Warning: Permanently added '[localhost]:15487' (ECDSA) to the list of known hosts. 2025/09/01 10:18:28 fuzzer started 2025/09/01 10:18:28 dialing manager at localhost:35473 syzkaller login: [ 44.832334] cgroup: Unknown subsys name 'net' [ 44.898964] cgroup: Unknown subsys name 'cpuset' [ 44.916719] cgroup: Unknown subsys name 'rlimit' 2025/09/01 10:18:39 syscalls: 2214 2025/09/01 10:18:39 code coverage: enabled 2025/09/01 10:18:39 comparison tracing: enabled 2025/09/01 10:18:39 extra coverage: enabled 2025/09/01 10:18:39 setuid sandbox: enabled 2025/09/01 10:18:39 namespace sandbox: enabled 2025/09/01 10:18:39 Android sandbox: enabled 2025/09/01 10:18:39 fault injection: enabled 2025/09/01 10:18:39 leak checking: enabled 2025/09/01 10:18:39 net packet injection: enabled 2025/09/01 10:18:39 net device setup: enabled 2025/09/01 10:18:39 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 10:18:39 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 10:18:39 USB emulation: enabled 2025/09/01 10:18:39 hci packet injection: enabled 2025/09/01 10:18:39 wifi device emulation: enabled 2025/09/01 10:18:39 802.15.4 emulation: enabled 2025/09/01 10:18:39 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 10:18:39 fetching corpus: 50, signal 14700/18347 (executing program) 2025/09/01 10:18:39 fetching corpus: 100, signal 34787/39545 (executing program) 2025/09/01 10:18:39 fetching corpus: 150, signal 40493/46555 (executing program) 2025/09/01 10:18:39 fetching corpus: 200, signal 45344/52655 (executing program) 2025/09/01 10:18:40 fetching corpus: 250, signal 50435/58904 (executing program) 2025/09/01 10:18:40 fetching corpus: 300, signal 53540/63211 (executing program) 2025/09/01 10:18:40 fetching corpus: 350, signal 60038/70459 (executing program) 2025/09/01 10:18:40 fetching corpus: 400, signal 66718/77744 (executing program) 2025/09/01 10:18:40 fetching corpus: 450, signal 69628/81511 (executing program) 2025/09/01 10:18:40 fetching corpus: 500, signal 72290/84957 (executing program) 2025/09/01 10:18:40 fetching corpus: 550, signal 75666/89074 (executing program) 2025/09/01 10:18:40 fetching corpus: 600, signal 78068/92282 (executing program) 2025/09/01 10:18:40 fetching corpus: 650, signal 81211/95992 (executing program) 2025/09/01 10:18:41 fetching corpus: 700, signal 85163/100278 (executing program) 2025/09/01 10:18:41 fetching corpus: 750, signal 87190/102988 (executing program) 2025/09/01 10:18:41 fetching corpus: 800, signal 89652/105969 (executing program) 2025/09/01 10:18:41 fetching corpus: 850, signal 90986/108003 (executing program) 2025/09/01 10:18:41 fetching corpus: 900, signal 92536/110171 (executing program) 2025/09/01 10:18:41 fetching corpus: 950, signal 95584/113415 (executing program) 2025/09/01 10:18:41 fetching corpus: 1000, signal 96748/115209 (executing program) 2025/09/01 10:18:41 fetching corpus: 1050, signal 98542/117427 (executing program) 2025/09/01 10:18:41 fetching corpus: 1100, signal 99578/119041 (executing program) 2025/09/01 10:18:42 fetching corpus: 1150, signal 101021/120956 (executing program) 2025/09/01 10:18:42 fetching corpus: 1200, signal 102672/122943 (executing program) 2025/09/01 10:18:42 fetching corpus: 1250, signal 104841/125326 (executing program) 2025/09/01 10:18:42 fetching corpus: 1300, signal 105973/126861 (executing program) 2025/09/01 10:18:42 fetching corpus: 1350, signal 107524/128714 (executing program) 2025/09/01 10:18:42 fetching corpus: 1400, signal 110732/131572 (executing program) 2025/09/01 10:18:42 fetching corpus: 1450, signal 112160/133185 (executing program) 2025/09/01 10:18:42 fetching corpus: 1500, signal 114262/135211 (executing program) 2025/09/01 10:18:42 fetching corpus: 1550, signal 115368/136628 (executing program) 2025/09/01 10:18:42 fetching corpus: 1600, signal 116522/138008 (executing program) 2025/09/01 10:18:43 fetching corpus: 1650, signal 118061/139628 (executing program) 2025/09/01 10:18:43 fetching corpus: 1700, signal 119103/140908 (executing program) 2025/09/01 10:18:43 fetching corpus: 1750, signal 120011/142075 (executing program) 2025/09/01 10:18:43 fetching corpus: 1800, signal 120980/143238 (executing program) 2025/09/01 10:18:43 fetching corpus: 1850, signal 121967/144431 (executing program) 2025/09/01 10:18:43 fetching corpus: 1900, signal 122775/145439 (executing program) 2025/09/01 10:18:43 fetching corpus: 1950, signal 123972/146680 (executing program) 2025/09/01 10:18:43 fetching corpus: 2000, signal 124830/147711 (executing program) 2025/09/01 10:18:43 fetching corpus: 2050, signal 125987/148863 (executing program) 2025/09/01 10:18:43 fetching corpus: 2100, signal 126740/149754 (executing program) 2025/09/01 10:18:43 fetching corpus: 2150, signal 127542/150675 (executing program) 2025/09/01 10:18:44 fetching corpus: 2200, signal 128190/151520 (executing program) 2025/09/01 10:18:44 fetching corpus: 2250, signal 128764/152302 (executing program) 2025/09/01 10:18:44 fetching corpus: 2300, signal 129674/153288 (executing program) 2025/09/01 10:18:44 fetching corpus: 2350, signal 130214/154053 (executing program) 2025/09/01 10:18:44 fetching corpus: 2400, signal 130779/154803 (executing program) 2025/09/01 10:18:44 fetching corpus: 2450, signal 131483/155645 (executing program) 2025/09/01 10:18:44 fetching corpus: 2500, signal 132190/156462 (executing program) 2025/09/01 10:18:44 fetching corpus: 2550, signal 132883/157197 (executing program) 2025/09/01 10:18:44 fetching corpus: 2600, signal 133758/158000 (executing program) 2025/09/01 10:18:44 fetching corpus: 2650, signal 134440/158729 (executing program) 2025/09/01 10:18:45 fetching corpus: 2700, signal 134989/159396 (executing program) 2025/09/01 10:18:45 fetching corpus: 2750, signal 135590/160062 (executing program) 2025/09/01 10:18:45 fetching corpus: 2800, signal 136264/160742 (executing program) 2025/09/01 10:18:45 fetching corpus: 2850, signal 136912/161381 (executing program) 2025/09/01 10:18:45 fetching corpus: 2900, signal 137384/161953 (executing program) 2025/09/01 10:18:45 fetching corpus: 2950, signal 138034/162597 (executing program) 2025/09/01 10:18:45 fetching corpus: 3000, signal 138857/163276 (executing program) 2025/09/01 10:18:45 fetching corpus: 3050, signal 139310/163791 (executing program) 2025/09/01 10:18:45 fetching corpus: 3100, signal 139994/164402 (executing program) 2025/09/01 10:18:45 fetching corpus: 3150, signal 140563/164903 (executing program) 2025/09/01 10:18:45 fetching corpus: 3200, signal 141245/165457 (executing program) 2025/09/01 10:18:45 fetching corpus: 3250, signal 141791/165959 (executing program) 2025/09/01 10:18:46 fetching corpus: 3300, signal 142747/166531 (executing program) 2025/09/01 10:18:46 fetching corpus: 3350, signal 143476/167068 (executing program) 2025/09/01 10:18:46 fetching corpus: 3400, signal 143949/167529 (executing program) 2025/09/01 10:18:46 fetching corpus: 3450, signal 145485/168189 (executing program) 2025/09/01 10:18:46 fetching corpus: 3500, signal 146264/168639 (executing program) 2025/09/01 10:18:46 fetching corpus: 3550, signal 146645/169046 (executing program) 2025/09/01 10:18:46 fetching corpus: 3600, signal 147287/169463 (executing program) 2025/09/01 10:18:46 fetching corpus: 3650, signal 148077/170003 (executing program) 2025/09/01 10:18:46 fetching corpus: 3700, signal 148685/170402 (executing program) 2025/09/01 10:18:46 fetching corpus: 3750, signal 149066/170726 (executing program) 2025/09/01 10:18:47 fetching corpus: 3800, signal 149477/171045 (executing program) 2025/09/01 10:18:47 fetching corpus: 3850, signal 149925/171364 (executing program) 2025/09/01 10:18:47 fetching corpus: 3900, signal 150733/171718 (executing program) 2025/09/01 10:18:47 fetching corpus: 3950, signal 151518/172098 (executing program) 2025/09/01 10:18:47 fetching corpus: 4000, signal 152161/172337 (executing program) 2025/09/01 10:18:47 fetching corpus: 4050, signal 152799/172606 (executing program) 2025/09/01 10:18:47 fetching corpus: 4100, signal 153254/172901 (executing program) 2025/09/01 10:18:47 fetching corpus: 4150, signal 153762/173165 (executing program) 2025/09/01 10:18:47 fetching corpus: 4200, signal 154105/173399 (executing program) 2025/09/01 10:18:47 fetching corpus: 4250, signal 154393/173477 (executing program) 2025/09/01 10:18:47 fetching corpus: 4300, signal 154658/173481 (executing program) 2025/09/01 10:18:48 fetching corpus: 4350, signal 155664/173521 (executing program) 2025/09/01 10:18:48 fetching corpus: 4400, signal 156624/173535 (executing program) 2025/09/01 10:18:48 fetching corpus: 4450, signal 157091/173605 (executing program) 2025/09/01 10:18:48 fetching corpus: 4500, signal 157532/173611 (executing program) 2025/09/01 10:18:48 fetching corpus: 4550, signal 157974/173622 (executing program) 2025/09/01 10:18:48 fetching corpus: 4600, signal 158332/173629 (executing program) 2025/09/01 10:18:48 fetching corpus: 4650, signal 158865/173634 (executing program) 2025/09/01 10:18:48 fetching corpus: 4700, signal 159275/173639 (executing program) 2025/09/01 10:18:48 fetching corpus: 4750, signal 159798/173711 (executing program) 2025/09/01 10:18:48 fetching corpus: 4800, signal 160163/173723 (executing program) 2025/09/01 10:18:49 fetching corpus: 4850, signal 160541/173724 (executing program) 2025/09/01 10:18:49 fetching corpus: 4900, signal 160913/173743 (executing program) 2025/09/01 10:18:49 fetching corpus: 4950, signal 161499/173754 (executing program) 2025/09/01 10:18:49 fetching corpus: 5000, signal 161931/173767 (executing program) 2025/09/01 10:18:49 fetching corpus: 5050, signal 162231/173771 (executing program) 2025/09/01 10:18:49 fetching corpus: 5100, signal 162738/173774 (executing program) 2025/09/01 10:18:49 fetching corpus: 5150, signal 163229/173779 (executing program) 2025/09/01 10:18:49 fetching corpus: 5200, signal 163787/173789 (executing program) 2025/09/01 10:18:49 fetching corpus: 5250, signal 164047/173804 (executing program) 2025/09/01 10:18:49 fetching corpus: 5300, signal 164533/173819 (executing program) 2025/09/01 10:18:49 fetching corpus: 5350, signal 164895/173824 (executing program) 2025/09/01 10:18:49 fetching corpus: 5400, signal 165452/173843 (executing program) 2025/09/01 10:18:50 fetching corpus: 5450, signal 165782/173855 (executing program) 2025/09/01 10:18:50 fetching corpus: 5500, signal 166146/173860 (executing program) 2025/09/01 10:18:50 fetching corpus: 5550, signal 166468/173865 (executing program) 2025/09/01 10:18:50 fetching corpus: 5600, signal 166969/173867 (executing program) 2025/09/01 10:18:50 fetching corpus: 5650, signal 167351/173888 (executing program) 2025/09/01 10:18:50 fetching corpus: 5700, signal 167607/173893 (executing program) 2025/09/01 10:18:50 fetching corpus: 5750, signal 168012/173896 (executing program) 2025/09/01 10:18:50 fetching corpus: 5800, signal 168379/173898 (executing program) 2025/09/01 10:18:50 fetching corpus: 5850, signal 168618/173918 (executing program) 2025/09/01 10:18:50 fetching corpus: 5900, signal 168948/173928 (executing program) 2025/09/01 10:18:50 fetching corpus: 5950, signal 169236/173932 (executing program) 2025/09/01 10:18:50 fetching corpus: 6000, signal 169605/173937 (executing program) 2025/09/01 10:18:50 fetching corpus: 6050, signal 170031/173938 (executing program) 2025/09/01 10:18:51 fetching corpus: 6100, signal 170506/174037 (executing program) 2025/09/01 10:18:51 fetching corpus: 6150, signal 170850/174046 (executing program) 2025/09/01 10:18:51 fetching corpus: 6190, signal 171257/174047 (executing program) 2025/09/01 10:18:51 fetching corpus: 6190, signal 171257/174047 (executing program) 2025/09/01 10:18:52 starting 8 fuzzer processes 10:18:52 executing program 0: creat(&(0x7f00000003c0)='./file0\x00', 0x0) setgroups(0x1, &(0x7f0000000600)=[0xee01]) chown(&(0x7f0000000040)='./file0\x00', 0xee01, 0xee00) 10:18:52 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x1, 0x0, 0x7310, 0x0, 0x0, "c8e761304d289666"}) 10:18:52 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x3}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @private}}}]}]}, 0x38}}, 0x0) 10:18:52 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) 10:18:52 executing program 3: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) socket$packet(0x11, 0x2, 0x300) 10:18:52 executing program 4: waitid(0x1, 0xffffffffffffffff, 0x0, 0x2, 0x0) 10:18:52 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCXONC(r0, 0x540a, 0x0) write(r0, &(0x7f0000000040)="e1", 0x1) [ 69.039968] audit: type=1400 audit(1756721932.770:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:18:52 executing program 6: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_buf(r0, 0x107, 0x17, 0x0, &(0x7f0000000240)) [ 70.261543] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.264516] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.266469] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.270505] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.272516] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.274037] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.279909] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 70.281987] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 70.284804] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 70.288843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.291111] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.293860] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.304347] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.305974] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 70.317710] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 70.322841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 70.324394] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 70.332492] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 70.335116] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 70.337106] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 70.342652] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 70.343050] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 70.345530] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 70.347109] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 70.348843] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 70.352629] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 