Warning: Permanently added '[localhost]:39312' (ECDSA) to the list of known hosts.
2025/09/01 11:06:18 fuzzer started
2025/09/01 11:06:19 dialing manager at localhost:35473
syzkaller login: [ 48.794792] cgroup: Unknown subsys name 'net'
[ 48.844268] cgroup: Unknown subsys name 'cpuset'
[ 48.870934] cgroup: Unknown subsys name 'rlimit'
2025/09/01 11:06:29 syscalls: 2214
2025/09/01 11:06:29 code coverage: enabled
2025/09/01 11:06:29 comparison tracing: enabled
2025/09/01 11:06:29 extra coverage: enabled
2025/09/01 11:06:29 setuid sandbox: enabled
2025/09/01 11:06:29 namespace sandbox: enabled
2025/09/01 11:06:29 Android sandbox: enabled
2025/09/01 11:06:29 fault injection: enabled
2025/09/01 11:06:29 leak checking: enabled
2025/09/01 11:06:29 net packet injection: enabled
2025/09/01 11:06:29 net device setup: enabled
2025/09/01 11:06:29 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 11:06:29 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 11:06:29 USB emulation: enabled
2025/09/01 11:06:29 hci packet injection: enabled
2025/09/01 11:06:29 wifi device emulation: enabled
2025/09/01 11:06:29 802.15.4 emulation: enabled
2025/09/01 11:06:29 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 11:06:29 fetching corpus: 49, signal 26848/30259 (executing program)
2025/09/01 11:06:29 fetching corpus: 99, signal 34337/39192 (executing program)
2025/09/01 11:06:29 fetching corpus: 149, signal 41128/47340 (executing program)
2025/09/01 11:06:30 fetching corpus: 199, signal 45599/53176 (executing program)
2025/09/01 11:06:30 fetching corpus: 249, signal 48751/57652 (executing program)
2025/09/01 11:06:30 fetching corpus: 299, signal 53944/63936 (executing program)
2025/09/01 11:06:30 fetching corpus: 349, signal 58665/69672 (executing program)
2025/09/01 11:06:30 fetching corpus: 399, signal 61846/73951 (executing program)
2025/09/01 11:06:30 fetching corpus: 449, signal 66751/79691 (executing program)
2025/09/01 11:06:30 fetching corpus: 499, signal 70352/84122 (executing program)
2025/09/01 11:06:30 fetching corpus: 549, signal 75611/89908 (executing program)
2025/09/01 11:06:30 fetching corpus: 599, signal 79167/94193 (executing program)
2025/09/01 11:06:31 fetching corpus: 649, signal 81005/96870 (executing program)
2025/09/01 11:06:31 fetching corpus: 699, signal 82627/99403 (executing program)
2025/09/01 11:06:31 fetching corpus: 749, signal 84727/102284 (executing program)
2025/09/01 11:06:31 fetching corpus: 799, signal 87428/105613 (executing program)
2025/09/01 11:06:31 fetching corpus: 849, signal 89516/108368 (executing program)
2025/09/01 11:06:31 fetching corpus: 899, signal 91228/110791 (executing program)
2025/09/01 11:06:31 fetching corpus: 949, signal 93439/113562 (executing program)
2025/09/01 11:06:31 fetching corpus: 999, signal 94651/115524 (executing program)
2025/09/01 11:06:31 fetching corpus: 1049, signal 98267/119245 (executing program)
2025/09/01 11:06:32 fetching corpus: 1099, signal 100383/121796 (executing program)
2025/09/01 11:06:32 fetching corpus: 1149, signal 101884/123808 (executing program)
2025/09/01 11:06:32 fetching corpus: 1199, signal 103498/125875 (executing program)
2025/09/01 11:06:32 fetching corpus: 1249, signal 105098/127928 (executing program)
2025/09/01 11:06:32 fetching corpus: 1299, signal 106704/129964 (executing program)
2025/09/01 11:06:32 fetching corpus: 1349, signal 108053/131796 (executing program)
2025/09/01 11:06:32 fetching corpus: 1399, signal 109463/133649 (executing program)
2025/09/01 11:06:32 fetching corpus: 1449, signal 110708/135297 (executing program)
2025/09/01 11:06:32 fetching corpus: 1499, signal 112179/137046 (executing program)
2025/09/01 11:06:32 fetching corpus: 1549, signal 113184/138554 (executing program)
2025/09/01 11:06:32 fetching corpus: 1599, signal 114270/140064 (executing program)
2025/09/01 11:06:33 fetching corpus: 1649, signal 115244/141494 (executing program)
2025/09/01 11:06:33 fetching corpus: 1699, signal 116698/143167 (executing program)
2025/09/01 11:06:33 fetching corpus: 1749, signal 117999/144718 (executing program)
2025/09/01 11:06:33 fetching corpus: 1799, signal 119101/146130 (executing program)
2025/09/01 11:06:33 fetching corpus: 1849, signal 120259/147539 (executing program)
2025/09/01 11:06:33 fetching corpus: 1899, signal 121142/148869 (executing program)
2025/09/01 11:06:33 fetching corpus: 1949, signal 122276/150221 (executing program)
2025/09/01 11:06:33 fetching corpus: 1999, signal 123549/151682 (executing program)
2025/09/01 11:06:33 fetching corpus: 2049, signal 124358/152773 (executing program)
2025/09/01 11:06:33 fetching corpus: 2099, signal 125699/154150 (executing program)
2025/09/01 11:06:34 fetching corpus: 2149, signal 126766/155415 (executing program)
