Warning: Permanently added '[localhost]:29858' (ECDSA) to the list of known hosts.
2025/09/01 11:35:25 fuzzer started
2025/09/01 11:35:26 dialing manager at localhost:35473
syzkaller login: [   51.346244] cgroup: Unknown subsys name 'net'
[   51.401802] cgroup: Unknown subsys name 'cpuset'
[   51.415779] cgroup: Unknown subsys name 'rlimit'
2025/09/01 11:35:37 syscalls: 2214
2025/09/01 11:35:37 code coverage: enabled
2025/09/01 11:35:37 comparison tracing: enabled
2025/09/01 11:35:37 extra coverage: enabled
2025/09/01 11:35:37 setuid sandbox: enabled
2025/09/01 11:35:37 namespace sandbox: enabled
2025/09/01 11:35:37 Android sandbox: enabled
2025/09/01 11:35:37 fault injection: enabled
2025/09/01 11:35:37 leak checking: enabled
2025/09/01 11:35:37 net packet injection: enabled
2025/09/01 11:35:37 net device setup: enabled
2025/09/01 11:35:37 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 11:35:37 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 11:35:37 USB emulation: enabled
2025/09/01 11:35:37 hci packet injection: enabled
2025/09/01 11:35:37 wifi device emulation: enabled
2025/09/01 11:35:37 802.15.4 emulation: enabled
2025/09/01 11:35:37 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 11:35:37 fetching corpus: 50, signal 18648/22251 (executing program)
2025/09/01 11:35:37 fetching corpus: 100, signal 34114/39086 (executing program)
2025/09/01 11:35:37 fetching corpus: 150, signal 42791/49060 (executing program)
2025/09/01 11:35:37 fetching corpus: 200, signal 50169/57633 (executing program)
2025/09/01 11:35:37 fetching corpus: 250, signal 54297/62987 (executing program)
2025/09/01 11:35:37 fetching corpus: 300, signal 59035/68831 (executing program)
2025/09/01 11:35:38 fetching corpus: 350, signal 61807/72763 (executing program)
2025/09/01 11:35:38 fetching corpus: 400, signal 64572/76642 (executing program)
2025/09/01 11:35:38 fetching corpus: 450, signal 68920/81898 (executing program)
2025/09/01 11:35:38 fetching corpus: 500, signal 72024/85918 (executing program)
2025/09/01 11:35:38 fetching corpus: 550, signal 74747/89577 (executing program)
2025/09/01 11:35:38 fetching corpus: 600, signal 76770/92610 (executing program)
2025/09/01 11:35:38 fetching corpus: 650, signal 79202/95871 (executing program)
2025/09/01 11:35:38 fetching corpus: 700, signal 81483/98938 (executing program)
2025/09/01 11:35:38 fetching corpus: 750, signal 82797/101205 (executing program)
2025/09/01 11:35:38 fetching corpus: 800, signal 85707/104770 (executing program)
2025/09/01 11:35:39 fetching corpus: 850, signal 87621/107464 (executing program)
2025/09/01 11:35:39 fetching corpus: 900, signal 90335/110763 (executing program)
2025/09/01 11:35:39 fetching corpus: 950, signal 91985/113150 (executing program)
2025/09/01 11:35:39 fetching corpus: 1000, signal 93503/115389 (executing program)
2025/09/01 11:35:39 fetching corpus: 1050, signal 96267/118593 (executing program)
2025/09/01 11:35:39 fetching corpus: 1100, signal 98008/120899 (executing program)
2025/09/01 11:35:39 fetching corpus: 1150, signal 100202/123568 (executing program)
2025/09/01 11:35:39 fetching corpus: 1200, signal 101382/125406 (executing program)
2025/09/01 11:35:39 fetching corpus: 1250, signal 102677/127274 (executing program)
2025/09/01 11:35:39 fetching corpus: 1300, signal 104164/129275 (executing program)
2025/09/01 11:35:40 fetching corpus: 1350, signal 105921/131397 (executing program)
2025/09/01 11:35:40 fetching corpus: 1400, signal 107550/133428 (executing program)
2025/09/01 11:35:40 fetching corpus: 1450, signal 108581/135001 (executing program)
2025/09/01 11:35:40 fetching corpus: 1500, signal 109982/136814 (executing program)
2025/09/01 11:35:40 fetching corpus: 1550, signal 111214/138463 (executing program)
2025/09/01 11:35:40 fetching corpus: 1600, signal 112904/140398 (executing program)
2025/09/01 11:35:40 fetching corpus: 1650, signal 113875/141857 (executing program)
2025/09/01 11:35:40 fetching corpus: 1700, signal 116232/144251 (executing program)
2025/09/01 11:35:40 fetching corpus: 1750, signal 116969/145493 (executing program)
2025/09/01 11:35:40 fetching corpus: 1800, signal 117794/146766 (executing program)
2025/09/01 11:35:40 fetching corpus: 1850, signal 119296/148460 (executing program)
2025/09/01 11:35:41 fetching corpus: 1900, signal 120549/150012 (executing program)
2025/09/01 11:35:41 fetching corpus: 1950, signal 121244/151172 (executing program)
2025/09/01 11:35:41 fetching corpus: 2000, signal 122385/152557 (executing program)
2025/09/01 11:35:41 fetching corpus: 2050, signal 123588/154002 (executing program)
2025/09/01 11:35:41 fetching corpus: 2100, signal 124409/155149 (executing program)
2025/09/01 11:35:41 fetching corpus: 2150, signal 125397/156418 (executing program)
2025/09/01 11:35:41 fetching corpus: 2200, signal 126387/157688 (executing program)
2025/09/01 11:35:41 fetching corpus: 2250, signal 127041/158747 (executing program)
2025/09/01 11:35:41 fetching corpus: 2300, signal 127955/159936 (executing program)
2025/09/01 11:35:41 fetching corpus: 2350, signal 128623/160956 (executing program)
2025/09/01 11:35:41 fetching corpus: 2400, signal 130017/162340 (executing program)
2025/09/01 11:35:42 fetching corpus: 2450, signal 130609/163279 (executing program)
2025/09/01 11:35:42 fetching corpus: 2500, signal 131451/164339 (executing program)
2025/09/01 11:35:42 fetching corpus: 2550, signal 132035/165254 (executing program)
2025/09/01 11:35:42 fetching corpus: 2600, signal 132832/166255 (executing program)
2025/09/01 11:35:42 fetching corpus: 2650, signal 133681/167260 (executing program)
