Warning: Permanently added '[localhost]:28555' (ECDSA) to the list of known hosts.
2025/08/29 10:36:04 fuzzer started
2025/08/29 10:36:05 dialing manager at localhost:43077
syzkaller login: [ 50.574113] cgroup: Unknown subsys name 'net'
[ 50.637560] cgroup: Unknown subsys name 'cpuset'
[ 50.662260] cgroup: Unknown subsys name 'rlimit'
2025/08/29 10:36:15 syscalls: 2214
2025/08/29 10:36:15 code coverage: enabled
2025/08/29 10:36:15 comparison tracing: enabled
2025/08/29 10:36:15 extra coverage: enabled
2025/08/29 10:36:15 setuid sandbox: enabled
2025/08/29 10:36:15 namespace sandbox: enabled
2025/08/29 10:36:15 Android sandbox: enabled
2025/08/29 10:36:15 fault injection: enabled
2025/08/29 10:36:15 leak checking: enabled
2025/08/29 10:36:15 net packet injection: enabled
2025/08/29 10:36:15 net device setup: enabled
2025/08/29 10:36:15 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 10:36:15 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 10:36:15 USB emulation: enabled
2025/08/29 10:36:15 hci packet injection: enabled
2025/08/29 10:36:15 wifi device emulation: enabled
2025/08/29 10:36:15 802.15.4 emulation: enabled
2025/08/29 10:36:15 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 10:36:15 fetching corpus: 50, signal 19761/23303 (executing program)
2025/08/29 10:36:15 fetching corpus: 100, signal 36101/40894 (executing program)
2025/08/29 10:36:16 fetching corpus: 150, signal 41091/47247 (executing program)
2025/08/29 10:36:16 fetching corpus: 200, signal 48631/55864 (executing program)
2025/08/29 10:36:16 fetching corpus: 250, signal 56255/64388 (executing program)
2025/08/29 10:36:16 fetching corpus: 300, signal 60346/69541 (executing program)
2025/08/29 10:36:16 fetching corpus: 350, signal 62896/73202 (executing program)
2025/08/29 10:36:16 fetching corpus: 400, signal 67029/78194 (executing program)
2025/08/29 10:36:16 fetching corpus: 450, signal 70622/82601 (executing program)
2025/08/29 10:36:16 fetching corpus: 500, signal 73978/86778 (executing program)
2025/08/29 10:36:16 fetching corpus: 550, signal 77547/90999 (executing program)
2025/08/29 10:36:16 fetching corpus: 600, signal 80828/94947 (executing program)
2025/08/29 10:36:16 fetching corpus: 650, signal 83546/98325 (executing program)
2025/08/29 10:36:17 fetching corpus: 700, signal 86176/101605 (executing program)
2025/08/29 10:36:17 fetching corpus: 750, signal 87701/103934 (executing program)
2025/08/29 10:36:17 fetching corpus: 800, signal 89874/106671 (executing program)
2025/08/29 10:36:17 fetching corpus: 850, signal 92083/109363 (executing program)
2025/08/29 10:36:17 fetching corpus: 900, signal 93173/111220 (executing program)
2025/08/29 10:36:17 fetching corpus: 950, signal 95181/113699 (executing program)
2025/08/29 10:36:17 fetching corpus: 1000, signal 96220/115439 (executing program)
2025/08/29 10:36:17 fetching corpus: 1050, signal 97612/117406 (executing program)
2025/08/29 10:36:17 fetching corpus: 1100, signal 98944/119291 (executing program)
2025/08/29 10:36:17 fetching corpus: 1150, signal 101168/121796 (executing program)
2025/08/29 10:36:18 fetching corpus: 1200, signal 102229/123459 (executing program)
2025/08/29 10:36:18 fetching corpus: 1250, signal 103588/125244 (executing program)
2025/08/29 10:36:18 fetching corpus: 1300, signal 104981/127060 (executing program)
2025/08/29 10:36:18 fetching corpus: 1350, signal 106869/129248 (executing program)
2025/08/29 10:36:18 fetching corpus: 1400, signal 108563/131151 (executing program)
2025/08/29 10:36:18 fetching corpus: 1450, signal 109868/132888 (executing program)
2025/08/29 10:36:18 fetching corpus: 1500, signal 110847/134287 (executing program)
2025/08/29 10:36:18 fetching corpus: 1550, signal 112000/135755 (executing program)
2025/08/29 10:36:18 fetching corpus: 1600, signal 112675/136921 (executing program)
2025/08/29 10:36:18 fetching corpus: 1650, signal 114773/138936 (executing program)
2025/08/29 10:36:19 fetching corpus: 1700, signal 115707/140169 (executing program)
2025/08/29 10:36:19 fetching corpus: 1750, signal 116535/141350 (executing program)
2025/08/29 10:36:19 fetching corpus: 1800, signal 117619/142671 (executing program)
2025/08/29 10:36:19 fetching corpus: 1850, signal 118636/143956 (executing program)
2025/08/29 10:36:19 fetching corpus: 1900, signal 119547/145107 (executing program)
2025/08/29 10:36:19 fetching corpus: 1950, signal 120405/146202 (executing program)
2025/08/29 10:36:19 fetching corpus: 2000, signal 122052/147686 (executing program)
2025/08/29 10:36:20 fetching corpus: 2050, signal 123284/149021 (executing program)
2025/08/29 10:36:20 fetching corpus: 2100, signal 124113/150080 (executing program)
2025/08/29 10:36:20 fetching corpus: 2150, signal 125052/151215 (executing program)
2025/08/29 10:36:20 fetching corpus: 2200, signal 125643/152177 (executing program)
2025/08/29 10:36:20 fetching corpus: 2250, signal 126174/153099 (executing program)
2025/08/29 10:36:20 fetching corpus: 2300, signal 127377/154263 (executing program)
