Warning: Permanently added '[localhost]:22942' (ECDSA) to the list of known hosts.
2025/09/01 10:24:29 fuzzer started
2025/09/01 10:24:30 dialing manager at localhost:35473
syzkaller login: [ 51.936994] cgroup: Unknown subsys name 'net'
[ 51.995799] cgroup: Unknown subsys name 'cpuset'
[ 52.009269] cgroup: Unknown subsys name 'rlimit'
2025/09/01 10:24:42 syscalls: 2214
2025/09/01 10:24:42 code coverage: enabled
2025/09/01 10:24:42 comparison tracing: enabled
2025/09/01 10:24:42 extra coverage: enabled
2025/09/01 10:24:42 setuid sandbox: enabled
2025/09/01 10:24:42 namespace sandbox: enabled
2025/09/01 10:24:42 Android sandbox: enabled
2025/09/01 10:24:42 fault injection: enabled
2025/09/01 10:24:42 leak checking: enabled
2025/09/01 10:24:42 net packet injection: enabled
2025/09/01 10:24:42 net device setup: enabled
2025/09/01 10:24:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 10:24:42 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 10:24:42 USB emulation: enabled
2025/09/01 10:24:42 hci packet injection: enabled
2025/09/01 10:24:42 wifi device emulation: enabled
2025/09/01 10:24:42 802.15.4 emulation: enabled
2025/09/01 10:24:42 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 10:24:42 fetching corpus: 50, signal 27200/30584 (executing program)
2025/09/01 10:24:43 fetching corpus: 100, signal 37083/41806 (executing program)
2025/09/01 10:24:43 fetching corpus: 150, signal 45098/51038 (executing program)
2025/09/01 10:24:43 fetching corpus: 200, signal 55661/62467 (executing program)
2025/09/01 10:24:43 fetching corpus: 250, signal 63368/71000 (executing program)
2025/09/01 10:24:43 fetching corpus: 300, signal 66606/75255 (executing program)
2025/09/01 10:24:43 fetching corpus: 350, signal 69726/79310 (executing program)
2025/09/01 10:24:43 fetching corpus: 400, signal 73287/83734 (executing program)
2025/09/01 10:24:43 fetching corpus: 450, signal 75287/86640 (executing program)
2025/09/01 10:24:43 fetching corpus: 500, signal 78119/90242 (executing program)
2025/09/01 10:24:43 fetching corpus: 550, signal 80974/93817 (executing program)
2025/09/01 10:24:44 fetching corpus: 600, signal 83026/96642 (executing program)
2025/09/01 10:24:44 fetching corpus: 650, signal 85918/100099 (executing program)
2025/09/01 10:24:44 fetching corpus: 700, signal 87696/102577 (executing program)
2025/09/01 10:24:44 fetching corpus: 750, signal 89334/104912 (executing program)
2025/09/01 10:24:44 fetching corpus: 800, signal 91941/108006 (executing program)
2025/09/01 10:24:44 fetching corpus: 850, signal 94056/110644 (executing program)
2025/09/01 10:24:44 fetching corpus: 900, signal 95852/113052 (executing program)
2025/09/01 10:24:44 fetching corpus: 950, signal 97801/115451 (executing program)
2025/09/01 10:24:44 fetching corpus: 1000, signal 99668/117697 (executing program)
2025/09/01 10:24:45 fetching corpus: 1050, signal 101067/119612 (executing program)
2025/09/01 10:24:45 fetching corpus: 1100, signal 102567/121588 (executing program)
2025/09/01 10:24:45 fetching corpus: 1150, signal 103972/123356 (executing program)
2025/09/01 10:24:45 fetching corpus: 1200, signal 104908/124823 (executing program)
2025/09/01 10:24:45 fetching corpus: 1250, signal 106555/126771 (executing program)
2025/09/01 10:24:45 fetching corpus: 1300, signal 107272/127993 (executing program)
2025/09/01 10:24:45 fetching corpus: 1350, signal 108891/129858 (executing program)
2025/09/01 10:24:45 fetching corpus: 1400, signal 110767/131861 (executing program)
2025/09/01 10:24:45 fetching corpus: 1450, signal 112027/133432 (executing program)
2025/09/01 10:24:46 fetching corpus: 1500, signal 113394/135077 (executing program)
2025/09/01 10:24:46 fetching corpus: 1550, signal 114002/136124 (executing program)
2025/09/01 10:24:46 fetching corpus: 1600, signal 115383/137701 (executing program)
2025/09/01 10:24:46 fetching corpus: 1650, signal 116368/138994 (executing program)
2025/09/01 10:24:46 fetching corpus: 1700, signal 117475/140332 (executing program)
2025/09/01 10:24:46 fetching corpus: 1750, signal 118151/141406 (executing program)
2025/09/01 10:24:46 fetching corpus: 1800, signal 119172/142633 (executing program)
2025/09/01 10:24:46 fetching corpus: 1850, signal 120436/143995 (executing program)
2025/09/01 10:24:46 fetching corpus: 1900, signal 121644/145292 (executing program)
2025/09/01 10:24:46 fetching corpus: 1950, signal 122533/146392 (executing program)
2025/09/01 10:24:46 fetching corpus: 2000, signal 123250/147368 (executing program)
2025/09/01 10:24:47 fetching corpus: 2050, signal 124605/148705 (executing program)
