Warning: Permanently added '[localhost]:57495' (ECDSA) to the list of known hosts. 2025/08/29 10:22:06 fuzzer started 2025/08/29 10:22:07 dialing manager at localhost:43077 syzkaller login: [ 59.775854] cgroup: Unknown subsys name 'net' [ 59.852567] cgroup: Unknown subsys name 'cpuset' [ 59.866534] cgroup: Unknown subsys name 'rlimit' 2025/08/29 10:22:18 syscalls: 2214 2025/08/29 10:22:18 code coverage: enabled 2025/08/29 10:22:18 comparison tracing: enabled 2025/08/29 10:22:18 extra coverage: enabled 2025/08/29 10:22:18 setuid sandbox: enabled 2025/08/29 10:22:18 namespace sandbox: enabled 2025/08/29 10:22:18 Android sandbox: enabled 2025/08/29 10:22:18 fault injection: enabled 2025/08/29 10:22:18 leak checking: enabled 2025/08/29 10:22:18 net packet injection: enabled 2025/08/29 10:22:18 net device setup: enabled 2025/08/29 10:22:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 10:22:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 10:22:18 USB emulation: enabled 2025/08/29 10:22:18 hci packet injection: enabled 2025/08/29 10:22:18 wifi device emulation: enabled 2025/08/29 10:22:18 802.15.4 emulation: enabled 2025/08/29 10:22:18 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 10:22:18 fetching corpus: 50, signal 17877/21482 (executing program) 2025/08/29 10:22:18 fetching corpus: 100, signal 29449/34447 (executing program) 2025/08/29 10:22:18 fetching corpus: 150, signal 36677/43029 (executing program) 2025/08/29 10:22:18 fetching corpus: 200, signal 45014/52478 (executing program) 2025/08/29 10:22:18 fetching corpus: 250, signal 49670/58301 (executing program) 2025/08/29 10:22:18 fetching corpus: 300, signal 55835/65400 (executing program) 2025/08/29 10:22:18 fetching corpus: 350, signal 61066/71529 (executing program) 2025/08/29 10:22:18 fetching corpus: 400, signal 64641/76032 (executing program) 2025/08/29 10:22:19 fetching corpus: 450, signal 67346/79653 (executing program) 2025/08/29 10:22:19 fetching corpus: 500, signal 70130/83284 (executing program) 2025/08/29 10:22:19 fetching corpus: 550, signal 72225/86265 (executing program) 2025/08/29 10:22:19 fetching corpus: 600, signal 75663/90383 (executing program) 2025/08/29 10:22:19 fetching corpus: 650, signal 78384/93775 (executing program) 2025/08/29 10:22:19 fetching corpus: 700, signal 81989/97893 (executing program) 2025/08/29 10:22:19 fetching corpus: 750, signal 84014/100586 (executing program) 2025/08/29 10:22:19 fetching corpus: 800, signal 86524/103685 (executing program) 2025/08/29 10:22:19 fetching corpus: 850, signal 88535/106253 (executing program) 2025/08/29 10:22:20 fetching corpus: 900, signal 90032/108393 (executing program) 2025/08/29 10:22:20 fetching corpus: 950, signal 91817/110782 (executing program) 2025/08/29 10:22:20 fetching corpus: 1000, signal 93781/113221 (executing program) 2025/08/29 10:22:20 fetching corpus: 1050, signal 95598/115519 (executing program) 2025/08/29 10:22:20 fetching corpus: 1100, signal 96989/117500 (executing program) 2025/08/29 10:22:20 fetching corpus: 1150, signal 98582/119545 (executing program) 2025/08/29 10:22:20 fetching corpus: 1200, signal 104148/124609 (executing program) 2025/08/29 10:22:20 fetching corpus: 1250, signal 105900/126722 (executing program) 2025/08/29 10:22:20 fetching corpus: 1300, signal 107122/128363 (executing program) 2025/08/29 10:22:21 fetching corpus: 1350, signal 108936/130352 (executing program) 2025/08/29 10:22:21 fetching corpus: 1400, signal 110702/132266 (executing program) 2025/08/29 10:22:21 fetching corpus: 1450, signal 111698/133687 (executing program) 2025/08/29 10:22:21 fetching corpus: 1500, signal 112550/134926 (executing program) 2025/08/29 10:22:21 fetching corpus: 1550, signal 113917/136529 (executing program) 2025/08/29 10:22:21 fetching corpus: 1600, signal 115143/138005 (executing program) 2025/08/29 10:22:21 fetching corpus: 1650, signal 116455/139508 (executing program) 2025/08/29 10:22:21 fetching corpus: 1700, signal 117206/140652 (executing program) 2025/08/29 10:22:21 fetching corpus: 1750, signal 118146/141886 (executing program) 2025/08/29 10:22:21 fetching corpus: 1800, signal 119262/143192 (executing program) 2025/08/29 10:22:22 fetching corpus: 1850, signal 120753/144714 (executing program) 2025/08/29 10:22:22 fetching corpus: 1900, signal 122007/146157 (executing program) 2025/08/29 10:22:22 fetching corpus: 1950, signal 123071/147366 (executing program) 2025/08/29 10:22:22 fetching corpus: 2000, signal 124295/148600 (executing program) 2025/08/29 10:22:22 fetching corpus: 2050, signal 125582/149837 (executing program) 2025/08/29 10:22:22 fetching corpus: 2100, signal 126705/150972 (executing program) 2025/08/29 10:22:22 fetching corpus: 2150, signal 127452/151940 (executing program) 2025/08/29 10:22:22 fetching corpus: 2200, signal 128165/152824 (executing program) 2025/08/29 10:22:22 fetching corpus: 2250, signal 129136/153821 (executing program) 2025/08/29 10:22:22 fetching corpus: 2300, signal 130200/154867 (executing program) 2025/08/29 10:22:22 fetching corpus: 2350, signal 131190/155818 (executing program) 2025/08/29 10:22:23 fetching corpus: 2400, signal 132097/156660 (executing program) 2025/08/29 10:22:23 fetching corpus: 2450, signal 132750/157437 (executing program) 2025/08/29 10:22:23 fetching corpus: 2500, signal 133569/158268 (executing program) 2025/08/29 10:22:23 fetching corpus: 