing program)
2025/09/01 09:33:46 fetching corpus: 2671, signal 135221/147984 (executing program)
2025/09/01 09:33:46 fetching corpus: 2721, signal 135963/148382 (executing program)
2025/09/01 09:33:46 fetching corpus: 2771, signal 136833/148828 (executing program)
2025/09/01 09:33:46 fetching corpus: 2821, signal 137470/149225 (executing program)
2025/09/01 09:33:46 fetching corpus: 2871, signal 138106/149570 (executing program)
2025/09/01 09:33:46 fetching corpus: 2921, signal 138982/149969 (executing program)
2025/09/01 09:33:47 fetching corpus: 2971, signal 139419/150255 (executing program)
2025/09/01 09:33:47 fetching corpus: 3021, signal 140157/150556 (executing program)
2025/09/01 09:33:47 fetching corpus: 3071, signal 140804/150855 (executing program)
2025/09/01 09:33:47 fetching corpus: 3121, signal 141293/151074 (executing program)
2025/09/01 09:33:47 fetching corpus: 3171, signal 142022/151341 (executing program)
2025/09/01 09:33:47 fetching corpus: 3221, signal 144226/151760 (executing program)
2025/09/01 09:33:47 fetching corpus: 3271, signal 144862/152001 (executing program)
2025/09/01 09:33:47 fetching corpus: 3321, signal 145584/152195 (executing program)
2025/09/01 09:33:47 fetching corpus: 3371, signal 146154/152337 (executing program)
2025/09/01 09:33:48 fetching corpus: 3421, signal 146842/152527 (executing program)
2025/09/01 09:33:48 fetching corpus: 3471, signal 147812/152664 (executing program)
2025/09/01 09:33:48 fetching corpus: 3521, signal 148479/152762 (executing program)
2025/09/01 09:33:48 fetching corpus: 3571, signal 148883/152873 (executing program)
2025/09/01 09:33:48 fetching corpus: 3621, signal 149539/152956 (executing program)
2025/09/01 09:33:48 fetching corpus: 3671, signal 149923/153003 (executing program)
2025/09/01 09:33:48 fetching corpus: 3694, signal 150077/153019 (executing program)
2025/09/01 09:33:48 fetching corpus: 3694, signal 150077/153019 (executing program)
2025/09/01 09:33:50 starting 8 fuzzer processes
09:33:50 executing program 0:
syz_emit_ethernet(0x36, &(0x7f0000000080)={@link_local, @local, @void, {@ipv4={0x4305, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
09:33:50 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_mreqn(r0, 0x0, 0x27, 0x0, 0x0)
09:33:50 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x46, &(0x7f0000000000)=0xffffff7f, 0x4)
09:33:51 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x18, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000002000028020000028400001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e39333730323938383300"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000e971656294be4eee80012d67ccdc866e010000000c00000000000000dff4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000003000000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000066000f000300040000000000000000000f007f5c", 0x20, 0x800}, {&(0x7f0000010400)="ffffff03000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000dff4655fdff4655fdff4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000dff4655fe0f4655fe0f4655f00000000000004000400000000000000050000000c00"/64, 0x40, 0x2200}, {&(0x7f0000011600)="200000004c3e14de4c3e14de00000000dff4655f00"/32, 0x20, 0x2280}, {&(0x7f0000011700)="c041000000380000dff4655fdff4655fdff4655f00000000000002001c00000000000000000000000d0000000e0000000f0000001000000011000000120000001300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000dff4655f000000000000000000000000000002ea00"/192, 0xc0, 0x3400}, {&(0x7f0000011800)="ed4100003c000000e0f4655fe0f4655fe0f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000003a08c6c6000000000000000000000000000000000000000000000000200000004c3e14de4c3e14de4c3e14dee0f4655f4c3e14de0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x3600}, {&(0x7f0000011900)="ed8100001a040000e0f4655fe0f4655fe0f4655f00000000000001000400000000000000010000001400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009fdbabda000000000000000000000000000000000000000000000000200000004c3e14de4c3e14de4c3e14dee0f4655f4c3e14de0000000000000000", 0xa0, 0x3800}, {&(0x7f0000011a00)="ffa1000026000000e0f4655fe0f4655fe0f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3933373032393838332f66696c65302f66696c65300000000000000000000000000000000000000000000059309ce2000000000000000000000000000000000000000000000000200000004c3e14de4c3e14de4c3e14dee0f4655f4c3e14de0000000000000000", 0xa0, 0x3a00}, {&(0x7f0000011b00)="ed8100000a000000e0f4655fe0f4655fe0f4655f000000000000010000000000000000100100000073797a6b616c6c657273000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000067b843af000000000000000000000000000000000000000000000000200000004c3e14de4c3e14de4c3e14dee0f4655f4c3e14de0000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3c00}, {&(0x7f0000011c00)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000e0f4655fe0f4655fe0f4655f000000000000020014000000000000000100000015000000160000001700000018000000190000000000000000000000000000000000000000000000000000000000000000000000000000000000000068bed055000000000000000000000000000000000000000000000000200000004c3e14de4c3e14de4c3e14dee0f4655f4c3e14de0000000000000000", 