70.356751] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 70.366167] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 70.370547] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 70.373684] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 70.382671] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 70.386546] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 70.392407] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 70.404973] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 70.411296] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 70.412348] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 70.425786] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 70.439679] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 70.473484] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 70.475846] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 72.345983] Bluetooth: hci1: command tx timeout [ 72.347019] Bluetooth: hci0: command tx timeout [ 72.410377] Bluetooth: hci2: command tx timeout [ 72.473453] Bluetooth: hci5: command tx timeout [ 72.473462] Bluetooth: hci6: command tx timeout [ 72.473831] Bluetooth: hci4: command tx timeout [ 72.475768] Bluetooth: hci3: command tx timeout [ 72.538296] Bluetooth: hci7: command tx timeout [ 74.394473] Bluetooth: hci0: command tx timeout [ 74.394501] Bluetooth: hci1: command tx timeout [ 74.457404] Bluetooth: hci2: command tx timeout [ 74.521464] Bluetooth: hci5: command tx timeout [ 74.522312] Bluetooth: hci3: command tx timeout [ 74.523021] Bluetooth: hci4: command tx timeout [ 74.524479] Bluetooth: hci6: command tx timeout [ 74.612397] Bluetooth: hci7: command tx timeout [ 76.441395] Bluetooth: hci1: command tx timeout [ 76.442553] Bluetooth: hci0: command tx timeout [ 76.505319] Bluetooth: hci2: command tx timeout [ 76.569355] Bluetooth: hci6: command tx timeout [ 76.569854] Bluetooth: hci4: command tx timeout [ 76.570322] Bluetooth: hci3: command tx timeout [ 76.570750] Bluetooth: hci5: command tx timeout [ 76.633340] Bluetooth: hci7: command tx timeout [ 78.489314] Bluetooth: hci0: command tx timeout [ 78.489759] Bluetooth: hci1: command tx timeout [ 78.553290] Bluetooth: hci2: command tx timeout [ 78.617367] Bluetooth: hci5: command tx timeout [ 78.617812] Bluetooth: hci3: command tx timeout [ 78.618194] Bluetooth: hci4: command tx timeout [ 78.618619] Bluetooth: hci6: command tx timeout [ 78.681847] Bluetooth: hci7: command tx timeout [ 110.409970] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.410947] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.591146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.591789] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.788217] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.788854] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.874035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.874651] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.088446] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.089080] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.214021] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.215046] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.339218] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.340022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:19:35 executing program 4: waitid(0x1, 0xffffffffffffffff, 0x0, 0x2, 0x0) 10:19:35 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x1, 0x0, 0x7310, 0x0, 0x0, "c8e761304d289666"}) [ 111.418007] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.418644] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.482702] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 10:19:35 executing program 4: waitid(0x1, 0xffffffffffffffff, 0x0, 0x2, 0x0) [ 111.489962] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 10:19:35 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x1, 0x0, 0x7310, 0x0, 0x0, "c8e761304d289666"}) 10:19:35 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x3}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @private}}}]}]}, 0x38}}, 0x0) 10:19:35 executing program 4: waitid(0x1, 0xffffffffffffffff, 0x0, 0x2, 0x0) [ 111.599294] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.599947] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.600602] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 10:19:35 executing program 7: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x1, 0x0, 0x7310, 0x0, 0x0, "c8e761304d289666"}) 10:19:35 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) [ 111.716138] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 111.717558] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.718161] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.829697] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.830313] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.908895] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.909740] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.177583] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.178186] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.245715] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.246334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.529603] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.530180] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.590507] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.591111] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:19:36 executing program 0: creat(&(0x7f00000003c0)='./file0\x00', 0x0) setgroups(0x1, &(0x7f0000000600)=[0xee01]) chown(&(0x7f0000000040)='./file0\x00', 0xee01, 0xee00) 10:19:36 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x80247008, &(0x7f0000000040)) 10:19:36 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:36 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x3}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @private}}}]}]}, 0x38}}, 0x0) 10:19:36 executing program 6: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_buf(r0, 0x107, 0x17, 0x0, &(0x7f0000000240)) 10:19:36 executing program 3: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) socket$packet(0x11, 0x2, 0x300) 10:19:36 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) 10:19:36 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCXONC(r0, 0x540a, 0x0) write(r0, &(0x7f0000000040)="e1", 0x1) [ 112.828337] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 112.834863] audit: type=1400 audit(1756721976.565:8): avc: denied { open } for pid=3920 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 112.843310] audit: type=1400 audit(1756721976.565:9): avc: denied { kernel } for pid=3920 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 10:19:36 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) 10:19:36 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:36 executing program 6: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_buf(r0, 0x107, 0x17, 0x0, &(0x7f0000000240)) 10:19:36 executing program 3: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) socket$packet(0x11, 0x2, 0x300) 10:19:37 executing program 0: creat(&(0x7f00000003c0)='./file0\x00', 0x0) setgroups(0x1, &(0x7f0000000600)=[0xee01]) chown(&(0x7f0000000040)='./file0\x00', 0xee01, 0xee00) 10:19:37 executing program 3: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) socket$packet(0x11, 0x2, 0x300) 10:19:37 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x3}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @private}}}]}]}, 0x38}}, 0x0) 10:19:37 executing program 6: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_buf(r0, 0x107, 0x17, 0x0, &(0x7f0000000240)) 10:19:37 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x80247008, &(0x7f0000000040)) 10:19:37 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) 10:19:37 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCXONC(r0, 0x540a, 0x0) write(r0, &(0x7f0000000040)="e1", 0x1) 10:19:37 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) [ 113.746097] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 10:19:38 executing program 6: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) socket$packet(0x11, 0x2, 0x300) 10:19:38 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x80247008, &(0x7f0000000040)) 10:19:38 executing program 0: creat(&(0x7f00000003c0)='./file0\x00', 0x0) setgroups(0x1, &(0x7f0000000600)=[0xee01]) chown(&(0x7f0000000040)='./file0\x00', 0xee01, 0xee00) 10:19:38 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:38 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:38 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:38 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCXONC(r0, 0x540a, 0x0) write(r0, &(0x7f0000000040)="e1", 0x1) 10:19:38 executing program 4: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380), 0x101001, 0x0) write$vga_arbiter(r0, &(0x7f0000000080)=@target={'target ', {'PCI:', '12', ':', '1f', ':', '7', '.', '8'}}, 0x15) 10:19:38 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:38 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:38 executing program 4: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380), 0x101001, 0x0) write$vga_arbiter(r0, &(0x7f0000000080)=@target={'target ', {'PCI:', '12', ':', '1f', ':', '7', '.', '8'}}, 0x15) 10:19:38 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:38 executing program 0: sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0xffff) 10:19:38 executing program 6: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) socket$packet(0x11, 0x2, 0x300) 10:19:38 executing program 4: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380), 0x101001, 0x0) write$vga_arbiter(r0, &(0x7f0000000080)=@target={'target ', {'PCI:', '12', ':', '1f', ':', '7', '.', '8'}}, 0x15) 10:19:38 executing program 7: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x80247008, &(0x7f0000000040)) 10:19:38 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:38 executing program 4: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380), 0x101001, 0x0) write$vga_arbiter(r0, &(0x7f0000000080)=@target={'target ', {'PCI:', '12', ':', '1f', ':', '7', '.', '8'}}, 0x15) 10:19:38 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) [ 114.889878] kmemleak: Found object by alias at 0x607f1a63d164 [ 114.889899] CPU: 1 UID: 0 PID: 3986 Comm: syz-executor.1 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 114.889918] Tainted: [W]=WARN [ 114.889922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 114.889930] Call Trace: [ 114.889934] [ 114.889939] dump_stack_lvl+0xca/0x120 [ 114.889971] __lookup_object+0x94/0xb0 [ 114.889990] delete_object_full+0x27/0x70 [ 114.890006] free_percpu+0x30/0x1160 [ 114.890024] ? arch_uprobe_clear_state+0x16/0x140 [ 114.890045] futex_hash_free+0x38/0xc0 [ 114.890060] mmput+0x2d3/0x390 [ 114.890079] do_exit+0x79d/0x2970 [ 114.890093] ? signal_wake_up_state+0x85/0x120 [ 114.890110] ? zap_other_threads+0x2b9/0x3a0 [ 114.890126] ? __pfx_do_exit+0x10/0x10 [ 114.890139] ? do_group_exit+0x1c3/0x2a0 [ 114.890153] ? lock_release+0xc8/0x290 [ 114.890171] do_group_exit+0xd3/0x2a0 [ 114.890186] __x64_sys_exit_group+0x3e/0x50 [ 114.890201] x64_sys_call+0x18c5/0x18d0 [ 114.890217] do_syscall_64+0xbf/0x360 [ 114.890235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.890247] RIP: 0033:0x7fcb1592eb19 [ 114.890256] Code: Unable to access opcode bytes at 0x7fcb1592eaef. [ 114.890262] RSP: 002b:00007ffdbf937e38 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 114.890274] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fcb1592eb19 [ 114.890281] RDX: 00007fcb158e172b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 114.890289] RBP: 0000000000000000 R08: 0000001b2ce25898 R09: 0000000000000000 [ 114.890296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 114.890303] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffdbf937f20 [ 114.890319] [ 114.890323] kmemleak: Object (percpu) 0x607f1a63d160 (size 8): [ 114.890330] kmemleak: comm "syz-executor.7", pid 3988, jiffies 4294781725 [ 114.890337] kmemleak: min_count = 1 [ 114.890341] kmemleak: count = 0 [ 114.890345] kmemleak: flags = 0x21 [ 114.890349] kmemleak: checksum = 0 [ 114.890352] kmemleak: backtrace: [ 114.890356] pcpu_alloc_noprof+0x87a/0x1170 [ 114.890372] perf_trace_event_init+0x366/0xa10 [ 114.890386] perf_trace_init+0x1a4/0x2f0 [ 114.890399] perf_tp_event_init+0xa6/0x120 [ 114.890416] perf_try_init_event+0x140/0x9f0 [ 114.890432] perf_event_alloc.part.0+0x118e/0x45f0 [ 114.890452] __do_sys_perf_event_open+0x719/0x2c20 [ 114.890465] do_syscall_64+0xbf/0x360 [ 114.890475] entry_SYSCALL_64_after_hwframe+0x77/0x7f 10:19:39 executing program 0: capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) 10:19:39 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010071039fd8000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fcntl$addseals(r1, 0x409, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0xfffd, @empty}, {0x6, @random}, 0xe, {0x2, 0x0, @private=0xa010102}, 'veth1_to_bond\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @multicast1}, {0x1, @remote}, 0x64, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'tunl0\x00'}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000002b40)={{0x2, 0x4e22, @empty}, {0x1, @local}, 0x10, {0x2, 0x4e23, @private=0xa010101}}) socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002a80)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000280)=""/221, 0xdd}, {&(0x7f0000000380)=""/78, 0x4e}, {&(0x7f0000000400)=""/18, 0x12}, {&(0x7f0000000440)=""/191, 0xbf}, {&(0x7f0000000500)=""/186, 0xba}], 0x7, &(0x7f0000002680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002700), 0x6e, &(0x7f0000002940)=[{&(0x7f0000002780)=""/255, 0xff}, {&(0x7f0000002880)=""/169, 0xa9}], 0x2, &(0x7f0000002980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x40, 0x0) connect$inet6(r3, &(0x7f0000002b00)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x20}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004640)=[{{&(0x7f0000000640)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}], 0x1, 0x890) getsockname(r2, &(0x7f0000000140)=@llc, &(0x7f00000001c0)=0x80) 10:19:39 executing program 6: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) socket$packet(0x11, 0x2, 0x300) 10:19:39 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000002c0)={0x1720e0180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 