2550, signal 134413/159094 (executing program) 2025/08/29 10:22:23 fetching corpus: 2600, signal 134854/159765 (executing program) 2025/08/29 10:22:23 fetching corpus: 2650, signal 135462/160467 (executing program) 2025/08/29 10:22:23 fetching corpus: 2700, signal 136380/161321 (executing program) 2025/08/29 10:22:23 fetching corpus: 2750, signal 136826/161931 (executing program) 2025/08/29 10:22:23 fetching corpus: 2800, signal 137334/162578 (executing program) 2025/08/29 10:22:23 fetching corpus: 2850, signal 138097/163283 (executing program) 2025/08/29 10:22:24 fetching corpus: 2900, signal 138783/163870 (executing program) 2025/08/29 10:22:24 fetching corpus: 2950, signal 139628/164565 (executing program) 2025/08/29 10:22:24 fetching corpus: 3000, signal 140553/165223 (executing program) 2025/08/29 10:22:24 fetching corpus: 3050, signal 141394/165906 (executing program) 2025/08/29 10:22:24 fetching corpus: 3100, signal 142151/166523 (executing program) 2025/08/29 10:22:24 fetching corpus: 3150, signal 142836/167056 (executing program) 2025/08/29 10:22:24 fetching corpus: 3200, signal 144025/167717 (executing program) 2025/08/29 10:22:24 fetching corpus: 3250, signal 144527/168181 (executing program) 2025/08/29 10:22:25 fetching corpus: 3300, signal 145143/168703 (executing program) 2025/08/29 10:22:25 fetching corpus: 3350, signal 145569/169146 (executing program) 2025/08/29 10:22:25 fetching corpus: 3400, signal 146208/169619 (executing program) 2025/08/29 10:22:25 fetching corpus: 3450, signal 146639/170052 (executing program) 2025/08/29 10:22:25 fetching corpus: 3500, signal 147225/170471 (executing program) 2025/08/29 10:22:25 fetching corpus: 3550, signal 147784/170894 (executing program) 2025/08/29 10:22:25 fetching corpus: 3600, signal 148595/171336 (executing program) 2025/08/29 10:22:25 fetching corpus: 3650, signal 148974/171693 (executing program) 2025/08/29 10:22:25 fetching corpus: 3700, signal 149546/172052 (executing program) 2025/08/29 10:22:25 fetching corpus: 3750, signal 150071/172420 (executing program) 2025/08/29 10:22:26 fetching corpus: 3800, signal 150820/172811 (executing program) 2025/08/29 10:22:26 fetching corpus: 3850, signal 151348/173144 (executing program) 2025/08/29 10:22:26 fetching corpus: 3900, signal 152009/173471 (executing program) 2025/08/29 10:22:26 fetching corpus: 3950, signal 152445/173749 (executing program) 2025/08/29 10:22:26 fetching corpus: 4000, signal 152853/174122 (executing program) 2025/08/29 10:22:26 fetching corpus: 4050, signal 153355/174386 (executing program) 2025/08/29 10:22:26 fetching corpus: 4100, signal 154090/174676 (executing program) 2025/08/29 10:22:26 fetching corpus: 4150, signal 154536/174938 (executing program) 2025/08/29 10:22:26 fetching corpus: 4200, signal 155052/175197 (executing program) 2025/08/29 10:22:26 fetching corpus: 4250, signal 155604/175214 (executing program) 2025/08/29 10:22:26 fetching corpus: 4300, signal 156223/175216 (executing program) 2025/08/29 10:22:26 fetching corpus: 4350, signal 156624/175217 (executing program) 2025/08/29 10:22:27 fetching corpus: 4400, signal 157080/175225 (executing program) 2025/08/29 10:22:27 fetching corpus: 4450, signal 157545/175226 (executing program) 2025/08/29 10:22:27 fetching corpus: 4500, signal 157832/175234 (executing program) 2025/08/29 10:22:27 fetching corpus: 4550, signal 158289/175237 (executing program) 2025/08/29 10:22:27 fetching corpus: 4600, signal 158650/175258 (executing program) 2025/08/29 10:22:27 fetching corpus: 4650, signal 159084/175265 (executing program) 2025/08/29 10:22:27 fetching corpus: 4700, signal 159654/175290 (executing program) 2025/08/29 10:22:27 fetching corpus: 4750, signal 160190/175311 (executing program) 2025/08/29 10:22:27 fetching corpus: 4800, signal 160531/175326 (executing program) 2025/08/29 10:22:27 fetching corpus: 4850, signal 161017/175339 (executing program) 2025/08/29 10:22:27 fetching corpus: 4900, signal 161329/175343 (executing program) 2025/08/29 10:22:27 fetching corpus: 4950, signal 161936/175347 (executing program) 2025/08/29 10:22:28 fetching corpus: 5000, signal 162170/175350 (executing program) 2025/08/29 10:22:28 fetching corpus: 5050, signal 162592/175356 (executing program) 2025/08/29 10:22:28 fetching corpus: 5100, signal 163087/175360 (executing program) 2025/08/29 10:22:28 fetching corpus: 5150, signal 163490/175368 (executing program) 2025/08/29 10:22:28 fetching corpus: 5200, signal 163840/175387 (executing program) 2025/08/29 10:22:28 fetching corpus: 5250, signal 164333/175399 (executing program) 2025/08/29 10:22:28 fetching corpus: 5300, signal 164560/175405 (executing program) 2025/08/29 10:22:28 fetching corpus: 5350, signal 165304/175419 (executing program) 2025/08/29 10:22:28 fetching corpus: 5400, signal 165825/175440 (executing program) 2025/08/29 10:22:28 fetching corpus: 5450, signal 166162/175449 (executing program) 2025/08/29 10:22:28 fetching corpus: 5500, signal 166675/175566 (executing program) 2025/08/29 10:22:29 fetching corpus: 5550, signal 167259/175572 (executing program) 2025/08/29 10:22:29 fetching corpus: 5600, signal 167606/175579 (executing program) 2025/08/29 10:22:29 fetching corpus: 5650, signal 168276/175580 (executing program) 2025/08/29 10:22:29 fetching corpus: 5700, signal 168573/175589 (executing program) 2025/08/29 10:22:29 fetching corpus: 