Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:21673' (ECDSA) to the list of known hosts. 2025/09/01 12:19:34 fuzzer started 2025/09/01 12:19:35 dialing manager at localhost:35473 syzkaller login: [ 51.545314] cgroup: Unknown subsys name 'net' [ 51.636569] cgroup: Unknown subsys name 'cpuset' [ 51.662180] cgroup: Unknown subsys name 'rlimit' 2025/09/01 12:19:45 syscalls: 2214 2025/09/01 12:19:45 code coverage: enabled 2025/09/01 12:19:45 comparison tracing: enabled 2025/09/01 12:19:45 extra coverage: enabled 2025/09/01 12:19:45 setuid sandbox: enabled 2025/09/01 12:19:45 namespace sandbox: enabled 2025/09/01 12:19:45 Android sandbox: enabled 2025/09/01 12:19:45 fault injection: enabled 2025/09/01 12:19:45 leak checking: enabled 2025/09/01 12:19:45 net packet injection: enabled 2025/09/01 12:19:45 net device setup: enabled 2025/09/01 12:19:45 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 12:19:45 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 12:19:45 USB emulation: enabled 2025/09/01 12:19:45 hci packet injection: enabled 2025/09/01 12:19:45 wifi device emulation: enabled 2025/09/01 12:19:45 802.15.4 emulation: enabled 2025/09/01 12:19:45 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 12:19:45 fetching corpus: 50, signal 22693/26251 (executing program) 2025/09/01 12:19:46 fetching corpus: 100, signal 35129/40083 (executing program) 2025/09/01 12:19:46 fetching corpus: 150, signal 39997/46370 (executing program) 2025/09/01 12:19:46 fetching corpus: 200, signal 50690/58059 (executing program) 2025/09/01 12:19:46 fetching corpus: 250, signal 55554/64121 (executing program) 2025/09/01 12:19:46 fetching corpus: 300, signal 60411/70047 (executing program) 2025/09/01 12:19:46 fetching corpus: 350, signal 62554/73422 (executing program) 2025/09/01 12:19:46 fetching corpus: 400, signal 66475/78341 (executing program) 2025/09/01 12:19:46 fetching corpus: 450, signal 68473/81463 (executing program) 2025/09/01 12:19:46 fetching corpus: 500, signal 71241/85244 (executing program) 2025/09/01 12:19:46 fetching corpus: 550, signal 73640/88595 (executing program) 2025/09/01 12:19:46 fetching corpus: 600, signal 75910/91805 (executing program) 2025/09/01 12:19:46 fetching corpus: 650, signal 79181/95828 (executing program) 2025/09/01 12:19:46 fetching corpus: 700, signal 81220/98728 (executing program) 2025/09/01 12:19:47 fetching corpus: 750, signal 83644/101938 (executing program) 2025/09/01 12:19:47 fetching corpus: 800, signal 84995/104242 (executing program) 2025/09/01 12:19:47 fetching corpus: 850, signal 86014/106212 (executing program) 2025/09/01 12:19:47 fetching corpus: 900, signal 88799/109551 (executing program) 2025/09/01 12:19:47 fetching corpus: 950, signal 91232/112607 (executing program) 2025/09/01 12:19:47 fetching corpus: 1000, signal 92666/114784 (executing program) 2025/09/01 12:19:47 fetching corpus: 1050, signal 94037/116833 (executing program) 2025/09/01 12:19:47 fetching corpus: 1100, signal 95167/118740 (executing program) 2025/09/01 12:19:47 fetching corpus: 1150, signal 96813/121002 (executing program) 2025/09/01 12:19:47 fetching corpus: 1200, signal 98435/123230 (executing program) 2025/09/01 12:19:47 fetching corpus: 1250, signal 100205/125528 (executing program) 2025/09/01 12:19:47 fetching corpus: 1300, signal 102502/128159 (executing program) 2025/09/01 12:19:48 fetching corpus: 1350, signal 103747/130008 (executing program) 2025/09/01 12:19:48 fetching corpus: 1400, signal 104847/131746 (executing program) 2025/09/01 12:19:48 fetching corpus: 1450, signal 106776/133963 (executing program) 2025/09/01 12:19:48 fetching corpus: 1500, signal 107760/135523 (executing program) 2025/09/01 12:19:48 fetching corpus: 1550, signal 108525/136934 (executing program) 2025/09/01 12:19:48 fetching corpus: 1600, signal 110422/139094 (executing program) 2025/09/01 12:19:48 fetching corpus: 1650, signal 111624/140736 (executing program) 2025/09/01 12:19:48 fetching corpus: 1700, signal 114258/143362 (executing program) 2025/09/01 12:19:48 fetching corpus: 1750, signal 115258/144851 (executing program) 2025/09/01 12:19:48 fetching corpus: 1800, signal 116081/146166 (executing program) 2025/09/01 12:19:49 fetching corpus: 1850, signal 116819/147416 (executing program) 2025/09/01 12:19:49 fetching corpus: 1900, signal 117592/148710 (executing program) 2025/09/01 12:19:49 fetching corpus: 1950, signal 118321/149933 (executing program) 2025/09/01 12:19:49 fetching corpus: 2000, signal 119323/151393 (executing program) 2025/09/01 12:19:49 fetching corpus: 2050, signal 120528/152853 (executing program) 2025/09/01 12:19:49 fetching corpus: 2100, signal 121526/154189 (executing program) 2025/09/01 12:19:49 fetching corpus: 2150, signal 122164/155308 (executing program) 2025/09/01 12:19:49 fetching corpus: 2200, signal 123483/156782 (executing program) 2025/09/01 12:19:49 fetching corpus: 2250, signal 124493/158116 (executing program) 2025/09/01 12:19:50 fetching corpus: 2300, signal 125521/159422 (executing program) 2025/09/01 12:19:50 fetching corpus: 2350, signal 126486/160623 (executing program) 2025/09/01 12:19:50 fetching corpus: 2400, signal 127155/161640 (executing program) 2025/09/01 12:19:50 fetching corpus: 2450, signal 127917/162689 (executing program) 2025/09/01 12:19:50 fetching corpus: 2500, signal 128603/163756 (executing program) 2025/09/01 12:19:50 fetching corpus: 2550, signal 129729/164975 (executing program) 2025/09/01 12:19:50 fetching corpus: 2600, signal 130242/165884 (executing program) 2025/09/01 12:19:50 fetching corpus: 2650, signal 131209/167024 (executing program) 2025/09/01 12:19:50 fetching corpus: 2700, signal 132018/168004 (executing program) 2025/09/01 12:19:50 fetching corpus: 2750, signal 132667/168934 (executing program) 2025/09/01 12:19:50 fetching corpus: 2800, signal 133438/169911 (executing program) 2025/09/01 12:19:51 fetching corpus: 2850, signal 134851/171101 (executing program) 2025/09/01 12:19:51 fetching corpus: 2900, signal 135440/171981 (executing program) 2025/09/01 12:19:51 fetching corpus: 2950, signal 136340/172971 (executing program) 2025/09/01 12:19:51 fetching corpus: 3000, signal 136953/173850 (executing program) 2025/09/01 12:19:51 fetching corpus: 3050, signal 137901/174828 (executing program) 2025/09/01 12:19:51 fetching corpus: 3100, signal 139641/176058 (executing program) 2025/09/01 12:19:51 fetching corpus: 3150, signal 140132/176820 (executing program) 2025/09/01 12:19:51 fetching corpus: 3200, signal 141197/177776 (executing program) 2025/09/01 12:19:51 fetching corpus: 3250, signal 141968/178595 (executing program) 2025/09/01 12:19:51 fetching corpus: 3300, signal 142799/179435 (executing program) 2025/09/01 12:19:51 fetching corpus: 3350, signal 143286/180107 (executing program) 2025/09/01 12:19:52 fetching corpus: 3400, signal 143827/180801 (executing program) 2025/09/01 12:19:52 