Warning: Permanently added '[localhost]:8688' (ECDSA) to the list of known hosts.
2025/08/29 12:17:44 fuzzer started
2025/08/29 12:17:45 dialing manager at localhost:43077
syzkaller login: [ 50.671329] cgroup: Unknown subsys name 'net'
[ 50.738828] cgroup: Unknown subsys name 'cpuset'
[ 50.759328] cgroup: Unknown subsys name 'rlimit'
2025/08/29 12:17:56 syscalls: 2214
2025/08/29 12:17:56 code coverage: enabled
2025/08/29 12:17:56 comparison tracing: enabled
2025/08/29 12:17:56 extra coverage: enabled
2025/08/29 12:17:56 setuid sandbox: enabled
2025/08/29 12:17:56 namespace sandbox: enabled
2025/08/29 12:17:56 Android sandbox: enabled
2025/08/29 12:17:56 fault injection: enabled
2025/08/29 12:17:56 leak checking: enabled
2025/08/29 12:17:56 net packet injection: enabled
2025/08/29 12:17:56 net device setup: enabled
2025/08/29 12:17:56 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 12:17:56 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 12:17:56 USB emulation: enabled
2025/08/29 12:17:56 hci packet injection: enabled
2025/08/29 12:17:56 wifi device emulation: enabled
2025/08/29 12:17:56 802.15.4 emulation: enabled
2025/08/29 12:17:56 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 12:17:56 fetching corpus: 50, signal 18838/22441 (executing program)
2025/08/29 12:17:56 fetching corpus: 100, signal 29190/34273 (executing program)
2025/08/29 12:17:56 fetching corpus: 150, signal 39509/45869 (executing program)
2025/08/29 12:17:56 fetching corpus: 200, signal 50894/58241 (executing program)
2025/08/29 12:17:56 fetching corpus: 250, signal 56234/64674 (executing program)
2025/08/29 12:17:56 fetching corpus: 300, signal 60286/69815 (executing program)
2025/08/29 12:17:56 fetching corpus: 350, signal 64477/75033 (executing program)
2025/08/29 12:17:56 fetching corpus: 400, signal 67202/78798 (executing program)
2025/08/29 12:17:56 fetching corpus: 450, signal 71166/83661 (executing program)
2025/08/29 12:17:56 fetching corpus: 500, signal 74104/87555 (executing program)
2025/08/29 12:17:56 fetching corpus: 550, signal 77964/92194 (executing program)
2025/08/29 12:17:57 fetching corpus: 600, signal 80566/95620 (executing program)
2025/08/29 12:17:57 fetching corpus: 650, signal 82752/98628 (executing program)
2025/08/29 12:17:57 fetching corpus: 700, signal 86286/102729 (executing program)
2025/08/29 12:17:57 fetching corpus: 750, signal 88165/105437 (executing program)
2025/08/29 12:17:57 fetching corpus: 800, signal 89595/107760 (executing program)
2025/08/29 12:17:57 fetching corpus: 850, signal 91740/110592 (executing program)
2025/08/29 12:17:57 fetching corpus: 900, signal 93082/112750 (executing program)
2025/08/29 12:17:57 fetching corpus: 950, signal 97205/116946 (executing program)
2025/08/29 12:17:57 fetching corpus: 1000, signal 99835/119939 (executing program)
2025/08/29 12:17:57 fetching corpus: 1050, signal 102571/123028 (executing program)
2025/08/29 12:17:57 fetching corpus: 1100, signal 103969/124975 (executing program)
2025/08/29 12:17:58 fetching corpus: 1150, signal 105321/126946 (executing program)
2025/08/29 12:17:58 fetching corpus: 1200, signal 106521/128794 (executing program)
2025/08/29 12:17:58 fetching corpus: 1250, signal 107400/130321 (executing program)
2025/08/29 12:17:58 fetching corpus: 1300, signal 108716/132127 (executing program)
2025/08/29 12:17:58 fetching corpus: 1350, signal 110073/133973 (executing program)
2025/08/29 12:17:58 fetching corpus: 1400, signal 111327/135746 (executing program)
2025/08/29 12:17:58 fetching corpus: 1450, signal 112625/137435 (executing program)
2025/08/29 12:17:58 fetching corpus: 1500, signal 113565/138946 (executing program)
2025/08/29 12:17:58 fetching corpus: 1550, signal 114823/140616 (executing program)
2025/08/29 12:17:59 fetching corpus: 1600, signal 116852/142782 (executing program)
2025/08/29 12:17:59 fetching corpus: 1650, signal 118322/144540 (executing program)
2025/08/29 12:17:59 fetching corpus: 1700, signal 119305/145949 (executing program)
2025/08/29 12:17:59 fetching corpus: 1750, signal 120028/147155 (executing program)
2025/08/29 12:17:59 fetching corpus: 1800, signal 120874/148440 (executing program)
2025/08/29 12:17:59 fetching corpus: 1850, signal 121390/149520 (executing program)
2025/08/29 12:17:59 fetching corpus: 1900, signal 122211/150760 (executing program)
2025/08/29 12:17:59 fetching corpus: 1950, signal 123375/152135 (executing program)
2025/08/29 12:17:59 fetching corpus: 2000, signal 124094/153262 (executing program)
2025/08/29 12:17:59 fetching corpus: 2050, signal 124932/154450 (executing program)
2025/08/29 12:17:59 fetching corpus: 2100, signal 125576/155503 (executing program)
2025/08/29 12:18:00 fetching corpus: 2150, signal 126214/156574 (executing program)