0xc0, 0x3de0}, {&(0x7f0000011d00)="ed81000064000000e0f4655fe0f4655fe0f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616ca13ce1c6000000000000000000000000000000000000000000000000200000004c3e14de4c3e14de4c3e14dee0f4655f4c3e14de0000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x4000}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x41c0}, {&(0x7f0000011f00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x6000}, {&(0x7f0000012000)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x6800}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x7000}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x7800}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x8000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x8800}, {&(0x7f0000012500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x9000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x9800}, {&(0x7f0000012700)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0xa000}], 0x0, &(0x7f0000012c00))
[ 72.151511] audit: type=1400 audit(1756719231.053:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
09:33:51 executing program 3:
mq_open(&(0x7f0000000380)='\x00', 0x0, 0x0, &(0x7f00000003c0))
09:33:51 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
ioctl$SG_EMULATED_HOST(r0, 0x1267, &(0x7f0000002040))
09:33:51 executing program 7:
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x3c, &(0x7f0000000140)={0x0, 0x0}, 0x10)
09:33:51 executing program 6:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
unlink(&(0x7f0000000240)='./file0\x00')
read(r0, 0x0, 0x0)
[ 73.377291] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 73.379916] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 73.386457] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 73.392825] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 73.395629] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 73.400083] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 73.402203] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 73.402461] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 73.413309] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 73.422059] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 73.443333] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 73.446763] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 73.449069] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 73.460442] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 73.463445] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 73.567167] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 73.570443] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 73.573634] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 73.580701] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 73.589651] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 73.591102] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 73.593154] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 73.597282] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 73.601101] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 73.618239] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 73.679468] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 73.687352] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 73.690769] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 73.692366] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 73.699015] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 73.699157] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 73.700138] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 73.703233] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 73.706073] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 73.729314] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 73.747736] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 73.756390] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 73.756409] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 73.757602] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 73.766986] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 75.471467] Bluetooth: hci0: command tx timeout
[ 75.471466] Bluetooth: hci1: command tx timeout
[ 75.534949] Bluetooth: hci2: command tx timeout
[ 75.663226] Bluetooth: hci3: command tx timeout
[ 75.664022] Bluetooth: hci4: command tx timeout
[ 75.856419] Bluetooth: hci7: command tx timeout