2025/08/29 10:36:20 fetching corpus: 2350, signal 127997/155134 (executing program)
2025/08/29 10:36:20 fetching corpus: 2400, signal 128778/156119 (executing program)
2025/08/29 10:36:21 fetching corpus: 2450, signal 129398/156944 (executing program)
2025/08/29 10:36:21 fetching corpus: 2500, signal 130178/157840 (executing program)
2025/08/29 10:36:21 fetching corpus: 2550, signal 131039/158703 (executing program)
2025/08/29 10:36:21 fetching corpus: 2600, signal 132592/159902 (executing program)
2025/08/29 10:36:21 fetching corpus: 2650, signal 133155/160605 (executing program)
2025/08/29 10:36:21 fetching corpus: 2700, signal 134284/161523 (executing program)
2025/08/29 10:36:21 fetching corpus: 2750, signal 134950/162234 (executing program)
2025/08/29 10:36:21 fetching corpus: 2800, signal 135626/162984 (executing program)
2025/08/29 10:36:21 fetching corpus: 2850, signal 136301/163717 (executing program)
2025/08/29 10:36:21 fetching corpus: 2900, signal 137022/164427 (executing program)
2025/08/29 10:36:22 fetching corpus: 2950, signal 137846/165161 (executing program)
2025/08/29 10:36:22 fetching corpus: 3000, signal 138388/165795 (executing program)
2025/08/29 10:36:22 fetching corpus: 3050, signal 139092/166427 (executing program)
2025/08/29 10:36:22 fetching corpus: 3100, signal 139697/167076 (executing program)
2025/08/29 10:36:22 fetching corpus: 3150, signal 140287/167648 (executing program)
2025/08/29 10:36:22 fetching corpus: 3200, signal 140743/168205 (executing program)
2025/08/29 10:36:22 fetching corpus: 3250, signal 141622/168882 (executing program)
2025/08/29 10:36:22 fetching corpus: 3300, signal 142005/169419 (executing program)
2025/08/29 10:36:22 fetching corpus: 3350, signal 142569/169971 (executing program)
2025/08/29 10:36:22 fetching corpus: 3400, signal 143292/170511 (executing program)
2025/08/29 10:36:23 fetching corpus: 3450, signal 144061/171089 (executing program)
2025/08/29 10:36:23 fetching corpus: 3500, signal 144613/171603 (executing program)
2025/08/29 10:36:23 fetching corpus: 3550, signal 145243/172095 (executing program)
2025/08/29 10:36:23 fetching corpus: 3600, signal 146358/172672 (executing program)
2025/08/29 10:36:23 fetching corpus: 3650, signal 146956/173128 (executing program)
2025/08/29 10:36:23 fetching corpus: 3700, signal 147696/173584 (executing program)
2025/08/29 10:36:23 fetching corpus: 3750, signal 148362/174011 (executing program)
2025/08/29 10:36:23 fetching corpus: 3800, signal 148873/174408 (executing program)
2025/08/29 10:36:23 fetching corpus: 3850, signal 149434/174787 (executing program)
2025/08/29 10:36:24 fetching corpus: 3900, signal 150289/175210 (executing program)
2025/08/29 10:36:24 fetching corpus: 3950, signal 151257/175616 (executing program)
2025/08/29 10:36:24 fetching corpus: 4000, signal 151783/175977 (executing program)
2025/08/29 10:36:24 fetching corpus: 4050, signal 152280/176319 (executing program)
2025/08/29 10:36:24 fetching corpus: 4100, signal 152985/176613 (executing program)
2025/08/29 10:36:24 fetching corpus: 4150, signal 153446/176918 (executing program)
2025/08/29 10:36:24 fetching corpus: 4200, signal 154007/177295 (executing program)
2025/08/29 10:36:24 fetching corpus: 4250, signal 154442/177590 (executing program)
2025/08/29 10:36:24 fetching corpus: 4300, signal 154785/177685 (executing program)
2025/08/29 10:36:24 fetching corpus: 4350, signal 155268/177696 (executing program)
2025/08/29 10:36:24 fetching corpus: 4400, signal 157024/177702 (executing program)
2025/08/29 10:36:24 fetching corpus: 4450, signal 157304/177707 (executing program)
2025/08/29 10:36:24 fetching corpus: 4500, signal 157968/177734 (executing program)
2025/08/29 10:36:24 fetching corpus: 4550, signal 158497/177758 (executing program)
2025/08/29 10:36:24 fetching corpus: 4600, signal 158939/177760 (executing program)
2025/08/29 10:36:25 fetching corpus: 4650, signal 159373/177784 (executing program)
2025/08/29 10:36:25 fetching corpus: 4700, signal 159821/177786 (executing program)
2025/08/29 10:36:25 fetching corpus: 4750, signal 160460/177802 (executing program)
2025/08/29 10:36:25 fetching corpus: 4800, signal 160918/177937 (executing program)
2025/08/29 10:36:25 fetching corpus: 4850, signal 161331/177944 (executing program)
2025/08/29 10:36:25 fetching corpus: 4900, signal 161787/177965 (executing program)
2025/08/29 10:36:25 fetching corpus: 4950, signal 162267/177965 (executing program)
2025/08/29 10:36:25 fetching corpus: 5000, signal 162890/177975 (executing program)
2025/08/29 10:36:25 fetching corpus: 5049, signal 163336/177991 (executing program)
2025/08/29 10:36:25 fetching corpus: 5099, signal 163791/178011 (executing program)
2025/08/29 10:36:25 fetching corpus: 5149, signal 164295/178018 (executing program)
2025/08/29 10:36:26 fetching corpus: 5199, signal 164553/178029 (executing program)
2025/08/29 10:36:26 fetching corpus: 5249, signal 164931/178032 (executing program)
2025/08/29 10:36:26 fetching corpus: 5299, signal 165292/178036 (executing program)