2025/09/01 11:06:34 fetching corpus: 2199, signal 128769/157137 (executing program)
2025/09/01 11:06:34 fetching corpus: 2249, signal 129560/158168 (executing program)
2025/09/01 11:06:34 fetching corpus: 2299, signal 130034/159018 (executing program)
2025/09/01 11:06:34 fetching corpus: 2349, signal 130914/160043 (executing program)
2025/09/01 11:06:34 fetching corpus: 2399, signal 131517/160941 (executing program)
2025/09/01 11:06:34 fetching corpus: 2449, signal 132413/161979 (executing program)
2025/09/01 11:06:34 fetching corpus: 2499, signal 133394/163033 (executing program)
2025/09/01 11:06:34 fetching corpus: 2549, signal 134034/163909 (executing program)
2025/09/01 11:06:34 fetching corpus: 2599, signal 134644/164714 (executing program)
2025/09/01 11:06:34 fetching corpus: 2649, signal 135605/165777 (executing program)
2025/09/01 11:06:35 fetching corpus: 2699, signal 136281/166634 (executing program)
2025/09/01 11:06:35 fetching corpus: 2749, signal 137247/167555 (executing program)
2025/09/01 11:06:35 fetching corpus: 2799, signal 137611/168258 (executing program)
2025/09/01 11:06:35 fetching corpus: 2849, signal 138000/168970 (executing program)
2025/09/01 11:06:35 fetching corpus: 2899, signal 138545/169724 (executing program)
2025/09/01 11:06:35 fetching corpus: 2949, signal 139287/170530 (executing program)
2025/09/01 11:06:35 fetching corpus: 2999, signal 139799/171191 (executing program)
2025/09/01 11:06:35 fetching corpus: 3049, signal 140592/171963 (executing program)
2025/09/01 11:06:35 fetching corpus: 3099, signal 141105/172645 (executing program)
2025/09/01 11:06:35 fetching corpus: 3149, signal 141535/173284 (executing program)
2025/09/01 11:06:35 fetching corpus: 3199, signal 142434/174028 (executing program)
2025/09/01 11:06:35 fetching corpus: 3249, signal 143088/174718 (executing program)
2025/09/01 11:06:36 fetching corpus: 3299, signal 143524/175282 (executing program)
2025/09/01 11:06:36 fetching corpus: 3349, signal 144558/176062 (executing program)
2025/09/01 11:06:36 fetching corpus: 3399, signal 145267/176716 (executing program)
2025/09/01 11:06:36 fetching corpus: 3449, signal 145975/177351 (executing program)
2025/09/01 11:06:36 fetching corpus: 3499, signal 146590/177940 (executing program)
2025/09/01 11:06:36 fetching corpus: 3549, signal 147230/178582 (executing program)
2025/09/01 11:06:36 fetching corpus: 3599, signal 147925/179166 (executing program)
2025/09/01 11:06:36 fetching corpus: 3649, signal 148422/179645 (executing program)
2025/09/01 11:06:36 fetching corpus: 3699, signal 149090/180211 (executing program)
2025/09/01 11:06:36 fetching corpus: 3749, signal 149644/180733 (executing program)
2025/09/01 11:06:37 fetching corpus: 3799, signal 150212/181264 (executing program)
2025/09/01 11:06:37 fetching corpus: 3849, signal 150798/181797 (executing program)
2025/09/01 11:06:37 fetching corpus: 3899, signal 151517/182323 (executing program)
2025/09/01 11:06:37 fetching corpus: 3949, signal 152239/182797 (executing program)
2025/09/01 11:06:37 fetching corpus: 3999, signal 152914/183291 (executing program)
2025/09/01 11:06:37 fetching corpus: 4049, signal 153385/183744 (executing program)
2025/09/01 11:06:37 fetching corpus: 4099, signal 153791/184150 (executing program)
2025/09/01 11:06:37 fetching corpus: 4149, signal 154399/184601 (executing program)
2025/09/01 11:06:37 fetching corpus: 4199, signal 155042/185004 (executing program)
2025/09/01 11:06:37 fetching corpus: 4249, signal 155567/185508 (executing program)
2025/09/01 11:06:37 fetching corpus: 4299, signal 156264/185938 (executing program)
2025/09/01 11:06:37 fetching corpus: 4349, signal 156709/186301 (executing program)
2025/09/01 11:06:37 fetching corpus: 4399, signal 157525/186684 (executing program)
2025/09/01 11:06:38 fetching corpus: 4449, signal 158067/187010 (executing program)
2025/09/01 11:06:38 fetching corpus: 4499, signal 158452/187369 (executing program)
2025/09/01 11:06:38 fetching corpus: 4549, signal 159027/187734 (executing program)
2025/09/01 11:06:38 fetching corpus: 4599, signal 159413/187918 (executing program)
2025/09/01 11:06:38 fetching corpus: 4649, signal 159791/187929 (executing program)
2025/09/01 11:06:38 fetching corpus: 4699, signal 160159/187935 (executing program)
2025/09/01 11:06:38 fetching corpus: 4749, signal 160713/187944 (executing program)
2025/09/01 11:06:38 fetching corpus: 4799, signal 161051/187951 (executing program)
2025/09/01 11:06:38 fetching corpus: 4849, signal 161382/187963 (executing program)
2025/09/01 11:06:38 fetching corpus: 4899, signal 161748/187963 (executing program)
2025/09/01 11:06:38 fetching corpus: 4949, signal 162447/187965 (executing program)