10:19:39 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udplite6\x00') pread64(r2, &(0x7f0000000140)=""/199, 0xc7, 0xff) 10:19:39 executing program 7: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @empty, @val={@void}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @source_quench={0x3, 0x4, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @dev, @dev}, "0000010000000000"}}}}}, 0x0) 10:19:39 executing program 4: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00)) mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x0, 0x0) 10:19:39 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCGISO7816(r0, 0x5410, 0x0) [ 115.608852] capability: warning: `syz-executor.0' uses deprecated v2 capabilities in a way that may be insecure 10:19:39 executing program 0: capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) 10:19:39 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udplite6\x00') pread64(r2, &(0x7f0000000140)=""/199, 0xc7, 0xff) 10:19:39 executing program 7: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @empty, @val={@void}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @source_quench={0x3, 0x4, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @dev, @dev}, "0000010000000000"}}}}}, 0x0) 10:19:39 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@local, 0x0, 0x2, 0xff}, 0x20) 10:19:39 executing program 4: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00)) mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x0, 0x0) 10:19:39 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_io_uring_setup(0x3cfc, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300)) 10:19:39 executing program 0: capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) [ 115.809857] Oops: general protection fault, probably for non-canonical address 0xf87dfc1fea7e0051: 0000 [#1] SMP KASAN NOPTI [ 115.811654] KASAN: maybe wild-memory-access in range [0xc3f000ff53f00288-0xc3f000ff53f0028f] [ 115.812946] CPU: 0 UID: 0 PID: 4003 Comm: syz-executor.2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 115.820598] Tainted: [W]=WARN [ 115.821098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.822391] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.823151] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.826015] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 115.826857] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 115.827992] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 115.829114] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 115.830235] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.831353] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.832483] FS: 00007fb08cb38700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.833745] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.834665] CR2: 00007f0aed59c000 CR3: 000000000e612000 CR4: 0000000000350ef0 [ 115.835796] Call Trace: [ 115.836212] [ 115.836577] ? __is_insn_slot_addr+0x136/0x290 [ 115.837330] ? __pfx_perf_tp_event+0x10/0x10 [ 115.838043] ? __kernel_text_address+0xd/0x40 [ 115.838768] ? do_raw_spin_lock+0x123/0x260 [ 115.839465] ? mark_held_locks+0x49/0x80 [ 115.840126] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 115.840944] ? stack_depot_save_flags+0x42c/0xa20 [ 115.841716] ? kasan_save_stack+0x34/0x50 [ 115.842387] ? kasan_save_stack+0x24/0x50 [ 115.843052] ? kasan_save_track+0x14/0x30 [ 115.843725] ? __kasan_kmalloc+0x7f/0x90 [ 115.844380] ? __kvmalloc_node_noprof+0x29d/0x760 [ 115.845148] ? alloc_netdev_mqs+0xd0e/0x1360 [ 115.845867] ? perf_trace_run_bpf_submit+0xef/0x180 [ 115.846671] perf_trace_run_bpf_submit+0xef/0x180 [ 115.847451] perf_trace_contention_begin+0x235/0x3e0 [ 115.848296] ? obj_cgroup_charge_account+0x11a/0x6e0 [ 115.849150] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 115.850073] ? lock_acquire+0x15e/0x2f0 [ 115.850738] ? register_netdev+0x1a/0x60 [ 115.851428] trace_contention_begin+0xae/0x110 [ 115.852202] __mutex_lock+0x14b/0x1020 [ 115.852863] ? register_netdev+0x1a/0x60 [ 115.853554] ? register_netdev+0x1a/0x60 [ 115.854242] ? kasan_save_track+0x14/0x30 [ 115.854937] ? __pfx___mutex_lock+0x10/0x10 [ 115.855673] ? __kvmalloc_node_noprof+0x2ba/0x760 [ 115.856479] ? alloc_netdev_mqs+0xd0e/0x1360 [ 115.857229] ? alloc_netdev_mqs+0xebf/0x1360 [ 115.857972] register_netdev+0x1a/0x60 [ 115.858609] sit_init_net+0x2c8/0x630 [ 115.859218] ? __pfx_sit_init_net+0x10/0x10 [ 115.859906] ops_init+0x1e1/0x650 [ 115.860459] setup_net+0x10d/0x320 [ 115.861018] ? lockdep_init_map_type+0x4b/0x240 [ 115.861744] ? __pfx_setup_net+0x10/0x10 [ 115.862372] ? debug_mutex_init+0x37/0x70 [ 115.863025] copy_net_ns+0x2e3/0x650 [ 115.863622] create_new_namespaces+0x3f6/0xab0 [ 115.864359] copy_namespaces+0x45c/0x580 [ 115.865010] copy_process+0x2649/0x73c0 [ 115.865627] ? lock_release+0xc8/0x290 [ 115.866241] ? __pfx_copy_process+0x10/0x10 [ 115.866912] ? __might_fault+0xe0/0x190 [ 115.867533] ? _copy_from_user+0x5b/0xd0 [ 115.868189] kernel_clone+0xea/0x7f0 [ 115.868777] ? __pfx_kernel_clone+0x10/0x10 [ 115.869441] ? __pfx_futex_wake+0x10/0x10 [ 115.870091] __do_sys_clone3+0x1f5/0x280 [ 115.870726] ? __pfx___do_sys_clone3+0x10/0x10 [ 115.871444] ? find_held_lock+0x2b/0x80 [ 115.872079] ? __x64_sys_futex+0x1c9/0x4d0 [ 115.872734] ? __x64_sys_futex+0x1d2/0x4d0 [ 115.873398] ? __pfx___x64_sys_futex+0x10/0x10 [ 115.874126] ? xfd_validate_state+0x55/0x180 [ 115.874833] do_syscall_64+0xbf/0x360 [ 115.875430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.876245] RIP: 0033:0x7fb08f5c2b19 [ 115.876821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 115.879597] RSP: 002b:00007fb08cb38188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 115.880780] RAX: ffffffffffffffda RBX: 00007fb08f6d5f60 RCX: 00007fb08f5c2b19 [ 115.881889] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200002c0 [ 115.882983] RBP: 00007fb08f61cf6d R08: 0000000000000000 R09: 0000000000000000 [ 115.884079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 115.885170] R13: 00007fff81f1c58f R14: 00007fb08cb38300 R15: 0000000000022000 [ 115.886256] [ 115.886626] Modules linked in: [ 115.888928] ---[ end trace 0000000000000000 ]--- [ 115.890907] RIP: 0010:perf_tp_event+0x175/0xe70 [ 115.891707] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 115.894489] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 115.895344] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 115.896471] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 115.897605] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 115.898735] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 115.899858] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 115.900985] FS: 00007fb08cb38700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 115.902269] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.903176] CR2: 00007f0aed59c000 CR3: 000000000e612000 CR4: 0000000000350ef0 [ 115.904321] note: syz-executor.2[4003] exited with preempt_count 2 10:19:40 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udplite6\x00') pread64(r2, &(0x7f0000000140)=""/199, 0xc7, 0xff) 10:19:40 executing program 0: capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000) 10:19:40 executing program 4: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00)) mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x0, 0x0) 10:19:40 executing program 5: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) ustat(0x6, &(0x7f0000000040)) 10:19:40 executing program 7: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @empty, @val={@void}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @source_quench={0x3, 0x4, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @dev, @dev}, "0000010000000000"}}}}}, 0x0) 10:19:40 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@local, 0x0, 0x2, 0xff}, 0x20) 10:19:40 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000002c0)={0x1720e0180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 10:19:40 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_io_uring_setup(0x3cfc, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300)) 10:19:40 executing program 7: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @empty, @val={@void}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @source_quench={0x3, 0x4, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @dev, @dev}, "0000010000000000"}}}}}, 0x0) 10:19:40 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_io_uring_setup(0x3cfc, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300)) 10:19:40 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udplite6\x00') pread64(r2, &(0x7f0000000140)=""/199, 0xc7, 0xff) 10:19:40 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@local, 0x0, 0x2, 0xff}, 0x20) 10:19:40 executing program 5: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) ustat(0x6, &(0x7f0000000040)) 10:19:40 executing program 4: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00)) mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x0, 0x0) 10:19:40 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0) 10:19:40 executing program 5: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) ustat(0x6, &(0x7f0000000040)) 10:19:40 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@local, 0x0, 0x2, 0xff}, 0x20) 10:19:40 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0) 10:19:40 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_io_uring_setup(0x3cfc, &(0x7f0000000240)={0x0, 0x0, 0x2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300)) 10:19:40 executing program 7: syz_emit_ethernet(0x5a, &(0x7f00000000c0)={@local, @empty, @val={@void}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x48, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @source_quench={0xb, 0x0, 0x0, 0x3300, {0xb, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @loopback, {[@cipso={0x86, 0x15, 0x0, [{0x0, 0xc, "ba4906dca0ac3f21ee4d"}, {0x0, 0x3, '\v'}]}]}}}}}}}, 0x0) 10:19:40 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000002c0)={0x1720e0180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 10:19:40 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0) 10:19:40 executing program 5: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) ustat(0x6, &(0x7f0000000040)) 10:19:40 executing program 4: kexec_load(0x0, 0x10, 0x0, 0x0) 10:19:40 executing program 3: geteuid() [ 116.761105] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 116.762049] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 116.762653] CPU: 1 UID: 0 PID: 4077 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 116.763608] Tainted: [D]=DIE, [W]=WARN [ 116.763922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 116.764586] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.764972] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.766415] RSP: 0018:ffff88804608f2c0 EFLAGS: 00010212 [ 116.766841] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90001695000 [ 116.767405] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 116.767983] RBP: ffff88804608f530 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 116.768547] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 116.769109] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 116.769676] FS: 00007fb08cb38700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.770316] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.770779] CR2: 00007f77f449a004 CR3: 000000001e1d0000 CR4: 0000000000350ef0 [ 116.771348] Call Trace: [ 116.771558] [ 116.771755] ? lock_acquire+0x18c/0x2f0 [ 116.772087] ? __pfx_perf_tp_event+0x10/0x10 [ 116.772449] ? lock_release+0x1c7/0x290 [ 116.772775] ? lock_acquire+0x18c/0x2f0 [ 116.773099] ? lock_release+0x1c7/0x290 [ 116.773426] ? __is_insn_slot_addr+0x140/0x290 [ 116.773805] ? kernel_text_address+0x5b/0xc0 [ 116.774165] ? __kernel_text_address+0xd/0x40 [ 116.774528] ? unwind_get_return_address+0x59/0xa0 [ 116.774926] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 116.775367] ? arch_stack_walk+0x9c/0xf0 [ 116.775706] ? stack_trace_save+0x8e/0xc0 [ 116.776044] ? perf_trace_run_bpf_submit+0xef/0x180 [ 116.776448] perf_trace_run_bpf_submit+0xef/0x180 [ 116.776848] perf_trace_contention_begin+0x235/0x3e0 [ 116.777263] ? copy_tree+0x34b/0xaf0 [ 116.777566] ? copy_mnt_ns+0x1ab/0xab0 [ 116.777883] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 116.778333] ? do_syscall_64+0xbf/0x360 [ 116.778654] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.779083] ? lock_acquire+0x18c/0x2f0 [ 116.779404] ? stack_trace_save+0x8e/0xc0 [ 116.779749] trace_contention_begin+0xae/0x110 [ 116.780120] __mutex_lock+0x14b/0x1020 [ 116.780444] ? pcpu_alloc_noprof+0xaa0/0x1170 [ 116.780962] ? pcpu_alloc_noprof+0xaa0/0x1170 [ 116.781333] ? lock_acquire+0x18c/0x2f0 [ 116.781655] ? __pfx___mutex_lock+0x10/0x10 [ 116.782005] ? __memcg_slab_post_alloc_hook+0x4ac/0x9d0 [ 116.782433] ? kasan_save_track+0x14/0x30 [ 116.782768] ? __kasan_kmalloc+0x7f/0x90 [ 116.783101] pcpu_alloc_noprof+0xaa0/0x1170 [ 116.783454] ? kstrdup+0x87/0xc0 [ 116.783743] alloc_vfsmnt+0x135/0x6e0 [ 116.784059] clone_mnt+0x6c/0xb70 [ 116.784352] copy_tree+0x34b/0xaf0 [ 116.784643] copy_mnt_ns+0x1ab/0xab0 [ 116.784946] ? trace_kmem_cache_alloc+0x1f/0xb0 [ 116.785333] create_new_namespaces+0xd6/0xab0 [ 116.785703] ? security_capable+0x2f/0x90 [ 116.786041] copy_namespaces+0x45c/0x580 [ 116.786374] copy_process+0x2649/0x73c0 [ 116.786699] ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150 [ 116.787196] ? __pfx_copy_process+0x10/0x10 [ 116.787544] ? __might_fault+0xe0/0x190 [ 116.787877] ? _copy_from_user+0x5b/0xd0 [ 116.788212] kernel_clone+0xea/0x7f0 [ 116.788513] ? lock_release+0x1c7/0x290 [ 116.788836] ? lock_release+0x1c7/0x290 [ 116.789158] ? __pfx_kernel_clone+0x10/0x10 [ 116.789509] ? lock_acquire+0x18c/0x2f0 [ 116.789832] ? xfd_validate_state+0x55/0x180 [ 116.790195] ? lock_release+0x1c7/0x290 [ 116.790521] __do_sys_clone3+0x1f5/0x280 [ 116.790850] ? __pfx___do_sys_clone3+0x10/0x10 [ 116.791226] ? __pfx___schedule+0x10/0x10 [ 116.791568] ? __x64_sys_futex+0x1c9/0x4d0 [ 116.791915] ? __x64_sys_futex+0x1d2/0x4d0 [ 116.792256] ? __pfx___x64_sys_futex+0x10/0x10 [ 116.792623] ? xfd_validate_state+0x55/0x180 [ 116.792985] do_syscall_64+0xbf/0x360 [ 116.793294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.793707] RIP: 0033:0x7fb08f5c2b19 [ 116.794004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 