Warning: Permanently added '[localhost]:41233' (ECDSA) to the list of known hosts. 2025/09/01 11:52:04 fuzzer started 2025/09/01 11:52:05 dialing manager at localhost:35473 syzkaller login: [ 51.689512] cgroup: Unknown subsys name 'net' [ 51.748891] cgroup: Unknown subsys name 'cpuset' [ 51.761675] cgroup: Unknown subsys name 'rlimit' 2025/09/01 11:52:16 syscalls: 2214 2025/09/01 11:52:16 code coverage: enabled 2025/09/01 11:52:16 comparison tracing: enabled 2025/09/01 11:52:16 extra coverage: enabled 2025/09/01 11:52:16 setuid sandbox: enabled 2025/09/01 11:52:16 namespace sandbox: enabled 2025/09/01 11:52:16 Android sandbox: enabled 2025/09/01 11:52:16 fault injection: enabled 2025/09/01 11:52:16 leak checking: enabled 2025/09/01 11:52:16 net packet injection: enabled 2025/09/01 11:52:16 net device setup: enabled 2025/09/01 11:52:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 11:52:16 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 11:52:16 USB emulation: enabled 2025/09/01 11:52:16 hci packet injection: enabled 2025/09/01 11:52:16 wifi device emulation: enabled 2025/09/01 11:52:16 802.15.4 emulation: enabled 2025/09/01 11:52:16 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 11:52:16 fetching corpus: 49, signal 19383/22969 (executing program) 2025/09/01 11:52:16 fetching corpus: 99, signal 30686/35738 (executing program) 2025/09/01 11:52:16 fetching corpus: 149, signal 37983/44412 (executing program) 2025/09/01 11:52:16 fetching corpus: 199, signal 42112/49959 (executing program) 2025/09/01 11:52:16 fetching corpus: 249, signal 52148/60899 (executing program) 2025/09/01 11:52:16 fetching corpus: 299, signal 57971/67778 (executing program) 2025/09/01 11:52:16 fetching corpus: 349, signal 61361/72275 (executing program) 2025/09/01 11:52:16 fetching corpus: 399, signal 64895/76850 (executing program) 2025/09/01 11:52:17 fetching corpus: 449, signal 68418/81317 (executing program) 2025/09/01 11:52:17 fetching corpus: 499, signal 70729/84667 (executing program) 2025/09/01 11:52:17 fetching corpus: 549, signal 72370/87358 (executing program) 2025/09/01 11:52:17 fetching corpus: 599, signal 77574/93084 (executing program) 2025/09/01 11:52:17 fetching corpus: 649, signal 80790/97054 (executing program) 2025/09/01 11:52:17 fetching corpus: 699, signal 82474/99682 (executing program) 2025/09/01 11:52:17 fetching corpus: 749, signal 84092/102223 (executing program) 2025/09/01 11:52:17 fetching corpus: 799, signal 86137/105062 (executing program) 2025/09/01 11:52:17 fetching corpus: 849, signal 88220/107849 (executing program) 2025/09/01 11:52:17 fetching corpus: 899, signal 89446/109954 (executing program) 2025/09/01 11:52:18 fetching corpus: 949, signal 92195/113251 (executing program) 2025/09/01 11:52:18 fetching corpus: 999, signal 94030/115724 (executing program) 2025/09/01 11:52:18 fetching corpus: 1049, signal 96776/118875 (executing program) 2025/09/01 11:52:18 fetching corpus: 1099, signal 97854/120677 (executing program) 2025/09/01 11:52:18 fetching corpus: 1149, signal 99403/122868 (executing program) 2025/09/01 11:52:18 fetching corpus: 1199, signal 101276/125240 (executing program) 2025/09/01 11:52:18 fetching corpus: 1249, signal 103127/127529 (executing program) 2025/09/01 11:52:18 fetching corpus: 1299, signal 104676/129573 (executing program) 2025/09/01 11:52:18 fetching corpus: 1349, signal 105989/131416 (executing program) 2025/09/01 11:52:18 fetching corpus: 1399, signal 106878/132906 (executing program) 2025/09/01 11:52:18 fetching corpus: 1449, signal 108691/135041 (executing program) 2025/09/01 11:52:19 fetching corpus: 1499, signal 109749/136679 (executing program) 2025/09/01 11:52:19 fetching corpus: 1549, signal 111276/138553 (executing program) 2025/09/01 11:52:19 fetching corpus: 1599, signal 112178/140044 (executing program) 2025/09/01 11:52:19 fetching corpus: 1649, signal 113585/141820 (executing program) 2025/09/01 11:52:19 fetching corpus: 1699, signal 115390/143801 (executing program) 2025/09/01 11:52:19 fetching corpus: 1749, signal 116529/145308 (executing program) 2025/09/01 11:52:19 fetching corpus: 1799, signal 117245/146546 (executing program) 2025/09/01 11:52:19 fetching corpus: 1849, signal 119473/148673 (executing program) 2025/09/01 11:52:19 fetching corpus: 1899, signal 120396/149998 (executing program) 2025/09/01 11:52:19 fetching corpus: 1949, signal 121231/151261 (executing program) 2025/09/01 11:52:19 fetching corpus: 1999, signal 122548/152824 (executing program) 2025/09/01 11:52:19 fetching corpus: 2049, signal 123664/154156 (executing program) 2025/09/01 11:52:20 fetching corpus: 2099, signal 124348/155251 (executing program) 2025/09/01 11:52:20 fetching corpus: 2149, signal 125747/156732 (executing program) 2025/09/01 11:52:20 fetching corpus: 2199, signal 126598/157941 (executing program) 2025/09/01 11:52:20 fetching corpus: 2249, signal 127557/159125 (executing program) 2025/09/01 11:52:20 fetching corpus: 2299, signal 128307/160164 (executing program) 2025/09/01 11:52:20 fetching corpus: 2349, signal 129214/161337 (executing program) 2025/09/01 11:52:20 fetching corpus: 2399, signal 129877/162309 (executing program) 2025/09/01 11:52:20 fetching corpus: 2449, signal 130653/163382 (executing program) 2025/09/01 11:52:20 fetching corpus: 2499, signal 131761/164552 (executing program) 2025/09/01 11:52:20 fetching corpus: 2549, signal 132475/165552 (executing program) 2025/09/01 11:52:20 fetching corpus: 2599, signal 133059/166471 (executing program) 2025/09/01 11:52:21 fetching corpus: 2649, signal 133844/167487 (executing program) 2025/09/01 11:52:21 fetching corpus: 2699, signal 134648/168428 (executing program) 2025/09/01 11:52:21 fetching corpus: 2749, signal 135398/169351 (executing program) 2025/09/01 11:52:21 fetching corpus: 2799, signal 136036/170231 (executing program) 2025/09/01 11:52:21 fetching corpus: 2849, signal 136820/171142 (executing program) 2025/09/01 11:52:21 fetching corpus: 2899, signal 137336/171914 (executing program) 2025/09/01 11:52:21 fetching corpus: 2949, signal 137978/172749 (executing program) 2025/09/01 11:52:21 fetching corpus: 2999, signal 138583/173545 (executing program) 2025/09/01 11:52:21 fetching corpus: 3049, signal 139406/174405 (executing program) 2025/09/01 11:52:21 fetching corpus: 3099, signal 139840/175104 (executing program) 2025/09/01 11:52:21 fetching corpus: 3149, signal 140843/176055 (executing program) 2025/09/01 11:52:22 fetching corpus: 3199, signal 141537/176831 (executing program) 2025/09/01 11:52:22 fetching corpus: 3249, signal 142383/177711 (executing