Warning: Permanently added '[localhost]:5910' (ECDSA) to the list of known hosts. 2025/08/29 12:40:41 fuzzer started 2025/08/29 12:40:41 dialing manager at localhost:43077 syzkaller login: [ 51.504575] cgroup: Unknown subsys name 'net' [ 51.563786] cgroup: Unknown subsys name 'cpuset' [ 51.580874] cgroup: Unknown subsys name 'rlimit' 2025/08/29 12:40:52 syscalls: 2214 2025/08/29 12:40:52 code coverage: enabled 2025/08/29 12:40:52 comparison tracing: enabled 2025/08/29 12:40:52 extra coverage: enabled 2025/08/29 12:40:52 setuid sandbox: enabled 2025/08/29 12:40:52 namespace sandbox: enabled 2025/08/29 12:40:52 Android sandbox: enabled 2025/08/29 12:40:52 fault injection: enabled 2025/08/29 12:40:52 leak checking: enabled 2025/08/29 12:40:52 net packet injection: enabled 2025/08/29 12:40:52 net device setup: enabled 2025/08/29 12:40:52 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 12:40:52 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 12:40:52 USB emulation: enabled 2025/08/29 12:40:52 hci packet injection: enabled 2025/08/29 12:40:52 wifi device emulation: enabled 2025/08/29 12:40:52 802.15.4 emulation: enabled 2025/08/29 12:40:52 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 12:40:52 fetching corpus: 50, signal 21355/24925 (executing program) 2025/08/29 12:40:52 fetching corpus: 100, signal 34167/39097 (executing program) 2025/08/29 12:40:52 fetching corpus: 150, signal 41565/47855 (executing program) 2025/08/29 12:40:52 fetching corpus: 200, signal 46162/53806 (executing program) 2025/08/29 12:40:52 fetching corpus: 250, signal 54156/62805 (executing program) 2025/08/29 12:40:52 fetching corpus: 300, signal 58764/68531 (executing program) 2025/08/29 12:40:52 fetching corpus: 350, signal 63686/74409 (executing program) 2025/08/29 12:40:52 fetching corpus: 400, signal 68173/79763 (executing program) 2025/08/29 12:40:52 fetching corpus: 450, signal 71923/84465 (executing program) 2025/08/29 12:40:53 fetching corpus: 500, signal 75091/88557 (executing program) 2025/08/29 12:40:53 fetching corpus: 550, signal 77795/92162 (executing program) 2025/08/29 12:40:53 fetching corpus: 600, signal 79788/95120 (executing program) 2025/08/29 12:40:54 fetching corpus: 650, signal 81618/97894 (executing program) 2025/08/29 12:40:54 fetching corpus: 700, signal 84252/101276 (executing program) 2025/08/29 12:40:54 fetching corpus: 750, signal 86498/104252 (executing program) 2025/08/29 12:40:54 fetching corpus: 800, signal 88574/107144 (executing program) 2025/08/29 12:40:54 fetching corpus: 850, signal 90026/109418 (executing program) 2025/08/29 12:40:54 fetching corpus: 900, signal 91234/111472 (executing program) 2025/08/29 12:40:54 fetching corpus: 950, signal 93221/114115 (executing program) 2025/08/29 12:40:54 fetching corpus: 1000, signal 94768/116385 (executing program) 2025/08/29 12:40:55 fetching corpus: 1050, signal 96185/118499 (executing program) 2025/08/29 12:40:55 fetching corpus: 1100, signal 97662/120672 (executing program) 2025/08/29 12:40:55 fetching corpus: 1150, signal 98959/122660 (executing program) 2025/08/29 12:40:55 fetching corpus: 1200, signal 100877/125116 (executing program) 2025/08/29 12:40:55 fetching corpus: 1250, signal 102306/127202 (executing program) 2025/08/29 12:40:55 fetching corpus: 1300, signal 103797/129233 (executing program) 2025/08/29 12:40:55 fetching corpus: 1350, signal 105288/131261 (executing program) 2025/08/29 12:40:55 fetching corpus: 1400, signal 106838/133223 (executing program) 2025/08/29 12:40:55 fetching corpus: 1450, signal 108645/135397 (executing program) 2025/08/29 12:40:55 fetching corpus: 1500, signal 109824/137157 (executing program) 2025/08/29 12:40:56 fetching corpus: 1550, signal 110566/138564 (executing program) 2025/08/29 12:40:56 fetching corpus: 1600, signal 111490/140108 (executing program) 2025/08/29 12:40:56 fetching corpus: 1650, signal 112812/141850 (executing program) 2025/08/29 12:40:56 fetching corpus: 1700, signal 114051/143479 (executing program) 2025/08/29 12:40:56 fetching corpus: 1750, signal 115436/145230 (executing program) 2025/08/29 12:40:56 fetching corpus: 1800, signal 116344/146633 (executing program) 2025/08/29 12:40:56 fetching corpus: 1850, signal 117721/148382 (executing program) 2025/08/29 12:40:56 fetching corpus: 1900, signal 118293/149581 (executing program) 2025/08/29 12:40:56 fetching corpus: 1950, signal 119802/151477 (executing program) 2025/08/29 12:40:56 fetching corpus: 2000, signal 120691/152845 (executing program) 2025/08/29 12:40:56 fetching corpus: 2050, signal 121630/154161 (executing program) 2025/08/29 12:40:56 fetching corpus: 2100, signal 122423/155381 (executing program) 2025/08/29 12:40:57 fetching corpus: 2150, signal 124050/157003 (executing program) 2025/08/29 12:40:57 fetching corpus: 2200, signal 124780/158194 (executing program) 2025/08/29 12:40:57 fetching corpus: 2250, signal 125876/159522 (executing program) 2025/08/29 12:40:57 fetching corpus: 2300, signal 126605/160615 (executing program) 2025/08/29 12:40:57 fetching corpus: 2350, signal 127396/161787 (executing program) 2025/08/29 12:40:57 fetching corpus: 2400, signal 128665/163207 (executing program) 2025/08/29 12:40:57 fetching corpus: 2450, signal 129583/164406 (executing program) 2025/08/29 12:40:57 fetching corpus: 2500, signal 130037/165325 (executing program) 2025/08/29 12:40:57 fetching corpus: 2550, signal 131182/166527 (executing program) 2025/08/29 12:40:57 fetching corpus: 2600, signal 131958/167599 (executing program) 2025/08/29 12:40:57 fetching corpus: 2650, signal 132723/168657 (executing program) 2025/08/29 12:40:58 fetching corpus: 2700, signal 135179/170342 (executing program) 2025/08/29 12:40:58 fetching corpus: 2750, signal 135774/171258 (executing program) 2025/08/29 12:40:58 fetching corpus: 2800, signal 136465/172186 (executing program) 2025/08/29 12:40:58 fetching corpus: 2850, signal 137089/173064 (executing program) 2025/08/29 12:40:58 fetching corpus: 2900, signal 138008/174086 (executing program) 2025/08/29 12:40:58 fetching corpus: 2950, signal 138716/175010 (executing program) 2025/08/29 12:40:58 fetching corpus: 3000, signal 139467/175924 (executing program) 2025/08/29 12:40:58 fetching corpus: 3050, signal 140090/176703 (executing program) 2025/08/29 12:40:58 fetching corpus: 3100, signal 140592/177503 (executing program) 2025/08/29 12:40:58 fetching corpus: 3150, signal 141245/178356 (executing program) 2025/08/29 12:40:58 fetching corpus: 3200, signal 141650/179061 (executing program) 2025/08/29 12:40:59 fetching corpus: 3250, signal 142626/179961 (executing program) 2025/08/29 12:40:59 fetching corpus: 3300, signal 143526/180796 (executing program) 2025/08/29 12:40:59 fetching corpus: 3350, signal 144455/181605 (executing program) 2025/08/29 12:40:59 fetching corpus: 3400, signal 144972/182308 (executing program) 2025/08/29 12:40:59 fetching corpus: 3450, signal 146046/183172 (executing program) 2025/08/29 12:40:59 fetching corpus: 3500, signal 147006/183971 (executing program) 2025/08/29 12:40:59 fetching corpus: 3550, signal 147505/184631 (executing program) 2025/08/29 12:40:59 fetching corpus: 3600, signal 148223/185325 (executing program) 2025/08/29 12:40:59 fetching corpus: 3650, signal 149291/186105 (executing program) 2025/08/29 12:40:59 fetching corpus: 3700, signal 149665/186713 (executing program) 2025/08/29 12:40:59 fetching corpus: 3750, signal 150249/187325 (executing program) 2025/08/29 12:41:00 fetching corpus: 3800, signal 150680/187930 (executing program) 2025/08/29 12:41:00 fetching corpus: 3850, signal 151185/188484 (executing program) 2025/08/29 12:41:00 fetching corpus: 3900, signal 151625/189043 (executing program) 2025/08/29 12:41:00 fetching corpus: 3950, signal 152085/189625 (executing program) 2025/08/29 12:41:00 fetching corpus: 4000, signal 152658/190218 (executing program) 2025/08/29 12:41:00 fetching corpus: 4050, signal 153248/190758 (executing program) 2025/08/29 12:41:00 fetching corpus: 4100, signal 153901/191303 (executing program) 2025/08/29 12:41:00 fetching corpus: 4150, signal 154257/191847 (executing program) 2025/08/29 12:41:00 fetching corpus: 4200, signal 154872/192372 (executing program) 2025/08/29 12:41:01 fetching corpus: 4250, signal 155330/192801 (executing program) 2025/08/29 12:41:01 fetching corpus: 4300, signal 155922/193331 (executing program) 2025/08/29 12:41:01 fetching corpus: 4350, signal 156319/193810 (executing program) 2025/08/29 12:41:01 fetching corpus: 4400, signal 156808/194293 (executing program) 2025/08/29 12:41:01 fetching corpus: 4450, signal 157353/194785 (executing program) 2025/08/29 12:41:01 fetching corpus: 4500, signal 157837/195271 (executing program) 2025/08/29 12:41:01 fetching corpus: 4550, signal 158329/195699 (executing program) 2025/08/29 12:41:01 fetching corpus: 4600, signal 158840/196125 (executing program) 2025/08/29 12:41:01 fetching corpus: 4650, signal 159346/196587 (executing program) 2025/08/29 12:41:01 fetching corpus: 4700, signal 159815/196985 (executing program) 2025/08/29 12:41:01 fetching corpus: 4750, signal 160296/197360 (executing program) 2025/08/29 12:41:01 fetching corpus: 4800, signal 160736/197474 (executing program) 2025/08/29 12:41:02 fetching corpus: 4850, signal 161161/197577 (executing program) 2025/08/29 12:41:02 fetching corpus: 4900, signal 161590/197613 (executing program) 2025/08/29 12:41:02 fetching corpus: 4950, signal 162018/197624 (executing program) 2025/08/29 12:41:02 fetching corpus: 5000, signal 162366/197631 (executing program) 2025/08/29 12:41:02 fetching corpus: 5050, signal 162867/197635 (executing program) 2025/08/29 12:41:02 fetching corpus: 5100, signal 163250/197653 (executing program) 2025/08/29 12:41:02 fetching corpus: 5150, signal 163544/197655 (executing program) 2025/08/29 12:41:02 fetching corpus: 5200, signal 164006/197657 (executing program) 2025/08/29 12:41:02 fetching corpus: 5250, signal 164519/197660 (executing program) 2025/08/29 12:41:02 fetching corpus: 5300, signal 164977/197695 (executing program) 2025/08/29 12:41:02 fetching corpus: 5350, signal 165319/197742 (executing program) 2025/08/29 12:41:02 fetching corpus: 5400, signal 165704/197744 (executing program) 2025/08/29 12:41:03 fetching corpus: 5450, signal 166202/197744 (executing program) 2025/08/29 12:41:03 fetching corpus: 5500, signal 166524/197752 (executing program) 2025/08/29 12:41:03 fetching corpus: 5550, signal 166879/197757 (executing program) 2025/08/29 12:41:03 fetching