2025/09/01 11:06:38 fetching corpus: 4999, signal 163084/188002 (executing program)
2025/09/01 11:06:39 fetching corpus: 5049, signal 163521/188019 (executing program)
2025/09/01 11:06:39 fetching corpus: 5099, signal 164075/188020 (executing program)
2025/09/01 11:06:39 fetching corpus: 5149, signal 164462/188052 (executing program)
2025/09/01 11:06:39 fetching corpus: 5199, signal 164817/188083 (executing program)
2025/09/01 11:06:39 fetching corpus: 5249, signal 165369/188109 (executing program)
2025/09/01 11:06:39 fetching corpus: 5299, signal 165681/188112 (executing program)
2025/09/01 11:06:39 fetching corpus: 5349, signal 166050/188117 (executing program)
2025/09/01 11:06:39 fetching corpus: 5399, signal 166571/188126 (executing program)
2025/09/01 11:06:39 fetching corpus: 5449, signal 166999/188144 (executing program)
2025/09/01 11:06:39 fetching corpus: 5499, signal 167371/188171 (executing program)
2025/09/01 11:06:40 fetching corpus: 5549, signal 167863/188192 (executing program)
2025/09/01 11:06:40 fetching corpus: 5599, signal 168201/188211 (executing program)
2025/09/01 11:06:40 fetching corpus: 5649, signal 168732/188281 (executing program)
2025/09/01 11:06:40 fetching corpus: 5699, signal 169111/188281 (executing program)
2025/09/01 11:06:40 fetching corpus: 5749, signal 169490/188290 (executing program)
2025/09/01 11:06:40 fetching corpus: 5799, signal 169827/188307 (executing program)
2025/09/01 11:06:40 fetching corpus: 5849, signal 170099/188313 (executing program)
2025/09/01 11:06:40 fetching corpus: 5899, signal 170376/188320 (executing program)
2025/09/01 11:06:40 fetching corpus: 5949, signal 170883/188326 (executing program)
2025/09/01 11:06:40 fetching corpus: 5999, signal 171241/188340 (executing program)
2025/09/01 11:06:40 fetching corpus: 6049, signal 171560/188340 (executing program)
2025/09/01 11:06:41 fetching corpus: 6099, signal 172045/188362 (executing program)
2025/09/01 11:06:41 fetching corpus: 6149, signal 172302/188368 (executing program)
2025/09/01 11:06:41 fetching corpus: 6199, signal 172666/188370 (executing program)
2025/09/01 11:06:41 fetching corpus: 6249, signal 172972/188371 (executing program)
2025/09/01 11:06:41 fetching corpus: 6299, signal 173203/188372 (executing program)
2025/09/01 11:06:41 fetching corpus: 6349, signal 173451/188373 (executing program)
2025/09/01 11:06:41 fetching corpus: 6399, signal 174093/188376 (executing program)
2025/09/01 11:06:41 fetching corpus: 6449, signal 174431/188387 (executing program)
2025/09/01 11:06:41 fetching corpus: 6499, signal 175104/188421 (executing program)
2025/09/01 11:06:41 fetching corpus: 6549, signal 175445/188448 (executing program)
2025/09/01 11:06:41 fetching corpus: 6599, signal 175848/188477 (executing program)
2025/09/01 11:06:41 fetching corpus: 6649, signal 176195/188478 (executing program)
2025/09/01 11:06:42 fetching corpus: 6699, signal 176522/188485 (executing program)
2025/09/01 11:06:42 fetching corpus: 6749, signal 176838/188489 (executing program)
2025/09/01 11:06:42 fetching corpus: 6799, signal 177123/188505 (executing program)
2025/09/01 11:06:42 fetching corpus: 6849, signal 177440/188511 (executing program)
2025/09/01 11:06:42 fetching corpus: 6899, signal 177741/188512 (executing program)
2025/09/01 11:06:42 fetching corpus: 6949, signal 178138/188540 (executing program)
2025/09/01 11:06:42 fetching corpus: 6999, signal 178529/188610 (executing program)
2025/09/01 11:06:42 fetching corpus: 7049, signal 178868/188610 (executing program)
2025/09/01 11:06:42 fetching corpus: 7099, signal 179617/188638 (executing program)
2025/09/01 11:06:42 fetching corpus: 7149, signal 179922/188644 (executing program)
2025/09/01 11:06:43 fetching corpus: 7199, signal 180266/188662 (executing program)
2025/09/01 11:06:43 fetching corpus: 7249, signal 180810/188689 (executing program)
2025/09/01 11:06:43 fetching corpus: 7299, signal 181136/188695 (executing program)
2025/09/01 11:06:43 fetching corpus: 7349, signal 181417/188707 (executing program)
2025/09/01 11:06:43 fetching corpus: 7399, signal 181724/188708 (executing program)
2025/09/01 11:06:43 fetching corpus: 7449, signal 182099/188763 (executing program)
2025/09/01 11:06:43 fetching corpus: 7499, signal 182596/188848 (executing program)
2025/09/01 11:06:43 fetching corpus: 7549, signal 183019/188849 (executing program)
2025/09/01 11:06:43 fetching corpus: 7599, signal 183224/188856 (executing program)
2025/09/01 11:06:43 fetching corpus: 7649, signal 183487/188864 (executing program)
2025/09/01 11:06:43 fetching corpus: 7699, signal 183755/188867 (executing program)
2025/09/01 11:06:44 fetching corpus: 7749, signal 184071/188870 (executing program)
