Warning: Permanently added '[localhost]:9227' (ECDSA) to the list of known hosts.
2025/08/29 10:05:06 fuzzer started
2025/08/29 10:05:06 dialing manager at localhost:43077
syzkaller login: [ 50.947708] cgroup: Unknown subsys name 'net'
[ 50.986212] cgroup: Unknown subsys name 'cpuset'
[ 51.001964] cgroup: Unknown subsys name 'rlimit'
2025/08/29 10:05:17 syscalls: 2214
2025/08/29 10:05:17 code coverage: enabled
2025/08/29 10:05:17 comparison tracing: enabled
2025/08/29 10:05:17 extra coverage: enabled
2025/08/29 10:05:17 setuid sandbox: enabled
2025/08/29 10:05:17 namespace sandbox: enabled
2025/08/29 10:05:17 Android sandbox: enabled
2025/08/29 10:05:17 fault injection: enabled
2025/08/29 10:05:17 leak checking: enabled
2025/08/29 10:05:17 net packet injection: enabled
2025/08/29 10:05:17 net device setup: enabled
2025/08/29 10:05:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 10:05:17 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 10:05:17 USB emulation: enabled
2025/08/29 10:05:17 hci packet injection: enabled
2025/08/29 10:05:17 wifi device emulation: enabled
2025/08/29 10:05:17 802.15.4 emulation: enabled
2025/08/29 10:05:17 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 10:05:17 fetching corpus: 50, signal 29205/32492 (executing program)
2025/08/29 10:05:17 fetching corpus: 100, signal 35548/40241 (executing program)
2025/08/29 10:05:17 fetching corpus: 150, signal 41631/47626 (executing program)
2025/08/29 10:05:17 fetching corpus: 200, signal 47411/54565 (executing program)
2025/08/29 10:05:17 fetching corpus: 250, signal 52962/61170 (executing program)
2025/08/29 10:05:17 fetching corpus: 300, signal 58948/68041 (executing program)
2025/08/29 10:05:17 fetching corpus: 350, signal 61797/71960 (executing program)
2025/08/29 10:05:17 fetching corpus: 400, signal 64677/75831 (executing program)
2025/08/29 10:05:18 fetching corpus: 450, signal 67759/79785 (executing program)
2025/08/29 10:05:18 fetching corpus: 500, signal 70985/83814 (executing program)
2025/08/29 10:05:18 fetching corpus: 550, signal 72763/86527 (executing program)
2025/08/29 10:05:18 fetching corpus: 600, signal 77067/91339 (executing program)
2025/08/29 10:05:18 fetching corpus: 650, signal 80350/95171 (executing program)
2025/08/29 10:05:18 fetching corpus: 700, signal 82623/98083 (executing program)
2025/08/29 10:05:18 fetching corpus: 750, signal 85190/101191 (executing program)
2025/08/29 10:05:18 fetching corpus: 800, signal 87787/104282 (executing program)
2025/08/29 10:05:18 fetching corpus: 850, signal 89388/106495 (executing program)
2025/08/29 10:05:19 fetching corpus: 900, signal 91488/109053 (executing program)
2025/08/29 10:05:19 fetching corpus: 950, signal 92621/110873 (executing program)
2025/08/29 10:05:19 fetching corpus: 1000, signal 94946/113655 (executing program)
2025/08/29 10:05:19 fetching corpus: 1050, signal 97049/116105 (executing program)
2025/08/29 10:05:19 fetching corpus: 1100, signal 98766/118238 (executing program)
2025/08/29 10:05:19 fetching corpus: 1150, signal 100271/120123 (executing program)
2025/08/29 10:05:19 fetching corpus: 1200, signal 101848/122101 (executing program)
2025/08/29 10:05:19 fetching corpus: 1250, signal 103768/124221 (executing program)
2025/08/29 10:05:19 fetching corpus: 1300, signal 105367/126078 (executing program)
2025/08/29 10:05:19 fetching corpus: 1350, signal 107641/128385 (executing program)
2025/08/29 10:05:20 fetching corpus: 1400, signal 108940/129965 (executing program)
2025/08/29 10:05:20 fetching corpus: 1450, signal 109622/131116 (executing program)
2025/08/29 10:05:20 fetching corpus: 1500, signal 111304/132892 (executing program)
2025/08/29 10:05:20 fetching corpus: 1550, signal 112221/134180 (executing program)
2025/08/29 10:05:20 fetching corpus: 1600, signal 113946/135885 (executing program)
2025/08/29 10:05:20 fetching corpus: 1650, signal 115082/137259 (executing program)
2025/08/29 10:05:20 fetching corpus: 1700, signal 116244/138575 (executing program)
2025/08/29 10:05:20 fetching corpus: 1750, signal 117269/139810 (executing program)
2025/08/29 10:05:20 fetching corpus: 1800, signal 118220/141000 (executing program)
2025/08/29 10:05:20 fetching corpus: 1850, signal 119051/142066 (executing program)
2025/08/29 10:05:21 fetching corpus: 1900, signal 120139/143268 (executing program)
2025/08/29 10:05:21 fetching corpus: 1950, signal 122206/144867 (executing program)
2025/08/29 10:05:21 fetching corpus: 2000, signal 123468/146066 (executing program)
2025/08/29 10:05:21 fetching corpus: 2050, signal 124155/147008 (executing program)
2025/08/29 10:05:21 fetching corpus: 2100, signal 124841/147887 (executing program)
2025/08/29 10:05:21 fetching corpus: 2150, signal 125402/148679 (executing program)
2025/08/29 10:05:21 fetching corpus: 2200, signal 126561/149733 (executing program)
2025/08/29 10:05:21 fetching corpus: 2250, signal 127130/150541 (executing program)
2025/08/29 10:05:21 fetching corpus: 2300, signal 128096/151518 (executing program)
2025/08/29 10:05:21 fetching corpus: 2350, signal 128821/152377 (executing program)
2025/08/29 10:05:21 fetching corpus: 2400, signal 129916/153407 (executing program)
2025/08/29 10:05:22 fetching corpus: 2450, signal 130295/154054 (executing program)
2025/08/29 10:05:22 fetching corpus: 2500, signal 131619/155070 (executing program)
2025/08/29 10:05:22 fetching corpus: 2550, signal 132358/155839 (executing program)
2025/08/29 10:05:22 fetching corpus: 2600, signal 132985/156536 (executing program)
2025/08/29 10:05:22 fetching corpus: 2650, signal 133832/157296 (executing program)
2025/08/29 10:05:22 fetching corpus: 2700, signal 134518/157961 (executing program)
2025/08/29 10:05:22 fetching corpus: 2750, signal 135324/158699 (executing program)
2025/08/29 10:05:22 fetching corpus: 2800, signal 136482/159589 (executing program)
2025/08/29 10:05:22 fetching corpus: 2850, signal 136961/160145 (executing program)
2025/08/29 10:05:22 fetching corpus: 2900, signal 138011/160868 (executing program)
2025/08/29 10:05:23 fetching corpus: 2950, signal 138656/161429 (executing program)
2025/08/29 10:05:23 fetching corpus: 3000, signal 139953/162144 (executing program)
2025/08/29 10:05:23 fetching corpus: 3050, signal 140476/162694 (executing program)
2025/08/29 10:05:23 fetching corpus: 3100, signal 141108/163224 (executing program)
2025/08/29 10:05:23 fetching corpus: 3150, signal 141569/163701 (executing program)
2025/08/29 10:05:23 fetching corpus: 3200, signal 142035/164136 (executing program)
2025/08/29 10:05:23 fetching corpus: 3250, signal 142545/164592 (executing program)
2025/08/29 10:05:23 fetching corpus: 3300, signal 143401/165063 (executing program)
2025/08/29 10:05:23 fetching corpus: 3350, signal 144167/165518 (executing program)
2025/08/29 10:05:23 fetching corpus: 3400, signal 145528/166089 (executing program)
2025/08/29 10:05:24 fetching corpus: 3450, signal 146217/166517 (executing program)
2025/08/29 10:05:24 fetching corpus: 3500, signal 147257/167090 (executing program)
2025/08/29 10:05:24 fetching corpus: 3550, signal 147729/167424 (executing program)
2025/08/29 10:05:24 fetching corpus: 3600, signal 148285/167810 (executing program)
2025/08/29 10:05:24 fetching corpus: 3650, signal 148982/168200 (executing program)
2025/08/29 10:05:24 fetching corpus: 3700, signal 149815/168564 (executing program)
2025/08/29 10:05:24 fetching corpus: 3750, signal 150349/168850 (executing program)
2025/08/29 10:05:24 fetching corpus: 3800, signal 150893/169130 (executing program)
2025/08/29 10:05:24 fetching corpus: 3850, signal 151243/169374 (executing program)
2025/08/29 10:05:24 fetching corpus: 3900, signal 151964/169634 (executing program)
2025/08/29 10:05:25 fetching corpus: 3950, signal 152923/169921 (executing program)
2025/08/29 10:05:25 fetching corpus: 4000, signal 153494/170185 (executing program)
2025/08/29 10:05:25 fetching corpus: 4050, signal 153870/170375 (executing program)
2025/08/29 10:05:25 fetching corpus: 4100, signal 154353/170562 (executing program)
2025/08/29 10:05:25 fetching corpus: 4150, signal 154762/170592 (executing program)
2025/08/29 10:05:25 fetching corpus: 4200, signal 155203/170608 (executing program)
2025/08/29 10:05:25 fetching corpus: 4250, signal 155876/170629 (executing program)
2025/08/29 10:05:25 fetching corpus: 4300, signal 156407/170645 (executing program)
2025/08/29 10:05:25 fetching corpus: 4350, signal 156982/170647 (executing program)
2025/08/29 10:05:25 fetching corpus: 4400, signal 157425/170679 (executing program)
2025/08/29 10:05:26 fetching corpus: 4450, signal 157932/170683 (executing program)
2025/08/29 10:05:26 fetching corpus: 4500, signal 158388/170711 (executing program)
2025/08/29 10:05:26 fetching corpus: 4550, signal 158819/170764 (executing program)
2025/08/29 10:05:26 fetching corpus: 4600, signal 159301/170767 (executing program)
2025/08/29 10:05:26 fetching corpus: 4650, signal 159737/170796 (executing program)
2025/08/29 10:05:26 fetching corpus: 4700, signal 160270/170808 (executing program)
2025/08/29 10:05:26 fetching corpus: 4750, signal 160777/170816 (executing program)
2025/08/29 10:05:26 fetching corpus: 4800, signal 161125/170828 (executing program)
2025/08/29 10:05:26 fetching corpus: 4850, signal 161704/170828 (executing program)
2025/08/29 10:05:26 fetching corpus: 4900, signal 162076/170839 (executing program)
2025/08/29 10:05:26 fetching corpus: 4950, signal 162711/170847 (executing program)
2025/08/29 10:05:27 fetching corpus: 5000, signal 163242/170847 (executing program)
2025/08/29 10:05:27 fetching corpus: 5050, signal 163751/170847 (executing program)
2025/08/29 10:05:27 fetching corpus: 5100, signal 164010/170865 (executing program)
2025/08/29 10:05:27 fetching corpus: 5150, signal 164363/170872 (executing program)
2025/08/29 10:05:27 fetching corpus: 5200, signal 164822/170915 (executing program)
2025/08/29 10:05:27 fetching corpus: 5250, signal 165319/170926 (executing program)
2025/08/29 10:05:27 fetching corpus: 5300, signal 165640/170931 (executing program)
2025/08/29 10:05:27 fetching corpus: 5350, signal 166173/170932 (executing program)
2025/08/29 10:05:27 fetching corpus: 5400, signal 166562/170940 (executing program)
2025/08/29 10:05:27 fetching corpus: 5450, signal 167088/170960 (executing program)
2025/08/29 10:05:27 fetching corpus: 5500, signal 167471/170978 (executing program)
2025/08/29 10:05:28 fetching corpus: 5550, signal 167796/170978 (executing program)
2025/08/29 10:05:28 fetching corpus: 5600, signal 168248/170983 (executing program)