corpus: 5600, signal 167225/197762 (executing program) 2025/08/29 12:41:03 fetching corpus: 5650, signal 167562/197766 (executing program) 2025/08/29 12:41:03 fetching corpus: 5700, signal 167876/197772 (executing program) 2025/08/29 12:41:03 fetching corpus: 5750, signal 168195/197791 (executing program) 2025/08/29 12:41:03 fetching corpus: 5800, signal 168811/197822 (executing program) 2025/08/29 12:41:03 fetching corpus: 5850, signal 169263/197832 (executing program) 2025/08/29 12:41:03 fetching corpus: 5900, signal 169669/197864 (executing program) 2025/08/29 12:41:03 fetching corpus: 5950, signal 170035/197874 (executing program) 2025/08/29 12:41:03 fetching corpus: 6000, signal 170352/197882 (executing program) 2025/08/29 12:41:04 fetching corpus: 6050, signal 170613/197909 (executing program) 2025/08/29 12:41:04 fetching corpus: 6100, signal 171151/197914 (executing program) 2025/08/29 12:41:04 fetching corpus: 6150, signal 171429/197934 (executing program) 2025/08/29 12:41:04 fetching corpus: 6200, signal 171958/197949 (executing program) 2025/08/29 12:41:04 fetching corpus: 6250, signal 172271/197955 (executing program) 2025/08/29 12:41:04 fetching corpus: 6300, signal 172650/197992 (executing program) 2025/08/29 12:41:04 fetching corpus: 6350, signal 173101/198005 (executing program) 2025/08/29 12:41:04 fetching corpus: 6400, signal 173617/198006 (executing program) 2025/08/29 12:41:04 fetching corpus: 6450, signal 174183/198016 (executing program) 2025/08/29 12:41:04 fetching corpus: 6500, signal 174528/198019 (executing program) 2025/08/29 12:41:04 fetching corpus: 6550, signal 174734/198025 (executing program) 2025/08/29 12:41:04 fetching corpus: 6600, signal 175274/198053 (executing program) 2025/08/29 12:41:05 fetching corpus: 6650, signal 175642/198054 (executing program) 2025/08/29 12:41:05 fetching corpus: 6700, signal 176236/198064 (executing program) 2025/08/29 12:41:05 fetching corpus: 6750, signal 176539/198072 (executing program) 2025/08/29 12:41:05 fetching corpus: 6800, signal 177321/198073 (executing program) 2025/08/29 12:41:05 fetching corpus: 6850, signal 177785/198162 (executing program) 2025/08/29 12:41:05 fetching corpus: 6900, signal 178332/198168 (executing program) 2025/08/29 12:41:05 fetching corpus: 6950, signal 178626/198177 (executing program) 2025/08/29 12:41:05 fetching corpus: 7000, signal 179065/198235 (executing program) 2025/08/29 12:41:05 fetching corpus: 7050, signal 179361/198243 (executing program) 2025/08/29 12:41:05 fetching corpus: 7100, signal 179575/198245 (executing program) 2025/08/29 12:41:05 fetching corpus: 7150, signal 179829/198253 (executing program) 2025/08/29 12:41:05 fetching corpus: 7200, signal 180175/198336 (executing program) 2025/08/29 12:41:05 fetching corpus: 7250, signal 180431/198352 (executing program) 2025/08/29 12:41:06 fetching corpus: 7300, signal 180672/198357 (executing program) 2025/08/29 12:41:06 fetching corpus: 7350, signal 180948/198365 (executing program) 2025/08/29 12:41:06 fetching corpus: 7400, signal 181640/198372 (executing program) 2025/08/29 12:41:06 fetching corpus: 7450, signal 182507/198388 (executing program) 2025/08/29 12:41:06 fetching corpus: 7500, signal 182937/198388 (executing program) 2025/08/29 12:41:06 fetching corpus: 7550, signal 183195/198419 (executing program) 2025/08/29 12:41:06 fetching corpus: 7600, signal 183420/198423 (executing program) 2025/08/29 12:41:06 fetching corpus: 7650, signal 183648/198431 (executing program) 2025/08/29 12:41:06 fetching corpus: 7700, signal 184027/198446 (executing program) 2025/08/29 12:41:06 fetching corpus: 7750, signal 184260/198476 (executing program) 2025/08/29 12:41:06 fetching corpus: 7800, signal 184592/198489 (executing program) 2025/08/29 12:41:06 fetching corpus: 7850, signal 184871/198495 (executing program) 2025/08/29 12:41:07 fetching corpus: 7900, signal 185181/198497 (executing program) 2025/08/29 12:41:07 fetching corpus: 7950, signal 185482/198522 (executing program) 2025/08/29 12:41:07 fetching corpus: 8000, signal 185718/198527 (executing program) 2025/08/29 12:41:07 fetching corpus: 8050, signal 186154/198542 (executing program) 2025/08/29 12:41:07 fetching corpus: 8100, signal 186387/198549 (executing program) 2025/08/29 12:41:07 fetching corpus: 8150, signal 186602/198551 (executing program) 2025/08/29 12:41:07 fetching corpus: 8200, signal 187008/198556 (executing program) 2025/08/29 12:41:07 fetching corpus: 8250, signal 187351/198579 (executing program) 2025/08/29 12:41:07 fetching corpus: 8300, signal 187718/198579 (executing program) 2025/08/29 12:41:07 fetching corpus: 8350, signal 188058/198587 (executing program) 2025/08/29 12:41:07 fetching corpus: 8400, signal 188368/198590 (executing program) 2025/08/29 12:41:07 fetching corpus: 8450, signal 188644/198590 (executing program) 2025/08/29 12:41:08 fetching corpus: 8500, signal 188902/198590 (executing program) 2025/08/29 12:41:08 fetching corpus: 8550, signal 189214/198590 (executing program) 2025/08/29 12:41:08 fetching corpus: 8600, signal 189426/198593 (executing program) 2025/08/29 12:41:08 fetching corpus: 8650, signal 189743/198612 (executing program) 2025/08/29 12:41:08 fetching corpus: 8700, signal 189960/198629 (executing