2025/09/01 11:35:42 fetching corpus: 2700, signal 134365/168138 (executing program)
2025/09/01 11:35:42 fetching corpus: 2750, signal 135100/169036 (executing program)
2025/09/01 11:35:42 fetching corpus: 2800, signal 135602/169870 (executing program)
2025/09/01 11:35:42 fetching corpus: 2850, signal 136218/170754 (executing program)
2025/09/01 11:35:42 fetching corpus: 2900, signal 137033/171655 (executing program)
2025/09/01 11:35:42 fetching corpus: 2950, signal 137662/172456 (executing program)
2025/09/01 11:35:42 fetching corpus: 3000, signal 138614/173382 (executing program)
2025/09/01 11:35:43 fetching corpus: 3050, signal 139332/174197 (executing program)
2025/09/01 11:35:43 fetching corpus: 3100, signal 139913/174964 (executing program)
2025/09/01 11:35:43 fetching corpus: 3150, signal 140606/175768 (executing program)
2025/09/01 11:35:43 fetching corpus: 3200, signal 141271/176596 (executing program)
2025/09/01 11:35:43 fetching corpus: 3250, signal 142053/177474 (executing program)
2025/09/01 11:35:43 fetching corpus: 3300, signal 142431/178154 (executing program)
2025/09/01 11:35:43 fetching corpus: 3350, signal 143004/178877 (executing program)
2025/09/01 11:35:43 fetching corpus: 3400, signal 143484/179546 (executing program)
2025/09/01 11:35:43 fetching corpus: 3450, signal 143847/180158 (executing program)
2025/09/01 11:35:43 fetching corpus: 3500, signal 144296/180800 (executing program)
2025/09/01 11:35:43 fetching corpus: 3550, signal 144838/181467 (executing program)
2025/09/01 11:35:43 fetching corpus: 3600, signal 145630/182164 (executing program)
2025/09/01 11:35:43 fetching corpus: 3650, signal 146368/182819 (executing program)
2025/09/01 11:35:43 fetching corpus: 3700, signal 146936/183449 (executing program)
2025/09/01 11:35:44 fetching corpus: 3750, signal 147443/184030 (executing program)
2025/09/01 11:35:44 fetching corpus: 3800, signal 148090/184645 (executing program)
2025/09/01 11:35:44 fetching corpus: 3850, signal 148591/185206 (executing program)
2025/09/01 11:35:44 fetching corpus: 3900, signal 149186/185783 (executing program)
2025/09/01 11:35:44 fetching corpus: 3950, signal 149859/186365 (executing program)
2025/09/01 11:35:44 fetching corpus: 4000, signal 150387/186884 (executing program)
2025/09/01 11:35:44 fetching corpus: 4050, signal 150918/187404 (executing program)
2025/09/01 11:35:44 fetching corpus: 4100, signal 151419/187905 (executing program)
2025/09/01 11:35:44 fetching corpus: 4150, signal 151975/188415 (executing program)
2025/09/01 11:35:44 fetching corpus: 4200, signal 152477/188907 (executing program)
2025/09/01 11:35:45 fetching corpus: 4250, signal 152845/189359 (executing program)
2025/09/01 11:35:45 fetching corpus: 4300, signal 153870/189857 (executing program)
2025/09/01 11:35:45 fetching corpus: 4350, signal 154378/190359 (executing program)
2025/09/01 11:35:45 fetching corpus: 4400, signal 154764/190831 (executing program)
2025/09/01 11:35:45 fetching corpus: 4450, signal 155396/191269 (executing program)
2025/09/01 11:35:45 fetching corpus: 4500, signal 155852/191663 (executing program)
2025/09/01 11:35:45 fetching corpus: 4550, signal 156364/192074 (executing program)
2025/09/01 11:35:45 fetching corpus: 4600, signal 156849/192514 (executing program)
2025/09/01 11:35:45 fetching corpus: 4650, signal 157198/192920 (executing program)
2025/09/01 11:35:45 fetching corpus: 4700, signal 157617/193284 (executing program)
2025/09/01 11:35:45 fetching corpus: 4750, signal 158217/193398 (executing program)
2025/09/01 11:35:45 fetching corpus: 4800, signal 158578/193412 (executing program)
2025/09/01 11:35:45 fetching corpus: 4850, signal 158873/193428 (executing program)
2025/09/01 11:35:46 fetching corpus: 4900, signal 159264/193429 (executing program)
2025/09/01 11:35:46 fetching corpus: 4950, signal 159851/193451 (executing program)
2025/09/01 11:35:46 fetching corpus: 5000, signal 160389/193477 (executing program)
2025/09/01 11:35:46 fetching corpus: 5050, signal 161007/193484 (executing program)
2025/09/01 11:35:46 fetching corpus: 5100, signal 161362/193501 (executing program)
2025/09/01 11:35:46 fetching corpus: 5150, signal 161821/193517 (executing program)
2025/09/01 11:35:46 fetching corpus: 5200, signal 162083/193531 (executing program)
2025/09/01 11:35:46 fetching corpus: 5250, signal 162373/193534 (executing program)
2025/09/01 11:35:46 fetching corpus: 5300, signal 162750/193535 (executing program)
2025/09/01 11:35:46 fetching corpus: 5350, signal 163661/193562 (executing program)
2025/09/01 11:35:46 fetching corpus: 5400, signal 164188/193586 (executing program)
2025/09/01 11:35:46 fetching corpus: 5450, signal 164856/193599 (executing program)
2025/09/01 11:35:47 fetching corpus: 5500, signal 165638/193618 (executing program)
2025/09/01 11:35:47 fetching corpus: 5550, signal 166033/193620 (executing program)
2025/09/01 11:35:47 fetching corpus: 5600, signal 166498/193622 (executing program)
2025/09/01 11:35:47 fetching corpus: 5650, signal 166831/193622 (executing program)
2025/09/01 11:35:47 fetching corpus: 5700, signal 167078/193624 (executing program)
2025/09/01 11:35:47 fetching corpus: 5750, signal 167388/193624 (executing program)
2025/09/01 11:35:47 fetching corpus: 5800, signal 168253/193631 (executing program)
2025/09/01 11:35:47 fetching corpus: 5850, signal 168632/193638 (executing program)
2025/09/01 11:35:47 fetching corpus: 5900, signal 168905/193669 (executing program)
2025/09/01 11:35:47 fetching corpus: 5950, signal 169257/193690 (executing program)