program) 2025/09/01 11:52:22 fetching corpus: 3299, signal 143003/178485 (executing program) 2025/09/01 11:52:22 fetching corpus: 3349, signal 143675/179198 (executing program) 2025/09/01 11:52:22 fetching corpus: 3399, signal 144213/179898 (executing program) 2025/09/01 11:52:22 fetching corpus: 3449, signal 144588/180541 (executing program) 2025/09/01 11:52:22 fetching corpus: 3499, signal 145168/181213 (executing program) 2025/09/01 11:52:22 fetching corpus: 3549, signal 145618/181861 (executing program) 2025/09/01 11:52:22 fetching corpus: 3599, signal 145920/182451 (executing program) 2025/09/01 11:52:22 fetching corpus: 3649, signal 146372/183090 (executing program) 2025/09/01 11:52:22 fetching corpus: 3699, signal 146934/183732 (executing program) 2025/09/01 11:52:23 fetching corpus: 3749, signal 147672/184417 (executing program) 2025/09/01 11:52:23 fetching corpus: 3799, signal 148368/185050 (executing program) 2025/09/01 11:52:23 fetching corpus: 3849, signal 148935/185646 (executing program) 2025/09/01 11:52:23 fetching corpus: 3899, signal 149456/186251 (executing program) 2025/09/01 11:52:23 fetching corpus: 3949, signal 150030/186799 (executing program) 2025/09/01 11:52:23 fetching corpus: 3999, signal 150575/187310 (executing program) 2025/09/01 11:52:23 fetching corpus: 4049, signal 151136/187847 (executing program) 2025/09/01 11:52:23 fetching corpus: 4099, signal 151777/188384 (executing program) 2025/09/01 11:52:23 fetching corpus: 4149, signal 152300/188886 (executing program) 2025/09/01 11:52:23 fetching corpus: 4199, signal 152922/189389 (executing program) 2025/09/01 11:52:23 fetching corpus: 4249, signal 153382/189856 (executing program) 2025/09/01 11:52:24 fetching corpus: 4299, signal 153848/190346 (executing program) 2025/09/01 11:52:24 fetching corpus: 4349, signal 154319/190807 (executing program) 2025/09/01 11:52:24 fetching corpus: 4399, signal 154653/191253 (executing program) 2025/09/01 11:52:24 fetching corpus: 4449, signal 155606/191751 (executing program) 2025/09/01 11:52:24 fetching corpus: 4499, signal 156145/192189 (executing program) 2025/09/01 11:52:24 fetching corpus: 4549, signal 156478/192592 (executing program) 2025/09/01 11:52:24 fetching corpus: 4599, signal 157097/192992 (executing program) 2025/09/01 11:52:24 fetching corpus: 4649, signal 157566/193381 (executing program) 2025/09/01 11:52:24 fetching corpus: 4699, signal 158029/193757 (executing program) 2025/09/01 11:52:24 fetching corpus: 4749, signal 158442/193988 (executing program) 2025/09/01 11:52:25 fetching corpus: 4799, signal 158850/194000 (executing program) 2025/09/01 11:52:25 fetching corpus: 4849, signal 159245/194004 (executing program) 2025/09/01 11:52:25 fetching corpus: 4899, signal 159848/194017 (executing program) 2025/09/01 11:52:25 fetching corpus: 4949, signal 160264/194029 (executing program) 2025/09/01 11:52:25 fetching corpus: 4999, signal 160514/194046 (executing program) 2025/09/01 11:52:25 fetching corpus: 5049, signal 160830/194047 (executing program) 2025/09/01 11:52:25 fetching corpus: 5099, signal 161365/194062 (executing program) 2025/09/01 11:52:25 fetching corpus: 5149, signal 161949/194089 (executing program) 2025/09/01 11:52:25 fetching corpus: 5199, signal 162565/194095 (executing program) 2025/09/01 11:52:25 fetching corpus: 5249, signal 162922/194103 (executing program) 2025/09/01 11:52:25 fetching corpus: 5299, signal 163318/194127 (executing program) 2025/09/01 11:52:26 fetching corpus: 5349, signal 163656/194139 (executing program) 2025/09/01 11:52:26 fetching corpus: 5399, signal 163886/194144 (executing program) 2025/09/01 11:52:26 fetching corpus: 5449, signal 164245/194145 (executing program) 2025/09/01 11:52:26 fetching corpus: 5499, signal 165130/194170 (executing program) 2025/09/01 11:52:26 fetching corpus: 5549, signal 165650/194178 (executing program) 2025/09/01 11:52:26 fetching corpus: 5599, signal 166076/194201 (executing program) 2025/09/01 11:52:26 fetching corpus: 5649, signal 166813/194222 (executing program) 2025/09/01 11:52:26 fetching corpus: 5699, signal 167467/194228 (executing program) 2025/09/01 11:52:26 fetching corpus: 5749, signal 167909/194229 (executing program) 2025/09/01 11:52:26 fetching corpus: 5799, signal 168189/194231 (executing program) 2025/09/01 11:52:26 fetching corpus: 5848, signal 168496/194234 (executing program) 2025/09/01 11:52:27 fetching corpus: 5897, signal 168759/194237 (executing program) 2025/09/01 11:52:27 fetching corpus: 5945, signal 169422/194243 (executing program) 2025/09/01 11:52:27 fetching corpus: 5995, signal 169914/194248 (executing program) 2025/09/01 11:52:27 fetching corpus: 6043, signal 170220/194277 (executing program) 2025/09/01 11:52:27 fetching corpus: 6093, signal 170510/194299 (executing program) 2025/09/01 11:52:27 fetching corpus: 6143, signal 170979/194313 (executing program) 2025/09/01 11:52:27 fetching corpus: 6192, signal 171428/194315 (executing program) 2025/09/01 11:52:27 fetching corpus: 6242, signal 171753/194315 (executing program) 2025/09/01 11:52:27 fetching corpus: 6291, signal 172162/194327 (executing program) 2025/09/01 11:52:27 fetching corpus: 6341, signal 172442/194341 (executing program) 2025/09/01 11:52:27 fetching corpus: 6390, signal 173047/194353 (executing program) 2025/09/01 11:52:28 fetching corpus: 6437, signal 173500/194368 (executing program) 2025/09/01 11:52:28 fetching corpus: 6487, signal 173842/194370 (executing program) 2025/09/01 11:52:28 fetching corpus: 6537, signal 174224/194402 (executing program) 2025/09/01 11:52:28 fetching corpus: 6586, signal 174569/194421 (executing program) 2025/09/01 11:52:28 fetching corpus: 6636, signal 174909/194423 (executing program) 2025/09/01 11:52:28 fetching corpus: 6686, signal 175206/194436 (executing program) 2025/09/01 11:52:28 fetching corpus: 6735, signal 175510/194442 (executing program) 2025/09/01 11:52:28 fetching corpus: 6785, signal 175826/194464 (executing program) 2025/09/01 11:52:28 fetching corpus: 6835, signal 176250/194480 (executing program) 2025/09/01 11:52:28 fetching corpus: 6885, signal 176528/194483 (executing program) 2025/09/01 11:52:28 fetching corpus: 6935, signal 176879/194485 (executing program) 2025/09/01 11:52:28 fetching corpus: 6985, signal 177292/194490 (executing program) 2025/09/01 11:52:28 fetching corpus: 7035, signal 177646/194495 (executing program) 2025/09/01 11:52:29 fetching corpus: 7085, signal 178091/194532 (executing program) 2025/09/01 11:52:29 fetching corpus: 7135, signal 178300/194537 (executing program) 2025/09/01 11:52:29 fetching