[ 75.856450] Bluetooth: hci5: command tx timeout
[ 75.857231] Bluetooth: hci6: command tx timeout
[ 77.519081] Bluetooth: hci1: command tx timeout
[ 77.521926] Bluetooth: hci0: command tx timeout
[ 77.583999] Bluetooth: hci2: command tx timeout
[ 77.710935] Bluetooth: hci4: command tx timeout
[ 77.712444] Bluetooth: hci3: command tx timeout
[ 77.904890] Bluetooth: hci5: command tx timeout
[ 77.904915] Bluetooth: hci7: command tx timeout
[ 77.905306] Bluetooth: hci6: command tx timeout
[ 79.566995] Bluetooth: hci0: command tx timeout
[ 79.567024] Bluetooth: hci1: command tx timeout
[ 79.630916] Bluetooth: hci2: command tx timeout
[ 79.759546] Bluetooth: hci3: command tx timeout
[ 79.759597] Bluetooth: hci4: command tx timeout
[ 79.950977] Bluetooth: hci7: command tx timeout
[ 79.951003] Bluetooth: hci5: command tx timeout
[ 79.951793] Bluetooth: hci6: command tx timeout
[ 81.615066] Bluetooth: hci1: command tx timeout
[ 81.615122] Bluetooth: hci0: command tx timeout
[ 81.679908] Bluetooth: hci2: command tx timeout
[ 81.806924] Bluetooth: hci4: command tx timeout
[ 81.808442] Bluetooth: hci3: command tx timeout
[ 81.999906] Bluetooth: hci5: command tx timeout
[ 82.000056] Bluetooth: hci6: command tx timeout
[ 82.000381] Bluetooth: hci7: command tx timeout
[ 109.096189] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 109.097086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 109.267648] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 109.268319] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 109.664451] audit: type=1400 audit(1756719268.566:8): avc: denied { open } for pid=3668 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 109.666216] audit: type=1400 audit(1756719268.566:9): avc: denied { kernel } for pid=3668 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
09:34:28 executing program 7:
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x3c, &(0x7f0000000140)={0x0, 0x0}, 0x10)
09:34:28 executing program 7:
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x3c, &(0x7f0000000140)={0x0, 0x0}, 0x10)
09:34:28 executing program 7:
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x3c, &(0x7f0000000140)={0x0, 0x0}, 0x10)
09:34:29 executing program 7:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r2 = dup(r1)
fcntl$setstatus(r1, 0x4, 0x4c00)
copy_file_range(r2, 0x0, r0, 0x0, 0x401, 0x0)
09:34:29 executing program 7:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r2 = dup(r1)
fcntl$setstatus(r1, 0x4, 0x4c00)
copy_file_range(r2, 0x0, r0, 0x0, 0x401, 0x0)
09:34:29 executing program 7:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r2 = dup(r1)
fcntl$setstatus(r1, 0x4, 0x4c00)
copy_file_range(r2, 0x0, r0, 0x0, 0x401, 0x0)
09:34:29 executing program 7:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r2 = dup(r1)
fcntl$setstatus(r1, 0x4, 0x4c00)
copy_file_range(r2, 0x0, r0, 0x0, 0x401, 0x0)
[ 110.939244] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 110.939826] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.083277] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.083905] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
09:34:29 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145802, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x9b7f, &(0x7f0000000080))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
[ 111.249887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.250474] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.350979] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.351534] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.522198] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.522765] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.614685] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.615632] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.678183] loop2: detected capacity change from 0 to 512
[ 111.717024] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 111.765814] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 111.799208] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.799748] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.867377] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.868023] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.076021] audit: type=1400 audit(1756719270.976:10): avc: denied { watch_reads } for pid=3884 comm="syz-executor.6" path="/syzkaller-testdir856720969/syzkaller.YLWadt/0" dev="sda" ino=15974 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1