2025/09/01 11:06:44 fetching corpus: 7799, signal 184297/188878 (executing program)
2025/09/01 11:06:44 fetching corpus: 7849, signal 184620/188883 (executing program)
2025/09/01 11:06:44 fetching corpus: 7899, signal 184829/188896 (executing program)
2025/09/01 11:06:44 fetching corpus: 7949, signal 185070/188899 (executing program)
2025/09/01 11:06:44 fetching corpus: 7999, signal 185354/188907 (executing program)
2025/09/01 11:06:44 fetching corpus: 8049, signal 185561/188911 (executing program)
2025/09/01 11:06:44 fetching corpus: 8099, signal 185721/188915 (executing program)
2025/09/01 11:06:44 fetching corpus: 8149, signal 185993/188924 (executing program)
2025/09/01 11:06:44 fetching corpus: 8199, signal 186306/188940 (executing program)
2025/09/01 11:06:44 fetching corpus: 8234, signal 186439/188956 (executing program)
2025/09/01 11:06:44 fetching corpus: 8234, signal 186439/188956 (executing program)
2025/09/01 11:06:46 starting 8 fuzzer processes
11:06:46 executing program 0:
recvmsg$unix(0xffffffffffffffff, 0x0, 0xa3c63227b182a9c9)
11:06:46 executing program 6:
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
11:06:46 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)={0x2c, r1, 0x1, 0x0, 0x0, {0x8}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)
11:06:46 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='mnt', 0x0, 0x0)
fadvise64(r0, 0x0, 0x0, 0x3)
[ 75.866000] audit: type=1400 audit(1756724806.677:7): avc: denied { execmem } for pid=272 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:06:46 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCFLSH(r0, 0x4b63, 0x0)
11:06:46 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0x0, 0x0, 0x0)
11:06:46 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000140), 0x14)
11:06:46 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x48, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x2b, 0xe, {@wo_ht={{0x0, 0x3}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @val={0x2a, 0x1}, @void, @void, @void, @void, @void}}]]}, 0x48}}, 0x0)
[ 77.057776] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 77.063816] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 77.065269] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 77.068249] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 77.074836] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 77.076788] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 77.079018] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 77.084182] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 77.086463] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 77.089098] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 77.091973] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 77.103400] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 77.109893] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 77.115384] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 77.118575] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 77.131887] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 77.138457] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 77.140461] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 77.145279] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 77.149542] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 77.188306] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 77.190946] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 77.193223] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 77.195195] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 77.196911] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 77.208956] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 77.210335] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 77.228247] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 77.230136] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 77.249318] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 77.254033] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 77.266403] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 77.268479] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 77.275930] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 77.279289] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 77.286197] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 77.297936] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 77.307404] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 77.323096] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 77.337954] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 79.146459] Bluetooth: hci2: command tx timeout
[ 79.146468] Bluetooth: hci0: command tx timeout