2025/09/01 11:35:47 fetching corpus: 6000, signal 169751/193695 (executing program)
2025/09/01 11:35:48 fetching corpus: 6050, signal 170150/193695 (executing program)
2025/09/01 11:35:48 fetching corpus: 6100, signal 170484/193696 (executing program)
2025/09/01 11:35:48 fetching corpus: 6150, signal 170924/193708 (executing program)
2025/09/01 11:35:48 fetching corpus: 6200, signal 171549/193743 (executing program)
2025/09/01 11:35:48 fetching corpus: 6250, signal 171760/193744 (executing program)
2025/09/01 11:35:48 fetching corpus: 6300, signal 172380/193745 (executing program)
2025/09/01 11:35:48 fetching corpus: 6350, signal 172654/193746 (executing program)
2025/09/01 11:35:48 fetching corpus: 6400, signal 173088/193791 (executing program)
2025/09/01 11:35:48 fetching corpus: 6450, signal 173346/193797 (executing program)
2025/09/01 11:35:48 fetching corpus: 6500, signal 173749/193812 (executing program)
2025/09/01 11:35:48 fetching corpus: 6550, signal 174068/193817 (executing program)
2025/09/01 11:35:49 fetching corpus: 6600, signal 174356/193839 (executing program)
2025/09/01 11:35:49 fetching corpus: 6650, signal 174791/193840 (executing program)
2025/09/01 11:35:49 fetching corpus: 6700, signal 175090/193843 (executing program)
2025/09/01 11:35:49 fetching corpus: 6750, signal 175473/193845 (executing program)
2025/09/01 11:35:49 fetching corpus: 6800, signal 175875/193850 (executing program)
2025/09/01 11:35:49 fetching corpus: 6850, signal 176238/193855 (executing program)
2025/09/01 11:35:49 fetching corpus: 6900, signal 176678/193892 (executing program)
2025/09/01 11:35:49 fetching corpus: 6950, signal 176898/193897 (executing program)
2025/09/01 11:35:49 fetching corpus: 7000, signal 177137/193903 (executing program)
2025/09/01 11:35:49 fetching corpus: 7050, signal 177569/193907 (executing program)
2025/09/01 11:35:49 fetching corpus: 7100, signal 177929/193907 (executing program)
2025/09/01 11:35:50 fetching corpus: 7150, signal 178299/193907 (executing program)
2025/09/01 11:35:50 fetching corpus: 7200, signal 178533/193913 (executing program)
2025/09/01 11:35:50 fetching corpus: 7250, signal 178855/193915 (executing program)
2025/09/01 11:35:50 fetching corpus: 7300, signal 179136/193922 (executing program)
2025/09/01 11:35:50 fetching corpus: 7350, signal 179682/193928 (executing program)
2025/09/01 11:35:50 fetching corpus: 7400, signal 180003/193929 (executing program)
2025/09/01 11:35:50 fetching corpus: 7450, signal 180336/193930 (executing program)
2025/09/01 11:35:50 fetching corpus: 7500, signal 180630/193947 (executing program)
2025/09/01 11:35:50 fetching corpus: 7550, signal 180951/193999 (executing program)
2025/09/01 11:35:50 fetching corpus: 7600, signal 181591/194027 (executing program)
2025/09/01 11:35:50 fetching corpus: 7650, signal 181865/194033 (executing program)
2025/09/01 11:35:51 fetching corpus: 7700, signal 182225/194036 (executing program)
2025/09/01 11:35:51 fetching corpus: 7750, signal 182487/194038 (executing program)
2025/09/01 11:35:51 fetching corpus: 7800, signal 182887/194038 (executing program)
2025/09/01 11:35:51 fetching corpus: 7850, signal 183175/194053 (executing program)
2025/09/01 11:35:51 fetching corpus: 7900, signal 183491/194059 (executing program)
2025/09/01 11:35:51 fetching corpus: 7950, signal 183650/194065 (executing program)
2025/09/01 11:35:51 fetching corpus: 8000, signal 183928/194065 (executing program)
2025/09/01 11:35:51 fetching corpus: 8050, signal 184142/194077 (executing program)
2025/09/01 11:35:51 fetching corpus: 8100, signal 184419/194077 (executing program)
2025/09/01 11:35:51 fetching corpus: 8150, signal 184812/194077 (executing program)
2025/09/01 11:35:51 fetching corpus: 8200, signal 185172/194091 (executing program)
2025/09/01 11:35:51 fetching corpus: 8250, signal 185413/194091 (executing program)
2025/09/01 11:35:52 fetching corpus: 8300, signal 185633/194096 (executing program)
2025/09/01 11:35:52 fetching corpus: 8350, signal 185802/194097 (executing program)
2025/09/01 11:35:52 fetching corpus: 8400, signal 186067/194101 (executing program)
2025/09/01 11:35:52 fetching corpus: 8450, signal 187889/194103 (executing program)
2025/09/01 11:35:52 fetching corpus: 8500, signal 188248/194112 (executing program)
2025/09/01 11:35:52 fetching corpus: 8550, signal 188521/194113 (executing program)
2025/09/01 11:35:52 fetching corpus: 8600, signal 189131/194122 (executing program)
2025/09/01 11:35:52 fetching corpus: 8650, signal 189395/194127 (executing program)
2025/09/01 11:35:52 fetching corpus: 8700, signal 189583/194133 (executing program)
2025/09/01 11:35:52 fetching corpus: 8750, signal 189814/194144 (executing program)
2025/09/01 11:35:52 fetching corpus: 8800, signal 190146/194153 (executing program)
2025/09/01 11:35:53 fetching corpus: 8850, signal 190398/194169 (executing program)
2025/09/01 11:35:53 fetching corpus: 8900, signal 190701/194179 (executing program)
2025/09/01 11:35:53 fetching corpus: 8950, signal 190989/194192 (executing program)
2025/09/01 11:35:53 fetching corpus: 9000, signal 191223/194205 (executing program)
2025/09/01 11:35:53 fetching corpus: 9032, signal 191449/194235 (executing program)
2025/09/01 11:35:53 fetching corpus: 9032, signal 191449/194235 (executing program)
2025/09/01 11:35:55 starting 8 fuzzer processes
11:35:55 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000059c0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000040)='c', 0x1}], 0x1}}], 0x1, 0x0)
recvfrom$unix(r1, 0x0, 0xf0ffffff7f0000, 0x0, 0x0, 0x0)