2025/08/29 10:36:26 fetching corpus: 5349, signal 165861/178036 (executing program)
2025/08/29 10:36:26 fetching corpus: 5399, signal 166242/178060 (executing program)
2025/08/29 10:36:26 fetching corpus: 5449, signal 166893/178061 (executing program)
2025/08/29 10:36:26 fetching corpus: 5499, signal 167263/178095 (executing program)
2025/08/29 10:36:26 fetching corpus: 5549, signal 167515/178102 (executing program)
2025/08/29 10:36:26 fetching corpus: 5599, signal 167937/178112 (executing program)
2025/08/29 10:36:26 fetching corpus: 5649, signal 168390/178131 (executing program)
2025/08/29 10:36:26 fetching corpus: 5699, signal 168727/178174 (executing program)
2025/08/29 10:36:26 fetching corpus: 5749, signal 169013/178174 (executing program)
2025/08/29 10:36:27 fetching corpus: 5799, signal 169673/178178 (executing program)
2025/08/29 10:36:27 fetching corpus: 5849, signal 170140/178187 (executing program)
2025/08/29 10:36:27 fetching corpus: 5899, signal 170423/178190 (executing program)
2025/08/29 10:36:27 fetching corpus: 5949, signal 170644/178215 (executing program)
2025/08/29 10:36:27 fetching corpus: 5999, signal 170860/178226 (executing program)
2025/08/29 10:36:27 fetching corpus: 6049, signal 171392/178233 (executing program)
2025/08/29 10:36:27 fetching corpus: 6099, signal 171787/178249 (executing program)
2025/08/29 10:36:27 fetching corpus: 6149, signal 172152/178254 (executing program)
2025/08/29 10:36:27 fetching corpus: 6199, signal 172489/178262 (executing program)
2025/08/29 10:36:27 fetching corpus: 6249, signal 173110/178268 (executing program)
2025/08/29 10:36:27 fetching corpus: 6299, signal 173494/178276 (executing program)
2025/08/29 10:36:28 fetching corpus: 6349, signal 173803/178294 (executing program)
2025/08/29 10:36:28 fetching corpus: 6399, signal 174076/178322 (executing program)
2025/08/29 10:36:28 fetching corpus: 6449, signal 174499/178429 (executing program)
2025/08/29 10:36:28 fetching corpus: 6499, signal 174857/178430 (executing program)
2025/08/29 10:36:28 fetching corpus: 6549, signal 175192/178438 (executing program)
2025/08/29 10:36:28 fetching corpus: 6599, signal 175406/178442 (executing program)
2025/08/29 10:36:28 fetching corpus: 6649, signal 175653/178446 (executing program)
2025/08/29 10:36:28 fetching corpus: 6673, signal 175754/178448 (executing program)
2025/08/29 10:36:28 fetching corpus: 6673, signal 175754/178448 (executing program)
2025/08/29 10:36:30 starting 8 fuzzer processes
10:36:30 executing program 0:
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@random="8fccf763792d", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x8, 0x2c, 0x0, @empty, @mcast2, {[], @echo_reply}}}}}, 0x0)
10:36:30 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000003f00)={'sit0\x00', &(0x7f0000003e80)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private2, @private0}})
10:36:30 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000140)=ANY=[@ANYRES16=r0, @ANYRES16], 0x6)
10:36:30 executing program 3:
r0 = io_uring_setup(0x5053, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0xb, 0x0, 0x0)
[ 75.887196] audit: type=1400 audit(1756463790.611:7): avc: denied { execmem } for pid=272 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
10:36:30 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f00000000c0)=0x18, 0x4)
10:36:30 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000180)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)
10:36:30 executing program 4:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = dup(r0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltgid}]}})
10:36:30 executing program 5:
lchown(&(0x7f0000000140)='./cgroup/cgroup.procs\x00', 0x0, 0xffffffffffffffff)
[ 76.966650] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 76.969005] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 76.971135] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 76.981676] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 76.987313] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 77.109362] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 77.112219] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 77.113581] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 77.131314] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 77.135925] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 77.221255] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 77.225737] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 77.229897] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 77.234612] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 77.243430] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 77.247366] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 77.248707] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 77.253157] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 77.259627] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 