Warning: Permanently added '[localhost]:65512' (ECDSA) to the list of known hosts.
2025/09/01 10:14:28 fuzzer started
2025/09/01 10:14:28 dialing manager at localhost:35473
syzkaller login: [ 58.860718] cgroup: Unknown subsys name 'net'
[ 58.923273] cgroup: Unknown subsys name 'cpuset'
[ 58.936178] cgroup: Unknown subsys name 'rlimit'
2025/09/01 10:14:39 syscalls: 2214
2025/09/01 10:14:39 code coverage: enabled
2025/09/01 10:14:39 comparison tracing: enabled
2025/09/01 10:14:39 extra coverage: enabled
2025/09/01 10:14:39 setuid sandbox: enabled
2025/09/01 10:14:39 namespace sandbox: enabled
2025/09/01 10:14:39 Android sandbox: enabled
2025/09/01 10:14:39 fault injection: enabled
2025/09/01 10:14:39 leak checking: enabled
2025/09/01 10:14:39 net packet injection: enabled
2025/09/01 10:14:39 net device setup: enabled
2025/09/01 10:14:39 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 10:14:39 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 10:14:39 USB emulation: enabled
2025/09/01 10:14:39 hci packet injection: enabled
2025/09/01 10:14:39 wifi device emulation: enabled
2025/09/01 10:14:39 802.15.4 emulation: enabled
2025/09/01 10:14:39 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 10:14:39 fetching corpus: 50, signal 22389/25854 (executing program)
2025/09/01 10:14:39 fetching corpus: 100, signal 32458/37325 (executing program)
2025/09/01 10:14:39 fetching corpus: 150, signal 41814/47859 (executing program)
2025/09/01 10:14:39 fetching corpus: 200, signal 45926/53238 (executing program)
2025/09/01 10:14:39 fetching corpus: 250, signal 51433/59848 (executing program)
2025/09/01 10:14:39 fetching corpus: 300, signal 55261/64706 (executing program)
2025/09/01 10:14:40 fetching corpus: 350, signal 61150/71397 (executing program)
2025/09/01 10:14:40 fetching corpus: 400, signal 67849/78684 (executing program)
2025/09/01 10:14:40 fetching corpus: 450, signal 70960/82590 (executing program)
2025/09/01 10:14:40 fetching corpus: 500, signal 72721/85286 (executing program)
2025/09/01 10:14:40 fetching corpus: 550, signal 75525/88824 (executing program)
2025/09/01 10:14:40 fetching corpus: 600, signal 76801/91028 (executing program)
2025/09/01 10:14:40 fetching corpus: 650, signal 78783/93780 (executing program)
2025/09/01 10:14:40 fetching corpus: 700, signal 81115/96780 (executing program)
2025/09/01 10:14:40 fetching corpus: 750, signal 82550/98972 (executing program)
2025/09/01 10:14:40 fetching corpus: 800, signal 83685/100926 (executing program)
2025/09/01 10:14:40 fetching corpus: 850, signal 88664/105816 (executing program)
2025/09/01 10:14:41 fetching corpus: 900, signal 91091/108644 (executing program)
2025/09/01 10:14:41 fetching corpus: 950, signal 92207/110469 (executing program)
2025/09/01 10:14:41 fetching corpus: 1000, signal 94621/113237 (executing program)
2025/09/01 10:14:41 fetching corpus: 1050, signal 95754/115007 (executing program)
2025/09/01 10:14:41 fetching corpus: 1100, signal 98502/117918 (executing program)
2025/09/01 10:14:41 fetching corpus: 1150, signal 100064/119920 (executing program)
2025/09/01 10:14:41 fetching corpus: 1200, signal 101524/121744 (executing program)
2025/09/01 10:14:41 fetching corpus: 1250, signal 102768/123439 (executing program)
2025/09/01 10:14:41 fetching corpus: 1300, signal 104172/125207 (executing program)
2025/09/01 10:14:42 fetching corpus: 1350, signal 105683/127002 (executing program)
2025/09/01 10:14:42 fetching corpus: 1400, signal 106982/128671 (executing program)
2025/09/01 10:14:42 fetching corpus: 1450, signal 108196/130174 (executing program)
2025/09/01 10:14:42 fetching corpus: 1500, signal 109645/131832 (executing program)
2025/09/01 10:14:42 fetching corpus: 1550, signal 111093/133488 (executing program)
2025/09/01 10:14:42 fetching corpus: 1600, signal 112283/134950 (executing program)
2025/09/01 10:14:42 fetching corpus: 1650, signal 113300/136204 (executing program)
2025/09/01 10:14:42 fetching corpus: 1700, signal 114108/137360 (executing program)
2025/09/01 10:14:42 fetching corpus: 1750, signal 115139/138602 (executing program)
2025/09/01 10:14:42 fetching corpus: 1800, signal 115928/139708 (executing program)
2025/09/01 10:14:42 fetching corpus: 1850, signal 117591/141333 (executing program)
2025/09/01 10:14:43 fetching corpus: 1900, signal 119061/142731 (executing program)
2025/09/01 10:14:43 fetching corpus: 1950, signal 120218/143937 (executing program)
2025/09/01 10:14:43 fetching corpus: 2000, signal 121237/145057 (executing program)
2025/09/01 10:14:43 fetching corpus: 2050, signal 122373/146225 (executing program)
2025/09/01 10:14:43 fetching corpus: 2100, signal 123719/147449 (executing program)
2025/09/01 10:14:43 fetching corpus: 2150, signal 124236/148267 (executing program)
2025/09/01 10:14:43 fetching corpus: 2200, signal 125106/149240 (executing program)
2025/09/01 10:14:43 fetching corpus: 2250, signal 126130/150254 (executing program)
2025/09/01 10:14:43 fetching corpus: 2300, signal 127139/151205 (executing program)
2025/09/01 10:14:44 fetching corpus: 2350, signal 128013/152113 (executing program)
2025/09/01 10:14:44 fetching corpus: 2400, signal 129359/153125 (executing program)
2025/09/01 10:14:44 fetching corpus: 2450, signal 130187/153953 (executing program)