2025/09/01 10:24:47 fetching corpus: 2100, signal 126003/150002 (executing program)
2025/09/01 10:24:47 fetching corpus: 2150, signal 126663/150911 (executing program)
2025/09/01 10:24:47 fetching corpus: 2200, signal 127546/151884 (executing program)
2025/09/01 10:24:47 fetching corpus: 2250, signal 128295/152773 (executing program)
2025/09/01 10:24:47 fetching corpus: 2300, signal 129671/153950 (executing program)
2025/09/01 10:24:47 fetching corpus: 2350, signal 130582/154891 (executing program)
2025/09/01 10:24:47 fetching corpus: 2400, signal 131926/156001 (executing program)
2025/09/01 10:24:47 fetching corpus: 2450, signal 132564/156845 (executing program)
2025/09/01 10:24:47 fetching corpus: 2500, signal 133231/157665 (executing program)
2025/09/01 10:24:48 fetching corpus: 2550, signal 134099/158488 (executing program)
2025/09/01 10:24:48 fetching corpus: 2600, signal 134838/159250 (executing program)
2025/09/01 10:24:48 fetching corpus: 2650, signal 135725/160004 (executing program)
2025/09/01 10:24:48 fetching corpus: 2700, signal 136567/160770 (executing program)
2025/09/01 10:24:48 fetching corpus: 2750, signal 137344/161489 (executing program)
2025/09/01 10:24:48 fetching corpus: 2800, signal 137857/162069 (executing program)
2025/09/01 10:24:48 fetching corpus: 2850, signal 138645/162738 (executing program)
2025/09/01 10:24:48 fetching corpus: 2900, signal 139464/163432 (executing program)
2025/09/01 10:24:48 fetching corpus: 2950, signal 139893/163980 (executing program)
2025/09/01 10:24:48 fetching corpus: 3000, signal 140488/164543 (executing program)
2025/09/01 10:24:48 fetching corpus: 3050, signal 141139/165187 (executing program)
2025/09/01 10:24:49 fetching corpus: 3100, signal 141583/165668 (executing program)
2025/09/01 10:24:49 fetching corpus: 3150, signal 142217/166258 (executing program)
2025/09/01 10:24:49 fetching corpus: 3200, signal 142695/166741 (executing program)
2025/09/01 10:24:49 fetching corpus: 3250, signal 143481/167310 (executing program)
2025/09/01 10:24:49 fetching corpus: 3300, signal 144080/167841 (executing program)
2025/09/01 10:24:49 fetching corpus: 3350, signal 144758/168336 (executing program)
2025/09/01 10:24:49 fetching corpus: 3400, signal 145197/168794 (executing program)
2025/09/01 10:24:49 fetching corpus: 3450, signal 145633/169229 (executing program)
2025/09/01 10:24:49 fetching corpus: 3500, signal 146155/169715 (executing program)
2025/09/01 10:24:49 fetching corpus: 3550, signal 146611/170155 (executing program)
2025/09/01 10:24:49 fetching corpus: 3600, signal 147250/170628 (executing program)
2025/09/01 10:24:50 fetching corpus: 3650, signal 147838/171042 (executing program)
2025/09/01 10:24:50 fetching corpus: 3700, signal 148398/171463 (executing program)
2025/09/01 10:24:50 fetching corpus: 3750, signal 148918/171817 (executing program)
2025/09/01 10:24:50 fetching corpus: 3800, signal 149355/172175 (executing program)
2025/09/01 10:24:50 fetching corpus: 3850, signal 150514/172624 (executing program)
2025/09/01 10:24:50 fetching corpus: 3900, signal 151065/172968 (executing program)
2025/09/01 10:24:50 fetching corpus: 3950, signal 151564/173278 (executing program)
2025/09/01 10:24:50 fetching corpus: 4000, signal 152096/173646 (executing program)
2025/09/01 10:24:50 fetching corpus: 4050, signal 152795/173963 (executing program)
2025/09/01 10:24:50 fetching corpus: 4100, signal 153394/174252 (executing program)
2025/09/01 10:24:50 fetching corpus: 4150, signal 153832/174528 (executing program)
2025/09/01 10:24:51 fetching corpus: 4200, signal 154322/174777 (executing program)
2025/09/01 10:24:51 fetching corpus: 4250, signal 154701/175028 (executing program)
2025/09/01 10:24:51 fetching corpus: 4300, signal 155511/175044 (executing program)
2025/09/01 10:24:51 fetching corpus: 4350, signal 156061/175055 (executing program)
2025/09/01 10:24:51 fetching corpus: 4400, signal 156691/175105 (executing program)
2025/09/01 10:24:51 fetching corpus: 4450, signal 157339/175193 (executing program)
2025/09/01 10:24:51 fetching corpus: 4500, signal 157833/175203 (executing program)
2025/09/01 10:24:51 fetching corpus: 4550, signal 158201/175211 (executing program)
2025/09/01 10:24:51 fetching corpus: 4600, signal 158696/175230 (executing program)
2025/09/01 10:24:51 fetching corpus: 4650, signal 159208/175240 (executing program)
2025/09/01 10:24:52 fetching corpus: 4700, signal 159747/175256 (executing program)
2025/09/01 10:24:52 fetching corpus: 4750, signal 160025/175258 (executing program)