corpus: 7185, signal 178534/194545 (executing program) 2025/09/01 11:52:29 fetching corpus: 7235, signal 178957/194550 (executing program) 2025/09/01 11:52:29 fetching corpus: 7285, signal 179312/194560 (executing program) 2025/09/01 11:52:29 fetching corpus: 7335, signal 179670/194560 (executing program) 2025/09/01 11:52:29 fetching corpus: 7385, signal 179904/194566 (executing program) 2025/09/01 11:52:29 fetching corpus: 7435, signal 180230/194568 (executing program) 2025/09/01 11:52:29 fetching corpus: 7485, signal 180500/194570 (executing program) 2025/09/01 11:52:29 fetching corpus: 7535, signal 181038/194585 (executing program) 2025/09/01 11:52:29 fetching corpus: 7585, signal 181311/194587 (executing program) 2025/09/01 11:52:30 fetching corpus: 7635, signal 181620/194588 (executing program) 2025/09/01 11:52:30 fetching corpus: 7685, signal 181893/194604 (executing program) 2025/09/01 11:52:30 fetching corpus: 7734, signal 182217/194652 (executing program) 2025/09/01 11:52:30 fetching corpus: 7783, signal 182855/194671 (executing program) 2025/09/01 11:52:30 fetching corpus: 7833, signal 183111/194689 (executing program) 2025/09/01 11:52:30 fetching corpus: 7883, signal 183397/194693 (executing program) 2025/09/01 11:52:30 fetching corpus: 7932, signal 183743/194694 (executing program) 2025/09/01 11:52:30 fetching corpus: 7982, signal 184082/194695 (executing program) 2025/09/01 11:52:30 fetching corpus: 8032, signal 184384/194710 (executing program) 2025/09/01 11:52:30 fetching corpus: 8082, signal 184685/194714 (executing program) 2025/09/01 11:52:30 fetching corpus: 8132, signal 184871/194717 (executing program) 2025/09/01 11:52:30 fetching corpus: 8182, signal 185129/194722 (executing program) 2025/09/01 11:52:30 fetching corpus: 8232, signal 185352/194727 (executing program) 2025/09/01 11:52:31 fetching corpus: 8282, signal 185624/194734 (executing program) 2025/09/01 11:52:31 fetching corpus: 8332, signal 185915/194805 (executing program) 2025/09/01 11:52:31 fetching corpus: 8382, signal 186321/194819 (executing program) 2025/09/01 11:52:31 fetching corpus: 8432, signal 186541/194819 (executing program) 2025/09/01 11:52:31 fetching corpus: 8482, signal 186754/194822 (executing program) 2025/09/01 11:52:31 fetching corpus: 8532, signal 186951/194823 (executing program) 2025/09/01 11:52:31 fetching corpus: 8582, signal 187212/194852 (executing program) 2025/09/01 11:52:31 fetching corpus: 8632, signal 187507/194852 (executing program) 2025/09/01 11:52:31 fetching corpus: 8682, signal 189430/194863 (executing program) 2025/09/01 11:52:31 fetching corpus: 8732, signal 189665/194864 (executing program) 2025/09/01 11:52:31 fetching corpus: 8782, signal 190229/194867 (executing program) 2025/09/01 11:52:32 fetching corpus: 8831, signal 190527/194880 (executing program) 2025/09/01 11:52:32 fetching corpus: 8880, signal 190767/194883 (executing program) 2025/09/01 11:52:32 fetching corpus: 8930, signal 190948/194893 (executing program) 2025/09/01 11:52:32 fetching corpus: 8980, signal 191227/194898 (executing program) 2025/09/01 11:52:32 fetching corpus: 9029, signal 191505/194921 (executing program) 2025/09/01 11:52:32 fetching corpus: 9079, signal 191782/194934 (executing program) 2025/09/01 11:52:32 fetching corpus: 9119, signal 191976/194936 (executing program) 2025/09/01 11:52:32 fetching corpus: 9119, signal 191976/194936 (executing program) 2025/09/01 11:52:34 starting 8 fuzzer processes 11:52:34 executing program 0: setresgid(0x0, 0x0, 0xffffffffffffffff) 11:52:34 executing program 2: add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffa) 11:52:34 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x8, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) 11:52:35 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000140)={0xfff8, 0x0, 0x0, 0x7}) 11:52:35 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'nl80211\x00'}) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getgroups(0x1, &(0x7f0000000080)=[0xffffffffffffffff]) getgroups(0x2, &(0x7f0000000240)=[r0, r0]) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000002c0)=0xc) getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x2}, 0xb, &(0x7f0000000240)={0x0}}, 0x0) getsockname$unix(r2, &(0x7f00000004c0), &(0x7f0000000300)=0x6e) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001240)={0x1c, r5, 0x5, 0x0, 0x25dfdbfd, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r5, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x9, 0x1}, {0x5c, 0x1}, {0x0, 0x4}], "df5f66ca4f0ec51d"}}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x850) r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001340), 0x3, 0x0) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000000)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) 11:52:35 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue0\x00'}) 11:52:35 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) statx(r0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0) unlinkat(r0, &(0x7f0000000140)='./file1\x00', 0x0) [ 81.533163] audit: type=1400 audit(1756727555.160:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:52:35 executing program 7: pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 82.814061] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.815605] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.816606] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.818657] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.821273] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.825554] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.826629] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.828657] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.829901] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.830837] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.832625] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.841918] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.843229] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.853292] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.854746] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.876113] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.881096] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.889662] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.893456] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.901421] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.937460] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.943054] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 