fetching corpus: 3450, signal 144941/181698 (executing program) 2025/09/01 12:19:52 fetching corpus: 3500, signal 145633/182420 (executing program) 2025/09/01 12:19:52 fetching corpus: 3550, signal 146411/183138 (executing program) 2025/09/01 12:19:52 fetching corpus: 3600, signal 146900/183765 (executing program) 2025/09/01 12:19:52 fetching corpus: 3650, signal 147525/184432 (executing program) 2025/09/01 12:19:52 fetching corpus: 3700, signal 148379/185168 (executing program) 2025/09/01 12:19:52 fetching corpus: 3750, signal 148844/185775 (executing program) 2025/09/01 12:19:52 fetching corpus: 3800, signal 149278/186364 (executing program) 2025/09/01 12:19:53 fetching corpus: 3850, signal 149824/186925 (executing program) 2025/09/01 12:19:53 fetching corpus: 3900, signal 150481/187526 (executing program) 2025/09/01 12:19:53 fetching corpus: 3950, signal 151240/188158 (executing program) 2025/09/01 12:19:53 fetching corpus: 4000, signal 151693/188697 (executing program) 2025/09/01 12:19:53 fetching corpus: 4050, signal 152328/189236 (executing program) 2025/09/01 12:19:53 fetching corpus: 4100, signal 152944/189743 (executing program) 2025/09/01 12:19:53 fetching corpus: 4150, signal 153273/190205 (executing program) 2025/09/01 12:19:53 fetching corpus: 4200, signal 153937/190752 (executing program) 2025/09/01 12:19:53 fetching corpus: 4250, signal 154302/191191 (executing program) 2025/09/01 12:19:53 fetching corpus: 4300, signal 154783/191688 (executing program) 2025/09/01 12:19:53 fetching corpus: 4350, signal 155528/192184 (executing program) 2025/09/01 12:19:54 fetching corpus: 4400, signal 156080/192756 (executing program) 2025/09/01 12:19:54 fetching corpus: 4450, signal 156567/193189 (executing program) 2025/09/01 12:19:54 fetching corpus: 4500, signal 157091/193649 (executing program) 2025/09/01 12:19:54 fetching corpus: 4550, signal 157609/194095 (executing program) 2025/09/01 12:19:54 fetching corpus: 4600, signal 158015/194509 (executing program) 2025/09/01 12:19:54 fetching corpus: 4650, signal 158562/194930 (executing program) 2025/09/01 12:19:54 fetching corpus: 4700, signal 159105/195315 (executing program) 2025/09/01 12:19:54 fetching corpus: 4750, signal 159560/195676 (executing program) 2025/09/01 12:19:54 fetching corpus: 4800, signal 159847/195942 (executing program) 2025/09/01 12:19:54 fetching corpus: 4850, signal 160412/195984 (executing program) 2025/09/01 12:19:54 fetching corpus: 4900, signal 160681/195987 (executing program) 2025/09/01 12:19:55 fetching corpus: 4950, signal 160997/196002 (executing program) 2025/09/01 12:19:55 fetching corpus: 5000, signal 161477/196050 (executing program) 2025/09/01 12:19:55 fetching corpus: 5050, signal 162142/196118 (executing program) 2025/09/01 12:19:55 fetching corpus: 5100, signal 162503/196131 (executing program) 2025/09/01 12:19:55 fetching corpus: 5150, signal 164236/196132 (executing program) 2025/09/01 12:19:55 fetching corpus: 5200, signal 164633/196149 (executing program) 2025/09/01 12:19:55 fetching corpus: 5250, signal 165253/196205 (executing program) 2025/09/01 12:19:55 fetching corpus: 5300, signal 165565/196223 (executing program) 2025/09/01 12:19:55 fetching corpus: 5350, signal 166035/196269 (executing program) 2025/09/01 12:19:55 fetching corpus: 5400, signal 166515/196270 (executing program) 2025/09/01 12:19:55 fetching corpus: 5450, signal 166823/196274 (executing program) 2025/09/01 12:19:56 fetching corpus: 5500, signal 167135/196276 (executing program) 2025/09/01 12:19:56 fetching corpus: 5550, signal 167448/196282 (executing program) 2025/09/01 12:19:56 fetching corpus: 5600, signal 167761/196294 (executing program) 2025/09/01 12:19:56 fetching corpus: 5650, signal 168041/196298 (executing program) 2025/09/01 12:19:56 fetching corpus: 5700, signal 168417/196301 (executing program) 2025/09/01 12:19:56 fetching corpus: 5750, signal 168709/196301 (executing program) 2025/09/01 12:19:56 fetching corpus: 5800, signal 169176/196304 (executing program) 2025/09/01 12:19:56 fetching corpus: 5850, signal 169490/196304 (executing program) 2025/09/01 12:19:56 fetching corpus: 5900, signal 169743/196319 (executing program) 2025/09/01 12:19:56 fetching corpus: 5950, signal 170251/196325 (executing program) 2025/09/01 12:19:56 fetching corpus: 6000, signal 170698/196370 (executing program) 2025/09/01 12:19:57 fetching corpus: 6050, signal 171000/196372 (executing program) 2025/09/01 12:19:57 fetching corpus: 6100, signal 171370/196389 (executing program) 2025/09/01 12:19:57 fetching corpus: 6150, signal 171710/196401 (executing program) 2025/09/01 12:19:57 fetching corpus: 6200, signal 172077/196402 (executing program) 2025/09/01 12:19:57 fetching corpus: 6250, signal 172331/196406 (executing program) 2025/09/01 12:19:57 fetching corpus: 6300, signal 172688/196454 (executing program) 2025/09/01 12:19:57 fetching corpus: 6350, signal 173125/196472 (executing program) 2025/09/01 12:19:57 fetching corpus: 6400, signal 173426/196482 (executing program) 2025/09/01 12:19:57 fetching corpus: 6450, signal 173788/196495 (executing program) 2025/09/01 12:19:57 fetching corpus: 6500, signal 174045/196502 (executing program) 2025/09/01 12:19:57 fetching corpus: 6550, signal 174383/196529 (executing program) 2025/09/01 12:19:57 fetching corpus: 6600, signal 174673/196530 (executing program) 2025/09/01 12:19:58 fetching corpus: 6650, signal 175636/196541 (executing program) 2025/09/01 12:19:58 fetching corpus: 6700, signal 176066/196554 (executing program) 2025/09/01 12:19:58 fetching corpus: 6750, signal 176519/196559 (executing program) 2025/09/01 12:19:58 fetching corpus: 6800, signal 176903/196577 (executing program) 2025/09/01 12:19:58 fetching corpus: 6850, signal 177395/196580 (executing program) 2025/09/01 12:19:58 fetching corpus: 6900, signal 177867/196585 (executing program) 2025/09/01 12:19:58 fetching corpus: 6950, signal 178068/196596 (executing program) 2025/09/01 12:19:58 fetching corpus: 7000, signal 178605/196597 (executing program) 2025/09/01 12:19:58 fetching corpus: 7050, signal 178936/196614 (executing program) 2025/09/01 12:19:58 fetching corpus: 7100, signal 179180/196614 (executing program) 2025/09/01 12:19:58 fetching corpus: 7150, signal 179405/196640 (executing program) 2025/09/01 12:19:58 fetching corpus: 7200, signal 179684/196648 (executing program) 2025/09/01 12:19:58 fetching corpus: 7250, signal 180342/196657 (executing program) 2025/09/01 12:19:59 fetching corpus: 7300, signal 180777/196663 (executing program) 2025/09/01 12:19:59 fetching corpus: 7350, signal 181117/196665 (executing program) 2025/09/01 12:19:59 fetching corpus: 7400, signal 181500/196665 (executing program) 2025/09/01 12:19:59 fetching corpus: 7450, signal 181818/196665 (executing program) 2025/09/01 12:19:59 fetching corpus: 7500, signal 182117/196724 (executing program) 2025/09/01 12:19:59 fetching