Warning: Permanently added '[localhost]:19179' (ECDSA) to the list of known hosts. 2025/09/01 11:36:17 fuzzer started 2025/09/01 11:36:17 dialing manager at localhost:35473 syzkaller login: [ 58.572669] cgroup: Unknown subsys name 'net' [ 58.631567] cgroup: Unknown subsys name 'cpuset' [ 58.644174] cgroup: Unknown subsys name 'rlimit' 2025/09/01 11:36:27 syscalls: 2214 2025/09/01 11:36:27 code coverage: enabled 2025/09/01 11:36:27 comparison tracing: enabled 2025/09/01 11:36:27 extra coverage: enabled 2025/09/01 11:36:27 setuid sandbox: enabled 2025/09/01 11:36:27 namespace sandbox: enabled 2025/09/01 11:36:27 Android sandbox: enabled 2025/09/01 11:36:27 fault injection: enabled 2025/09/01 11:36:27 leak checking: enabled 2025/09/01 11:36:27 net packet injection: enabled 2025/09/01 11:36:27 net device setup: enabled 2025/09/01 11:36:27 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 11:36:27 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 11:36:27 USB emulation: enabled 2025/09/01 11:36:27 hci packet injection: enabled 2025/09/01 11:36:27 wifi device emulation: enabled 2025/09/01 11:36:27 802.15.4 emulation: enabled 2025/09/01 11:36:27 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 11:36:27 fetching corpus: 50, signal 19059/22650 (executing program) 2025/09/01 11:36:27 fetching corpus: 100, signal 28537/33650 (executing program) 2025/09/01 11:36:27 fetching corpus: 150, signal 34694/41264 (executing program) 2025/09/01 11:36:27 fetching corpus: 200, signal 41514/49350 (executing program) 2025/09/01 11:36:28 fetching corpus: 250, signal 46175/55286 (executing program) 2025/09/01 11:36:28 fetching corpus: 300, signal 53190/63278 (executing program) 2025/09/01 11:36:28 fetching corpus: 350, signal 62412/73191 (executing program) 2025/09/01 11:36:28 fetching corpus: 400, signal 66312/78093 (executing program) 2025/09/01 11:36:28 fetching corpus: 450, signal 69017/81877 (executing program) 2025/09/01 11:36:28 fetching corpus: 500, signal 72474/86188 (executing program) 2025/09/01 11:36:28 fetching corpus: 550, signal 75657/90207 (executing program) 2025/09/01 11:36:28 fetching corpus: 600, signal 77087/92669 (executing program) 2025/09/01 11:36:28 fetching corpus: 650, signal 80523/96778 (executing program) 2025/09/01 11:36:28 fetching corpus: 700, signal 83234/100190 (executing program) 2025/09/01 11:36:28 fetching corpus: 750, signal 85967/103621 (executing program) 2025/09/01 11:36:29 fetching corpus: 800, signal 91240/109028 (executing program) 2025/09/01 11:36:29 fetching corpus: 850, signal 93438/111847 (executing program) 2025/09/01 11:36:29 fetching corpus: 900, signal 96410/115272 (executing program) 2025/09/01 11:36:29 fetching corpus: 950, signal 98376/117829 (executing program) 2025/09/01 11:36:29 fetching corpus: 1000, signal 100012/120061 (executing program) 2025/09/01 11:36:29 fetching corpus: 1050, signal 101156/121932 (executing program) 2025/09/01 11:36:29 fetching corpus: 1100, signal 102993/124304 (executing program) 2025/09/01 11:36:29 fetching corpus: 1150, signal 104248/126151 (executing program) 2025/09/01 11:36:29 fetching corpus: 1200, signal 105790/128220 (executing program) 2025/09/01 11:36:29 fetching corpus: 1250, signal 106960/129996 (executing program) 2025/09/01 11:36:29 fetching corpus: 1300, signal 108452/131927 (executing program) 2025/09/01 11:36:29 fetching corpus: 1350, signal 109704/133727 (executing program) 2025/09/01 11:36:30 fetching corpus: 1400, signal 111329/135742 (executing program) 2025/09/01 11:36:30 fetching corpus: 1450, signal 112692/137603 (executing program) 2025/09/01 11:36:30 fetching corpus: 1500, signal 113978/139291 (executing program) 2025/09/01 11:36:30 fetching corpus: 1550, signal 115634/141251 (executing program) 2025/09/01 11:36:30 fetching corpus: 1600, signal 116451/142626 (executing program) 2025/09/01 11:36:30 fetching corpus: 1650, signal 117638/144185 (executing program) 2025/09/01 11:36:30 fetching corpus: 1700, signal 118614/145615 (executing program) 2025/09/01 11:36:30 fetching corpus: 1750, signal 119629/147056 (executing program) 2025/09/01 11:36:30 fetching corpus: 1800, signal 120818/148563 (executing program) 2025/09/01 11:36:31 fetching corpus: 1850, signal 121887/149955 (executing program) 2025/09/01 11:36:31 fetching corpus: 1900, signal 122924/151290 (executing program) 2025/09/01 11:36:31 fetching corpus: 1950, signal 123665/152503 (executing program) 2025/09/01 11:36:31 fetching corpus: 2000, signal 124588/153732 (executing program) 2025/09/01 11:36:31 fetching corpus: 2050, signal 125985/155255 (executing program) 2025/09/01 11:36:31 fetching corpus: 2100, signal 126577/156250 (executing program) 2025/09/01 11:36:31 fetching corpus: 2150, signal 127566/157441 (executing program) 2025/09/01 11:36:31 fetching corpus: 2200, signal 128486/158644 (executing program) 2025/09/01 11:36:31 fetching corpus: 2250, signal 129828/160003 (executing program) 2025/09/01 11:36:31 fetching corpus: 2300, signal 130545/161008 (executing program) 2025/09/01 11:36:31 fetching corpus: 2350, signal 131357/162061 (executing program) 2025/09/01 11:36:32 fetching corpus: 2400, signal 132442/163257 (executing program) 2025/09/01 11:36:32 fetching corpus: 2450, signal 133305/164313 (executing program) 2025/09/01 11:36:32 fetching corpus: 2500, signal 134130/165290 (executing program) 2025/09/01 11:36:32 fetching corpus: 2550, signal 134813/166228 (executing program) 2025/09/01 11:36:32 fetching corpus: 2600, signal 135325/167058 (executing program) 2025/09/01 11:36:32 fetching corpus: 2650, signal 135976/167986 (executing program) 2025/09/01 11:36:32 fetching corpus: 2700, signal 136760/168890 (executing program) 2025/09/01 11:36:32 fetching corpus: 2750, signal 137530/169788 (executing program) 2025/09/01 11:36:32 fetching corpus: 2800, signal 137974/170555 (executing program) 2025/09/01 11:36:32 fetching corpus: 2850, signal 138757/171474 (executing program) 2025/09/01 11:36:33 fetching corpus: 2900, signal 139438/172318 (executing program) 2025/09/01 11:36:33 fetching corpus: 2950, signal 140156/173148 (executing program) 2025/09/01 11:36:33 fetching corpus: 3000, signal 140752/173919 (executing program) 2025/09/01 11:36:33 fetching corpus: 3050, signal 142200/175059 (executing program) 2025/09/01 11:36:33 fetching corpus: 3100, signal 143040/175839 (executing program) 2025/09/01 11:36:33 fetching corpus: 3150, signal 143503/176505 (executing program) 2025/09/01 11:36:33 fetching corpus: 3200, signal 144462/177379 (executing program) 2025/09/01 11:36:33 fetching corpus: 3250, signal 145113/178072 (executing program) 2025/09/01 11:36:33 fetching corpus: 3300, signal 145682/178737 (executing program) 2025/09/01 11:36:33 fetching corpus: 3350, signal 146290/179386 (executing program) 2025/09/01 11:36:33 fetching corpus: 3400, signal 146849/180024 (executing program) 2025/09/01 11:36:33 fetching corpus: 3450, signal 147526/180718 (executing program) 2025/09/01 11:36:34 fetching corpus: 3500, signal 148086/181339 (executing program) 2025/09/01 11:36:34 fetching corpus: 3550, signal 148649/182035 (executing program) 2025/09/01 11:36:34 fetching corpus: 3600, signal 149091/182583 (executing program) 2025/09/01 11:36:34 fetching corpus: 3650, signal 149727/183205 (executing program) 2025/09/01 11:36:34 fetching corpus: 3700, signal 150258/183879 (executing program) 2025/09/01 11:36:34 fetching corpus: 3750, signal 150850/184477 (executing program) 2025/09/01 11:36:34 fetching corpus: 3800, signal 151235/184985 (executing program) 2025/09/01 11:36:34 fetching corpus: 3850, signal 151925/185554 (executing program) 2025/09/01 11:36:34 fetching corpus: 3900, signal 152489/186082 (executing program) 2025/09/01 