5750, signal 169035/175595 (executing program) 2025/08/29 10:22:29 fetching corpus: 5800, signal 169475/175612 (executing program) 2025/08/29 10:22:29 fetching corpus: 5850, signal 169834/175694 (executing program) 2025/08/29 10:22:29 fetching corpus: 5900, signal 170307/175712 (executing program) 2025/08/29 10:22:29 fetching corpus: 5950, signal 170583/175728 (executing program) 2025/08/29 10:22:29 fetching corpus: 6000, signal 170970/175735 (executing program) 2025/08/29 10:22:29 fetching corpus: 6050, signal 171193/175742 (executing program) 2025/08/29 10:22:29 fetching corpus: 6100, signal 171447/175763 (executing program) 2025/08/29 10:22:30 fetching corpus: 6150, signal 171821/175772 (executing program) 2025/08/29 10:22:30 fetching corpus: 6200, signal 172443/175775 (executing program) 2025/08/29 10:22:30 fetching corpus: 6250, signal 172827/175813 (executing program) 2025/08/29 10:22:30 fetching corpus: 6300, signal 173117/175815 (executing program) 2025/08/29 10:22:30 fetching corpus: 6340, signal 173525/175822 (executing program) 2025/08/29 10:22:30 fetching corpus: 6340, signal 173525/175822 (executing program) 2025/08/29 10:22:32 starting 8 fuzzer processes 10:22:32 executing program 0: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000500)) 10:22:32 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) tee(r0, r1, 0x208, 0x0) 10:22:32 executing program 1: creat(&(0x7f00000003c0)='./file0\x00', 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, 0xee00}}]}}) 10:22:32 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x24, 0x0, 0x490) [ 84.361277] audit: type=1400 audit(1756462952.186:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:22:32 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x40001) r2 = dup2(r1, r0) write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0x2e) ioctl$SG_IO(r2, 0x2285, &(0x7f00000022c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x6, 0x0}, &(0x7f0000001240)="05ae46670f9d", 0x0, 0x0, 0x0, 0x0, 0x0}) 10:22:32 executing program 4: clock_adjtime(0x0, &(0x7f0000000180)={0x51dfdbe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10fa}) 10:22:32 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmmsg$sock(r0, &(0x7f0000007800)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000000180)='#', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002f80)=[{&(0x7f0000002d40)='H', 0x1}], 0x1, &(0x7f0000003000)=[@txtime={{0x18}}], 0x18}}], 0x2, 0x0) 10:22:32 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f00000000c0), 0x4) [ 85.553297] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.556556] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.558344] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.561816] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.564343] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.677700] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.690655] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.700346] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.701591] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 85.706457] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 85.707687] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.711372] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.712752] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 85.718821] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 85.720435] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.724318] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.729506] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 85.737364] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.742736] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.744884] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.751987] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.759870] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.764340] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.766315] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 85.776298] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.776801] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 85.781448] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 85.798608] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 85.798825] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 85.806608] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 85.807889] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 85.810432] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 85.811708] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 85.828502] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 85.834730] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 85.837611] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 85.855797] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 85.858522] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 85.860594] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 85.881493] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 87.583465] Bluetooth: hci0: command tx timeout [ 87.775144] Bluetooth: hci4: command tx timeout [ 87.838227] Bluetooth: hci3: command tx timeout [ 87.838824] Bluetooth: hci1: command tx timeout [ 87.840029] Bluetooth: hci2: command tx timeout [ 87.902173] Bluetooth: hci5: command tx timeout [ 87.903130] Bluetooth: hci7: command tx timeout [ 