
Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:41052' (ECDSA) to the list of known hosts.
2025/08/29 12:07:50 fuzzer started
2025/08/29 12:07:50 dialing manager at localhost:43077
syzkaller login: [   49.857735] cgroup: Unknown subsys name 'net'
[   49.915148] cgroup: Unknown subsys name 'cpuset'
[   49.933549] cgroup: Unknown subsys name 'rlimit'
2025/08/29 12:08:00 syscalls: 2214
2025/08/29 12:08:00 code coverage: enabled
2025/08/29 12:08:00 comparison tracing: enabled
2025/08/29 12:08:00 extra coverage: enabled
2025/08/29 12:08:00 setuid sandbox: enabled
2025/08/29 12:08:00 namespace sandbox: enabled
2025/08/29 12:08:00 Android sandbox: enabled
2025/08/29 12:08:00 fault injection: enabled
2025/08/29 12:08:00 leak checking: enabled
2025/08/29 12:08:00 net packet injection: enabled
2025/08/29 12:08:00 net device setup: enabled
2025/08/29 12:08:00 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 12:08:00 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 12:08:00 USB emulation: enabled
2025/08/29 12:08:00 hci packet injection: enabled
2025/08/29 12:08:00 wifi device emulation: enabled
2025/08/29 12:08:00 802.15.4 emulation: enabled
2025/08/29 12:08:00 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 12:08:00 fetching corpus: 50, signal 23951/27440 (executing program)
2025/08/29 12:08:00 fetching corpus: 100, signal 35630/40549 (executing program)
2025/08/29 12:08:00 fetching corpus: 150, signal 42372/48641 (executing program)
2025/08/29 12:08:01 fetching corpus: 200, signal 49729/57141 (executing program)
2025/08/29 12:08:01 fetching corpus: 250, signal 56051/64533 (executing program)
2025/08/29 12:08:01 fetching corpus: 300, signal 58607/68312 (executing program)
2025/08/29 12:08:01 fetching corpus: 350, signal 61987/72856 (executing program)
2025/08/29 12:08:01 fetching corpus: 400, signal 66626/78390 (executing program)
2025/08/29 12:08:01 fetching corpus: 450, signal 69802/82538 (executing program)
2025/08/29 12:08:02 fetching corpus: 500, signal 72410/86082 (executing program)
2025/08/29 12:08:02 fetching corpus: 550, signal 75085/89708 (executing program)
2025/08/29 12:08:02 fetching corpus: 600, signal 78050/93503 (executing program)
2025/08/29 12:08:02 fetching corpus: 650, signal 79463/95910 (executing program)
2025/08/29 12:08:02 fetching corpus: 700, signal 82391/99610 (executing program)
2025/08/29 12:08:02 fetching corpus: 750, signal 84902/102818 (executing program)
2025/08/29 12:08:02 fetching corpus: 800, signal 87354/105875 (executing program)
2025/08/29 12:08:02 fetching corpus: 850, signal 89636/108788 (executing program)
2025/08/29 12:08:02 fetching corpus: 900, signal 92039/111776 (executing program)
2025/08/29 12:08:03 fetching corpus: 950, signal 93654/114106 (executing program)
2025/08/29 12:08:03 fetching corpus: 1000, signal 95198/116387 (executing program)
2025/08/29 12:08:03 fetching corpus: 1050, signal 96711/118617 (executing program)
2025/08/29 12:08:03 fetching corpus: 1100, signal 98530/120978 (executing program)
2025/08/29 12:08:03 fetching corpus: 1150, signal 100020/123155 (executing program)
2025/08/29 12:08:03 fetching corpus: 1200, signal 101640/125323 (executing program)
2025/08/29 12:08:03 fetching corpus: 1250, signal 103149/127348 (executing program)
2025/08/29 12:08:03 fetching corpus: 1300, signal 107922/131748 (executing program)
2025/08/29 12:08:03 fetching corpus: 1350, signal 110515/134449 (executing program)
2025/08/29 12:08:03 fetching corpus: 1400, signal 111616/136037 (executing program)
2025/08/29 12:08:03 fetching corpus: 1450, signal 112846/137734 (executing program)
2025/08/29 12:08:04 fetching corpus: 1500, signal 114838/139980 (executing program)
2025/08/29 12:08:04 fetching corpus: 1550, signal 116129/141596 (executing program)
2025/08/29 12:08:04 fetching corpus: 1600, signal 116970/142985 (executing program)
2025/08/29 12:08:04 fetching corpus: 1650, signal 118129/144542 (executing program)
2025/08/29 12:08:04 fetching corpus: 1700, signal 118890/145796 (executing program)
2025/08/29 12:08:04 fetching corpus: 1750, signal 119751/147135 (executing program)