11:36:34 fetching corpus: 3950, signal 153035/186639 (executing program) 2025/09/01 11:36:34 fetching corpus: 4000, signal 153530/187155 (executing program) 2025/09/01 11:36:35 fetching corpus: 4050, signal 153962/187624 (executing program) 2025/09/01 11:36:35 fetching corpus: 4100, signal 154383/188124 (executing program) 2025/09/01 11:36:35 fetching corpus: 4150, signal 154774/188534 (executing program) 2025/09/01 11:36:35 fetching corpus: 4200, signal 155207/188953 (executing program) 2025/09/01 11:36:35 fetching corpus: 4250, signal 155839/189434 (executing program) 2025/09/01 11:36:35 fetching corpus: 4300, signal 156180/189812 (executing program) 2025/09/01 11:36:35 fetching corpus: 4350, signal 156733/190311 (executing program) 2025/09/01 11:36:35 fetching corpus: 4400, signal 157186/190752 (executing program) 2025/09/01 11:36:35 fetching corpus: 4450, signal 157848/191228 (executing program) 2025/09/01 11:36:35 fetching corpus: 4500, signal 158373/191721 (executing program) 2025/09/01 11:36:36 fetching corpus: 4550, signal 158788/192121 (executing program) 2025/09/01 11:36:36 fetching corpus: 4600, signal 159136/192509 (executing program) 2025/09/01 11:36:36 fetching corpus: 4650, signal 159469/192878 (executing program) 2025/09/01 11:36:36 fetching corpus: 4700, signal 159964/193259 (executing program) 2025/09/01 11:36:36 fetching corpus: 4750, signal 160346/193369 (executing program) 2025/09/01 11:36:36 fetching corpus: 4800, signal 160598/193391 (executing program) 2025/09/01 11:36:36 fetching corpus: 4850, signal 160973/193397 (executing program) 2025/09/01 11:36:36 fetching corpus: 4900, signal 161374/193402 (executing program) 2025/09/01 11:36:36 fetching corpus: 4950, signal 161835/193432 (executing program) 2025/09/01 11:36:36 fetching corpus: 5000, signal 162420/193453 (executing program) 2025/09/01 11:36:36 fetching corpus: 5050, signal 162943/193464 (executing program) 2025/09/01 11:36:36 fetching corpus: 5100, signal 163343/193481 (executing program) 2025/09/01 11:36:37 fetching corpus: 5150, signal 163844/193491 (executing program) 2025/09/01 11:36:37 fetching corpus: 5200, signal 164283/193492 (executing program) 2025/09/01 11:36:37 fetching corpus: 5250, signal 164798/193519 (executing program) 2025/09/01 11:36:37 fetching corpus: 5300, signal 165290/193522 (executing program) 2025/09/01 11:36:37 fetching corpus: 5350, signal 165771/193529 (executing program) 2025/09/01 11:36:37 fetching corpus: 5400, signal 166178/193529 (executing program) 2025/09/01 11:36:37 fetching corpus: 5450, signal 166520/193530 (executing program) 2025/09/01 11:36:37 fetching corpus: 5500, signal 166860/193530 (executing program) 2025/09/01 11:36:37 fetching corpus: 5550, signal 167280/193545 (executing program) 2025/09/01 11:36:37 fetching corpus: 5600, signal 167569/193549 (executing program) 2025/09/01 11:36:37 fetching corpus: 5650, signal 168175/193568 (executing program) 2025/09/01 11:36:38 fetching corpus: 5700, signal 168603/193584 (executing program) 2025/09/01 11:36:38 fetching corpus: 5750, signal 168920/193601 (executing program) 2025/09/01 11:36:38 fetching corpus: 5800, signal 169417/193604 (executing program) 2025/09/01 11:36:38 fetching corpus: 5850, signal 169767/193605 (executing program) 2025/09/01 11:36:38 fetching corpus: 5900, signal 170128/193610 (executing program) 2025/09/01 11:36:38 fetching corpus: 5950, signal 170530/193648 (executing program) 2025/09/01 11:36:38 fetching corpus: 6000, signal 170844/193653 (executing program) 2025/09/01 11:36:38 fetching corpus: 6050, signal 171240/193657 (executing program) 2025/09/01 11:36:38 fetching corpus: 6100, signal 171657/193664 (executing program) 2025/09/01 11:36:38 fetching corpus: 6150, signal 171928/193681 (executing program) 2025/09/01 11:36:38 fetching corpus: 6200, signal 172173/193693 (executing program) 2025/09/01 11:36:38 fetching corpus: 6250, signal 172444/193694 (executing program) 2025/09/01 11:36:38 fetching corpus: 6300, signal 173001/193733 (executing program) 2025/09/01 11:36:39 fetching corpus: 6350, signal 173610/193734 (executing program) 2025/09/01 11:36:39 fetching corpus: 6400, signal 173937/193741 (executing program) 2025/09/01 11:36:39 fetching corpus: 6450, signal 174261/193757 (executing program) 2025/09/01 11:36:39 fetching corpus: 6500, signal 174564/193771 (executing program) 2025/09/01 11:36:39 fetching corpus: 6550, signal 174812/193785 (executing program) 2025/09/01 11:36:39 fetching corpus: 6600, signal 175066/193787 (executing program) 2025/09/01 11:36:39 fetching corpus: 6650, signal 175407/193798 (executing program) 2025/09/01 11:36:39 fetching corpus: 6700, signal 176204/193815 (executing program) 2025/09/01 11:36:39 fetching corpus: 6750, signal 176555/193836 (executing program) 2025/09/01 11:36:39 fetching corpus: 6800, signal 177137/193849 (executing program) 2025/09/01 11:36:40 fetching corpus: 6850, signal 177750/193865 (executing program) 2025/09/01 11:36:40 fetching corpus: 6900, signal 178034/193867 (executing program) 2025/09/01 11:36:40 fetching corpus: 6950, signal 178456/193869 (executing program) 2025/09/01 11:36:40 fetching corpus: 7000, signal 178742/193869 (executing program) 2025/09/01 11:36:40 fetching corpus: 7050, signal 178980/193871 (executing program) 2025/09/01 11:36:40 fetching corpus: 7100, signal 179231/193871 (executing program) 2025/09/01 11:36:40 fetching corpus: 7150, signal 179889/193878 (executing program) 2025/09/01 11:36:40 fetching corpus: 7200, signal 180260/193889 (executing program) 2025/09/01 11:36:40 fetching corpus: 7250, signal 180502/193903 (executing program) 2025/09/01 11:36:40 fetching corpus: 7300, signal 180790/193923 (executing program) 2025/09/01 11:36:40 fetching corpus: 7350, signal 181255/193928 (executing program) 2025/09/01 11:36:41 fetching corpus: 7400, signal 181523/193928 (executing program) 2025/09/01 11:36:41 fetching corpus: 7450, signal 181749/193936 (executing program) 2025/09/01 11:36:41 fetching corpus: 7500, signal 182092/193940 (executing program) 2025/09/01 11:36:41 fetching corpus: 7550, signal 182629/193960 (executing program) 2025/09/01 11:36:41 fetching corpus: 7600, signal 182818/193961 (executing program) 2025/09/01 11:36:41 fetching corpus: 7650, signal 183105/193962 (executing program) 2025/09/01 11:36:41 fetching corpus: 7700, signal 183346/193963 (executing program) 2025/09/01 11:36:41 fetching corpus: 7750, signal 183735/194009 (executing program) 2025/09/01 11:36:41 fetching corpus: 7800, signal 183961/194014 (executing program) 2025/09/01 11:36:41 fetching corpus: 7850, signal 184281/194028 (executing program) 2025/09/01 11:36:41 fetching corpus: 7899, signal 184495/194033 (executing program) 2025/09/01 11:36:41 fetching corpus: 7949, signal 184776/194055 (executing program) 2025/09/01 11:36:41 fetching corpus: 7999, signal 185017/194056 (executing program) 2025/09/01 11:36:42 fetching corpus: 8049, signal 185285/194059 (executing program) 2025/09/01 11:36:42 fetching corpus: 8099, signal 185616/194061 (executing program) 2025/09/01 11:36:42 fetching corpus: 8149, signal 185967/194064 (executing program) 2025/09/01 11:36:42 fetching corpus: 8199, signal 186317/194069 (executing program) 2025/09/01 11:36:42 fetching corpus: 8249, signal 186729/194104 (executing program) 2025/09/01 11:36:42 fetching corpus: 8299, signal 186895/194115 (executing program) 2025/09/01 11:36:42 fetching corpus: 8349, signal 187102/194115 (executing program) 2025/09/01 11:36:42 fetching corpus: 8399, signal 187491/194119 (executing program) 2025/09/01 11:36:42 fetching corpus: 8449, signal 187778/194119 (executing program) 2025/09/01 11:36:43 fetching corpus: 8499, signal 188104/194120 (executing program) 