77.265710] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 77.309093] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 77.315537] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 77.315681] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 77.316918] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 77.322694] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 77.324126] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 77.326370] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 77.328207] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 77.338331] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 77.340343] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 77.342555] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 77.344348] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 77.345687] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 77.351167] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 77.357473] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 77.359094] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 77.362586] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 77.368265] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 77.370912] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 77.372218] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 79.058880] Bluetooth: hci0: command tx timeout
[ 79.185809] Bluetooth: hci1: command tx timeout
[ 79.313995] Bluetooth: hci3: command tx timeout
[ 79.314559] Bluetooth: hci2: command tx timeout
[ 79.441846] Bluetooth: hci7: command tx timeout
[ 79.442436] Bluetooth: hci5: command tx timeout
[ 79.443615] Bluetooth: hci4: command tx timeout
[ 79.505892] Bluetooth: hci6: command tx timeout
[ 81.106644] Bluetooth: hci0: command tx timeout
[ 81.234802] Bluetooth: hci1: command tx timeout
[ 81.361850] Bluetooth: hci3: command tx timeout
[ 81.362282] Bluetooth: hci2: command tx timeout
[ 81.489982] Bluetooth: hci4: command tx timeout
[ 81.490403] Bluetooth: hci5: command tx timeout
[ 81.490953] Bluetooth: hci7: command tx timeout
[ 81.554034] Bluetooth: hci6: command tx timeout
[ 83.153840] Bluetooth: hci0: command tx timeout
[ 83.281882] Bluetooth: hci1: command tx timeout
[ 83.410785] Bluetooth: hci3: command tx timeout
[ 83.411202] Bluetooth: hci2: command tx timeout
[ 83.538963] Bluetooth: hci4: command tx timeout
[ 83.539394] Bluetooth: hci5: command tx timeout
[ 83.540036] Bluetooth: hci7: command tx timeout
[ 83.601848] Bluetooth: hci6: command tx timeout
[ 85.203067] Bluetooth: hci0: command tx timeout
[ 85.329953] Bluetooth: hci1: command tx timeout
[ 85.458787] Bluetooth: hci2: command tx timeout
[ 85.459286] Bluetooth: hci3: command tx timeout
[ 85.585930] Bluetooth: hci5: command tx timeout
[ 85.586369] Bluetooth: hci7: command tx timeout
[ 85.587855] Bluetooth: hci4: command tx timeout
[ 85.649801] Bluetooth: hci6: command tx timeout
[ 112.773951] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.774601] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.908091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.908671] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.039844] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.040447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.187457] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.188084] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.232767] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.233346] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.333169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.334034] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.424024] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.424629] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.501779] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.502359] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.531135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.531772] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.582169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.583184] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.636101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.636686] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.670103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.670704] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.712022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.712620] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.760049] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.760637] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.769126] audit: type=1400 audit(1756463828.494:8): avc: denied { open } for pid=3876 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 113.772400] audit: type=1400 audit(1756463828.494:9): avc: denied { kernel } for pid=3876 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 113.787466] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.788122] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.826262] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.826910] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:37:08 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000180)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)