2025/08/29 12:18:00 fetching corpus: 2200, signal 127112/157753 (executing program)
2025/08/29 12:18:00 fetching corpus: 2250, signal 128036/158900 (executing program)
2025/08/29 12:18:00 fetching corpus: 2300, signal 128902/160051 (executing program)
2025/08/29 12:18:00 fetching corpus: 2350, signal 129590/161049 (executing program)
2025/08/29 12:18:00 fetching corpus: 2400, signal 130153/161981 (executing program)
2025/08/29 12:18:00 fetching corpus: 2450, signal 131090/163128 (executing program)
2025/08/29 12:18:00 fetching corpus: 2500, signal 131830/164182 (executing program)
2025/08/29 12:18:00 fetching corpus: 2550, signal 133095/165401 (executing program)
2025/08/29 12:18:00 fetching corpus: 2600, signal 133837/166375 (executing program)
2025/08/29 12:18:01 fetching corpus: 2650, signal 134466/167328 (executing program)
2025/08/29 12:18:01 fetching corpus: 2700, signal 135055/168177 (executing program)
2025/08/29 12:18:01 fetching corpus: 2750, signal 136064/169218 (executing program)
2025/08/29 12:18:01 fetching corpus: 2800, signal 136917/170183 (executing program)
2025/08/29 12:18:01 fetching corpus: 2850, signal 137640/171056 (executing program)
2025/08/29 12:18:01 fetching corpus: 2900, signal 138121/171828 (executing program)
2025/08/29 12:18:01 fetching corpus: 2950, signal 138649/172590 (executing program)
2025/08/29 12:18:01 fetching corpus: 3000, signal 140028/173661 (executing program)
2025/08/29 12:18:01 fetching corpus: 3050, signal 140668/174453 (executing program)
2025/08/29 12:18:01 fetching corpus: 3100, signal 141231/175169 (executing program)
2025/08/29 12:18:01 fetching corpus: 3150, signal 142150/176031 (executing program)
2025/08/29 12:18:01 fetching corpus: 3200, signal 142742/176759 (executing program)
2025/08/29 12:18:02 fetching corpus: 3250, signal 143673/177814 (executing program)
2025/08/29 12:18:02 fetching corpus: 3300, signal 144274/178506 (executing program)
2025/08/29 12:18:02 fetching corpus: 3350, signal 144788/179120 (executing program)
2025/08/29 12:18:02 fetching corpus: 3400, signal 145244/179764 (executing program)
2025/08/29 12:18:02 fetching corpus: 3450, signal 145806/180424 (executing program)
2025/08/29 12:18:02 fetching corpus: 3500, signal 146335/181073 (executing program)
2025/08/29 12:18:02 fetching corpus: 3550, signal 146878/181741 (executing program)
2025/08/29 12:18:02 fetching corpus: 3600, signal 147406/182386 (executing program)
2025/08/29 12:18:02 fetching corpus: 3650, signal 148491/183118 (executing program)
2025/08/29 12:18:02 fetching corpus: 3700, signal 149121/183705 (executing program)
2025/08/29 12:18:02 fetching corpus: 3750, signal 149872/184349 (executing program)
2025/08/29 12:18:02 fetching corpus: 3800, signal 150611/184996 (executing program)
2025/08/29 12:18:03 fetching corpus: 3850, signal 151055/185569 (executing program)
2025/08/29 12:18:03 fetching corpus: 3900, signal 152034/186256 (executing program)
2025/08/29 12:18:03 fetching corpus: 3950, signal 152967/186836 (executing program)
2025/08/29 12:18:03 fetching corpus: 4000, signal 153544/187346 (executing program)
2025/08/29 12:18:03 fetching corpus: 4050, signal 154049/187892 (executing program)
2025/08/29 12:18:03 fetching corpus: 4100, signal 154589/188413 (executing program)
2025/08/29 12:18:03 fetching corpus: 4150, signal 155137/188903 (executing program)
2025/08/29 12:18:03 fetching corpus: 4200, signal 155625/189352 (executing program)
2025/08/29 12:18:03 fetching corpus: 4250, signal 156049/189789 (executing program)
2025/08/29 12:18:03 fetching corpus: 4300, signal 156496/190266 (executing program)
2025/08/29 12:18:03 fetching corpus: 4350, signal 156984/190696 (executing program)
2025/08/29 12:18:04 fetching corpus: 4400, signal 157450/191128 (executing program)
2025/08/29 12:18:04 fetching corpus: 4450, signal 157906/191613 (executing program)
2025/08/29 12:18:04 fetching corpus: 4500, signal 158461/192008 (executing program)
2025/08/29 12:18:04 fetching corpus: 4550, signal 159088/192509 (executing program)
2025/08/29 12:18:04 fetching corpus: 4600, signal 159449/192952 (executing program)
2025/08/29 12:18:04 fetching corpus: 4650, signal 159795/193320 (executing program)
2025/08/29 12:18:04 fetching corpus: 4700, signal 160326/193348 (executing program)
2025/08/29 12:18:04 fetching corpus: 4750, signal 160718/193363 (executing program)
2025/08/29 12:18:04 fetching corpus: 4800, signal 161122/193452 (executing program)
2025/08/29 12:18:05 fetching corpus: 4850, signal 161356/193457 (executing program)
2025/08/29 12:18:05 fetching corpus: 4900, signal 162005/193471 (executing program)
2025/08/29 12:18:05 fetching corpus: 4950, signal 163029/193471 (executing program)
2025/08/29 12:18:05 fetching corpus: 5000, signal 163656/193504 (executing program)