2025/09/01 10:14:44 fetching corpus: 2500, signal 130882/154684 (executing program)
2025/09/01 10:14:44 fetching corpus: 2550, signal 132134/155594 (executing program)
2025/09/01 10:14:44 fetching corpus: 2600, signal 132869/156324 (executing program)
2025/09/01 10:14:44 fetching corpus: 2650, signal 133729/157125 (executing program)
2025/09/01 10:14:44 fetching corpus: 2700, signal 134521/157858 (executing program)
2025/09/01 10:14:44 fetching corpus: 2750, signal 134926/158424 (executing program)
2025/09/01 10:14:44 fetching corpus: 2800, signal 135579/159086 (executing program)
2025/09/01 10:14:44 fetching corpus: 2850, signal 136574/159815 (executing program)
2025/09/01 10:14:45 fetching corpus: 2900, signal 137155/160412 (executing program)
2025/09/01 10:14:45 fetching corpus: 2950, signal 137634/160950 (executing program)
2025/09/01 10:14:45 fetching corpus: 3000, signal 138652/161657 (executing program)
2025/09/01 10:14:45 fetching corpus: 3050, signal 139312/162194 (executing program)
2025/09/01 10:14:45 fetching corpus: 3100, signal 140080/162759 (executing program)
2025/09/01 10:14:45 fetching corpus: 3150, signal 140699/163391 (executing program)
2025/09/01 10:14:45 fetching corpus: 3200, signal 141786/164069 (executing program)
2025/09/01 10:14:45 fetching corpus: 3250, signal 142348/164589 (executing program)
2025/09/01 10:14:45 fetching corpus: 3300, signal 142973/165038 (executing program)
2025/09/01 10:14:45 fetching corpus: 3350, signal 143642/165515 (executing program)
2025/09/01 10:14:46 fetching corpus: 3400, signal 144530/166089 (executing program)
2025/09/01 10:14:46 fetching corpus: 3450, signal 145169/166531 (executing program)
2025/09/01 10:14:46 fetching corpus: 3500, signal 145688/166945 (executing program)
2025/09/01 10:14:46 fetching corpus: 3550, signal 146638/167360 (executing program)
2025/09/01 10:14:46 fetching corpus: 3600, signal 147145/167724 (executing program)
2025/09/01 10:14:46 fetching corpus: 3650, signal 147656/168071 (executing program)
2025/09/01 10:14:46 fetching corpus: 3700, signal 148611/168449 (executing program)
2025/09/01 10:14:46 fetching corpus: 3750, signal 149111/168763 (executing program)
2025/09/01 10:14:46 fetching corpus: 3800, signal 149624/169088 (executing program)
2025/09/01 10:14:47 fetching corpus: 3850, signal 149971/169383 (executing program)
2025/09/01 10:14:47 fetching corpus: 3900, signal 150486/169660 (executing program)
2025/09/01 10:14:47 fetching corpus: 3950, signal 151146/169957 (executing program)
2025/09/01 10:14:47 fetching corpus: 4000, signal 151775/170226 (executing program)
2025/09/01 10:14:47 fetching corpus: 4050, signal 152215/170468 (executing program)
2025/09/01 10:14:47 fetching corpus: 4100, signal 152589/170688 (executing program)
2025/09/01 10:14:47 fetching corpus: 4150, signal 152901/170936 (executing program)
2025/09/01 10:14:47 fetching corpus: 4200, signal 153433/170962 (executing program)
2025/09/01 10:14:47 fetching corpus: 4250, signal 153800/170977 (executing program)
2025/09/01 10:14:47 fetching corpus: 4300, signal 154227/170980 (executing program)
2025/09/01 10:14:47 fetching corpus: 4350, signal 154581/170995 (executing program)
2025/09/01 10:14:48 fetching corpus: 4400, signal 155092/171021 (executing program)
2025/09/01 10:14:48 fetching corpus: 4450, signal 155572/171069 (executing program)
2025/09/01 10:14:48 fetching corpus: 4500, signal 156248/171089 (executing program)
2025/09/01 10:14:48 fetching corpus: 4550, signal 156989/171096 (executing program)
2025/09/01 10:14:48 fetching corpus: 4600, signal 157493/171100 (executing program)
2025/09/01 10:14:48 fetching corpus: 4650, signal 157930/171106 (executing program)
2025/09/01 10:14:48 fetching corpus: 4700, signal 158500/171151 (executing program)
2025/09/01 10:14:48 fetching corpus: 4750, signal 158975/171201 (executing program)
2025/09/01 10:14:48 fetching corpus: 4800, signal 159497/171224 (executing program)
2025/09/01 10:14:48 fetching corpus: 4850, signal 160039/171232 (executing program)
2025/09/01 10:14:48 fetching corpus: 4900, signal 160388/171246 (executing program)
2025/09/01 10:14:48 fetching corpus: 4950, signal 160718/171259 (executing program)
2025/09/01 10:14:49 fetching corpus: 5000, signal 161103/171263 (executing program)
2025/09/01 10:14:49 fetching corpus: 5050, signal 161957/171266 (executing program)
2025/09/01 10:14:49 fetching corpus: 5100, signal 162742/171274 (executing program)
2025/09/01 10:14:49 fetching corpus: 5150, signal 163115/171280 (executing program)
2025/09/01 10:14:49 fetching corpus: 5200, signal 163615/171290 (executing program)
2025/09/01 10:14:49 fetching corpus: 5250, signal 163896/171291 (executing program)
2025/09/01 10:14:49 fetching corpus: 5300, signal 164206/171295 (executing program)
2025/09/01 10:14:49 fetching corpus: 5350, signal 164724/171300 (executing program)
2025/09/01 10:14:49 fetching corpus: 5400, signal 165060/171301 (executing program)
2025/09/01 10:14:49 fetching corpus: 5450, signal 165376/171346 (executing program)
2025/09/01 10:14:50 fetching corpus: 5500, signal 166214/171359 (executing program)
2025/09/01 10:14:50 fetching corpus: 5550, signal 166548/171391 (executing program)
2025/09/01 10:14:50 fetching corpus: 5600, signal 166974/171394 (executing program)