2025/08/29 10:05:28 fetching corpus: 5650, signal 168549/170983 (executing program)
2025/08/29 10:05:28 fetching corpus: 5668, signal 168632/170983 (executing program)
2025/08/29 10:05:28 fetching corpus: 5668, signal 168632/170983 (executing program)
2025/08/29 10:05:30 starting 8 fuzzer processes
10:05:30 executing program 0:
set_mempolicy(0x2004, 0x0, 0x0)
10:05:30 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/igmp\x00')
read(r0, &(0x7f0000000300)=""/4096, 0x1000)
10:05:30 executing program 1:
clone(0x44104900, &(0x7f0000000040), 0x0, 0x0, 0x0)
10:05:30 executing program 3:
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'ipvlan1\x00'})
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0xb)
10:05:30 executing program 6:
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x127800, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="00000000000000000000000000000000000000000000000000000000000000ffffff00ffffff000000000000000000ffffff00ffffff000000000000000000ffffff00ffffff000000000000000000ffffff00ffffff000000000000000055aa", 0x60, 0x1a0}, {&(0x7f0000010100)="4244db8cf0c2db8cf0c2818000060003003501b800000800000020000004000000180000054344524f4d000000000000000000000000000000000000000000000000000000000000006b000060000000c00000010000000700000001000000000000000000000000000000000000000000000000000000000000000000000000000000006000018f000c00000000000000000000c000019b0018000000000000", 0xa0, 0x400}, {&(0x7f0000010200)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x200, 0x600}, {&(0x7f0000010400)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010a00)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010b00)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010c00)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010d00)="2200170000000000001700080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012c00190000000000001964000000000000647809140b2a3a08000000010000010a46494c452e434f4c3b31002600180000000000001800080000000008007809140b2a3a08020000010000010546494c45302a001a0000000000001a0a0000000000000a7809140b2a3a08000000010000010846494c45312e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45322e3b31002a00200000000000002028230000000023287809140b2a3a08000000010000010846494c45332e3b3100"/288, 0x120, 0xb800}, {&(0x7f0000010f00)="2200180000000000001800080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012a0025000000000000251a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xc000}, {&(0x7f0000011000)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xc800}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0xd000}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x12800}, {&(0x7f0000011700)="000000000000000001000003000000000000000000000000000000000000000002000007000000300000002f00"/64, 0x40, 0xc8000}, {&(0x7f0000011800)="0000000000000000000000000000000000000000000000008000000000000000", 0x20, 0xc80e0}, {&(0x7f0000011900)="00000000000000000000000000000000000000000000000001f800f80078000e", 0x20, 0xc81e0}, {&(0x7f0000011a00)="00000000000000000100000300000002000000030000000b000000010000000402000025000000600000005b00"/64, 0x40, 0xce000}, {&(0x7f0000011b00)="000000000000000000000000000000000000000000000000f800000000000000", 0x20, 0xce0e0}, {&(0x7f0000011c00)="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"/1216, 0x4c0, 0xce1e0}, {&(0x7f0000012100)="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", 0x220, 0xce7e0}, {&(0x7f0000012400)="00000000000000000000000000000000000000000000000041e1000000000000", 0x20, 0xcfbc0}, {&(0x7f0000012500)="000000000000000001000003000000000000000000000000000000000000000002000025000000100000000f00000000200000ff00"/64, 0x40, 0xda000}, {&(0x7f0000012600)="000000000000000000000000000000000000000000000000020a010000000000", 0x20, 0xda060}, {&(0x7f0000012700)="0000000000000000000000000000000000000000000000008000000000000000", 0x20, 0xda0e0}, {&(0x7f0000012800)="00000000000000000000000000000000000000000000000001f800f80078000e", 0x20, 0xda1e0}, {&(0x7f0000012900)="4244db8cf0c2db8cf0c2010000000003002401b800000800000020000004000000100194054344524f4d0000000000000000000000000000000000000000000000000000000000000005000060000000c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000c00000000000000000000c000000c0018000000000000", 0xa0, 0xdc000}], 0x0, &(0x7f0000012a00))
10:05:30 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000001b00)={0x1f, 0x0, @fixed, 0x49, 0x2}, 0xe)
10:05:30 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
readv(r0, &(0x7f0000000340)=[{&(0x7f0000000140)=""/243, 0xf3}], 0x1)
10:05:30 executing program 5:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000280), 0x800, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000400))
r2 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000900)="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", 0x1ba)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r2, 0x4, 0x44000)
sendfile(r2, r3, 0x0, 0xfdef)
sendfile(r0, r1, 0x0, 0xfdef)
[ 74.780588] audit: type=1400 audit(1756461930.695:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[ 76.074045] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 76.076172] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 76.078178] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 76.080574] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 76.084823] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 76.088203] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 76.090340] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 76.099505] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 76.106997] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 76.111509] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 76.129316] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 76.141398] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 76.143131] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 76.148784] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 76.150361] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 76.152076] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 76.154118] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 76.155295] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 76.158201] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 76.159913] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 76.162894] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 76.165180] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 76.166506] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 76.171921] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 76.173897] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 76.179080] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 76.181256] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 76.182491] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 76.183661] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 76.184325] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 76.186143] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 76.187272] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 76.188147] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 76.189420] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 76.190465] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 76.196992] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 76.217975] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 76.226365] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 76.227842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 76.239906] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 78.161299] Bluetooth: hci4: command tx timeout
[ 78.161307] Bluetooth: hci1: command tx timeout
[ 78.225170] Bluetooth: hci5: command tx timeout
[ 78.225352] Bluetooth: hci3: command tx timeout
[ 78.288797] Bluetooth: hci6: command tx timeout
[ 78.289505] Bluetooth: hci7: command tx timeout
[ 78.290208] Bluetooth: hci2: command tx timeout
[ 78.290259] Bluetooth: hci0: command tx timeout
[ 80.208769] Bluetooth: hci4: command tx timeout
[ 80.209722] Bluetooth: hci1: command tx timeout
[ 80.272727] Bluetooth: hci5: command tx timeout
[ 80.274650] Bluetooth: hci3: command tx timeout
[ 80.338649] Bluetooth: hci0: command tx timeout
[ 80.338746] Bluetooth: hci6: command tx timeout
[ 80.339132] Bluetooth: hci2: command tx timeout
[ 80.339906] Bluetooth: hci7: command tx timeout
[ 82.257963] Bluetooth: hci1: command tx timeout
[ 82.258419] Bluetooth: hci4: command tx timeout
[ 82.321733] Bluetooth: hci3: command tx timeout
[ 82.322172] Bluetooth: hci5: command tx timeout
[ 82.384693] Bluetooth: hci6: command tx timeout
[ 82.385127] Bluetooth: hci7: command tx timeout
[ 82.385766] Bluetooth: hci0: command tx timeout
[ 82.386160] Bluetooth: hci2: command tx timeout
[ 84.304781] Bluetooth: hci4: command tx timeout
[ 84.305237] Bluetooth: hci1: command tx timeout
[ 84.368704] Bluetooth: hci3: command tx timeout
[ 84.369137] Bluetooth: hci5: command tx timeout
[ 84.432998] Bluetooth: hci2: command tx timeout
[ 84.433418] Bluetooth: hci0: command tx timeout
[ 84.433879] Bluetooth: hci6: command tx timeout
[ 84.433976] Bluetooth: hci7: command tx timeout
[ 113.244948] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.245771] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.432848] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.433466] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.572670] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.573294] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.704513] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.705188] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:06:09 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/igmp\x00')
read(r0, &(0x7f0000000300)=""/4096, 0x1000)
10:06:09 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/igmp\x00')
read(r0, &(0x7f0000000300)=""/4096, 0x1000)
[ 114.020336] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.020974] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:06:09 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/igmp\x00')
read(r0, &(0x7f0000000300)=""/4096, 0x1000)
[ 114.094430] audit: type=1400 audit(1756461970.009:8): avc: denied { open } for pid=3859 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 114.101695] audit: type=1400 audit(1756461970.009:9): avc: denied { kernel } for pid=3859 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 114.142664] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.143242] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:06:10 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000080)={0x2}, 0x2)