program) 2025/08/29 12:41:08 fetching corpus: 8750, signal 190150/198631 (executing program) 2025/08/29 12:41:08 fetching corpus: 8800, signal 190440/198635 (executing program) 2025/08/29 12:41:08 fetching corpus: 8850, signal 190643/198638 (executing program) 2025/08/29 12:41:08 fetching corpus: 8900, signal 190887/198677 (executing program) 2025/08/29 12:41:08 fetching corpus: 8950, signal 191132/198677 (executing program) 2025/08/29 12:41:08 fetching corpus: 9000, signal 191338/198679 (executing program) 2025/08/29 12:41:08 fetching corpus: 9050, signal 191559/198681 (executing program) 2025/08/29 12:41:09 fetching corpus: 9100, signal 191996/198689 (executing program) 2025/08/29 12:41:09 fetching corpus: 9150, signal 192205/198694 (executing program) 2025/08/29 12:41:09 fetching corpus: 9200, signal 192361/198698 (executing program) 2025/08/29 12:41:09 fetching corpus: 9250, signal 192596/198699 (executing program) 2025/08/29 12:41:09 fetching corpus: 9300, signal 192790/198706 (executing program) 2025/08/29 12:41:09 fetching corpus: 9350, signal 193112/198711 (executing program) 2025/08/29 12:41:09 fetching corpus: 9400, signal 193345/198724 (executing program) 2025/08/29 12:41:09 fetching corpus: 9450, signal 193547/198725 (executing program) 2025/08/29 12:41:09 fetching corpus: 9500, signal 193777/198726 (executing program) 2025/08/29 12:41:09 fetching corpus: 9550, signal 194075/198728 (executing program) 2025/08/29 12:41:09 fetching corpus: 9600, signal 194234/198736 (executing program) 2025/08/29 12:41:10 fetching corpus: 9650, signal 194427/198740 (executing program) 2025/08/29 12:41:10 fetching corpus: 9700, signal 194611/198741 (executing program) 2025/08/29 12:41:10 fetching corpus: 9741, signal 194798/198742 (executing program) 2025/08/29 12:41:10 fetching corpus: 9741, signal 194798/198742 (executing program) 2025/08/29 12:41:12 starting 8 fuzzer processes 12:41:12 executing program 0: r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x2000003, &(0x7f0000000200)=ANY=[]) unlinkat(r0, &(0x7f0000000040)='./file0\x00', 0x200) 12:41:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x2, 0x0, 0x0) 12:41:12 executing program 7: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x60000000}) dup2(r0, r1) 12:41:12 executing program 2: r0 = memfd_create(&(0x7f0000001b80)='(\\]@\'\x00', 0x4) fallocate(r0, 0x8, 0x0, 0x1) 12:41:12 executing program 5: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_WANTLQI(r0, 0x0, 0x3, 0x0, &(0x7f0000000100)) 12:41:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000006c0), r1) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}]}, 0x1c}}, 0x0) 12:41:12 executing program 6: pipe(&(0x7f0000000040)={0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setstatus(r1, 0x4, 0xc00) splice(r0, 0x0, r1, 0x0, 0x1, 0x0) 12:41:12 executing program 4: perf_event_open(&(0x7f0000000080)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 82.769158] audit: type=1400 audit(1756471272.748:7): avc: denied { execmem } for pid=272 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 84.004018] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 84.006130] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 84.008500] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 84.013585] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 84.016696] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 84.022503] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 84.024152] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 84.025641] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 84.030023] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 84.035832] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 84.074659] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 84.078650] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 84.090890] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 84.093449] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 84.094990] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 84.096143] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 84.099549] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 84.100375] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 84.101019] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 84.103126] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 84.103550] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 84.105085] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 84.108584] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 84.109999] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 84.111971] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 84.115943] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 84.118883] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 84.120369] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 84.122693] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 84.124892] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 84.127620] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 84.131650] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 84.133353] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 84.133928] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 