10:37:08 executing program 2:
keyctl$join(0x1, 0x0)
keyctl$join(0x12, 0x0)
10:37:08 executing program 4:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = dup(r0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltgid}]}})
10:37:08 executing program 3:
r0 = io_uring_setup(0x5053, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0xb, 0x0, 0x0)
10:37:08 executing program 5:
lchown(&(0x7f0000000140)='./cgroup/cgroup.procs\x00', 0x0, 0xffffffffffffffff)
10:37:08 executing program 6:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x43, 0x0, 0x0)
10:37:08 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000140)=ANY=[@ANYRES16=r0, @ANYRES16], 0x6)
10:37:08 executing program 0:
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@random="8fccf763792d", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x8, 0x2c, 0x0, @empty, @mcast2, {[], @echo_reply}}}}}, 0x0)
10:37:08 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000180)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)
10:37:08 executing program 3:
r0 = io_uring_setup(0x5053, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0xb, 0x0, 0x0)
10:37:08 executing program 0:
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@random="8fccf763792d", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x8, 0x2c, 0x0, @empty, @mcast2, {[], @echo_reply}}}}}, 0x0)
10:37:08 executing program 2:
keyctl$join(0x1, 0x0)
keyctl$join(0x12, 0x0)
10:37:08 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000140)=ANY=[@ANYRES16=r0, @ANYRES16], 0x6)
10:37:08 executing program 5:
lchown(&(0x7f0000000140)='./cgroup/cgroup.procs\x00', 0x0, 0xffffffffffffffff)
10:37:08 executing program 6:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x43, 0x0, 0x0)
10:37:08 executing program 0:
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@random="8fccf763792d", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x8, 0x2c, 0x0, @empty, @mcast2, {[], @echo_reply}}}}}, 0x0)
10:37:08 executing program 3:
r0 = io_uring_setup(0x5053, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0xb, 0x0, 0x0)
10:37:08 executing program 2:
keyctl$join(0x1, 0x0)
keyctl$join(0x12, 0x0)
10:37:09 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000180)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)
10:37:09 executing program 5:
lchown(&(0x7f0000000140)='./cgroup/cgroup.procs\x00', 0x0, 0xffffffffffffffff)
10:37:09 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000140)=ANY=[@ANYRES16=r0, @ANYRES16], 0x6)
10:37:09 executing program 6:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x43, 0x0, 0x0)
10:37:09 executing program 4:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = dup(r0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltgid}]}})
10:37:09 executing program 2:
keyctl$join(0x1, 0x0)
keyctl$join(0x12, 0x0)
10:37:09 executing program 3:
keyctl$join(0x1, 0x0)
keyctl$join(0x12, 0x0)
10:37:09 executing program 0:
writev(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000080)="8e8612844497e1175c0a6d2aec665070057debed77f3e3f25e3526ca8a3c606a3a8ba2b2456e28a0a6ab815c3e77d50000000067eb273e5777b52e6404541e30e5b679a2e7baf08cfe2f3caffc8325c5740937981be474f7ba9f301aa1c40aff6933c3f5dca9255fb15cce2d66635b175d", 0x71}], 0x1)
rt_sigqueueinfo(0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0xfd})
[ 114.386990] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[ 114.387898] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 114.388592] CPU: 1 UID: 0 PID: 3943 Comm: syz-executor.4 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 114.390628] Tainted: [W]=WARN
[ 114.391328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 114.392966] RIP: 0010:perf_tp_event+0x175/0xe70
[ 114.394494] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 114.398596] RSP: 0018:ffff888044f57800 EFLAGS: 00010212
[ 114.399015] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90009222000
[ 114.399579] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 114.400135] RBP: ffff888044f57a70 R08: ffff88806cf31340 R09: ffffe8ffffd15eb8
[ 114.400691] R10: 0000000000000000 R11: 0000000000000024 R12: dffffc0000000000
[ 114.401252] R13: 0000000000000024 R14: ffff88806cf31340 R15: dffffc0000000000
[ 114.401808] FS: 00007f7d1583c700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 114.402428] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 114.402884] CR2: 0000001b2cd24000 CR3: 0000000013aff000 CR4: 0000000000350ef0
[ 114.403445] Call Trace:
[ 114.403652]
[ 114.403838] ? __pfx_perf_tp_event+0x10/0x10
[ 114.404199] ? lock_is_held_type+0x9e/0x120
[ 114.404552] ? lock_is_held_type+0x9e/0x120
[ 114.404901] ? ctx_sched_in+0x134/0x9b0
[ 114.405226] ? __pfx_ctx_sched_in+0x10/0x10
[ 114.405565] ? arch_stack_walk+0x9c/0xf0
[ 114.405894] ? find_held_lock+0x2b/0x80