[ 79.210994] Bluetooth: hci3: command tx timeout
[ 79.211170] Bluetooth: hci1: command tx timeout
[ 79.273899] Bluetooth: hci4: command tx timeout
[ 79.337894] Bluetooth: hci6: command tx timeout
[ 79.337953] Bluetooth: hci5: command tx timeout
[ 79.402950] Bluetooth: hci7: command tx timeout
[ 81.193706] Bluetooth: hci0: command tx timeout
[ 81.195135] Bluetooth: hci2: command tx timeout
[ 81.258278] Bluetooth: hci1: command tx timeout
[ 81.258822] Bluetooth: hci3: command tx timeout
[ 81.321751] Bluetooth: hci4: command tx timeout
[ 81.385692] Bluetooth: hci6: command tx timeout
[ 81.386697] Bluetooth: hci5: command tx timeout
[ 81.449823] Bluetooth: hci7: command tx timeout
[ 83.242882] Bluetooth: hci2: command tx timeout
[ 83.243396] Bluetooth: hci0: command tx timeout
[ 83.305720] Bluetooth: hci3: command tx timeout
[ 83.306201] Bluetooth: hci1: command tx timeout
[ 83.370307] Bluetooth: hci4: command tx timeout
[ 83.434696] Bluetooth: hci5: command tx timeout
[ 83.435179] Bluetooth: hci6: command tx timeout
[ 83.498848] Bluetooth: hci7: command tx timeout
[ 85.289742] Bluetooth: hci0: command tx timeout
[ 85.290259] Bluetooth: hci2: command tx timeout
[ 85.353917] Bluetooth: hci3: command tx timeout
[ 85.354395] Bluetooth: hci1: command tx timeout
[ 85.418655] Bluetooth: hci4: command tx timeout
[ 85.481786] Bluetooth: hci6: command tx timeout
[ 85.482258] Bluetooth: hci5: command tx timeout
[ 85.545737] Bluetooth: hci7: command tx timeout
[ 118.662553] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.663264] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 118.806671] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.807307] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.001573] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.002461] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.055178] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.056043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.156475] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.157108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.286131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.286875] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.385662] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.386359] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.415445] audit: type=1400 audit(1756724850.225:8): avc: denied { open } for pid=3850 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 119.420259] audit: type=1400 audit(1756724850.225:9): avc: denied { kernel } for pid=3850 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 119.435891] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.436532] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.514531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.515823] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:07:30 executing program 5:
r0 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x6, 0x0, 0x0, 0x0)
11:07:30 executing program 3:
clone3(&(0x7f0000000080)={0x200000680, 0x0, 0x0, 0x0, {}, 0x0, 0x14, 0x0, 0x0}, 0x42)
[ 119.570791] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.571447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:07:30 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x5, 0x0, 0x7}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
11:07:30 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/igmp\x00')
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0xfcb, 0x0)
[ 119.650797] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.651446] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:07:30 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x5, 0x0, 0x7}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
11:07:30 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/igmp\x00')
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0xfcb, 0x0)
11:07:30 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x5, 0x0, 0x7}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
[ 119.759053] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.759834] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:07:30 executing program 1:
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "7437b8", 0x14, 0x2b, 0x0, @private2, @local, {[], {{0x3c00, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
[ 119.897192] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.897859] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.957779] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.958375] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.130769] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.131389] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.154108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.154709] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:07:31 executing program 0:
recvmsg$unix(0xffffffffffffffff, 0x0, 0xa3c63227b182a9c9)
11:07:31 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x5, 0x0, 0x7}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
11:07:31 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/igmp\x00')
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0xfcb, 0x0)
11:07:31 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x8914, &(0x7f0000000c80)={'sit0\x00', 0x0})
11:07:31 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETVESABLANK(r0, 0x541c, &(0x7f0000000040)=0xd)
11:07:31 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x2a, 0x0, "6c7abb3e9a9a691096b5eb47d00faa3f87c4977f0e265c767bc4efcf846530ace2b9d3f684a50d0b1e7c136a28dfcd2b470e6904d7208e05d688f255b9df442a8090a173937522cbeb7c2948aede5252"}, 0xd8)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080), 0x4)
11:07:31 executing program 7:
socket$inet6(0xa, 0x5, 0x6)
11:07:31 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000280), &(0x7f00000002c0)=0x14)
[ 120.295931] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
11:07:31 executing program 0:
recvmsg$unix(0xffffffffffffffff, 0x0, 0xa3c63227b182a9c9)
11:07:31 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000000)={0x20, 0x10, 0x501, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x2}, @nested={0x4}]}, 0x20}], 0x1}, 0x0)
11:07:31 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000440)='net/igmp\x00')
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0xfcb, 0x0)
11:07:31 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x8914, &(0x7f0000000c80)={'sit0\x00', 0x0})
11:07:31 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x2a, 0x0, "6c7abb3e9a9a691096b5eb47d00faa3f87c4977f0e265c767bc4efcf846530ace2b9d3f684a50d0b1e7c136a28dfcd2b470e6904d7208e05d688f255b9df442a8090a173937522cbeb7c2948aede5252"}, 0xd8)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080), 0x4)
11:07:31 executing program 3:
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/keycreate\x00', 0x2, 0x0)
lseek(r0, 0x0, 0x4)
11:07:31 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x8914, &(0x7f0000000c80)={'sit0\x00', 0x0})
11:07:31 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x2a, 0x0, "6c7abb3e9a9a691096b5eb47d00faa3f87c4977f0e265c767bc4efcf846530ace2b9d3f684a50d0b1e7c136a28dfcd2b470e6904d7208e05d688f255b9df442a8090a173937522cbeb7c2948aede5252"}, 0xd8)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080), 0x4)
[ 120.547165] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[ 120.548142] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 120.548851] CPU: 1 UID: 0 PID: 3942 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 120.551414] Tainted: [W]=WARN
[ 120.552116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 120.554214] RIP: 0010:perf_tp_event+0x175/0xe70
[ 120.555178] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 120.558165] RSP: 0018:ffff888046baf800 EFLAGS: 00010212
[ 120.558598] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 120.559178] RDX: ffff888016c21b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 120.559765] RBP: ffff888046bafa70 R08: ffff88806cf31340 R09: ffffe8ffffd16938
[ 120.560338] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 120.560915] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000
[ 120.561489] FS: 00005555906d0400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 120.562137] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 120.562618] CR2: 00005555906d1c18 CR3: 000000001f1a3000 CR4: 0000000000350ef0
[ 120.563195] Call Trace:
[ 120.563420]
[ 120.563613] ? arch_scale_cpu_capacity+0x17/0xa0
[ 120.564009] ? __pfx_perf_tp_event+0x10/0x10
[ 120.564375] ? __asan_memset+0x24/0x50
[ 120.564712] ? perf_trace_lock+0xb5/0x5d0
[ 120.565058] ? kvm_sched_clock_read+0x16/0x30
[ 120.565434] ? sched_clock+0x37/0x60
[ 120.565749] ? lock_is_held_type+0x9e/0x120
[ 120.566111] ? perf_trace_run_bpf_submit+0xef/0x180
[ 120.566524] perf_trace_run_bpf_submit+0xef/0x180
[ 120.566925] perf_trace_lock+0x337/0x5d0
[ 120.567266] ? __pfx_perf_trace_lock+0x10/0x10
[ 120.567651] ? lock_acquire+0x15e/0x2f0
[ 120.567984] ? futex_ref_get+0x48/0x300
[ 120.568314] ? futex_ref_get+0x114/0x300
[ 120.568647] ? futex_hash+0x15c/0x390
[ 120.568962] lock_release+0x1ab/0x290
[ 120.569277] ? futex_hash+0x15c/0x390
[ 120.569589] futex_ref_get+0x119/0x300
[ 120.569910] ? futex_hash+0x15c/0x390
[ 120.570224] futex_hash+0x70/0x390
[ 120.570523] futex_wake+0x143/0x540
[ 120.570834] ? put_pid+0x1f/0x30
[ 120.571117] ? kernel_clone+0x204/0x7f0
[ 120.571454] ? __pfx_futex_wake+0x10/0x10
[ 120.571800] ? __pfx_kernel_clone+0x10/0x10