[ 114.196423] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.197056] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:06:10 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000080)={0x2}, 0x2)
10:06:10 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000080)={0x2}, 0x2)
[ 114.291035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.291702] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:06:10 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000080)={0x2}, 0x2)
[ 114.398337] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.399092] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:06:10 executing program 2:
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300000c)
[ 114.546711] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.547338] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.596667] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.597316] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.720153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.721859] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.746264] loop6: detected capacity change from 0 to 3520
[ 114.867461] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.868173] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.957925] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.958517] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.089122] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 115.089833] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.161948] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 115.163676] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:06:11 executing program 1:
clone(0x44104900, &(0x7f0000000040), 0x0, 0x0, 0x0)
10:06:11 executing program 2:
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300000c)
10:06:11 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x4bfa, 0xf0ff1f00000000)
10:06:11 executing program 5:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000280), 0x800, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000400))
r2 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000900)="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", 0x1ba)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r2, 0x4, 0x44000)
sendfile(r2, r3, 0x0, 0xfdef)
sendfile(r0, r1, 0x0, 0xfdef)
10:06:11 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
readv(r0, &(0x7f0000000340)=[{&(0x7f0000000140)=""/243, 0xf3}], 0x1)
10:06:11 executing program 3:
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'ipvlan1\x00'})
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0xb)
10:06:11 executing program 0:
set_mempolicy(0x2004, 0x0, 0x0)
10:06:11 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000001b00)={0x1f, 0x0, @fixed, 0x49, 0x2}, 0xe)
10:06:11 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000001b00)={0x1f, 0x0, @fixed, 0x49, 0x2}, 0xe)
10:06:11 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x4bfa, 0xf0ff1f00000000)
10:06:11 executing program 2:
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300000c)
10:06:11 executing program 3:
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'ipvlan1\x00'})
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0xb)
10:06:11 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x4bfa, 0xf0ff1f00000000)
10:06:11 executing program 0:
set_mempolicy(0x2004, 0x0, 0x0)
10:06:11 executing program 2:
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300000c)
10:06:12 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x4bfa, 0xf0ff1f00000000)
10:06:12 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000001b00)={0x1f, 0x0, @fixed, 0x49, 0x2}, 0xe)
10:06:12 executing program 0:
set_mempolicy(0x2004, 0x0, 0x0)
10:06:12 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
readv(r0, &(0x7f0000000340)=[{&(0x7f0000000140)=""/243, 0xf3}], 0x1)
10:06:12 executing program 3:
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'ipvlan1\x00'})
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0xb)
10:06:12 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
readv(r0, &(0x7f0000000340)=[{&(0x7f0000000140)=""/243, 0xf3}], 0x1)
10:06:12 executing program 5:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000280), 0x800, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000400))
r2 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0f300cb97f6a204cc586e45dfb949002f61f8fb969dd435dd0c37c5077e5b10cfeafd75205e215b167323a3b971b0ec98e6c3d4d825cae01271cb35cdd091e4872367f354e0dc81a7e4ac79775bc1dcaafe2f5079da79d1989f1ddce6722fc438a7217526cfe75d53471624d6f091e19a7fb699ea27efa9e0fd1914e7c35f297afd9b9b85ff0ce7a982f4fa0c172ea5f06479eec302f30e5df66273717e028f4ca7d4c5b6bc8a3c3c67f688195f22488a15d9e1f7e5fed3a6c2aba7bc308b0e2c5657f4538f4a3bf9b975bb887a901ab3c85261be3e331b741313e78b5ad63b7b1b378e9c79dc4a95b2b4d15cd1d1b808844378f882a72af1e5b0eefd356e0247246e60643204c3b46183dbe4e066c55cb1dcdaa7b70ef43ab2fa4d2b8c4c1a89cb0e325fd9716874d3856cf368efd1f92d21214e55e4de647c37c71887d11f74f9afe1616e3054ceae601e4b3555e243c1882ad42c7730caeb309e7714ad87c55e9fba308cfc4161e562abde3ac4f3d7e0a3584d4928100197f102307c05c0b4b4898b0591bc1433af443478979f28e6136ffb21aaeac2be5490475a08", 0x1ba)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r2, 0x4, 0x44000)
sendfile(r2, r3, 0x0, 0xfdef)
sendfile(r0, r1, 0x0, 0xfdef)
10:06:12 executing program 1:
clone(0x44104900, &(0x7f0000000040), 0x0, 0x0, 0x0)
[ 116.282554] kmemleak: Found object by alias at 0x607f1a639a14
[ 116.282576] CPU: 1 UID: 0 PID: 3958 Comm: syz-executor.0 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.282594] Tainted: [W]=WARN
[ 116.282598] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.282605] Call Trace:
[ 116.282609]
[ 116.282617] dump_stack_lvl+0xca/0x120
[ 116.282642] __lookup_object+0x94/0xb0
[ 116.282659] delete_object_full+0x27/0x70
[ 116.282675] free_percpu+0x30/0x1160
[ 116.282691] ? arch_uprobe_clear_state+0x16/0x140
[ 116.282711] futex_hash_free+0x38/0xc0
[ 116.282725] mmput+0x2d3/0x390
[ 116.282744] do_exit+0x79d/0x2970
[ 116.282757] ? signal_wake_up_state+0x85/0x120
[ 116.282773] ? zap_other_threads+0x2b9/0x3a0
[ 116.282788] ? __pfx_do_exit+0x10/0x10
[ 116.282800] ? do_group_exit+0x1c3/0x2a0
[ 116.282813] ? lock_release+0xc8/0x290
[ 116.282830] do_group_exit+0xd3/0x2a0
[ 116.282844] __x64_sys_exit_group+0x3e/0x50
[ 116.282858] x64_sys_call+0x18c5/0x18d0
[ 116.282873] do_syscall_64+0xbf/0x360
[ 116.282885] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 116.282895] RIP: 0033:0x7f9077852b19
[ 116.282904] Code: Unable to access opcode bytes at 0x7f9077852aef.
[ 116.282909] RSP: 002b:00007fffce02d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 116.282921] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f9077852b19
[ 116.282928] RDX: 00007f907780572b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 116.282935] RBP: 0000000000000000 R08: 0000001b2cb2001c R09: 0000000000000000
[ 116.282942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 116.282948] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffce02d120
[ 116.282964]
[ 116.282967] kmemleak: Object (percpu) 0x607f1a639a10 (size 8):
[ 116.282974] kmemleak: comm "syz-executor.2", pid 3960, jiffies 4294783181
[ 116.282981] kmemleak: min_count = 1
[ 116.282985] kmemleak: count = 0
[ 116.282988] kmemleak: flags = 0x21
[ 116.282992] kmemleak: checksum = 0
[ 116.282995] kmemleak: backtrace:
[ 116.282999] pcpu_alloc_noprof+0x87a/0x1170
[ 116.283013] perf_trace_event_init+0x366/0xa10
[ 116.283029] perf_trace_init+0x1a4/0x2f0
[ 116.283042] perf_tp_event_init+0xa6/0x120
[ 116.283057] perf_try_init_event+0x140/0x9f0
[ 116.283070] perf_event_alloc.part.0+0x118e/0x45f0
[ 116.283086] __do_sys_perf_event_open+0x719/0x2c20
[ 116.283098] do_syscall_64+0xbf/0x360
[ 116.283106] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 116.626657] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 116.627592] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 116.628190] CPU: 0 UID: 0 PID: 3963 Comm: syz-executor.5 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.629917] Tainted: [W]=WARN
[ 116.630764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.632489] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.633453] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.637849] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 116.638268] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 116.638827] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.639390] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.639946] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 116.640500] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.641057] FS: 00007fc64bb8e700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.641680] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.642142] CR2: 00007fbd7e415000 CR3: 0000000046338000 CR4: 0000000000350ef0
[ 116.642700] Call Trace:
[ 116.642910]
[ 116.643090] ? find_held_lock+0x2b/0x80
[ 116.643422] ? __pfx_perf_tp_event+0x10/0x10
[ 116.643774] ? kernel_text_address+0x5b/0xc0
[ 116.644126] ? __kernel_text_address+0xd/0x40
[ 116.644483] ? unwind_get_return_address+0x59/0xa0
[ 116.644884] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 116.645308] ? arch_stack_walk+0x9c/0xf0
[ 116.645631] ? __lock_acquire+0xc65/0x1b70
[ 116.645972] ? lock_acquire+0x15e/0x2f0
[ 116.646286] ? fs_reclaim_acquire+0xae/0x150
[ 116.646635] ? perf_trace_run_bpf_submit+0xef/0x180
[ 116.647031] perf_trace_run_bpf_submit+0xef/0x180
[ 116.647423] perf_trace_contention_end+0x235/0x3e0
[ 116.647813] ? __lock_acquire+0x694/0x1b70
[ 116.648146] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 116.648568] ? __mutex_trylock_common+0xf9/0x260
[ 116.648946] ? __pfx___mutex_trylock_common+0x10/0x10
[ 116.649351] trace_contention_end+0xae/0x110
[ 116.649703] __mutex_lock+0x166/0x1020
[ 116.650019] ? ext4_orphan_add+0x8df/0x1320
[ 116.650363] ? __pfx_ext4_fc_track_inode+0x10/0x10
[ 116.650751] ? __pfx___mutex_lock+0x10/0x10
[ 116.651095] ? __ext4_journal_get_write_access+0x163/0x330
[ 116.651540] ? ext4_reserve_inode_write+0x1a3/0x350
[ 116.651934] ext4_orphan_add+0x8df/0x1320
[ 116.652269] ? __pfx_ext4_orphan_add+0x10/0x10
[ 116.652638] ? __ext4_journal_start_sb+0x325/0x5d0
[ 116.653024] ? __ext4_journal_start_sb+0x1e3/0x5d0
[ 116.653410] ? ext4_file_write_iter+0xd74/0x1990
[ 116.653785] ext4_file_write_iter+0xda6/0x1990
[ 116.654148] ? __pfx_ext4_file_write_iter+0x10/0x10