116.795766] RSP: 002b:00007fb08cb38188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 116.796373] RAX: ffffffffffffffda RBX: 00007fb08f6d5f60 RCX: 00007fb08f5c2b19 [ 116.796942] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200002c0 [ 116.797623] RBP: 00007fb08f61cf6d R08: 0000000000000000 R09: 0000000000000000 [ 116.798183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.798914] R13: 00007fff81f1c58f R14: 00007fb08cb38300 R15: 0000000000022000 [ 116.799489] [ 116.799689] Modules linked in: [ 116.800953] ---[ end trace 0000000000000000 ]--- [ 116.802056] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.802699] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.804417] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 116.804864] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 116.805465] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 116.806038] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 116.806625] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 116.807197] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 116.807983] FS: 00007fb08cb38700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.808740] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.809212] CR2: 00007f77f449a004 CR3: 000000001e1d0000 CR4: 0000000000350ef0 [ 116.809797] note: syz-executor.2[4077] exited with preempt_count 2 [ 116.810430] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI [ 116.811319] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 116.811919] CPU: 1 UID: 0 PID: 4079 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 116.812868] Tainted: [D]=DIE, [W]=WARN [ 116.813176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 116.813831] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.814211] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.815664] RSP: 0018:ffff888045c8f6c0 EFLAGS: 00010212 [ 116.816089] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 116.816653] RDX: ffff88801b698000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 116.817224] RBP: ffff888045c8f930 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 116.817788] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 116.818357] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 116.818923] FS: 0000555592225400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.819562] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.820032] CR2: 00007fff64756000 CR3: 000000001e015000 CR4: 0000000000350ef0 [ 116.820604] Call Trace: [ 116.820811] [ 116.820993] ? set_normalized_timespec64+0x69/0xc0 [ 116.821393] ? __pfx_perf_tp_event+0x10/0x10 [ 116.821751] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 116.822128] ? lock_acquire+0x18c/0x2f0 [ 116.822451] ? lock_release+0x1c7/0x290 [ 116.822776] ? lock_release+0x1c7/0x290 [ 116.823098] ? avc_has_perm_noaudit+0x150/0x3d0 [ 116.823482] ? lock_acquire+0x18c/0x2f0 [ 116.823810] ? avc_has_perm+0x12b/0x1d0 [ 116.824135] ? lock_acquire+0x18c/0x2f0 [ 116.824459] ? lock_release+0x1c7/0x290 [ 116.824782] ? lock_acquire+0x18c/0x2f0 [ 116.825103] ? lock_acquire+0x18c/0x2f0 [ 116.825423] ? lock_release+0x1c7/0x290 [ 116.825748] ? perf_trace_run_bpf_submit+0xef/0x180 [ 116.826150] ? kernel_text_address+0x5b/0xc0 [ 116.826507] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 116.826943] ? __kernel_text_address+0xd/0x40 [ 116.827305] perf_trace_run_bpf_submit+0xef/0x180 [ 116.827705] perf_trace_contention_begin+0x235/0x3e0 [ 116.828118] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 116.828565] ? stack_trace_save+0x8e/0xc0 [ 116.828903] ? lock_acquire+0x18c/0x2f0 [ 116.829231] trace_contention_begin+0xae/0x110 [ 116.829600] __mutex_lock+0x14b/0x1020 [ 116.829917] ? __set_oom_adj.isra.0+0x68/0xf40 [ 116.830287] ? __set_oom_adj.isra.0+0x68/0xf40 [ 116.830655] ? putname+0x3c/0x50 [ 116.830934] ? do_sys_openat2+0x13c/0x1b0 [ 116.831274] ? __x64_sys_openat+0x142/0x200 [ 116.831633] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.832060] ? __pfx___mutex_lock+0x10/0x10 [ 116.832415] ? lock_acquire+0x18c/0x2f0 [ 116.832740] ? lock_release+0x1c7/0x290 [ 116.833065] ? lock_release+0x1c7/0x290 [ 116.833387] __set_oom_adj.isra.0+0x68/0xf40 [ 116.833750] oom_score_adj_write+0x1ba/0x200 [ 116.834105] ? __pfx_oom_score_adj_write+0x10/0x10 [ 116.834501] ? lock_acquire+0x18c/0x2f0 [ 116.834823] ? security_file_permission+0x22/0x90 [ 116.835217] vfs_write+0x2b7/0x1150 [ 116.835516] ? __pfx_oom_score_adj_write+0x10/0x10 [ 116.835920] ? __pfx_vfs_write+0x10/0x10 [ 116.836246] ? putname+0x3c/0x50 [ 116.836524] ? do_sys_openat2+0x141/0x1b0 [ 116.836861] ? __pfx_do_sys_openat2+0x10/0x10 [ 116.837231] ? putname.part.0+0x11b/0x160 [ 116.837574] ksys_write+0x121/0x240 [ 116.837869] ? __pfx_ksys_write+0x10/0x10 [ 116.838205] do_syscall_64+0xbf/0x360 [ 116.838514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.838928] RIP: 0033:0x7f87346465ff [ 116.839226] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 116.840678] RSP: 002b:00007fff64755a10 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 116.841277] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f87346465ff [ 116.841842] RDX: 0000000000000004 RSI: 00007fff64755a60 RDI: 0000000000000003 [ 116.842404] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007fff647559b0 [ 116.842970] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f87346edff5 [ 116.843530] R13: 00007fff64755a60 R14: 0000000000000000 R15: 00007fff64756000 [ 116.844102] [ 116.844295] Modules linked in: [ 116.844608] ---[ end trace 0000000000000000 ]--- [ 116.844983] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.845432] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.847010] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 116.847463] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 116.848034] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 116.848618] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 116.849181] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 116.849859] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 116.850443] FS: 0000555592225400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.851081] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.851560] CR2: 00007fff64756000 CR3: 000000001e015000 CR4: 0000000000350ef0 [ 116.852137] note: syz-executor.4[4079] exited with preempt_count 2 [ 116.853557] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#4] SMP KASAN NOPTI [ 116.854448] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 116.855049] CPU: 1 UID: 0 PID: 177 Comm: rs:main Q:Reg Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 116.855991] Tainted: [D]=DIE, [W]=WARN [ 116.856300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 116.856957] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.857338] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.858785] RSP: 0018:ffff88801b4d7940 EFLAGS: 00010212 [ 116.859207] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 116.859775] RDX: ffff888016928000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 116.860340] RBP: ffff88801b4d7bb0 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 116.860903] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 116.861470] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 116.862035] FS: 00007f528d105700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.862679] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.863140] CR2: 00007f528403a0c8 CR3: 000000000d7a6000 CR4: 0000000000350ef0 [ 116.863715] Call Trace: [ 116.863923] [ 116.864108] ? should_fail_alloc_page+0xe8/0x110 [ 116.864495] ? __pfx_perf_tp_event+0x10/0x10 [ 116.864858] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 116.865313] ? __pfx_perf_event_mmap+0x10/0x10 [ 116.865682] ? __pfx_change_protection+0x10/0x10 [ 116.866068] ? vma_wants_writenotify+0x19d/0x350 [ 116.866458] ? lock_acquire+0x18c/0x2f0 [ 116.866781] ? css_rstat_updated+0x1b8/0x4d0 [ 116.867142] ? perf_trace_run_bpf_submit+0xef/0x180 [ 116.867548] perf_trace_run_bpf_submit+0xef/0x180 [ 116.867949] perf_trace_contention_begin+0x235/0x3e0 [ 116.868359] ? lock_release+0x1c7/0x290 [ 116.868682] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 116.869126] ? __pfx_lru_add+0x10/0x10 [ 116.869448] ? lock_release+0x1c7/0x290 [ 116.869770] ? lock_acquire+0x18c/0x2f0 [ 116.870093] trace_contention_begin+0xae/0x110 [ 116.870466] __mutex_lock+0x14b/0x1020 [ 116.870788] ? fdget_pos+0x2a8/0x380 [ 116.871088] ? fdget_pos+0x2a8/0x380 [ 116.871392] ? __pfx___handle_mm_fault+0x10/0x10 [ 116.871785] ? css_rstat_updated+0x1b8/0x4d0 [ 116.872155] ? __pfx___mutex_lock+0x10/0x10 [ 116.872507] ? lock_acquire+0x18c/0x2f0 [ 116.872828] ? lock_release+0x1c7/0x290 [ 116.873154] ? __fget_files+0x20d/0x3b0 [ 116.873478] fdget_pos+0x2a8/0x380 [ 116.873770] ksys_write+0x71/0x240 [ 116.874063] ? __pfx_ksys_write+0x10/0x10 [ 116.874400] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 116.874825] do_syscall_64+0xbf/0x360 [ 116.875132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.875546] RIP: 0033:0x7f528df48fef [ 116.875850] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 5c fd ff ff 48 [ 116.877293] RSP: 002b:00007f528d104830 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 116.877894] RAX: ffffffffffffffda RBX: 0000000000001000 RCX: 00007f528df48fef [ 116.878461] RDX: 0000000000001000 RSI: 00007f5284001e60 RDI: 0000000000000007 [ 116.879026] RBP: 0000000000001000 R08: 0000000000000000 R09: 0000000000000000 [ 116.879582] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f5284001e60 [ 116.880142] R13: 0000000000000000 R14: 0000000000000001 R15: 00007f5284001ba0 [ 116.880711] [ 116.880902] Modules linked in: [ 116.881270] ---[ end trace 0000000000000000 ]--- [ 116.881650] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.882024] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.883529] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 116.883964] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 116.884599] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 116.885165] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 116.885800] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 116.886407] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 116.886988] FS: 00007f528d105700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.887654] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.888122] CR2: 00007f528403a0c8 CR3: 000000000d7a6000 CR4: 0000000000350ef0 [ 116.888703] note: rs:main Q:Reg[177] exited with preempt_count 2 [ 116.889894] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#5] SMP KASAN NOPTI [ 116.890779] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 116.891369] CPU: 1 UID: 0 PID: 4075 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 116.892325] Tainted: [D]=DIE, [W]=WARN [ 116.892631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 116.893272] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.893654] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.895080] RSP: 0018:ffff88800afcf6c0 EFLAGS: 00010212 [ 116.895506] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 116.896079] RDX: ffff888045fd1b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 116.896640] RBP: ffff88800afcf930 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 116.897199] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 116.897768] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 116.898324] FS: 0000555588776400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.898960] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.899421] CR2: 00007f528403a0c8 CR3: 000000001d990000 CR4: 0000000000350ef0 [ 116.899994] Call Trace: [ 116.900201] [ 116.900386] ? set_normalized_timespec64+0x69/0xc0 [ 116.900783] ? __pfx_perf_tp_event+0x10/0x10 [ 116.901137] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 116.901514] ? lock_acquire+0x18c/0x2f0 [ 116.901834] ? lock_release+0x1c7/0x290 [ 116.902159] ? lock_release+0x1c7/0x290 [ 116.902483] ? avc_has_perm_noaudit+0x150/0x3d0 [ 116.902865] ? lock_acquire+0x18c/0x2f0 [ 116.903188] ? avc_has_perm+0x12b/0x1d0 [ 116.903510] ? lock_acquire+0x18c/0x2f0 [ 116.903841] ? lock_release+0x1c7/0x290 [ 116.904161] ? lock_acquire+0x18c/0x2f0 [ 116.904485] ? lock_acquire+0x18c/0x2f0 [ 116.904808] ? lock_release+0x1c7/0x290 [ 116.905133] ? perf_trace_run_bpf_submit+0xef/0x180 [ 116.905534] ? kernel_text_address+0x5b/0xc0 [ 116.905892] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 116.906332] ? __kernel_text_address+0xd/0x40 [ 116.906700] perf_trace_run_bpf_submit+0xef/0x180 [ 116.907094] perf_trace_contention_begin+0x235/0x3e0 [ 116.907498] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 116.907955] ? __pfx_css_rstat_updated+0x10/0x10 [ 116.908340] ? lock_acquire+0x18c/0x2f0 [ 116.908656] ? lock_acquire+0x18c/0x2f0 [ 116.908979] trace_contention_begin+0xae/0x110 [ 116.909350] __mutex_lock+0x14b/0x1020 [ 116.909671] ? __set_oom_adj.isra.0+0x68/0xf40 [ 116.910035] ? __set_oom_adj.isra.0+0x68/0xf40 [ 116.910409] ? lock_acquire+0x18c/0x2f0 [ 116.910726] ? __pfx___mutex_lock+0x10/0x10 [ 116.911078] ? lock_acquire+0x18c/0x2f0 [ 116.911407] ? lock_release+0x1c7/0x290 [ 116.911739] __set_oom_adj.isra.0+0x68/0xf40 [ 116.912104] oom_score_adj_write+0x1ba/0x200 [ 116.912468] ? __pfx_oom_score_adj_write+0x10/0x10 [ 116.912876] ? lock_acquire+0x18c/0x2f0 [ 116.913208] vfs_write+0x2b7/0x1150 [ 116.913510] ? __pfx_oom_score_adj_write+0x10/0x10 [ 116.913919] ? __pfx_vfs_write+0x10/0x10 [ 116.914260] ? putname+0x3c/0x50 [ 116.914538] ? do_sys_openat2+0x141/0x1b0 [ 116.914869] ? __pfx_do_sys_openat2+0x10/0x10 [ 116.915231] ? putname.part.0+0x11b/0x160 [ 116.915587] ksys_write+0x121/0x240 [ 116.915890] ? __pfx_ksys_write+0x10/0x10 [ 116.916231] do_syscall_64+0xbf/0x360 [ 116.916552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.916981] RIP: 0033:0x7f02231dd5ff [ 116.917297] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 116.918771] RSP: 002b:00007ffdda25edd0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 116.919385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f02231dd5ff [ 116.919983] RDX: 0000000000000004 RSI: 00007ffdda25ee20 RDI: 0000000000000003 [ 116.920554] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffdda25ed70 [ 116.921131] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f0223284ff5 [ 116.921698] R13: 00007ffdda25ee20 R14: 0000000000000000 