2025/08/29 12:18:05 fetching corpus: 5050, signal 164245/193505 (executing program)
2025/08/29 12:18:05 fetching corpus: 5100, signal 164613/193513 (executing program)
2025/08/29 12:18:05 fetching corpus: 5150, signal 164952/193517 (executing program)
2025/08/29 12:18:05 fetching corpus: 5200, signal 165419/193517 (executing program)
2025/08/29 12:18:05 fetching corpus: 5250, signal 165810/193530 (executing program)
2025/08/29 12:18:06 fetching corpus: 5300, signal 166224/193534 (executing program)
2025/08/29 12:18:06 fetching corpus: 5350, signal 166450/193551 (executing program)
2025/08/29 12:18:06 fetching corpus: 5400, signal 166889/193564 (executing program)
2025/08/29 12:18:06 fetching corpus: 5450, signal 167292/193579 (executing program)
2025/08/29 12:18:06 fetching corpus: 5500, signal 167829/193584 (executing program)
2025/08/29 12:18:06 fetching corpus: 5550, signal 168207/193593 (executing program)
2025/08/29 12:18:06 fetching corpus: 5600, signal 168679/193596 (executing program)
2025/08/29 12:18:06 fetching corpus: 5650, signal 169106/193619 (executing program)
2025/08/29 12:18:06 fetching corpus: 5700, signal 169523/193637 (executing program)
2025/08/29 12:18:06 fetching corpus: 5750, signal 169966/193655 (executing program)
2025/08/29 12:18:06 fetching corpus: 5800, signal 170414/193681 (executing program)
2025/08/29 12:18:06 fetching corpus: 5850, signal 170818/193687 (executing program)
2025/08/29 12:18:07 fetching corpus: 5900, signal 171099/193688 (executing program)
2025/08/29 12:18:07 fetching corpus: 5950, signal 171508/193698 (executing program)
2025/08/29 12:18:07 fetching corpus: 6000, signal 172004/193740 (executing program)
2025/08/29 12:18:07 fetching corpus: 6050, signal 172532/193744 (executing program)
2025/08/29 12:18:07 fetching corpus: 6100, signal 172836/193749 (executing program)
2025/08/29 12:18:07 fetching corpus: 6150, signal 173167/193749 (executing program)
2025/08/29 12:18:07 fetching corpus: 6200, signal 173500/193764 (executing program)
2025/08/29 12:18:07 fetching corpus: 6250, signal 173873/193807 (executing program)
2025/08/29 12:18:07 fetching corpus: 6300, signal 174289/193813 (executing program)
2025/08/29 12:18:07 fetching corpus: 6350, signal 174559/193819 (executing program)
2025/08/29 12:18:07 fetching corpus: 6400, signal 174863/193830 (executing program)
2025/08/29 12:18:08 fetching corpus: 6450, signal 175306/193842 (executing program)
2025/08/29 12:18:08 fetching corpus: 6500, signal 175722/193844 (executing program)
2025/08/29 12:18:08 fetching corpus: 6550, signal 175998/193846 (executing program)
2025/08/29 12:18:08 fetching corpus: 6600, signal 176280/193857 (executing program)
2025/08/29 12:18:08 fetching corpus: 6650, signal 176695/193957 (executing program)
2025/08/29 12:18:08 fetching corpus: 6700, signal 177001/193957 (executing program)
2025/08/29 12:18:08 fetching corpus: 6750, signal 177281/193963 (executing program)
2025/08/29 12:18:08 fetching corpus: 6800, signal 177648/193965 (executing program)
2025/08/29 12:18:08 fetching corpus: 6850, signal 177941/193968 (executing program)
2025/08/29 12:18:08 fetching corpus: 6900, signal 178335/193983 (executing program)
2025/08/29 12:18:08 fetching corpus: 6950, signal 178696/193985 (executing program)
2025/08/29 12:18:08 fetching corpus: 7000, signal 179056/193988 (executing program)
2025/08/29 12:18:09 fetching corpus: 7050, signal 179456/193989 (executing program)
2025/08/29 12:18:09 fetching corpus: 7100, signal 179740/193993 (executing program)
2025/08/29 12:18:09 fetching corpus: 7150, signal 180079/194090 (executing program)
2025/08/29 12:18:09 fetching corpus: 7200, signal 180336/194096 (executing program)
2025/08/29 12:18:09 fetching corpus: 7250, signal 180506/194119 (executing program)
2025/08/29 12:18:09 fetching corpus: 7300, signal 180788/194119 (executing program)
2025/08/29 12:18:09 fetching corpus: 7350, signal 181053/194125 (executing program)
2025/08/29 12:18:09 fetching corpus: 7400, signal 181285/194135 (executing program)
2025/08/29 12:18:09 fetching corpus: 7450, signal 181595/194156 (executing program)
2025/08/29 12:18:09 fetching corpus: 7500, signal 181891/194158 (executing program)
2025/08/29 12:18:09 fetching corpus: 7550, signal 182224/194171 (executing program)
2025/08/29 12:18:09 fetching corpus: 7600, signal 182526/194186 (executing program)
2025/08/29 12:18:09 fetching corpus: 7650, signal 182743/194197 (executing program)
2025/08/29 12:18:10 fetching corpus: 7700, signal 183200/194209 (executing program)
2025/08/29 12:18:10 fetching corpus: 7750, signal 183429/194222 (executing program)
2025/08/29 12:18:10 fetching corpus: 7800, signal 183723/194227 (executing program)