82.944580] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.946463] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.948847] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 82.958850] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 82.960311] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.962277] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 82.966377] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 82.969929] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 82.970989] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 82.974135] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 82.978085] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 82.981203] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 82.993904] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 82.995264] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 82.997655] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 83.008401] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 83.010221] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 83.011915] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 84.898793] Bluetooth: hci2: command tx timeout [ 84.899933] Bluetooth: hci0: command tx timeout [ 84.899984] Bluetooth: hci1: command tx timeout [ 85.024806] Bluetooth: hci4: command tx timeout [ 85.025574] Bluetooth: hci3: command tx timeout [ 85.088563] Bluetooth: hci6: command tx timeout [ 85.088583] Bluetooth: hci5: command tx timeout [ 85.089115] Bluetooth: hci7: command tx timeout [ 86.943766] Bluetooth: hci2: command tx timeout [ 86.943858] Bluetooth: hci0: command tx timeout [ 86.944793] Bluetooth: hci1: command tx timeout [ 87.071942] Bluetooth: hci4: command tx timeout [ 87.072381] Bluetooth: hci3: command tx timeout [ 87.135747] Bluetooth: hci7: command tx timeout [ 87.138266] Bluetooth: hci6: command tx timeout [ 87.138305] Bluetooth: hci5: command tx timeout [ 88.991962] Bluetooth: hci0: command tx timeout [ 88.992973] Bluetooth: hci1: command tx timeout [ 88.993231] Bluetooth: hci2: command tx timeout [ 89.119927] Bluetooth: hci3: command tx timeout [ 89.120346] Bluetooth: hci4: command tx timeout [ 89.183743] Bluetooth: hci6: command tx timeout [ 89.184191] Bluetooth: hci7: command tx timeout [ 89.184229] Bluetooth: hci5: command tx timeout [ 91.039906] Bluetooth: hci2: command tx timeout [ 91.041493] Bluetooth: hci1: command tx timeout [ 91.042257] Bluetooth: hci0: command tx timeout [ 91.167757] Bluetooth: hci3: command tx timeout [ 91.167771] Bluetooth: hci4: command tx timeout [ 91.231858] Bluetooth: hci5: command tx timeout [ 91.231950] Bluetooth: hci6: command tx timeout [ 91.232292] Bluetooth: hci7: command tx timeout [ 120.952166] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.952869] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.094870] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.095479] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.283836] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.284447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.417913] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.418560] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.631245] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.631989] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.707082] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.707779] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.802877] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.803484] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.830004] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.830577] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.849998] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.850560] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.939467] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.940161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.980897] loop5: detected capacity change from 0 to 6 [ 121.991501] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.992668] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.998470] FAT-fs (loop5): Directory bread(block 6) failed [ 122.002737] FAT-fs (loop5): Directory bread(block 7) failed [ 122.003573] FAT-fs (loop5): Directory bread(block 8) failed [ 122.005721] FAT-fs (loop5): Directory bread(block 9) failed [ 122.013629] FAT-fs (loop5): Directory bread(block 6) failed [ 122.015893] FAT-fs (loop5): Directory bread(block 7) failed [ 122.017756] FAT-fs (loop5): Directory bread(block 8) failed [ 122.018244] FAT-fs (loop5): Directory bread(block 9) failed [ 122.026741] FAT-fs (loop5): Directory bread(block 6) failed [ 122.027293] FAT-fs (loop5): Directory bread(block 7) failed [ 122.082719] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.083322] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.102054] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.102655] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.148678] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.149479] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.194247] audit: type=1400 audit(1756727595.822:8): avc: denied { open } for pid=3884 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.201234] audit: type=1400 audit(1756727595.822:9): avc: denied { kernel } for pid=3884 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.214491] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.215162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.269539] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.270583] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.412987] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2 [ 122.416206] random: crng reseeded on system resumption [ 122.463635] random: crng reseeded on system resumption [ 122.501867] syz-executor.3 (3891) used greatest stack depth: 23360 bytes left 11:53:16 executing program 2: add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffa) 11:53:16 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) getsockopt$inet6_int(r0, 0x29, 0x1, 0x0, &(0x7f0000000080)) 11:53:16 executing program 1: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) statx(r0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0) unlinkat(r0, &(0x7f0000000140)='./file1\x00', 0x0) 11:53:16 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) statx(r0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0) unlinkat(r0, &(0x7f0000000140)='./file1\x00', 0x0) 11:53:16 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue0\x00'}) 11:53:16 executing program 0: setresgid(0x0, 0x0, 0xffffffffffffffff) 