2025/08/29 12:08:04 fetching corpus: 1800, signal 120699/148430 (executing program)
2025/08/29 12:08:04 fetching corpus: 1850, signal 122094/150035 (executing program)
2025/08/29 12:08:04 fetching corpus: 1900, signal 124013/151921 (executing program)
2025/08/29 12:08:04 fetching corpus: 1950, signal 124829/153205 (executing program)
2025/08/29 12:08:04 fetching corpus: 2000, signal 125693/154472 (executing program)
2025/08/29 12:08:05 fetching corpus: 2050, signal 126944/155997 (executing program)
2025/08/29 12:08:05 fetching corpus: 2100, signal 127695/157105 (executing program)
2025/08/29 12:08:05 fetching corpus: 2150, signal 128432/158206 (executing program)
2025/08/29 12:08:05 fetching corpus: 2200, signal 129527/159450 (executing program)
2025/08/29 12:08:05 fetching corpus: 2250, signal 130253/160483 (executing program)
2025/08/29 12:08:05 fetching corpus: 2300, signal 131158/161549 (executing program)
2025/08/29 12:08:05 fetching corpus: 2350, signal 132278/162736 (executing program)
2025/08/29 12:08:05 fetching corpus: 2400, signal 133035/163734 (executing program)
2025/08/29 12:08:05 fetching corpus: 2450, signal 133947/164794 (executing program)
2025/08/29 12:08:06 fetching corpus: 2500, signal 134936/165906 (executing program)
2025/08/29 12:08:06 fetching corpus: 2550, signal 135698/166872 (executing program)
2025/08/29 12:08:06 fetching corpus: 2600, signal 136417/167773 (executing program)
2025/08/29 12:08:06 fetching corpus: 2650, signal 137150/168702 (executing program)
2025/08/29 12:08:06 fetching corpus: 2700, signal 137640/169510 (executing program)
2025/08/29 12:08:06 fetching corpus: 2750, signal 138401/170376 (executing program)
2025/08/29 12:08:06 fetching corpus: 2800, signal 138990/171155 (executing program)
2025/08/29 12:08:06 fetching corpus: 2850, signal 139481/171889 (executing program)
2025/08/29 12:08:06 fetching corpus: 2900, signal 140013/172663 (executing program)
2025/08/29 12:08:06 fetching corpus: 2950, signal 140470/173389 (executing program)
2025/08/29 12:08:07 fetching corpus: 3000, signal 141103/174135 (executing program)
2025/08/29 12:08:07 fetching corpus: 3050, signal 141960/174974 (executing program)
2025/08/29 12:08:07 fetching corpus: 3100, signal 142458/175697 (executing program)
2025/08/29 12:08:07 fetching corpus: 3150, signal 142958/176391 (executing program)
2025/08/29 12:08:07 fetching corpus: 3200, signal 143367/177102 (executing program)
2025/08/29 12:08:07 fetching corpus: 3250, signal 144012/177845 (executing program)
2025/08/29 12:08:07 fetching corpus: 3300, signal 144523/178484 (executing program)
2025/08/29 12:08:07 fetching corpus: 3350, signal 144929/179118 (executing program)
2025/08/29 12:08:07 fetching corpus: 3400, signal 145484/179794 (executing program)
2025/08/29 12:08:07 fetching corpus: 3450, signal 146092/180441 (executing program)
2025/08/29 12:08:07 fetching corpus: 3500, signal 146618/181008 (executing program)
2025/08/29 12:08:07 fetching corpus: 3550, signal 147000/181585 (executing program)
2025/08/29 12:08:08 fetching corpus: 3600, signal 147605/182287 (executing program)
2025/08/29 12:08:08 fetching corpus: 3650, signal 148299/182947 (executing program)
2025/08/29 12:08:08 fetching corpus: 3700, signal 149148/183605 (executing program)
2025/08/29 12:08:08 fetching corpus: 3750, signal 149703/184206 (executing program)
2025/08/29 12:08:08 fetching corpus: 3800, signal 150556/184790 (executing program)
2025/08/29 12:08:08 fetching corpus: 3850, signal 150821/185293 (executing program)
2025/08/29 12:08:08 fetching corpus: 3900, signal 151551/185866 (executing program)
2025/08/29 12:08:08 fetching corpus: 3950, signal 152493/186453 (executing program)
2025/08/29 12:08:08 fetching corpus: 4000, signal 153003/186931 (executing program)
2025/08/29 12:08:08 fetching corpus: 4050, signal 153618/187453 (executing program)
2025/08/29 12:08:08 fetching corpus: 4100, signal 153987/187971 (executing program)
2025/08/29 12:08:08 fetching corpus: 4150, signal 154460/188454 (executing program)
2025/08/29 12:08:08 fetching corpus: 4200, signal 154970/188914 (executing program)