2025/09/01 10:14:50 fetching corpus: 5650, signal 167247/171399 (executing program)
2025/09/01 10:14:50 fetching corpus: 5700, signal 167734/171447 (executing program)
2025/09/01 10:14:50 fetching corpus: 5750, signal 168100/171458 (executing program)
2025/09/01 10:14:50 fetching corpus: 5800, signal 168441/171465 (executing program)
2025/09/01 10:14:50 fetching corpus: 5841, signal 168824/171479 (executing program)
2025/09/01 10:14:50 fetching corpus: 5841, signal 168824/171479 (executing program)
2025/09/01 10:14:53 starting 8 fuzzer processes
10:14:53 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000380)={0x14242100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
10:14:53 executing program 1:
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8000)
10:14:53 executing program 7:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
10:14:53 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0xa}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0)
10:14:53 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001180)=[{&(0x7f0000000000)="a20e73f1b1812c8df6967520cdbfb383417a9437ee7abadfd3289b313768", 0x1e}], 0x1)
10:14:53 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind(r0, &(0x7f0000000040)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "7b822a20fc80980b03e110ef5b928029812a589463d459ff04bf9d3202ca2368c69c1336f19301a4ba27ce3b2a1c33c041d56c0976b9185b5319fcf39bf328"}, 0x80)
10:14:53 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='shortname=mixed,defcontext=s'])
[ 83.541199] audit: type=1400 audit(1756721693.181:7): avc: denied { execmem } for pid=283 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
10:14:53 executing program 5:
clock_settime(0x0, &(0x7f0000000100))
[ 84.688209] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 84.691443] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 84.696100] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 84.702366] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 84.705707] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 84.944567] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 84.946879] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 84.957376] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 84.962545] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 84.964309] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 84.969063] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 84.971302] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 84.973442] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 84.978972] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 84.983957] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 84.986129] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 84.989427] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 84.991313] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 84.997863] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 84.999758] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 85.004082] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 85.005752] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 85.009011] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 85.013079] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 85.015913] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 85.016073] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 85.019743] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 85.029730] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 85.045237] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 85.048768] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 85.051389] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 85.053011] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 85.055570] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 85.068163] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 85.076944] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 85.110118] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 85.134102] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 85.165565] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 85.172040] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 85.178003] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 86.786971] Bluetooth: hci0: command tx timeout
[ 87.042680] Bluetooth: hci1: command tx timeout
[ 87.106688] Bluetooth: hci4: command tx timeout
[ 87.107636] Bluetooth: hci2: command tx timeout
[ 87.108233] Bluetooth: hci3: command tx timeout
[ 87.170600] Bluetooth: hci6: command tx timeout
[ 87.170988] Bluetooth: hci5: command tx timeout
[ 87.234565] Bluetooth: hci7: command tx timeout
[ 88.834586] Bluetooth: hci0: command tx timeout
[ 89.090650] Bluetooth: hci1: command tx timeout
[ 89.154686] Bluetooth: hci4: command tx timeout
[ 89.154748] Bluetooth: hci3: command tx timeout
[ 89.155439] Bluetooth: hci2: command tx timeout
[ 89.218816] Bluetooth: hci5: command tx timeout
[ 89.219816] Bluetooth: hci6: command tx timeout
[ 89.282718] Bluetooth: hci7: command tx timeout
[ 90.882541] Bluetooth: hci0: command tx timeout
[ 91.139550] Bluetooth: hci1: command tx timeout
[ 91.203519] Bluetooth: hci2: command tx timeout
[ 91.203920] Bluetooth: hci3: command tx timeout