84.135500] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 84.136622] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 84.146442] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 84.148342] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 84.148796] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 84.171536] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 86.101869] Bluetooth: hci1: command tx timeout [ 86.101926] Bluetooth: hci0: command tx timeout [ 86.165555] Bluetooth: hci2: command tx timeout [ 86.165566] Bluetooth: hci5: command tx timeout [ 86.228634] Bluetooth: hci7: command tx timeout [ 86.229394] Bluetooth: hci4: command tx timeout [ 86.229867] Bluetooth: hci3: command tx timeout [ 86.231076] Bluetooth: hci6: command tx timeout [ 88.148271] Bluetooth: hci0: command tx timeout [ 88.149665] Bluetooth: hci1: command tx timeout [ 88.212244] Bluetooth: hci2: command tx timeout [ 88.214211] Bluetooth: hci5: command tx timeout [ 88.277761] Bluetooth: hci3: command tx timeout [ 88.278514] Bluetooth: hci4: command tx timeout [ 88.279149] Bluetooth: hci6: command tx timeout [ 88.279344] Bluetooth: hci7: command tx timeout [ 90.196320] Bluetooth: hci1: command tx timeout [ 90.196356] Bluetooth: hci0: command tx timeout [ 90.260260] Bluetooth: hci5: command tx timeout [ 90.260576] Bluetooth: hci2: command tx timeout [ 90.324257] Bluetooth: hci6: command tx timeout [ 90.327362] Bluetooth: hci7: command tx timeout [ 90.327413] Bluetooth: hci4: command tx timeout [ 90.328114] Bluetooth: hci3: command tx timeout [ 92.244254] Bluetooth: hci1: command tx timeout [ 92.245363] Bluetooth: hci0: command tx timeout [ 92.308267] Bluetooth: hci2: command tx timeout [ 92.309222] Bluetooth: hci5: command tx timeout [ 92.372264] Bluetooth: hci7: command tx timeout [ 92.372282] Bluetooth: hci4: command tx timeout [ 92.372820] Bluetooth: hci3: command tx timeout [ 92.373238] Bluetooth: hci6: command tx timeout [ 120.845680] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.846538] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.054022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.054643] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:41:51 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) read(r1, &(0x7f0000000280)=""/71, 0x47) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x0) [ 122.013383] audit: type=1400 audit(1756471311.988:8): avc: denied { open } for pid=3830 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.020318] audit: type=1400 audit(1756471311.989:9): avc: denied { kernel } for pid=3830 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.088625] audit: type=1400 audit(1756471312.066:10): avc: denied { write } for pid=3830 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.235033] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.235974] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.314721] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.315567] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.436851] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.437803] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.513392] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.514019] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.601907] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.602541] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.667788] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.669665] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.737818] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 122.748704] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.749318] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:41:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x2, 0x0, 0x0) [ 122.800576] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.802203] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:41:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x2, 0x0, 0x0) 12:41:52 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) read(r1, &(0x7f0000000280)=""/71, 0x47) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x0) [ 122.922553] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.923148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:41:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x2, 0x0, 0x0) [ 122.991156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.991737] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:41:52 executing program 1: ptrace$setsig(0x4203, 0x0, 0x5, &(0x7f0000000000)={0x3f, 0x14, 0x2}) r0 = msgget(0x3, 0x0) msgsnd(r0, &(0x7f0000001000)=ANY=[@ANYRES64=r0], 0x1008, 0x800) msgctl$IPC_RMID(r0, 0x0) r1 = msgget(0x3, 0x4) r2 = msgget$private(0x0, 0x0) msgrcv(r2, &(0x7f0000000140)={0x0, ""/4096}, 0x1008, 0x0, 0x0) msgctl$IPC_SET(r2, 0x1, &(0x7f0000001180)={{0x2, 0xee00, 0xee01, 0xffffffffffffffff, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff}) r3 = msgget(0x0, 0x501) msgctl$IPC_RMID(r3, 0x0) msgctl$MSG_STAT_ANY(r1, 0xd, &(0x7f0000001240)=""/238) msgsnd(r2, &(0x7f0000001200)={0x2}, 0x8, 0x0) msgctl$IPC_RMID(r2, 0x0) 12:41:53 executing program 5: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_WANTLQI(r0, 0x0, 0x3, 0x0, &(0x7f0000000100)) [ 