[ 116.654539] ? trace_kmalloc+0x1f/0xb0
[ 116.654856] ? __kmalloc_noprof+0x29d/0x6e0
[ 116.655200] ? iter_file_splice_write+0x1cd/0x11f0
[ 116.655598] ? splice_from_pipe_next.part.0+0x165/0x510
[ 116.656020] iter_file_splice_write+0xa3b/0x11f0
[ 116.656402] ? trace_sched_exit_tp+0xbf/0x100
[ 116.656762] ? __pfx_iter_file_splice_write+0x10/0x10
[ 116.657183] ? lock_is_held_type+0x9e/0x120
[ 116.657525] ? __pfx_iter_file_splice_write+0x10/0x10
[ 116.657936] direct_splice_actor+0x192/0x7b0
[ 116.658291] splice_direct_to_actor+0x347/0x9d0
[ 116.658663] ? __pfx_direct_splice_actor+0x10/0x10
[ 116.659059] ? __pfx_splice_direct_to_actor+0x10/0x10
[ 116.659477] ? lock_acquire+0x15e/0x2f0
[ 116.659794] do_splice_direct+0x179/0x250
[ 116.660125] ? __pfx_do_splice_direct+0x10/0x10
[ 116.660499] ? __pfx_direct_file_splice_eof+0x10/0x10
[ 116.660914] ? security_file_permission+0x22/0x90
[ 116.661303] do_sendfile+0xa8e/0xdc0
[ 116.661600] ? __pfx_do_sendfile+0x10/0x10
[ 116.661934] ? __pfx___schedule+0x10/0x10
[ 116.662264] ? __x64_sys_futex+0x1c9/0x4d0
[ 116.662602] ? __x64_sys_futex+0x1d2/0x4d0
[ 116.662940] __x64_sys_sendfile64+0x1d3/0x210
[ 116.663308] ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 116.663705] do_syscall_64+0xbf/0x360
[ 116.664012] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 116.664415] RIP: 0033:0x7fc64e618b19
[ 116.664708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 116.666117] RSP: 002b:00007fc64bb8e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 116.666707] RAX: ffffffffffffffda RBX: 00007fc64e72bf60 RCX: 00007fc64e618b19
[ 116.667259] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
[ 116.667819] RBP: 00007fc64e672f6d R08: 0000000000000000 R09: 0000000000000000
[ 116.668371] R10: 000000000000fdef R11: 0000000000000246 R12: 0000000000000000
[ 116.668925] R13: 00007ffee714054f R14: 00007fc64bb8e300 R15: 0000000000022000
[ 116.669483]
[ 116.669670] Modules linked in:
[ 116.670606] ---[ end trace 0000000000000000 ]---
[ 116.679306] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.679700] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.681132] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 116.681553] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 116.682125] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.682699] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.683258] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 116.683845] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.684407] FS: 00007fc64bb8e700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.685048] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.685508] CR2: 00007fbd7e415000 CR3: 0000000046338000 CR4: 0000000000350ef0
[ 116.686084] note: syz-executor.5[3963] exited with preempt_count 2
[ 116.686638] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 116.687513] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 116.688113] CPU: 0 UID: 0 PID: 48 Comm: kworker/u9:3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.689016] Tainted: [D]=DIE, [W]=WARN
[ 116.689319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.689961] Workqueue: events_unbound cfg80211_wiphy_work
[ 116.690393] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.690766] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.692188] RSP: 0018:ffff88800b247700 EFLAGS: 00010212
[ 116.692601] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: 0000000000000002
[ 116.693163] RDX: ffff88800b205280 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.693715] RBP: ffff88800b247970 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.694269] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 116.694823] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.695389] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.696023] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.696479] CR2: 00007fbd7e415000 CR3: 0000000046338000 CR4: 0000000000350ef0
[ 116.697038] Call Trace:
[ 116.697244]
[ 116.697428] ? __pfx_perf_tp_event+0x10/0x10
[ 116.697782] ? arch_stack_walk+0x86/0xf0
[ 116.698113] ? ret_from_fork_asm+0x1a/0x30
[ 116.698452] ? stack_trace_save+0x8e/0xc0
[ 116.698785] ? stack_depot_save_flags+0x2c/0xa20
[ 116.699168] ? kasan_save_stack+0x34/0x50
[ 116.699509] ? kasan_save_stack+0x24/0x50
[ 116.699841] ? kasan_save_track+0x14/0x30
[ 116.700172] ? __kasan_save_free_info+0x3a/0x60
[ 116.700542] ? __kasan_slab_free+0x3f/0x50
[ 116.700884] ? kmem_cache_free+0x2a1/0x540
[ 116.701221] ? ext4_end_io_end+0x13f/0x4b0
[ 116.701562] ? ext4_end_io_rsv_work+0x1b9/0x310
[ 116.701939] ? process_one_work+0x8e1/0x19c0
[ 116.702294] ? worker_thread+0x67e/0xe90
[ 116.702618] ? kthread+0x3c8/0x740
[ 116.702902] ? ret_from_fork+0x34b/0x430
[ 116.703234] ? perf_trace_run_bpf_submit+0xef/0x180
[ 116.703637] perf_trace_run_bpf_submit+0xef/0x180
[ 116.704025] perf_trace_contention_end+0x235/0x3e0
[ 116.704415] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 116.704841] ? __mutex_trylock_common+0xf9/0x260
[ 116.705217] ? __pfx___mutex_trylock_common+0x10/0x10
[ 116.705629] trace_contention_end+0xae/0x110
[ 116.705984] __mutex_lock+0x166/0x1020
[ 116.706298] ? cfg80211_wiphy_work+0x7e/0x480
[ 116.706653] ? lock_release+0x1c7/0x290
[ 116.706968] ? lock_release+0x1c7/0x290
[ 116.707292] ? __pfx___mutex_lock+0x10/0x10
[ 116.707639] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 116.708049] ? __pfx_try_to_wake_up+0x10/0x10
[ 116.708413] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.708829] cfg80211_wiphy_work+0x7e/0x480
[ 116.709174] process_one_work+0x8e1/0x19c0
[ 116.709514] ? __pfx_process_one_work+0x10/0x10
[ 116.709886] ? move_linked_works+0x172/0x270
[ 116.710243] ? assign_work+0x196/0x240
[ 116.710553] worker_thread+0x67e/0xe90
[ 116.710865] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.711286] ? __pfx_worker_thread+0x10/0x10
[ 116.711636] kthread+0x3c8/0x740
[ 116.711915] ? __pfx_kthread+0x10/0x10
[ 116.712227] ? ret_from_fork+0x23/0x430
[ 116.712547] ? lock_release+0xc8/0x290
[ 116.712858] ? __pfx_kthread+0x10/0x10
[ 116.713168] ret_from_fork+0x34b/0x430
[ 116.713481] ? __pfx_kthread+0x10/0x10
[ 116.713790] ret_from_fork_asm+0x1a/0x30
[ 116.714124]
[ 116.714312] Modules linked in:
[ 116.714729] ---[ end trace 0000000000000000 ]---
[ 116.715106] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.715489] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.717025] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 116.717449] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 116.718045] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.718607] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.719196] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 116.719783] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.720348] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.721002] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.721465] CR2: 00007fbd7e415000 CR3: 0000000046338000 CR4: 0000000000350ef0
[ 116.722043] note: kworker/u9:3[48] exited with preempt_count 2
[ 116.752684] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI
[ 116.753587] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 116.754188] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.755093] Tainted: [D]=DIE, [W]=WARN
[ 116.755406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.756057] Workqueue: ipv6_addrconf addrconf_dad_work
[ 116.756483] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.756859] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.758284] RSP: 0018:ffff8880095ff680 EFLAGS: 00010212
[ 116.758698] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 116.759255] RDX: ffff8880095dd280 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 116.759825] RBP: ffff8880095ff8f0 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.760390] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 116.760946] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.761505] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.762130] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.762589] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.763145] Call Trace:
[ 116.763364]
[ 116.763549] ? __pfx_perf_tp_event+0x10/0x10
[ 116.763902] ? __asan_memcpy+0x3d/0x60
[ 116.764217] ? find_held_lock+0x2b/0x80
[ 116.764538] ? ip6_finish_output2+0x979/0x1aa0
[ 116.764904] ? lock_release+0xc8/0x290
[ 116.765218] ? __lock_acquire+0xc65/0x1b70
[ 116.765553] ? __pfx_fib6_clean_node+0x10/0x10
[ 116.765922] ? perf_trace_run_bpf_submit+0xef/0x180
[ 116.766327] ? find_held_lock+0x2b/0x80
[ 116.766648] perf_trace_run_bpf_submit+0xef/0x180
[ 116.767035] perf_trace_contention_end+0x235/0x3e0
[ 116.767439] ? __local_bh_enable_ip+0x63/0x110
[ 116.767804] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 116.768237] ? __mutex_trylock_common+0xf9/0x260
[ 116.768613] ? __pfx___mutex_trylock_common+0x10/0x10
[ 116.769024] trace_contention_end+0xae/0x110
[ 116.769377] __mutex_lock+0x166/0x1020
[ 116.769695] ? addrconf_dad_work+0xf6/0x11a0
[ 116.770055] ? sched_clock_cpu+0x6c/0x4e0
[ 116.770388] ? __pfx___mutex_lock+0x10/0x10
[ 116.770733] ? __update_load_avg_se+0x428/0xa40
[ 116.771111] ? __perf_event_task_sched_in+0x235/0x5e0
[ 116.771524] ? __pfx___perf_event_task_sched_in+0x10/0x10
[ 116.771957] ? lock_is_held_type+0x9e/0x120
[ 116.772309] addrconf_dad_work+0xf6/0x11a0
[ 116.772651] ? __pfx_addrconf_dad_work+0x10/0x10
[ 116.773032] ? lock_acquire+0x18c/0x2f0
[ 116.773352] ? lock_release+0x1c7/0x290
[ 116.773675] process_one_work+0x8e1/0x19c0
[ 116.774014] ? __pfx_process_one_work+0x10/0x10
[ 116.774387] ? move_linked_works+0x172/0x270
[ 116.774745] ? assign_work+0x196/0x240
[ 116.775057] worker_thread+0x67e/0xe90
[ 116.775379] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.775795] ? __pfx_worker_thread+0x10/0x10
[ 116.776146] kthread+0x3c8/0x740
[ 116.776420] ? __pfx_kthread+0x10/0x10
[ 116.776729] ? ret_from_fork+0x23/0x430
[ 116.777049] ? lock_release+0xc8/0x290
[ 116.777368] ? __pfx_kthread+0x10/0x10
[ 116.777679] ret_from_fork+0x34b/0x430
[ 116.777993] ? __pfx_kthread+0x10/0x10
[ 116.778304] ret_from_fork_asm+0x1a/0x30
[ 116.778633]
[ 116.778820] Modules linked in:
[ 116.784799] ---[ end trace 0000000000000000 ]---