[ 91.204309] Bluetooth: hci4: command tx timeout
[ 91.266550] Bluetooth: hci5: command tx timeout
[ 91.266968] Bluetooth: hci6: command tx timeout
[ 91.330545] Bluetooth: hci7: command tx timeout
[ 92.930671] Bluetooth: hci0: command tx timeout
[ 93.187578] Bluetooth: hci1: command tx timeout
[ 93.250592] Bluetooth: hci3: command tx timeout
[ 93.250737] Bluetooth: hci4: command tx timeout
[ 93.251375] Bluetooth: hci2: command tx timeout
[ 93.314726] Bluetooth: hci6: command tx timeout
[ 93.315778] Bluetooth: hci5: command tx timeout
[ 93.378680] Bluetooth: hci7: command tx timeout
[ 124.176429] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.177784] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 124.542767] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.544201] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 124.968407] audit: type=1400 audit(1756721734.607:8): avc: denied { open } for pid=3726 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 124.980836] audit: type=1400 audit(1756721734.608:9): avc: denied { kernel } for pid=3726 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
10:15:34 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0xa}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0)
[ 125.343235] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.344302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:15:35 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0xa}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0)
[ 125.546812] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.547400] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:15:35 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x2c, r1, 0x1, 0x0, 0x0, {0xa}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0)
[ 125.702111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.703028] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:15:35 executing program 2:
r0 = socket$inet(0x2, 0x80003, 0xff)
shutdown(r0, 0x1)
sendto$inet(r0, &(0x7f0000000240)="3e0ac342be0d0e771050c2abe23a6603152ef17a", 0x14, 0x0, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
10:15:35 executing program 2:
r0 = socket$inet(0x2, 0x80003, 0xff)
shutdown(r0, 0x1)
sendto$inet(r0, &(0x7f0000000240)="3e0ac342be0d0e771050c2abe23a6603152ef17a", 0x14, 0x0, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
[ 125.851434] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.852583] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:15:35 executing program 2:
r0 = socket$inet(0x2, 0x80003, 0xff)
shutdown(r0, 0x1)
sendto$inet(r0, &(0x7f0000000240)="3e0ac342be0d0e771050c2abe23a6603152ef17a", 0x14, 0x0, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
[ 126.009045] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.009841] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.124628] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.125186] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.403791] SELinux: security_context_str_to_sid (s) failed with errno=-22
[ 126.424349] SELinux: security_context_str_to_sid (s) failed with errno=-22
[ 126.862030] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.862713] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.975597] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.976234] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.034298] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.035538] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.102797] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.103411] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.249710] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 127.306115] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.306999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.337540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.338101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.352540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.353091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.389858] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.390430] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:15:37 executing program 1:
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8000)
10:15:37 executing program 2:
r0 = socket$inet(0x2, 0x80003, 0xff)
shutdown(r0, 0x1)
sendto$inet(r0, &(0x7f0000000240)="3e0ac342be0d0e771050c2abe23a6603152ef17a", 0x14, 0x0, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
10:15:37 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind(r0, &(0x7f0000000040)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "7b822a20fc80980b03e110ef5b928029812a589463d459ff04bf9d3202ca2368c69c1336f19301a4ba27ce3b2a1c33c041d56c0976b9185b5319fcf39bf328"}, 0x80)
10:15:37 executing program 4:
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000380)=@ceph_nfs_fh={0x8, 0x80000}, 0x0)
10:15:37 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001180)=[{&(0x7f0000000000)="a20e73f1b1812c8df6967520cdbfb383417a9437ee7abadfd3289b313768", 0x1e}], 0x1)
10:15:37 executing program 7:
timer_create(0x2, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(0x0, &(0x7f0000000680))
10:15:37 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
keyctl$join(0x1, 0x0)