2025/09/01 10:24:52 fetching corpus: 4800, signal 160411/175274 (executing program)
2025/09/01 10:24:52 fetching corpus: 4850, signal 161349/175279 (executing program)
2025/09/01 10:24:52 fetching corpus: 4900, signal 161872/175293 (executing program)
2025/09/01 10:24:52 fetching corpus: 4950, signal 162310/175313 (executing program)
2025/09/01 10:24:52 fetching corpus: 5000, signal 163016/175313 (executing program)
2025/09/01 10:24:52 fetching corpus: 5050, signal 163443/175317 (executing program)
2025/09/01 10:24:53 fetching corpus: 5100, signal 163808/175363 (executing program)
2025/09/01 10:24:53 fetching corpus: 5150, signal 164305/175371 (executing program)
2025/09/01 10:24:53 fetching corpus: 5200, signal 164766/175372 (executing program)
2025/09/01 10:24:53 fetching corpus: 5250, signal 165066/175381 (executing program)
2025/09/01 10:24:53 fetching corpus: 5300, signal 165396/175388 (executing program)
2025/09/01 10:24:53 fetching corpus: 5350, signal 165894/175399 (executing program)
2025/09/01 10:24:53 fetching corpus: 5400, signal 166269/175409 (executing program)
2025/09/01 10:24:53 fetching corpus: 5450, signal 166635/175410 (executing program)
2025/09/01 10:24:53 fetching corpus: 5500, signal 166924/175440 (executing program)
2025/09/01 10:24:53 fetching corpus: 5550, signal 167348/175460 (executing program)
2025/09/01 10:24:53 fetching corpus: 5600, signal 167682/175480 (executing program)
2025/09/01 10:24:54 fetching corpus: 5650, signal 167924/175484 (executing program)
2025/09/01 10:24:54 fetching corpus: 5700, signal 168333/175496 (executing program)
2025/09/01 10:24:54 fetching corpus: 5750, signal 168657/175510 (executing program)
2025/09/01 10:24:54 fetching corpus: 5800, signal 169014/175510 (executing program)
2025/09/01 10:24:54 fetching corpus: 5850, signal 169462/175540 (executing program)
2025/09/01 10:24:54 fetching corpus: 5900, signal 169758/175540 (executing program)
2025/09/01 10:24:54 fetching corpus: 5950, signal 170014/175549 (executing program)
2025/09/01 10:24:54 fetching corpus: 6000, signal 170398/175558 (executing program)
2025/09/01 10:24:54 fetching corpus: 6050, signal 170584/175579 (executing program)
2025/09/01 10:24:54 fetching corpus: 6100, signal 170893/175610 (executing program)
2025/09/01 10:24:54 fetching corpus: 6150, signal 171206/175652 (executing program)
2025/09/01 10:24:55 fetching corpus: 6200, signal 171498/175658 (executing program)
2025/09/01 10:24:55 fetching corpus: 6250, signal 171732/175661 (executing program)
2025/09/01 10:24:55 fetching corpus: 6300, signal 172139/175696 (executing program)
2025/09/01 10:24:55 fetching corpus: 6350, signal 172476/175703 (executing program)
2025/09/01 10:24:55 fetching corpus: 6394, signal 172783/175705 (executing program)
2025/09/01 10:24:55 fetching corpus: 6394, signal 172783/175705 (executing program)
2025/09/01 10:24:57 starting 8 fuzzer processes
10:24:57 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={0x0, {0x2, 0x0, @private}, {0x2, 0x0, @private}, {0x2, 0x0, @broadcast}, 0x281})
10:24:57 executing program 1:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
pidfd_send_signal(r0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x80}, 0x0)
10:24:57 executing program 6:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@dev, 0x0, 0x3c}, 0x0, @in=@empty}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
10:24:57 executing program 2:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x6b3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x0)
10:24:57 executing program 3:
mknod$loop(&(0x7f0000000580)='./file0\x00', 0x6000, 0x0)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
[ 77.998875] audit: type=1400 audit(1756722297.743:7): avc: denied { execmem } for pid=274 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
10:24:57 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000740)={'syz_tun\x00', &(0x7f0000000700)=@ethtool_rxfh_indir={0x38}})
10:24:57 executing program 4:
keyctl$restrict_keyring(0x1d, 0xfffffffffffffffe, 0x0, 0x0)
10:24:57 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x34}]})