2025/08/29 12:18:10 fetching corpus: 7850, signal 183960/194275 (executing program)
2025/08/29 12:18:10 fetching corpus: 7900, signal 184223/194284 (executing program)
2025/08/29 12:18:10 fetching corpus: 7950, signal 184515/194284 (executing program)
2025/08/29 12:18:10 fetching corpus: 8000, signal 184772/194292 (executing program)
2025/08/29 12:18:10 fetching corpus: 8050, signal 185009/194306 (executing program)
2025/08/29 12:18:10 fetching corpus: 8100, signal 185456/194338 (executing program)
2025/08/29 12:18:10 fetching corpus: 8150, signal 185754/194343 (executing program)
2025/08/29 12:18:10 fetching corpus: 8200, signal 186091/194356 (executing program)
2025/08/29 12:18:10 fetching corpus: 8250, signal 186317/194364 (executing program)
2025/08/29 12:18:11 fetching corpus: 8300, signal 186613/194371 (executing program)
2025/08/29 12:18:11 fetching corpus: 8350, signal 186806/194381 (executing program)
2025/08/29 12:18:11 fetching corpus: 8400, signal 186974/194387 (executing program)
2025/08/29 12:18:11 fetching corpus: 8450, signal 187210/194397 (executing program)
2025/08/29 12:18:11 fetching corpus: 8500, signal 187491/194407 (executing program)
2025/08/29 12:18:11 fetching corpus: 8550, signal 187921/194414 (executing program)
2025/08/29 12:18:11 fetching corpus: 8600, signal 188204/194418 (executing program)
2025/08/29 12:18:11 fetching corpus: 8650, signal 188404/194426 (executing program)
2025/08/29 12:18:11 fetching corpus: 8700, signal 188964/194426 (executing program)
2025/08/29 12:18:11 fetching corpus: 8750, signal 189258/194431 (executing program)
2025/08/29 12:18:11 fetching corpus: 8800, signal 189496/194434 (executing program)
2025/08/29 12:18:11 fetching corpus: 8850, signal 189709/194439 (executing program)
2025/08/29 12:18:12 fetching corpus: 8900, signal 190083/194448 (executing program)
2025/08/29 12:18:12 fetching corpus: 8950, signal 190398/194468 (executing program)
2025/08/29 12:18:12 fetching corpus: 9000, signal 190655/194473 (executing program)
2025/08/29 12:18:12 fetching corpus: 9005, signal 190679/194473 (executing program)
2025/08/29 12:18:12 fetching corpus: 9005, signal 190679/194473 (executing program)
2025/08/29 12:18:14 starting 8 fuzzer processes
12:18:14 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x4, 0x0, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x4, 0x0, 0x0)
12:18:14 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setgroups(0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
fstat(r0, &(0x7f0000000240))
lstat(0x0, 0x0)
setresgid(0x0, 0x0, 0xee01)
12:18:14 executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
quotactl(0x0, 0x0, 0x0, 0x0)
12:18:14 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000000))
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f00000003c0)=0x3)
ioctl$TCXONC(r1, 0x540a, 0x0)
12:18:14 executing program 4:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, 0x0)
sync_file_range(r2, 0x1, 0x0, 0x1)
pwritev2(r2, &(0x7f0000000040)=[{&(0x7f00000008c0)='!', 0x1}], 0x1, 0x0, 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x44000)
sendfile(r0, r1, 0x0, 0xfdef)
[ 79.547335] audit: type=1400 audit(1756469894.289:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
12:18:14 executing program 7:
r0 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x11, r1, 0x0)
12:18:14 executing program 5:
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x3c, &(0x7f0000000140)={0x0, 0x0}, 0x10)
12:18:14 executing program 6:
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(0x0, 0x0, 0x0, 0x0, 0x4)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlock(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
munlock(&(0x7f0000ffc000/0x3000)=nil, 0x3000)
madvise(&(0x7f0000ff3000/0xd000)=nil, 0xd000, 0x15)
[ 80.660481] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 80.667022] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 80.671799] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 80.685568] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 80.690404] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 80.849665] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 80.853204] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 80.864484] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 80.867093] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 80.875001] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 80.879168] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 80.881116] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 80.886326] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 80.891245] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 80.894639] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 80.898241] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 