123.078688] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.079347] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:41:53 executing program 1: ptrace$setsig(0x4203, 0x0, 0x5, &(0x7f0000000000)={0x3f, 0x14, 0x2}) r0 = msgget(0x3, 0x0) msgsnd(r0, &(0x7f0000001000)=ANY=[@ANYRES64=r0], 0x1008, 0x800) msgctl$IPC_RMID(r0, 0x0) r1 = msgget(0x3, 0x4) r2 = msgget$private(0x0, 0x0) msgrcv(r2, &(0x7f0000000140)={0x0, ""/4096}, 0x1008, 0x0, 0x0) msgctl$IPC_SET(r2, 0x1, &(0x7f0000001180)={{0x2, 0xee00, 0xee01, 0xffffffffffffffff, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff}) r3 = msgget(0x0, 0x501) msgctl$IPC_RMID(r3, 0x0) msgctl$MSG_STAT_ANY(r1, 0xd, &(0x7f0000001240)=""/238) msgsnd(r2, &(0x7f0000001200)={0x2}, 0x8, 0x0) msgctl$IPC_RMID(r2, 0x0) [ 123.155373] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.156029] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.206695] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.207350] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.250288] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.250875] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.286123] audit: type=1400 audit(1756471313.265:11): avc: denied { block_suspend } for pid=3914 comm="syz-executor.7" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 12:41:53 executing program 0: syz_mount_image$iso9660(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) chmod(&(0x7f0000000040)='./file0\x00', 0xed41) creat(&(0x7f0000000040)='./file0/file0\x00', 0x408) 12:41:53 executing program 2: r0 = memfd_create(&(0x7f0000001b80)='(\\]@\'\x00', 0x4) fallocate(r0, 0x8, 0x0, 0x1) 12:41:53 executing program 1: ptrace$setsig(0x4203, 0x0, 0x5, &(0x7f0000000000)={0x3f, 0x14, 0x2}) r0 = msgget(0x3, 0x0) msgsnd(r0, &(0x7f0000001000)=ANY=[@ANYRES64=r0], 0x1008, 0x800) msgctl$IPC_RMID(r0, 0x0) r1 = msgget(0x3, 0x4) r2 = msgget$private(0x0, 0x0) msgrcv(r2, &(0x7f0000000140)={0x0, ""/4096}, 0x1008, 0x0, 0x0) msgctl$IPC_SET(r2, 0x1, &(0x7f0000001180)={{0x2, 0xee00, 0xee01, 0xffffffffffffffff, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff}) r3 = msgget(0x0, 0x501) msgctl$IPC_RMID(r3, 0x0) msgctl$MSG_STAT_ANY(r1, 0xd, &(0x7f0000001240)=""/238) msgsnd(r2, &(0x7f0000001200)={0x2}, 0x8, 0x0) msgctl$IPC_RMID(r2, 0x0) 12:41:53 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) read(r1, &(0x7f0000000280)=""/71, 0x47) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x0) 12:41:53 executing program 7: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x60000000}) dup2(r0, r1) 12:41:53 executing program 6: pipe(&(0x7f0000000040)={0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setstatus(r1, 0x4, 0xc00) splice(r0, 0x0, r1, 0x0, 0x1, 0x0) 12:41:53 executing program 4: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x60000000}) dup2(r0, r1) 12:41:53 executing program 5: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_WANTLQI(r0, 0x0, 0x3, 0x0, &(0x7f0000000100)) 12:41:53 executing program 5: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_WANTLQI(r0, 0x0, 0x3, 0x0, &(0x7f0000000100)) 12:41:53 executing program 6: pipe(&(0x7f0000000040)={0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setstatus(r1, 0x4, 0xc00) splice(r0, 0x0, r1, 0x0, 0x1, 0x0) 12:41:53 executing program 2: r0 = memfd_create(&(0x7f0000001b80)='(\\]@\'\x00', 0x4) fallocate(r0, 0x8, 0x0, 0x1) 12:41:54 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) read(r1, &(0x7f0000000280)=""/71, 0x47) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x0) 12:41:54 executing program 1: ptrace$setsig(0x4203, 0x0, 0x5, &(0x7f0000000000)={0x3f, 0x14, 0x2}) r0 = msgget(0x3, 0x0) msgsnd(r0, &(0x7f0000001000)=ANY=[@ANYRES64=r0], 0x1008, 0x800) msgctl$IPC_RMID(r0, 0x0) r1 = msgget(0x3, 0x4) r2 = msgget$private(0x0, 0x0) msgrcv(r2, &(0x7f0000000140)={0x0, ""/4096}, 0x1008, 0x0, 0x0) msgctl$IPC_SET(r2, 0x1, &(0x7f0000001180)={{0x2, 0xee00, 0xee01, 0xffffffffffffffff, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff}) r3 = msgget(0x0, 0x501) msgctl$IPC_RMID(r3, 0x0) msgctl$MSG_STAT_ANY(r1, 0xd, &(0x7f0000001240)=""/238) msgsnd(r2, &(0x7f0000001200)={0x2}, 0x8, 0x0) msgctl$IPC_RMID(r2, 0x0) 12:41:54 executing program 2: r0 = memfd_create(&(0x7f0000001b80)='(\\]@\'\x00', 0x4) fallocate(r0, 0x8, 0x0, 0x1) 12:41:54 executing program 5: arch_prctl$ARCH_GET_GS(0x1021, &(0x7f0000000140)) 12:41:54 executing program 6: pipe(&(0x7f0000000040)={0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setstatus(r1, 0x4, 0xc00) splice(r0, 0x0, r1, 0x0, 0x1, 0x0) 12:41:54 executing program 0: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$setlease(r0, 0x400, 0x7abbe907e4d1d80d) 12:41:54 executing program 4: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x60000000}) dup2(r0, r1) 12:41:54 executing program 7: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x60000000}) dup2(r0, r1) 12:41:54 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8931, &(0x7f0000000080)={'lo\x00', 0x0}) [ 124.818358] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI [ 124.819297] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 124.819885] CPU: 1 UID: 0 PID: 3951 Comm: syz-executor.4 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 124.821313] Tainted: [W]=WARN [ 124.822087] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 