2025/08/29 12:08:09 fetching corpus: 4250, signal 155443/189380 (executing program)
2025/08/29 12:08:09 fetching corpus: 4300, signal 156113/189876 (executing program)
2025/08/29 12:08:09 fetching corpus: 4350, signal 156527/190282 (executing program)
2025/08/29 12:08:09 fetching corpus: 4400, signal 157006/190748 (executing program)
2025/08/29 12:08:09 fetching corpus: 4450, signal 157451/191187 (executing program)
2025/08/29 12:08:09 fetching corpus: 4500, signal 157911/191607 (executing program)
2025/08/29 12:08:09 fetching corpus: 4550, signal 158475/192011 (executing program)
2025/08/29 12:08:09 fetching corpus: 4600, signal 159467/192408 (executing program)
2025/08/29 12:08:09 fetching corpus: 4650, signal 159869/192624 (executing program)
2025/08/29 12:08:10 fetching corpus: 4700, signal 160214/192645 (executing program)
2025/08/29 12:08:10 fetching corpus: 4750, signal 160620/192649 (executing program)
2025/08/29 12:08:10 fetching corpus: 4800, signal 161226/192650 (executing program)
2025/08/29 12:08:10 fetching corpus: 4850, signal 161662/192682 (executing program)
2025/08/29 12:08:10 fetching corpus: 4900, signal 162200/192690 (executing program)
2025/08/29 12:08:10 fetching corpus: 4950, signal 162708/192696 (executing program)
2025/08/29 12:08:10 fetching corpus: 5000, signal 163109/192702 (executing program)
2025/08/29 12:08:10 fetching corpus: 5050, signal 163444/192710 (executing program)
2025/08/29 12:08:10 fetching corpus: 5100, signal 163881/192747 (executing program)
2025/08/29 12:08:10 fetching corpus: 5150, signal 164392/192749 (executing program)
2025/08/29 12:08:10 fetching corpus: 5200, signal 164663/192761 (executing program)
2025/08/29 12:08:11 fetching corpus: 5250, signal 165121/192771 (executing program)
2025/08/29 12:08:11 fetching corpus: 5300, signal 165554/192780 (executing program)
2025/08/29 12:08:11 fetching corpus: 5350, signal 165983/192810 (executing program)
2025/08/29 12:08:11 fetching corpus: 5400, signal 166471/192820 (executing program)
2025/08/29 12:08:11 fetching corpus: 5450, signal 166776/192833 (executing program)
2025/08/29 12:08:11 fetching corpus: 5500, signal 167116/192835 (executing program)
2025/08/29 12:08:11 fetching corpus: 5550, signal 167712/192940 (executing program)
2025/08/29 12:08:11 fetching corpus: 5600, signal 168129/192940 (executing program)
2025/08/29 12:08:11 fetching corpus: 5650, signal 168557/192947 (executing program)
2025/08/29 12:08:11 fetching corpus: 5700, signal 169086/192951 (executing program)
2025/08/29 12:08:11 fetching corpus: 5750, signal 169433/192960 (executing program)
2025/08/29 12:08:12 fetching corpus: 5800, signal 169906/192989 (executing program)
2025/08/29 12:08:12 fetching corpus: 5850, signal 170268/193003 (executing program)
2025/08/29 12:08:12 fetching corpus: 5900, signal 170681/193007 (executing program)
2025/08/29 12:08:12 fetching corpus: 5950, signal 171145/193049 (executing program)
2025/08/29 12:08:12 fetching corpus: 6000, signal 171565/193055 (executing program)
2025/08/29 12:08:12 fetching corpus: 6050, signal 172156/193060 (executing program)
2025/08/29 12:08:12 fetching corpus: 6100, signal 172599/193068 (executing program)
2025/08/29 12:08:12 fetching corpus: 6150, signal 172888/193074 (executing program)
2025/08/29 12:08:12 fetching corpus: 6200, signal 173362/193076 (executing program)
2025/08/29 12:08:12 fetching corpus: 6250, signal 173678/193077 (executing program)
2025/08/29 12:08:12 fetching corpus: 6300, signal 174086/193141 (executing program)
2025/08/29 12:08:13 fetching corpus: 6350, signal 174454/193141 (executing program)
2025/08/29 12:08:13 fetching corpus: 6400, signal 174773/193147 (executing program)
2025/08/29 12:08:13 fetching corpus: 6450, signal 175081/193153 (executing program)
2025/08/29 12:08:13 fetching corpus: 6500, signal 175334/193158 (executing program)
2025/08/29 12:08:13 fetching corpus: 6550, signal 175696/193159 (executing program)
2025/08/29 12:08:13 fetching corpus: 6600, signal 176012/193161 (executing program)
2025/08/29 12:08:13 fetching corpus: 6650, signal 176573/193163 (executing program)