87.968117] Bluetooth: hci6: command tx timeout [ 89.630572] Bluetooth: hci0: command tx timeout [ 89.823219] Bluetooth: hci4: command tx timeout [ 89.889112] Bluetooth: hci2: command tx timeout [ 89.889539] Bluetooth: hci3: command tx timeout [ 89.889916] Bluetooth: hci1: command tx timeout [ 89.951164] Bluetooth: hci7: command tx timeout [ 89.951592] Bluetooth: hci5: command tx timeout [ 90.015122] Bluetooth: hci6: command tx timeout [ 91.679297] Bluetooth: hci0: command tx timeout [ 91.872133] Bluetooth: hci4: command tx timeout [ 91.934144] Bluetooth: hci1: command tx timeout [ 91.934579] Bluetooth: hci3: command tx timeout [ 91.934952] Bluetooth: hci2: command tx timeout [ 91.999239] Bluetooth: hci5: command tx timeout [ 91.999684] Bluetooth: hci7: command tx timeout [ 92.063109] Bluetooth: hci6: command tx timeout [ 93.728163] Bluetooth: hci0: command tx timeout [ 93.919791] Bluetooth: hci4: command tx timeout [ 93.983138] Bluetooth: hci2: command tx timeout [ 93.983563] Bluetooth: hci3: command tx timeout [ 93.983945] Bluetooth: hci1: command tx timeout [ 94.047142] Bluetooth: hci5: command tx timeout [ 94.047557] Bluetooth: hci7: command tx timeout [ 94.110295] Bluetooth: hci6: command tx timeout [ 123.316665] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.317400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.471241] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.471864] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.612573] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.613747] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.696916] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.697832] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.858414] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.859575] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.973779] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.974456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.011397] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.012001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:48:03 executing program 4: clock_adjtime(0x0, &(0x7f0000000180)={0x51dfdbe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10fa}) [ 124.152668] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.153374] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 14:00:30 executing program 4: clock_adjtime(0x0, &(0x7f0000000180)={0x51dfdbe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10fa}) [ 124.198571] audit: type=1400 audit(1756476030.022:8): avc: denied { open } for pid=3855 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.213242] audit: type=1400 audit(1756476030.023:9): avc: denied { kernel } for pid=3855 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 15:12:56 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) tee(r0, r1, 0x208, 0x0) [ 124.313722] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.314945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 15:12:56 executing program 4: clock_adjtime(0x0, &(0x7f0000000180)={0x51dfdbe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10fa}) 16:25:22 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='projid_map\x00') write$P9_RRENAMEAT(r0, 0x0, 0x0) 16:25:22 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) tee(r0, r1, 0x208, 0x0) 16:25:22 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='projid_map\x00') write$P9_RRENAMEAT(r0, 0x0, 0x0) [ 124.524154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.525474] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:25:22 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) tee(r0, r1, 0x208, 0x0) [ 124.656133] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.656729] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.752662] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.753365] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.858119] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.858722] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.929914] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.930622] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.986141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.986986] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.025815] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.026488] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:25:22 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmmsg$sock(r0, &(0x7f0000007800)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000000180)='#', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002f80)=[{&(0x7f0000002d40)='H', 0x1}], 0x1, &(0x7f0000003000)=[@txtime={{0x18}}], 0x18}}], 0x2, 0x0) 16:25:22 executing program 0: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000500)) 16:25:22 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f00000000c0), 0x4) 16:25:22 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='projid_map\x00') write$P9_RRENAMEAT(r0, 0x0, 0x0) 16:25:22 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:22 executing program 1: creat(&(0x7f00000003c0)='./file0\x00', 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, 0xee00}}]}}) 16:25:22 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x24, 0x0, 0x490) 16:25:22 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x40001) r2 = dup2(r1, r0) write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0x2e) ioctl$SG_IO(r2, 