corpus: 7550, signal 182775/196743 (executing program) 2025/09/01 12:19:59 fetching corpus: 7600, signal 183084/196805 (executing program) 2025/09/01 12:19:59 fetching corpus: 7650, signal 183288/196806 (executing program) 2025/09/01 12:19:59 fetching corpus: 7700, signal 183686/196826 (executing program) 2025/09/01 12:19:59 fetching corpus: 7750, signal 184048/196827 (executing program) 2025/09/01 12:19:59 fetching corpus: 7800, signal 184436/196829 (executing program) 2025/09/01 12:19:59 fetching corpus: 7850, signal 184688/196835 (executing program) 2025/09/01 12:20:00 fetching corpus: 7900, signal 185066/196837 (executing program) 2025/09/01 12:20:00 fetching corpus: 7950, signal 185521/196843 (executing program) 2025/09/01 12:20:00 fetching corpus: 8000, signal 185927/196859 (executing program) 2025/09/01 12:20:00 fetching corpus: 8050, signal 186204/196865 (executing program) 2025/09/01 12:20:00 fetching corpus: 8100, signal 186472/196894 (executing program) 2025/09/01 12:20:00 fetching corpus: 8150, signal 186955/196901 (executing program) 2025/09/01 12:20:00 fetching corpus: 8200, signal 187353/196906 (executing program) 2025/09/01 12:20:00 fetching corpus: 8250, signal 187673/196912 (executing program) 2025/09/01 12:20:00 fetching corpus: 8300, signal 188039/196912 (executing program) 2025/09/01 12:20:00 fetching corpus: 8350, signal 188274/196955 (executing program) 2025/09/01 12:20:00 fetching corpus: 8400, signal 188621/196955 (executing program) 2025/09/01 12:20:00 fetching corpus: 8450, signal 188852/196955 (executing program) 2025/09/01 12:20:01 fetching corpus: 8500, signal 189081/196959 (executing program) 2025/09/01 12:20:01 fetching corpus: 8550, signal 189378/196964 (executing program) 2025/09/01 12:20:01 fetching corpus: 8600, signal 189580/196975 (executing program) 2025/09/01 12:20:01 fetching corpus: 8650, signal 189793/196990 (executing program) 2025/09/01 12:20:01 fetching corpus: 8700, signal 190017/196994 (executing program) 2025/09/01 12:20:01 fetching corpus: 8750, signal 190219/197009 (executing program) 2025/09/01 12:20:01 fetching corpus: 8800, signal 190521/197018 (executing program) 2025/09/01 12:20:01 fetching corpus: 8850, signal 190837/197022 (executing program) 2025/09/01 12:20:01 fetching corpus: 8900, signal 191131/197030 (executing program) 2025/09/01 12:20:01 fetching corpus: 8950, signal 191320/197037 (executing program) 2025/09/01 12:20:01 fetching corpus: 9000, signal 191607/197039 (executing program) 2025/09/01 12:20:01 fetching corpus: 9050, signal 192012/197047 (executing program) 2025/09/01 12:20:01 fetching corpus: 9100, signal 192254/197058 (executing program) 2025/09/01 12:20:02 fetching corpus: 9150, signal 192573/197063 (executing program) 2025/09/01 12:20:02 fetching corpus: 9200, signal 192830/197066 (executing program) 2025/09/01 12:20:02 fetching corpus: 9250, signal 193015/197066 (executing program) 2025/09/01 12:20:02 fetching corpus: 9300, signal 193257/197066 (executing program) 2025/09/01 12:20:02 fetching corpus: 9350, signal 193492/197066 (executing program) 2025/09/01 12:20:02 fetching corpus: 9400, signal 193699/197070 (executing program) 2025/09/01 12:20:02 fetching corpus: 9425, signal 193829/197070 (executing program) 2025/09/01 12:20:02 fetching corpus: 9425, signal 193829/197070 (executing program) 2025/09/01 12:20:05 starting 8 fuzzer processes 12:20:05 executing program 0: setresuid(0x0, 0xee00, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = dup2(r1, r0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r2, 0x89f5, &(0x7f0000000240)={'ip6_vti0\x00', 0x0}) 12:20:05 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f00000024c0)=0x5, 0x4) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10) 12:20:05 executing program 2: io_setup(0x5, &(0x7f0000000000)=0x0) io_pgetevents(r0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140), 0x8}) io_pgetevents(r0, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0) 12:20:05 executing program 7: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) fallocate(r1, 0x0, 0x0, 0x6) lseek(r0, 0x0, 0x4) 12:20:05 executing program 3: syz_open_dev$evdev(&(0x7f00000005c0), 0x0, 0x86a02) [ 81.509171] audit: type=1400 audit(1756729205.369:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 12:20:05 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsopen(&(0x7f0000000000)='tracefs\x00', 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = eventfd2(0x0, 0x0) fremovexattr(0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r2 = syz_io_uring_complete(0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) io_submit(0x0, 0x4, &(0x7f0000000480)=[0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x8c1, r2, &(0x7f0000000100)="82694bfb6a22c685ddde74140e1e54395174858317898f84b4d320e3046de5ee82e7b2423705649e7e1f70538355bfae8c7cdff2f2f36b449456f839291d5ad5a0545f4b36f53a793d9a6e30ce890484b43d5a6c35eae5a2e6a39d16f938bb056b1ec86436ba2d3210b10ab183fffd193a05a31e147582f824dfa274b4d184dcaf00bc9c6c56", 0x86, 0x0, 0x0, 0x1}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xe4, r3, &(0x7f0000000200)="c6105fa00a31661f9e9ece482ed28b44fa80ee2bb0630f1aa223e79514e262138f120fea4e131925f904325a9a7936b566de9e9230b57953c88113467de279ed6bcdb369b2cd9fcc76b357ad12a6e771bae4c6467b5845a84598e3b31f832341e513e092a9492d3d43653a51df3df5b16d08f592c6f27d3e9257b6c54c0a227a07eb30deea3f91ce7a37d2604d3256517aac4a9a6e2da3540d10356c8473dc658d12ceb60b60bd63b6255ca621803bf45921795627ec4a9fcf85fc93338d59d972e3d42b4dcc063459caeec959877b6063c559fb797036a257fbd69fe5ddc1c5a5542f4bde2857c71ab4678d36bccdc8a9", 0xf1, 0x401, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x5, r4, &(0x7f0000000400)="2afd830d1b428a5c3faf1f6aca0f7d1f2ccb41c0dc0e65afdba6f4", 0x1b, 0x0, 0x0, 0x0, r0}]) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) 12:20:05 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)={{0x14}, [], {0x14}}, 0x28}}, 0x0) 12:20:05 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pivot_root(&(0x7f0000000400)='./file0\x00', 0x0) [ 82.727984] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.731227] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.734131] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.741771] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.745219] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.781963] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.784890] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.788089] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.793221] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.796709] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.840208] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.842721] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.844219] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.852231] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.854400] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.935883] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.937692] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.939131] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.943608] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.947132] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.958659] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.962897] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.967565] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.976757] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 