2025/08/29 12:08:13 fetching corpus: 6700, signal 177040/193164 (executing program)
2025/08/29 12:08:13 fetching corpus: 6750, signal 177405/193168 (executing program)
2025/08/29 12:08:13 fetching corpus: 6800, signal 177711/193173 (executing program)
2025/08/29 12:08:13 fetching corpus: 6850, signal 177963/193183 (executing program)
2025/08/29 12:08:13 fetching corpus: 6900, signal 178617/193183 (executing program)
2025/08/29 12:08:14 fetching corpus: 6950, signal 178917/193184 (executing program)
2025/08/29 12:08:14 fetching corpus: 7000, signal 179275/193220 (executing program)
2025/08/29 12:08:14 fetching corpus: 7050, signal 179618/193220 (executing program)
2025/08/29 12:08:14 fetching corpus: 7100, signal 179965/193233 (executing program)
2025/08/29 12:08:14 fetching corpus: 7150, signal 180218/193255 (executing program)
2025/08/29 12:08:14 fetching corpus: 7200, signal 180506/193259 (executing program)
2025/08/29 12:08:14 fetching corpus: 7250, signal 180804/193304 (executing program)
2025/08/29 12:08:14 fetching corpus: 7300, signal 181087/193318 (executing program)
2025/08/29 12:08:14 fetching corpus: 7350, signal 181330/193375 (executing program)
2025/08/29 12:08:14 fetching corpus: 7400, signal 181635/193392 (executing program)
2025/08/29 12:08:14 fetching corpus: 7450, signal 181907/193402 (executing program)
2025/08/29 12:08:15 fetching corpus: 7500, signal 182124/193405 (executing program)
2025/08/29 12:08:15 fetching corpus: 7550, signal 182374/193414 (executing program)
2025/08/29 12:08:15 fetching corpus: 7600, signal 182654/193428 (executing program)
2025/08/29 12:08:15 fetching corpus: 7650, signal 182932/193432 (executing program)
2025/08/29 12:08:15 fetching corpus: 7700, signal 183319/193448 (executing program)
2025/08/29 12:08:15 fetching corpus: 7750, signal 183673/193478 (executing program)
2025/08/29 12:08:15 fetching corpus: 7800, signal 183951/193486 (executing program)
2025/08/29 12:08:15 fetching corpus: 7850, signal 184731/193491 (executing program)
2025/08/29 12:08:15 fetching corpus: 7900, signal 184939/193502 (executing program)
2025/08/29 12:08:15 fetching corpus: 7950, signal 185187/193530 (executing program)
2025/08/29 12:08:15 fetching corpus: 8000, signal 185491/193536 (executing program)
2025/08/29 12:08:15 fetching corpus: 8050, signal 185713/193542 (executing program)
2025/08/29 12:08:16 fetching corpus: 8100, signal 185936/193554 (executing program)
2025/08/29 12:08:16 fetching corpus: 8150, signal 186163/193559 (executing program)
2025/08/29 12:08:16 fetching corpus: 8200, signal 186446/193571 (executing program)
2025/08/29 12:08:16 fetching corpus: 8250, signal 186996/193599 (executing program)
2025/08/29 12:08:16 fetching corpus: 8300, signal 187216/193604 (executing program)
2025/08/29 12:08:16 fetching corpus: 8350, signal 187356/193608 (executing program)
2025/08/29 12:08:16 fetching corpus: 8400, signal 187555/193621 (executing program)
2025/08/29 12:08:16 fetching corpus: 8450, signal 187854/193632 (executing program)
2025/08/29 12:08:16 fetching corpus: 8500, signal 188091/193636 (executing program)
2025/08/29 12:08:16 fetching corpus: 8550, signal 188290/193637 (executing program)
2025/08/29 12:08:16 fetching corpus: 8600, signal 188533/193641 (executing program)
2025/08/29 12:08:17 fetching corpus: 8650, signal 188758/193650 (executing program)
2025/08/29 12:08:17 fetching corpus: 8700, signal 189045/193659 (executing program)
2025/08/29 12:08:17 fetching corpus: 8750, signal 189315/193667 (executing program)
2025/08/29 12:08:17 fetching corpus: 8800, signal 189604/193682 (executing program)
2025/08/29 12:08:17 fetching corpus: 8850, signal 189801/193686 (executing program)
2025/08/29 12:08:17 fetching corpus: 8900, signal 190036/193689 (executing program)
2025/08/29 12:08:17 fetching corpus: 8920, signal 190135/193690 (executing program)
2025/08/29 12:08:17 fetching corpus: 8920, signal 190135/193690 (executing program)
2025/08/29 12:08:19 starting 8 fuzzer processes
12:08:19 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/devices.allow\x00', 0x0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendfile(r1, r0, 0x0, 0x7fffffff)