80.900463] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 80.908300] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 80.911294] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 80.913392] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 80.920708] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 80.922754] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 80.924746] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 80.926204] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 80.927549] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 80.932322] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 80.939217] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 80.941709] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 80.942435] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 80.949827] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 80.952677] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 80.954580] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 80.957675] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 80.963678] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 80.972094] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 80.973566] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 80.975282] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 80.979293] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 80.984669] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 80.988114] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 82.753308] Bluetooth: hci0: command tx timeout
[ 82.944560] Bluetooth: hci1: command tx timeout
[ 83.007939] Bluetooth: hci2: command tx timeout
[ 83.010063] Bluetooth: hci7: command tx timeout
[ 83.010529] Bluetooth: hci3: command tx timeout
[ 83.072025] Bluetooth: hci4: command tx timeout
[ 83.073815] Bluetooth: hci6: command tx timeout
[ 83.075704] Bluetooth: hci5: command tx timeout
[ 84.801992] Bluetooth: hci0: command tx timeout
[ 84.992089] Bluetooth: hci1: command tx timeout
[ 85.056607] Bluetooth: hci3: command tx timeout
[ 85.056654] Bluetooth: hci7: command tx timeout
[ 85.057977] Bluetooth: hci2: command tx timeout
[ 85.121104] Bluetooth: hci6: command tx timeout
[ 85.121513] Bluetooth: hci5: command tx timeout
[ 85.122295] Bluetooth: hci4: command tx timeout
[ 86.848032] Bluetooth: hci0: command tx timeout
[ 87.041996] Bluetooth: hci1: command tx timeout
[ 87.103968] Bluetooth: hci3: command tx timeout
[ 87.104385] Bluetooth: hci7: command tx timeout
[ 87.104762] Bluetooth: hci2: command tx timeout
[ 87.167975] Bluetooth: hci4: command tx timeout
[ 87.168078] Bluetooth: hci5: command tx timeout
[ 87.168407] Bluetooth: hci6: command tx timeout
[ 88.895895] Bluetooth: hci0: command tx timeout
[ 89.088911] Bluetooth: hci1: command tx timeout
[ 89.152888] Bluetooth: hci2: command tx timeout
[ 89.153389] Bluetooth: hci3: command tx timeout
[ 89.153765] Bluetooth: hci7: command tx timeout
[ 89.216973] Bluetooth: hci6: command tx timeout
[ 89.217371] Bluetooth: hci5: command tx timeout
[ 89.217753] Bluetooth: hci4: command tx timeout
[ 116.626451] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.627161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.700453] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.701154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.821412] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.822180] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.917469] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.918471] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.981108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.981683] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.017325] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.017937] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.069012] audit: type=1400 audit(1756469931.810:8): avc: denied { open } for pid=3869 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 117.071829] audit: type=1400 audit(1756469931.810:9): avc: denied { kernel } for pid=3869 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 117.081377] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.082452] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:18:51 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000740)={0x30, r1, 0x16566fdb4c104121, 0x0, 0x0, {}, [@NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0xffffffffffffffff}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x30}}, 0x0)
[ 117.189584] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.190205] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.201824] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.202455] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:18:51 executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