0x2285, &(0x7f00000022c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x6, 0x0}, &(0x7f0000001240)="05ae46670f9d", 0x0, 0x0, 0x0, 0x0, 0x0}) 16:25:23 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x40001) r2 = dup2(r1, r0) write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0x2e) ioctl$SG_IO(r2, 0x2285, &(0x7f00000022c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x6, 0x0}, &(0x7f0000001240)="05ae46670f9d", 0x0, 0x0, 0x0, 0x0, 0x0}) 16:25:23 executing program 0: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000500)) 16:25:23 executing program 1: creat(&(0x7f00000003c0)='./file0\x00', 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, 0xee00}}]}}) 16:25:23 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f00000000c0), 0x4) 16:25:23 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x24, 0x0, 0x490) 16:25:23 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='projid_map\x00') write$P9_RRENAMEAT(r0, 0x0, 0x0) 16:25:23 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmmsg$sock(r0, &(0x7f0000007800)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000000180)='#', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002f80)=[{&(0x7f0000002d40)='H', 0x1}], 0x1, &(0x7f0000003000)=[@txtime={{0x18}}], 0x18}}], 0x2, 0x0) 16:25:23 executing program 1: creat(&(0x7f00000003c0)='./file0\x00', 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, 0xee00}}]}}) 16:25:23 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x40001) r2 = dup2(r1, r0) write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0x2e) ioctl$SG_IO(r2, 0x2285, &(0x7f00000022c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x6, 0x0}, &(0x7f0000001240)="05ae46670f9d", 0x0, 0x0, 0x0, 0x0, 0x0}) 16:25:23 executing program 0: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000500)) 16:25:23 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:23 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f00000000c0), 0x4) 16:25:23 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x24, 0x0, 0x490) 16:25:23 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/image_size', 0x0, 0x0) read(r0, &(0x7f0000000140)=""/179, 0xb3) 16:25:23 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmmsg$sock(r0, &(0x7f0000007800)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000000180)='#', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002f80)=[{&(0x7f0000002d40)='H', 0x1}], 0x1, &(0x7f0000003000)=[@txtime={{0x18}}], 0x18}}], 0x2, 0x0) 16:25:23 executing program 7: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:23 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/image_size', 0x0, 0x0) read(r0, &(0x7f0000000140)=""/179, 0xb3) 16:25:23 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:23 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, r1, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_DST={0x14, 0x1, @local}]}, 0x28}}, 0x0) 16:25:23 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$802154_dgram(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x24, @long={0x3, 0xffff}}, 0x43, &(0x7f00000000c0)={0x0}}, 0x0) 16:25:23 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_buf(r1, 0x0, 0x29, 0x0, 0x1000000) 16:25:23 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/image_size', 0x0, 0x0) read(r0, &(0x7f0000000140)=""/179, 0xb3) 16:25:23 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/image_size', 0x0, 0x0) read(r0, &(0x7f0000000140)=""/179, 0xb3) 16:25:23 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_buf(r1, 0x0, 0x29, 0x0, 0x1000000) 16:25:23 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$802154_dgram(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x24, @long={0x3, 0xffff}}, 0x43, &(0x7f00000000c0)={0x0}}, 0x0) 16:25:23 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, r1, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_DST={0x14, 0x1, @local}]}, 0x28}}, 0x0) 16:25:23 executing program 7: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:23 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:23 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:23 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, r1, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_DST={0x14, 0x1, @local}]}, 0x28}}, 0x0) 16:25:23 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) syncfs(r0) 16:25:23 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, r1, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_DST={0x14, 0x1, @local}]}, 0x28}}, 0x0) 16:25:23 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_buf(r1, 0x0, 0x29, 0x0, 0x1000000) 16:25:23 executing program 7: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:23 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_buf(r1, 0x0, 0x29, 0x0, 0x1000000) 16:25:24 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$802154_dgram(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x24, @long={0x3, 0xffff}}, 0x43, &(0x7f00000000c0)={0x0}}, 0x0) 16:25:24 executing program 3: r0 = mq_open(&(0x7f00000001c0)='{#:E,,\x00\x9e\\\xe5\x9a\x86{w\x1f1\xfcN\x85U_0\x96\x13\xab\x12\b\x00\x00\x00\xfe\xc6\xf3y\x05\x8deeU?5\x19\x88\xef;:\xb2#\x1b\\\x98\xe6`k9D\xca\xd5\xd0s\xb5!.