82.983476] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 82.992844] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 82.995082] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 83.006716] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 83.006779] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 83.010087] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 83.015326] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 83.017146] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 83.023743] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 83.025383] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 83.069117] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 83.070756] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 83.076115] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 83.079911] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 83.107627] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 83.114542] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 84.817764] Bluetooth: hci0: command tx timeout [ 84.817773] Bluetooth: hci1: command tx timeout [ 84.881781] Bluetooth: hci2: command tx timeout [ 85.008665] Bluetooth: hci3: command tx timeout [ 85.071883] Bluetooth: hci4: command tx timeout [ 85.072522] Bluetooth: hci7: command tx timeout [ 85.200564] Bluetooth: hci6: command tx timeout [ 85.264691] Bluetooth: hci5: command tx timeout [ 86.863532] Bluetooth: hci1: command tx timeout [ 86.864516] Bluetooth: hci0: command tx timeout [ 86.928124] Bluetooth: hci2: command tx timeout [ 87.055507] Bluetooth: hci3: command tx timeout [ 87.119632] Bluetooth: hci4: command tx timeout [ 87.120079] Bluetooth: hci7: command tx timeout [ 87.248273] Bluetooth: hci6: command tx timeout [ 87.312497] Bluetooth: hci5: command tx timeout [ 88.912629] Bluetooth: hci0: command tx timeout [ 88.913242] Bluetooth: hci1: command tx timeout [ 88.975569] Bluetooth: hci2: command tx timeout [ 89.103603] Bluetooth: hci3: command tx timeout [ 89.167567] Bluetooth: hci4: command tx timeout [ 89.168418] Bluetooth: hci7: command tx timeout [ 89.297505] Bluetooth: hci6: command tx timeout [ 89.359529] Bluetooth: hci5: command tx timeout [ 90.959603] Bluetooth: hci0: command tx timeout [ 90.960392] Bluetooth: hci1: command tx timeout [ 91.023545] Bluetooth: hci2: command tx timeout [ 91.151652] Bluetooth: hci3: command tx timeout [ 91.216816] Bluetooth: hci7: command tx timeout [ 91.217471] Bluetooth: hci4: command tx timeout [ 91.343673] Bluetooth: hci6: command tx timeout [ 91.407529] Bluetooth: hci5: command tx timeout [ 120.659685] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.660360] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.824141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.825199] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.177590] audit: type=1400 audit(1756729245.036:8): avc: denied { open } for pid=3750 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.188568] audit: type=1400 audit(1756729245.036:9): avc: denied { kernel } for pid=3750 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 12:20:45 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsopen(&(0x7f0000000000)='tracefs\x00', 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = eventfd2(0x0, 0x0) fremovexattr(0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r2 = syz_io_uring_complete(0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) io_submit(0x0, 0x4, &(0x7f0000000480)=[0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x8c1, r2, &(0x7f0000000100)="82694bfb6a22c685ddde74140e1e54395174858317898f84b4d320e3046de5ee82e7b2423705649e7e1f70538355bfae8c7cdff2f2f36b449456f839291d5ad5a0545f4b36f53a793d9a6e30ce890484b43d5a6c35eae5a2e6a39d16f938bb056b1ec86436ba2d3210b10ab183fffd193a05a31e147582f824dfa274b4d184dcaf00bc9c6c56", 0x86, 0x0, 0x0, 0x1}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xe4, r3, &(0x7f0000000200)="c6105fa00a31661f9e9ece482ed28b44fa80ee2bb0630f1aa223e79514e262138f120fea4e131925f904325a9a7936b566de9e9230b57953c88113467de279ed6bcdb369b2cd9fcc76b357ad12a6e771bae4c6467b5845a84598e3b31f832341e513e092a9492d3d43653a51df3df5b16d08f592c6f27d3e9257b6c54c0a227a07eb30deea3f91ce7a37d2604d3256517aac4a9a6e2da3540d10356c8473dc658d12ceb60b60bd63b6255ca621803bf45921795627ec4a9fcf85fc93338d59d972e3d42b4dcc063459caeec959877b6063c559fb797036a257fbd69fe5ddc1c5a5542f4bde2857c71ab4678d36bccdc8a9", 0xf1, 0x401, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x5, r4, &(0x7f0000000400)="2afd830d1b428a5c3faf1f6aca0f7d1f2ccb41c0dc0e65afdba6f4", 0x1b, 0x0, 0x0, 0x0, r0}]) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) [ 121.705644] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.706249] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:20:45 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsopen(&(0x7f0000000000)='tracefs\x00', 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = eventfd2(0x0, 0x0) fremovexattr(0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r2 = syz_io_uring_complete(0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) io_submit(0x0, 0x4, &(0x7f0000000480)=[0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x8c1, r2, &(0x7f0000000100)="82694bfb6a22c685ddde74140e1e54395174858317898f84b4d320e3046de5ee82e7b2423705649e7e1f70538355bfae8c7cdff2f2f36b449456f839291d5ad5a0545f4b36f53a793d9a6e30ce890484b43d5a6c35eae5a2e6a39d16f938bb056b1ec86436ba2d3210b10ab183fffd193a05a31e147582f824dfa274b4d184dcaf00bc9c6c56", 0x86, 0x0, 0x0, 0x1}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xe4, r3, &(0x7f0000000200)="c6105fa00a31661f9e9ece482ed28b44fa80ee2bb0630f1aa223e79514e262138f120fea4e131925f904325a9a7936b566de9e9230b57953c88113467de279ed6bcdb369b2cd9fcc76b357ad12a6e771bae4c6467b5845a84598e3b31f832341e513e092a9492d3d43653a51df3df5b16d08f592c6f27d3e9257b6c54c0a227a07eb30deea3f91ce7a37d2604d3256517aac4a9a6e2da3540d10356c8473dc658d12ceb60b60bd63b6255ca621803bf45921795627ec4a9fcf85fc93338d59d972e3d42b4dcc063459caeec959877b6063c559fb797036a257fbd69fe5ddc1c5a5542f4bde2857c71ab4678d36bccdc8a9", 0xf1, 0x401, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x5, r4, &(0x7f0000000400)="2afd830d1b428a5c3faf1f6aca0f7d1f2ccb41c0dc0e65afdba6f4", 0x1b, 0x0, 0x0, 0x0, r0}]) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) [ 