[ 112.185446] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.186069] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.220097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.220679] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.280253] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.281572] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.290621] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.291474] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.572924] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.573648] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.594808] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.595540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.695733] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
09:34:31 executing program 0:
syz_emit_ethernet(0x36, &(0x7f0000000080)={@link_local, @local, @void, {@ipv4={0x4305, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
09:34:31 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145802, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x9b7f, &(0x7f0000000080))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
09:34:31 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_mreqn(r0, 0x0, 0x27, 0x0, 0x0)
09:34:31 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
ioctl$SG_EMULATED_HOST(r0, 0x1267, &(0x7f0000002040))
09:34:31 executing program 3:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
unlink(&(0x7f0000000240)='./file0\x00')
read(r0, 0x0, 0x0)
09:34:31 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x46, &(0x7f0000000000)=0xffffff7f, 0x4)
09:34:31 executing program 6:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
unlink(&(0x7f0000000240)='./file0\x00')
read(r0, 0x0, 0x0)
09:34:31 executing program 2:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145802, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x9b7f, &(0x7f0000000080))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
09:34:31 executing program 0:
syz_emit_ethernet(0x36, &(0x7f0000000080)={@link_local, @local, @void, {@ipv4={0x4305, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
09:34:31 executing program 2:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145802, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x9b7f, &(0x7f0000000080))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
09:34:31 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_mreqn(r0, 0x0, 0x27, 0x0, 0x0)
09:34:31 executing program 3:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
unlink(&(0x7f0000000240)='./file0\x00')
read(r0, 0x0, 0x0)
09:34:31 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
ioctl$SG_EMULATED_HOST(r0, 0x1267, &(0x7f0000002040))
09:34:31 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145802, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x9b7f, &(0x7f0000000080))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
09:34:31 executing program 6:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
unlink(&(0x7f0000000240)='./file0\x00')
read(r0, 0x0, 0x0)
09:34:31 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x46, &(0x7f0000000000)=0xffffff7f, 0x4)
09:34:31 executing program 0:
syz_emit_ethernet(0x36, &(0x7f0000000080)={@link_local, @local, @void, {@ipv4={0x4305, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
09:34:31 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x46, &(0x7f0000000000)=0xffffff7f, 0x4)
09:34:31 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_mreqn(r0, 0x0, 0x27, 0x0, 0x0)
09:34:31 executing program 6:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
unlink(&(0x7f0000000240)='./file0\x00')
read(r0, 0x0, 0x0)
[ 112.992878] kmemleak: Found object by alias at 0x607f1a63e37c
[ 112.992899] CPU: 1 UID: 0 PID: 3934 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 112.992918] Tainted: [W]=WARN
[ 112.992922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 112.992929] Call Trace:
[ 112.992934]
[ 112.992939] dump_stack_lvl+0xca/0x120
[ 112.992973] __lookup_object+0x94/0xb0
[ 112.992992] delete_object_full+0x27/0x70
[ 112.993009] free_percpu+0x30/0x1160
[ 112.993027] ? arch_uprobe_clear_state+0x16/0x140
[ 112.993047] futex_hash_free+0x38/0xc0
[ 112.993063] mmput+0x2d3/0x390
[ 112.993082] do_exit+0x79d/0x2970
[ 112.993096] ? signal_wake_up_state+0x85/0x120
[ 112.993113] ? zap_other_threads+0x2b9/0x3a0
[ 112.993129] ? __pfx_do_exit+0x10/0x10
[ 112.993142] ? do_group_exit+0x1c3/0x2a0
[ 112.993156] ? lock_release+0xc8/0x290
09:34:31 executing program 3:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
unlink(&(0x7f0000000240)='./file0\x00')
read(r0, 0x0, 0x0)
[ 112.993174] do_group_exit+0xd3/0x2a0
[ 112.993189] __x64_sys_exit_group+0x3e/0x50
[ 112.993203] x64_sys_call+0x18c5/0x18d0
[ 112.993220] do_syscall_64+0xbf/0x360
[ 112.993233] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 112.993245] RIP: 0033:0x7fb25b4c0b19
[ 112.993254] Code: Unable to access opcode bytes at 0x7fb25b4c0aef.