12:08:19 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect(r0, &(0x7f0000000400)=@un=@abs, 0x80)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000400)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000005c0)=0x40)

12:08:19 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003bc0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="83eaa1ef8c488c89b82f3b73599cc3c9efafdc554c1c294b7d7b5bc60f123a7404ca2387d5f2beda9b87412983fd11be6856cec3ed5968f8ab20c7228e4ca116493bff09bb95201b3552a143152bbc61790816e61bfacbe32cfff0c60bfd5f63ac3ccb10158e08daaa03bb66cfdb0f6292e80565f2069a303c4c377987e7561a7008c2d4", 0x84}, {&(0x7f0000000200)="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", 0xff}, {&(0x7f0000000300)="c8a8435532e8a7aec9091782429bfa900ce9291809abb8fd6e0e602ad8ca4c2c667fdf78ebf20a5aecf3981c7ba90102a66311b717437ed0f180419cc52395395efc7dfa9107a4b02e054d3efce3687f6e2173ebcbd29e9d113d61bcf1230be88c467ff8b059575e7ee66ba932ccc22dcb5b1e78c8e39ed0a3c7d792e2e1a6e707f62f624fd07630a37008e8dbcbb40578f5a6b1638691e785f335106f5d79a9eb0ccdc3163dfd53f6dc07bc83", 0xad}, {&(0x7f00000003c0)="fecc8d46c0cda3b92481d88a2a714fdf054335299a9d5ddb96467147e07cc998e696c98756e2fba983c45f8eb6c972ba41755923e0b269b9ae7d64e057b34f1c6308aa46524c341ef9df396956a5b5c7a2ec4b841710f98cd2c2321f6f5e802574ea3790f64932e3add2c5aca35dd04c324fff55d56b25c013552a5bf5bbf64c1c2d8bddd74f9f4725fd092725565305be0d32edc679d566d657724736f65fe270d8836450ab77ad7302de3e3df5b40874590fb5405eb3b4f3bcc37c9c88c50e0a812a5a5127e5", 0xc7}], 0x4, &(0x7f00000004c0)=[@hopopts_2292={{0x68, 0x29, 0x36, {0x0, 0x9, '\x00', [@pad1, @calipso={0x7, 0x30, {0x0, 0xa, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0]}}, @generic, @hao={0xc9, 0x10, @empty}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x1}}], 0x80}}, {{0x0, 0x0, &(0x7f0000001880)=[{&(0x7f0000000580)="57612d257716212e5b60574962db90bf2ae8fb567feabb86d19bad4b6cb9b7b1a2cb2cb537f6e44b2d60261524a7cfd45ba32e6a5b9dcd631934b12544dcb2e4a6adbde5567be8523cfef2871ae312c9ada69608b52b07b7f3fc05652e63d24cb96be9cfde3d4cd8d783922c97c337e75045630d2c26f7ab9c95d44265b616cd4412847efc7dd4ab9c5ed81c3ba4288bb42db64df85a41b7", 0x98}, {&(0x7f0000000640)="d93786c0f29e721960f85b22c354e69b46e9b42b8eeafa154c5c81d17527d75378cd3e00b015c0b5646919eb179c75c1439892709987c46ca05d5afc95b9fc0b55e3026da822896d6b6c5a3e2663c1126f960a3c675e01e86ffc5d3deab2872fbf90415ef4530ccec63516a1c374672aa93deb7a8cc7b9b1fe9ba7b99236433b23fe68538666db4c82e86770afbbe20b0ac515a4c37f65e16ab38becc053eae43961eca69b62a164fc0d14c24e3ba45e227423e1f619cf485a4332112fc484df6f51b2c9a89235fd78045fafcc1682b3ced7e8a547a5dc4b9c3898ebca3db8db467bb32740919698af414a1fd7e405eb79f82c590318c82a9477885096debccd379c611912c24524ff7fdc08137d36287eaa84b810f2f3478485b86f77edafdc573c36d05919c7d265eca4a7cf7f4efca9cbd3fd0ee202872e3acff0428ae3acb8a37a03481dec1518180bcdff73f83a010aeb77c7b7d7c9cc1e214dfaeae05e9a34a414be91b8520f557eecf8c382546b19dd44679274f717c0cb727abf956983badaf5446761725acd2a1477a1a8bdbe228517f128feaa09afd26975d0086c2dbae6f4adfb950ae02ab7d2cabd46b9f7cbfa213aa14638aafa", 0x1ba}], 0x2}}], 0x2, 0x4008000)