[ 79.247281] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 79.249596] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 79.254902] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 79.259195] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 79.262987] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 79.265637] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 79.267219] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 79.268858] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 79.273829] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 79.276245] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 79.277644] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 79.282411] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 79.291671] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 79.293384] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 79.297258] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 79.298705] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 79.298860] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 79.301701] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 79.304866] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 79.306149] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 79.308911] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 79.314700] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 79.315360] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 79.319429] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 79.334783] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 79.355361] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 79.362231] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 79.365616] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 79.367780] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 79.370170] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 79.375128] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 79.378311] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 79.384119] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 79.385938] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 79.393147] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 79.398718] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 79.400601] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 79.402693] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 79.410281] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 79.423381] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 81.329867] Bluetooth: hci1: command tx timeout
[ 81.393339] Bluetooth: hci3: command tx timeout
[ 81.393885] Bluetooth: hci0: command tx timeout
[ 81.394949] Bluetooth: hci2: command tx timeout
[ 81.395880] Bluetooth: hci4: command tx timeout
[ 81.456129] Bluetooth: hci7: command tx timeout
[ 81.456665] Bluetooth: hci6: command tx timeout
[ 81.457797] Bluetooth: hci5: command tx timeout
[ 83.376165] Bluetooth: hci1: command tx timeout
[ 83.440287] Bluetooth: hci4: command tx timeout
[ 83.440735] Bluetooth: hci2: command tx timeout
[ 83.441291] Bluetooth: hci0: command tx timeout
[ 83.441682] Bluetooth: hci3: command tx timeout
[ 83.504121] Bluetooth: hci5: command tx timeout
[ 83.504542] Bluetooth: hci6: command tx timeout
[ 83.504921] Bluetooth: hci7: command tx timeout
[ 85.424182] Bluetooth: hci1: command tx timeout
[ 85.488182] Bluetooth: hci3: command tx timeout
[ 85.488627] Bluetooth: hci2: command tx timeout
[ 85.489011] Bluetooth: hci4: command tx timeout
[ 85.489443] Bluetooth: hci0: command tx timeout
[ 85.552183] Bluetooth: hci7: command tx timeout
[ 85.552617] Bluetooth: hci6: command tx timeout
[ 85.553000] Bluetooth: hci5: command tx timeout
[ 87.472097] Bluetooth: hci1: command tx timeout
[ 87.536151] Bluetooth: hci3: command tx timeout
[ 87.536574] Bluetooth: hci0: command tx timeout
[ 87.536958] Bluetooth: hci4: command tx timeout
[ 87.537699] Bluetooth: hci2: command tx timeout
[ 87.600100] Bluetooth: hci7: command tx timeout
[ 87.600515] Bluetooth: hci5: command tx timeout
[ 87.600896] Bluetooth: hci6: command tx timeout
[ 117.211798] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.212487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.412332] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.412925] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:25:37 executing program 3:
mknod$loop(&(0x7f0000000580)='./file0\x00', 0x6000, 0x0)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
[ 117.855592] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.856186] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.977114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.977717] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:25:37 executing program 3:
mknod$loop(&(0x7f0000000580)='./file0\x00', 0x6000, 0x0)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
10:25:37 executing program 3:
mknod$loop(&(0x7f0000000580)='./file0\x00', 0x6000, 0x0)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