[ 114.406219] ? find_held_lock+0x2b/0x80
[ 114.406541] ? __perf_install_in_context+0x503/0xb90
[ 114.406944] ? lock_release+0xc8/0x290
[ 114.407257] ? do_raw_spin_unlock+0x53/0x220
[ 114.407622] ? perf_trace_run_bpf_submit+0xef/0x180
[ 114.408028] perf_trace_run_bpf_submit+0xef/0x180
[ 114.408417] perf_trace_lock_acquire+0x3c2/0x700
[ 114.408804] ? __pfx_perf_trace_lock_acquire+0x10/0x10
[ 114.409219] ? futex_ref_get+0x48/0x300
[ 114.409536] ? find_held_lock+0x2b/0x80
[ 114.409860] lock_acquire+0xc5/0x2f0
[ 114.410163] ? futex_wake+0x228/0x540
[ 114.410477] _raw_spin_lock+0x2b/0x40
[ 114.410785] ? futex_wake+0x228/0x540
[ 114.411098] futex_wake+0x228/0x540
[ 114.411406] ? __pfx_futex_wake+0x10/0x10
[ 114.411742] ? __do_sys_perf_event_open+0x44d/0x2c20
[ 114.412146] ? lock_release+0xc8/0x290
[ 114.412463] do_futex+0x26d/0x370
[ 114.412747] ? __pfx_do_futex+0x10/0x10
[ 114.413065] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 114.413486] ? find_held_lock+0x2b/0x80
[ 114.413809] __x64_sys_futex+0x1c9/0x4d0
[ 114.414143] ? __pfx___x64_sys_futex+0x10/0x10
[ 114.414507] ? xfd_validate_state+0x55/0x180
[ 114.414868] do_syscall_64+0xbf/0x360
[ 114.415171] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 114.415581] RIP: 0033:0x7f7d182c6b19
[ 114.415874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 114.417278] RSP: 002b:00007f7d1583c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 114.417866] RAX: ffffffffffffffda RBX: 00007f7d183d9f68 RCX: 00007f7d182c6b19
[ 114.418418] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7d183d9f6c
[ 114.418970] RBP: 00007f7d183d9f60 R08: 000000000000000e R09: 0000000000000000
[ 114.419526] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f7d183d9f6c
[ 114.420079] R13: 00007ffe3ac765ff R14: 00007f7d1583c300 R15: 0000000000022000
[ 114.420643]
[ 114.420828] Modules linked in:
[ 114.421092] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 114.421990] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 114.422590] CPU: 0 UID: 0 PID: 3940 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 114.423553] Tainted: [D]=DIE, [W]=WARN
[ 114.423860] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 114.424511] RIP: 0010:perf_tp_event+0x175/0xe70
[ 114.424892] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 114.426321] RSP: 0018:ffff888044e5f7c0 EFLAGS: 00010212
[ 114.426745] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 114.427308] RDX: ffff888010548000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 114.427893] RBP: ffff888044e5fa30 R08: ffff88806ce31340 R09: ffffe8ffffc15eb8
[ 114.428457] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000
[ 114.429016] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 114.429583] FS: 000055555ccbd400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 114.430215] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 114.430673] CR2: 000055555ccbec18 CR3: 0000000042158000 CR4: 0000000000350ef0
[ 114.431236] Call Trace:
[ 114.431462]
[ 114.431652] ? __pfx_perf_tp_event+0x10/0x10
[ 114.432011] ? cpu_util.constprop.0+0x17d/0x340
[ 114.432391] ? __asan_memset+0x24/0x50
[ 114.432707] ? sched_balance_find_dst_group+0xa9a/0x1c00
[ 114.433141] ? lock_release+0x1c7/0x290
[ 114.433467] ? __pfx_sched_balance_find_dst_group+0x10/0x10
[ 114.433923] ? perf_trace_run_bpf_submit+0xef/0x180
[ 114.434326] perf_trace_run_bpf_submit+0xef/0x180
[ 114.434716] perf_trace_lock_acquire+0x3c2/0x700
[ 114.435102] ? __pfx_perf_trace_lock_acquire+0x10/0x10
[ 114.435545] lock_acquire+0xc5/0x2f0
[ 114.435847] ? futex_private_hash_put+0x4c/0x2d0
[ 114.436228] ? lock_release+0x1c7/0x290
[ 114.436553] futex_private_hash_put+0x5d/0x2d0
[ 114.436919] ? futex_private_hash_put+0x4c/0x2d0
[ 114.437299] futex_hash_put+0x3f/0x50
[ 114.437607] futex_wake+0x1bb/0x540
[ 114.437909] ? kernel_clone+0x204/0x7f0
[ 114.438230] ? __pfx_futex_wake+0x10/0x10
[ 114.438565] ? __pfx_kernel_clone+0x10/0x10
[ 114.438912] ? __pfx_perf_trace_lock_acquire+0x10/0x10
[ 114.439331] ? __pfx___handle_mm_fault+0x10/0x10
[ 114.439736] do_futex+0x26d/0x370
[ 114.440024] ? __pfx_do_futex+0x10/0x10
[ 114.440345] ? __pfx___do_sys_clone+0x10/0x10
[ 114.440705] ? count_memcg_events+0x32b/0x420
[ 114.441073] __x64_sys_futex+0x1c9/0x4d0
[ 114.441405] ? __pfx___x64_sys_futex+0x10/0x10
[ 114.441778] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 114.442200] do_syscall_64+0xbf/0x360
[ 114.442509] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 114.442919] RIP: 0033:0x7f3655134b19
[ 114.443216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 114.444660] RSP: 002b:00007ffd95002e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 114.445263] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3655134b19
[ 114.445827] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3655247f68
[ 114.446392] RBP: 00007f3655247f60 R08: 00007f36526aa700 R09: 0000000000000000
[ 114.446952] R10: 00007f36526aa700 R11: 0000000000000246 R12: 00007f365524c048