12:08:19 executing program 2:
keyctl$chown(0x4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
getresuid(0x0, 0x0, &(0x7f0000000180))
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x100)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f000000d700)='ns/pid\x00')

[   78.883848] audit: type=1400 audit(1756469299.416:7): avc:  denied  { execmem } for  pid=272 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
12:08:19 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000700)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0), 0x4)
sendmmsg$inet6(r0, &(0x7f0000000580)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

12:08:19 executing program 4:
get_mempolicy(0x0, &(0x7f0000000680), 0x3ff, &(0x7f0000ff9000/0x4000)=nil, 0x2)

12:08:19 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup(0x44a, &(0x7f0000000280)={0x0, 0x0, 0x2})
io_uring_enter(r0, 0x0, 0xd098, 0x1, 0x0, 0x0)

12:08:19 executing program 6:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x1, 0xf84e7f3, 0x1000000000})
sendfile(r1, r2, 0x0, 0xa0103)

[   80.025690] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   80.028296] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   80.031340] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   80.036940] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   80.039768] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   80.166782] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   80.172643] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   80.177518] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   80.180694] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   80.184788] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   80.188686] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   80.191482] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   80.192662] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   80.202101] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   80.204278] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   80.219088] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   80.222106] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   80.241584] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   80.243974] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   80.248652] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   80.251556] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   80.252012] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   80.254857] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   80.256566] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   80.260000] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   80.262959] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   80.266689] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   80.266748] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   80.270067] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   80.276659] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   80.279137] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   80.281953] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   80.282469] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   80.287104] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   80.292819] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   80.292836] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   80.302464] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   80.306935] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   80.343146] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   80.345578] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   82.121031] Bluetooth: hci0: command tx timeout
[   82.248718] Bluetooth: hci2: command tx timeout
[   82.248739] Bluetooth: hci1: command tx timeout
[   82.378249] Bluetooth: hci3: command tx timeout
[   82.378418] Bluetooth: hci4: command tx timeout
[   82.378999] Bluetooth: hci6: command tx timeout
[   82.379804] Bluetooth: hci5: command tx timeout
[   82.380156] Bluetooth: hci7: command tx timeout
[   84.169224] Bluetooth: hci0: command tx timeout
[   84.298312] Bluetooth: hci2: command tx timeout
[   84.298725] Bluetooth: hci1: command tx timeout
[   84.424272] Bluetooth: hci4: command tx timeout
[   84.424703] Bluetooth: hci5: command tx timeout
[   84.425088] Bluetooth: hci6: command tx timeout
[   84.426299] Bluetooth: hci7: command tx timeout
[   84.426690] Bluetooth: hci3: command tx timeout
[   86.217163] Bluetooth: hci0: command tx timeout
[   86.344318] Bluetooth: hci1: command tx timeout
[   86.345119] Bluetooth: hci2: command tx timeout
[   86.473393] Bluetooth: hci6: command tx timeout
[   86.474268] Bluetooth: hci3: command tx timeout
[   86.474999] Bluetooth: hci7: command tx timeout
[   86.476055] Bluetooth: hci5: command tx timeout
[   86.476096] Bluetooth: hci4: command tx timeout
[   88.266317] Bluetooth: hci0: command tx timeout
[   88.392380] Bluetooth: hci1: command tx timeout
[   88.392832] Bluetooth: hci2: command tx timeout
[   88.520258] Bluetooth: hci4: command tx timeout
[   88.520692] Bluetooth: hci7: command tx timeout
[   88.521069] Bluetooth: hci6: command tx timeout
[   88.521481] Bluetooth: hci5: command tx timeout
[   88.521871] Bluetooth: hci3: command tx timeout
[  118.535925] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.536652] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.712549] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.713188] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.071259] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.071861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.215316] audit: type=1400 audit(1756469339.747:8): avc:  denied  { open } for  pid=3774 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  119.222288] audit: type=1400 audit(1756469339.748:9): avc:  denied  { kernel } for  pid=3774 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  119.299421] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.300105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.026307] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.027492] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:09:00 executing program 5:
mlock(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
munlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
madvise(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x14)
madvise(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x8)

12:09:00 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r0, 0x0)

[  120.195801] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.196519] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.218874] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.219616] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:09:00 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_elf64(r0, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
r1 = syz_open_procfs(0x0, &(0x7f0000002d00)='fd/4\x00')
read$rfkill(r1, &(0x7f0000002d40), 0x8)

[  120.386939] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.387574] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.449253] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
12:09:01 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x800454cf, &(0x7f0000000040)={'vcan0\x00'})

[  120.704336] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.704945] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.770533] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.771150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.807754] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.808551] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.872673] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.873857] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.269908] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.270562] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.293346] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.293931] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.321757] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.322366] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.337440] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.338011] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:09:02 executing program 2:
keyctl$chown(0x4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
getresuid(0x0, 0x0, &(0x7f0000000180))
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x100)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f000000d700)='ns/pid\x00')

12:09:02 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_elf64(r0, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
r1 = syz_open_procfs(0x0, &(0x7f0000002d00)='fd/4\x00')
read$rfkill(r1, &(0x7f0000002d40), 0x8)

12:09:02 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_elf64(r0, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
r1 = syz_open_procfs(0x0, &(0x7f0000002d00)='fd/4\x00')
read$rfkill(r1, &(0x7f0000002d40), 0x8)

12:09:02 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$binfmt_elf64(r0, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
r1 = syz_open_procfs(0x0, &(0x7f0000002d00)='fd/4\x00')
read$rfkill(r1, &(0x7f0000002d40), 0x8)

12:09:02 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect(r0, &(0x7f0000000400)=@un=@abs, 0x80)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000400)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000005c0)=0x40)

12:09:02 executing program 4:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000300)={0x1c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)

12:09:02 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
writev(r0, &(0x7f0000000880)=[{&(0x7f0000000800)="100000001e2d0bf5a232d892e8b6bd4a", 0x10}], 0x1)

12:09:02 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect(r0, &(0x7f0000000400)=@un=@abs, 0x80)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000400)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000005c0)=0x40)