[ 116.785177] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.785550] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.790282] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 116.790729] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 116.791300] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.791870] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.792427] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 116.792999] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.793562] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.794213] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.794688] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.795249] note: kworker/u8:0[12] exited with preempt_count 2
[ 116.795763] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#4] SMP KASAN NOPTI
[ 116.796634] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 116.797235] CPU: 0 UID: 0 PID: 397 Comm: kworker/u9:7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.798150] Tainted: [D]=DIE, [W]=WARN
[ 116.798450] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.799092] Workqueue: events_unbound cfg80211_wiphy_work
[ 116.799533] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.799909] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.801328] RSP: 0018:ffff888044847700 EFLAGS: 00010212
[ 116.801753] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 116.802309] RDX: ffff888044800000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 116.802866] RBP: ffff888044847970 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.803433] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 116.803990] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.804547] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.805173] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.805630] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.806190] Call Trace:
[ 116.806396]
[ 116.806581] ? mark_held_locks+0x49/0x80
[ 116.806906] ? __pfx_perf_tp_event+0x10/0x10
[ 116.807260] ? put_task_struct_rcu_user+0x75/0xc0
[ 116.807660] ? release_task+0xcd4/0x1870
[ 116.807988] ? __pfx_release_task+0x10/0x10
[ 116.808331] ? lock_acquire+0x15e/0x2f0
[ 116.808652] ? lock_is_held_type+0x9e/0x120
[ 116.808998] ? __rb_erase_color+0x6a8/0xe80
[ 116.809343] ? __pfx_min_vruntime_cb_rotate+0x10/0x10
[ 116.809760] ? perf_trace_run_bpf_submit+0xef/0x180
[ 116.810156] perf_trace_run_bpf_submit+0xef/0x180
[ 116.810540] perf_trace_contention_end+0x235/0x3e0
[ 116.810931] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 116.811363] ? __mutex_trylock_common+0xf9/0x260
[ 116.811742] ? __pfx___mutex_trylock_common+0x10/0x10
[ 116.812150] trace_contention_end+0xae/0x110
[ 116.812501] __mutex_lock+0x166/0x1020
[ 116.812817] ? cfg80211_wiphy_work+0x7e/0x480
[ 116.813174] ? lock_release+0x1c7/0x290
[ 116.813490] ? lock_release+0x1c7/0x290
[ 116.813809] ? __pfx___mutex_lock+0x10/0x10
[ 116.814154] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 116.814558] ? __pfx_try_to_wake_up+0x10/0x10
[ 116.814923] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.815354] cfg80211_wiphy_work+0x7e/0x480
[ 116.815697] process_one_work+0x8e1/0x19c0
[ 116.816035] ? __pfx_process_one_work+0x10/0x10
[ 116.816414] ? move_linked_works+0x172/0x270
[ 116.816769] ? assign_work+0x196/0x240
[ 116.817079] worker_thread+0x67e/0xe90
[ 116.817397] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.817807] ? __pfx_worker_thread+0x10/0x10
[ 116.818167] kthread+0x3c8/0x740
[ 116.818439] ? __pfx_kthread+0x10/0x10
[ 116.818748] ? ret_from_fork+0x23/0x430
[ 116.819067] ? lock_release+0xc8/0x290
[ 116.819387] ? __pfx_kthread+0x10/0x10
[ 116.819698] ret_from_fork+0x34b/0x430
[ 116.820011] ? __pfx_kthread+0x10/0x10
[ 116.820323] ret_from_fork_asm+0x1a/0x30
[ 116.820651]
[ 116.820837] Modules linked in:
[ 116.821158] ---[ end trace 0000000000000000 ]---
[ 116.821533] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.821931] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.823387] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 116.823830] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 116.824394] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.824972] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.825538] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 116.826116] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.826696] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.827336] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.827815] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.828377] note: kworker/u9:7[397] exited with preempt_count 2
[ 116.828890] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#5] SMP KASAN NOPTI
[ 116.829760] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 116.830356] CPU: 0 UID: 0 PID: 3776 Comm: kworker/0:3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.831266] Tainted: [D]=DIE, [W]=WARN
[ 116.831579] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.832218] Workqueue: mld mld_dad_work
[ 116.832537] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.832910] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.834326] RSP: 0018:ffff888016d87700 EFLAGS: 00010212
[ 116.834747] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 116.835311] RDX: ffff88800f1b0000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 116.835869] RBP: ffff888016d87970 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.836430] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 116.836989] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.837548] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.838177] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.838635] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.839191] Call Trace:
[ 116.839407]
[ 116.839587] ? mark_held_locks+0x49/0x80
[ 116.839918] ? __dev_queue_xmit+0xe19/0x3cc0
[ 116.840276] ? __pfx_perf_tp_event+0x10/0x10
[ 116.840632] ? selinux_ip_postroute+0x629/0xcd0
[ 116.841008] ? __pfx_selinux_ip_postroute+0x10/0x10
[ 116.841405] ? __pfx___dev_queue_xmit+0x10/0x10
[ 116.841777] ? __lock_acquire+0x694/0x1b70
[ 116.842118] ? __lock_acquire+0xc65/0x1b70
[ 116.842455] ? lock_acquire+0x15e/0x2f0
[ 116.842774] ? ipv6_chk_mcast_addr+0x38/0x990
[ 116.843134] ? perf_trace_run_bpf_submit+0xef/0x180
[ 116.843542] ? lock_release+0xc8/0x290
[ 116.843853] perf_trace_run_bpf_submit+0xef/0x180
[ 116.844241] perf_trace_contention_end+0x235/0x3e0
[ 116.844629] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 116.845054] ? __mutex_trylock_common+0xf9/0x260
[ 116.845432] ? __pfx___mutex_trylock_common+0x10/0x10
[ 116.845845] trace_contention_end+0xae/0x110
[ 116.846198] __mutex_lock+0x166/0x1020
[ 116.846514] ? mld_dad_work+0x2a/0x1e0
[ 116.846827] ? __perf_event_task_sched_in+0x235/0x5e0
[ 116.847232] ? __pfx___mutex_lock+0x10/0x10
[ 116.847584] ? lock_is_held_type+0x9e/0x120
[ 116.847931] ? lock_release+0x1c7/0x290
[ 116.848246] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.848661] ? lock_acquire+0x18c/0x2f0
[ 116.848979] mld_dad_work+0x2a/0x1e0
[ 116.849277] process_one_work+0x8e1/0x19c0
[ 116.849617] ? __pfx_process_one_work+0x10/0x10
[ 116.849987] ? move_linked_works+0x172/0x270
[ 116.850352] ? assign_work+0x196/0x240
[ 116.850667] worker_thread+0x67e/0xe90
[ 116.850980] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.851406] ? __pfx_worker_thread+0x10/0x10
[ 116.851759] kthread+0x3c8/0x740
[ 116.852032] ? __pfx_kthread+0x10/0x10
[ 116.852340] ? ret_from_fork+0x23/0x430
[ 116.852662] ? lock_release+0xc8/0x290
[ 116.852975] ? __pfx_kthread+0x10/0x10
[ 116.853292] ret_from_fork+0x34b/0x430
[ 116.853606] ? __pfx_kthread+0x10/0x10
[ 116.853916] ret_from_fork_asm+0x1a/0x30
[ 116.854241]
[ 116.854428] Modules linked in:
[ 116.854730] ---[ end trace 0000000000000000 ]---
[ 116.855103] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.855489] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.856979] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 116.857403] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 116.858006] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.858572] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.859151] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 116.859753] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.860329] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.860993] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.861470] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.862062] note: kworker/0:3[3776] exited with preempt_count 2
[ 116.871849] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#6] SMP KASAN NOPTI
[ 116.872762] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 116.873374] CPU: 0 UID: 0 PID: 391 Comm: kworker/u9:4 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.874299] Tainted: [D]=DIE, [W]=WARN
[ 116.874609] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.875269] Workqueue: events_unbound cfg80211_wiphy_work
[ 116.875723] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.876102] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.877544] RSP: 0018:ffff88804473f700 EFLAGS: 00010212
[ 116.877967] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 116.878539] RDX: ffff888044683700 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 116.879103] RBP: ffff88804473f970 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.879680] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 116.880256] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.880823] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.881465] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.881931] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.882500] Call Trace:
[ 116.882711]
[ 116.882898] ? __pfx_perf_tp_event+0x10/0x10
[ 116.883261] ? ret_from_fork_asm+0x1a/0x30
[ 116.883619] ? stack_trace_save+0x8e/0xc0
[ 116.883960] ? stack_depot_save_flags+0x2c/0xa20
[ 116.884347] ? kasan_save_stack+0x34/0x50
[ 116.884688] ? kasan_save_stack+0x24/0x50
[ 116.885026] ? kasan_save_track+0x14/0x30
[ 116.885371] ? __kasan_save_free_info+0x3a/0x60
[ 116.885749] ? __kasan_slab_free+0x3f/0x50
[ 116.886090] ? kmem_cache_free+0x2a1/0x540
[ 116.886432] ? kfree_skbmem+0x18a/0x1f0
[ 116.886756] ? sk_skb_reason_drop+0x10e/0x1b0
[ 116.887125] ? ieee80211_iface_work+0x43c/0x1220
[ 116.887521] ? cfg80211_wiphy_work+0x245/0x480
[ 116.887890] ? process_one_work+0x8e1/0x19c0
[ 116.888254] ? worker_thread+0x67e/0xe90
[ 116.888583] ? kthread+0x3c8/0x740
[ 116.888873] ? ret_from_fork+0x34b/0x430
[ 116.889207] ? perf_trace_run_bpf_submit+0xef/0x180
[ 116.889610] perf_trace_run_bpf_submit+0xef/0x180
[ 116.890003] perf_trace_contention_end+0x235/0x3e0
[ 116.890398] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 116.890832] ? __mutex_trylock_common+0xf9/0x260
[ 116.891219] ? __pfx___mutex_trylock_common+0x10/0x10