11:35:55 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xd9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

11:35:55 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc05c5340, &(0x7f0000000240)={0x0, 0x0, 'client1\x00', 0x0, "66581913a7de0f67", "157b839b11997dee4a2d9b6c07d4e427e21cc06c0c3a857bb43358987cfa98a7"})

11:35:55 executing program 2:
socketpair(0x11, 0x3, 0xa7, &(0x7f0000000000))

11:35:55 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f00000000c0))

11:35:55 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e3, &(0x7f0000000240))

11:35:55 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000003f00)={0x24, @short}, 0x14)

[   81.098495] audit: type=1400 audit(1756726555.985:7): avc:  denied  { execmem } for  pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:35:55 executing program 5:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)

[   82.420874] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   82.423152] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   82.425592] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   82.427687] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   82.431996] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   82.435067] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   82.437588] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   82.438509] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   82.455021] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   82.456748] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   82.463723] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   82.478088] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   82.487230] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   82.489064] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   82.490674] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   82.494555] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   82.495831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   82.496573] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   82.498408] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   82.499855] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   82.502935] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   82.503725] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   82.505909] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   82.508692] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   82.509654] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   82.517036] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   82.517680] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   82.518672] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   82.521068] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   82.526067] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   82.526120] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   82.527434] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   82.529883] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   82.537608] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   82.537844] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   82.542947] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   82.551603] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   82.553859] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   82.573476] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   82.590654] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   84.505948] Bluetooth: hci0: command tx timeout
[   84.569455] Bluetooth: hci3: command tx timeout
[   84.570426] Bluetooth: hci2: command tx timeout
[   84.633399] Bluetooth: hci6: command tx timeout
[   84.634256] Bluetooth: hci7: command tx timeout
[   84.634824] Bluetooth: hci5: command tx timeout
[   84.635491] Bluetooth: hci1: command tx timeout
[   84.636052] Bluetooth: hci4: command tx timeout
[   86.554265] Bluetooth: hci0: command tx timeout
[   86.617285] Bluetooth: hci3: command tx timeout
[   86.617727] Bluetooth: hci2: command tx timeout
[   86.682411] Bluetooth: hci5: command tx timeout
[   86.682844] Bluetooth: hci4: command tx timeout
[   86.684131] Bluetooth: hci1: command tx timeout
[   86.684635] Bluetooth: hci7: command tx timeout
[   86.684731] Bluetooth: hci6: command tx timeout
[   88.601263] Bluetooth: hci0: command tx timeout
[   88.667204] Bluetooth: hci2: command tx timeout
[   88.667224] Bluetooth: hci3: command tx timeout
[   88.731200] Bluetooth: hci1: command tx timeout
[   88.731220] Bluetooth: hci6: command tx timeout
[   88.731637] Bluetooth: hci7: command tx timeout
[   88.732032] Bluetooth: hci4: command tx timeout
[   88.732432] Bluetooth: hci5: command tx timeout
[   90.649293] Bluetooth: hci0: command tx timeout
[   90.713367] Bluetooth: hci2: command tx timeout
[   90.714219] Bluetooth: hci3: command tx timeout
[   90.777219] Bluetooth: hci4: command tx timeout
[   90.777537] Bluetooth: hci5: command tx timeout
[   90.777640] Bluetooth: hci7: command tx timeout
[   90.778079] Bluetooth: hci6: command tx timeout
[   90.778670] Bluetooth: hci1: command tx timeout
[  118.293878] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.294700] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.527507] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.528193] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.949350] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.950009] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.042477] audit: type=1400 audit(1756726593.925:8): avc:  denied  { open } for  pid=3796 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  119.051915] audit: type=1400 audit(1756726593.926:9): avc:  denied  { kernel } for  pid=3796 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  119.114961] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.116085] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:36:34 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366f6259d00080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[])
statfs(&(0x7f00000005c0)='./file0\x00', 0x0)
creat(&(0x7f00000000c0)='./file0/file0\x00', 0x0)