121.862130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.862763] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.950795] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.951400] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:20:45 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsopen(&(0x7f0000000000)='tracefs\x00', 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = eventfd2(0x0, 0x0) fremovexattr(0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r2 = syz_io_uring_complete(0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) io_submit(0x0, 0x4, &(0x7f0000000480)=[0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x8c1, r2, &(0x7f0000000100)="82694bfb6a22c685ddde74140e1e54395174858317898f84b4d320e3046de5ee82e7b2423705649e7e1f70538355bfae8c7cdff2f2f36b449456f839291d5ad5a0545f4b36f53a793d9a6e30ce890484b43d5a6c35eae5a2e6a39d16f938bb056b1ec86436ba2d3210b10ab183fffd193a05a31e147582f824dfa274b4d184dcaf00bc9c6c56", 0x86, 0x0, 0x0, 0x1}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xe4, r3, &(0x7f0000000200)="c6105fa00a31661f9e9ece482ed28b44fa80ee2bb0630f1aa223e79514e262138f120fea4e131925f904325a9a7936b566de9e9230b57953c88113467de279ed6bcdb369b2cd9fcc76b357ad12a6e771bae4c6467b5845a84598e3b31f832341e513e092a9492d3d43653a51df3df5b16d08f592c6f27d3e9257b6c54c0a227a07eb30deea3f91ce7a37d2604d3256517aac4a9a6e2da3540d10356c8473dc658d12ceb60b60bd63b6255ca621803bf45921795627ec4a9fcf85fc93338d59d972e3d42b4dcc063459caeec959877b6063c559fb797036a257fbd69fe5ddc1c5a5542f4bde2857c71ab4678d36bccdc8a9", 0xf1, 0x401, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x5, r4, &(0x7f0000000400)="2afd830d1b428a5c3faf1f6aca0f7d1f2ccb41c0dc0e65afdba6f4", 0x1b, 0x0, 0x0, 0x0, r0}]) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) [ 122.147786] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.148361] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.250477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.251049] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:20:46 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsopen(&(0x7f0000000000)='tracefs\x00', 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = eventfd2(0x0, 0x0) fremovexattr(0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r2 = syz_io_uring_complete(0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) io_submit(0x0, 0x4, &(0x7f0000000480)=[0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x8c1, r2, &(0x7f0000000100)="82694bfb6a22c685ddde74140e1e54395174858317898f84b4d320e3046de5ee82e7b2423705649e7e1f70538355bfae8c7cdff2f2f36b449456f839291d5ad5a0545f4b36f53a793d9a6e30ce890484b43d5a6c35eae5a2e6a39d16f938bb056b1ec86436ba2d3210b10ab183fffd193a05a31e147582f824dfa274b4d184dcaf00bc9c6c56", 0x86, 0x0, 0x0, 0x1}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xe4, r3, &(0x7f0000000200)="c6105fa00a31661f9e9ece482ed28b44fa80ee2bb0630f1aa223e79514e262138f120fea4e131925f904325a9a7936b566de9e9230b57953c88113467de279ed6bcdb369b2cd9fcc76b357ad12a6e771bae4c6467b5845a84598e3b31f832341e513e092a9492d3d43653a51df3df5b16d08f592c6f27d3e9257b6c54c0a227a07eb30deea3f91ce7a37d2604d3256517aac4a9a6e2da3540d10356c8473dc658d12ceb60b60bd63b6255ca621803bf45921795627ec4a9fcf85fc93338d59d972e3d42b4dcc063459caeec959877b6063c559fb797036a257fbd69fe5ddc1c5a5542f4bde2857c71ab4678d36bccdc8a9", 0xf1, 0x401, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x5, r4, &(0x7f0000000400)="2afd830d1b428a5c3faf1f6aca0f7d1f2ccb41c0dc0e65afdba6f4", 0x1b, 0x0, 0x0, 0x0, r0}]) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) [ 122.359513] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.360112] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:20:46 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = dup2(r0, r0) sendmsg$nl_xfrm(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=@newpolicy={0xb8, 0x13, 0x1, 0x0, 0x0, {{@in=@local, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x3c14c384a0d7bceb}}}, 0xb8}}, 0x0) 12:20:46 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) rt_sigsuspend(0x0, 0x0) 12:20:46 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsopen(&(0x7f0000000000)='tracefs\x00', 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = eventfd2(0x0, 0x0) fremovexattr(0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r2 = syz_io_uring_complete(0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) io_submit(0x0, 0x4, &(0x7f0000000480)=[0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x8c1, r2, &(0x7f0000000100)="82694bfb6a22c685ddde74140e1e54395174858317898f84b4d320e3046de5ee82e7b2423705649e7e1f70538355bfae8c7cdff2f2f36b449456f839291d5ad5a0545f4b36f53a793d9a6e30ce890484b43d5a6c35eae5a2e6a39d16f938bb056b1ec86436ba2d3210b10ab183fffd193a05a31e147582f824dfa274b4d184dcaf00bc9c6c56", 0x86, 0x0, 0x0, 0x1}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xe4, r3, &(0x7f0000000200)="c6105fa00a31661f9e9ece482ed28b44fa80ee2bb0630f1aa223e79514e262138f120fea4e131925f904325a9a7936b566de9e9230b57953c88113467de279ed6bcdb369b2cd9fcc76b357ad12a6e771bae4c6467b5845a84598e3b31f832341e513e092a9492d3d43653a51df3df5b16d08f592c6f27d3e9257b6c54c0a227a07eb30deea3f91ce7a37d2604d3256517aac4a9a6e2da3540d10356c8473dc658d12ceb60b60bd63b6255ca621803bf45921795627ec4a9fcf85fc93338d59d972e3d42b4dcc063459caeec959877b6063c559fb797036a257fbd69fe5ddc1c5a5542f4bde2857c71ab4678d36bccdc8a9", 0xf1, 0x401, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x5, r4, &(0x7f0000000400)="2afd830d1b428a5c3faf1f6aca0f7d1f2ccb41c0dc0e65afdba6f4", 0x1b, 0x0, 0x0, 0x0, r0}]) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) 12:20:46 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) rt_sigsuspend(0x0, 0x0) [ 122.786275] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.786935] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.879883] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.880496] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.944738] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.945364] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.995494] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.996108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.039599] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.040200] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.083021] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.083626] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.204537] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.205110] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.281600] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.282192] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:20:47 executing program 5: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) fallocate(r1, 0x0, 0x0, 0x6) lseek(r0, 0x0, 0x4) 12:20:47 executing program 0: r0 = syz_open_dev$usbmon(&(0x7f0000000dc0), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x0) 