[  121.538308] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[  121.539258] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  121.539865] CPU: 0 UID: 0 PID: 3916 Comm: syz-executor.2 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  121.541631] Tainted: [W]=WARN
[  121.542490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  121.544287] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.545665] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.549303] RSP: 0018:ffff88801dadf600 EFLAGS: 00010212
[  121.549733] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90003819000
[  121.550304] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  121.550873] RBP: ffff88801dadf870 R08: ffff88806ce31340 R09: ffffe8ffffc15e30
[  121.551441] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  121.552018] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[  121.552588] FS:  00007f2cda412700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  121.553232] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.553696] CR2: 0000000020000340 CR3: 000000000c163000 CR4: 0000000000350ef0
[  121.554268] Call Trace:
[  121.554480]  <TASK>
[  121.554670]  ? __pfx_perf_tp_event+0x10/0x10
[  121.555057]  ? perf_trace_run_bpf_submit+0xef/0x180
[  121.555465]  perf_trace_run_bpf_submit+0xef/0x180
[  121.555861]  perf_trace_lock+0x337/0x5d0
[  121.556211]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.556590]  ? lock_acquire+0x15e/0x2f0
[  121.556916]  ? futex_ref_get+0x48/0x300
[  121.557241]  ? futex_ref_get+0x114/0x300
[  121.557567]  ? futex_hash+0x15c/0x390
[  121.557875]  lock_release+0x1ab/0x290
[  121.558188]  ? futex_hash+0x15c/0x390
[  121.558498]  futex_ref_get+0x119/0x300
[  121.558818]  ? futex_hash+0x15c/0x390
[  121.559125]  futex_hash+0x70/0x390
[  121.559422]  futex_wait_setup+0xae/0x550
[  121.559764]  __futex_wait+0x151/0x300
[  121.560088]  ? __pfx___futex_wait+0x10/0x10
[  121.560445]  ? __pfx_futex_wake_mark+0x10/0x10
[  121.560830]  futex_wait+0xde/0x380
[  121.561128]  ? __pfx_futex_wait+0x10/0x10
[  121.561471]  ? perf_trace_lock+0xb5/0x5d0
[  121.561809]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.562231]  do_futex+0x2ee/0x370
[  121.562518]  ? __pfx_do_futex+0x10/0x10
[  121.562844]  ? do_raw_spin_lock+0x123/0x260
[  121.563200]  __x64_sys_futex+0x1c9/0x4d0
[  121.563533]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  121.563952]  ? __pfx___x64_sys_futex+0x10/0x10
[  121.564334]  ? kcov_ioctl+0x386/0x6c0
[  121.564650]  ? fput+0x6a/0x100
[  121.564925]  do_syscall_64+0xbf/0x360
[  121.565236]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.565655] RIP: 0033:0x7f2cdce9cb19
[  121.565956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.567403] RSP: 002b:00007f2cda412218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.568016] RAX: ffffffffffffffda RBX: 00007f2cdcfaff68 RCX: 00007f2cdce9cb19
[  121.568583] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2cdcfaff68
[  121.569151] RBP: 00007f2cdcfaff60 R08: 00007f2cda412700 R09: 0000000000000000
[  121.569716] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2cdcfaff6c
[  121.570279] R13: 00007fffe8b9a48f R14: 00007f2cda412300 R15: 0000000000022000
[  121.570851]  </TASK>
[  121.571043] Modules linked in:
[  121.571331] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[  121.572203] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  121.572792] CPU: 0 UID: 0 PID: 3916 Comm: syz-executor.2 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  121.573726] Tainted: [D]=DIE, [W]=WARN
[  121.574029] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  121.574678] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.575054] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.576488] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012
[  121.576901] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[  121.577456] RDX: ffff88800ca39b80 RSI: ffffffff818995b7 RDI: 0000000000000191
[  121.578017] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc15e30
[  121.578574] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000
[  121.579137] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000
[  121.579699] FS:  00007f2cda412700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  121.580336] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.580797] CR2: 0000000020000340 CR3: 000000000c163000 CR4: 0000000000350ef0
[  121.581360] Call Trace:
[  121.581567]  <IRQ>
[  121.581752]  ? __pfx_perf_tp_event+0x10/0x10
[  121.582114]  ? perf_trace_lock+0xb5/0x5d0
[  121.582449]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.582821]  ? perf_trace_lock+0xb5/0x5d0
[  121.583155]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.583525]  ? lock_acquire+0x15e/0x2f0
[  121.583851]  ? perf_trace_run_bpf_submit+0xef/0x180
[  121.584259]  perf_trace_run_bpf_submit+0xef/0x180
[  121.584650]  perf_trace_lock+0x337/0x5d0
[  121.584981]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.585357]  ? find_held_lock+0x2b/0x80
[  121.585685]  ? hrtimer_interrupt+0x114/0x830
[  121.586047]  lock_release+0x1ab/0x290
[  121.586363]  ktime_get_update_offsets_now+0xab/0x3c0
[  121.586778]  ? hrtimer_interrupt+0x114/0x830
[  121.587134]  ? __pfx_lapic_next_deadline+0x10/0x10
[  121.587537]  hrtimer_interrupt+0x114/0x830
[  121.587879]  ? __pfx_flush_tlb_func+0x10/0x10
[  121.588254]  ? trace_csd_function_exit+0x134/0x190
[  121.588659]  ? __flush_smp_call_function_queue+0x28c/0x740
[  121.589114]  __sysvec_apic_timer_interrupt+0xbb/0x330
[  121.589533]  sysvec_apic_timer_interrupt+0x6b/0x80
[  121.589934]  </IRQ>
[  121.590122]  <TASK>
[  121.590308]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  121.590730] RIP: 0010:oops_exit+0x0/0x50