\x04+\xa3\xc4:\xdbj\xfb\x0f\xf1\xe0y\xe8+9\xa6#\x1e\xf0P\x8c#h\xbb\f\x0e\x18\x87\xc4\n\x92zK/\xe2\x10M8\x9a\xf0\x02\xab,\xb5\xc5\x81\x99\x00'/124, 0x41, 0x0, 0x0) mq_timedsend(r0, &(0x7f0000000240)="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", 0x1000, 0x4, &(0x7f0000000040)) 16:25:24 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:24 executing program 5: clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) clock_nanosleep(0x8, 0x0, &(0x7f00000000c0)={0x0, r0+60000000}, 0x0) 16:25:24 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 16:25:24 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TCSETSF2(r1, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = fork() perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, r2, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3d, 0x2, 0x6, 0xfb, 0x0, 0x40, 0x20000, 0xa, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x81, 0x1, @perf_bp={&(0x7f00000000c0), 0xc}, 0x10402, 0x8, 0x7, 0x0, 0x9, 0xc8f, 0x1, 0x0, 0x1a4, 0x0, 0xb8be}, r2, 0x8, r0, 0x3) 16:25:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) syncfs(r0) 16:25:24 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000440)='uid_map\x00') pread64(r0, &(0x7f0000000200)=""/183, 0xb7, 0x0) 16:25:24 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) sendmsg$802154_dgram(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x24, @long={0x3, 0xffff}}, 0x43, &(0x7f00000000c0)={0x0}}, 0x0) [ 126.439868] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI [ 126.440791] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 126.441494] CPU: 0 UID: 0 PID: 4017 Comm: syz-executor.2 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 126.443136] Tainted: [W]=WARN [ 126.443961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.445839] RIP: 0010:perf_tp_event+0x175/0xe70 [ 126.447323] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 126.450750] RSP: 0018:ffff888016bbf780 EFLAGS: 00010012 [ 126.451179] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 126.451738] RDX: ffff888018663700 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 126.452296] RBP: ffff888016bbf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16400 [ 126.452855] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 126.453420] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 126.453980] FS: 0000555585c27400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 126.454605] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.455063] CR2: 0000001b2cf21000 CR3: 000000001bf81000 CR4: 0000000000350ef0 [ 126.455622] Call Trace: [ 126.455828] [ 126.456009] ? __ext4_journal_stop+0xe2/0x1f0 [ 126.456374] ? ext4_dirty_inode+0xf1/0x130 [ 126.456717] ? __mark_inode_dirty+0x1b7/0xd00 [ 126.457082] ? do_user_addr_fault+0x4fa/0xeb0 [ 126.457455] ? __pfx_perf_tp_event+0x10/0x10 [ 126.457809] ? lock_acquire+0x15e/0x2f0 [ 126.458127] ? __virt_addr_valid+0x1c6/0x5d0 [ 126.458484] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.458953] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.459419] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.459886] ? lock_release+0xc8/0x290 [ 126.460199] ? lock_is_held_type+0x9e/0x120 [ 126.460517] kmemleak: Found object by alias at 0x607f1a629f14 [ 126.460548] CPU: 1 UID: 0 PID: 4020 Comm: syz-executor.3 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 126.460582] Tainted: [W]=WARN [ 126.460589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.460602] Call Trace: [ 126.460608] [ 126.460616] dump_stack_lvl+0xca/0x120 [ 126.460655] __lookup_object+0x94/0xb0 [ 126.460683] delete_object_full+0x27/0x70 [ 126.460710] free_percpu+0x30/0x1160 [ 126.460739] ? arch_uprobe_clear_state+0x16/0x140 [ 126.460770] futex_hash_free+0x38/0xc0 [ 126.460794] mmput+0x2d3/0x390 [ 126.460825] do_exit+0x79d/0x2970 [ 126.460848] ? lock_release+0xc8/0x290 [ 126.460873] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.460909] ? __pfx_do_exit+0x10/0x10 [ 126.460932] ? find_held_lock+0x2b/0x80 [ 126.460962] ? get_signal+0x835/0x2340 [ 126.460994] do_group_exit+0xd3/0x2a0 [ 126.461019] get_signal+0x2315/0x2340 [ 126.461049] ? fput+0x6a/0x100 [ 126.461081] ? do_mq_timedsend+0x720/0xbe0 [ 126.461114] ? __pfx_get_signal+0x10/0x10 [ 126.461143] ? do_futex+0x135/0x370 [ 126.461165] ? __pfx_do_futex+0x10/0x10 [ 126.461189] arch_do_signal_or_restart+0x80/0x790 [ 126.461219] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 126.461248] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.461300] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.461334] ? __pfx___x64_sys_futex+0x10/0x10 [ 126.461357] ? __pfx___x64_sys_mq_timedsend+0x10/0x10 [ 126.461392] exit_to_user_mode_loop+0x8b/0x110 [ 126.461413] do_syscall_64+0x2f7/0x360 [ 126.461433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.461453] RIP: 0033:0x7fbf5ded1b19 [ 126.461469] Code: Unable to access opcode bytes at 0x7fbf5ded1aef. [ 126.461478] RSP: 002b:00007fbf5b447218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.461498] RAX: fffffffffffffe00 RBX: 00007fbf5dfe4f68 RCX: 00007fbf5ded1b19 [ 126.461512] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf5dfe4f68 [ 126.461524] RBP: 00007fbf5dfe4f60 R08: 0000000000000000 R09: 0000000000000000 [ 126.461536] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf5dfe4f6c [ 126.461549] R13: 00007ffe57aede3f R14: 00007fbf5b447300 R15: 0000000000022000 [ 126.461568] [ 126.461575] kmemleak: Object (percpu) 0x607f1a629f10 (size 8): [ 126.461587] kmemleak: comm "syz-executor.1", pid 4004, jiffies 4294793241 [ 