[ 120.572154] ? perf_trace_lock+0xb5/0x5d0
[ 120.572497] do_futex+0x26d/0x370
[ 120.572792] ? __pfx_do_futex+0x10/0x10
[ 120.573122] ? __pfx___do_sys_clone+0x10/0x10
[ 120.573497] ? find_held_lock+0x2b/0x80
[ 120.573834] __x64_sys_futex+0x1c9/0x4d0
[ 120.574167] ? __pfx___x64_sys_futex+0x10/0x10
[ 120.574553] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 120.574982] do_syscall_64+0xbf/0x360
[ 120.575301] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 120.575724] RIP: 0033:0x7f60346c2b19
[ 120.576025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 120.577453] RSP: 002b:00007ffe077b1478 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 120.578050] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f60346c2b19
[ 120.578612] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f60347d5f68
[ 120.579171] RBP: 00007f60347d5f60 R08: 00007f6031c38700 R09: 0000000000000000
[ 120.579744] R10: 00007f6031c38700 R11: 0000000000000246 R12: 00007f60347da0b8
[ 120.580299] R13: 00007ffe077b1580 R14: 00007f60347d5f60 R15: 000000000001d663
[ 120.580866]
[ 120.581055] Modules linked in:
[ 120.581340] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[ 120.582212] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 120.582891] CPU: 1 UID: 0 PID: 3942 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 120.583832] Tainted: [D]=DIE, [W]=WARN
[ 120.584134] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 120.584779] RIP: 0010:perf_tp_event+0x175/0xe70
[ 120.585158] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 120.586580] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012
[ 120.586999] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 120.587573] RDX: ffff888016c21b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 120.588135] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd16938
[ 120.588696] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[ 120.589252] R13: 0000000000000024 R14: ffff88806cf31490 R15: dffffc0000000000
[ 120.589815] FS: 00005555906d0400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 120.590445] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 120.590907] CR2: 00005555906d1c18 CR3: 000000001f1a3000 CR4: 0000000000350ef0
[ 120.591478] Call Trace:
[ 120.591686]
[ 120.591869] ? __pfx_perf_tp_event+0x10/0x10
[ 120.592224] ? sched_clock_cpu+0x6c/0x4e0
[ 120.592562] ? trace_pelt_se_tp+0xdf/0x130
[ 120.592898] ? __update_load_avg_se+0x428/0xa40
[ 120.593276] ? lock_is_held_type+0x9e/0x120
[ 120.593626] ? perf_trace_lock+0xb5/0x5d0
[ 120.593956] ? perf_trace_lock+0xb5/0x5d0
[ 120.594290] ? __pfx_perf_trace_lock+0x10/0x10
[ 120.594653] ? __pfx_perf_trace_lock+0x10/0x10
[ 120.595020] ? check_preempt_wakeup_fair+0x406/0x950
[ 120.595438] ? perf_trace_run_bpf_submit+0xef/0x180
[ 120.595840] perf_trace_run_bpf_submit+0xef/0x180
[ 120.596230] perf_trace_lock+0x337/0x5d0
[ 120.596555] ? place_entity+0x1c/0x410
[ 120.596867] ? kvm_sched_clock_read+0x16/0x30
[ 120.597230] ? __pfx_perf_trace_lock+0x10/0x10
[ 120.597599] ? check_preempt_wakeup_fair+0x6e/0x950
[ 120.597999] ? sched_ttwu_pending+0x2e0/0x4a0
[ 120.598363] lock_release+0x1ab/0x290
[ 120.598670] ? ttwu_do_activate+0x1a4/0x8a0
[ 120.599030] _raw_spin_unlock+0x16/0x40
[ 120.599367] sched_ttwu_pending+0x2e0/0x4a0
[ 120.599726] ? __pfx_sched_ttwu_pending+0x10/0x10
[ 120.600125] ? hrtimer_interrupt+0x652/0x830
[ 120.600489] __flush_smp_call_function_queue+0x434/0x740
[ 120.600935] __sysvec_call_function_single+0x6d/0x370
[ 120.601360] sysvec_call_function_single+0xa1/0xc0
[ 120.601763]
[ 120.601951]
[ 120.602138] asm_sysvec_call_function_single+0x1a/0x20
[ 120.602569] RIP: 0010:oops_exit+0x0/0x50
[ 120.602903] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57
[ 120.604374] RSP: 0018:ffff888046baf690 EFLAGS: 00000202
[ 120.604805] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f
[ 120.605380] RDX: ffff888016c21b80 RSI: ffffffff812a3dca RDI: 0000000000000007
[ 120.605952] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690
[ 120.606524] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888046baf758
[ 120.607098] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[ 120.607687] ? add_taint+0x5f/0xd0
[ 120.607988] ? oops_end+0x4a/0xe0
[ 120.608282] oops_end+0x65/0xe0
[ 120.608565] exc_general_protection+0x1a2/0x330
[ 120.608956] asm_exc_general_protection+0x26/0x30
[ 120.609348] RIP: 0010:perf_tp_event+0x175/0xe70
[ 120.609732] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 120.611193] RSP: 0018:ffff888046baf800 EFLAGS: 00010212
[ 120.611631] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 120.612204] RDX: ffff888016c21b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 120.612776] RBP: ffff888046bafa70 R08: ffff88806cf31340 R09: ffffe8ffffd16938