R15: 00007ffdda25f3c0 [ 116.922266] [ 116.922458] Modules linked in: [ 116.923289] ---[ end trace 0000000000000000 ]--- [ 116.923698] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.924084] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.925569] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 116.925999] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 116.926581] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 116.927294] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 116.928096] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 116.928849] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 116.929572] FS: 0000555588776400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.930214] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.930754] CR2: 00007f528403a0c8 CR3: 000000001d990000 CR4: 0000000000350ef0 [ 116.931396] note: syz-executor.3[4075] exited with preempt_count 2 [ 116.931933] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#6] SMP KASAN NOPTI [ 116.932820] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 116.933422] CPU: 1 UID: 0 PID: 360 Comm: kworker/u10:5 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 116.934440] Tainted: [D]=DIE, [W]=WARN [ 116.934830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 116.935677] Workqueue: events_unbound cfg80211_wiphy_work [ 116.936249] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.936752] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.938399] RSP: 0018:ffff88800f50f700 EFLAGS: 00010212 [ 116.938943] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 116.939686] RDX: ffff888017189b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 116.940377] RBP: ffff88800f50f970 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 116.941117] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 116.941810] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 116.942575] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.943216] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.943687] CR2: 00007f528403a0c8 CR3: 000000001d990000 CR4: 0000000000350ef0 [ 116.944252] Call Trace: [ 116.944522] [ 116.944758] ? __pfx_perf_tp_event+0x10/0x10 [ 116.945239] ? ret_from_fork_asm+0x1a/0x30 [ 116.945660] ? stack_trace_save+0x8e/0xc0 [ 116.946094] ? stack_depot_save_flags+0x2c/0xa20 [ 116.946599] ? kasan_save_stack+0x34/0x50 [ 116.946937] ? kasan_save_stack+0x24/0x50 [ 116.947275] ? kasan_save_track+0x14/0x30 [ 116.947690] ? __kasan_save_free_info+0x3a/0x60 [ 116.948179] ? __kasan_slab_free+0x3f/0x50 [ 116.948636] ? kmem_cache_free+0x2a1/0x540 [ 116.948982] ? kfree_skbmem+0x18a/0x1f0 [ 116.949314] ? sk_skb_reason_drop+0x10e/0x1b0 [ 116.949759] ? ieee80211_iface_work+0x43c/0x1220 [ 116.950261] ? cfg80211_wiphy_work+0x245/0x480 [ 116.950774] ? process_one_work+0x8e1/0x19c0 [ 116.951138] ? worker_thread+0x67e/0xe90 [ 116.951470] ? kthread+0x3c8/0x740 [ 116.951762] ? ret_from_fork+0x34b/0x430 [ 116.952092] ? perf_trace_run_bpf_submit+0xef/0x180 [ 116.952485] perf_trace_run_bpf_submit+0xef/0x180 [ 116.952868] perf_trace_contention_begin+0x235/0x3e0 [ 116.953321] ? trace_pelt_cfs_tp+0xdf/0x130 [ 116.953758] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 116.954341] ? __pick_eevdf+0x326/0x570 [ 116.954704] ? update_curr+0x71/0x500 [ 116.955111] ? lock_acquire+0x18c/0x2f0 [ 116.955527] trace_contention_begin+0xae/0x110 [ 116.955964] __mutex_lock+0x14b/0x1020 [ 116.956362] ? cfg80211_wiphy_work+0x7e/0x480 [ 116.956806] ? cfg80211_wiphy_work+0x7e/0x480 [ 116.957220] ? lock_release+0x1c7/0x290 [ 116.957674] ? lock_release+0x1c7/0x290 [ 116.958068] ? __pfx___mutex_lock+0x10/0x10 [ 116.958528] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 116.959090] ? __pfx_try_to_wake_up+0x10/0x10 [ 116.959453] cfg80211_wiphy_work+0x7e/0x480 [ 116.959799] process_one_work+0x8e1/0x19c0 [ 116.960137] ? __pfx_process_one_work+0x10/0x10 [ 116.960505] ? move_linked_works+0x172/0x270 [ 116.960861] ? assign_work+0x196/0x240 [ 116.961171] worker_thread+0x67e/0xe90 [ 116.961529] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 116.962089] ? __pfx_worker_thread+0x10/0x10 [ 116.962574] kthread+0x3c8/0x740 [ 116.962921] ? __pfx_kthread+0x10/0x10 [ 116.963339] ? ret_from_fork+0x23/0x430 [ 116.963806] ? lock_release+0xc8/0x290 [ 116.964203] ? __pfx_kthread+0x10/0x10 [ 116.964638] ret_from_fork+0x34b/0x430 [ 116.965065] ? __pfx_kthread+0x10/0x10 [ 116.965453] ret_from_fork_asm+0x1a/0x30 [ 116.965876] [ 116.966135] Modules linked in: [ 116.966445] ---[ end trace 0000000000000000 ]--- [ 116.966827] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.967215] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.968863] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 116.969354] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 116.969931] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 116.970522] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 116.971099] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 116.971801] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 116.972590] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.973248] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.973713] CR2: 00007f528403a0c8 CR3: 000000001d990000 CR4: 0000000000350ef0 [ 116.974470] note: kworker/u10:5[360] exited with preempt_count 2 [ 116.978263] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#7] SMP KASAN NOPTI [ 116.979417] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 116.980215] CPU: 1 UID: 0 PID: 102 Comm: kworker/u10:3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 116.981352] Tainted: [D]=DIE, [W]=WARN [ 116.981793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 116.982476] Workqueue: events_unbound cfg80211_wiphy_work [ 116.982921] RIP: 0010:perf_tp_event+0x175/0xe70 [ 116.983302] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 116.984922] RSP: 0018:ffff888015caf700 EFLAGS: 00010212 [ 116.985503] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 116.986171] RDX: ffff88800f681b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 116.986941] RBP: ffff888015caf970 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 116.987510] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 116.988086] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 116.988656] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 116.989326] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.989960] CR2: 00007f528403a0c8 CR3: 000000004268c000 CR4: 0000000000350ef0 [ 116.990648] Call Trace: [ 116.990857] [ 116.991045] ? __pfx_perf_tp_event+0x10/0x10 [ 116.991478] ? ret_from_fork_asm+0x1a/0x30 [ 116.991968] ? stack_trace_save+0x8e/0xc0 [ 116.992307] ? do_raw_spin_lock+0x123/0x260 [ 116.992656] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 116.993035] ? lock_acquire+0x18c/0x2f0 [ 116.993362] ? _raw_spin_lock_irqsave+0x42/0x60 [ 116.993742] ? lock_release+0x1c7/0x290 [ 116.994067] ? perf_trace_run_bpf_submit+0xef/0x180 [ 116.994472] perf_trace_run_bpf_submit+0xef/0x180 [ 116.994864] perf_trace_contention_begin+0x235/0x3e0 [ 116.995273] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 116.995728] ? __pick_eevdf+0x326/0x570 [ 116.996049] ? update_curr+0x71/0x500 [ 116.996358] ? lock_acquire+0x18c/0x2f0 [ 116.996681] trace_contention_begin+0xae/0x110 [ 116.997050] __mutex_lock+0x14b/0x1020 [ 116.997370] ? cfg80211_wiphy_work+0x7e/0x480 [ 116.997732] ? cfg80211_wiphy_work+0x7e/0x480 [ 116.998095] ? lock_release+0x1c7/0x290 [ 116.998420] ? lock_release+0x1c7/0x290 [ 116.998743] ? __pfx___mutex_lock+0x10/0x10 [ 116.999097] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 116.999507] ? __pfx_try_to_wake_up+0x10/0x10 [ 116.999881] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.000300] cfg80211_wiphy_work+0x7e/0x480 [ 117.000647] process_one_work+0x8e1/0x19c0 [ 117.000997] ? __pfx_process_one_work+0x10/0x10 [ 117.001376] ? move_linked_works+0x172/0x270 [ 117.001737] ? assign_work+0x196/0x240 [ 117.002051] worker_thread+0x67e/0xe90 [ 117.002395] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.002957] ? __pfx_worker_thread+0x10/0x10 [ 117.003438] kthread+0x3c8/0x740 [ 117.003770] ? __pfx_kthread+0x10/0x10 [ 117.004173] ? ret_from_fork+0x23/0x430 [ 117.004619] ? lock_release+0xc8/0x290 [ 117.004938] ? __pfx_kthread+0x10/0x10 [ 117.005258] ret_from_fork+0x34b/0x430 [ 117.005582] ? __pfx_kthread+0x10/0x10 [ 117.005899] ret_from_fork_asm+0x1a/0x30 [ 117.006234] [ 117.006473] Modules linked in: [ 117.007561] ---[ end trace 0000000000000000 ]--- [ 117.008124] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.009027] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.010824] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.011408] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.012163] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.012935] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.013718] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.014304] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.014873] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.015532] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 10:19:40 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0xb, &(0x7f0000002b00)={0x5, {{0x2, 0x0, @multicast1}}}, 0x90) [ 117.016008] CR2: 00007f528403a0c8 CR3: 000000004268c000 CR4: 0000000000350ef0 [ 117.016765] note: kworker/u10:3[102] exited with preempt_count 2 [ 117.019784] kmemleak: Found object by alias at 0x607f1a63e2b4 [ 117.019797] CPU: 1 UID: 0 PID: 4079 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.019816] Tainted: [D]=DIE, [W]=WARN [ 117.019820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.019826] Call Trace: [ 117.019830] [ 117.019834] dump_stack_lvl+0xca/0x120 [ 117.019854] __lookup_object+0x94/0xb0 [ 117.019870] delete_object_full+0x27/0x70 [ 117.019885] free_percpu+0x30/0x1160 [ 117.019901] ? arch_uprobe_clear_state+0x16/0x140 [ 117.019919] futex_hash_free+0x38/0xc0 [ 117.019932] mmput+0x2d3/0x390 [ 117.019949] do_exit+0x79d/0x2970 [ 117.019963] ? _printk+0xbe/0xf0 [ 117.019977] ? __pfx__printk+0x10/0x10 [ 117.019990] ? __pfx_do_exit+0x10/0x10 [ 117.020003] ? __pfx_ksys_write+0x10/0x10 [ 117.020017] make_task_dead+0x174/0x3b0 10:19:40 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0) [ 117.020031] ? do_syscall_64+0xbf/0x360 [ 117.020042] rewind_stack_and_make_dead+0x16/0x20 [ 117.020058] RIP: 0033:0x7f87346465ff [ 117.020066] Code: Unable to access opcode bytes at 0x7f87346465d5. [ 117.020071] RSP: 002b:00007fff64755a10 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 117.020082] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f87346465ff [ 117.020090] RDX: 0000000000000004 RSI: 00007fff64755a60 RDI: 0000000000000003 [ 117.020097] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007fff647559b0 [ 117.020104] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f87346edff5 [ 117.020111] R13: 00007fff64755a60 R14: 0000000000000000 R15: 00007fff64756000 [ 117.020122] [ 117.020125] kmemleak: Object (percpu) 0x607f1a63e2b0 (size 8): [ 117.020132] kmemleak: comm "syz-executor.2", pid 4077, jiffies 4294783615 [ 117.020140] kmemleak: min_count = 1 [ 117.020144] kmemleak: count = 0 [ 117.020147] kmemleak: flags = 0x21 [ 117.020151] kmemleak: checksum = 0 [ 117.020155] kmemleak: backtrace: [ 117.020158] pcpu_alloc_noprof+0x87a/0x1170 [ 117.020174] alloc_vfsmnt+0x135/0x6e0 [ 117.020187] clone_mnt+0x6c/0xb70 [ 117.020202] copy_tree+0x34b/0xaf0 [ 117.020211] copy_mnt_ns+0x1ab/0xab0 [ 117.020223] create_new_namespaces+0xd6/0xab0 [ 117.020243] copy_namespaces+0x45c/0x580 [ 117.020259] copy_process+0x2649/0x73c0 [ 117.020269] kernel_clone+0xea/0x7f0 [ 117.020279] __do_sys_clone3+0x1f5/0x280 [ 117.020290] do_syscall_64+0xbf/0x360 [ 117.020300] entry_SYSCALL_64_after_hwframe+0x77/0x7f 10:19:40 executing program 6: syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') [ 117.039159] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#8] SMP KASAN NOPTI [ 117.040299] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 117.041105] CPU: 1 UID: 0 PID: 49 Comm: kworker/u10:2 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.042292] Tainted: [D]=DIE, [W]=WARN [ 117.042704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.043449] Workqueue: events_unbound cfg80211_wiphy_work [ 117.044036] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.044517] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.046353] RSP: 0018:ffff88800af1f700 EFLAGS: 00010212 [ 117.046913] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 117.047491] RDX: ffff88800b263700 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 117.048074] RBP: ffff88800af1f970 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 117.048657] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 117.049399] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 117.050127] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.051002] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.051591] CR2: 00007f528403a0c8 CR3: 000000004268c000 CR4: 0000000000350ef0 [ 117.052350] Call Trace: [ 117.052649] [ 117.052842] ? __pfx_perf_tp_event+0x10/0x10 [ 117.053255] ? ret_from_fork_asm+0x1a/0x30 [ 117.053700] ? stack_trace_save+0x8e/0xc0 [ 117.054128] ? stack_depot_save_flags+0x2c/0xa20 [ 117.054627] ? kasan_save_stack+0x34/0x50 [ 117.055091] ? kasan_save_stack+0x24/0x50 [ 117.055436] ? kasan_save_track+0x14/0x30 [ 117.055787] ? __kasan_save_free_info+0x3a/0x60 [ 117.056168] ? __kasan_slab_free+0x3f/0x50 [ 117.056514] ? kmem_cache_free+0x2a1/0x540 [ 117.056857] ? kfree_skbmem+0x18a/0x1f0 [ 117.057204] ? sk_skb_reason_drop+0x10e/0x1b0 [ 117.057712] ? ieee80211_iface_work+0x43c/0x1220 [ 117.058168] ? cfg80211_wiphy_work+0x245/0x480 [ 117.058689] ? process_one_work+0x8e1/0x19c0 [ 117.059058] ? worker_thread+0x67e/0xe90 [ 117.059394] ? kthread+0x3c8/0x740 [ 117.059699] ? ret_from_fork+0x34b/0x430 [ 117.060139] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.060680] perf_trace_run_bpf_submit+0xef/0x180 [ 117.061194] perf_trace_contention_begin+0x235/0x3e0 [ 117.061756] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.062353] ? __pick_eevdf+0x326/0x570 [ 117.062775] ? update_curr+0x71/0x500 [ 117.063093] ? lock_acquire+0x18c/0x2f0 [ 117.063426] trace_contention_begin+0xae/0x110 [ 117.063817] __mutex_lock+0x14b/0x1020 [ 