11:53:16 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_TIMESTAMP(r0, 0x1, 0xb, &(0x7f0000000000), 0x4) 11:53:16 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'nl80211\x00'}) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getgroups(0x1, &(0x7f0000000080)=[0xffffffffffffffff]) getgroups(0x2, &(0x7f0000000240)=[r0, r0]) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000002c0)=0xc) getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x2}, 0xb, &(0x7f0000000240)={0x0}}, 0x0) getsockname$unix(r2, &(0x7f00000004c0), &(0x7f0000000300)=0x6e) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001240)={0x1c, r5, 0x5, 0x0, 0x25dfdbfd, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r5, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x9, 0x1}, {0x5c, 0x1}, {0x0, 0x4}], "df5f66ca4f0ec51d"}}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x850) r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001340), 0x3, 0x0) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000000)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) [ 122.542277] loop5: detected capacity change from 0 to 6 [ 122.551087] loop1: detected capacity change from 0 to 6 [ 122.556203] FAT-fs (loop5): Directory bread(block 6) failed [ 122.556671] FAT-fs (loop5): Directory bread(block 7) failed [ 122.559048] FAT-fs (loop5): Directory bread(block 8) failed [ 122.559512] FAT-fs (loop5): Directory bread(block 9) failed [ 122.566839] FAT-fs (loop1): Directory bread(block 6) failed [ 122.567332] FAT-fs (loop1): Directory bread(block 7) failed [ 122.570964] FAT-fs (loop1): Directory bread(block 8) failed [ 122.571430] FAT-fs (loop1): Directory bread(block 9) failed [ 122.574657] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2 [ 122.579988] FAT-fs (loop5): Directory bread(block 6) failed [ 122.580449] FAT-fs (loop5): Directory bread(block 7) failed [ 122.586280] FAT-fs (loop5): Directory bread(block 8) failed [ 122.586818] FAT-fs (loop5): Directory bread(block 9) failed [ 122.588974] random: crng reseeded on system resumption [ 122.593788] FAT-fs (loop5): Directory bread(block 6) failed [ 122.593887] FAT-fs (loop1): Directory bread(block 6) failed [ 122.594257] FAT-fs (loop5): Directory bread(block 7) failed [ 122.599475] FAT-fs (loop1): Directory bread(block 7) failed 11:53:16 executing program 0: setresgid(0x0, 0x0, 0xffffffffffffffff) 11:53:16 executing program 2: add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffa) [ 122.602112] FAT-fs (loop1): Directory bread(block 8) failed [ 122.605223] FAT-fs (loop1): Directory bread(block 9) failed [ 122.612067] FAT-fs (loop1): Directory bread(block 6) failed [ 122.614913] FAT-fs (loop1): Directory bread(block 7) failed 11:53:16 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue0\x00'}) 11:53:16 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'nl80211\x00'}) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getgroups(0x1, &(0x7f0000000080)=[0xffffffffffffffff]) getgroups(0x2, &(0x7f0000000240)=[r0, r0]) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000002c0)=0xc) getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x2}, 0xb, &(0x7f0000000240)={0x0}}, 0x0) getsockname$unix(r2, &(0x7f00000004c0), &(0x7f0000000300)=0x6e) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001240)={0x1c, r5, 0x5, 0x0, 0x25dfdbfd, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r5, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x9, 0x1}, {0x5c, 0x1}, {0x0, 0x4}], "df5f66ca4f0ec51d"}}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x850) r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001340), 0x3, 0x0) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000000)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) 11:53:16 executing program 7: r0 = fsopen(&(0x7f0000000000)='securityfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0) r1 = dup2(r0, r0) fsmount(r1, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) 11:53:16 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) statx(r0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0) unlinkat(r0, &(0x7f0000000140)='./file1\x00', 0x0) 11:53:16 executing program 1: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) statx(r0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0) unlinkat(r0, &(0x7f0000000140)='./file1\x00', 0x0) 11:53:16 executing program 2: add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffa) 11:53:16 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'nl80211\x00'}) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getgroups(0x1, &(0x7f0000000080)=[0xffffffffffffffff]) getgroups(0x2, &(0x7f0000000240)=[r0, r0]) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000002c0)=0xc) getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x2}, 0xb, &(0x7f0000000240)={0x0}}, 0x0) getsockname$unix(r2, &(0x7f00000004c0), &(0x7f0000000300)=0x6e) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001240)={0x1c, r5, 0x5, 0x0, 0x25dfdbfd, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r5, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x9, 0x1}, {0x5c, 0x1}, {0x0, 0x4}], "df5f66ca4f0ec51d"}}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x850) r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001340), 0x3, 0x0) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000000)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) [ 122.687852] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2 [ 122.702164] random: crng reseeded on system resumption 11:53:16 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r2, 0x5423, &(0x7f0000000080)={0x3, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) [ 122.708040] loop5: detected capacity change from 0 to 6 [ 122.723403] loop1: detected capacity change from 0 to 6 [ 122.738029] FAT-fs (loop1): Directory bread(block 6) failed [ 122.746975] FAT-fs (loop1): Directory bread(block 7) failed [ 122.750630] FAT-fs (loop1): Directory bread(block 8) failed [ 122.752748] FAT-fs (loop1): Directory bread(block 9) failed [ 122.753516] FAT-fs (loop5): Directory bread(block 6) failed [ 122.755251] FAT-fs (loop5): Directory bread(block 7) failed [ 122.759624] FAT-fs (loop1): Directory bread(block 6) failed [ 122.761286] FAT-fs (loop1): Directory bread(block 7) failed [ 122.761975] FAT-fs (loop5): Directory bread(block 8) failed [ 122.762890] FAT-fs (loop1): Directory bread(block 8) failed [ 122.763356] FAT-fs (loop1): Directory bread(block 9) failed [ 122.764339] FAT-fs (loop5): Directory bread(block 9) failed [ 122.764595] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2 [ 122.766896] FAT-fs (loop1): Directory bread(block 6) failed [ 122.768243] FAT-fs (loop1): Directory bread(block 7) failed [ 122.772323] random: crng reseeded on system resumption [ 122.777076] FAT-fs (loop5): Directory bread(block 6) failed [ 122.778082] FAT-fs (loop5): Directory bread(block 7) failed [ 122.781318] FAT-fs (loop5): Directory bread(block 8) failed [ 122.785643] FAT-fs (loop5): Directory bread(block 9) failed [ 122.791817] FAT-fs (loop5): Directory bread(block 6) failed [ 122.794819] FAT-fs (loop5): Directory bread(block 7) failed 11:53:16 executing program 0: setresgid(0x0, 0x0, 0xffffffffffffffff) 11:53:16 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r2, 0x5423, &(0x7f0000000080)={0x3, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) 11:53:16 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'nl80211\x00'}) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getgroups(0x1, &(0x7f0000000080)=[0xffffffffffffffff]) getgroups(0x2, &(0x7f0000000240)=[r0, r0]) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000002c0)=0xc) getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x2}, 0xb, &(0x7f0000000240)={0x0}}, 0x0) getsockname$unix(r2, &(0x7f00000004c0), &(0x7f0000000300)=0x6e) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001240)={0x1c, r5, 0x5, 0x0, 0x25dfdbfd, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r5, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x9, 0x1}, {0x5c, 0x1}, {0x0, 0x4}], "df5f66ca4f0ec51d"}}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x850) r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001340), 0x3, 0x0) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000000)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) 11:53:16 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue0\x00'}) 11:53:16 executing program 2: openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x6000, 0x0) 11:53:16 executing program 1: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) statx(r0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0) unlinkat(r0, &(0x7f0000000140)='./file1\x00', 0x0) 11:53:16 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) statx(r0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0) unlinkat(r0, &(0x7f0000000140)='./file1\x00', 0x0) 11:53:16 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'nl80211\x00'}) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getgroups(0x1, &(0x7f0000000080)=[0xffffffffffffffff]) getgroups(0x2, &(0x7f0000000240)=[r0, r0]) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000002c0)=0xc) getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x2}, 0xb, &(0x7f0000000240)={0x0}}, 0x0) getsockname$unix(r2, &(0x7f00000004c0), &(0x7f0000000300)=0x6e) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001240)={0x1c, r5, 0x5, 0x0, 0x25dfdbfd, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r5, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x9, 0x1}, {0x5c, 0x1}, {0x0, 0x4}], "df5f66ca4f0ec51d"}}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x850) r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001340), 0x3, 0x0) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000000)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) [ 122.928734] loop5: detected capacity change from 0 to 6 [ 122.938264] loop1: detected capacity change from 0 to 6 [ 122.948644] FAT-fs (loop1): Directory bread(block 6) failed [ 122.949164] FAT-fs (loop1): Directory bread(block 7) failed [ 122.950396] FAT-fs (loop1): Directory bread(block 8) failed [ 122.951462] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2 [ 122.955236] random: crng reseeded on system resumption [ 122.956429] FAT-fs (loop1): Directory bread(block 9) failed 11:53:16 executing program 2: r0 = epoll_create(0x2b) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x20000011}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)={0x20000000}) [ 122.962718] FAT-fs (loop5): Directory bread(block 6) failed [ 122.963235] FAT-fs (loop5): Directory bread(block 7) failed [ 122.966214] FAT-fs (loop1): Directory bread(block 6) failed [ 122.967757] FAT-fs (loop1): Directory bread(block 7) failed [ 122.969962] FAT-fs (loop5): Directory bread(block 8) failed [ 122.970441] FAT-fs (loop5): Directory bread(block 9) failed [ 122.970447] FAT-fs (loop1): Directory bread(block 8) failed [ 122.972415] FAT-fs (loop1): Directory bread(block 9) failed [ 122.976387] FAT-fs (loop1): Directory bread(block 6) failed [ 122.978412] FAT-fs (loop1): Directory bread(block 7) failed 11:53:16 executing program 6: unlinkat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0) pivot_root(&(0x7f0000000400)='./file0\x00', 0x0) 11:53:16 executing program 0: prctl$PR_SET_SECCOMP(0x4, 0x2, 0x0) [ 122.999725] FAT-fs (loop5): Directory bread(block 6) failed [ 123.000230] FAT-fs (loop5): Directory bread(block 7) failed [ 123.000791] FAT-fs (loop5): Directory bread(block 8) failed [ 123.001261] FAT-fs (loop5): Directory bread(block 9) failed [ 123.021080] audit: type=1400 audit(1756727596.644:10): avc: denied { block_suspend } for pid=3955 comm="syz-executor.2" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [ 123.025825] FAT-fs (loop5): Directory bread(block 6) failed [ 123.038510] FAT-fs (loop5): Directory bread(block 7) failed 11:53:16 executing program 2: r0 = epoll_create(0x2b) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x20000011}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)={0x20000000}) 11:53:16 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lremovexattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'nl80211\x00'}) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getgroups(0x1, &(0x7f0000000080)=[0xffffffffffffffff]) getgroups(0x2, &(0x7f0000000240)=[r0, r0]) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000002c0)=0xc) getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = dup(r1) sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x2}, 0xb, &(0x7f0000000240)={0x0}}, 0x0) getsockname$unix(r2, &(0x7f00000004c0), &(0x7f0000000300)=0x6e) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001240)={0x1c, r5, 0x5, 0x0, 0x25dfdbfd, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r5, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x9, 0x1}, {0x5c, 0x1}, {0x0, 0x4}], "df5f66ca4f0ec51d"}}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x850) r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001340), 0x3, 0x0) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r6, 0x80083313, &(0x7f0000000000)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) 