[ 116.891647] trace_contention_end+0xae/0x110
[ 116.892005] __mutex_lock+0x166/0x1020
[ 116.892328] ? cfg80211_wiphy_work+0x7e/0x480
[ 116.892689] ? lock_release+0x1c7/0x290
[ 116.893013] ? lock_release+0x1c7/0x290
[ 116.893333] ? __pfx___mutex_lock+0x10/0x10
[ 116.893686] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 116.894099] ? __pfx_try_to_wake_up+0x10/0x10
[ 116.894467] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.894890] cfg80211_wiphy_work+0x7e/0x480
[ 116.895242] process_one_work+0x8e1/0x19c0
[ 116.895599] ? __pfx_process_one_work+0x10/0x10
[ 116.895977] ? move_linked_works+0x172/0x270
[ 116.896339] ? assign_work+0x196/0x240
[ 116.896658] worker_thread+0x67e/0xe90
[ 116.896973] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.897397] ? __pfx_worker_thread+0x10/0x10
[ 116.897752] kthread+0x3c8/0x740
[ 116.898029] ? __pfx_kthread+0x10/0x10
[ 116.898345] ? ret_from_fork+0x23/0x430
[ 116.898673] ? lock_release+0xc8/0x290
[ 116.898986] ? __pfx_kthread+0x10/0x10
[ 116.899312] ret_from_fork+0x34b/0x430
[ 116.899634] ? __pfx_kthread+0x10/0x10
[ 116.899952] ret_from_fork_asm+0x1a/0x30
[ 116.900286]
[ 116.900474] Modules linked in:
[ 116.900841] ---[ end trace 0000000000000000 ]---
[ 116.901225] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.901611] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.903092] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 116.903532] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 116.904115] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.904715] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.905284] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 116.905873] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.906436] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.907085] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.907553] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.908136] note: kworker/u9:4[391] exited with preempt_count 2
[ 116.908646] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#7] SMP KASAN NOPTI
[ 116.909517] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 116.910111] CPU: 0 UID: 0 PID: 393 Comm: kworker/u9:5 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.911020] Tainted: [D]=DIE, [W]=WARN
[ 116.911333] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.911975] Workqueue: events_unbound cfg80211_wiphy_work
[ 116.912415] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.912789] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.914205] RSP: 0018:ffff888044757700 EFLAGS: 00010212
[ 116.914620] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 116.915174] RDX: ffff888044748000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 116.915741] RBP: ffff888044757970 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.916295] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 116.916858] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.917420] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.918047] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.918512] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.919068] Call Trace:
[ 116.919286]
[ 116.919474] ? mark_held_locks+0x49/0x80
[ 116.919800] ? __pfx_perf_tp_event+0x10/0x10
[ 116.920157] ? put_task_struct_rcu_user+0x75/0xc0
[ 116.920547] ? release_task+0xcd4/0x1870
[ 116.920879] ? __pfx_release_task+0x10/0x10
[ 116.921230] ? lock_acquire+0x15e/0x2f0
[ 116.921555] ? kvm_sched_clock_read+0x16/0x30
[ 116.921923] ? sched_clock+0x37/0x60
[ 116.922233] ? perf_trace_run_bpf_submit+0xef/0x180
[ 116.922638] ? __update_load_avg_se+0x428/0xa40
[ 116.923025] perf_trace_run_bpf_submit+0xef/0x180
[ 116.923424] perf_trace_contention_end+0x235/0x3e0
[ 116.923820] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 116.924255] ? __mutex_trylock_common+0xf9/0x260
[ 116.924634] ? __pfx___mutex_trylock_common+0x10/0x10
[ 116.925052] ? __might_resched+0x1d/0x510
[ 116.925392] trace_contention_end+0xae/0x110
[ 116.925754] __mutex_lock+0x166/0x1020
[ 116.926074] ? cfg80211_wiphy_work+0x7e/0x480
[ 116.926436] ? __pfx___mutex_lock+0x10/0x10
[ 116.926787] ? __pfx___perf_event_task_sched_in+0x10/0x10
[ 116.927228] ? lock_is_held_type+0x9e/0x120
[ 116.927592] ? lock_acquire+0x18c/0x2f0
[ 116.927915] ? lock_release+0x1c7/0x290
[ 116.928238] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.928660] cfg80211_wiphy_work+0x7e/0x480
[ 116.929009] process_one_work+0x8e1/0x19c0
[ 116.929358] ? __pfx_process_one_work+0x10/0x10
[ 116.929738] ? move_linked_works+0x172/0x270
[ 116.930098] ? assign_work+0x196/0x240
[ 116.930418] worker_thread+0x67e/0xe90
[ 116.930739] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.931161] ? __pfx_worker_thread+0x10/0x10
[ 116.931529] kthread+0x3c8/0x740
[ 116.931809] ? __pfx_kthread+0x10/0x10
[ 116.932127] ? ret_from_fork+0x23/0x430
[ 116.932461] ? lock_release+0xc8/0x290
[ 116.932780] ? __pfx_kthread+0x10/0x10
[ 116.933101] ret_from_fork+0x34b/0x430
[ 116.933421] ? __pfx_kthread+0x10/0x10
[ 116.933747] ret_from_fork_asm+0x1a/0x30
[ 116.934083]
[ 116.934273] Modules linked in:
[ 116.934564] ---[ end trace 0000000000000000 ]---
[ 116.934960] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.935367] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.936833] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 116.937261] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 116.937851] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 116.938426] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.939015] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 116.939592] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.940186] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.940851] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.941325] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 116.941914] note: kworker/u9:5[393] exited with preempt_count 2
[ 116.974367] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#8] SMP KASAN NOPTI
[ 116.975308] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 116.975928] CPU: 0 UID: 0 PID: 395 Comm: kworker/u9:6 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 116.976857] Tainted: [D]=DIE, [W]=WARN
[ 116.977162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 116.977811] Workqueue: events_unbound cfg80211_wiphy_work
[ 116.978253] RIP: 0010:perf_tp_event+0x175/0xe70
[ 116.978640] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 116.980081] RSP: 0018:ffff888044787700 EFLAGS: 00010212
[ 116.980507] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 116.981069] RDX: ffff88804474b700 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 116.981629] RBP: ffff888044787970 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 116.982188] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 116.982745] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 116.983311] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 116.983940] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 116.984400] CR2: 00007fbd7e415000 CR3: 0000000046338000 CR4: 0000000000350ef0
[ 116.984959] Call Trace:
[ 116.985165]
[ 116.985350] ? __pfx_perf_tp_event+0x10/0x10
[ 116.985707] ? ret_from_fork_asm+0x1a/0x30
[ 116.986053] ? lock_acquire+0x18c/0x2f0
[ 116.986373] ? lock_release+0x1c7/0x290
[ 116.986692] ? __perf_event_task_sched_in+0x235/0x5e0
[ 116.987102] ? __pfx___perf_event_task_sched_in+0x10/0x10
[ 116.987546] ? update_load_avg+0x17d/0x1ef0
[ 116.987890] ? lock_acquire+0x18c/0x2f0
[ 116.988211] ? lock_release+0x1c7/0x290
[ 116.988531] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.988947] ? perf_trace_run_bpf_submit+0xef/0x180
[ 116.989346] ? __schedule+0xe91/0x3590
[ 116.989659] perf_trace_run_bpf_submit+0xef/0x180
[ 116.990049] perf_trace_contention_end+0x235/0x3e0
[ 116.990449] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 116.990879] ? __mutex_trylock_common+0xf9/0x260
[ 116.991260] ? __pfx___mutex_trylock_common+0x10/0x10
[ 116.991683] trace_contention_end+0xae/0x110
[ 116.992043] __mutex_lock+0x166/0x1020
[ 116.992361] ? cfg80211_wiphy_work+0x7e/0x480
[ 116.992718] ? lock_release+0x1c7/0x290
[ 116.993035] ? lock_release+0x1c7/0x290
[ 116.993354] ? __pfx___mutex_lock+0x10/0x10
[ 116.993698] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 116.994102] ? xfd_validate_state+0x55/0x180
[ 116.994464] ? __pfx_try_to_wake_up+0x10/0x10
[ 116.994826] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.995236] cfg80211_wiphy_work+0x7e/0x480
[ 116.995613] process_one_work+0x8e1/0x19c0
[ 116.995955] ? __pfx_process_one_work+0x10/0x10
[ 116.996330] ? move_linked_works+0x172/0x270
[ 116.996688] ? assign_work+0x196/0x240
[ 116.997000] worker_thread+0x67e/0xe90
[ 116.997316] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 116.997730] ? __pfx_worker_thread+0x10/0x10
[ 116.998085] kthread+0x3c8/0x740
[ 116.998358] ? __pfx_kthread+0x10/0x10
[ 116.998672] ? ret_from_fork+0x23/0x430
[ 116.998992] ? lock_release+0xc8/0x290
[ 116.999317] ? __pfx_kthread+0x10/0x10
[ 116.999628] ret_from_fork+0x34b/0x430
[ 116.999944] ? __pfx_kthread+0x10/0x10
[ 117.000252] ret_from_fork_asm+0x1a/0x30
[ 117.000581]
[ 117.000768] Modules linked in:
[ 117.001068] ---[ end trace 0000000000000000 ]---
[ 117.001444] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.001913] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.003365] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 117.003809] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 117.004367] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 117.004948] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 117.005511] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 117.006091] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 117.006680] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 117.007321] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.007803] CR2: 00007fbd7e415000 CR3: 0000000046338000 CR4: 0000000000350ef0
[ 117.008368] note: kworker/u9:6[395] exited with preempt_count 2
[ 117.008953] kworker/u9:6 (395) used greatest stack depth: 23984 bytes left
[ 117.009729] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#9] SMP KASAN NOPTI
[ 117.010598] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 117.011188] CPU: 0 UID: 0 PID: 176 Comm: rs:main Q:Reg Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 117.012114] Tainted: [D]=DIE, [W]=WARN
[ 117.012418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 117.013059] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.013431] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.014851] RSP: 0018:ffff88801c41f940 EFLAGS: 00010212