[ 112.993260] RSP: 002b:00007ffe6303db28 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 112.993272] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fb25b4c0b19
[ 112.993280] RDX: 00007fb25b47372b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 112.993288] RBP: 0000000000000000 R08: 0000001b2d425e64 R09: 0000000000000000
[ 112.993295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 112.993302] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffe6303dc10
[ 112.993318]
[ 112.993322] kmemleak: Object (percpu) 0x607f1a63e378 (size 8):
[ 112.993329] kmemleak: comm "syz-executor.7", pid 3944, jiffies 4294779832
[ 112.993336] kmemleak: min_count = 1
[ 112.993352] kmemleak: count = 0
[ 112.993355] kmemleak: flags = 0x21
[ 112.993359] kmemleak: checksum = 0
[ 112.993363] kmemleak: backtrace:
[ 112.993367] pcpu_alloc_noprof+0x87a/0x1170
[ 112.993383] percpu_ref_init+0x37/0x400
[ 112.993395] ioctx_alloc+0x27f/0x1e10
[ 112.993408] __x64_sys_io_setup+0xc8/0x1f0
[ 112.993421] do_syscall_64+0xbf/0x360
[ 112.993430] entry_SYSCALL_64_after_hwframe+0x77/0x7f
09:34:31 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
ioctl$SG_EMULATED_HOST(r0, 0x1267, &(0x7f0000002040))
09:34:32 executing program 5:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100)
setresuid(0x0, r1, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40087602, 0x0)
09:34:32 executing program 6:
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='{\x00', 0xffffffffffffffff)
add_key(&(0x7f0000000700)='user\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)="d8", 0x1, 0xffffffffffffffff)
09:34:32 executing program 2:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145802, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x9b7f, &(0x7f0000000080))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
09:34:32 executing program 1:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs$userns(0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, r0, 0x1)
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x11, 0x0, 0x0)
09:34:32 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x1}}, './file0\x00'})
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7d, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/hardlockup_count', 0x0, 0x0)
read(r1, &(0x7f0000000040)=""/33, 0x21)
perf_event_open(0x0, 0xffffffffffffffff, 0x10, r1, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/hardlockup_count', 0x0, 0x0)
read(r2, &(0x7f0000000040)=""/33, 0x21)
perf_event_open(0x0, 0xffffffffffffffff, 0x10, r2, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r2, 0x2402, 0xfffffffffffffff9)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r1}}, './file0\x00'})
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)
09:34:32 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145802, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0)
io_setup(0x9b7f, &(0x7f0000000080))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
09:34:32 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000001c0)={@private1, 0x800, 0x0, 0xff, 0x9}, 0x20)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@private2, 0x800, 0x2}, 0x20)
09:34:32 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0x14}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0)
[ 113.215792] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 113.216705] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 113.217314] CPU: 0 UID: 0 PID: 3964 Comm: syz-executor.6 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 113.218522] Tainted: [W]=WARN
[ 113.219093] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 113.220834] RIP: 0010:perf_tp_event+0x175/0xe70
[ 113.221875] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 113.225327] RSP: 0018:ffff888016bef780 EFLAGS: 00010012
[ 113.226498] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 113.227021] RDX: ffff88800fae1b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 113.227548] RBP: ffff888016bef9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16378
[ 113.228068] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 113.228587] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[ 113.229109] FS: 0000555582666400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 113.229706] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 113.230139] CR2: 00007f7355e77004 CR3: 000000001e3e6000 CR4: 0000000000350ef0
[ 113.230663] Call Trace:
[ 113.230857]
[ 113.231030] ? __pfx_perf_tp_event+0x10/0x10
[ 113.231366] ? arch_scale_cpu_capacity+0x17/0xa0
[ 113.231730] ? cpu_util.constprop.0+0x17d/0x340
[ 113.232086] ? __asan_memset+0x24/0x50
[ 113.232382] ? sched_balance_find_dst_group+0xa9a/0x1c00
[ 113.232783] ? lock_release+0xc8/0x290