[ 114.447532] R13: 00007ffd95002f70 R14: 00007f3655247f60 R15: 000000000001be45
[ 114.448100]
[ 114.448289] Modules linked in:
[ 114.448552] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#3] SMP KASAN NOPTI
[ 114.449430] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 114.450107] CPU: 1 UID: 0 PID: 3943 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 114.451037] Tainted: [D]=DIE, [W]=WARN
[ 114.451342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 114.451986] RIP: 0010:perf_tp_event+0x175/0xe70
[ 114.452359] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 114.453773] RSP: 0018:ffff88806cf08a40 EFLAGS: 00010012
[ 114.454191] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 114.454746] RDX: ffff888013f59b80 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 114.455307] RBP: ffff88806cf08cb0 R08: ffff88806cf31490 R09: ffffe8ffffd15eb8
[ 114.455872] R10: 0000000000000000 R11: 0000000000000024 R12: dffffc0000000000
[ 114.456425] R13: 0000000000000024 R14: ffff88806cf31490 R15: dffffc0000000000
[ 114.456979] FS: 00007f7d1583c700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 114.457605] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 114.458063] CR2: 0000001b2cd24000 CR3: 0000000013aff000 CR4: 0000000000350ef0
[ 114.458623] Call Trace:
[ 114.458828]
[ 114.459008] ? __pfx_perf_tp_event+0x10/0x10
[ 114.459365] ? __kasan_slab_free+0x3f/0x50
[ 114.459709] ? ieee80211_tx_status_skb+0x132/0x2c0
[ 114.460097] ? ieee80211_handle_queued_frames+0xf7/0x130
[ 114.460522] ? tasklet_action_common+0x235/0x3b0
[ 114.460895] ? handle_softirqs+0x1b1/0x770
[ 114.461241] ? do_softirq+0x48/0x80
[ 114.461530] ? __local_bh_enable_ip+0xf1/0x110
[ 114.461892] ? __dev_queue_xmit+0xe2e/0x3cc0
[ 114.462243] ? ip6_finish_output2+0xc9f/0x1aa0
[ 114.462612] ? __ip6_finish_output+0x5d5/0xd10
[ 114.462980] ? ip6_output+0x1c2/0x3e0
[ 114.463287] ? mld_sendpack+0x95f/0x11b0
[ 114.463617] ? mld_ifc_work+0x726/0xb60
[ 114.463932] ? process_one_work+0x8e1/0x19c0
[ 114.464298] ? worker_thread+0x67e/0xe90
[ 114.464633] ? look_up_lock_class+0x56/0x150
[ 114.465000] ? ret_from_fork+0x34b/0x430
[ 114.465339] ? register_lock_class+0x41/0x560
[ 114.465715] ? perf_trace_lock_acquire+0xc9/0x700
[ 114.466114] ? __lock_acquire+0xc65/0x1b70
[ 114.466461] ? perf_trace_lock_acquire+0xc9/0x700
[ 114.466861] ? perf_trace_run_bpf_submit+0xef/0x180
[ 114.467272] perf_trace_run_bpf_submit+0xef/0x180
[ 114.467682] perf_trace_lock_acquire+0x3c2/0x700
[ 114.468084] ? __pfx_perf_trace_lock_acquire+0x10/0x10
[ 114.468516] ? lock_release+0xc8/0x290
[ 114.468836] ? __pfx_tcp_delack_timer+0x10/0x10
[ 114.469220] ? __pfx_tcp_delack_timer+0x10/0x10
[ 114.469605] lock_acquire+0xc5/0x2f0
[ 114.469918] ? sched_ttwu_pending+0xa1/0x4a0
[ 114.470295] _raw_spin_lock_nested+0x29/0x40
[ 114.470659] ? sched_ttwu_pending+0xa1/0x4a0
[ 114.471031] sched_ttwu_pending+0xa1/0x4a0
[ 114.471386] ? run_timer_softirq+0x11f/0x210
[ 114.471761] ? lock_release+0xc8/0x290
[ 114.472084] ? __pfx_sched_ttwu_pending+0x10/0x10
[ 114.472492] __flush_smp_call_function_queue+0x434/0x740
[ 114.472941] __sysvec_call_function_single+0x6d/0x370
[ 114.473370] sysvec_call_function_single+0xa1/0xc0
[ 114.473773]
[ 114.473957]
[ 114.474148] asm_sysvec_call_function_single+0x1a/0x20
[ 114.474581] RIP: 0010:oops_exit+0x0/0x50
[ 114.474922] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27
[ 114.476380] RSP: 0018:ffff888044f57690 EFLAGS: 00000202
[ 114.476815] RAX: 000000000002a7a1 RBX: 0000000000000216 RCX: ffffc90009222000
[ 114.477391] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007
[ 114.477971] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90
[ 114.478552] R10: 0000000000000000 R11: 000000000000002c R12: ffff888044f57758
[ 114.479126] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[ 114.479713] ? oops_end+0x4a/0xe0
[ 114.480007] oops_end+0x65/0xe0
[ 114.480286] exc_general_protection+0x1a2/0x330
[ 114.480675] asm_exc_general_protection+0x26/0x30
[ 114.481070] RIP: 0010:perf_tp_event+0x175/0xe70
[ 114.481457] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 114.482930] RSP: 0018:ffff888044f57800 EFLAGS: 00010212
[ 114.483363] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90009222000
[ 114.483950] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 114.484531] RBP: ffff888044f57a70 R08: ffff88806cf31340 R09: ffffe8ffffd15eb8
[ 114.485105] R10: 0000000000000000 R11: 0000000000000024 R12: dffffc0000000000
[ 114.485689] R13: 0000000000000024 R14: ffff88806cf31340 R15: dffffc0000000000
[ 114.486279] ? perf_tp_event+0x167/0xe70
[ 114.486628] ? __pfx_perf_tp_event+0x10/0x10
[ 114.486996] ? lock_is_held_type+0x9e/0x120
[ 114.487360] ? lock_is_held_type+0x9e/0x120
[ 114.487724] ? ctx_sched_in+0x134/0x9b0
[ 114.488050] ? __pfx_ctx_sched_in+0x10/0x10
[ 114.488384] ? arch_stack_walk+0x9c/0xf0
[ 114.488703] ? find_held_lock+0x2b/0x80
[ 114.489019] ? find_held_lock+0x2b/0x80
[ 114.489336] ? __perf_install_in_context+0x503/0xb90
[ 114.489731] ? lock_release+0xc8/0x290