2025/09/01 11:36:43 fetching corpus: 8549, signal 188319/194125 (executing program) 2025/09/01 11:36:43 fetching corpus: 8599, signal 188621/194127 (executing program) 2025/09/01 11:36:43 fetching corpus: 8649, signal 189076/194139 (executing program) 2025/09/01 11:36:43 fetching corpus: 8699, signal 189352/194140 (executing program) 2025/09/01 11:36:43 fetching corpus: 8749, signal 189602/194141 (executing program) 2025/09/01 11:36:43 fetching corpus: 8799, signal 189868/194146 (executing program) 2025/09/01 11:36:43 fetching corpus: 8849, signal 190134/194157 (executing program) 2025/09/01 11:36:43 fetching corpus: 8899, signal 190417/194208 (executing program) 2025/09/01 11:36:44 fetching corpus: 8949, signal 191035/194236 (executing program) 2025/09/01 11:36:44 fetching corpus: 8999, signal 191264/194240 (executing program) 2025/09/01 11:36:44 fetching corpus: 9032, signal 191454/194243 (executing program) 2025/09/01 11:36:44 fetching corpus: 9032, signal 191454/194243 (executing program) 2025/09/01 11:36:46 starting 8 fuzzer processes 11:36:46 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)={0x18, 0x5a, 0x101, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid}]}, 0x18}], 0x1}, 0x0) 11:36:46 executing program 1: socketpair(0x2, 0x1, 0x0, &(0x7f0000000000)) 11:36:46 executing program 2: syz_mount_image$iso9660(0x0, &(0x7f0000001340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='ext4\x00', 0x0, 0x0) 11:36:46 executing program 7: r0 = socket$inet(0x2, 0x80003, 0xff) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) sendto$inet(r0, &(0x7f0000000280)="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", 0x5dd, 0x0, &(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x10) 11:36:46 executing program 6: timer_settime(0x0, 0x0, 0xfffffffffffffffc, 0x0) 11:36:46 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x2, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) fork() 11:36:46 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') pread64(r0, &(0x7f0000000300)=""/173, 0xad, 0x2) 11:36:46 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r1) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x24}}, 0x0) [ 87.436123] audit: type=1400 audit(1756726606.693:7): avc: denied { execmem } for pid=282 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 88.582443] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 88.585719] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 88.587885] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 88.592215] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 88.594860] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 88.597160] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 88.598939] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 88.612288] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 88.617313] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 88.619182] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 88.786607] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 88.794144] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 88.795949] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 88.797285] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 88.799575] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 88.800882] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 88.809150] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 88.817382] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 88.819667] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 88.822142] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 88.855610] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 88.858243] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 88.861197] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 88.865747] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 88.866108] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 88.867218] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 88.869438] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 88.871862] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 88.873851] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 88.879296] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 88.882192] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 88.893326] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 88.895113] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 88.898290] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 88.900749] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 88.900789] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 88.905129] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 88.907076] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 88.949935] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 88.952308] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 90.617036] Bluetooth: hci0: command tx timeout [ 90.681794] Bluetooth: hci1: command tx timeout [ 90.875582] Bluetooth: hci2: command tx timeout [ 90.936578] Bluetooth: hci3: command tx timeout [ 90.937149] Bluetooth: hci7: command tx timeout [ 90.938618] Bluetooth: hci6: command tx timeout [ 90.939102] Bluetooth: hci5: command tx timeout [ 91.065570] Bluetooth: hci4: command tx timeout [ 92.665251] Bluetooth: hci0: command tx timeout [ 92.729531] Bluetooth: hci1: command tx timeout [ 92.923523] Bluetooth: hci2: command tx timeout [ 92.985693] Bluetooth: hci5: command tx timeout [ 92.986138] Bluetooth: hci7: command tx timeout [ 92.986666] Bluetooth: hci6: command tx timeout [ 92.986778] Bluetooth: hci3: command tx timeout [ 93.113716] Bluetooth: hci4: command tx timeout [ 94.713136] Bluetooth: hci0: command tx timeout [ 94.776688] Bluetooth: hci1: command tx timeout [ 94.969650] Bluetooth: hci2: command tx timeout [ 95.032590] Bluetooth: hci3: command tx timeout [ 95.033705] Bluetooth: hci5: command tx timeout [ 95.034101] Bluetooth: hci7: command tx timeout [ 95.034488] Bluetooth: hci6: command tx timeout [ 95.160577] Bluetooth: hci4: command tx timeout [ 96.761543] Bluetooth: hci0: command tx timeout [ 96.826565] Bluetooth: hci1: command tx timeout [ 97.017621] Bluetooth: hci2: command tx timeout [ 97.083643] Bluetooth: hci5: command tx timeout [ 97.084044] Bluetooth: hci6: command tx timeout [ 97.084420] Bluetooth: hci7: command tx timeout [ 97.085561] Bluetooth: hci3: command tx timeout [ 97.209654] Bluetooth: hci4: command tx timeout [ 123.676625] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.677275] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.885833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.886436] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:37:23 executing program 7: recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000002140)={0x77359400}) getresuid(&(0x7f0000002340), &(0x7f0000002380), &(0x7f00000023c0)) [ 124.688166] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.689185] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:37:24 executing program 7: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000010000001810"]) [ 124.864454] autofs4:pid:3803:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e) [ 124.909357] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.911490] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:37:24 executing program 7: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000010000001810"]) [ 124.998172] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.998777] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.008593] autofs4:pid:3817:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e) 11:37:24 executing program 7: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000010000001810"]) [ 