quotactl(0x0, 0x0, 0x0, 0x0)
[ 117.232544] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.233205] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:18:51 executing program 5:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00')
ioctl$NS_GET_USERNS(r0, 0xb701, 0x0)
12:18:52 executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
quotactl(0x0, 0x0, 0x0, 0x0)
[ 117.277303] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.277953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:18:52 executing program 5:
prctl$PR_SET_FP_MODE(0x18, 0x0)
[ 117.305758] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.306893] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
12:18:52 executing program 5:
getresuid(&(0x7f0000000040), 0xfffffffffffffffe, 0x0)
12:18:52 executing program 5:
getresuid(&(0x7f0000000040), 0xfffffffffffffffe, 0x0)
12:18:52 executing program 1:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
quotactl(0x0, 0x0, 0x0, 0x0)
[ 117.381268] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.381898] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.463991] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.464607] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.507747] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.509081] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.551079] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.551732] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.648369] audit: type=1400 audit(1756469932.389:10): avc: denied { read } for pid=3902 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
12:18:52 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000640), 0x0)
12:18:52 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mbind(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0)
12:18:52 executing program 6:
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(0x0, 0x0, 0x0, 0x0, 0x4)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlock(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
munlock(&(0x7f0000ffc000/0x3000)=nil, 0x3000)
madvise(&(0x7f0000ff3000/0xd000)=nil, 0xd000, 0x15)
12:18:52 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x4, 0x0, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x4, 0x0, 0x0)
12:18:52 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8932, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats})
12:18:52 executing program 5:
getresuid(&(0x7f0000000040), 0xfffffffffffffffe, 0x0)
12:18:52 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
timer_create(0x0, 0x0, &(0x7f00000003c0))
timer_getoverrun(0x0)
12:18:52 executing program 7:
r0 = io_uring_setup(0x3e96, &(0x7f0000000140))
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
[ 117.836504] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[ 117.837438] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 117.838037] CPU: 1 UID: 0 PID: 3919 Comm: syz-executor.6 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 117.838965] Tainted: [W]=WARN
[ 117.839929] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 117.842023] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.843062] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.847729] RSP: 0018:ffff888015d9f780 EFLAGS: 00010012
[ 117.848158] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900042ab000
[ 117.848714] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 117.849266] RBP: ffff888015d9f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15af8
[ 117.849816] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 117.850373] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 117.850934] FS: 00007f4675b42700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 117.851586] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.852045] CR2: 0000001b2d321000 CR3: 0000000044c4c000 CR4: 0000000000350ef0
[ 117.852599] Call Trace:
[ 117.852804]
[ 117.852988] ? __pfx_perf_tp_event+0x10/0x10
[ 117.853345] ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150
[ 117.853829] ? lock_acquire+0x15e/0x2f0
[ 117.854149] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10
[ 117.854649] ? lock_is_held_type+0x9e/0x120
[ 117.854996] ? lock_is_held_type+0x9e/0x120
[ 117.855354] ? ctx_sched_in+0x134/0x9b0
[ 117.855677] ? __pfx_ctx_sched_in+0x10/0x10
[ 117.856019] ? arch_stack_walk+0x9c/0xf0
[ 117.856341] ? find_held_lock+0x2b/0x80
[ 117.856660] ? perf_trace_run_bpf_submit+0xef/0x180
[ 117.857055] ? lock_release+0xc8/0x290
[ 117.857365] perf_trace_run_bpf_submit+0xef/0x180
[ 117.857750] perf_trace_preemptirq_template+0x259/0x430
[ 117.858173] ? mark_held_locks+0x49/0x80
[ 117.858497] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 117.858963] ? _raw_spin_lock_irqsave+0x53/0x60