12:20:47 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) rt_sigsuspend(0x0, 0x0) 12:20:47 executing program 7: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) fallocate(r1, 0x0, 0x0, 0x6) lseek(r0, 0x0, 0x4) 12:20:47 executing program 2: io_setup(0x5, &(0x7f0000000000)=0x0) io_pgetevents(r0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140), 0x8}) io_pgetevents(r0, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0) 12:20:47 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f00000024c0)=0x5, 0x4) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10) 12:20:47 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsopen(&(0x7f0000000000)='tracefs\x00', 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = eventfd2(0x0, 0x0) fremovexattr(0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) r2 = syz_io_uring_complete(0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)={0x1c, 0x13, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x1}, 0x0) io_submit(0x0, 0x4, &(0x7f0000000480)=[0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x8c1, r2, &(0x7f0000000100)="82694bfb6a22c685ddde74140e1e54395174858317898f84b4d320e3046de5ee82e7b2423705649e7e1f70538355bfae8c7cdff2f2f36b449456f839291d5ad5a0545f4b36f53a793d9a6e30ce890484b43d5a6c35eae5a2e6a39d16f938bb056b1ec86436ba2d3210b10ab183fffd193a05a31e147582f824dfa274b4d184dcaf00bc9c6c56", 0x86, 0x0, 0x0, 0x1}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xe4, r3, &(0x7f0000000200)="c6105fa00a31661f9e9ece482ed28b44fa80ee2bb0630f1aa223e79514e262138f120fea4e131925f904325a9a7936b566de9e9230b57953c88113467de279ed6bcdb369b2cd9fcc76b357ad12a6e771bae4c6467b5845a84598e3b31f832341e513e092a9492d3d43653a51df3df5b16d08f592c6f27d3e9257b6c54c0a227a07eb30deea3f91ce7a37d2604d3256517aac4a9a6e2da3540d10356c8473dc658d12ceb60b60bd63b6255ca621803bf45921795627ec4a9fcf85fc93338d59d972e3d42b4dcc063459caeec959877b6063c559fb797036a257fbd69fe5ddc1c5a5542f4bde2857c71ab4678d36bccdc8a9", 0xf1, 0x401, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x5, r4, &(0x7f0000000400)="2afd830d1b428a5c3faf1f6aca0f7d1f2ccb41c0dc0e65afdba6f4", 0x1b, 0x0, 0x0, 0x0, r0}]) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) 12:20:47 executing program 6: madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10) mlock(&(0x7f0000aff000/0x2000)=nil, 0x2000) mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000) munmap(&(0x7f0000bae000/0x4000)=nil, 0x4000) mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f00005bf000/0x4000)=nil, 0x4000) munmap(&(0x7f00008b4000/0x3000)=nil, 0x3000) madvise(&(0x7f00008a4000/0x1000)=nil, 0x1000, 0x2) mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0) mremap(&(0x7f0000beb000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000ffa000/0x3000)=nil) 12:20:47 executing program 0: r0 = syz_open_dev$usbmon(&(0x7f0000000dc0), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x0) 12:20:47 executing program 5: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) fallocate(r1, 0x0, 0x0, 0x6) lseek(r0, 0x0, 0x4) 12:20:47 executing program 2: io_setup(0x5, &(0x7f0000000000)=0x0) io_pgetevents(r0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140), 0x8}) io_pgetevents(r0, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0) 12:20:47 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) rt_sigsuspend(0x0, 0x0) 12:20:47 executing program 6: madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10) mlock(&(0x7f0000aff000/0x2000)=nil, 0x2000) mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000) munmap(&(0x7f0000bae000/0x4000)=nil, 0x4000) mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f00005bf000/0x4000)=nil, 0x4000) munmap(&(0x7f00008b4000/0x3000)=nil, 0x3000) madvise(&(0x7f00008a4000/0x1000)=nil, 0x1000, 0x2) mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0) mremap(&(0x7f0000beb000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000ffa000/0x3000)=nil) 12:20:47 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f00000024c0)=0x5, 0x4) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10) 12:20:47 executing program 7: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) fallocate(r1, 0x0, 0x0, 0x6) lseek(r0, 0x0, 0x4) 12:20:47 executing program 0: r0 = syz_open_dev$usbmon(&(0x7f0000000dc0), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x0) 12:20:47 executing program 4: madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10) mlock(&(0x7f0000aff000/0x2000)=nil, 0x2000) mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000) munmap(&(0x7f0000bae000/0x4000)=nil, 0x4000) mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f00005bf000/0x4000)=nil, 0x4000) munmap(&(0x7f00008b4000/0x3000)=nil, 0x3000) madvise(&(0x7f00008a4000/0x1000)=nil, 0x1000, 0x2) mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0) mremap(&(0x7f0000beb000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000ffa000/0x3000)=nil) 12:20:47 executing program 0: r0 = syz_open_dev$usbmon(&(0x7f0000000dc0), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x0) 12:20:47 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f00000024c0)=0x5, 0x4) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10) 12:20:47 executing program 7: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) fallocate(r1, 0x0, 0x0, 0x6) lseek(r0, 0x0, 0x4) 12:20:47 executing program 3: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00)) setfsgid(0x0) 12:20:47 executing program 5: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x18d101, 0x0) fallocate(r1, 0x0, 0x0, 0x6) lseek(r0, 0x0, 0x4) 12:20:47 executing program 2: io_setup(0x5, &(0x7f0000000000)=0x0) io_pgetevents(r0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140), 0x8}) io_pgetevents(r0, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0) 12:20:47 executing program 6: madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10) mlock(&(0x7f0000aff000/0x2000)=nil, 0x2000) mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000) munmap(&(0x7f0000bae000/0x4000)=nil, 0x4000) mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f00005bf000/0x4000)=nil, 0x4000) munmap(&(0x7f00008b4000/0x3000)=nil, 0x3000) madvise(&(0x7f00008a4000/0x1000)=nil, 0x1000, 0x2) mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0) mremap(&(0x7f0000beb000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000ffa000/0x3000)=nil) 12:20:47 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x31, &(0x7f0000000900)={@private1}, 0x14) 12:20:47 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f00000000c0), 0x4) 12:20:47 executing program 4: madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10) mlock(&(0x7f0000aff000/0x2000)=nil, 0x2000) mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000) munmap(&(0x7f0000bae000/0x4000)=nil, 0x4000) mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f00005bf000/0x4000)=nil, 