[  119.214729] loop1: detected capacity change from 0 to 256
[  119.230673] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  119.255336] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.255894] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.276840] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
11:36:34 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366f6259d00080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[])
statfs(&(0x7f00000005c0)='./file0\x00', 0x0)
creat(&(0x7f00000000c0)='./file0/file0\x00', 0x0)

[  119.336838] loop1: detected capacity change from 0 to 256
[  119.354682] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  119.371841] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.372436] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.396685] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
11:36:34 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366f6259d00080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[])
statfs(&(0x7f00000005c0)='./file0\x00', 0x0)
creat(&(0x7f00000000c0)='./file0/file0\x00', 0x0)

[  119.424371] loop1: detected capacity change from 0 to 256
[  119.427213] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  119.447604] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
11:36:34 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366f6259d00080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[])
statfs(&(0x7f00000005c0)='./file0\x00', 0x0)
creat(&(0x7f00000000c0)='./file0/file0\x00', 0x0)

[  119.497990] loop1: detected capacity change from 0 to 256
[  119.507101] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  119.542336] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  119.589434] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.590306] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.594437] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.595023] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.713706] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.714375] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:36:34 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x40000)
ppoll(&(0x7f0000000040)=[{r0}], 0x1, &(0x7f0000000080)={0x0, 0x3938700}, 0x0, 0x0)

[  119.733198] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.733784] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:36:34 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f00000001c0))

11:36:34 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x40000)
ppoll(&(0x7f0000000040)=[{r0}], 0x1, &(0x7f0000000080)={0x0, 0x3938700}, 0x0, 0x0)

11:36:34 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f00000001c0))

[  120.144094] audit: type=1400 audit(1756726595.031:10): avc:  denied  { write } for  pid=3874 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  120.316281] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.316919] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.380692] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.381486] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.550297] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.551756] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.660651] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.662275] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.810709] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.811385] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.915558] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.916211] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:36:35 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='task\x00')
fcntl$notify(r0, 0x402, 0x80000012)
fcntl$getownex(r0, 0x10, &(0x7f00000012c0))

11:36:35 executing program 7:
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x30, &(0x7f00000001c0)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @mcast1}}}, 0x108)

11:36:35 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e3, &(0x7f0000000240))

11:36:35 executing program 4:
syz_mount_image$tmpfs(&(0x7f00000007c0), &(0x7f0000000800)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)={[{@size}]})

11:36:35 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f00000001c0))

11:36:35 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x40000)
ppoll(&(0x7f0000000040)=[{r0}], 0x1, &(0x7f0000000080)={0x0, 0x3938700}, 0x0, 0x0)

11:36:35 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = getpid()
pidfd_open(r0, 0x0)
process_mrelease(0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000002d00)='fd/4\x00')
read$rfkill(0xffffffffffffffff, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, 0x0, 0x0)
fcntl$getown(0xffffffffffffffff, 0x9)

11:36:35 executing program 5:
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000003c0), 0x6a841, 0x0)
write$snapshot(r0, &(0x7f0000000080)='A', 0x1)
write$snapshot(r0, 0x0, 0x0)

[  121.143307] random: crng reseeded on system resumption
[  121.149125] tmpfs: Bad value for 'size'
[  121.151263] random: crng reseeded on system resumption
[  121.156699] audit: type=1400 audit(1756726596.043:11): avc:  denied  { watch } for  pid=3921 comm="syz-executor.0" path="/proc/3921/task" dev="proc" ino=5308 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dir permissive=1
[  121.160937] tmpfs: Bad value for 'size'
11:36:36 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = eventfd(0x0)
read$eventfd(r0, &(0x7f0000000000), 0x8)
write$eventfd(r0, &(0x7f0000000100)=0x2, 0x8)

11:36:36 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000680)={{{@in6=@empty, @in=@empty}, {}, {}, 0x0, 0x0, 0x0, 0x3}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}}}, 0xe8)

11:36:36 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e3, &(0x7f0000000240))

11:36:36 executing program 7:
clock_gettime(0x4, &(0x7f0000000140))