[ 117.859351] trace_irq_disable.constprop.0+0xa6/0x100
[ 117.859764] _raw_spin_lock_irqsave+0x53/0x60
[ 117.860123] try_to_wake_up+0xa0/0x11d0
[ 117.860445] ? __pfx_try_to_wake_up+0x10/0x10
[ 117.860806] ? plist_del+0x122/0x270
[ 117.861108] ? find_held_lock+0x2b/0x80
[ 117.861426] ? futex_wake+0x474/0x540
[ 117.861732] wake_up_q+0xa1/0x130
[ 117.862014] futex_wake+0x47e/0x540
[ 117.862309] ? __pfx_futex_wake+0x10/0x10
[ 117.862640] ? __do_sys_perf_event_open+0x44d/0x2c20
[ 117.863039] ? lock_release+0xc8/0x290
[ 117.863368] do_futex+0x26d/0x370
[ 117.863658] ? __pfx_do_futex+0x10/0x10
[ 117.863985] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 117.864420] ? arch_do_signal_or_restart+0x204/0x790
[ 117.864838] __x64_sys_futex+0x1c9/0x4d0
[ 117.865167] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 117.865642] ? __pfx___x64_sys_futex+0x10/0x10
[ 117.866015] ? lock_mm_and_find_vma+0xaa/0x6f0
[ 117.866385] ? xfd_validate_state+0x55/0x180
[ 117.866753] do_syscall_64+0xbf/0x360
[ 117.867065] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 117.867501] RIP: 0033:0x7f46785ccb19
[ 117.867804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 117.869252] RSP: 002b:00007f4675b42218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 117.869857] RAX: ffffffffffffffda RBX: 00007f46786dff68 RCX: 00007f46785ccb19
[ 117.870429] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f46786dff6c
[ 117.871008] RBP: 00007f46786dff60 R08: 000000000000000e R09: 0000000000000000
[ 117.871604] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f46786dff6c
[ 117.872156] R13: 00007ffed50589ff R14: 00007f4675b42300 R15: 0000000000022000
[ 117.872712]
[ 117.872899] Modules linked in:
[ 117.873157] ---[ end trace 0000000000000000 ]---
[ 117.873522] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.873897] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.875301] RSP: 0018:ffff888015d9f780 EFLAGS: 00010012
[ 117.875736] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900042ab000
[ 117.876292] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 117.876848] RBP: ffff888015d9f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15af8
[ 117.877403] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 117.877959] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 117.878514] FS: 00007f4675b42700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 117.879141] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.879619] CR2: 0000001b2d321000 CR3: 0000000044c4c000 CR4: 0000000000350ef0
[ 117.880179] note: syz-executor.6[3919] exited with irqs disabled
[ 117.880747] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 117.881613] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 117.882203] CPU: 1 UID: 0 PID: 3919 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 117.883126] Tainted: [D]=DIE, [W]=WARN
[ 117.883446] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 117.884084] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.884455] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.885857] RSP: 0018:ffff88806cf08ac0 EFLAGS: 00010012
[ 117.886270] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[ 117.886817] RDX: ffff888017471b80 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 117.887404] RBP: ffff88806cf08d30 R08: ffff88806cf313e8 R09: ffffe8ffffd15af8
[ 117.887976] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 117.888543] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 117.889115] FS: 00007f4675b42700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 117.889759] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.890232] CR2: 0000001b2d321000 CR3: 0000000044c4c000 CR4: 0000000000350ef0
[ 117.890803] Call Trace:
[ 117.891024]
[ 117.891209] ? __pfx_perf_tp_event+0x10/0x10
[ 117.891597] ? trace_pelt_se_tp+0xdf/0x130
[ 117.891948] ? __update_load_avg_se+0x428/0xa40
[ 117.892341] ? __cgroup_account_cputime+0x30/0xc0
[ 117.892745] ? update_load_avg+0x17d/0x1ef0
[ 117.893097] ? update_cfs_group+0x11d/0x260
[ 117.893452] ? kvm_sched_clock_read+0x16/0x30
[ 117.893823] ? enqueue_task_fair+0xded/0x1e00
[ 117.894199] ? check_preempt_wakeup_fair+0x6e/0x950
[ 117.894610] ? wakeup_preempt+0x140/0x2a0
[ 117.894954] ? lock_release+0x1c7/0x290
[ 117.895286] ? lock_release+0x1c7/0x290
[ 117.895633] ? perf_trace_run_bpf_submit+0xef/0x180
[ 117.896047] perf_trace_run_bpf_submit+0xef/0x180
[ 117.896452] perf_trace_preemptirq_template+0x259/0x430
[ 117.896895] ? lock_release+0x1c7/0x290
[ 117.897221] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 117.897702] ? lock_acquire+0x18c/0x2f0
[ 117.898037] ? irqentry_enter+0x2a/0x60
[ 117.898376] trace_irq_disable.constprop.0+0xa6/0x100
[ 117.898795] irqentry_enter+0x2a/0x60
[ 117.899117] sysvec_call_function_single+0x18/0xc0