10:15:37 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000380)={0x14242100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
10:15:37 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001180)=[{&(0x7f0000000000)="a20e73f1b1812c8df6967520cdbfb383417a9437ee7abadfd3289b313768", 0x1e}], 0x1)
10:15:37 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
keyctl$join(0x1, 0x0)
10:15:37 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
10:15:37 executing program 4:
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000380)=@ceph_nfs_fh={0x8, 0x80000}, 0x0)
10:15:37 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
keyctl$join(0x1, 0x0)
10:15:37 executing program 1:
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8000)
10:15:37 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
keyctl$join(0x1, 0x0)
10:15:37 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000380)={0x14242100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
10:15:37 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001180)=[{&(0x7f0000000000)="a20e73f1b1812c8df6967520cdbfb383417a9437ee7abadfd3289b313768", 0x1e}], 0x1)
10:15:37 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
10:15:37 executing program 4:
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000380)=@ceph_nfs_fh={0x8, 0x80000}, 0x0)
10:15:37 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind(r0, &(0x7f0000000040)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "7b822a20fc80980b03e110ef5b928029812a589463d459ff04bf9d3202ca2368c69c1336f19301a4ba27ce3b2a1c33c041d56c0976b9185b5319fcf39bf328"}, 0x80)
10:15:37 executing program 7:
timer_create(0x2, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(0x0, &(0x7f0000000680))
10:15:37 executing program 4:
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000380)=@ceph_nfs_fh={0x8, 0x80000}, 0x0)
10:15:37 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind(r0, &(0x7f0000000040)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "7b822a20fc80980b03e110ef5b928029812a589463d459ff04bf9d3202ca2368c69c1336f19301a4ba27ce3b2a1c33c041d56c0976b9185b5319fcf39bf328"}, 0x80)
10:15:37 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
10:15:37 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000380)={0x14242100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
10:15:37 executing program 1:
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8000)
10:15:37 executing program 5:
timer_create(0x2, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(0x0, &(0x7f0000000680))
10:15:37 executing program 7:
timer_create(0x2, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(0x0, &(0x7f0000000680))
10:15:37 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={[{@subsystem='cpuacct'}, {@noprefix}, {@name={'name', 0x3d, 'tmpfs\x00'}}]})
[ 128.137070] cgroup: noprefix used incorrectly
[ 128.158856] cgroup: noprefix used incorrectly
10:15:37 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={[{@subsystem='cpuacct'}, {@noprefix}, {@name={'name', 0x3d, 'tmpfs\x00'}}]})
10:15:37 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/253, 0xfd)
syslog(0xa, 0x0, 0x0)
syslog(0x1, &(0x7f0000000100)=""/60, 0x3c)
syslog(0x1, &(0x7f0000000140)=""/51, 0x33)
syslog(0x0, 0x0, 0x0)
syslog(0xa, &(0x7f0000000180)=""/41, 0x29)
syslog(0x1, 0x0, 0x0)
syslog(0x1, 0x0, 0x0)
syslog(0x0, 0x0, 0x0)
syslog(0x1, &(0x7f00000004c0)=""/19, 0x13)
syslog(0x2, &(0x7f0000000500)=""/75, 0x4b)
syslog(0xa, 0x0, 0x0)
syslog(0x0, &(0x7f0000000580)=""/4096, 0x1000)
10:15:37 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
10:15:37 executing program 0:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x0, 0x0)
10:15:37 executing program 5:
timer_create(0x2, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(0x0, &(0x7f0000000680))
10:15:37 executing program 7:
timer_create(0x2, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(0x0, &(0x7f0000000680))
10:15:37 executing program 5:
timer_create(0x2, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(0x0, &(0x7f0000000680))
10:15:37 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x10, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r1, 0x0, &(0x7f0000000100), 0x0, 0x4)
kcmp(0x0, 0x0, 0x4, 0xffffffffffffffff, 0xffffffffffffffff)
r2 = fork()
ptrace(0xffffffffffffffff, r2)
kcmp(r2, 0x0, 0x4, 0xffffffffffffffff, 0xffffffffffffffff)
msgsnd(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0004"], 0x8, 0x0)
msgrcv(0x0, &(0x7f0000000280)={0x0, ""/96}, 0x68, 0x0, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000080)={{0x3, 0x0, 0xffffffffffffffff, 0xee01, 0x0, 0x8, 0xb1dc}, 0x0, 0x0, 0x6, 0x80, 0x2e, 0x7fffffff, 0x3ff, 0x5c1e, 0x400, 0x3, 0x0, r2})
10:15:37 executing program 1:
alarm(0x1)
alarm(0x0)
10:15:37 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x50, 0x0, &(0x7f0000000040)=0x4a)
[ 128.331248] cgroup: noprefix used incorrectly
[ 128.332071] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 128.332965] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 128.333565] CPU: 1 UID: 0 PID: 3999 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 128.334811] Tainted: [W]=WARN
[ 128.335418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 128.337335] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.338373] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.342716] RSP: 0018:ffff888046787780 EFLAGS: 00010012