[ 117.015267] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 117.015835] RDX: ffff88800ec9b700 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 117.016390] RBP: ffff88801c41fbb0 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 117.016947] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 117.017499] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 117.018054] FS: 00007fdb9e0a5700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 117.018681] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.019140] CR2: 00007fbd7e415000 CR3: 000000000db50000 CR4: 0000000000350ef0
[ 117.019707] Call Trace:
[ 117.019915]
[ 117.020098] ? __pfx_perf_tp_event+0x10/0x10
[ 117.020455] ? __pfx___schedule+0x10/0x10
[ 117.020787] ? lock_release+0x1c7/0x290
[ 117.021104] ? lock_acquire+0x18c/0x2f0
[ 117.021422] ? futex_private_hash_put+0x127/0x2d0
[ 117.021807] ? lock_acquire+0x18c/0x2f0
[ 117.022125] ? lock_release+0x1c7/0x290
[ 117.022442] ? lock_release+0x1c7/0x290
[ 117.022763] ? futex_unqueue+0x13e/0x2b0
[ 117.023087] ? __futex_wait+0x20e/0x300
[ 117.023416] ? __pfx___futex_wait+0x10/0x10
[ 117.023762] ? perf_trace_run_bpf_submit+0xef/0x180
[ 117.024157] perf_trace_run_bpf_submit+0xef/0x180
[ 117.024551] perf_trace_contention_end+0x235/0x3e0
[ 117.024941] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 117.025369] ? __mutex_trylock_common+0xf9/0x260
[ 117.025749] ? __pfx___mutex_trylock_common+0x10/0x10
[ 117.026159] trace_contention_end+0xae/0x110
[ 117.026514] __mutex_lock+0x166/0x1020
[ 117.026831] ? fdget_pos+0x2a8/0x380
[ 117.027129] ? __pfx___mutex_lock+0x10/0x10
[ 117.027487] ? lock_acquire+0x18c/0x2f0
[ 117.027805] ? lock_release+0x1c7/0x290
[ 117.028124] ? __fget_files+0x20d/0x3b0
[ 117.028442] fdget_pos+0x2a8/0x380
[ 117.028727] ksys_write+0x71/0x240
[ 117.029018] ? __pfx_ksys_write+0x10/0x10
[ 117.029348] do_syscall_64+0xbf/0x360
[ 117.029653] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 117.030058] RIP: 0033:0x7fdb9eee8fef
[ 117.030359] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 5c fd ff ff 48
[ 117.031789] RSP: 002b:00007fdb9e0a4860 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 117.032383] RAX: ffffffffffffffda RBX: 00007fdb94023200 RCX: 00007fdb9eee8fef
[ 117.032939] RDX: 0000000000000070 RSI: 00007fdb940234a0 RDI: 0000000000000007
[ 117.033494] RBP: 0000000000000070 R08: 0000000000000000 R09: 0000000000000000
[ 117.034046] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fdb940234a0
[ 117.034620] R13: 0000000000000000 R14: 0000000000000070 R15: 00007fdb94023200
[ 117.035198]
[ 117.035400] Modules linked in:
[ 117.035767] ---[ end trace 0000000000000000 ]---
[ 117.036155] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.036547] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.038066] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 117.038500] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 117.039104] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 117.039715] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 117.040290] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 117.040883] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 117.041468] FS: 00007fdb9e0a5700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 117.042139] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.042606] CR2: 00007fbd7e415000 CR3: 000000000db50000 CR4: 0000000000350ef0
[ 117.043192] note: rs:main Q:Reg[176] exited with preempt_count 2
[ 117.077679] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#10] SMP KASAN NOPTI
[ 117.078577] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 117.079183] CPU: 0 UID: 0 PID: 324 Comm: kworker/u10:4 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 117.080120] Tainted: [D]=DIE, [W]=WARN
[ 117.080426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 117.081085] Workqueue: events_unbound cfg80211_wiphy_work
[ 117.081526] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.081902] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.083342] RSP: 0018:ffff888015caf700 EFLAGS: 00010212
[ 117.083766] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 117.084323] RDX: ffff888016d0b700 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 117.084888] RBP: ffff888015caf970 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 117.085446] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 117.086012] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 117.086577] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 117.087211] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.087679] CR2: 00007fbd7e415000 CR3: 000000000e22a000 CR4: 0000000000350ef0
[ 117.088241] Call Trace:
[ 117.088451]
[ 117.088644] ? __pfx_perf_tp_event+0x10/0x10
[ 117.089003] ? ret_from_fork_asm+0x1a/0x30
[ 117.089344] ? stack_trace_save+0x8e/0xc0
[ 117.089679] ? stack_depot_save_flags+0x2c/0xa20
[ 117.090062] ? kasan_save_stack+0x34/0x50
[ 117.090395] ? kasan_save_stack+0x24/0x50
[ 117.090729] ? kasan_save_track+0x14/0x30
[ 117.091063] ? __kasan_save_free_info+0x3a/0x60
[ 117.091444] ? __kasan_slab_free+0x3f/0x50
[ 117.091783] ? kmem_cache_free+0x2a1/0x540
[ 117.092117] ? kfree_skbmem+0x18a/0x1f0
[ 117.092439] ? sk_skb_reason_drop+0x10e/0x1b0
[ 117.092803] ? ieee80211_iface_work+0x43c/0x1220
[ 117.093185] ? cfg80211_wiphy_work+0x245/0x480
[ 117.093549] ? process_one_work+0x8e1/0x19c0
[ 117.093902] ? worker_thread+0x67e/0xe90
[ 117.094226] ? kthread+0x3c8/0x740
[ 117.094514] ? ret_from_fork+0x34b/0x430
[ 117.094846] ? perf_trace_run_bpf_submit+0xef/0x180
[ 117.095246] perf_trace_run_bpf_submit+0xef/0x180
[ 117.095648] perf_trace_contention_end+0x235/0x3e0
[ 117.096041] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 117.096468] ? __mutex_trylock_common+0xf9/0x260
[ 117.096850] ? __pfx___mutex_trylock_common+0x10/0x10
[ 117.097261] ? __smp_call_single_queue+0x15b/0x2f0
[ 117.097660] trace_contention_end+0xae/0x110
[ 117.098013] __mutex_lock+0x166/0x1020
[ 117.098329] ? cfg80211_wiphy_work+0x7e/0x480
[ 117.098689] ? lock_release+0x1c7/0x290
[ 117.099010] ? __pfx___mutex_lock+0x10/0x10
[ 117.099364] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 117.099773] ? __pfx_try_to_wake_up+0x10/0x10
[ 117.100133] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 117.100546] cfg80211_wiphy_work+0x7e/0x480
[ 117.100888] process_one_work+0x8e1/0x19c0
[ 117.101232] ? __pfx_process_one_work+0x10/0x10
[ 117.101603] ? move_linked_works+0x172/0x270
[ 117.101957] ? assign_work+0x196/0x240
[ 117.102269] worker_thread+0x67e/0xe90
[ 117.102580] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 117.102994] ? __pfx_worker_thread+0x10/0x10
[ 117.103355] kthread+0x3c8/0x740
[ 117.103630] ? __pfx_kthread+0x10/0x10
[ 117.103938] ? ret_from_fork+0x23/0x430
[ 117.104259] ? lock_release+0xc8/0x290
[ 117.104571] ? __pfx_kthread+0x10/0x10
[ 117.104882] ret_from_fork+0x34b/0x430
[ 117.105196] ? __pfx_kthread+0x10/0x10
[ 117.105506] ret_from_fork_asm+0x1a/0x30
[ 117.105833]
[ 117.106021] Modules linked in:
[ 117.106692] ---[ end trace 0000000000000000 ]---
[ 117.107065] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.107454] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.108942] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 117.109365] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 117.109942] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 117.110504] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 117.111090] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 117.111672] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 117.112233] FS: 0000000000000000(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 117.112880] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.113339] CR2: 00007fbd7e415000 CR3: 000000000e22a000 CR4: 0000000000350ef0
[ 117.113916] note: kworker/u10:4[324] exited with preempt_count 2
[ 117.119818] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#11] SMP KASAN NOPTI
[ 117.120114] ==================================================================
[ 117.120711] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 117.121335] BUG: KASAN: slab-use-after-free in __mutex_lock+0xc72/0x1020
[ 117.121924] CPU: 0 UID: 0 PID: 254 Comm: syz-fuzzer Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 117.122435] Read of size 4 at addr ffff88800f21b734 by task syz-executor.2/282
[ 117.123343] Tainted: [D]=DIE, [W]=WARN
[ 117.123896]
[ 117.123907] CPU: 1 UID: 0 PID: 282 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 117.123927] Tainted: [D]=DIE, [W]=WARN
[ 117.123931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 117.123939] Call Trace:
[ 117.123944]
[ 117.123948] dump_stack_lvl+0xca/0x120
[ 117.123968] print_report+0xcb/0x610
[ 117.123985] ? __virt_addr_valid+0x100/0x5d0
[ 117.124003] ? __mutex_lock+0xc72/0x1020
[ 117.124019] ? __mutex_lock+0xc72/0x1020
[ 117.124035] kasan_report+0xca/0x100
[ 117.124050] ? __mutex_lock+0xc72/0x1020
[ 117.124067] __mutex_lock+0xc72/0x1020
[ 117.124083] ? ext4_orphan_add+0x8df/0x1320
[ 117.124098] ? __pfx_ext4_fc_track_inode+0x10/0x10
[ 117.124112] ? __pfx___mutex_lock+0x10/0x10
[ 117.124129] ? __ext4_journal_get_write_access+0x163/0x330
[ 117.124144] ? ext4_reserve_inode_write+0x1a3/0x350
[ 117.124159] ext4_orphan_add+0x8df/0x1320
[ 117.124173] ? ktime_get_coarse_real_ts64_mg+0x213/0x2a0
[ 117.124191] ? __pfx_ext4_orphan_add+0x10/0x10
[ 117.124207] ? __ext4_journal_start_sb+0x325/0x5d0
[ 117.124219] ? __ext4_journal_start_sb+0x1e3/0x5d0
[ 117.124231] ? __ext4_unlink+0x44d/0xcd0
[ 117.124247] __ext4_unlink+0x91c/0xcd0
[ 117.124263] ? __pfx___ext4_unlink+0x10/0x10
[ 117.124278] ? __pfx___dquot_initialize+0x10/0x10
[ 117.124294] ? may_link+0x2c7/0x4f0
[ 117.124310] ? down_write+0x119/0x1f0
[ 117.124320] ext4_unlink+0x429/0x5a0
[ 117.124336] vfs_unlink+0x35e/0x9d0
[ 117.124352] ? lookup_one_qstr_excl+0xb1/0x270
[ 117.124368] do_unlinkat+0x4ad/0x670
[ 117.124380] ? __pfx_do_unlinkat+0x10/0x10
[ 117.124392] ? __check_object_size+0x57b/0x880
[ 117.124410] ? strncpy_from_user+0x21b/0x2f0
[ 117.124430] __x64_sys_unlink+0xc7/0x110
[ 117.124443] do_syscall_64+0xbf/0x360
[ 117.124453] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 117.124466] RIP: 0033:0x7f3d4d924457
[ 117.124475] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 117.124486] RSP: 002b:00007ffe38eb1bd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[ 117.124499] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3d4d924457
[ 117.124506] RDX: 00007ffe38eb1c10 RSI: 00007ffe38eb1c10 RDI: 00007ffe38eb1ca0