[ 118.195364] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.195984] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:25:38 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000006c0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x24}}, 0x0)
[ 118.340265] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.340827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:25:38 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000006c0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x24}}, 0x0)
10:25:38 executing program 6:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@dev, 0x0, 0x3c}, 0x0, @in=@empty}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
10:25:38 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000006c0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x24}}, 0x0)
10:25:38 executing program 6:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@dev, 0x0, 0x3c}, 0x0, @in=@empty}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
[ 118.707416] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.708123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 118.794578] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.795295] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.553585] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.555075] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.656458] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.657182] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.021580] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.022249] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.080375] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.081000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.577951] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.579109] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.616453] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.617276] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.864519] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.865160] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.883732] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.884333] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.968957] audit: type=1400 audit(1756722340.713:8): avc: denied { open } for pid=3912 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 120.971586] audit: type=1400 audit(1756722340.713:9): avc: denied { kernel } for pid=3912 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 120.978740] audit: type=1400 audit(1756722340.723:10): avc: denied { write } for pid=3912 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
10:25:40 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={0x0, {0x2, 0x0, @private}, {0x2, 0x0, @private}, {0x2, 0x0, @broadcast}, 0x281})
10:25:40 executing program 6:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@dev, 0x0, 0x3c}, 0x0, @in=@empty}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
10:25:40 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000006c0), r1)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x24}}, 0x0)
10:25:40 executing program 1:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
pidfd_send_signal(r0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x80}, 0x0)
10:25:40 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x34}]})
10:25:40 executing program 2:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x6b3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x0)
10:25:40 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000740)={'syz_tun\x00', &(0x7f0000000700)=@ethtool_rxfh_indir={0x38}})
10:25:40 executing program 4:
keyctl$restrict_keyring(0x1d, 0xfffffffffffffffe, 0x0, 0x0)
10:25:40 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={0x0, {0x2, 0x0, @private}, {0x2, 0x0, @private}, {0x2, 0x0, @broadcast}, 0x281})
10:25:40 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_readv(r0, &(0x7f0000000700)=[{&(0x7f0000000000)=""/246, 0xf6}, {0x0}, {&(0x7f0000000140)=""/201, 0xc9}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0)
10:25:40 executing program 3:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040))
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
10:25:40 executing program 4:
keyctl$restrict_keyring(0x1d, 0xfffffffffffffffe, 0x0, 0x0)
10:25:40 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000740)={'syz_tun\x00', &(0x7f0000000700)=@ethtool_rxfh_indir={0x38}})
10:25:40 executing program 1:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