[  121.258837] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[  121.259791] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  121.260474] CPU: 1 UID: 0 PID: 3944 Comm: syz-executor.3 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  121.261933] Tainted: [W]=WARN
[  121.262726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  121.264408] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.265415] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.269181] RSP: 0018:ffff888047a17800 EFLAGS: 00010212
[  121.269578] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  121.270112] RDX: ffff8880157b0000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  121.270640] RBP: ffff888047a17a70 R08: ffff88806cf31340 R09: ffffe8ffffd15cf0
[  121.271164] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  121.271689] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000
[  121.272215] FS:  0000555576e0c400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  121.272803] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.273231] CR2: 0000555576e0dc18 CR3: 000000002060b000 CR4: 0000000000350ef0
[  121.273756] Call Trace:
[  121.273952]  <TASK>
[  121.274135]  ? arch_scale_cpu_capacity+0x17/0xa0
[  121.274500]  ? __pfx_perf_tp_event+0x10/0x10
[  121.274835]  ? __asan_memset+0x24/0x50
[  121.275150]  ? perf_trace_lock+0xb5/0x5d0
[  121.275467]  ? kvm_sched_clock_read+0x16/0x30
[  121.275810]  ? sched_clock+0x37/0x60
[  121.276097]  ? sched_clock_cpu+0x6c/0x4e0
[  121.276415]  ? perf_trace_run_bpf_submit+0xef/0x180
[  121.276790]  perf_trace_run_bpf_submit+0xef/0x180
[  121.277156]  perf_trace_lock+0x337/0x5d0
[  121.277467]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.277813]  ? lock_acquire+0x15e/0x2f0
[  121.278119]  ? futex_ref_get+0x48/0x300
[  121.278419]  ? futex_ref_get+0x114/0x300
[  121.278723]  ? futex_hash+0x15c/0x390
[  121.279012]  lock_release+0x1ab/0x290
[  121.279303]  ? futex_hash+0x15c/0x390
[  121.279589]  futex_ref_get+0x119/0x300
[  121.279891]  ? futex_hash+0x15c/0x390
[  121.280177]  futex_hash+0x70/0x390
[  121.280454]  futex_wake+0x143/0x540
[  121.280733]  ? put_pid+0x1f/0x30
[  121.280993]  ? kernel_clone+0x204/0x7f0
[  121.281292]  ? __pfx_futex_wake+0x10/0x10
[  121.281606]  ? __pfx_kernel_clone+0x10/0x10
[  121.281931]  ? perf_trace_lock+0xb5/0x5d0
[  121.282252]  do_futex+0x26d/0x370
[  121.282519]  ? __pfx_do_futex+0x10/0x10
[  121.282819]  ? __pfx___do_sys_clone+0x10/0x10
[  121.283156]  ? find_held_lock+0x2b/0x80
[  121.283464]  __x64_sys_futex+0x1c9/0x4d0
[  121.283773]  ? __pfx___x64_sys_futex+0x10/0x10
[  121.284120]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  121.284512]  do_syscall_64+0xbf/0x360
[  121.284801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.285183] RIP: 0033:0x7f61c7197b19
[  121.285463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.286790] RSP: 002b:00007ffe1cbe15c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.287346] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f61c7197b19
[  121.287908] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f61c72aaf68
[  121.288473] RBP: 00007f61c72aaf60 R08: 00007f61c470d700 R09: 0000000000000000
[  121.289036] R10: 00007f61c470d700 R11: 0000000000000246 R12: 00007f61c72afa68
[  121.289561] R13: 00007ffe1cbe16d0 R14: 00007f61c72aaf60 R15: 000000000001d93f
[  121.290099]  </TASK>
[  121.290290] Modules linked in:
[  121.290557] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[  121.291771] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  121.292571] CPU: 0 UID: 0 PID: 3942 Comm: syz-executor.4 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  121.293825] Tainted: [D]=DIE, [W]=WARN
[  121.294257] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  121.295124] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.295637] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.297543] RSP: 0018:ffff88801734f800 EFLAGS: 00010212
[  121.298127] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[  121.298880] RDX: ffff888017148000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[  121.299629] RBP: ffff88801734fa70 R08: ffff88806ce31340 R09: ffffe8ffffc15cf0
[  121.300376] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  121.301131] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[  121.301886] FS:  000055558c50c400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  121.302768] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.303385] CR2: 000055558c50dc18 CR3: 0000000045bc9000 CR4: 0000000000350ef0
[  121.304142] Call Trace:
[  121.304430]  <TASK>
[  121.304683]  ? arch_scale_cpu_capacity+0x17/0xa0
[  121.305210]  ? __pfx_perf_tp_event+0x10/0x10
[  121.305697]  ? __asan_memset+0x24/0x50
[  121.306158]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.306656]  ? __pfx___mutex_lock+0x10/0x10
[  121.307134]  ? perf_trace_lock+0xb5/0x5d0
[  121.307587]  ? kvm_sched_clock_read+0x16/0x30
[  121.308083]  ? sched_clock+0x37/0x60
[  121.308500]  ? sched_clock_cpu+0x6c/0x4e0
[  121.308950]  ? perf_trace_run_bpf_submit+0xef/0x180
[  121.309483]  perf_trace_run_bpf_submit+0xef/0x180
[  121.310008]  perf_trace_lock+0x337/0x5d0
[  121.310465]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.310961]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.311457]  ? get_futex_key+0x592/0x14a0
[  121.311902]  ? futex_ref_get+0x114/0x300
[  121.312332]  ? futex_hash+0x15c/0x390
[  121.312747]  lock_release+0x1ab/0x290