117.064147] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.064521] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.064900] ? lock_release+0x1c7/0x290 [ 117.065229] ? lock_release+0x1c7/0x290 [ 117.065562] ? __pfx___mutex_lock+0x10/0x10 [ 117.065928] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 117.066352] ? __pfx_try_to_wake_up+0x10/0x10 [ 117.066731] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.067161] cfg80211_wiphy_work+0x7e/0x480 [ 117.067521] process_one_work+0x8e1/0x19c0 [ 117.067885] ? __pfx_process_one_work+0x10/0x10 [ 117.068270] ? move_linked_works+0x172/0x270 [ 117.068641] ? assign_work+0x196/0x240 [ 117.068968] worker_thread+0x67e/0xe90 [ 117.069291] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.069726] ? __pfx_worker_thread+0x10/0x10 [ 117.070093] kthread+0x3c8/0x740 [ 117.070382] ? __pfx_kthread+0x10/0x10 [ 117.070706] ? ret_from_fork+0x23/0x430 [ 117.071041] ? lock_release+0xc8/0x290 [ 117.071364] ? __pfx_kthread+0x10/0x10 [ 117.071693] ret_from_fork+0x34b/0x430 [ 117.072024] ? __pfx_kthread+0x10/0x10 [ 117.072351] ret_from_fork_asm+0x1a/0x30 [ 117.072693] [ 117.072891] Modules linked in: [ 117.073191] ---[ end trace 0000000000000000 ]--- [ 117.073593] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.073985] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.075560] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.076153] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.076899] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.077681] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.078403] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.079132] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.079933] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.080791] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.081450] CR2: 00007f528403a0c8 CR3: 000000004268c000 CR4: 0000000000350ef0 [ 117.082083] note: kworker/u10:2[49] exited with preempt_count 2 [ 117.082778] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#9] SMP KASAN NOPTI [ 117.083716] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 117.084416] CPU: 0 UID: 0 PID: 3766 Comm: systemd-udevd Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.085375] Tainted: [D]=DIE, [W]=WARN [ 117.085685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.086348] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.086745] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.088208] RSP: 0018:ffff8880150076c0 EFLAGS: 00010212 [ 117.088647] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 117.089223] RDX: ffff888015491b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 117.089793] RBP: ffff888015007930 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.090369] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 117.090944] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.091525] FS: 00007f252e3108c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.092179] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.092647] CR2: 00007f7a69e77c50 CR3: 000000000e25b000 CR4: 0000000000350ef0 [ 117.093217] Call Trace: [ 117.093428] [ 117.093618] ? __pfx_perf_tp_event+0x10/0x10 [ 117.093983] ? __create_object+0x59/0x80 [ 117.094325] ? __alloc_skb+0x161/0x370 [ 117.094650] ? lock_acquire+0x18c/0x2f0 [ 117.094976] ? __asan_memset+0x24/0x50 [ 117.095297] ? lock_release+0x1c7/0x290 [ 117.095629] ? __perf_event_task_sched_in+0x235/0x5e0 [ 117.096046] ? trace_pelt_se_tp+0xdf/0x130 [ 117.096391] ? __update_load_avg_se+0x428/0xa40 [ 117.096775] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.097179] perf_trace_run_bpf_submit+0xef/0x180 [ 117.097575] perf_trace_contention_begin+0x235/0x3e0 [ 117.097991] ? update_curr+0x71/0x500 [ 117.098304] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.098754] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.099182] ? lock_acquire+0x18c/0x2f0 [ 117.099508] trace_contention_begin+0xae/0x110 [ 117.099890] __mutex_lock+0x14b/0x1020 [ 117.100217] ? ep_send_events+0xff/0xaa0 [ 117.100553] ? ep_send_events+0xff/0xaa0 [ 117.100887] ? __pfx___mutex_lock+0x10/0x10 [ 117.101244] ? lock_acquire+0x18c/0x2f0 [ 117.101572] ? lock_release+0x1c7/0x290 [ 117.101902] ep_send_events+0xff/0xaa0 [ 117.102225] ? schedule_hrtimeout_range_clock+0x1c0/0x310 [ 117.102671] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10 [ 117.103148] ? __pfx_ep_send_events+0x10/0x10 [ 117.103515] ? do_raw_write_lock+0x11c/0x3a0 [ 117.103884] ? __pfx_do_raw_write_lock+0x10/0x10 [ 117.104276] ? lock_release+0x1c7/0x290 [ 117.104603] do_epoll_wait+0x42e/0xee0 [ 117.104923] ? __pfx_sock_write_iter+0x10/0x10 [ 117.105301] ? __pfx_do_epoll_wait+0x10/0x10 [ 117.105665] ? populate_seccomp_data+0x213/0x540 [ 117.106058] ? __pfx_ep_autoremove_wake_function+0x10/0x10 [ 117.106506] ? __pfx___seccomp_filter+0x10/0x10 [ 117.106891] __x64_sys_epoll_wait+0x15b/0x280 [ 117.107265] ? __pfx___x64_sys_epoll_wait+0x10/0x10 [ 117.107675] ? ksys_write+0x1a3/0x240 [ 117.107990] ? __secure_computing+0x18d/0x290 [ 117.108362] do_syscall_64+0xbf/0x360 [ 117.108677] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.109093] RIP: 0033:0x7f252e7cf0d6 [ 117.109402] Code: 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 e8 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 18 48 89 74 24 [ 117.110855] RSP: 002b:00007ffe14548568 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8 [ 117.111464] RAX: ffffffffffffffda RBX: 000056215e5105e0 RCX: 00007f252e7cf0d6 [ 117.112038] RDX: 0000000000000002 RSI: 000056215e5408f0 RDI: 0000000000000003 [ 117.112608] RBP: ffffffffffffffff R08: 0000000000000002 R09: 0000000000000000 [ 117.113182] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001 [ 117.113754] R13: 0000000000000002 R14: 00005621566302e6 R15: 0000000000000000 [ 117.114333] [ 117.114527] Modules linked in: [ 117.114795] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#10] SMP KASAN NOPTI [ 117.115943] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 117.116560] CPU: 1 UID: 0 PID: 281 Comm: syz-executor.0 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.116600] ---[ end trace 0000000000000000 ]--- [ 117.117518] Tainted: [D]=DIE, [W]=WARN [ 117.117524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.117531] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.117548] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.117560] RSP: 0018:ffff888018ae7400 EFLAGS: 00010212 [ 117.117570] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 117.117578] RDX: ffff888017bdd280 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 117.117586] RBP: ffff888018ae7670 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 117.117594] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.117602] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 117.117612] FS: 000055556ef27400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.117623] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.117631] CR2: 00007f528403a0c8 CR3: 0000000039648000 CR4: 0000000000350ef0 [ 117.117639] Call Trace: [ 117.117643] [ 117.117649] ? __pfx_perf_tp_event+0x10/0x10 [ 117.117665] ? do_raw_spin_lock+0x123/0x260 [ 117.117681] ? lock_acquire+0x18c/0x2f0 [ 117.117694] ? dup_mmap+0xd2f/0x1d10 [ 117.117710] ? copy_process+0x3ad5/0x73c0 [ 117.117721] ? kernel_clone+0xea/0x7f0 [ 117.117732] ? css_rstat_updated+0x1b8/0x4d0 [ 117.117749] ? __pfx_css_rstat_updated+0x10/0x10 [ 117.117766] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.117778] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 117.117794] ? __create_object+0x59/0x80 [ 117.117811] ? do_raw_spin_lock+0x123/0x260 [ 117.117827] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 117.117844] ? lock_acquire+0x18c/0x2f0 [ 117.117858] ? __pte_offset_map_lock+0x190/0x330 [ 117.117871] ? percpu_counter_add_batch+0x126/0x240 [ 117.117886] ? vm_normal_page+0x154/0x270 [ 117.117903] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.117920] perf_trace_run_bpf_submit+0xef/0x180 [ 117.117938] perf_trace_contention_begin+0x235/0x3e0 [ 117.117953] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.117969] ? lock_acquire+0x18c/0x2f0 [ 117.117983] trace_contention_begin+0xae/0x110 [ 117.117998] __mutex_lock+0x14b/0x1020 [ 117.118016] ? ldt_dup_context+0x46/0x350 [ 117.118029] ? ldt_dup_context+0x46/0x350 [ 117.118042] ? __pfx___mutex_lock+0x10/0x10 [ 117.118060] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 117.118075] ? mas_next_slot+0x13cc/0x1ac0 [ 117.118090] ldt_dup_context+0x46/0x350 [ 117.118104] dup_mmap+0x178e/0x1d10 [ 117.118122] ? __pfx_dup_mmap+0x10/0x10 [ 117.118139] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.118151] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 117.118169] ? mm_init+0xe2e/0x1170 [ 117.118180] copy_process+0x3ad5/0x73c0 [ 117.118612] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.118887] ? __pfx_copy_process+0x10/0x10 [ 117.119557] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.119924] ? lock_acquire+0x18c/0x2f0 [ 117.121388] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.121804] ? do_raw_spin_lock+0x123/0x260 [ 117.122385] [ 117.122949] kernel_clone+0xea/0x7f0 [ 117.123527] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.124095] ? __pfx_kernel_clone+0x10/0x10 [ 117.124675] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.125307] ? vma_start_read+0x25e/0x8e0 [ 117.125778] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.126348] ? vma_start_read+0x304/0x8e0 [ 117.126363] ? __pfx___handle_mm_fault+0x10/0x10 [ 117.126571] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.126757] ? css_rstat_updated+0x1b8/0x4d0 [ 117.127107] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.127451] ? __pfx_css_rstat_updated+0x10/0x10 [ 117.127788] FS: 00007f252e3108c0(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.128087] __do_sys_clone+0xce/0x120 [ 117.128430] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.128728] ? __pfx___do_sys_clone+0x10/0x10 [ 117.129085] CR2: 00007f7a69e77c50 CR3: 000000000e25b000 CR4: 0000000000350ef0 [ 117.129468] ? count_memcg_events+0x32b/0x420 [ 117.129898] note: systemd-udevd[3766] exited with preempt_count 2 [ 117.130310] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.151844] do_syscall_64+0xbf/0x360 [ 117.152147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.152556] RIP: 0033:0x7f77f3f8110b [ 117.152853] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00 [ 117.154269] RSP: 002b:00007ffd01d8faf0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 117.154867] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f77f3f8110b [ 117.155425] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 117.155997] RBP: 0000000000000001 R08: 0000000000000000 R09: 000055556ef27400 [ 117.156564] R10: 000055556ef276d0 R11: 0000000000000246 R12: 0000000000000001 [ 117.157121] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd01d8fbd0 [ 117.157682] [ 117.157875] Modules linked in: [ 117.158136] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#11] SMP KASAN NOPTI [ 117.158963] ---[ end trace 0000000000000000 ]--- [ 117.159012] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 117.160061] CPU: 0 UID: 0 PID: 273 Comm: kworker/u9:3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.160297] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.160968] Tainted: [D]=DIE, [W]=WARN [ 117.161446] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.161628] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.163328] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.163697] Workqueue: events_unbound cfg80211_wiphy_work [ 117.164124] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.164545] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.165112] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.165471] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.165484] RSP: 0018:ffff88801a8af700 EFLAGS: 00010212 [ 117.166036] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.167434] [ 117.167439] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 117.167447] RDX: ffff8880178e1b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 117.167861] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.168408] RBP: ffff88801a8af970 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.168418] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.168560] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.169109] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.169676] FS: 000055556ef27400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.170217] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.170782] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.171326] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.171336] CR2: 00007f7a69e77c50 CR3: 000000003b4ba000 CR4: 0000000000350ef0 [ 117.171898] CR2: 00007f528403a0c8 CR3: 0000000039648000 CR4: 0000000000350ef0 [ 117.172448] Call Trace: [ 117.172452] [ 117.172459] ? __pfx_perf_tp_event+0x10/0x10 [ 117.173088] note: syz-executor.0[281] exited with preempt_count 2 [ 117.173700] ? arch_stack_walk+0x86/0xf0 [ 117.173717] ? ret_from_fork_asm+0x1a/0x30 [ 117.177532] ? stack_trace_save+0x8e/0xc0 [ 117.177863] ? stack_depot_save_flags+0x2c/0xa20 [ 117.178242] ? kasan_save_stack+0x34/0x50 [ 117.178576] ? kasan_save_stack+0x24/0x50 [ 117.178904] ? kasan_save_track+0x14/0x30 [ 117.179235] ? __kasan_save_free_info+0x3a/0x60 [ 117.179607] ? __kasan_slab_free+0x3f/0x50 [ 117.179944] ? kmem_cache_free+0x2a1/0x540 [ 117.180277] ? ext4_end_io_end+0x13f/0x4b0 [ 117.180615] ? ext4_end_io_rsv_work+0x1b9/0x310 [ 117.180986] ? process_one_work+0x8e1/0x19c0 [ 117.181341] ? worker_thread+0x67e/0xe90 [ 117.181662] ? kthread+0x3c8/0x740 [ 117.181949] ? ret_from_fork+0x34b/0x430 [ 117.182280] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.182678] perf_trace_run_bpf_submit+0xef/0x180 [ 117.183067] perf_trace_contention_begin+0x235/0x3e0 [ 117.183469] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.183919] ? __pick_eevdf+0x326/0x570 [ 117.184237] ? update_curr+0x71/0x500 [ 117.184541] ? lock_acquire+0x18c/0x2f0 [ 117.184862] trace_contention_begin+0xae/0x110 [ 117.185229] __mutex_lock+0x14b/0x1020 [ 117.185543] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.185898] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.186254] ? lock_release+0x1c7/0x290 [ 117.186573] ? lock_release+0x1c7/0x290 [ 117.186887] ? __pfx___mutex_lock+0x10/0x10 [ 