[ 117.899538] asm_sysvec_call_function_single+0x1a/0x20
[ 117.899971] RIP: 0010:handle_softirqs+0x174/0x770
[ 117.900376] Code: c8 83 83 3c 0a 00 00 01 c7 44 24 20 0a 00 00 00 48 89 44 24 18 65 66 c7 05 0f 84 48 06 00 00 e8 42 80 40 00 fb bb ff ff ff ff <48> c7 c5 c0 c0 a0 85 41 0f bc de 83 c3 01 0f 85 9b 00 00 00 e9 8d
[ 117.901830] RSP: 0018:ffff88806cf08f78 EFLAGS: 00000246
[ 117.902260] RAX: 0000000000000001 RBX: 00000000ffffffff RCX: ffffffff817c2b86
[ 117.902810] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813bac2e
[ 117.903403] RBP: ffff888015d9fe78 R08: 0000000000000000 R09: 0000000000000000
[ 117.903976] R10: ffffffff8643ac57 R11: ffff88800f3adc98 R12: 0000000000000000
[ 117.904546] R13: 0000000000000000 R14: 0000000000000082 R15: 0000000000000000
[ 117.905120] ? trace_irq_enable.constprop.0+0x26/0x100
[ 117.905545] ? handle_softirqs+0x16e/0x770
[ 117.905888] ? handle_softirqs+0x16e/0x770
[ 117.906241] __irq_exit_rcu+0xc4/0x100
[ 117.906567] irq_exit_rcu+0x9/0x20
[ 117.906864] sysvec_apic_timer_interrupt+0x70/0x80
[ 117.907273]
[ 117.907479]
[ 117.907670] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 117.908091] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 117.908473] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de
[ 117.909941] RSP: 0018:ffff888015d9ff28 EFLAGS: 00000246
[ 117.910368] RAX: 0000000000000001 RBX: ffff888017471b80 RCX: ffffffff817c2b86
[ 117.910936] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 117.911528] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 117.912106] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888017471b80
[ 117.912676] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[ 117.913251] ? trace_irq_enable.constprop.0+0x26/0x100
[ 117.913683] ? make_task_dead+0x214/0x3b0
[ 117.914029] ? make_task_dead+0x214/0x3b0
[ 117.914372] ? do_syscall_64+0xbf/0x360
[ 117.914700] rewind_stack_and_make_dead+0x16/0x20
[ 117.915112] RIP: 0033:0x7f46785ccb19
[ 117.915442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 117.916887] RSP: 002b:00007f4675b42218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 117.917484] RAX: ffffffffffffffda RBX: 00007f46786dff68 RCX: 00007f46785ccb19
[ 117.918051] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f46786dff6c
[ 117.918620] RBP: 00007f46786dff60 R08: 000000000000000e R09: 0000000000000000
[ 117.919193] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f46786dff6c
[ 117.919783] R13: 00007ffed50589ff R14: 00007f4675b42300 R15: 0000000000022000
[ 117.920358]
[ 117.920549] Modules linked in:
[ 117.920815] ---[ end trace 0000000000000000 ]---
[ 117.921192] RIP: 0010:perf_tp_event+0x175/0xe70
[ 117.921575] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 117.923023] RSP: 0018:ffff888015d9f780 EFLAGS: 00010012
[ 117.923468] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900042ab000
[ 117.924044] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 117.924610] RBP: ffff888015d9f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15af8
[ 117.925185] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 117.925745] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 117.926315] FS: 00007f4675b42700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 117.926971] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 117.927470] CR2: 0000001b2d321000 CR3: 0000000044c4c000 CR4: 0000000000350ef0
[ 117.928046] Kernel panic - not syncing: Fatal exception in interrupt
[ 117.928750] Kernel Offset: disabled
[ 117.929045] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
12:18:52 Registers:
info registers vcpu 0
RAX=ffff888016226880 RBX=1ffff11008fe1f66 RCX=0000000000000002 RDX=1ffff11002e7f904
RSI=0000000000000000 RDI=ffff888016226880 RBP=ffffed1003691412 RSP=ffff888047f0fb18
R8 =0000000000000000 R9 =0000000000000000 R10=ffff88801b48b0af R11=0000000000000000
R12=0000000000000000 R13=dffffc0000000000 R14=ffff88801b489b80 R15=ffff88801b489b80
RIP=ffffffff81b1b167 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00005555685df400 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe4300000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6589c00019 CR3=000000004621d000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000ffff00000000000000000000ffff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000ff0000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888015d9f070
R8 =0000000000000000 R9 =ffffed10016cd046 R10=0000000000000030 R11=0000000065646f43
R12=0000000000000030 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f4675b42700 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe3300000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d321000 CR3=0000000044c4c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000