11:53:16 executing program 3: syz_mount_image$tmpfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)={[{@nr_inodes={'nr_inodes', 0x3d, [0x31]}}]}) lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, 0x0, 0x0) 11:53:16 executing program 6: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_INTERFACE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x28, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x28}}, 0x0) 11:53:16 executing program 5: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0xa, 0x3, 0x6) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, 0x0, &(0x7f0000000000)) 11:53:16 executing program 0: syz_emit_ethernet(0x7e, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @parameter_prob={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @multicast1, @empty, {[@generic={0x0, 0x2}, @timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{@dev}]}, @timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0]}, @ra={0x94, 0x4}, @rr={0x7, 0x13, 0x0, [@dev, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @multicast2]}]}}}}}}}, 0x0) 11:53:16 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r2, 0x5423, &(0x7f0000000080)={0x3, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) 11:53:16 executing program 1: open_by_handle_at(0xffffffffffffffff, &(0x7f0000000380)=@ceph_nfs_fh={0x8, 0x80000}, 0x0) [ 123.211235] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2 11:53:16 executing program 0: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0xc5, 0xffffffffffffffff, {0x5}}, './file0\x00'}) [ 123.224594] random: crng reseeded on system resumption 11:53:16 executing program 6: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x24, 0x0, 0x490) 11:53:16 executing program 3: setresuid(0x0, 0xee01, 0x0) r0 = semget$private(0x0, 0x5, 0x0) semctl$SEM_STAT(r0, 0x0, 0x12, 0x0) 11:53:16 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) setpgid(0x0, 0x0) 11:53:16 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, 0x0, 0x0) 11:53:16 executing program 2: r0 = epoll_create(0x2b) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x20000011}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)={0x20000000}) 11:53:16 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r2, 0x5423, &(0x7f0000000080)={0x3, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) [ 123.312019] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 123.312928] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 123.313574] CPU: 0 UID: 60929 PID: 3990 Comm: syz-executor.3 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 123.314841] Tainted: [W]=WARN [ 123.315454] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 123.317280] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.318254] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.322495] RSP: 0018:ffff888045edf780 EFLAGS: 00010012 [ 123.323216] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90001a97000 [ 123.323786] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 123.324354] RBP: ffff888045edf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc15368 [ 123.324912] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 123.325481] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 123.326066] FS: 00007fd973afc700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 123.326709] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.327175] CR2: 00007fd97669a018 CR3: 000000000dcca000 CR4: 0000000000350ef0 [ 123.327741] Call Trace: [ 123.327952] [ 123.328136] ? __lock_acquire+0x694/0x1b70 [ 123.328487] ? __pfx_perf_tp_event+0x10/0x10 [ 123.328851] ? __lock_acquire+0x694/0x1b70 [ 123.329190] ? __lock_acquire+0x694/0x1b70 [ 123.329535] ? lock_acquire+0x15e/0x2f0 [ 123.329869] ? __is_insn_slot_addr+0x2e/0x290 [ 123.330238] ? find_held_lock+0x2b/0x80 [ 123.330572] ? __is_insn_slot_addr+0x136/0x290 [ 123.330948] ? lock_release+0xc8/0x290 [ 123.331270] ? perf_trace_run_bpf_submit+0xef/0x180 [ 123.331675] perf_trace_run_bpf_submit+0xef/0x180 [ 123.332071] perf_trace_preemptirq_template+0x259/0x430 [ 123.332501] ? trace_sched_set_need_resched_tp+0xd4/0x110 [ 123.332954] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 123.333425] ? __pfx___resched_curr+0x10/0x10 [ 123.333804] ? find_held_lock+0x2b/0x80 [ 123.334131] ? try_to_wake_up+0x8ae/0x11d0 [ 123.334480] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 123.334897] trace_irq_enable.constprop.0+0xa6/0x100 [ 123.335303] trace_hardirqs_on+0x26/0x40 [ 123.335629] _raw_spin_unlock_irqrestore+0x2c/0x50 [ 123.336029] try_to_wake_up+0x8ae/0x11d0 [ 123.336366] ? __pfx_try_to_wake_up+0x10/0x10 [ 123.336739] ? plist_del+0x122/0x270 [ 123.337048] ? find_held_lock+0x2b/0x80 [ 123.337373] ? futex_wake+0x474/0x540 [ 123.337695] wake_up_q+0xa1/0x130 [ 123.337987] futex_wake+0x47e/0x540 [ 123.338289] ? __pfx_futex_wake+0x10/0x10 [ 123.338631] ? lock_release+0xc8/0x290 [ 123.338948] do_futex+0x26d/0x370 [ 123.339234] ? __pfx_do_futex+0x10/0x10 [ 123.339555] ? __kmalloc_noprof+0x29d/0x6e0 [ 123.339909] ? __create_object+0x59/0x80 [ 123.340247] __x64_sys_futex+0x1c9/0x4d0 [ 123.340576] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 123.341045] ? __pfx___x64_sys_futex+0x10/0x10 [ 123.341415] ? set_cred_ucounts+0x110/0x210 [ 123.341773] do_syscall_64+0xbf/0x360 [ 123.342085] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.342503] RIP: 0033:0x7fd976586b19 [ 123.342808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.344253] RSP: 002b:00007fd973afc218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.344854] RAX: ffffffffffffffda RBX: 00007fd976699f68 RCX: 00007fd976586b19 [ 123.345420] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd976699f6c [ 123.345994] RBP: 00007fd976699f60 R08: 000000000000000e R09: 0000000000000000 [ 123.346567] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd976699f6c [ 123.347135] R13: 00007ffed05414cf R14: 00007fd973afc300 R15: 0000000000022000 [ 123.347703] [ 123.347894] Modules linked in: [ 123.348154] ---[ end trace 0000000000000000 ]--- [ 123.348535] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.348920] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.350358] RSP: 0018:ffff888045edf780 EFLAGS: 00010012 [ 123.350779] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90001a97000 [ 123.351337] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 123.351899] RBP: ffff888045edf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc15368 [ 123.352458] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 123.353015] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 123.353577] FS: 