126.461600] kmemleak: min_count = 1 [ 126.461606] kmemleak: count = 0 [ 126.461613] kmemleak: flags = 0x21 [ 126.461620] kmemleak: checksum = 0 [ 126.461626] kmemleak: backtrace: [ 126.461633] pcpu_alloc_noprof+0x87a/0x1170 [ 126.461660] percpu_ref_init+0x37/0x400 [ 126.461691] blkg_alloc+0xe9/0x7d0 [ 126.461711] blkg_create+0xe08/0x1420 [ 126.461733] bio_associate_blkg_from_css+0xe06/0x1380 [ 126.461757] bio_associate_blkg+0x10e/0x2a0 [ 126.461779] bio_init+0x2dd/0x570 [ 126.461801] bio_alloc_bioset+0x2cf/0x8c0 [ 126.461826] submit_bh_wbc+0x286/0x720 [ 126.461854] __block_write_full_folio+0x723/0xde0 [ 126.461873] block_write_full_folio+0x2d6/0x390 [ 126.461895] blkdev_writepages+0x96/0x120 [ 126.461915] do_writepages+0x244/0x5c0 [ 126.461937] filemap_fdatawrite_wbc+0x10b/0x150 [ 126.461962] __filemap_fdatawrite_range+0xb9/0x100 [ 126.461992] filemap_write_and_wait_range+0xa5/0x130 [ 126.484766] ? lock_is_held_type+0x9e/0x120 [ 126.485117] ? perf_trace_run_bpf_submit+0xef/0x180 [ 126.485522] ? __lock_acquire+0xc65/0x1b70 [ 126.485856] perf_trace_run_bpf_submit+0xef/0x180 [ 126.486246] perf_trace_preemptirq_template+0x259/0x430 [ 126.486673] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.487142] ? _raw_spin_lock_irqsave+0x53/0x60 [ 126.487514] trace_irq_disable.constprop.0+0xa6/0x100 [ 126.487916] _raw_spin_lock_irqsave+0x53/0x60 [ 126.488278] try_to_wake_up+0xa0/0x11d0 [ 126.488603] ? __pfx_try_to_wake_up+0x10/0x10 [ 126.488964] ? plist_del+0x122/0x270 [ 126.489269] ? find_held_lock+0x2b/0x80 [ 126.489604] ? futex_wake+0x474/0x540 [ 126.489917] wake_up_q+0xa1/0x130 [ 126.490207] futex_wake+0x47e/0x540 [ 126.490503] ? __pfx_futex_wake+0x10/0x10 [ 126.490836] ? __handle_mm_fault+0x753/0x3260 [ 126.491200] ? __lock_acquire+0x694/0x1b70 [ 126.491537] do_futex+0x26d/0x370 [ 126.491817] ? __pfx_do_futex+0x10/0x10 [ 126.492137] ? find_held_lock+0x2b/0x80 [ 126.492459] __x64_sys_futex+0x1c9/0x4d0 [ 126.492783] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.493251] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.493723] ? __pfx___x64_sys_futex+0x10/0x10 [ 126.494093] do_syscall_64+0xbf/0x360 [ 126.494394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.494802] RIP: 0033:0x7fe7a58c9b19 [ 126.495096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.496506] RSP: 002b:00007ffec8790c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.497096] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe7a58c9b19 [ 126.497669] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe7a59dcf68 [ 126.498222] RBP: 00007fe7a59dcf60 R08: 0000000000000000 R09: 0000000000000000 [ 126.498779] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe7a59e1b10 [ 126.499333] R13: 00007ffec8790d70 R14: 00007fe7a59dcf60 R15: 000000000001ed76 [ 126.499890] [ 126.500078] Modules linked in: [ 126.500342] ---[ end trace 0000000000000000 ]--- [ 126.500709] RIP: 0010:perf_tp_event+0x175/0xe70 [ 126.501084] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 126.502503] RSP: 0018:ffff888016bbf780 EFLAGS: 00010012 [ 126.502925] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 126.503486] RDX: ffff888018663700 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 126.504044] RBP: ffff888016bbf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16400 [ 126.504597] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 126.505151] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 126.505718] FS: 0000555585c27400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 126.506344] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.506800] CR2: 0000001b2cf21000 CR3: 000000001bf81000 CR4: 0000000000350ef0 [ 126.507357] note: syz-executor.2[4017] exited with irqs disabled [ 126.507904] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI [ 126.508776] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197] [ 126.509463] CPU: 0 UID: 0 PID: 4017 Comm: syz-executor.2 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 126.510401] Tainted: [D]=DIE, [W]=WARN [ 126.510703] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.511348] RIP: 0010:perf_tp_event+0x175/0xe70 [ 126.511726] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 126.513141] RSP: 0018:ffff88806ce08ac0 EFLAGS: 00010012 [ 126.513566] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 126.514124] RDX: ffff888018663700 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 126.514682] RBP: ffff88806ce08d30 R08: ffff88806ce313e8 R09: ffffe8ffffc16400 [ 126.515239] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 126.515797] R13: 0000000000000014 R14: ffff88806ce313e8 R15: dffffc0000000000 [ 126.516356] FS: 0000555585c27400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 126.516981] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.517446] CR2: 0000001b2cf21000 CR3: 000000001bf81000 CR4: 0000000000350ef0 [ 126.518003] Call Trace: [ 126.518209] [ 126.518385] ? __smp_call_single_queue+0x15b/0x2f0 [ 126.518782] ? kvm_sched_clock_read+0x16/0x30 [ 126.519146] ? __pfx_perf_tp_event+0x10/0x10 [ 126.519503] ? trace_pelt_se_tp+0xdf/0x130 [ 126.519839] ? __update_load_avg_se+0x428/0xa40 [ 126.520219] ? place_entity+0x300/0x410 [ 126.520537] ? kvm_sched_clock_read+0x16/0x30 [ 126.520899] ? enqueue_task_fair+0x43a/0x1e00 [ 126.521260] ? do_raw_spin_lock+0x123/0x260 [ 126.521616] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 126.521988] ? lock_acquire+0x18c/0x2f0 [ 126.522313] ? lock_release+0x1c7/0x290 [ 126.522631] ? perf_trace_run_bpf_submit+0xef/0x180 [ 126.523030] perf_trace_run_bpf_submit+0xef/0x180 [ 126.523418] perf_trace_preemptirq_template+0x259/0x430 [ 126.523845] ? lock_release+0x1c7/0x290 [ 126.524162] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 126.524632] ? lock_acquire+0x18c/0x2f0 [ 126.524953] ? irqentry_enter+0x2a/0x60 [ 126.525284] trace_irq_disable.constprop.0+0xa6/0x100 [ 126.525692] irqentry_enter+0x2a/0x60 [ 126.526002] sysvec_call_function_single+0x18/0xc0 [ 126.526396] asm_sysvec_call_function_single+0x1a/0x20 [ 126.526809] RIP: 0010:handle_softirqs+0x174/0x770 [ 126.527200] Code: c8 83 83 3c 0a 00 00 01 c7 44 24 20 0a 00 00 00 48 89 44 24 18 65 66 c7 05 0f 84 48 06 00 00 e8 42 80 40 00 fb bb ff ff ff ff <48> c7 c5 c0 c0 a0 85 41 0f bc de 83 c3 01 0f 85 9b 00 00 00 e9 8d [ 126.528618] RSP: 0018:ffff88806ce08f78 EFLAGS: 00000246 [ 126.529035] RAX: 0000000000000001 RBX: 00000000ffffffff RCX: ffffffff817c2b86 [ 126.529599] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813bac2e [ 126.530154] RBP: ffff888016bbfe78 R08: 0000000000000000 R09: 0000000000000000 [ 126.530708] R10: ffffffff8643ac57 R11: ffff88800d62ec98 R12: 0000000000000000 [ 126.531265] R13: 0000000000000000 R14: 0000000000000382 R15: 0000000000000000 [ 126.531825] ? trace_irq_enable.constprop.0+0x26/0x100 [ 126.532238] ? handle_softirqs+0x16e/0x770 [ 126.532586] ? handle_softirqs+0x16e/0x770 [ 126.532929] __irq_exit_rcu+0xc4/0x100 [ 126.533247] irq_exit_rcu+0x9/0x20 [ 126.533538] sysvec_apic_timer_interrupt+0x70/0x80 [ 126.533931] [ 126.534113] [ 126.534295] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 126.534707] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 126.535081] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de [ 126.536490] RSP: 0018:ffff888016bbff28 EFLAGS: 00000246 [ 126.536907] RAX: 0000000000000001 RBX: ffff888018663700 RCX: ffffffff817c2b86 [ 126.537470] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 126.538035] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 126.538600] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888018663700 [ 126.539171] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000 [ 126.539739] ? trace_irq_enable.constprop.0+0x26/0x100 [ 126.540157] ? make_task_dead+0x214/0x3b0 [ 126.540495] ? make_task_dead+0x214/0x3b0 [ 126.540834] ? do_syscall_64+0xbf/0x360 [ 126.541153] rewind_stack_and_make_dead+0x16/0x20 [ 126.541556] RIP: 0033:0x7fe7a58c9b19 [ 126.541854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.543279] RSP: 002b:00007ffec8790c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.543876] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe7a58c9b19 [ 126.544442] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe7a59dcf68 [ 126.545004] RBP: 00007fe7a59dcf60 R08: 0000000000000000 R09: 0000000000000000 [ 126.545574] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe7a59e1b10 [ 126.546141] R13: 00007ffec8790d70 R14: 00007fe7a59dcf60 R15: 000000000001ed76 [ 126.546711] [ 126.546900] Modules linked in: [ 126.547162] ---[ end trace 0000000000000000 ]--- [ 126.547538] RIP: 0010:perf_tp_event+0x175/0xe70 [ 126.547916] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 126.549359] RSP: 0018:ffff888016bbf780 EFLAGS: 00010012 [ 126.549780] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002 [ 126.550352] RDX: ffff888018663700 RSI: ffffffff818995b7 RDI: 0000000100000190 [ 126.550918] RBP: ffff888016bbf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16400 [ 126.551485] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 126.552049] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000 [ 126.552617] FS: 0000555585c27400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 126.553252] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.553726] CR2: 0000001b2cf21000 CR3: 000000001bf81000 CR4: 0000000000350ef0 [ 126.554299] Kernel panic - not syncing: Fatal exception in interrupt [ 126.555062] Kernel Offset: disabled [ 126.555357] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 10:23:14 Registers: info registers vcpu 0 RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888016bbf0d8 R8 =0000000000000000 R9 =ffffed100151b046 R10=000000000000003a R11=30376578302f4952 R12=000000000000003a R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555585c27400 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe2800000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2cf21000 CR3=000000001bf81000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000ff00000000000000000000 XMM01=616e65706f007366636f72702474616e XMM02=00000000000000000000000000000000 XMM03=00007fe7a59b07c800007fe7a59b07c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000002 RBX=0000000000000008 RCX=ffffc9000088e000 RDX=0000000000040000 RSI=ffffffff819e47f2 RDI=0000000000000007 RBP=0000000000001000 RSP=ffff888044f8f6e0 R8 =0000000000000000 R9 =fffff940000b16f0 R10=0000000000000008 R11=00000000000001ff R12=0000000000000008 R13=ffffea000058b780 R14=ffffea000058b780 R15=dffffc0000000000 RIP=ffffffff8173e7dd RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f5b720b7700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe6000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2ce25000 CR3=000000000d692000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000