[ 114.490040] ? do_raw_spin_unlock+0x53/0x220
[ 114.490403] ? perf_trace_run_bpf_submit+0xef/0x180
[ 114.490814] perf_trace_run_bpf_submit+0xef/0x180
[ 114.491208] perf_trace_lock_acquire+0x3c2/0x700
[ 114.491599] ? __pfx_perf_trace_lock_acquire+0x10/0x10
[ 114.492022] ? futex_ref_get+0x48/0x300
[ 114.492342] ? find_held_lock+0x2b/0x80
[ 114.492670] lock_acquire+0xc5/0x2f0
[ 114.492972] ? futex_wake+0x228/0x540
[ 114.493296] _raw_spin_lock+0x2b/0x40
[ 114.493605] ? futex_wake+0x228/0x540
[ 114.493916] futex_wake+0x228/0x540
[ 114.494212] ? __pfx_futex_wake+0x10/0x10
[ 114.494553] ? __do_sys_perf_event_open+0x44d/0x2c20
[ 114.494961] ? lock_release+0xc8/0x290
[ 114.495277] do_futex+0x26d/0x370
[ 114.495567] ? __pfx_do_futex+0x10/0x10
[ 114.495888] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 114.496312] ? find_held_lock+0x2b/0x80
[ 114.496640] __x64_sys_futex+0x1c9/0x4d0
[ 114.496971] ? __pfx___x64_sys_futex+0x10/0x10
[ 114.497345] ? xfd_validate_state+0x55/0x180
[ 114.497707] do_syscall_64+0xbf/0x360
[ 114.498010] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 114.498417] RIP: 0033:0x7f7d182c6b19
[ 114.498712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 114.500151] RSP: 002b:00007f7d1583c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 114.500749] RAX: ffffffffffffffda RBX: 00007f7d183d9f68 RCX: 00007f7d182c6b19
[ 114.501314] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7d183d9f6c
[ 114.501880] RBP: 00007f7d183d9f60 R08: 000000000000000e R09: 0000000000000000
[ 114.502443] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f7d183d9f6c
[ 114.503003] R13: 00007ffe3ac765ff R14: 00007f7d1583c300 R15: 0000000000022000
[ 114.503585]
[ 114.503774] Modules linked in:
[ 114.504034] ---[ end trace 0000000000000000 ]---
[ 114.504035] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#4] SMP KASAN NOPTI
[ 114.504409] RIP: 0010:perf_tp_event+0x175/0xe70
[ 114.505278] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 114.505639] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 114.506232] CPU: 0 UID: 0 PID: 3940 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 114.507650] RSP: 0018:ffff888044f57800 EFLAGS: 00010212
[ 114.508581] Tainted: [D]=DIE, [W]=WARN
[ 114.508992] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90009222000
[ 114.509295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 114.509856] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 114.510499] RIP: 0010:perf_tp_event+0x175/0xe70
[ 114.511054] RBP: ffff888044f57a70 R08: ffff88806cf31340 R09: ffffe8ffffd15eb8
[ 114.511436] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 114.511991] R10: 0000000000000000 R11: 0000000000000024 R12: dffffc0000000000
[ 114.513417] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012
[ 114.513970] R13: 0000000000000024 R14: ffff88806cf31340 R15: dffffc0000000000
[ 114.514388] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 114.514943] FS: 00007f7d1583c700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 114.515519] RDX: ffff888010548000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 114.516184] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 114.516779] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc15eb8
[ 114.517263] CR2: 0000001b2cd24000 CR3: 0000000013aff000 CR4: 0000000000350ef0
[ 114.517845] R10: 0000000000000000 R11: 000000000000002c R12: dffffc0000000000
[ 114.518428] Kernel panic - not syncing: Fatal exception in interrupt
[ 115.562230] Shutting down cpus with NMI
[ 115.573714] Kernel Offset: disabled
[ 115.574007] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
10:37:09 Registers:
info registers vcpu 0
RAX=fffffbfff0f0ec09 RBX=0000000000000001 RCX=ffffffff84bdec0e RDX=fffffbfff0f0ec09
RSI=0000000000000004 RDI=ffffffff87876044 RBP=fffffbfff0f0ec08 RSP=ffff888044e5f558
R8 =0000000000000000 R9 =fffffbfff0f0ec08 R10=ffffffff87876047 R11=202c746c75616620
R12=1ffff110089cbeaf R13=0000000000000007 R14=fffffbfff0f0ec08 R15=ffff888044e5f5a8
RIP=ffffffff81aff057 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555ccbd400 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe1600000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000055555ccbec18 CR3=0000000042158000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f365521b7c000007f365521b7c8
XMM02=00007f365521b7e000007f365521b7c0 XMM03=00007f365521b7c800007f365521b7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000063 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888044f570f0
R8 =0000000000000000 R9 =ffffed10015fc046 R10=0000000000000063 R11=000000000000002c
R12=0000000000000063 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f7d1583c700 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe5a00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2cd24000 CR3=0000000013aff000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f7d183ad7c000007f7d183ad7c8
XMM02=00007f7d183ad7e000007f7d183ad7c0 XMM03=00007f7d183ad7c800007f7d183ad7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000