[ 120.613356] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 120.613929] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000
[ 120.614505] ? perf_tp_event+0x167/0xe70
[ 120.614845] ? arch_scale_cpu_capacity+0x17/0xa0
[ 120.615237] ? __pfx_perf_tp_event+0x10/0x10
[ 120.615610] ? __asan_memset+0x24/0x50
[ 120.615943] ? perf_trace_lock+0xb5/0x5d0
[ 120.616286] ? kvm_sched_clock_read+0x16/0x30
[ 120.616662] ? sched_clock+0x37/0x60
[ 120.616973] ? lock_is_held_type+0x9e/0x120
[ 120.617330] ? perf_trace_run_bpf_submit+0xef/0x180
[ 120.617738] perf_trace_run_bpf_submit+0xef/0x180
[ 120.618137] perf_trace_lock+0x337/0x5d0
[ 120.618473] ? __pfx_perf_trace_lock+0x10/0x10
[ 120.618849] ? lock_acquire+0x15e/0x2f0
[ 120.619174] ? futex_ref_get+0x48/0x300
[ 120.619505] ? futex_ref_get+0x114/0x300
[ 120.619832] ? futex_hash+0x15c/0x390
[ 120.620147] lock_release+0x1ab/0x290
[ 120.620461] ? futex_hash+0x15c/0x390
[ 120.620772] futex_ref_get+0x119/0x300
[ 120.621092] ? futex_hash+0x15c/0x390
[ 120.621404] futex_hash+0x70/0x390
[ 120.621701] futex_wake+0x143/0x540
[ 120.622004] ? put_pid+0x1f/0x30
[ 120.622284] ? kernel_clone+0x204/0x7f0
[ 120.622611] ? __pfx_futex_wake+0x10/0x10
[ 120.622953] ? __pfx_kernel_clone+0x10/0x10
[ 120.623307] ? perf_trace_lock+0xb5/0x5d0
[ 120.623663] do_futex+0x26d/0x370
[ 120.623953] ? __pfx_do_futex+0x10/0x10
[ 120.624279] ? __pfx___do_sys_clone+0x10/0x10
[ 120.624647] ? find_held_lock+0x2b/0x80
[ 120.624980] __x64_sys_futex+0x1c9/0x4d0
[ 120.625316] ? __pfx___x64_sys_futex+0x10/0x10
[ 120.625694] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 120.626123] do_syscall_64+0xbf/0x360
[ 120.626434] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 120.626851] RIP: 0033:0x7f60346c2b19
[ 120.627156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 120.628657] RSP: 002b:00007ffe077b1478 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 120.629280] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f60346c2b19
[ 120.629851] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f60347d5f68
[ 120.630437] RBP: 00007f60347d5f60 R08: 00007f6031c38700 R09: 0000000000000000
[ 120.631036] R10: 00007f6031c38700 R11: 0000000000000246 R12: 00007f60347da0b8
[ 120.631655] R13: 00007ffe077b1580 R14: 00007f60347d5f60 R15: 000000000001d663
[ 120.632253]
[ 120.632450] Modules linked in:
[ 120.632718] ---[ end trace 0000000000000000 ]---
[ 120.633104] RIP: 0010:perf_tp_event+0x175/0xe70
[ 120.633495] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 120.634981] RSP: 0018:ffff888046baf800 EFLAGS: 00010212
[ 120.635428] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 120.636024] RDX: ffff888016c21b80 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[ 120.636603] RBP: ffff888046bafa70 R08: ffff88806cf31340 R09: ffffe8ffffd16938
[ 120.637176] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 120.637756] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000
[ 120.638341] FS: 00005555906d0400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[ 120.639015] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 120.639498] CR2: 00005555906d1c18 CR3: 000000001f1a3000 CR4: 0000000000350ef0
[ 120.640083] Kernel panic - not syncing: Fatal exception in interrupt
[ 120.640803] Kernel Offset: disabled
[ 120.641100] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
11:07:31 Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=0000000000000002 RCX=ffffffff8140f6de RDX=1ffffffff0b5ff9a
RSI=ffffffff84b2b011 RDI=ffffffff85affcd0 RBP=ffffffff85affc80 RSP=ffff88806ce08c68
R8 =0000000000000000 R9 =ffffed1008b7661f R10=0000000000000002 R11=ffff88806ce37018
R12=dffffc0000000000 R13=0000000000000000 R14=ffff88806ce35e00 R15=ffff88800df01000
RIP=ffffffff84b2b035 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f17d2455700 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe3b00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f17d4ff3018 CR3=0000000013d49000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f17d4fc67c000007f17d4fc67c8
XMM02=00007f17d4fc67e000007f17d4fc67c0 XMM03=00007f17d4fc67c800007f17d4fc67c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888046baf0f0
R8 =0000000000000000 R9 =ffffed10016cd046 R10=0000000000000020 R11=0000000065646f43
R12=0000000000000020 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00005555906d0400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe5800000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00005555906d1c18 CR3=000000001f1a3000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f60347a97c000007f60347a97c8
XMM02=00007f60347a97e000007f60347a97c0 XMM03=00007f60347a97c800007f60347a97c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000