0x4000) munmap(&(0x7f00008b4000/0x3000)=nil, 0x3000) madvise(&(0x7f00008a4000/0x1000)=nil, 0x1000, 0x2) mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0) mremap(&(0x7f0000beb000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000ffa000/0x3000)=nil) 12:20:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0xe, 0x0, &(0x7f00000023c0)) 12:20:47 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="b8000000140001000000000000000000ac1414aa000000000000000000000000ac1e0001000000000000000000000000000000000000000002"], 0xb8}}, 0x0) 12:20:47 executing program 2: perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 12:20:47 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) futex(&(0x7f0000000c00)=0x1, 0x9, 0x1, &(0x7f0000000c40), &(0x7f0000000c80), 0x2) openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0) clock_gettime(0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) 12:20:47 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x46, {0x0, @tcp_ip4_spec={@rand_addr, @private}, @esp_ip4_spec={@multicast1, @local}}}}) 12:20:47 executing program 6: madvise(&(0x7f0000904000/0x3000)=nil, 0x3000, 0x10) mlock(&(0x7f0000aff000/0x2000)=nil, 0x2000) mlock(&(0x7f0000f13000/0x1000)=nil, 0x1000) munmap(&(0x7f0000bae000/0x4000)=nil, 0x4000) mlock2(&(0x7f00008b6000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f00005bf000/0x4000)=nil, 0x4000) munmap(&(0x7f00008b4000/0x3000)=nil, 0x3000) madvise(&(0x7f00008a4000/0x1000)=nil, 0x1000, 0x2) mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0) mremap(&(0x7f0000beb000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000ffa000/0x3000)=nil) 12:20:47 executing program 5: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, 0x0, &(0x7f0000000080)) [ 123.919045] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'. [ 123.942559] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 123.943455] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 123.944065] CPU: 0 UID: 0 PID: 3977 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 123.945271] Tainted: [W]=WARN [ 123.946399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 123.950295] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.951913] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.953314] RSP: 0018:ffff888045dbf800 EFLAGS: 00010212 [ 123.953727] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 123.954280] RDX: ffff888014601b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 123.954831] RBP: ffff888045dbfa70 R08: ffff88806ce31340 R09: ffffe8ffffc15d30 [ 123.955379] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 123.955940] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 123.956493] FS: 000055557e43e400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 123.957109] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.957558] CR2: 00007fc900c903a4 CR3: 0000000046757000 CR4: 0000000000350ef0 [ 123.958109] Call Trace: [ 123.958312] [ 123.958495] ? arch_scale_cpu_capacity+0x17/0xa0 [ 123.958877] ? __pfx_perf_tp_event+0x10/0x10 [ 123.959225] ? __asan_memset+0x24/0x50 [ 123.959547] ? perf_trace_lock+0xb5/0x5d0 [ 123.959888] ? kvm_sched_clock_read+0x16/0x30 [ 123.960246] ? sched_clock+0x37/0x60 [ 123.960547] ? sched_clock_cpu+0x6c/0x4e0 [ 123.960878] ? lock_is_held_type+0x9e/0x120 [ 123.961223] ? perf_trace_run_bpf_submit+0xef/0x180 [ 123.961617] perf_trace_run_bpf_submit+0xef/0x180 [ 123.962013] perf_trace_lock+0x337/0x5d0 [ 123.962338] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.962702] ? lock_acquire+0x15e/0x2f0 [ 123.963020] ? futex_ref_get+0x48/0x300 [ 123.963332] ? futex_ref_get+0x114/0x300 [ 123.963660] ? futex_hash+0x15c/0x390 [ 123.963962] lock_release+0x1ab/0x290 [ 123.964270] ? futex_hash+0x15c/0x390 [ 123.964570] futex_ref_get+0x119/0x300 [ 123.964877] ? futex_hash+0x15c/0x390 [ 123.965180] futex_hash+0x70/0x390 [ 123.965470] futex_wake+0x143/0x540 [ 123.965762] ? put_pid+0x1f/0x30 [ 123.966033] ? kernel_clone+0x204/0x7f0 [ 123.966344] ? __pfx_futex_wake+0x10/0x10 [ 123.966673] ? __pfx_kernel_clone+0x10/0x10 [ 123.967015] ? perf_trace_lock+0xb5/0x5d0 [ 123.967349] do_futex+0x26d/0x370 [ 123.967628] ? __pfx_do_futex+0x10/0x10 [ 123.967954] ? __pfx___do_sys_clone+0x10/0x10 [ 123.968309] ? find_held_lock+0x2b/0x80 [ 123.968634] __x64_sys_futex+0x1c9/0x4d0 [ 123.968957] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 123.969415] ? __pfx___x64_sys_futex+0x10/0x10 [ 123.969776] ? xfd_validate_state+0x55/0x180 [ 123.970136] do_syscall_64+0xbf/0x360 [ 123.970438] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.970841] RIP: 0033:0x7fa657733b19 [ 123.971131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.972532] RSP: 002b:00007fff01435248 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.973122] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa657733b19 [ 123.973670] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa657846f68 [ 123.974223] RBP: 00007fa657846f60 R08: 00007fa654ca9700 R09: 0000000000000000 [ 123.974772] R10: 00007fa654ca9700 R11: 0000000000000246 R12: 00007fa65784b060 [ 123.975320] R13: 00007fff01435350 R14: 00007fa657846f60 R15: 000000000001e34f [ 123.975879] [ 123.976064] Modules linked in: [ 123.976342] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 123.977192] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 123.977772] CPU: 0 UID: 0 PID: 3977 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) [ 123.978685] Tainted: [D]=DIE, [W]=WARN [ 123.978982] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 123.979611] RIP: 0010:perf_tp_event+0x175/0xe70 [ 123.979987] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 123.981374] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012 [ 123.981787] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 123.982332] RDX: ffff888014601b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 123.982877] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc15d30 [ 123.983425] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000 [ 123.983980] R13: 0000000000000024 R14: ffff88806ce31490 R15: dffffc0000000000 [ 123.984528] FS: 000055557e43e400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 123.985142] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.985591] CR2: 00007fc900c903a4 CR3: 0000000046757000 CR4: 0000000000350ef0 [ 123.986142] Call Trace: [ 123.986344] [ 123.986523] ? __pfx_perf_tp_event+0x10/0x10 [ 123.986877] ? perf_trace_lock+0xb5/0x5d0 [ 123.987204] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.987567] ? perf_trace_lock+0xb5/0x5d0 [ 123.987903] ? trace_sched_set_need_resched_tp+0xd4/0x110 [ 123.988338] ? __resched_curr+0x2a2/0x330 [ 123.988666] ? __pfx___resched_curr+0x10/0x10 [ 123.989028] ? perf_trace_run_bpf_submit+0xef/0x180 [ 123.989420] perf_trace_run_bpf_submit+0xef/0x180 [ 123.989804] perf_trace_lock+0x337/0x5d0 [ 123.990125] ? update_cfs_group+0x11d/0x260 [ 123.990464] ? kvm_sched_clock_read+0x16/0x30 [ 123.990821] ? __pfx_perf_trace_lock+0x10/0x10 [ 123.991181] ? check_preempt_wakeup_fair+0x6e/0x950 [ 123.991574] ? sched_ttwu_pending+0x2e0/0x4a0 [ 123.991938] lock_release+0x1ab/0x290 [ 123.992239] ? ttwu_do_activate+0x1a4/0x8a0 [ 123.992580] _raw_spin_unlock+0x16/0x40 [ 123.992898] sched_ttwu_pending+0x2e0/0x4a0 [ 123.993240] ? __pfx_sched_ttwu_pending+0x10/0x10 [ 123.993622] ? hrtimer_interrupt+0x652/0x830 [ 123.993972] __flush_smp_call_function_queue+0x434/0x740 [ 123.994401] __sysvec_call_function_single+0x6d/0x370 [ 123.994813] sysvec_call_function_single+0xa1/0xc0 [ 123.995200] [ 123.995381] [ 123.995560] asm_sysvec_call_function_single+0x1a/0x20 [ 123.995974] RIP: 0010:oops_exit+0x0/0x50 [ 123.996296] Code: 00 3a 00 be ff ff ff ff 48 c7 c7 50 b4 43 86 e8 c6 0f f9 ff 5b e9 50 00 3a 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 36 00 3a 00 8b 1d c0 3d 4f 06 31 ff 89 de e8 57 [ 123.997686] RSP: 0018:ffff888045dbf690 EFLAGS: 00000202 [ 123.998098] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f [ 123.998644] RDX: ffff888014601b80 RSI: ffffffff812a3dca RDI: 0000000000000007 [ 123.999191] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f12690 [ 123.999739] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888045dbf758 [ 124.000287] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 124.000839] ? add_taint+0x5f/0xd0 [ 124.001123] ? oops_end+0x4a/0xe0 [ 124.001409] oops_end+0x65/0xe0 [ 124.001682] exc_general_protection+0x1a2/0x330 [ 124.002057] asm_exc_general_protection+0x26/0x30 [ 124.002435] RIP: 0010:perf_tp_event+0x175/0xe70 [ 124.002806] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 124.004199] RSP: 0018:ffff888045dbf800 EFLAGS: 00010212 [ 124.004610] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 124.005157] RDX: ffff888014601b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 124.005702] RBP: ffff888045dbfa70 R08: ffff88806ce31340 R09: ffffe8ffffc15d30 [ 124.006249] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 124.006795] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 124.007345] ? perf_tp_event+0x167/0xe70 [ 124.007676] ? arch_scale_cpu_capacity+0x17/0xa0 [ 124.008055] ? __pfx_perf_tp_event+0x10/0x10 [ 124.008406] ? __asan_memset+0x24/0x50 [ 124.008725] ? perf_trace_lock+0xb5/0x5d0 [ 124.009053] ? kvm_sched_clock_read+0x16/0x30 [ 124.009409] ? sched_clock+0x37/0x60 [ 124.009707] ? sched_clock_cpu+0x6c/0x4e0 [ 124.010033] ? lock_is_held_type+0x9e/0x120 [ 124.010379] ? perf_trace_run_bpf_submit+0xef/0x180 [ 124.010775] perf_trace_run_bpf_submit+0xef/0x180 [ 124.011160] perf_trace_lock+0x337/0x5d0 [ 124.011482] ? __pfx_perf_trace_lock+0x10/0x10 [ 124.011853] ? lock_acquire+0x15e/0x2f0 [ 124.012165] ? futex_ref_get+0x48/0x300 [ 124.012478] ? futex_ref_get+0x114/0x300 [ 124.012794] ? futex_hash+0x15c/0x390 [ 124.013093] lock_release+0x1ab/0x290 [ 124.013397] ? futex_hash+0x15c/0x390 [ 124.013696] futex_ref_get+0x119/0x300 [ 124.014002] ? futex_hash+0x15c/0x390 [ 124.014302] futex_hash+0x70/0x390 [ 124.014585] futex_wake+0x143/0x540 [ 124.014876] ? put_pid+0x1f/0x30 [ 124.015146] ? kernel_clone+0x204/0x7f0 [ 124.015457] ? __pfx_futex_wake+0x10/0x10 [ 124.015794] ? __pfx_kernel_clone+0x10/0x10 [ 124.016137] ? perf_trace_lock+0xb5/0x5d0 [ 124.016466] do_futex+0x26d/0x370 [ 124.016741] ? __pfx_do_futex+0x10/0x10 [ 124.017056] ? __pfx___do_sys_clone+0x10/0x10 [ 124.017408] ? find_held_lock+0x2b/0x80 [ 124.017727] __x64_sys_futex+0x1c9/0x4d0 [ 124.018049] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 124.018500] ? __pfx___x64_sys_futex+0x10/0x10 [ 124.018861] ? xfd_validate_state+0x55/0x180 [ 124.019217] do_syscall_64+0xbf/0x360 [ 124.019517] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.019922] RIP: 0033:0x7fa657733b19 [ 124.020213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.021603] RSP: 002b:00007fff01435248 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.022182] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa657733b19 [ 124.022731] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa657846f68 [ 124.023278] RBP: 00007fa657846f60 R08: 00007fa654ca9700 R09: 0000000000000000 [ 124.023829] R10: 00007fa654ca9700 R11: 0000000000000246 R12: 00007fa65784b060 [ 124.024378] R13: 00007fff01435350 R14: 00007fa657846f60 R15: 000000000001e34f [ 124.024931] [ 124.025115] Modules linked in: [ 124.025369] ---[ end trace 0000000000000000 ]--- [ 124.025732] RIP: 0010:perf_tp_event+0x175/0xe70 [ 124.026099] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 124.027487] RSP: 0018:ffff888045dbf800 EFLAGS: 00010212 [ 124.027905] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 124.028451] RDX: ffff888014601b80 RSI: ffffffff8189a4e7 RDI: 0000000000000191 [ 124.028996] RBP: ffff888045dbfa70 R08: ffff88806ce31340 R09: ffffe8ffffc15d30 [ 124.029543] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 124.030092] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000 [ 124.030639] FS: 000055557e43e400(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000 [ 124.031257] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.031715] CR2: 00007fc900c903a4 CR3: 0000000046757000 CR4: 0000000000350ef0 [ 124.032265] Kernel panic - not syncing: Fatal exception in interrupt [ 125.077086] Shutting down cpus with NMI [ 125.077596] Kernel Offset: disabled [ 125.077880] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 12:20:48 Registers: info registers vcpu 0 RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888045dbf198 R8 =0000000000000000 R9 =ffffed1001656046 R10=0000000000000064 R11=6572617764726148 R12=0000000000000064 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0 RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055557e43e400 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe1600000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc900c903a4 CR3=0000000046757000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fa65781a7c000007fa65781a7c8 XMM02=00007fa65781a7e000007fa65781a7c0 XMM03=00007fa65781a7c800007fa65781a7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=dffffc0000000000 RCX=ffffffff81654754 RDX=ffff888015c80000 RSI=ffffffff8165a8dc RDI=0000000000000000 RBP=0000001cd0ca4080 RSP=ffff88806cf08f38 R8 =ffffffff84ca6fe0 R9 =0000000000000000 R10=0000000000000000 R11=ffff88806cf37018 R12=0000000000000046 R13=ffff88806cf280cc R14=0000000000000000 R15=ffff88806cf28080 RIP=ffffffff8161fa2c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1091e8f8c0 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe6300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555572239c58 CR3=000000000b630000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=0000000000000021000000302f716d2f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055624aae6a40000055624b37be60 XMM06=000055624b3684000000000000000000 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000