[  121.313167]  ? futex_hash+0x15c/0x390
[  121.313572]  futex_ref_get+0x119/0x300
[  121.313984]  ? futex_hash+0x15c/0x390
[  121.314408]  futex_hash+0x70/0x390
[  121.314791]  futex_wake+0x143/0x540
[  121.315190]  ? put_pid+0x1f/0x30
[  121.315556]  ? kernel_clone+0x204/0x7f0
[  121.315977]  ? __pfx_futex_wake+0x10/0x10
[  121.316418]  ? __pfx_kernel_clone+0x10/0x10
[  121.316877]  ? perf_trace_lock+0xb5/0x5d0
[  121.317324]  ? __pfx___handle_mm_fault+0x10/0x10
[  121.317843]  do_futex+0x26d/0x370
[  121.318240]  ? __pfx_do_futex+0x10/0x10
[  121.318665]  ? __pfx___do_sys_clone+0x10/0x10
[  121.319149]  ? handle_mm_fault+0x590/0x9b0
[  121.319608]  __x64_sys_futex+0x1c9/0x4d0
[  121.320046]  ? __pfx___x64_sys_futex+0x10/0x10
[  121.320533]  ? xfd_validate_state+0x55/0x180
[  121.321014]  do_syscall_64+0xbf/0x360
[  121.321424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.321962] RIP: 0033:0x7f6836816b19
[  121.322371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.324235] RSP: 002b:00007ffeac7b4498 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.325015] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6836816b19
[  121.325746] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6836929f68
[  121.326489] RBP: 00007f6836929f60 R08: 00007f6833d8c700 R09: 0000000000000000
[  121.327220] R10: 00007f6833d8c700 R11: 0000000000000246 R12: 00007f683692e060
[  121.327947] R13: 00007ffeac7b45a0 R14: 00007f6836929f60 R15: 000000000001d94a
[  121.328693]  </TASK>
[  121.328942] Modules linked in:
[  121.329283] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#3] SMP KASAN NOPTI
[  121.330188] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  121.330886] CPU: 1 UID: 0 PID: 3944 Comm: syz-executor.3 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  121.331843] Tainted: [D]=DIE, [W]=WARN
[  121.332155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  121.332815] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.333203] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.334664] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012
[  121.335091] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  121.335656] RDX: ffff8880157b0000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  121.336227] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd15cf0
[  121.336799] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000
[  121.337370] R13: 0000000000000024 R14: ffff88806cf31490 R15: dffffc0000000000
[  121.337939] FS:  0000555576e0c400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  121.338586] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.339056] CR2: 0000555576e0dc18 CR3: 000000002060b000 CR4: 0000000000350ef0
[  121.339627] Call Trace:
[  121.339839]  <IRQ>
[  121.340023]  ? __pfx_perf_tp_event+0x10/0x10
[  121.340390]  ? perf_trace_lock+0xb5/0x5d0
[  121.340706]  ? trace_softirq_raise+0xbe/0x100
[  121.341047]  ? trace_rcu_utilization+0x26/0x190
[  121.341400]  ? rcu_sched_clock_irq+0x7a0/0x2b40
[  121.341777]  ? perf_trace_lock+0xb5/0x5d0
[  121.342119]  ? trace_sched_set_need_resched_tp+0xd4/0x110
[  121.342557]  ? __resched_curr+0x2a2/0x330
[  121.342893]  ? __pfx___resched_curr+0x10/0x10
[  121.343255]  ? perf_trace_run_bpf_submit+0xef/0x180
[  121.343651]  perf_trace_run_bpf_submit+0xef/0x180
[  121.344039]  perf_trace_lock+0x337/0x5d0
[  121.344362]  ? update_cfs_group+0x11d/0x260
[  121.344704]  ? kvm_sched_clock_read+0x16/0x30
[  121.345066]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.345433]  ? check_preempt_wakeup_fair+0x6e/0x950
[  121.345830]  ? sched_ttwu_pending+0x2e0/0x4a0
[  121.346203]  lock_release+0x1ab/0x290
[  121.346507]  ? ttwu_do_activate+0x1a4/0x8a0
[  121.346854]  _raw_spin_unlock+0x16/0x40
[  121.347175]  sched_ttwu_pending+0x2e0/0x4a0
[  121.347526]  ? __pfx_sched_ttwu_pending+0x10/0x10
[  121.347916]  ? hrtimer_interrupt+0x652/0x830
[  121.348272]  __flush_smp_call_function_queue+0x434/0x740
[  121.348704]  __sysvec_call_function_single+0x6d/0x370
[  121.349117]  sysvec_call_function_single+0xa1/0xc0
[  121.349516]  </IRQ>
[  121.349697]  <TASK>
[  121.349881]  asm_sysvec_call_function_single+0x1a/0x20
[  121.350280] RIP: 0010:oops_exit+0x0/0x50
[  121.350588] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57
[  121.351908] RSP: 0018:ffff888047a17690 EFLAGS: 00000202
[  121.352301] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f
[  121.352822] RDX: ffff8880157b0000 RSI: ffffffff812a3dca RDI: 0000000000000007
[  121.353345] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690
[  121.353876] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888047a17758
[  121.354409] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[  121.354933]  ? add_taint+0x5f/0xd0
[  121.355204]  ? oops_end+0x4a/0xe0
[  121.355475]  oops_end+0x65/0xe0
[  121.355731]  exc_general_protection+0x1a2/0x330
[  121.356085]  asm_exc_general_protection+0x26/0x30
[  121.356442] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.356793] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.358115] RSP: 0018:ffff888047a17800 EFLAGS: 00010212
[  121.358507] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  121.359027] RDX: ffff8880157b0000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  121.359547] RBP: ffff888047a17a70 R08: ffff88806cf31340 R09: ffffe8ffffd15cf0
[  121.360067] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  121.360590] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000
[  121.361113]  ? perf_tp_event+0x167/0xe70