pidfd_send_signal(r0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x80}, 0x0)
10:25:40 executing program 2:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x6b3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x0)
10:25:40 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x34}]})
10:25:41 executing program 4:
keyctl$restrict_keyring(0x1d, 0xfffffffffffffffe, 0x0, 0x0)
10:25:41 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={0x0, {0x2, 0x0, @private}, {0x2, 0x0, @private}, {0x2, 0x0, @broadcast}, 0x281})
10:25:41 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000740)={'syz_tun\x00', &(0x7f0000000700)=@ethtool_rxfh_indir={0x38}})
10:25:41 executing program 1:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
pidfd_send_signal(r0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x80}, 0x0)
10:25:41 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x34}]})
10:25:41 executing program 3:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040))
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
10:25:41 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_readv(r0, &(0x7f0000000700)=[{&(0x7f0000000000)=""/246, 0xf6}, {0x0}, {&(0x7f0000000140)=""/201, 0xc9}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0)
10:25:41 executing program 7:
getgroups(0x3ffffffffffffe5e, &(0x7f0000000080)=[0x0, 0x0, 0xee00, 0x0, 0x0, 0x0, 0x0, 0x0])
10:25:41 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$iso9660(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x0)
10:25:41 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_readv(r0, &(0x7f0000000700)=[{&(0x7f0000000000)=""/246, 0xf6}, {0x0}, {&(0x7f0000000140)=""/201, 0xc9}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0)
10:25:41 executing program 3:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040))
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
10:25:41 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp6\x00')
pread64(r1, &(0x7f0000000040)=""/156, 0x9c, 0x6000000)
10:25:41 executing program 2:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x6b3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x0)
10:25:41 executing program 5:
inotify_init()
r0 = syz_open_procfs(0x0, &(0x7f0000000980)='fdinfo/3\x00')
pread64(r0, &(0x7f0000000040)=""/156, 0x9c, 0x0)
10:25:41 executing program 4:
sched_yield()
[ 121.476857] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[ 121.477718] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 121.478405] CPU: 1 UID: 0 PID: 3975 Comm: syz-executor.2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 121.480184] Tainted: [W]=WARN
[ 121.480980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 121.482684] RIP: 0010:perf_tp_event+0x175/0xe70
[ 121.484087] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 121.487831] RSP: 0018:ffff888018c2f780 EFLAGS: 00010012
[ 121.488266] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc9000088e000
[ 121.488845] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 121.489424] RBP: ffff888018c2f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15170
[ 121.490002] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 121.490577] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 121.491183] FS: 00007f61402f6700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 121.491833] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 121.492310] CR2: 00007f6142e94018 CR3: 000000000980a000 CR4: 0000000000350ef0
[ 121.492887] Call Trace:
[ 121.493101]
[ 121.493289] ? __pfx_perf_tp_event+0x10/0x10
[ 121.493659] ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150
[ 121.494166] ? lock_acquire+0x15e/0x2f0
[ 121.494496] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10
[ 121.495024] ? lock_is_held_type+0x9e/0x120
[ 121.495386] ? lock_is_held_type+0x9e/0x120
[ 121.495745] ? ctx_sched_in+0x134/0x9b0
[ 121.496073] ? __pfx_ctx_sched_in+0x10/0x10
[ 121.496422] ? arch_stack_walk+0x9c/0xf0
[ 121.496760] ? find_held_lock+0x2b/0x80
[ 121.497097] ? perf_trace_run_bpf_submit+0xef/0x180
[ 121.497513] ? lock_release+0xc8/0x290
[ 121.497836] perf_trace_run_bpf_submit+0xef/0x180
[ 121.498240] perf_trace_preemptirq_template+0x259/0x430
[ 121.498680] ? mark_held_locks+0x49/0x80
[ 121.499016] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 121.499492] ? _raw_spin_lock_irqsave+0x53/0x60
[ 121.499876] trace_irq_disable.constprop.0+0xa6/0x100
[ 121.500296] _raw_spin_lock_irqsave+0x53/0x60
[ 121.500670] try_to_wake_up+0xa0/0x11d0
[ 121.501002] ? __pfx_try_to_wake_up+0x10/0x10
[ 121.501378] ? plist_del+0x122/0x270
[ 121.501690] ? find_held_lock+0x2b/0x80