[ 113.233081] ? __pfx_sched_balance_find_dst_group+0x10/0x10
[ 113.233509] ? __lock_acquire+0x694/0x1b70
[ 113.233826] ? perf_trace_run_bpf_submit+0xef/0x180
[ 113.234201] ? sched_clock+0x37/0x60
[ 113.234488] ? sched_clock_cpu+0x6c/0x4e0
[ 113.234801] ? lock_is_held_type+0x9e/0x120
[ 113.235131] perf_trace_run_bpf_submit+0xef/0x180
[ 113.235497] perf_trace_preemptirq_template+0x259/0x430
[ 113.235893] ? lock_is_held_type+0x9e/0x120
[ 113.236224] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 113.236657] ? _raw_spin_lock_irqsave+0x53/0x60
[ 113.237009] trace_irq_disable.constprop.0+0xa6/0x100
[ 113.237398] _raw_spin_lock_irqsave+0x53/0x60
[ 113.237739] try_to_wake_up+0xa0/0x11d0
[ 113.238044] ? __pfx_try_to_wake_up+0x10/0x10
[ 113.238383] ? plist_del+0x122/0x270
[ 113.238670] ? find_held_lock+0x2b/0x80
[ 113.238974] ? futex_wake+0x474/0x540
[ 113.239266] wake_up_q+0xa1/0x130
[ 113.239534] futex_wake+0x47e/0x540
[ 113.239814] ? __pfx_futex_wake+0x10/0x10
[ 113.240133] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 113.240522] ? finish_task_switch.isra.0+0x206/0x840
[ 113.240909] do_futex+0x26d/0x370
[ 113.241174] ? __pfx_do_futex+0x10/0x10
[ 113.241486] ? __pfx___schedule+0x10/0x10
[ 113.241801] __x64_sys_futex+0x1c9/0x4d0
[ 113.242111] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 113.242542] ? __pfx___x64_sys_futex+0x10/0x10
[ 113.242886] ? xfd_validate_state+0x55/0x180
[ 113.243232] do_syscall_64+0xbf/0x360
[ 113.243519] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.243905] RIP: 0033:0x7f979db56b19
[ 113.244182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 113.245509] RSP: 002b:00007ffd2a478e38 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 113.246068] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f979db56b19
[ 113.246596] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f979dc69f68
[ 113.247118] RBP: 00007f979dc69f60 R08: 00007f979b0cc700 R09: 0000000000000000
[ 113.247642] R10: 00007f979b0cc700 R11: 0000000000000246 R12: 00007f979dc6e140
[ 113.248163] R13: 00007ffd2a478f40 R14: 00007f979dc69f60 R15: 000000000001b9d2
[ 113.248687]
[ 113.248865] Modules linked in:
[ 113.249112] ---[ end trace 0000000000000000 ]---
[ 113.249472] RIP: 0010:perf_tp_event+0x175/0xe70
[ 113.249825] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 113.251144] RSP: 0018:ffff888016bef780 EFLAGS: 00010012
[ 113.251535] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 113.252056] RDX: ffff88800fae1b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 113.252581] RBP: ffff888016bef9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16378
[ 113.253100] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 113.253629] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[ 113.254151] FS: 0000555582666400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 113.254739] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 113.255168] CR2: 00007f7355e77004 CR3: 000000001e3e6000 CR4: 0000000000350ef0
[ 113.255695] note: syz-executor.6[3964] exited with irqs disabled
[ 113.256199] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 113.257013] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 113.257576] CPU: 0 UID: 0 PID: 3964 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 113.258449] Tainted: [D]=DIE, [W]=WARN
[ 113.258733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 113.259339] RIP: 0010:perf_tp_event+0x175/0xe70
[ 113.259693] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 113.261016] RSP: 0018:ffff88806ce08b40 EFLAGS: 00010012
[ 113.261415] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 113.261937] RDX: ffff88800fae1b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 113.262463] RBP: ffff88806ce08db0 R08: ffff88806ce313e8 R09: ffffe8ffffc16378
[ 113.262985] R10: 0000000000000000 R11: ffff8880159db898 R12: dffffc0000000000
[ 113.263506] R13: 0000000000000014 R14: ffff88806ce313e8 R15: dffffc0000000000
[ 113.264028] FS: 0000555582666400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 113.264618] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 113.265045] CR2: 00007f7355e77004 CR3: 000000001e3e6000 CR4: 0000000000350ef0
[ 113.265575] Call Trace:
[ 113.265769]
[ 113.265937] ? __pfx_perf_tp_event+0x10/0x10
[ 113.266273] ? reweight_entity+0x42a/0x800
[ 113.266591] ? update_cfs_group+0x11d/0x260
[ 113.266916] ? enqueue_task_fair+0xded/0x1e00
[ 113.267255] ? check_preempt_wakeup_fair+0x6e/0x950
[ 113.267626] ? wakeup_preempt+0x140/0x2a0
[ 113.267937] ? lock_release+0x1c7/0x290
[ 113.268235] ? lock_release+0x1c7/0x290
[ 113.268535] ? do_raw_spin_unlock+0x53/0x220
[ 113.268871] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 113.269253] ? try_to_wake_up+0x8ae/0x11d0