[  121.591063] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27
[  121.592514] RSP: 0018:ffff88801dadf490 EFLAGS: 00000202
[  121.592938] RAX: 0000000000025d7e RBX: 0000000000000212 RCX: ffffc90003819000
[  121.593509] RDX: 0000000000040000 RSI: ffffffff812a3dca RDI: 0000000000000007
[  121.594075] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90
[  121.594644] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801dadf558
[  121.595213] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[  121.595792]  ? oops_end+0x4a/0xe0
[  121.596094]  oops_end+0x65/0xe0
[  121.596374]  exc_general_protection+0x1a2/0x330
[  121.596761]  asm_exc_general_protection+0x26/0x30
[  121.597153] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.597534] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.598975] RSP: 0018:ffff88801dadf600 EFLAGS: 00010212
[  121.599399] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90003819000
[  121.599969] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  121.600545] RBP: ffff88801dadf870 R08: ffff88806ce31340 R09: ffffe8ffffc15e30
[  121.601114] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  121.601684] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[  121.602259]  ? perf_tp_event+0x167/0xe70
[  121.602599]  ? __pfx_perf_tp_event+0x10/0x10
[  121.602980]  ? perf_trace_run_bpf_submit+0xef/0x180
[  121.603388]  perf_trace_run_bpf_submit+0xef/0x180
[  121.603787]  perf_trace_lock+0x337/0x5d0
[  121.604131]  ? __pfx_perf_trace_lock+0x10/0x10
[  121.604506]  ? lock_acquire+0x15e/0x2f0
[  121.604832]  ? futex_ref_get+0x48/0x300
[  121.605156]  ? futex_ref_get+0x114/0x300
[  121.605484]  ? futex_hash+0x15c/0x390
[  121.605797]  lock_release+0x1ab/0x290
[  121.606112]  ? futex_hash+0x15c/0x390
[  121.606423]  futex_ref_get+0x119/0x300
[  121.606739]  ? futex_hash+0x15c/0x390
[  121.607048]  futex_hash+0x70/0x390
[  121.607339]  futex_wait_setup+0xae/0x550
[  121.607675]  __futex_wait+0x151/0x300
[  121.607996]  ? __pfx___futex_wait+0x10/0x10
[  121.608351]  ? __pfx_futex_wake_mark+0x10/0x10
[  121.608735]  futex_wait+0xde/0x380
[  121.609032]  ? __pfx_futex_wait+0x10/0x10
[  121.609375]  ? perf_trace_lock+0xb5/0x5d0
[  121.609716]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.610138]  do_futex+0x2ee/0x370
[  121.610424]  ? __pfx_do_futex+0x10/0x10
[  121.610748]  ? do_raw_spin_lock+0x123/0x260
[  121.611102]  __x64_sys_futex+0x1c9/0x4d0
[  121.611436]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  121.611858]  ? __pfx___x64_sys_futex+0x10/0x10
[  121.612237]  ? kcov_ioctl+0x386/0x6c0
[  121.612551]  ? fput+0x6a/0x100
[  121.612825]  do_syscall_64+0xbf/0x360
[  121.613134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.613551] RIP: 0033:0x7f2cdce9cb19
[  121.613853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.615303] RSP: 002b:00007f2cda412218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.615912] RAX: ffffffffffffffda RBX: 00007f2cdcfaff68 RCX: 00007f2cdce9cb19
[  121.616475] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2cdcfaff68
[  121.617026] RBP: 00007f2cdcfaff60 R08: 00007f2cda412700 R09: 0000000000000000
[  121.617581] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2cdcfaff6c
[  121.618133] R13: 00007fffe8b9a48f R14: 00007f2cda412300 R15: 0000000000022000
[  121.618696]  </TASK>
[  121.618886] Modules linked in:
[  121.619142] ---[ end trace 0000000000000000 ]---
[  121.619512] RIP: 0010:perf_tp_event+0x175/0xe70
[  121.619884] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  121.621299] RSP: 0018:ffff88801dadf600 EFLAGS: 00010212
[  121.621712] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90003819000
[  121.622265] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  121.622823] RBP: ffff88801dadf870 R08: ffff88806ce31340 R09: ffffe8ffffc15e30
[  121.623377] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  121.623933] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[  121.624497] FS:  00007f2cda412700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  121.625118] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.625572] CR2: 0000000020000340 CR3: 000000000c163000 CR4: 0000000000350ef0
[  121.626124] Kernel panic - not syncing: Fatal exception in interrupt
[  121.626842] Kernel Offset: disabled
[  121.627130] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
12:09:02  Registers:
info registers vcpu 0
RAX=000000000000005f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88801dadef58
R8 =0000000000000000 R9 =ffffed10013f7046 R10=000000000000005f R11=30376578302f4952
R12=000000000000005f R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f2cda412700 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe0b00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000340 CR3=000000000c163000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f2cdcf837c000007f2cdcf837c8
XMM02=00007f2cdcf837e000007f2cdcf837c0 XMM03=00007f2cdcf837c800007f2cdcf837c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88806ce3de00 RCX=ffffffff816880fc RDX=ffff88800deb5280
RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff888016caf6f8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1
R12=ffffed100d9c7bc1 R13=ffff88806ce3de08 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555564133400 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe4400000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffe42fb1fb8 CR3=00000000449be000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f
XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=0000000000000000000032706f6f6c2f
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055afe29f2770000055afe2a30670
XMM06=000055afe2a216300000000400000002 XMM07=00000000000000000000000000000000
XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000