[ 121.502032] ? futex_wake+0x474/0x540
[ 121.502352] wake_up_q+0xa1/0x130
[ 121.502646] futex_wake+0x47e/0x540
[ 121.502958] ? __pfx_futex_wake+0x10/0x10
[ 121.503304] ? __do_sys_perf_event_open+0x44d/0x2c20
[ 121.503722] ? lock_release+0xc8/0x290
[ 121.504044] do_futex+0x26d/0x370
[ 121.504337] ? __pfx_do_futex+0x10/0x10
[ 121.504665] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 121.505107] ? find_held_lock+0x2b/0x80
[ 121.505440] __x64_sys_futex+0x1c9/0x4d0
[ 121.505774] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 121.506244] ? __pfx___x64_sys_futex+0x10/0x10
[ 121.506623] do_syscall_64+0xbf/0x360
[ 121.506946] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 121.507365] RIP: 0033:0x7f6142d80b19
[ 121.507667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 121.509121] RSP: 002b:00007f61402f6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 121.509733] RAX: ffffffffffffffda RBX: 00007f6142e93f68 RCX: 00007f6142d80b19
[ 121.510314] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6142e93f6c
[ 121.510900] RBP: 00007f6142e93f60 R08: 000000000000000e R09: 0000000000000000
[ 121.511478] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6142e93f6c
[ 121.512055] R13: 00007fffab1aef1f R14: 00007f61402f6300 R15: 0000000000022000
[ 121.512640]
[ 121.512833] Modules linked in:
[ 121.513099] ---[ end trace 0000000000000000 ]---
[ 121.513480] RIP: 0010:perf_tp_event+0x175/0xe70
[ 121.513866] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 121.515328] RSP: 0018:ffff888018c2f780 EFLAGS: 00010012
[ 121.515761] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc9000088e000
[ 121.516338] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 121.516913] RBP: ffff888018c2f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15170
[ 121.517485] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 121.518064] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 121.518638] FS: 00007f61402f6700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 121.519276] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 121.519736] CR2: 00007f6142e94018 CR3: 000000000980a000 CR4: 0000000000350ef0
[ 121.520297] note: syz-executor.2[3975] exited with irqs disabled
[ 121.520828] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[ 121.521708] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 121.522388] CPU: 1 UID: 0 PID: 3975 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 121.523328] Tainted: [D]=DIE, [W]=WARN
[ 121.523634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 121.524275] RIP: 0010:perf_tp_event+0x175/0xe70
[ 121.524653] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 121.526074] RSP: 0018:ffff88806cf08b40 EFLAGS: 00010012
[ 121.526492] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 121.527062] RDX: ffff88804586d280 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 121.527621] RBP: ffff88806cf08db0 R08: ffff88806cf313e8 R09: ffffe8ffffd15170
[ 121.528181] R10: 0000000000000000 R11: ffff88801766b498 R12: dffffc0000000000
[ 121.528738] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 121.529298] FS: 00007f61402f6700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 121.529931] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 121.530389] CR2: 00007f6142e94018 CR3: 000000000980a000 CR4: 0000000000350ef0
[ 121.530954] Call Trace:
[ 121.531166]
[ 121.531345] ? __pfx_perf_tp_event+0x10/0x10
[ 121.531701] ? update_load_avg+0x17d/0x1ef0
[ 121.532045] ? update_cfs_group+0x11d/0x260
[ 121.532392] ? kvm_sched_clock_read+0x16/0x30
[ 121.532758] ? enqueue_task_fair+0xded/0x1e00
[ 121.533123] ? check_preempt_wakeup_fair+0x6e/0x950
[ 121.533521] ? wakeup_preempt+0x140/0x2a0
[ 121.533853] ? lock_release+0x1c7/0x290
[ 121.534174] ? lock_release+0x1c7/0x290
[ 121.534495] ? do_raw_spin_unlock+0x53/0x220
[ 121.534860] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 121.535270] ? try_to_wake_up+0x8ae/0x11d0
[ 121.535613] ? perf_trace_run_bpf_submit+0xef/0x180
[ 121.536013] ? lock_release+0x1c7/0x290
[ 121.536340] perf_trace_run_bpf_submit+0xef/0x180
[ 121.536731] perf_trace_preemptirq_template+0x259/0x430
[ 121.537152] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 121.537615] ? read_tsc+0x9/0x20
[ 121.537894] ? ktime_get+0x16d/0x270
[ 121.538200] ? __pfx_lapic_next_deadline+0x10/0x10
[ 121.538598] ? clockevents_program_event+0x135/0x360
[ 121.539017] ? _raw_spin_lock_irq+0x42/0x50
[ 121.539363] trace_irq_disable.constprop.0+0xa6/0x100
[ 121.539775] _raw_spin_lock_irq+0x42/0x50
[ 121.540112] run_timer_softirq+0x10f/0x210