125.113006] autofs4:pid:3822:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e) 11:37:24 executing program 7: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000010000001810"]) [ 125.162189] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.163026] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.192744] autofs4:pid:3829:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e) 11:37:24 executing program 4: llistxattr(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', &(0x7f0000000240)=""/199, 0x11) 11:37:24 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x49, 0x0, 0x1300) [ 125.354699] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.355306] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 11:37:24 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x14, 0x0, &(0x7f0000000280)) [ 125.465335] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.465970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.696043] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.696836] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.794318] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.794990] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.139572] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.140211] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.196688] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.197323] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.249876] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.250538] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.366159] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.367239] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.367806] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.368854] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.437820] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.439242] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.482186] I/O error, dev loop2, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2 [ 126.483087] EXT4-fs (loop2): unable to read superblock [ 126.486948] I/O error, dev loop2, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2 [ 126.489541] EXT4-fs (loop2): unable to read superblock [ 126.524674] audit: type=1400 audit(1756726645.781:8): avc: denied { open } for pid=3917 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.533711] audit: type=1400 audit(1756726645.781:9): avc: denied { kernel } for pid=3917 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 11:37:25 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=@migrate={0x50, 0x21, 0x1, 0x0, 0x0, {{@in=@private, @in=@remote}}}, 0x50}}, 0x0) 11:37:25 executing program 6: timer_settime(0x0, 0x0, 0xfffffffffffffffc, 0x0) 11:37:25 executing program 1: socketpair(0x2, 0x1, 0x0, &(0x7f0000000000)) 11:37:25 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r1) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x24}}, 0x0) 11:37:25 executing program 4: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) eventfd2(0x4, 0x0) pselect6(0x40, &(0x7f0000000180), &(0x7f00000001c0)={0x8}, 0x0, 0x0, 0x0) 11:37:25 executing program 2: setresuid(0xee01, 0xee00, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setresuid(0x0, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) linkat(r1, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000) 11:37:25 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x2, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) fork() 11:37:25 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x14, 0x0, &(0x7f0000000280)) 11:37:26 executing program 2: setresuid(0xee01, 0xee00, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setresuid(0x0, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) linkat(r1, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000) 11:37:26 executing program 4: setresuid(0xee01, 0xee00, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setresuid(0x0, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) linkat(r1, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000) 11:37:26 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x14, 0x0, &(0x7f0000000280)) 11:37:26 executing program 6: timer_settime(0x0, 0x0, 0xfffffffffffffffc, 0x0) 11:37:26 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r1) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x24}}, 0x0) 11:37:26 executing program 4: setresuid(0xee01, 0xee00, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setresuid(0x0, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) linkat(r1, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000) 11:37:26 executing program 1: socketpair(0x2, 0x1, 0x0, &(0x7f0000000000)) 11:37:26 executing program 1: socketpair(0x2, 0x1, 0x0, &(0x7f0000000000)) 11:37:26 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x14, 0x0, &(0x7f0000000280)) 11:37:26 executing program 6: timer_settime(0x0, 0x0, 0xfffffffffffffffc, 0x0) 11:37:26 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x2, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) fork() 11:37:26 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r1) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CALIPSO_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CALIPSO_A_DOI={0x8}]}, 0x24}}, 0x0) 11:37:26 executing program 2: setresuid(0xee01, 0xee00, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setresuid(0x0, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) linkat(r1, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000) 11:37:26 executing program 0: setresuid(0x0, 0xee01, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f0000000040)='u:object_r:app_data_file:s0:c512,c768\x00', 0x26, 0x0) 11:37:26 executing program 4: setresuid(0xee01, 0xee00, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setresuid(0x0, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) linkat(r1, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000) [ 127.099232] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 127.130105] audit: type=1401 audit(1756726646.387:10): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768" 11:37:26 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 11:37:26 executing program 6: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SCROLLCONSOLE(r0, 0x4b32, &(0x7f0000000140)) 11:37:26 executing program 6: clock_gettime(0x1, &(0x7f0000000000)) 11:37:26 executing program 0: msgsnd(0x0, 0x0, 0x0, 0x0) msgrcv(0x0, &(0x7f0000000140)={0x0, ""/4096}, 0x1008, 0x0, 0x0) msgctl$IPC_SET(0x0, 0x1, 0x0) msgsnd(0x0, 0x0, 0xfd1, 0x0) 11:37:26 executing program 2: setresuid(0xee01, 0xee00, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setresuid(0x0, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) linkat(r1, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x0, 0x1000) 11:37:26 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x2, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) fork() 11:37:26 executing program 5: mknod$loop(&(0x7f0000000580)='./file0\x00', 0x6000, 0x0) lstat(&(0x7f0000005a80)='./file0\x00', &(0x7f0000005ac0)) 11:37:26 executing program 1: r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$security_selinux(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f0000000240)='system_u:object_r:zero_device_t:s0\x00', 0x23, 0x0) 11:37:26 executing program 4: rseq(&(0x7f0000000040), 0x20, 0x0, 0x0) poll(0x0, 0x0, 0x8) 11:37:26 executing program 7: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140), 0x8) sendmsg(r0, &(0x7f0000000540)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000080)="f9de6c8a", 0x4}], 0x1}, 0x0) [ 127.389448] audit: type=1400 audit(1756726646.645:11): avc: denied { watch_reads } for pid=3985 