[ 128.343631] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.344202] RDX: ffff888045ab0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.344779] RBP: ffff8880467879f0 R08: ffff88806cf31340 R09: ffffe8ffffd16418
[ 128.345357] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 128.345933] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 128.346507] FS: 00005555685eb400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 128.347152] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.347617] CR2: 0000000020001000 CR3: 000000001748b000 CR4: 0000000000350ef0
[ 128.348188] Call Trace:
[ 128.348399]
[ 128.348585] ? __pfx_perf_tp_event+0x10/0x10
[ 128.348950] ? arch_scale_cpu_capacity+0x17/0xa0
[ 128.349347] ? cpu_util.constprop.0+0x17d/0x340
[ 128.349736] ? __asan_memset+0x24/0x50
[ 128.350064] ? sched_balance_find_dst_group+0xa9a/0x1c00
[ 128.350509] ? lock_release+0xc8/0x290
[ 128.350832] ? __pfx_sched_balance_find_dst_group+0x10/0x10
[ 128.351289] ? __lock_acquire+0x694/0x1b70
[ 128.351635] ? perf_trace_run_bpf_submit+0xef/0x180
[ 128.352043] perf_trace_run_bpf_submit+0xef/0x180
[ 128.352438] perf_trace_preemptirq_template+0x259/0x430
[ 128.352875] ? __pick_eevdf+0x326/0x570
[ 128.353200] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 128.353669] ? update_curr+0x39e/0x500
[ 128.353995] ? find_held_lock+0x2b/0x80
[ 128.354327] ? try_to_wake_up+0x8ae/0x11d0
[ 128.354677] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 128.355095] trace_irq_enable.constprop.0+0xa6/0x100
[ 128.355508] trace_hardirqs_on+0x26/0x40
[ 128.355838] _raw_spin_unlock_irqrestore+0x2c/0x50
[ 128.356238] try_to_wake_up+0x8ae/0x11d0
[ 128.356576] ? __pfx_try_to_wake_up+0x10/0x10
[ 128.356943] ? plist_del+0x122/0x270
[ 128.357253] ? find_held_lock+0x2b/0x80
[ 128.357582] ? futex_wake+0x474/0x540
[ 128.357908] wake_up_q+0xa1/0x130
[ 128.358204] futex_wake+0x47e/0x540
[ 128.358506] ? __pfx_futex_wake+0x10/0x10
[ 128.358852] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 128.359270] ? finish_task_switch.isra.0+0x206/0x840
[ 128.359688] do_futex+0x26d/0x370
[ 128.359977] ? __pfx_do_futex+0x10/0x10
[ 128.360299] ? __pfx___schedule+0x10/0x10
[ 128.360641] __x64_sys_futex+0x1c9/0x4d0
[ 128.360969] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 128.361438] ? __pfx___x64_sys_futex+0x10/0x10
[ 128.361811] ? xfd_validate_state+0x55/0x180
[ 128.362184] do_syscall_64+0xbf/0x360
[ 128.362495] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.362912] RIP: 0033:0x7fcbecda3b19
[ 128.363211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 128.364661] RSP: 002b:00007ffc0f2b7818 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 128.365272] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcbecda3b19
[ 128.365846] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcbeceb6f68
[ 128.366423] RBP: 00007fcbeceb6f60 R08: 00007fcbea319700 R09: 0000000000000000
[ 128.366981] R10: 00007fcbea319700 R11: 0000000000000246 R12: 00007fcbecebb060
[ 128.367527] R13: 00007ffc0f2b7920 R14: 00007fcbeceb6f60 R15: 000000000001f48a
[ 128.368078]
[ 128.368268] Modules linked in:
[ 128.368523] ---[ end trace 0000000000000000 ]---
[ 128.368527] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[ 128.368885] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.370297] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 128.370651] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.371728] CPU: 0 UID: 0 PID: 4002 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 128.373095] RSP: 0018:ffff888046787780 EFLAGS: 00010012
[ 128.374574] Tainted: [D]=DIE, [W]=WARN
[ 128.374972] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.375458] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 128.375999] RDX: ffff888045ab0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.377026] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.377571] RBP: ffff8880467879f0 R08: ffff88806cf31340 R09: ffffe8ffffd16418
[ 128.378157] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.378699] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 128.380945] RSP: 0018:ffff88801efef780 EFLAGS: 00010012
[ 128.381484] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 128.381487]
[ 128.381498] FS: 00005555685eb400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 128.382148] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90003c19000
[ 128.382691] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.382905] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 128.383518] CR2: 0000000020001000 CR3: 000000001748b000 CR4: 0000000000350ef0
[ 128.384353] RBP: ffff88801efef9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16418
[ 128.384816] note: syz-executor.5[3999] exited with irqs disabled
[ 128.385647] R10: 0000000000000000 R11: ffff88800eb30498 R12: dffffc0000000000
[ 128.388588] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[ 128.389441] FS: 00007f636fa65700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 128.390401] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.391098] CR2: 0000000020000040 CR3: 000000000fdc4000 CR4: 0000000000350ef0
[ 128.391955] Call Trace:
[ 128.392269]
[ 128.392553] ? __pfx_perf_tp_event+0x10/0x10
[ 128.393095] ? lock_acquire+0x18c/0x2f0