[ 121.540456] handle_softirqs+0x1b1/0x770
[ 121.540795] __irq_exit_rcu+0xc4/0x100
[ 121.541116] irq_exit_rcu+0x9/0x20
[ 121.541403] sysvec_apic_timer_interrupt+0x70/0x80
[ 121.541798]
[ 121.541982]
[ 121.542164] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 121.542583] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 121.542967] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[ 121.544386] RSP: 0018:ffff888018c2ff28 EFLAGS: 00000246
[ 121.544806] RAX: 0000000000000001 RBX: ffff88804586d280 RCX: ffffffff817c3ab6
[ 121.545368] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 121.545928] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 121.546492] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff88804586d280
[ 121.547057] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[ 121.547619] ? trace_irq_enable.constprop.0+0x26/0x100
[ 121.548036] ? make_task_dead+0x214/0x3b0
[ 121.548373] ? make_task_dead+0x214/0x3b0
[ 121.548706] ? do_syscall_64+0xbf/0x360
[ 121.549025] rewind_stack_and_make_dead+0x16/0x20
[ 121.549421] RIP: 0033:0x7f6142d80b19
[ 121.549720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 121.551153] RSP: 002b:00007f61402f6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 121.551748] RAX: ffffffffffffffda RBX: 00007f6142e93f68 RCX: 00007f6142d80b19
[ 121.552305] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6142e93f6c
[ 121.552866] RBP: 00007f6142e93f60 R08: 000000000000000e R09: 0000000000000000
[ 121.553423] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6142e93f6c
[ 121.553982] R13: 00007fffab1aef1f R14: 00007f61402f6300 R15: 0000000000022000
[ 121.554549]
[ 121.554745] Modules linked in:
[ 121.555005] ---[ end trace 0000000000000000 ]---
[ 121.555381] RIP: 0010:perf_tp_event+0x175/0xe70
[ 121.555755] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 121.557174] RSP: 0018:ffff888018c2f780 EFLAGS: 00010012
[ 121.557592] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc9000088e000
[ 121.557765] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI
[ 121.558154] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 121.559013] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 121.559565] RBP: ffff888018c2f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15170
[ 121.560121] CPU: 0 UID: 0 PID: 3981 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 121.560671] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 121.561535] Tainted: [D]=DIE, [W]=WARN
[ 121.562083] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 121.562368] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 121.562929] FS: 00007f61402f6700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 121.563528] RIP: 0010:perf_tp_event+0x175/0xe70
[ 121.564148] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 121.564489] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 121.564941] CR2: 00007f6142e94018 CR3: 000000000980a000 CR4: 0000000000350ef0
[ 121.566258] RSP: 0018:ffff88804701f780 EFLAGS: 00010012
[ 121.566820] Kernel panic - not syncing: Fatal exception in interrupt
[ 122.611385] Shutting down cpus with NMI
[ 122.611907] Kernel Offset: disabled
[ 122.612194] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
10:25:41 Registers:
info registers vcpu 0
RAX=0000000080000001 RBX=ffffea0001092940 RCX=ffffffff81a2970b RDX=ffff888046f80000
RSI=00000000000000f4 RDI=0000000000000005 RBP=0000000000000001 RSP=ffff888046f8f620
R8 =0000000000000000 R9 =fffff94000212528 R10=0000000000000000 R11=ffff88804573d738
R12=ffffea0001092940 R13=0000000000000000 R14=ffff888045938780 R15=ffffea0001092970
RIP=ffffffff8173f027 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe4500000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2cf22000 CR3=0000000005a88000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00ff000000000000ff00000000000000 XMM01=00010000000000000100000000000000
XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007fb97b2fd7c800007fb97b2fd7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888018c2f070
R8 =0000000000000000 R9 =ffffed10013ab046 R10=0000000000000030 R11=0000000065646f43
R12=0000000000000030 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f61402f6700 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe4400000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6142e94018 CR3=000000000980a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f6142e677c000007f6142e677c8
XMM02=00007f6142e677e000007f6142e677c0 XMM03=00007f6142e677c800007f6142e677c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000