[  121.361425]  ? arch_scale_cpu_capacity+0x17/0xa0
[  121.361785]  ? __pfx_perf_tp_event+0x10/0x10
[  121.362122]  ? __asan_memset+0x24/0x50
[  121.362427]  ? perf_trace_lock+0xb5/0x5d0
[  121.362741]  ? kvm_sched_clock_read+0x16/0x30
[  121.363080]  ? sched_clock+0x37/0x60
[  121.363363]  ? sched_clock_cpu+0x6c/0x4e0
[  121.363678]  ? perf_trace_run_bpf_submit+0xef/0x180
[  121.364051]  perf_trace_run_bpf_submit+0xef/0x180
[  121.364415]  perf_trace_lock+0x337/0x5d0
[  121.364724]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.365069]  ? lock_acquire+0x15e/0x2f0
[  121.365367]  ? futex_ref_get+0x48/0x300
[  121.365664]  ? futex_ref_get+0x114/0x300
[  121.365964]  ? futex_hash+0x15c/0x390
[  121.366255]  lock_release+0x1ab/0x290
[  121.366545]  ? futex_hash+0x15c/0x390
[  121.366831]  futex_ref_get+0x119/0x300
[  121.367122]  ? futex_hash+0x15c/0x390
[  121.367407]  futex_hash+0x70/0x390
[  121.367677]  futex_wake+0x143/0x540
[  121.367956]  ? put_pid+0x1f/0x30
[  121.368211]  ? kernel_clone+0x204/0x7f0
[  121.368508]  ? __pfx_futex_wake+0x10/0x10
[  121.368821]  ? __pfx_kernel_clone+0x10/0x10
[  121.369145]  ? perf_trace_lock+0xb5/0x5d0
[  121.369460]  do_futex+0x26d/0x370
[  121.369725]  ? __pfx_do_futex+0x10/0x10
[  121.370023]  ? __pfx___do_sys_clone+0x10/0x10
[  121.370363]  ? find_held_lock+0x2b/0x80
[  121.370668]  __x64_sys_futex+0x1c9/0x4d0
[  121.370974]  ? __pfx___x64_sys_futex+0x10/0x10
[  121.371319]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  121.371708]  do_syscall_64+0xbf/0x360
[  121.371996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.372376] RIP: 0033:0x7f61c7197b19
[  121.372654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.373970] RSP: 002b:00007ffe1cbe15c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.374533] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f61c7197b19
[  121.375054] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f61c72aaf68
[  121.375575] RBP: 00007f61c72aaf60 R08: 00007f61c470d700 R09: 0000000000000000
[  121.376096] R10: 00007f61c470d700 R11: 0000000000000246 R12: 00007f61c72afa68
[  121.376617] R13: 00007ffe1cbe16d0 R14: 00007f61c72aaf60 R15: 000000000001d93f
[  121.377145]  </TASK>
[  121.377322] Modules linked in:
[  121.377565] ---[ end trace 0000000000000000 ]---
[  121.377567] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#4] SMP KASAN NOPTI
[  121.377912] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.379013] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  121.379350] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.380088] CPU: 0 UID: 0 PID: 3942 Comm: syz-executor.4 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  121.381397] RSP: 0018:ffff888047a17800 EFLAGS: 00010212
[  121.382580] Tainted: [D]=DIE, [W]=WARN
[  121.382965] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  121.383347] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  121.383862] RDX: ffff8880157b0000 RSI: ffffffff8189a4e7 RDI: 0000000100000190
[  121.384669] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.385186] RBP: ffff888047a17a70 R08: ffff88806cf31340 R09: ffffe8ffffd15cf0
[  121.385647] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.386169] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  121.387946] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012
[  121.388462] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000
[  121.388465] 
[  121.388475] FS:  0000555576e0c400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  121.388987] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[  121.389503] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.389674] RDX: ffff888017148000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[  121.390263] CR2: 0000555576e0dc18 CR3: 000000002060b000 CR4: 0000000000350ef0
[  121.390958] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc15cf0
[  121.391384] Kernel panic - not syncing: Fatal exception in interrupt
[  122.434133] Shutting down cpus with NMI
[  122.436360] Kernel Offset: disabled
[  122.436669] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
11:36:36  Registers:
info registers vcpu 0
RAX=0000000000000001 RBX=0000000000000001 RCX=ffffffff84be3c0e RDX=fffffbfff0f0f609
RSI=0000000000000004 RDI=ffffffff8787b044 RBP=ffffffff8787b044 RSP=ffff88801734f5b0
R8 =0000000000000000 R9 =fffffbfff0f0f608 R10=ffffffff8787b047 R11=202c746c75616620
R12=1ffff11002e69eb7 R13=0000000000000007 R14=fffffbfff0f0f608 R15=ffff88801734f5e8
RIP=ffffffff84be3da0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055558c50c400 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe0100000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055558c50dc18 CR3=0000000045bc9000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f68368fd7c000007f68368fd7c8
XMM02=00007f68368fd7e000007f68368fd7c0 XMM03=00007f68368fd7c800007f68368fd7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888047a170f0
R8 =0000000000000000 R9 =ffffed10016d4046 R10=0000000000000020 R11=0000000065646f43
R12=0000000000000020 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555576e0c400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe6d00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555576e0dc18 CR3=000000002060b000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f61c727e7c000007f61c727e7c8
XMM02=00007f61c727e7e000007f61c727e7c0 XMM03=00007f61c727e7c800007f61c727e7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000