00007fd973afc700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 123.354214] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.354683] CR2: 00007fd97669a018 CR3: 000000000dcca000 CR4: 0000000000350ef0 [ 123.355247] note: syz-executor.3[3990] exited with irqs disabled [ 123.355789] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 123.356660] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 123.357340] CPU: 0 UID: 60929 PID: 3990 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 123.358318] Tainted: [D]=DIE, [W]=WARN [ 123.358622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 123.359262] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.359641] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.361066] RSP: 0018:ffff88806ce08b80 EFLAGS: 00010012 [ 123.361491] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 123.362061] RDX: ffff88800e693700 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 123.362624] RBP: ffff88806ce08df0 R08: ffff88806ce313e8 R09: ffffe8ffffc15368 [ 123.363190] R10: 0000000000000000 R11: ffff8880188fcc98 R12: dffffc0000000000 [ 123.363751] R13: 0000000000000014 R14: ffff88806ce313e8 R15: dffffc0000000000 [ 123.364313] FS: 00007fd973afc700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 123.364948] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.365405] CR2: 00007fd97669a018 CR3: 000000000dcca000 CR4: 0000000000350ef0 [ 123.365974] Call Trace: [ 123.366182] [ 123.366361] ? __pfx_perf_tp_event+0x10/0x10 [ 123.366721] ? enqueue_task_fair+0xded/0x1e00 [ 123.367084] ? check_preempt_wakeup_fair+0x6e/0x950 [ 123.367487] ? wakeup_preempt+0x140/0x2a0 [ 123.367819] ? lock_release+0x1c7/0x290 [ 123.368139] ? lock_release+0x1c7/0x290 [ 123.368460] ? do_raw_spin_unlock+0x53/0x220 [ 123.368821] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 123.369229] ? try_to_wake_up+0x8ae/0x11d0 [ 123.369574] ? do_raw_spin_lock+0x123/0x260 [ 123.369928] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 123.370307] ? perf_trace_run_bpf_submit+0xef/0x180 [ 123.370711] perf_trace_run_bpf_submit+0xef/0x180 [ 123.371102] perf_trace_preemptirq_template+0x259/0x430 [ 123.371526] ? read_tsc+0x9/0x20 [ 123.371809] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 123.372274] ? clockevents_program_event+0x135/0x360 [ 123.372689] ? tick_program_event+0xac/0x140 [ 123.373042] ? handle_softirqs+0x16e/0x770 [ 123.373389] trace_irq_enable.constprop.0+0xa6/0x100 [ 123.373802] trace_hardirqs_on+0x26/0x40 [ 123.374123] handle_softirqs+0x16e/0x770 [ 123.374458] __irq_exit_rcu+0xc4/0x100 [ 123.374777] irq_exit_rcu+0x9/0x20 [ 123.375063] sysvec_apic_timer_interrupt+0x70/0x80 [ 123.375463] [ 123.375646] [ 123.375829] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 123.376246] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 123.376630] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de [ 123.378063] RSP: 0018:ffff888045edff28 EFLAGS: 00000246 [ 123.378483] RAX: 0000000000000001 RBX: ffff88800e693700 RCX: ffffffff817c3ab6 [ 123.379044] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 123.379609] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 123.380167] R10: ffffffff8643b457 R11: 0000000000000001 R12: ffff88800e693700 [ 123.380730] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000 [ 123.381293] ? trace_irq_enable.constprop.0+0x26/0x100 [ 123.381714] ? make_task_dead+0x214/0x3b0 [ 123.382049] ? make_task_dead+0x214/0x3b0 [ 123.382383] ? do_syscall_64+0xbf/0x360 [ 123.382703] rewind_stack_and_make_dead+0x16/0x20 [ 123.383096] RIP: 0033:0x7fd976586b19 [ 123.383391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.384815] RSP: 002b:00007fd973afc218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.385413] RAX: ffffffffffffffda RBX: 00007fd976699f68 RCX: 00007fd976586b19 [ 123.385987] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd976699f6c [ 123.386545] RBP: 00007fd976699f60 R08: 000000000000000e R09: 0000000000000000 [ 123.387104] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd976699f6c [ 123.387671] R13: 00007ffed05414cf R14: 00007fd973afc300 R15: 0000000000022000 [ 123.388236] [ 123.388423] Modules linked in: [ 123.388682] ---[ end trace 0000000000000000 ]--- [ 123.389053] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.389431] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.390853] RSP: 0018:ffff888045edf780 EFLAGS: 00010012 [ 123.391273] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90001a97000 [ 123.391831] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000100000190 [ 123.392391] RBP: ffff888045edf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc15368 [ 123.392950] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 123.393512] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 123.394078] FS: 00007fd973afc700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 123.394712] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.395168] CR2: 00007fd97669a018 CR3: 000000000dcca000 CR4: 0000000000350ef0 [ 123.395738] Kernel panic - not syncing: Fatal exception in interrupt [ 123.396433] Kernel Offset: disabled [ 123.396723] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 11:53:17 Registers: info registers vcpu 0 RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888045edf070 R8 =0000000000000000 R9 =ffffed1001415046 R10=0000000000000038 R11=0000000065646f43 R12=0000000000000038 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fd973afc700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe2400000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd97669a018 CR3=000000000dcca000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fd97666d7c000007fd97666d7c8 XMM02=00007fd97666d7e000007fd97666d7c0 XMM03=00007fd97666d7c800007fd97666d7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=ffff88800cfae5c8 RCX=ffffffff81522114 RDX=00000000ffffffff RSI=0000000000000004 RDI=ffff88800cfae5c8 RBP=1ffff11002e21f8c RSP=ffff88801710fc50 R8 =0000000000000001 R9 =0000000000000000 R10=ffffffff8643b457 R11=0000000000000000 R12=ffff88800cfae5d0 R13=ffff88800cfae5d8 R14=ffff888045e1d500 R15=ffffea0001178600 RIP=ffffffff81b01768 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb6253d68c0 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe6a00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055558a3eec18 CR3=000000000c1be000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=000000000000003100736576616c7300 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00005637f312749000005637f3167600 XMM06=00005637f3137120ffffffff00000000 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000