117.187236] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 117.187648] ? __pfx_try_to_wake_up+0x10/0x10 [ 117.188012] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.188426] cfg80211_wiphy_work+0x7e/0x480 [ 117.188768] process_one_work+0x8e1/0x19c0 [ 117.189107] ? __pfx_process_one_work+0x10/0x10 [ 117.189480] ? move_linked_works+0x172/0x270 [ 117.189837] ? assign_work+0x196/0x240 [ 117.190150] worker_thread+0x67e/0xe90 [ 117.190462] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.190875] ? __pfx_worker_thread+0x10/0x10 [ 117.191228] kthread+0x3c8/0x740 [ 117.191498] ? __pfx_kthread+0x10/0x10 [ 117.191813] ? ret_from_fork+0x23/0x430 [ 117.192139] ? lock_release+0xc8/0x290 [ 117.192448] ? __pfx_kthread+0x10/0x10 [ 117.192758] ret_from_fork+0x34b/0x430 [ 117.193072] ? __pfx_kthread+0x10/0x10 [ 117.193381] ret_from_fork_asm+0x1a/0x30 [ 117.193708] [ 117.193895] Modules linked in: [ 117.194151] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#12] SMP KASAN NOPTI [ 117.195264] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 117.195456] ---[ end trace 0000000000000000 ]--- [ 117.195878] CPU: 1 UID: 0 PID: 318 Comm: kworker/u10:4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.197160] Tainted: [D]=DIE, [W]=WARN [ 117.197166] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.197465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.197474] Workqueue: events_unbound cfg80211_wiphy_work [ 117.197488] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.197506] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.197517] RSP: 0018:ffff8880166af700 EFLAGS: 00010212 [ 117.197527] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 117.197535] RDX: ffff88801542d280 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 117.197543] RBP: ffff8880166af970 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 117.197551] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.197559] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 117.197569] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.197580] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.197588] CR2: 00007f528403a0c8 CR3: 0000000039648000 CR4: 0000000000350ef0 [ 117.197595] Call Trace: [ 117.197599] [ 117.197606] ? __pfx_perf_tp_event+0x10/0x10 [ 117.197624] ? __lock_acquire+0xc65/0x1b70 [ 117.197637] ? __switch_to_asm+0x60/0x70 [ 117.197654] ? do_raw_spin_lock+0x123/0x260 [ 117.197670] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 117.197689] ? mark_held_locks+0x49/0x80 [ 117.197703] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.197720] perf_trace_run_bpf_submit+0xef/0x180 [ 117.197737] perf_trace_contention_begin+0x235/0x3e0 [ 117.197753] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.197767] ? __pick_eevdf+0x326/0x570 [ 117.197778] ? update_curr+0x71/0x500 [ 117.197790] ? lock_acquire+0x18c/0x2f0 [ 117.197805] trace_contention_begin+0xae/0x110 [ 117.197819] __mutex_lock+0x14b/0x1020 [ 117.197837] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.197850] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.197862] ? lock_release+0x1c7/0x290 [ 117.197875] ? lock_release+0x1c7/0x290 [ 117.197889] ? __pfx___mutex_lock+0x10/0x10 [ 117.197906] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 117.197924] ? __pfx_try_to_wake_up+0x10/0x10 [ 117.198318] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.198952] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.199388] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.199746] cfg80211_wiphy_work+0x7e/0x480 [ 117.201158] [ 117.201559] process_one_work+0x8e1/0x19c0 [ 117.202116] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.202674] ? __pfx_process_one_work+0x10/0x10 [ 117.203250] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.203804] ? move_linked_works+0x172/0x270 [ 117.204363] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.204986] ? assign_work+0x196/0x240 [ 117.205443] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.205988] worker_thread+0x67e/0xe90 [ 117.206191] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.206376] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.206727] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.207055] ? __pfx_worker_thread+0x10/0x10 [ 117.207378] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.207704] kthread+0x3c8/0x740 [ 117.208062] CR2: 00007f7a69e77c50 CR3: 000000003b4ba000 CR4: 0000000000350ef0 [ 117.208372] ? __pfx_kthread+0x10/0x10 [ 117.208386] ? ret_from_fork+0x23/0x430 [ 117.208768] note: kworker/u9:3[273] exited with preempt_count 2 [ 117.209144] ? lock_release+0xc8/0x290 [ 117.225090] ? __pfx_kthread+0x10/0x10 [ 117.225407] ret_from_fork+0x34b/0x430 [ 117.225728] ? __pfx_kthread+0x10/0x10 [ 117.226047] ret_from_fork_asm+0x1a/0x30 [ 117.226380] [ 117.226571] Modules linked in: [ 117.227551] ---[ end trace 0000000000000000 ]--- [ 117.227941] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.228845] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.230291] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#13] SMP KASAN NOPTI [ 117.230306] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 117.230318] CPU: 0 UID: 0 PID: 4085 Comm: syz-executor.1 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.231188] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.231884] Tainted: [D]=DIE, [W]=WARN [ 117.231890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.232831] [ 117.233238] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.233548] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.234195] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.234346] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.234697] RSP: 0018:ffff8880156076c0 EFLAGS: 00010212 [ 117.235277] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.236685] [ 117.236689] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 117.237268] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.237668] RDX: ffff888015490000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 117.238242] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.238373] RBP: ffff888015607930 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.238934] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.239487] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 117.239496] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.240068] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.240623] FS: 0000555564748400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.240636] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.241199] CR2: 00007f528403a0c8 CR3: 0000000039648000 CR4: 0000000000350ef0 [ 117.241823] CR2: 00007fcb159ae541 CR3: 0000000045053000 CR4: 0000000000350ef0 [ 117.241833] Call Trace: [ 117.242401] note: kworker/u10:4[318] exited with preempt_count 2 [ 117.242947] [ 117.246437] ? set_normalized_timespec64+0x69/0xc0 [ 117.246831] ? __pfx_perf_tp_event+0x10/0x10 [ 117.247191] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 117.247570] ? lock_acquire+0x18c/0x2f0 [ 117.247896] ? lock_release+0x1c7/0x290 [ 117.248220] ? lock_release+0x1c7/0x290 [ 117.248538] ? avc_has_perm_noaudit+0x150/0x3d0 [ 117.248917] ? lock_acquire+0x18c/0x2f0 [ 117.249235] ? avc_has_perm+0x12b/0x1d0 [ 117.249557] ? lock_acquire+0x18c/0x2f0 [ 117.249876] ? lock_release+0x1c7/0x290 [ 117.250199] ? lock_acquire+0x18c/0x2f0 [ 117.250521] ? lock_acquire+0x18c/0x2f0 [ 117.250840] ? lock_release+0x1c7/0x290 [ 117.251165] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.251563] ? kernel_text_address+0x5b/0xc0 [ 117.251925] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 117.252364] ? __kernel_text_address+0xd/0x40 [ 117.252725] perf_trace_run_bpf_submit+0xef/0x180 [ 117.253118] perf_trace_contention_begin+0x235/0x3e0 [ 117.253520] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.253967] ? stack_trace_save+0x8e/0xc0 [ 117.254304] ? lock_acquire+0x18c/0x2f0 [ 117.254630] trace_contention_begin+0xae/0x110 [ 117.254999] __mutex_lock+0x14b/0x1020 [ 117.255318] ? __set_oom_adj.isra.0+0x68/0xf40 [ 117.255689] ? __set_oom_adj.isra.0+0x68/0xf40 [ 117.256056] ? putname+0x3c/0x50 [ 117.256338] ? do_sys_openat2+0x13c/0x1b0 [ 117.256673] ? __x64_sys_openat+0x142/0x200 [ 117.257021] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.257440] ? __pfx___mutex_lock+0x10/0x10 [ 117.257791] ? lock_acquire+0x18c/0x2f0 [ 117.258116] ? lock_release+0x1c7/0x290 [ 117.258437] ? lock_release+0x1c7/0x290 [ 117.258758] __set_oom_adj.isra.0+0x68/0xf40 [ 117.259123] oom_score_adj_write+0x1ba/0x200 [ 117.259479] ? __pfx_oom_score_adj_write+0x10/0x10 [ 117.259880] ? lock_acquire+0x18c/0x2f0 [ 117.260208] ? security_file_permission+0x22/0x90 [ 117.260601] vfs_write+0x2b7/0x1150 [ 117.260897] ? __pfx_oom_score_adj_write+0x10/0x10 [ 117.261293] ? __pfx_vfs_write+0x10/0x10 [ 117.261614] ? task_mm_cid_work+0x21a/0x840 [ 117.261965] ? do_raw_spin_lock+0x123/0x260 [ 117.262318] ? __pfx_task_mm_cid_work+0x10/0x10 [ 117.262698] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 117.263072] ? lock_release+0x1c7/0x290 [ 117.263388] ? blkcg_maybe_throttle_current+0x2cc/0xe60 [ 117.263826] ksys_write+0x121/0x240 [ 117.264129] ? __pfx_ksys_write+0x10/0x10 [ 117.264459] do_syscall_64+0xbf/0x360 [ 117.264768] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.265177] RIP: 0033:0x7fcb158e15ff [ 117.265478] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 117.266896] RSP: 002b:00007ffdbf937930 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 117.267489] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007fcb158e15ff [ 117.268056] RDX: 0000000000000004 RSI: 00007ffdbf937980 RDI: 0000000000000003 [ 117.268613] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007ffdbf9378d0 [ 117.269172] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fcb15988ff5 [ 117.269731] R13: 00007ffdbf937980 R14: 0000000000000000 R15: 00007ffdbf937f20 [ 117.270294] [ 117.270482] Modules linked in: [ 117.270740] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#14] SMP KASAN NOPTI [ 117.270807] ---[ end trace 0000000000000000 ]--- [ 117.271643] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 117.271656] CPU: 1 UID: 0 PID: 45 Comm: kworker/u9:2 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.272024] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.272601] Tainted: [D]=DIE, [W]=WARN [ 117.272607] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.273516] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.273862] Workqueue: events_unbound cfg80211_wiphy_work [ 117.274170] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.274810] [ 117.274815] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.276275] [ 117.276688] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.277101] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.277238] RSP: 0018:ffff88800ae6f700 EFLAGS: 00010212 [ 117.277249] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 117.277613] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.277752] RDX: ffff88800a45b700 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 117.279192] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.279736] RBP: ffff88800ae6f970 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 117.279746] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.280162] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.280710] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 117.280721] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.281293] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.281842] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.282421] FS: 0000555564748400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.282961] CR2: 00007f528403a0c8 CR3: 0000000039648000 CR4: 0000000000350ef0 [ 117.283536] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.284085] Call Trace: [ 117.284656] CR2: 00007fcb159ae541 CR3: 0000000045053000 CR4: 0000000000350ef0 [ 117.285264] [ 117.285273] ? __pfx_perf_tp_event+0x10/0x10 [ 117.285832] note: syz-executor.1[4085] exited with preempt_count 2 [ 117.286281] ? ret_from_fork_asm+0x1a/0x30 [ 117.290001] ? stack_trace_save+0x8e/0xc0 [ 117.290335] ? stack_depot_save_flags+0x2c/0xa20 [ 117.290715] ? kasan_save_stack+0x34/0x50 [ 117.291050] ? kasan_save_stack+0x24/0x50 [ 117.291384] ? kasan_save_track+0x14/0x30 [ 117.291721] ? __kasan_save_free_info+0x3a/0x60 [ 117.292089] ? __kasan_slab_free+0x3f/0x50 [ 117.292427] ? kmem_cache_free+0x2a1/0x540 [ 117.292761] ? kfree_skbmem+0x18a/0x1f0 [ 117.293079] ? sk_skb_reason_drop+0x10e/0x1b0 [ 117.293434] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.293833] perf_trace_run_bpf_submit+0xef/0x180 [ 117.294222] perf_trace_contention_begin+0x235/0x3e0 [ 117.294626] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.295064] ? lock_acquire+0x18c/0x2f0 [ 117.295385] trace_contention_begin+0xae/0x110 [ 117.295760] __mutex_lock+0x14b/0x1020 [ 117.296076] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.296435] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.296790] ? lock_release+0x1c7/0x290 [ 117.297106] ? __pfx___mutex_lock+0x10/0x10 [ 117.297453] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 117.297854] ? __pfx_try_to_wake_up+0x10/0x10 [ 117.298217] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.298632] cfg80211_wiphy_work+0x7e/0x480 [ 117.298975] process_one_work+0x8e1/0x19c0 [ 117.299314] ? __pfx_process_one_work+0x10/0x10 [ 117.299694] ? move_linked_works+0x172/0x270 [ 117.300047] ? assign_work+0x196/0x240 [ 117.300357] worker_thread+0x67e/0xe90 [ 117.300669] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.301082] ? __pfx_worker_thread+0x10/0x10 [ 117.301431] kthread+0x3c8/0x740 [ 117.301704] ? __pfx_kthread+0x10/0x10 [ 117.302011] ? ret_from_fork+0x23/0x430 [ 117.302335] ? lock_release+0xc8/0x290 [ 117.302648] ? __pfx_kthread+0x10/0x10 [ 117.302959] ret_from_fork+0x34b/0x430 [ 117.303272] ? __pfx_kthread+0x10/0x10 [ 117.303581] ret_from_fork_asm+0x1a/0x30 [ 117.303917] [ 117.304105] Modules linked in: [ 117.304364] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#15] SMP KASAN NOPTI [ 117.305145] ---[ end trace 0000000000000000 ]--- [ 117.305251] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 117.305264] CPU: 0 UID: 0 PID: 408 Comm: kworker/u10:7 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.305283] Tainted: [D]=DIE, [W]=WARN [ 117.305287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.305294] Workqueue: events_unbound cfg80211_wiphy_work [ 117.305309] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.305325] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.305337] RSP: 0018:ffff8880460e7700 EFLAGS: 00010212 [ 117.305346] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 117.305353] RDX: ffff888018a38000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 117.305361] RBP: ffff8880460e7970 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.305369] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.305376] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.305386] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.305396] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.305404] CR2: 00007fe692a2dff8 CR3: 00000000436a0000 CR4: 0000000000350ef0 [ 117.305412] Call Trace: [ 117.305416] [ 117.305421] ? mark_held_locks+0x49/0x80 [ 117.305435] ? __pfx_perf_tp_event+0x10/0x10 [ 117.305452] ? put_task_struct_rcu_user+0x75/0xc0 [ 117.305467] ? release_task+0xcd4/0x1870 [ 117.305483] ? __lock_acquire+0xc65/0x1b70 [ 117.305500] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.305516] perf_trace_run_bpf_submit+0xef/0x180 [ 117.305534] perf_trace_contention_begin+0x235/0x3e0 [ 117.305549] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.305564] ? lock_acquire+0x18c/0x2f0 [ 117.305578] trace_contention_begin+0xae/0x110 [ 117.305593] __mutex_lock+0x14b/0x1020 [ 117.305610] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.305623] ? cfg80211_wiphy_work+0x7e/0x480 [ 117.305635] ? lock_release+0x1c7/0x290 [ 117.305649] ? __pfx___mutex_lock+0x10/0x10 [ 117.305667] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 117.305684] ? __pfx_try_to_wake_up+0x10/0x10 [ 117.305701] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.305715] cfg80211_wiphy_work+0x7e/0x480 [ 117.305729] process_one_work+0x8e1/0x19c0 [ 117.305745] ? __pfx_process_one_work+0x10/0x10 [ 117.305759] ? move_linked_works+0x172/0x270 [ 117.305777] ? assign_work+0x196/0x240 [ 117.305790] worker_thread+0x67e/0xe90 [ 117.305804] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 117.305818] ? __pfx_worker_thread+0x10/0x10 [ 117.306203] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.306879] kthread+0x3c8/0x740 [ 117.306893] ? __pfx_kthread+0x10/0x10 [ 117.306904] ? ret_from_fork+0x23/0x430 [ 117.306922] ? lock_release+0xc8/0x290 [ 117.306935] ? __pfx_kthread+0x10/0x10 [ 117.306948] ret_from_fork+0x34b/0x430 [ 117.306965] ? __pfx_kthread+0x10/0x10 [ 117.306977] ret_from_fork_asm+0x1a/0x30 [ 117.306996] [ 117.307995] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.308213] Modules linked in: [ 117.308904] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.309979] ---[ end trace 0000000000000000 ]--- [ 117.311085] [ 117.311090] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.311099] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.311107] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.311116] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.311124] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.311133] FS: 0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.311145] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.311153] CR2: 00007f528403a0c8 CR3: 0000000039648000 CR4: 0000000000350ef0 [ 117.311162] note: kworker/u9:2[45] exited with preempt_count 2 [ 117.313282] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#16] SMP KASAN NOPTI [ 117.313694] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.314245] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 117.314259] CPU: 1 UID: 0 PID: 176 Comm: in:imklog Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.314815] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.315435] Tainted: [D]=DIE, [W]=WARN [ 117.315441] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.315900] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.316456] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.316674] [ 117.316853] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.317166] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.317507] RSP: 0018:ffff88801b56f440 EFLAGS: 00010212 [ 117.317518] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 117.317895] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.318206] RDX: ffff88801bcab700 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 117.318551] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.318938] RBP: ffff88801b56f6b0 R08: ffff88806cf31340 R09: ffffe8ffffd162b0 [ 117.319350] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.319766] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 117.320199] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.320510] R13: 000000000000001c R14: ffff88806cf31340 R15: dffffc0000000000 [ 117.320521] FS: 00007f528d506700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 117.320872] FS: 0000000000000000(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.321173] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.321533] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.321866] CR2: 00007f528403a0c8 CR3: 000000000d7a6000 CR4: 0000000000350ef0 [ 117.322173] CR2: 00007fe692a2dff8 CR3: 00000000436a0000 CR4: 0000000000350ef0 [ 117.322503] Call Trace: [ 117.322508] [ 117.322514] ? unwind_get_return_address+0x59/0xa0 [ 117.322901] note: kworker/u10:7[408] exited with preempt_count 2 [ 117.323244] ? __pfx_perf_tp_event+0x10/0x10 [ 117.354269] ? lock_release+0x1c7/0x290 [ 117.354587] ? lock_acquire+0x18c/0x2f0 [ 117.354902] ? lock_acquire+0x18c/0x2f0 [ 117.355217] ? lock_release+0x1c7/0x290 [ 117.355534] ? __is_insn_slot_addr+0x140/0x290 [ 117.355909] ? trace_sched_set_need_resched_tp+0xd4/0x110 [ 117.356347] ? __resched_curr+0x2a2/0x330 [ 117.356677] ? __pfx___resched_curr+0x10/0x10 [ 117.357040] ? perf_trace_run_bpf_submit+0xef/0x180 [ 117.357435] perf_trace_run_bpf_submit+0xef/0x180 [ 117.357821] perf_trace_contention_begin+0x235/0x3e0 [ 117.358220] ? __pfx_perf_trace_contention_begin+0x10/0x10 [ 117.358656] ? _prb_read_valid+0x6e9/0x830 [ 117.359009] ? lock_acquire+0x18c/0x2f0 [ 117.359324] trace_contention_begin+0xae/0x110 [ 117.359695] __mutex_lock+0x14b/0x1020 [ 117.360006] ? syslog_print+0x244/0x5c0 [ 117.360323] ? syslog_print+0x244/0x5c0 [ 117.360645] ? __pfx___mutex_lock+0x10/0x10 [ 117.360992] ? prb_read_valid+0x78/0xa0 [ 117.361309] ? __pfx_prb_read_valid+0x10/0x10 [ 117.361666] syslog_print+0x244/0x5c0 [ 117.361971] ? __pfx_syslog_print+0x10/0x10 [ 117.362311] ? __alloc_frozen_pages_noprof+0x296/0x1f20 [ 117.362735] ? place_entity+0x300/0x410 [ 117.363049] ? lock_acquire+0x18c/0x2f0 [ 117.363370] ? __pfx_autoremove_wake_function+0x10/0x10 [ 117.363796] ? get_random_u8+0x3ab/0x680 [ 117.364124] ? lock_acquire+0x18c/0x2f0 [ 117.364438] ? lock_acquire+0x18c/0x2f0 [ 117.364753] do_syslog.part.0+0x20b/0x5b0 [ 117.365086] ? __pfx_do_syslog.part.0+0x10/0x10 [ 117.365457] ? avc_has_perm+0x12b/0x1d0 [ 117.365778] ? __pfx_avc_has_perm+0x10/0x10 [ 117.366125] ? lock_acquire+0x18c/0x2f0 [ 117.366441] ? lock_release+0x1c7/0x290 [ 117.366756] ? lock_release+0x1c7/0x290 [ 117.367075] do_syslog+0xcd/0x110 [ 117.367356] kmsg_read+0x8e/0xc0 [ 117.367640] ? __pfx_kmsg_read+0x10/0x10 [ 117.367960] proc_reg_read+0x120/0x310 [ 117.368275] ? __pfx_proc_reg_read+0x10/0x10 [ 117.368628] vfs_read+0x1eb/0xc70 [ 117.368908] ? __pfx_vfs_read+0x10/0x10 [ 117.369229] ? lock_release+0x1c7/0x290 [ 117.369545] ? __fget_files+0x20d/0x3b0 [ 117.369862] ksys_read+0x121/0x240 [ 117.370144] ? __pfx_ksys_read+0x10/0x10 [ 117.370466] do_syscall_64+0xbf/0x360 [ 117.370774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.371178] RIP: 0033:0x7f528df4908c [ 117.371471] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 89 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf fc ff ff 48 [ 117.372874] RSP: 002b:00007f528d4e54d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 117.373465] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f528df4908c [ 117.374017] RDX: 0000000000001fa0 RSI: 00007f528d4e5d00 RDI: 0000000000000005 [ 117.374570] RBP: 000055993825f4c0 R08: 0000000000000000 R09: 0000000000000000 [ 117.375120] R10: a3d70a3d70a3d70b R11: 0000000000000246 R12: 00007f528d4e5d00 [ 117.375678] R13: 0000000000001fa0 R14: 00007f528d4e5d00 R15: 00007f528d4e5fe2 [ 117.376230] [ 117.376416] Modules linked in: [ 117.376673] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000001: 0000 [#17] SMP KASAN NOPTI [ 117.376715] ---[ end trace 0000000000000000 ]--- [ 117.377552] KASAN: probably user-memory-access in range [0x0000000100000008-0x000000010000000f] [ 117.377566] CPU: 0 UID: 0 PID: 4077 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 117.377926] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.378597] Tainted: [D]=DIE, [W]=WARN [ 117.378603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 117.379522] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.379881] RIP: 0010:perf_trace_add+0x21b/0x340 [ 117.380181] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.380822] Code: 00 0f 85 3a 01 00 00 4c 89 75 00 4d 85 ed 74 2a e8 da b2 f5 ff 49 8d 7d 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 df 00 00 00 4d 89 75 08 eb 03 45 31 e4 e8 ad b2 [ 117.380835] RSP: 0018:ffff88804608f8d8 EFLAGS: 00010012 [ 117.385022] RAX: dffffc0000000000 RBX: ffff8880466092c0 RCX: ffffffff817e42fe [ 117.385581] RDX: 0000000020000001 RSI: ffffffff817e43d6 RDI: 0000000100000008 [ 117.386138] RBP: ffffe8ffffc162b0 R08: ffffffff85ca4140 R09: ffffed1008c11f62 [ 117.386695] R10: 0000000000000000 R11: 1ffff1100d9c6f7b R12: 0000000000000000 [ 117.387255] R13: 0000000100000000 R14: ffff888046609320 R15: ffff888046609358 [ 117.387819] FS: 00007fb08cb38700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.388449] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.388907] CR2: 00007fe692a2dff8 CR3: 000000001e1d0000 CR4: 0000000000350ef0 [ 117.389467] Call Trace: [ 117.389678] [ 117.389861] event_sched_in+0x446/0xb60 [ 117.390186] merge_sched_in+0xb4d/0x1810 [ 117.390507] visit_groups_merge.constprop.0.isra.0+0x8d1/0x1150 [ 117.390980] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10 [ 117.391490] ? kvm_sched_clock_read+0x16/0x30 [ 117.391868] ? local_clock_noinstr+0xf/0xc0 [ 117.392243] ctx_sched_in+0x579/0x9b0 [ 117.392557] ? __pfx_ctx_sched_in+0x10/0x10 [ 117.392912] ? lock_acquire+0x18c/0x2f0 [ 117.393244] perf_event_sched_in+0x5d/0x90 [ 117.393586] __perf_event_task_sched_in+0x2ec/0x5e0 [ 117.393992] ? __pfx___perf_event_task_sched_in+0x10/0x10 [ 117.394434] ? update_load_avg+0x17d/0x1ef0 [ 117.394784] ? __pfx___perf_event_task_sched_out+0x10/0x10 [ 117.395237] ? xfd_validate_state+0x55/0x180 [ 117.395609] finish_task_switch.isra.0+0x410/0x840 [ 117.396014] __schedule+0xe86/0x3590 [ 117.396328] ? __pfx___schedule+0x10/0x10 [ 117.396668] ? __pfx_console_unlock+0x10/0x10 [ 117.397040] ? do_raw_spin_unlock+0x53/0x220 [ 117.397405] ? do_raw_spin_lock+0x123/0x260 [ 117.397759] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 117.398142] ? lock_acquire+0x18c/0x2f0 [ 117.398473] ? do_raw_spin_lock+0x123/0x260 [ 117.398826] __cond_resched+0x4c/0x80 [ 117.399143] exit_signals+0x2a/0x940 [ 117.399457] do_exit+0x2db/0x2970 [ 117.399747] ? _printk+0xbe/0xf0 [ 117.400030] ? __pfx__printk+0x10/0x10 [ 117.400349] ? __pfx_do_exit+0x10/0x10 [ 117.400677] make_task_dead+0x174/0x3b0 [ 117.401002] ? do_syscall_64+0xbf/0x360 [ 117.401330] rewind_stack_and_make_dead+0x16/0x20 [ 117.401726] RIP: 0033:0x7fb08f5c2b19 [ 117.402031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 117.403476] RSP: 002b:00007fb08cb38188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 117.404080] RAX: ffffffffffffffda RBX: 00007fb08f6d5f60 RCX: 00007fb08f5c2b19 [ 117.404634] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00000000200002c0 [ 117.405187] RBP: 00007fb08f61cf6d R08: 0000000000000000 R09: 0000000000000000 [ 117.405747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 117.406325] R13: 00007fff81f1c58f R14: 00007fb08cb38300 R15: 0000000000022000 [ 117.406897] [ 117.407086] Modules linked in: [ 117.407343] ---[ end trace 0000000000000000 ]--- [ 117.407721] RIP: 0010:perf_tp_event+0x175/0xe70 [ 117.408097] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 117.409516] RSP: 0018:ffff88804724f340 EFLAGS: 00010213 [ 117.409931] RAX: 187e001fea7e0051 RBX: c3f000ff53f0009f RCX: ffffc90001695000 [ 117.410490] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: c3f000ff53f0028f [ 117.411050] RBP: ffff88804724f5b0 R08: ffff88806ce31340 R09: ffffe8ffffc162b0 [ 117.411617] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 117.412175] R13: 0000000000000000 R14: ffff88806ce31340 R15: dffffc0000000000 [ 117.412733] FS: 00007fb08cb38700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 117.413363] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.413817] CR2: 00007fe692a2dff8 CR3: 000000001e1d0000 CR4: 0000000000350ef0 [ 117.414374] note: syz-executor.2[4077] exited with irqs disabled VM DIAGNOSIS: 10:19:39 Registers: info registers vcpu 0 RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88804724eca0 R8 =0000000000000000 R9 =ffffed100134a046 R10=000000000000003a R11=552030203a555043 R12=000000000000003a R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb08cb38700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe6d00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0aed59c000 CR3=000000000e612000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00ff000000000000ff0000000000ff00 XMM01=630033656e6f6c6300656e6f6c630065 XMM02=00010000000000000000000000000000 XMM03=00007fb08f6a97c800007fb08f6a97c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000022aeb RBX=ffff88806ce3de20 RCX=ffffc900084cc000 RDX=0000000000040000 RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88804762f7e0 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1 R12=ffffed100d9c7bc5 R13=ffff88806ce3de28 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff816880d8 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe692a2e700 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe3300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f77f449a004 CR3=000000000d9ca000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fe69559f7c000007fe69559f7c8 XMM02=00007fe69559f7e000007fe69559f7c0 XMM03=00007fe69559f7c800007fe69559f7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000