comm="syz-executor.1" path="/syzkaller-testdir207691083/syzkaller.z7qgIB/4" dev="sda" ino=15978 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1 [ 127.408733] audit: type=1400 audit(1756726646.659:12): avc: denied { relabelto } for pid=3985 comm="syz-executor.1" name="file0" dev="sda" ino=16010 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:zero_device_t:s0 tclass=dir permissive=1 11:37:26 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) [ 127.436469] audit: type=1400 audit(1756726646.679:13): avc: denied { relabelfrom } for pid=3985 comm="syz-executor.1" name="file0" dev="sda" ino=16010 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:zero_device_t:s0 tclass=dir permissive=1 [ 127.519191] loop0: detected capacity change from 0 to 280 [ 127.521815] audit: type=1400 audit(1756726646.777:14): avc: denied { getattr } for pid=284 comm="syz-executor.1" path="/syzkaller-testdir207691083/syzkaller.z7qgIB/4/file0" dev="sda" ino=16010 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:zero_device_t:s0 tclass=dir permissive=1 [ 127.528055] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 127.541742] audit: type=1400 audit(1756726646.788:15): avc: denied { read } for pid=284 comm="syz-executor.1" name="file0" dev="sda" ino=16010 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:zero_device_t:s0 tclass=dir permissive=1 [ 127.546325] audit: type=1400 audit(1756726646.788:16): avc: denied { open } for pid=284 comm="syz-executor.1" path="/syzkaller-testdir207691083/syzkaller.z7qgIB/4/file0" dev="sda" ino=16010 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:zero_device_t:s0 tclass=dir permissive=1 [ 127.552651] audit: type=1400 audit(1756726646.791:17): avc: denied { rmdir } for pid=284 comm="syz-executor.1" name="file0" dev="sda" ino=16010 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:zero_device_t:s0 tclass=dir permissive=1 11:37:26 executing program 7: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140), 0x8) sendmsg(r0, &(0x7f0000000540)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000080)="f9de6c8a", 0x4}], 0x1}, 0x0) 11:37:26 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x43, 0x0, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x301, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 11:37:26 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) mincore(&(0x7f0000ffc000/0x1000)=nil, 0x1000, &(0x7f0000000000)) 11:37:26 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000ddf4655fddf4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000014100)) 11:37:26 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/handlers\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/186, 0xba, 0xff) 11:37:26 executing program 1: r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$security_selinux(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f0000000240)='system_u:object_r:zero_device_t:s0\x00', 0x23, 0x0) 11:37:26 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) 11:37:26 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) [ 127.617597] loop4: detected capacity change from 0 to 4 [ 127.633213] EXT4-fs (loop4): fragment/cluster size (32768) != block size (2048) [ 127.638130] loop0: detected capacity change from 0 to 280 [ 127.643217] loop3: detected capacity change from 0 to 280 [ 127.644428] loop4: detected capacity change from 0 to 4 [ 127.647337] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 127.653211] EXT4-fs (loop4): fragment/cluster size (32768) != block size (2048) [ 127.659015] FAT-fs (loop3): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 11:37:26 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/handlers\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/186, 0xba, 0xff) 11:37:26 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) 11:37:26 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) 11:37:26 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000ddf4655fddf4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000014100)) 11:37:27 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/handlers\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/186, 0xba, 0xff) [ 127.776034] loop4: detected capacity change from 0 to 4 11:37:27 executing program 7: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140), 0x8) sendmsg(r0, &(0x7f0000000540)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000080)="f9de6c8a", 0x4}], 0x1}, 0x0) 11:37:27 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) 11:37:27 executing program 1: r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$security_selinux(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f0000000240)='system_u:object_r:zero_device_t:s0\x00', 0x23, 0x0) [ 127.798166] EXT4-fs (loop4): fragment/cluster size (32768) != block size (2048) [ 127.807019] loop3: detected capacity change from 0 to 280 [ 127.809651] loop0: detected capacity change from 0 to 280 [ 127.818006] FAT-fs (loop3): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 127.818731] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 11:37:27 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x43, 0x0, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x301, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 11:37:27 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/handlers\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/186, 0xba, 0xff) [ 127.874894] loop5: detected capacity change from 0 to 280 11:37:27 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) 11:37:27 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) [ 127.906840] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 127.918177] kmemleak: Found object by alias at 0x607f1a63ddb4 [ 127.918204] CPU: 1 UID: 0 PID: 4020 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 127.918235] Tainted: [W]=WARN [ 127.918242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 127.918260] Call Trace: [ 127.918266] [ 127.918274] dump_stack_lvl+0xca/0x120 [ 127.918312] __lookup_object+0x94/0xb0 [ 127.918341] delete_object_full+0x27/0x70 [ 127.918369] free_percpu+0x30/0x1160 [ 127.918397] ? arch_uprobe_clear_state+0x16/0x140 [ 127.918431] futex_hash_free+0x38/0xc0 [ 127.918455] mmput+0x2d3/0x390 [ 127.918487] do_exit+0x79d/0x2970 [ 127.918517] ? __pfx_do_exit+0x10/0x10 [ 127.918541] ? trace_irq_enable.constprop.0+0x26/0x100 [ 127.918564] ? _raw_spin_unlock_irq+0x23/0x40 [ 127.918595] do_group_exit+0xd3/0x2a0 [ 127.918621] __x64_sys_exit_group+0x3e/0x50 [ 127.918646] x64_sys_call+0x18c5/0x18d0 [ 127.918672] do_syscall_64+0xbf/0x360 [ 127.918694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.918714] RIP: 0033:0x7f84fb1bcb19 [ 127.918729] Code: Unable to access opcode bytes at 0x7f84fb1bcaef. [ 127.918738] RSP: 002b:00007fff433875d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 127.918757] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f84fb1bcb19 [ 127.918770] RDX: 00007f84fb16f72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 127.918783] RBP: 0000000000000000 R08: 0000001b2dd2001c R09: 0000000000000000 [ 127.918795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 127.918806] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fff433876c0 [ 127.918832] [ 127.918839] kmemleak: Object (percpu) 0x607f1a63ddb0 (size 8): [ 127.918850] kmemleak: comm "syz-executor.5", pid 4031, jiffies 4294794527 [ 127.918862] kmemleak: min_count = 1 [ 127.918869] kmemleak: count = 0 [ 127.918875] kmemleak: flags = 0x21 [ 127.918882] kmemleak: checksum = 0 [ 127.918888] kmemleak: backtrace: [ 127.918894] pcpu_alloc_noprof+0x87a/0x1170 [ 127.918921] percpu_ref_init+0x37/0x400 [ 127.918938] blkg_alloc+0xe9/0x7d0 [ 127.918960] blkg_create+0xe08/0x1420 [ 127.918981] bio_associate_blkg_from_css+0xe06/0x1380 [ 127.919005] bio_associate_blkg+0x10e/0x2a0 [ 127.919028] bio_init+0x2dd/0x570 [ 127.919050] bio_alloc_bioset+0x2cf/0x8c0 [ 127.919075] submit_bh_wbc+0x286/0x720 [ 127.919103] __bread_gfp+0x18b/0x3c0 [ 127.919122] fat_fill_super+0x5e1/0x3fd0 [ 127.919149] get_tree_bdev_flags+0x38a/0x620 [ 127.919168] vfs_get_tree+0x93/0x340 [ 127.919194] path_mount+0x132d/0x1dd0 [ 127.919215] __x64_sys_mount+0x27b/0x300 [ 127.919235] do_syscall_64+0xbf/0x360 [ 127.942201] loop3: detected capacity change from 0 to 280 [ 127.959976] loop0: detected capacity change from 0 to 280 [ 127.968420] kmemleak: Cannot insert 0x607f1a63ddb4 into the object search tree (overlaps existing) [ 127.968435] CPU: 0 UID: 0 PID: 4041 Comm: syz-executor.0 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 127.968454] Tainted: [W]=WARN [ 127.968458] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 127.968465] Call Trace: [ 127.968469] [ 127.968474] dump_stack_lvl+0xca/0x120 [ 127.968510] __link_object+0x190/0x210 [ 127.968529] __create_object+0x48/0x80 [ 127.968548] pcpu_alloc_noprof+0x87a/0x1170 [ 127.968574] __percpu_init_rwsem+0x2d/0x160 [ 127.968591] ? security_sb_alloc+0x75/0x140 [ 127.968608] alloc_super+0x29e/0xb80 [ 127.968623] ? __pfx_super_s_dev_test+0x10/0x10 [ 127.968641] sget_fc+0xfe/0xb80 [ 127.968652] ? __pfx_super_s_dev_set+0x10/0x10 [ 127.968672] get_tree_bdev_flags+0x1b8/0x620 [ 127.968683] ? __pfx_vfat_fill_super+0x10/0x10 [ 127.968697] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 127.968709] ? cap_capable+0xdb/0x3b0 [ 127.968727] ? security_capable+0x2f/0x90 [ 127.968743] vfs_get_tree+0x93/0x340 [ 127.968761] path_mount+0x132d/0x1dd0 [ 127.968776] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 127.968792] ? __pfx_path_mount+0x10/0x10 [ 127.968805] ? kmem_cache_free+0x2a1/0x540 [ 127.968817] ? putname.part.0+0x11b/0x160 [ 127.968834] ? getname_flags.part.0+0x1c6/0x540 [ 127.968853] ? putname.part.0+0x11b/0x160 [ 127.968871] __x64_sys_mount+0x27b/0x300 [ 127.968885] ? __pfx___x64_sys_mount+0x10/0x10 [ 127.968903] do_syscall_64+0xbf/0x360 [ 127.968917] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.968930] RIP: 0033:0x7fc21c4c904a [ 127.968939] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.968951] RSP: 002b:00007fc219a3cfa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 127.968963] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fc21c4c904a [ 127.968972] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007fc219a3d000 [ 127.968979] RBP: 00007fc219a3d040 R08: 00007fc219a3d040 R09: 0000000020000000 [ 127.968987] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000 [ 127.968994] R13: 0000000020000100 R14: 00007fc219a3d000 R15: 0000000020011000 [ 127.969010] [ 127.969592] kmemleak: Kernel memory leak detector disabled [ 127.969596] kmemleak: Object (percpu) 0x607f1a63ddb0 (size 8): [ 127.969604] kmemleak: comm "syz-executor.5", pid 4031, jiffies 4294794527 [ 127.969611] kmemleak: min_count = 1 [ 127.969615] kmemleak: count = 0 [ 127.969619] kmemleak: flags = 0x21 [ 127.969623] kmemleak: checksum = 0 [ 127.969626] kmemleak: backtrace: [ 127.969630] pcpu_alloc_noprof+0x87a/0x1170 [ 127.969646] percpu_ref_init+0x37/0x400 [ 127.969657] blkg_alloc+0xe9/0x7d0 [ 127.969670] blkg_create+0xe08/0x1420 [ 127.969682] bio_associate_blkg_from_css+0xe06/0x1380 [ 127.969697] bio_associate_blkg+0x10e/0x2a0 [ 127.969710] bio_init+0x2dd/0x570 [ 127.969724] bio_alloc_bioset+0x2cf/0x8c0 [ 127.969739] submit_bh_wbc+0x286/0x720 [ 127.969756] __bread_gfp+0x18b/0x3c0 [ 127.969767] fat_fill_super+0x5e1/0x3fd0 [ 127.969784] get_tree_bdev_flags+0x38a/0x620 [ 127.969794] vfs_get_tree+0x93/0x340 [ 127.969810] path_mount+0x132d/0x1dd0 [ 127.969821] __x64_sys_mount+0x27b/0x300 [ 127.969833] do_syscall_64+0xbf/0x360 11:37:27 executing program 1: r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$security_selinux(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f0000000240)='system_u:object_r:zero_device_t:s0\x00', 0x23, 0x0) 11:37:27 executing program 7: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140), 0x8) sendmsg(r0, &(0x7f0000000540)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000080)="f9de6c8a", 0x4}], 0x1}, 0x0) [ 128.010282] FAT-fs (loop3): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 128.028582] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 11:37:27 executing program 7: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001480), 0x0, 0x0) readv(r0, &(0x7f00000002c0)=[{&(0x7f0000000180)=""/2, 0x2}], 0x1) 11:37:27 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x43, 0x0, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x301, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 11:37:27 executing program 3: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000014c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000001580)={{0x1, 0x1, 0x18}, './file1\x00'}) 11:37:27 executing program 1: r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffb000/0x3000)=nil) shmctl$IPC_RMID(r0, 0x0) 11:37:27 executing program 2: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000cc0), 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) 11:37:27 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) 11:37:27 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000ddf4655fddf4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000014100)) [ 128.153034] loop4: detected capacity change from 0 to 4 [ 128.154854] loop5: detected capacity change from 0 to 280 [ 128.158120] EXT4-fs (loop4): fragment/cluster size (32768) != block size (2048) [ 128.159776] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 11:37:27 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r0, 0x400448e4, &(0x7f0000000040)={0x0, 0x1}) 11:37:27 executing program 7: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001480), 0x0, 0x0) readv(r0, &(0x7f00000002c0)=[{&(0x7f0000000180)=""/2, 0x2}], 0x1) 11:37:27 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x20, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0) 11:37:27 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736602106c00080120000200004000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0f", 0x10, 0x10000}, {&(0x7f0000010600)="53595a4b414c4c45522020080000e980325132510000e980325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100079e970325132510000e970325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200079e970325132510000e970325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532", 0xc5, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100079e970325132510000e97032510300000000002e2e20202020202020202010", 0x2c, 0x11800}], 0x0, &(0x7f0000011000)) futimesat(r0, &(0x7f0000000540)='./file0\x00', 0x0) getdents64(r0, &(0x7f0000000040)=""/138, 0x8a) 11:37:27 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000ddf4655fddf4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000014100)) 11:37:27 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) listen(r0, 0x0) 11:37:27 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x43, 0x0, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x301, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 11:37:27 executing program 1: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0x0, 0x0, "1e", "74408d", 0x0, "a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f1fd6c2cf47288f8895dca6e8681f1f7d4666d7035828c4690bca329e3b"}}}, 0x52) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) close(r0) [ 128.259613] loop5: detected capacity change from 0 to 280 [ 128.260815] loop4: detected capacity change from 0 to 4 [ 128.263962] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 128.265959] EXT4-fs (loop4): fragment/cluster size (32768) != block size (2048) 11:37:27 executing program 0: r0 = socket$inet(0x2, 0x3, 0x26) sendto$inet(r0, 0x0, 0xf, 0x0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10) 11:37:27 executing program 7: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001480), 0x0, 0x0) readv(r0, &(0x7f00000002c0)=[{&(0x7f0000000180)=""/2, 0x2}], 0x1) 11:37:27 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(0x0, 0xffffffffffffffff) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r0) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r1, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x28, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5}]}, 0x28}}, 0x0) 11:37:27 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) listen(r0, 0x0) 11:37:27 executing program 0: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002cc0), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40bc5311, &(0x7f0000000080)={0x80}) 11:37:27 executing program 1: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0x0, 0x0, "1e", "74408d", 0x0, "a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f1fd6c2cf47288f8895dca6e8681f1f7d4666d7035828c4690bca329e3b"}}}, 0x52) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) close(r0) 11:37:27 executing program 5: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640), 0x1100) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x86, &(0x7f0000000180)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "8d00a05de92cd2e174cbfb618b6904b473c3fe05ed91a72b627000", "a17dfcb460646196dff50ec71ded0b59", {"a979159a1b08243b764e33f13a6a2006", "a8e72dde502d5382c448b363b844c5e6"}}}}}}}, 0x0) recvmmsg(r0, &(0x7f0000005bc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) recvmmsg(r0, &(0x7f00000053c0), 0x0, 0x0, 0x0) [ 128.449792] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 128.450894] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 128.451710] CPU: 1 UID: 0 PID: 4090 Comm: syz-executor.7 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 128.452839] Tainted: [W]=WARN [ 128.453846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 128.455852] RIP: 0010:perf_tp_event+0x175/0xe70 [ 128.456907] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 128.461249] RSP: 0018:ffff888047b0f800 EFLAGS: 00010212 [ 128.462807] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 128.463479] RDX: ffff888017123700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 128.464166] RBP: ffff888047b0fa70 R08: ffff88806cf31340 R09: ffffe8ffffd15da8 [ 128.464837] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 128.465496] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 128.466158] FS: 0000555593bea400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 128.466911] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 128.467457] CR2: 0000555593bebc18 CR3: 00000000163c6000 CR4: 0000000000350ef0 [ 128.468138] Call Trace: [ 128.468388] [ 128.468611] ? arch_scale_cpu_capacity+0x17/0xa0 [ 128.469077] ? __pfx_perf_tp_event+0x10/0x10 [ 128.469503] ? __asan_memset+0x24/0x50 [ 128.469897] ? perf_trace_lock+0xb5/0x5d0 [ 128.470301] ? kvm_sched_clock_read+0x16/0x30 [ 128.470739] ? sched_clock+0x37/0x60 [ 128.471103] ? sched_clock_cpu+0x6c/0x4e0 [ 128.471503] ? lock_is_held_type+0x9e/0x120 [ 128.471932] ? perf_trace_run_bpf_submit+0xef/0x180 [ 128.472412] perf_trace_run_bpf_submit+0xef/0x180 [ 128.472881] perf_trace_lock+0x337/0x5d0 [ 128.473283] ? __pfx_perf_trace_lock+0x10/0x10 [ 128.473727] ? lock_acquire+0x15e/0x2f0 [ 128.474110] ? futex_ref_get+0x48/0x300 [ 128.474492] ? futex_ref_get+0x114/0x300 [ 128.474879] ? futex_hash+0x15c/0x390 [ 128.475242] lock_release+0x1ab/0x290 [ 128.475613] ? futex_hash+0x15c/0x390 [ 128.475990] futex_ref_get+0x119/0x300 [ 128.476364] ? futex_hash+0x15c/0x390 [ 128.476726] futex_hash+0x70/0x390 [ 128.477074] futex_wake+0x143/0x540 [ 128.477427] ? put_pid+0x1f/0x30 [ 128.477753] ? kernel_clone+0x204/0x7f0 [ 128.478131] ? __pfx_futex_wake+0x10/0x10 [ 128.478528] ? __pfx_kernel_clone+0x10/0x10 [ 128.478938] ? perf_trace_lock+0xb5/0x5d0 [ 128.479333] do_futex+0x26d/0x370 [ 128.479670] ? __pfx_do_futex+0x10/0x10 [ 128.480055] ? __pfx___do_sys_clone+0x10/0x10 [ 128.480479] ? find_held_lock+0x2b/0x80 [ 128.480867] __x64_sys_futex+0x1c9/0x4d0 [ 128.481254] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 128.481805] ? __pfx___x64_sys_futex+0x10/0x10 [ 128.482246] do_syscall_64+0xbf/0x360 [ 128.482605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.483087] RIP: 0033:0x7fdb8fc49b19 [ 128.483436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 128.485128] RSP: 002b:00007fff2672efe8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 128.485838] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdb8fc49b19 [ 128.486501] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdb8fd5cf68 [ 128.487166] RBP: 00007fdb8fd5cf60 R08: 00007fdb8d1bf700 R09: 0000000000000000 [ 128.487841] R10: 00007fdb8d1bf700 R11: 0000000000000246 R12: 00007fdb8fd610a8 [ 128.488500] R13: 00007fff2672f0f0 R14: 00007fdb8fd5cf60 R15: 000000000001f502 [ 128.489166] [ 128.489387] Modules linked in: [ 128.489725] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 128.490755] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 128.491547] CPU: 1 UID: 0 PID: 4090 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 128.492653] Tainted: [D]=DIE, [W]=WARN [ 128.493015] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 128.493791] RIP: 0010:perf_tp_event+0x175/0xe70 [ 128.494221] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 128.495832] RSP: 0018:ffff88806cf08a80 EFLAGS: 00010012 [ 128.496337] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 128.497123] RDX: ffff888017123700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 128.497914] RBP: ffff88806cf08cf0 R08: ffff88806cf31490 R09: ffffe8ffffd15da8 [ 128.498704] R10: 0000000000000000 R11: ffff888017722098 R12: dffffc0000000000 [ 128.499394] R13: 0000000000000024 R14: ffff88806cf31490 R15: dffffc0000000000 [ 128.500044] FS: 0000555593bea400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 128.500780] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 128.501338] CR2: 0000555593bebc18 CR3: 00000000163c6000 CR4: 0000000000350ef0 [ 128.501983] Call Trace: [ 128.502251] [ 128.502497] ? __pfx_perf_tp_event+0x10/0x10 [ 128.502920] ? kasan_save_stack+0x34/0x50 [ 128.503311] ? kasan_save_stack+0x24/0x50 [ 128.503693] ? kasan_save_track+0x14/0x30 [ 128.504087] ? __kasan_save_free_info+0x3a/0x60 [ 128.504520] ? __kasan_slab_free+0x3f/0x50 [ 128.504917] ? kmem_cache_free+0x2a1/0x540 [ 128.505312] ? dst_destroy+0x23c/0x340 [ 128.505682] ? rcu_core+0x7c8/0x1800 [ 128.506032] ? handle_softirqs+0x1b1/0x770 [ 128.506444] ? __irq_exit_rcu+0xc4/0x100 [ 128.506830] ? irq_exit_rcu+0x9/0x20 [ 128.507181] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 128.507652] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 128.508164] ? __sanitizer_cov_trace_const_cmp8+0x8/0x20 [ 128.508666] ? mas_pop_node+0xd8/0x340 [ 128.509038] ? mas_split+0x6e5/0x1590 [ 128.509392] ? mas_commit_b_node.isra.0+0x72/0xb0 [ 128.509838] ? mas_wr_bnode+0x12d/0x1b0 [ 128.510213] ? mas_wr_store_entry+0x940/0x2d40 [ 128.510637] ? mas_store_prealloc+0x622/0xb00 [ 128.511060] ? vma_complete+0xb62/0x12a0 [ 128.511440] ? __split_vma+0x9f9/0xde0 [ 128.511809] ? vma_modify+0xa9c/0x2030 [ 128.512176] ? vma_modify_flags+0x1b0/0x250 [ 128.512578] ? mprotect_fixup+0x1f4/0xba0 [ 128.512969] ? do_mprotect_pkey+0xa0f/0xd30 [ 128.513372] ? __x64_sys_mprotect+0x78/0xc0 [ 128.513768] ? kvm_sched_clock_read+0x16/0x30 [ 128.514187] ? sched_clock+0x37/0x60 [ 128.514538] ? sched_clock_cpu+0x6c/0x4e0 [ 128.514928] ? perf_trace_run_bpf_submit+0xef/0x180 [ 128.515391] perf_trace_run_bpf_submit+0xef/0x180 [ 128.515849] perf_trace_lock+0x337/0x5d0 [ 128.516233] ? place_entity+0x300/0x410 [ 128.516603] ? kvm_sched_clock_read+0x16/0x30 [ 128.517022] ? __pfx_perf_trace_lock+0x10/0x10 [ 128.517446] ? check_preempt_wakeup_fair+0x6e/0x950 [ 128.517909] ? sched_ttwu_pending+0x2e0/0x4a0 [ 128.518353] lock_release+0x1ab/0x290 [ 128.518712] ? ttwu_do_activate+0x1a4/0x8a0 [ 128.519115] _raw_spin_unlock+0x16/0x40 [ 128.519504] sched_ttwu_pending+0x2e0/0x4a0 [ 128.519927] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 128.520385] ? mark_held_locks+0x49/0x80 [ 128.520764] __flush_smp_call_function_queue+0x434/0x740 [ 128.521284] __sysvec_call_function_single+0x6d/0x370 [ 128.521768] sysvec_call_function_single+0xa1/0xc0 [ 128.522242] [ 128.522459] [ 128.522668] asm_sysvec_call_function_single+0x1a/0x20 [ 128.523159] RIP: 0010:oops_exit+0x0/0x50 [ 128.523550] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 128.525200] RSP: 0018:ffff888047b0f690 EFLAGS: 00000202 [ 128.525694] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f [ 128.526355] RDX: ffff888017123700 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 128.526999] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 128.527645] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888047b0f758 [ 128.528291] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000 [ 128.528941] ? add_taint+0x5f/0xd0 [ 128.529272] ? oops_end+0x4a/0xe0 [ 128.529605] oops_end+0x65/0xe0 [ 128.529920] exc_general_protection+0x1a2/0x330 [ 128.530351] asm_exc_general_protection+0x26/0x30 [ 128.530793] RIP: 0010:perf_tp_event+0x175/0xe70 [ 128.531218] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 128.532850] RSP: 0018:ffff888047b0f800 EFLAGS: 00010212 [ 128.533336] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 128.533976] RDX: ffff888017123700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 128.534612] RBP: ffff888047b0fa70 R08: ffff88806cf31340 R09: ffffe8ffffd15da8 [ 128.535254] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 128.535900] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 128.536529] ? perf_tp_event+0x167/0xe70 [ 128.536906] ? arch_scale_cpu_capacity+0x17/0xa0 [ 128.537338] ? __pfx_perf_tp_event+0x10/0x10 [ 128.537737] ? __asan_memset+0x24/0x50 [ 128.538107] ? perf_trace_lock+0xb5/0x5d0 [ 128.538485] ? kvm_sched_clock_read+0x16/0x30 [ 128.538896] ? sched_clock+0x37/0x60 [ 128.539365] ? sched_clock_cpu+0x6c/0x4e0 [ 128.539732] ? lock_is_held_type+0x9e/0x120 [ 128.540121] ? perf_trace_run_bpf_submit+0xef/0x180 [ 128.540563] perf_trace_run_bpf_submit+0xef/0x180 [ 128.540991] perf_trace_lock+0x337/0x5d0 [ 128.541350] ? __pfx_perf_trace_lock+0x10/0x10 [ 128.541753] ? lock_acquire+0x15e/0x2f0 [ 128.542101] ? futex_ref_get+0x48/0x300 [ 128.542450] ? futex_ref_get+0x114/0x300 [ 128.542799] ? futex_hash+0x15c/0x390 [ 128.543131] lock_release+0x1ab/0x290 [ 128.543471] ? futex_hash+0x15c/0x390 [ 128.543815] futex_ref_get+0x119/0x300 [ 128.544158] ? futex_hash+0x15c/0x390 [ 128.544489] futex_hash+0x70/0x390 [ 128.544802] futex_wake+0x143/0x540 [ 128.545135] ? put_pid+0x1f/0x30 [ 128.545436] ? kernel_clone+0x204/0x7f0 [ 128.545781] ? __pfx_futex_wake+0x10/0x10 [ 128.546140] ? __pfx_kernel_clone+0x10/0x10 [ 128.546512] ? perf_trace_lock+0xb5/0x5d0 [ 128.546874] do_futex+0x26d/0x370 [ 128.547183] ? __pfx_do_futex+0x10/0x10 [ 128.547528] ? __pfx___do_sys_clone+0x10/0x10 [ 128.547921] ? find_held_lock+0x2b/0x80 [ 128.548273] __x64_sys_futex+0x1c9/0x4d0 [ 128.548625] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 128.549120] ? __pfx___x64_sys_futex+0x10/0x10 [ 128.549521] do_syscall_64+0xbf/0x360 [ 128.549851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.550295] RIP: 0033:0x7fdb8fc49b19 [ 128.550614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 128.552146] RSP: 002b:00007fff2672efe8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 128.552792] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdb8fc49b19 [ 128.553395] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdb8fd5cf68 [ 128.553998] RBP: 00007fdb8fd5cf60 R08: 00007fdb8d1bf700 R09: 0000000000000000 [ 128.554601] R10: 00007fdb8d1bf700 R11: 0000000000000246 R12: 00007fdb8fd610a8 [ 128.555207] R13: 00007fff2672f0f0 R14: 00007fdb8fd5cf60 R15: 000000000001f502 [ 128.555822] [ 128.556029] Modules linked in: [ 128.556307] ---[ end trace 0000000000000000 ]--- [ 128.556310] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI [ 128.556705] RIP: 0010:perf_tp_event+0x175/0xe70 [ 128.557562] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 128.557937] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 128.558505] CPU: 0 UID: 0 PID: 4095 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 128.559981] RSP: 0018:ffff888047b0f800 EFLAGS: 00010212 [ 128.560866] Tainted: [D]=DIE, [W]=WARN [ 128.561297] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 128.561585] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 128.562163] RDX: ffff888017123700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 128.562784] RIP: 0010:perf_tp_event+0x175/0xe70 [ 128.563382] RBP: ffff888047b0fa70 R08: ffff88806cf31340 R09: ffffe8ffffd15da8 [ 128.563732] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 128.564336] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 128.565699] RSP: 0018:ffff888046f9f600 EFLAGS: 00010212 [ 128.566306] R13: 000000000000002c R14: ffff88806cf31340 R15: dffffc0000000000 [ 128.566317] FS: 0000555593bea400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000 [ 128.566712] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90006a2e000 [ 128.567310] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 128.567924] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 128.568520] CR2: 0000555593bebc18 CR3: 00000000163c6000 CR4: 0000000000350ef0 [ 128.568956] RBP: ffff888046f9f870 R08: ffff88806ce31340 R09: ffffe8ffffc15da8 [ 128.569533] Kernel panic - not syncing: Fatal exception in interrupt [ 128.571349] Kernel Offset: disabled [ 128.571649] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 11:37:28 Registers: info registers vcpu 0 RAX=ffff88806ce36fb8 RBX=ffff888015e84c10 RCX=1ffff11002bd0982 RDX=1ffff11002e7e602 RSI=ffff88806ce36fb8 RDI=ffff888015e84c10 RBP=ffff8880173f3010 RSP=ffff888047affd08 R8 =ffff888015e84c10 R9 =0000000e487c3040 R10=0000000000155cc0 R11=0000000000000000 R12=ffff88801c1ff811 R13=dffffc0000000000 R14=ffff88806ce36f80 R15=ffffffff81488aa0 RIP=ffffffff84b7abb8 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555564b3b400 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe3d00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d728000 CR3=0000000047ac2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000ff00000000000000000000000000 XMM01=000001000000000000000000000000ff XMM02=7463656a6e695f31313230385f7a7973 XMM03=ffffffff81be6a53ffffffff81be6a0d XMM04=ffffffff81be6be5ffffffff81be6bc8 XMM05=ffffffff81be6a7effffffff81be6a53 XMM06=ffffffff81be6a0dffffffff81b58361 XMM07=ffffffff81b5816affffffff812c8387 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000000a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888047b0f170 R8 =0000000000000000 R9 =ffffed1001717046 R10=0000000000000001 R11=313030203a505352 R12=000000000000000a R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555593bea400 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe0e00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555593bebc18 CR3=00000000163c6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fdb8fd307c000007fdb8fd307c8 XMM02=00007fdb8fd307e000007fdb8fd307c0 XMM03=00007fdb8fd307c800007fdb8fd307c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000