[ 117.124514] RBP: 00007ffe38eb1ca0 R08: 0000000000000001 R09: 00007ffe38eb1a70
[ 117.124521] R10: 0000555580b72c7b R11: 0000000000000206 R12: 00007f3d4d97e105
[ 117.124528] R13: 00007ffe38eb2d60 R14: 0000555580b72c20 R15: 00007ffe38eb2da0
[ 117.124539]
[ 117.124542]
[ 117.125228] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 117.125530] Allocated by task 3953:
[ 117.126163] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.126367] kasan_save_stack+0x24/0x50
[ 117.126546] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.126845] kasan_save_track+0x14/0x30
[ 117.127132] RSP: 0018:ffff8880173df680 EFLAGS: 00010212
[ 117.127482] __kasan_slab_alloc+0x59/0x70
[ 117.127791]
[ 117.128102] kmem_cache_alloc_node_noprof+0x21a/0x690
[ 117.128393] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 117.128705] copy_process+0x461/0x73c0
[ 117.129007] RDX: ffff888019265280 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 117.129337] kernel_clone+0xea/0x7f0
[ 117.129715] RBP: ffff8880173df8f0 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 117.130043] __do_sys_clone+0xce/0x120
[ 117.130470] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 117.130857] do_syscall_64+0xbf/0x360
[ 117.131177] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 117.131600] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 117.131956] FS: 000000c000030790(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 117.132331]
[ 117.132717] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.133027] Freed by task 255:
[ 117.133328] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 117.133666] kasan_save_stack+0x24/0x50
[ 117.134035] Call Trace:
[ 117.134312] kasan_save_track+0x14/0x30
[ 117.134607]
[ 117.134894] __kasan_save_free_info+0x3a/0x60
[ 117.135182] ? __pfx_perf_tp_event+0x10/0x10
[ 117.135542] __kasan_slab_free+0x3f/0x50
[ 117.135839] ? __lock_acquire+0x694/0x1b70
[ 117.136161] kmem_cache_free+0x2a1/0x540
[ 117.136518] ? css_rstat_updated+0x1b8/0x4d0
[ 117.136856] rcu_core+0x7c8/0x1800
[ 117.137169] ? __pfx_css_rstat_updated+0x10/0x10
[ 117.137462] handle_softirqs+0x1b1/0x770
[ 117.137859] ? update_se+0x1ba/0x670
[ 117.138146] __irq_exit_rcu+0xc4/0x100
[ 117.139563] ? lock_acquire+0x18c/0x2f0
[ 117.140142] irq_exit_rcu+0x9/0x20
[ 117.140700] ? css_rstat_updated+0x1b8/0x4d0
[ 117.141249] sysvec_apic_timer_interrupt+0x39/0x80
[ 117.141798] ? __pfx_css_rstat_updated+0x10/0x10
[ 117.142346] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 117.142896] ? lock_acquire+0x18c/0x2f0
[ 117.143078]
[ 117.143214] ? lock_release+0x1c7/0x290
[ 117.143862] Last potentially related work creation:
[ 117.144147] ? perf_trace_run_bpf_submit+0xef/0x180
[ 117.144501] kasan_save_stack+0x24/0x50
[ 117.144806] perf_trace_run_bpf_submit+0xef/0x180
[ 117.146213] kasan_record_aux_stack+0x89/0xa0
[ 117.146520] perf_trace_contention_end+0x235/0x3e0
[ 117.146925] __call_rcu_common.constprop.0+0x70/0x960
[ 117.147243] ? lock_acquire+0x18c/0x2f0
[ 117.147383] delayed_put_task_struct+0xde/0x260
[ 117.147777] ? __pfx_perf_trace_contention_end+0x10/0x10
[ 117.148323] rcu_core+0x7c8/0x1800
[ 117.148623] ? __mutex_trylock_common+0xf9/0x260
[ 117.149174] handle_softirqs+0x1b1/0x770
[ 117.149462] ? __pfx___mutex_trylock_common+0x10/0x10
[ 117.150007] __irq_exit_rcu+0xc4/0x100
[ 117.150310] trace_contention_end+0xae/0x110
[ 117.150858] irq_exit_rcu+0x9/0x20
[ 117.151155] __mutex_lock+0x166/0x1020
[ 117.151715] sysvec_apic_timer_interrupt+0x70/0x80
[ 117.152110] ? ep_send_events+0xff/0xaa0
[ 117.152725] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 117.152864] ? __pfx___mutex_lock+0x10/0x10
[ 117.153309]
[ 117.153559] ? lock_release+0x1c7/0x290
[ 117.154114] Second to last potentially related work creation:
[ 117.154422] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 117.154624] kasan_save_stack+0x24/0x50
[ 117.154928] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 117.155106] kasan_record_aux_stack+0x89/0xa0
[ 117.155466] ? hrtimer_try_to_cancel.part.0+0x128/0x250
[ 117.155808] __call_rcu_common.constprop.0+0x70/0x960
[ 117.156122] ep_send_events+0xff/0xaa0
[ 117.156443] put_task_struct_rcu_user+0x75/0xc0
[ 117.156755] ? schedule_hrtimeout_range_clock+0x1c0/0x310
[ 117.157091] __schedule+0xe86/0x3590
[ 117.157370] ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10
[ 117.157730] schedule+0xdb/0x390
[ 117.158042] ? __pfx_ep_send_events+0x10/0x10
[ 117.158326] worker_thread+0x156/0xe90
[ 117.158624] ? __pfx_hrtimer_wakeup+0x10/0x10
[ 117.158927] kthread+0x3c8/0x740
[ 117.159204] ? read_tsc+0x9/0x20
[ 117.159547] ret_from_fork+0x34b/0x430
[ 117.159926] ? ktime_get+0x16d/0x270
[ 117.160288] ret_from_fork_asm+0x1a/0x30
[ 117.160692] do_epoll_wait+0x42e/0xee0
[ 117.160997]
[ 117.161135] ? security_file_permission+0x22/0x90
[ 117.161439] The buggy address belongs to the object at ffff88800f21b700
[ 117.161439] which belongs to the cache task_struct of size 6784
[ 117.161824] ? __pfx_do_epoll_wait+0x10/0x10
[ 117.162201] The buggy address is located 52 bytes inside of
[ 117.162201] freed 6784-byte region [ffff88800f21b700, ffff88800f21d180)
[ 117.162506] ? __pfx_ep_autoremove_wake_function+0x10/0x10
[ 117.162880]
[ 117.163227] ? __pfx_timespec64_add_safe+0x10/0x10
[ 117.163608] The buggy address belongs to the physical page:
[ 117.164003] ? lock_release+0x1c7/0x290
[ 117.164313] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xf218
[ 117.164669] ? set_user_sigmask+0x213/0x2a0
[ 117.165081] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 117.165354] ? __pfx_set_user_sigmask+0x10/0x10
[ 117.165722] memcg:ffff88801ef03401
[ 117.166034] do_compat_epoll_pwait.part.0+0x29/0x1d0
[ 117.166425] flags: 0x100000000000040(head|node=0|zone=1)
[ 117.166725] __x64_sys_epoll_pwait+0x1de/0x320
[ 117.167062] page_type: f5(slab)
[ 117.167346] ? __pfx___x64_sys_epoll_pwait+0x10/0x10
[ 117.167648] raw: 0100000000000040 ffff888008ff7640 dead000000000100 dead000000000122
[ 117.168020] ? __pfx___x64_sys_futex+0x10/0x10
[ 117.168334] raw: 0000000000000000 0000000000040004 00000000f5000000 ffff88801ef03401
[ 117.168729] ? xfd_validate_state+0x55/0x180
[ 117.169064] head: 0100000000000040 ffff888008ff7640 dead000000000100 dead000000000122
[ 117.169198] ? __pfx_ksys_read+0x10/0x10
[ 117.169509] head: 0000000000000000 0000000000040004 00000000f5000000 ffff88801ef03401
[ 117.169956] do_syscall_64+0xbf/0x360
[ 117.170356] head: 0100000000000003 ffffea00003c8601 00000000ffffffff 00000000ffffffff
[ 117.170661] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 117.171052] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000008
[ 117.171406] RIP: 0033:0x4666e0
[ 117.171814] page dumped because: kasan: bad access detected
[ 117.172212] Code: 0f 05 89 44 24 20 c3 cc cc cc 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 44 8b 54 24 1c 49 c7 c0 00 00 00 00 b8 19 01 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc cc cc cc cc cc cc cc 8b 7c 24 08 48 c7
[ 117.172509]
[ 117.172513] Memory state around the buggy address:
[ 117.172867] RSP: 002b:000000c00003b7f0 EFLAGS: 00000246
[ 117.173289] ffff88800f21b600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 117.173576] ORIG_RAX: 0000000000000119
[ 117.174022] ffff88800f21b680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 117.174282] RAX: ffffffffffffffda RBX: 00000000000002c7 RCX: 00000000004666e0
[ 117.174628] >ffff88800f21b700: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 117.174923] RDX: 0000000000000080 RSI: 000000c00003b840 RDI: 0000000000000003
[ 117.175267] ^
[ 117.175538] RBP: 000000c00003be40 R08: 0000000000000000 R09: 0000000000000000
[ 117.175804] ffff88800f21b780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 117.176103] R10: 00000000000002c7 R11: 0000000000000246 R12: 0000000000000003
[ 117.176392] ffff88800f21b800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 117.176701] R13: 000000c000000c00 R14: 000000c0003ddf80 R15: 0000000000000000
[ 117.177000] ==================================================================
[ 117.177139]
[ 117.200495] Modules linked in:
[ 117.214253] ---[ end trace 0000000000000000 ]---
[ 117.220867] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.221257] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.222785] RSP: 0018:ffff8880465b71c0 EFLAGS: 00010212
[ 117.223210] RAX: 0000000000000032 RBX: ffffffffffffffa3 RCX: ffffc900013ef000
[ 117.223875] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000193
[ 117.224437] RBP: ffff8880465b7430 R08: ffff88806ce31340 R09: ffffe8ffffc16a10
[ 117.225519] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 117.226207] R13: 000000000000001c R14: ffff88806ce31340 R15: dffffc0000000000
[ 117.226897] FS: 000000c000030790(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 117.227540] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.228129] CR2: 00007fbd7e415000 CR3: 000000000fb4e000 CR4: 0000000000350ef0
[ 117.228848] note: syz-fuzzer[254] exited with preempt_count 2
VM DIAGNOSIS:
10:06:12 Registers:
info registers vcpu 0
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff828e3230 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff8880465b6ab8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000065646f43
R12=00000000000000d7 R13=ffffffff88724190 R14=ffffffff88724140 R15=ffffffff88724400
RIP=ffffffff828e3285 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fc64bb8e700 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe2500000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbd7e415000 CR3=0000000046338000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007fc64e6ff7c000007fc64e6ff7c8
XMM02=00007fc64e6ff7e000007fc64e6ff7c0 XMM03=00007fc64e6ff7c800007fc64e6ff7c0
XMM04=95122a2a602b3546b36fd768ffb2d05e XMM05=085a479054bec2eaaa21fb6f13e6289f
XMM06=97783444af3314bc91058b89b4b4c005 XMM07=7c3002f197011028494d58a3e0d7f3c4
XMM08=3adeab62e56141fc8c30ba9f5ec587ad XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffff88800ec99b80 RBX=ffff8880734ae1a8 RCX=ffffffff8143cbea RDX=1ffff11001e95880
RSI=0000000000000008 RDI=ffff88800f4ac400 RBP=ffffffffffffffff RSP=ffff88800ece7dd0
R8 =0000000000000000 R9 =ffffed1001e95880 R10=ffff88800f4ac407 R11=1ffff1100d9e6f7b
R12=ffff8880734aeff9 R13=ffffffff886eba40 R14=ffff88800ec99b80 R15=0000000000000086
RIP=ffffffff81b34f47 RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe4300000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000055558a5d6c58 CR3=00000000428b5000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000