[ 113.269583] ? perf_trace_run_bpf_submit+0xef/0x180
[ 113.269959] ? lock_release+0x1c7/0x290
[ 113.270259] perf_trace_run_bpf_submit+0xef/0x180
[ 113.270625] perf_trace_preemptirq_template+0x259/0x430
[ 113.271021] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 113.271453] ? read_tsc+0x9/0x20
[ 113.271714] ? ktime_get+0x16d/0x270
[ 113.272001] ? __pfx_lapic_next_deadline+0x10/0x10
[ 113.272407] ? clockevents_program_event+0x135/0x360
[ 113.272829] ? _raw_spin_lock_irq+0x42/0x50
[ 113.273183] trace_irq_disable.constprop.0+0xa6/0x100
[ 113.273606] _raw_spin_lock_irq+0x42/0x50
[ 113.273949] run_timer_softirq+0x10f/0x210
[ 113.274300] handle_softirqs+0x1b1/0x770
[ 113.274644] __irq_exit_rcu+0xc4/0x100
[ 113.274971] irq_exit_rcu+0x9/0x20
[ 113.275265] sysvec_apic_timer_interrupt+0x70/0x80
[ 113.275678]
[ 113.275862]
[ 113.276049] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 113.276476] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 113.276858] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[ 113.278304] RSP: 0018:ffff888016beff28 EFLAGS: 00000246
[ 113.278726] RAX: 0000000000000001 RBX: ffff88800fae1b80 RCX: ffffffff817c3ab6
[ 113.279286] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 113.279848] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 113.280413] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff88800fae1b80
[ 113.280974] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[ 113.281551] ? trace_irq_enable.constprop.0+0x26/0x100
[ 113.281971] ? make_task_dead+0x214/0x3b0
[ 113.282306] ? make_task_dead+0x214/0x3b0
[ 113.282639] ? do_syscall_64+0xbf/0x360
[ 113.282958] rewind_stack_and_make_dead+0x16/0x20
[ 113.283350] RIP: 0033:0x7f979db56b19
[ 113.283647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 113.285078] RSP: 002b:00007ffd2a478e38 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 113.285686] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f979db56b19
[ 113.286248] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f979dc69f68
[ 113.286808] RBP: 00007f979dc69f60 R08: 00007f979b0cc700 R09: 0000000000000000
[ 113.287380] R10: 00007f979b0cc700 R11: 0000000000000246 R12: 00007f979dc6e140
[ 113.287942] R13: 00007ffd2a478f40 R14: 00007f979dc69f60 R15: 000000000001b9d2
[ 113.288505]
[ 113.288694] Modules linked in:
[ 113.288954] ---[ end trace 0000000000000000 ]---
[ 113.289325] RIP: 0010:perf_tp_event+0x175/0xe70
09:34:32 executing program 5:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100)
setresuid(0x0, r1, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40087602, 0x0)
09:34:32 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0x14}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0)
[ 113.289717] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 113.291270] RSP: 0018:ffff888016bef780 EFLAGS: 00010012
[ 113.291704] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 113.292266] RDX: ffff88800fae1b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 113.292826] RBP: ffff888016bef9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16378
[ 113.293410] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 113.293977] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[ 113.294556] FS: 0000555582666400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 113.295198] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 113.295660] CR2: 00007f7355e77004 CR3: 000000001e3e6000 CR4: 0000000000350ef0
[ 113.296224] Kernel panic - not syncing: Fatal exception in interrupt
[ 113.296928] Kernel Offset: disabled
[ 113.297222] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
09:34:32 Registers:
info registers vcpu 0
RAX=0000000000000043 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888016bef070
R8 =0000000000000000 R9 =ffffed1001755046 R10=0000000000000043 R11=0000000065646f43
R12=0000000000000043 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555582666400 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe4c00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f7355e77004 CR3=000000001e3e6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f979dc3d7c000007f979dc3d7c8
XMM02=00007f979dc3d7e000007f979dc3d7c0 XMM03=00007f979dc3d7c800007f979dc3d7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88806ce3de20 RCX=ffffffff816880fc RDX=ffff88800fffd280
RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880168df6f8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1
R12=ffffed100d9c7bc5 R13=ffff88806ce3de28 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555577e0f400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe6000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb25c50d3a4 CR3=0000000040271000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000