[ 128.393586] ? lock_acquire+0x18c/0x2f0
[ 128.394075] ? css_rstat_updated+0x1b8/0x4d0
[ 128.394625] ? __pfx_css_rstat_updated+0x10/0x10
[ 128.395202] ? do_raw_spin_lock+0x123/0x260
[ 128.395727] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 128.396304] ? lock_acquire+0x18c/0x2f0
[ 128.396788] ? lock_release+0x1c7/0x290
[ 128.397276] ? lock_release+0x1c7/0x290
[ 128.397759] ? __pfx_lru_add+0x10/0x10
[ 128.398250] ? __folio_batch_add_and_move+0x365/0x910
[ 128.398881] ? perf_trace_run_bpf_submit+0xef/0x180
[ 128.399485] ? __handle_mm_fault+0x753/0x3260
[ 128.400034] perf_trace_run_bpf_submit+0xef/0x180
[ 128.400621] perf_trace_preemptirq_template+0x259/0x430
[ 128.401249] ? trace_sched_set_need_resched_tp+0xd4/0x110
[ 128.401917] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 128.402603] ? __pfx___resched_curr+0x10/0x10
[ 128.403150] ? check_preempt_wakeup_fair+0x406/0x950
[ 128.403754] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 128.404361] trace_irq_enable.constprop.0+0xa6/0x100
[ 128.404960] trace_hardirqs_on+0x26/0x40
[ 128.405448] _raw_spin_unlock_irqrestore+0x2c/0x50
[ 128.406043] try_to_wake_up+0x8ae/0x11d0
[ 128.406541] ? __pfx_try_to_wake_up+0x10/0x10
[ 128.407082] ? plist_del+0x122/0x270
[ 128.407540] ? __futex_unqueue+0xda/0x1c0
[ 128.408036] wake_up_q+0xa1/0x130
[ 128.408467] futex_wake+0x47e/0x540
[ 128.408914] ? __pfx_futex_wake+0x10/0x10
[ 128.409412] ? lock_release+0x1c7/0x290
[ 128.409900] ? _raw_spin_unlock_irq+0x23/0x40
[ 128.410444] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 128.411062] ? _raw_spin_unlock_irq+0x23/0x40
[ 128.411625] do_futex+0x26d/0x370
[ 128.412101] ? __pfx_do_futex+0x10/0x10
[ 128.412605] ? count_memcg_events+0x32b/0x420
[ 128.413156] __x64_sys_futex+0x1c9/0x4d0
[ 128.413652] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 128.414349] ? __pfx___x64_sys_futex+0x10/0x10
[ 128.414905] do_syscall_64+0xbf/0x360
[ 128.415366] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 128.415979] RIP: 0033:0x7f63724efb19
[ 128.416424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 128.418557] RSP: 002b:00007f636fa65218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 128.419442] RAX: ffffffffffffffda RBX: 00007f6372602f68 RCX: 00007f63724efb19
[ 128.420268] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6372602f6c
[ 128.421089] RBP: 00007f6372602f60 R08: 000000000000000e R09: 0000000000000000
[ 128.421923] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6372602f6c
[ 128.422747] R13: 00007ffd2c10d50f R14: 00007f636fa65300 R15: 0000000000022000
[ 128.423584]
[ 128.423864] Modules linked in:
[ 128.424253] ---[ end trace 0000000000000000 ]---
[ 128.424254] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI
[ 128.424795] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.425661] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 128.426201] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.426791] CPU: 1 UID: 0 PID: 3999 Comm: syz-executor.5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 128.428857] RSP: 0018:ffff888046787780 EFLAGS: 00010012
[ 128.429785] Tainted: [D]=DIE, [W]=WARN
[ 128.429793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 128.430403] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.430708] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.431648] RDX: ffff888045ab0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.432208] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.432744] RBP: ffff8880467879f0 R08: ffff88806cf31340 R09: ffffe8ffffd16418
[ 128.433298] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[ 128.435378] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 128.435938]
[ 128.435943] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.436544] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 128.437104] RDX: ffff888045ab0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.437310] FS: 00007f636fa65700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[ 128.437868] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd16418
[ 128.438680] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.439235] R10: 0000000000000000 R11: ffff88800e478498 R12: dffffc0000000000
[ 128.440139] CR2: 0000000020000040 CR3: 000000000fdc4000 CR4: 0000000000350ef0
[ 128.440691] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 128.441351] note: syz-executor.7[4002] exited with irqs disabled
[ 128.441913] FS: 00005555685eb400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 128.444377] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.444839] CR2: 0000000020001000 CR3: 000000001748b000 CR4: 0000000000350ef0
[ 128.445403] Call Trace:
[ 128.445613]
[ 128.445796] ? __pfx_perf_tp_event+0x10/0x10
[ 128.446165] ? enqueue_task_fair+0xded/0x1e00
[ 128.446528] ? check_preempt_wakeup_fair+0x6e/0x950
[ 128.446928] ? wakeup_preempt+0x140/0x2a0
[ 128.447262] ? lock_release+0x1c7/0x290
[ 128.447583] ? lock_release+0x1c7/0x290
[ 128.447907] ? do_raw_spin_unlock+0x53/0x220
[ 128.448269] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 128.448678] ? try_to_wake_up+0x8ae/0x11d0
[ 128.449027] ? do_raw_spin_lock+0x123/0x260
[ 128.449378] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 128.449758] ? perf_trace_run_bpf_submit+0xef/0x180