124.823633] RIP: 0010:perf_tp_event+0x175/0xe70 [ 124.824529] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 124.828363] RSP: 0018:ffff88804657f780 EFLAGS: 00010012 [ 124.829508] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 124.830064] RDX: ffff888017935280 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 124.830620] RBP: ffff88804657f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd162e8 [ 124.831179] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000 [ 124.831738] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 124.832301] FS: 0000555586579400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 124.832944] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.833402] CR2: 0000001b2d122000 CR3: 0000000009c11000 CR4: 0000000000350ef0 [ 124.833965] Call Trace: [ 124.834170] [ 124.834353] ? __ext4_journal_stop+0xe2/0x1f0 [ 124.834713] ? ext4_dirty_inode+0xf1/0x130 [ 124.835055] ? __mark_inode_dirty+0x1b7/0xd00 [ 124.835417] ? do_user_addr_fault+0x4fa/0xeb0 [ 124.835779] ? __pfx_perf_tp_event+0x10/0x10 [ 124.836134] ? lock_acquire+0x15e/0x2f0 [ 124.836452] ? __virt_addr_valid+0x1c6/0x5d0 [ 124.836809] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 124.837284] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 124.837758] ? lock_release+0xc8/0x290 [ 124.838072] ? kvm_sched_clock_read+0x16/0x30 [ 124.838439] ? sched_clock+0x37/0x60 [ 124.838746] ? lock_is_held_type+0x9e/0x120 [ 124.839096] ? perf_trace_run_bpf_submit+0xef/0x180 [ 124.839497] ? lock_is_held_type+0x9e/0x120 [ 124.839845] perf_trace_run_bpf_submit+0xef/0x180 [ 124.840241] perf_trace_preemptirq_template+0x259/0x430 [ 124.840666] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 124.841140] ? lock_is_held_type+0x9e/0x120 [ 124.841487] ? find_held_lock+0x2b/0x80 [ 124.841809] ? try_to_wake_up+0x8ae/0x11d0 [ 124.842154] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 124.842557] trace_irq_enable.constprop.0+0xa6/0x100 [ 124.842957] trace_hardirqs_on+0x26/0x40 [ 124.843280] _raw_spin_unlock_irqrestore+0x2c/0x50 [ 124.843674] try_to_wake_up+0x8ae/0x11d0 [ 124.844000] ? __pfx_try_to_wake_up+0x10/0x10 [ 124.844369] ? plist_del+0x122/0x270 [ 124.844673] ? find_held_lock+0x2b/0x80 [ 124.845006] ? futex_wake+0x474/0x540 [ 124.845314] wake_up_q+0xa1/0x130 [ 124.845598] futex_wake+0x47e/0x540 [ 124.845894] ? __pfx_futex_wake+0x10/0x10 [ 124.846228] ? __handle_mm_fault+0x753/0x3260 [ 124.846592] ? __lock_acquire+0x694/0x1b70 [ 124.846929] do_futex+0x26d/0x370 [ 124.847208] ? __pfx_do_futex+0x10/0x10 [ 124.847527] ? find_held_lock+0x2b/0x80 [ 124.847852] __x64_sys_futex+0x1c9/0x4d0 [ 124.848187] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 124.848655] ? __pfx___x64_sys_futex+0x10/0x10 [ 124.849036] do_syscall_64+0xbf/0x360 [ 124.849342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.849756] RIP: 0033:0x7f366ab97b19 [ 124.850057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.851504] RSP: 002b:00007ffce4de8788 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.852121] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f366ab97b19 [ 124.852689] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f366acaaf68 [ 124.853261] RBP: 00007f366acaaf60 R08: 0000001b2d12001c R09: 0000000000000000 [ 124.853831] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f366acafa98 [ 124.854402] R13: 00007ffce4de8890 R14: 00007f366acaaf60 R15: 000000000001e72e [ 124.854971] [ 124.855160] Modules linked in: [ 124.855425] ---[ end trace 0000000000000000 ]--- [ 124.855805] RIP: 0010:perf_tp_event+0x175/0xe70 [ 124.856192] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 124.857633] RSP: 0018:ffff88804657f780 EFLAGS: 00010012 [ 124.858061] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 124.858634] RDX: ffff888017935280 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 124.859207] RBP: ffff88804657f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd162e8 [ 124.859775] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000 [ 124.860344] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 124.860920] FS: 0000555586579400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 124.861549] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.862015] CR2: 0000001b2d122000 CR3: 0000000009c11000 CR4: 0000000000350ef0 [ 124.862585] note: syz-executor.4[3951] exited with irqs disabled [ 124.863116] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI [ 124.863996] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197] [ 124.864592] CPU: 1 UID: 0 PID: 3951 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 124.865531] Tainted: [D]=DIE, [W]=WARN [ 124.865836] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 124.866483] RIP: 0010:perf_tp_event+0x175/0xe70 [ 124.866857] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 124.868289] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012 [ 124.868705] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 124.869266] RDX: ffff888017935280 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 124.869826] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd162e8 [ 124.870383] R10: 0000000000000000 R11: ffff888016fe9498 R12: dffffc0000000000 [ 124.870940] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000 [ 124.871502] FS: 0000555586579400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 124.872135] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.872592] CR2: 0000001b2d122000 CR3: 0000000009c11000 CR4: 0000000000350ef0 [ 124.873158] Call Trace: [ 124.873369] [ 124.873549] ? __pfx_perf_tp_event+0x10/0x10 [ 124.873911] ? enqueue_task_fair+0xded/0x1e00 [ 124.874276] ? check_preempt_wakeup_fair+0x6e/0x950 [ 124.874677] ? wakeup_preempt+0x140/0x2a0 [ 124.875013] ? lock_release+0x1c7/0x290 [ 124.875337] ? lock_release+0x1c7/0x290 [ 124.875657] ? do_raw_spin_unlock+0x53/0x220 [ 124.876015] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 124.876423] ? try_to_wake_up+0x8ae/0x11d0 [ 124.876766] ? do_raw_spin_lock+0x123/0x260 [ 124.877119] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 124.877497] ? perf_trace_run_bpf_submit+0xef/0x180 [ 124.877896] perf_trace_run_bpf_submit+0xef/0x180 [ 124.878294] perf_trace_preemptirq_template+0x259/0x430 [ 124.878727] ? read_tsc+0x9/0x20 [ 124.879010] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 124.879480] ? clockevents_program_event+0x135/0x360 [ 124.879891] ? tick_program_event+0xac/0x140 [ 124.880242] ? handle_softirqs+0x16e/0x770 [ 124.880591] trace_irq_enable.constprop.0+0xa6/0x100 [ 124.881004] trace_hardirqs_on+0x26/0x40 [ 124.881328] handle_softirqs+0x16e/0x770 [ 124.881665] __irq_exit_rcu+0xc4/0x100 [ 124.881989] irq_exit_rcu+0x9/0x20 [ 124.882279] sysvec_apic_timer_interrupt+0x70/0x80 [ 124.882678] [ 124.882862] [ 124.883048] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 124.883463] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 124.883840] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de [ 124.885254] RSP: 0018:ffff88804657ff28 EFLAGS: 00000246 [ 124.885672] RAX: 0000000000000001 RBX: ffff888017935280 RCX: ffffffff817c2b86 [ 124.886226] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 124.886782] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 124.887337] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888017935280 [ 124.887893] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000 [ 124.888450] ? trace_irq_enable.constprop.0+0x26/0x100 [ 124.888866] ? make_task_dead+0x214/0x3b0 [ 124.889201] ? make_task_dead+0x214/0x3b0 [ 124.889531] ? do_syscall_64+0xbf/0x360 [ 124.889846] rewind_stack_and_make_dead+0x16/0x20 [ 124.890234] RIP: 0033:0x7f366ab97b19 [ 124.890528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.891929] RSP: 002b:00007ffce4de8788 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.892519] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f366ab97b19 [ 124.893081] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f366acaaf68 [ 124.893639] RBP: 00007f366acaaf60 R08: 0000001b2d12001c R09: 0000000000000000 [ 124.894192] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f366acafa98 [ 124.894748] R13: 00007ffce4de8890 R14: 00007f366acaaf60 R15: 000000000001e72e [ 124.895306] [ 124.895495] Modules linked in: [ 124.895752] ---[ end trace 0000000000000000 ]--- [ 124.896120] RIP: 0010:perf_tp_event+0x175/0xe70 [ 124.896495] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01 [ 124.897905] RSP: 0018:ffff88804657f780 EFLAGS: 00010012 [ 124.898322] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002 [ 124.898874] RDX: ffff888017935280 RSI: ffffffff818995b7 RDI: 0000000000000191 [ 124.899427] RBP: ffff88804657f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd162e8 [ 124.899980] R10: 0000000000000000 R11: ffff88806cf37018 R12: dffffc0000000000 [ 124.900534] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000 [ 124.901097] FS: 0000555586579400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 124.901722] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.902174] CR2: 0000001b2d122000 CR3: 0000000009c11000 CR4: 0000000000350ef0 [ 124.902732] Kernel panic - not syncing: Fatal exception in interrupt [ 124.903477] Kernel Offset: disabled [ 124.903763] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 12:41:54 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffffff8693100c RDX=1ffff11008c49ecd RSI=ffff88804624fa78 RDI=ffff88804624f668 RBP=ffff88804624fa78 RSP=ffff88804624f5d0 R8 =0000000000000001 R9 =ffff88804624f6a8 R10=000000000003be53 R11=000000000003e7ec R12=0000000000000008 R13=ffff88804624f6b0 R14=ffff88804624fa78 R15=ffff88804624f668 RIP=ffffffff8135818e RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555584aab400 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe5a00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555584aab708 CR3=00000000102ce000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88804657f0f0 R8 =0000000000000000 R9 =ffffed100156e046 R10=0000000000000038 R11=313030203a505352 R12=0000000000000038 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555586579400 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe1600000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d122000 CR3=0000000009c11000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000ff000000000000000000000000 XMM01=0000ff01000000000000000000000000 XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007f366ac7e7c800007f366ac7e7c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000