[ 128.450172] perf_trace_run_bpf_submit+0xef/0x180
[ 128.450571] perf_trace_preemptirq_template+0x259/0x430
[ 128.450997] ? read_tsc+0x9/0x20
[ 128.451279] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 128.451746] ? clockevents_program_event+0x135/0x360
[ 128.452160] ? tick_program_event+0xac/0x140
[ 128.452516] ? handle_softirqs+0x16e/0x770
[ 128.452866] trace_irq_enable.constprop.0+0xa6/0x100
[ 128.453272] trace_hardirqs_on+0x26/0x40
[ 128.453605] handle_softirqs+0x16e/0x770
[ 128.453947] __irq_exit_rcu+0xc4/0x100
[ 128.454269] irq_exit_rcu+0x9/0x20
[ 128.454557] sysvec_apic_timer_interrupt+0x70/0x80
[ 128.454957]
[ 128.455141]
[ 128.455325] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 128.455751] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 128.456133] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[ 128.457564] RSP: 0018:ffff888046787f28 EFLAGS: 00000246
[ 128.457992] RAX: 0000000000000001 RBX: ffff888045ab0000 RCX: ffffffff817c3ab6
[ 128.458560] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 128.459135] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 128.459720] R10: ffffffff8643b457 R11: 3030303030302043 R12: ffff888045ab0000
[ 128.460295] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[ 128.460875] ? trace_irq_enable.constprop.0+0x26/0x100
[ 128.461306] ? make_task_dead+0x214/0x3b0
[ 128.461651] ? make_task_dead+0x214/0x3b0
[ 128.461999] ? do_syscall_64+0xbf/0x360
[ 128.462331] rewind_stack_and_make_dead+0x16/0x20
[ 128.462740] RIP: 0033:0x7fcbecda3b19
[ 128.463046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 128.464510] RSP: 002b:00007ffc0f2b7818 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 128.465124] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcbecda3b19
[ 128.465715] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcbeceb6f68
[ 128.466299] RBP: 00007fcbeceb6f60 R08: 00007fcbea319700 R09: 0000000000000000
[ 128.466883] R10: 00007fcbea319700 R11: 0000000000000246 R12: 00007fcbecebb060
[ 128.467463] R13: 00007ffc0f2b7920 R14: 00007fcbeceb6f60 R15: 000000000001f48a
[ 128.468043]
[ 128.468241] Modules linked in:
[ 128.468513] ---[ end trace 0000000000000000 ]---
[ 128.468515] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#4] SMP KASAN NOPTI
[ 128.468893] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.470152] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 128.470527] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.471509] CPU: 0 UID: 0 PID: 4002 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 128.472962] RSP: 0018:ffff888046787780 EFLAGS: 00010012
[ 128.474288] Tainted: [D]=DIE, [W]=WARN
[ 128.474709] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 128.475138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 128.475710] RDX: ffff888045ab0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[ 128.476631] RIP: 0010:perf_tp_event+0x175/0xe70
[ 128.477200] RBP: ffff8880467879f0 R08: ffff88806cf31340 R09: ffffe8ffffd16418
[ 128.477719] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 128.478298] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 128.480312] RSP: 0018:ffff88806ce08b80 EFLAGS: 00010012
[ 128.480891] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 128.480894]
[ 128.480905] FS: 00005555685eb400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 128.481483] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 128.482064] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 128.482260] RDX: ffff88801c6d1b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 128.482903] CR2: 0000000020001000 CR3: 000000001748b000 CR4: 0000000000350ef0
[ 128.483686] RBP: ffff88806ce08df0 R08: ffff88806ce313e8 R09: ffffe8ffffc16418
[ 128.484161] Kernel panic - not syncing: Fatal exception in interrupt
[ 129.528016] Shutting down cpus with NMI
[ 129.530139] Kernel Offset: disabled
[ 129.530411] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
10:15:38 Registers:
info registers vcpu 0
RAX=0000000000000001 RBX=0000000000000001 RCX=ffffffff84be3c0e RDX=fffffbfff0f0f609
RSI=0000000000000004 RDI=ffffffff8787b044 RBP=ffffffff8787b044 RSP=ffff88801efef530
R8 =0000000000000000 R9 =fffffbfff0f0f608 R10=ffffffff8787b047 R11=202c746c75616620
R12=1ffff11003dfdea7 R13=0000000000000007 R14=fffffbfff0f0f608 R15=ffff88801efef568
RIP=ffffffff84be3da0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f636fa65700 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe2400000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000040 CR3=000000000fdc4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f63725d67c000007f63725d67c8
XMM02=00007f63725d67e000007f63725d67c0 XMM03=00007f63725d67c800007f63725d67c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff8880467870f0
R8 =0000000000000000 R9 =ffffed10016cb046 R10=000000000000005b R11=313030203a505352
R12=000000000000005b R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00005555685eb400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe5300000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020001000 CR3=000000001748b000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007fcbece8a7c000007fcbece8a7c8
XMM02=00007fcbece8a7e000007fcbece8a7c0 XMM03=00007fcbece8a7c800007fcbece8a7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000