Warning: Permanently added '[localhost]:64260' (ECDSA) to the list of known hosts.
2025/08/29 13:16:00 fuzzer started
2025/08/29 13:16:00 dialing manager at localhost:43077
syzkaller login: [ 55.024636] cgroup: Unknown subsys name 'net'
[ 55.084785] cgroup: Unknown subsys name 'cpuset'
[ 55.112475] cgroup: Unknown subsys name 'rlimit'
2025/08/29 13:16:11 syscalls: 2214
2025/08/29 13:16:11 code coverage: enabled
2025/08/29 13:16:11 comparison tracing: enabled
2025/08/29 13:16:11 extra coverage: enabled
2025/08/29 13:16:11 setuid sandbox: enabled
2025/08/29 13:16:11 namespace sandbox: enabled
2025/08/29 13:16:11 Android sandbox: enabled
2025/08/29 13:16:11 fault injection: enabled
2025/08/29 13:16:11 leak checking: enabled
2025/08/29 13:16:11 net packet injection: enabled
2025/08/29 13:16:11 net device setup: enabled
2025/08/29 13:16:11 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 13:16:11 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 13:16:11 USB emulation: enabled
2025/08/29 13:16:11 hci packet injection: enabled
2025/08/29 13:16:11 wifi device emulation: enabled
2025/08/29 13:16:11 802.15.4 emulation: enabled
2025/08/29 13:16:11 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 13:16:11 fetching corpus: 50, signal 19779/23381 (executing program)
2025/08/29 13:16:11 fetching corpus: 100, signal 31761/36765 (executing program)
2025/08/29 13:16:11 fetching corpus: 150, signal 41363/47639 (executing program)
2025/08/29 13:16:11 fetching corpus: 200, signal 48627/56089 (executing program)
2025/08/29 13:16:11 fetching corpus: 250, signal 55532/64096 (executing program)
2025/08/29 13:16:11 fetching corpus: 300, signal 60408/70082 (executing program)
2025/08/29 13:16:11 fetching corpus: 350, signal 63176/74049 (executing program)
2025/08/29 13:16:12 fetching corpus: 400, signal 65993/77980 (executing program)
2025/08/29 13:16:12 fetching corpus: 450, signal 68519/81602 (executing program)
2025/08/29 13:16:12 fetching corpus: 500, signal 71685/85707 (executing program)
2025/08/29 13:16:12 fetching corpus: 550, signal 74596/89519 (executing program)
2025/08/29 13:16:12 fetching corpus: 600, signal 76481/92404 (executing program)
2025/08/29 13:16:12 fetching corpus: 650, signal 78861/95701 (executing program)
2025/08/29 13:16:12 fetching corpus: 700, signal 82069/99679 (executing program)
2025/08/29 13:16:12 fetching corpus: 750, signal 84061/102525 (executing program)
2025/08/29 13:16:12 fetching corpus: 800, signal 85641/104969 (executing program)
2025/08/29 13:16:12 fetching corpus: 850, signal 87691/107786 (executing program)
2025/08/29 13:16:12 fetching corpus: 900, signal 89676/110509 (executing program)
2025/08/29 13:16:12 fetching corpus: 950, signal 91519/113055 (executing program)
2025/08/29 13:16:13 fetching corpus: 1000, signal 92994/115309 (executing program)
2025/08/29 13:16:13 fetching corpus: 1050, signal 94710/117724 (executing program)
2025/08/29 13:16:13 fetching corpus: 1100, signal 95915/119732 (executing program)
2025/08/29 13:16:13 fetching corpus: 1150, signal 97479/121923 (executing program)
2025/08/29 13:16:13 fetching corpus: 1200, signal 98429/123682 (executing program)
2025/08/29 13:16:13 fetching corpus: 1250, signal 100184/125983 (executing program)
2025/08/29 13:16:13 fetching corpus: 1300, signal 103707/129591 (executing program)
2025/08/29 13:16:13 fetching corpus: 1350, signal 105722/132018 (executing program)
2025/08/29 13:16:13 fetching corpus: 1400, signal 107930/134510 (executing program)
2025/08/29 13:16:13 fetching corpus: 1450, signal 109395/136490 (executing program)
2025/08/29 13:16:13 fetching corpus: 1500, signal 110272/138032 (executing program)
2025/08/29 13:16:14 fetching corpus: 1550, signal 111435/139736 (executing program)
2025/08/29 13:16:14 fetching corpus: 1600, signal 113287/141849 (executing program)
2025/08/29 13:16:14 fetching corpus: 1650, signal 114507/143565 (executing program)
2025/08/29 13:16:14 fetching corpus: 1700, signal 115925/145345 (executing program)
2025/08/29 13:16:14 fetching corpus: 1750, signal 116967/146845 (executing program)
2025/08/29 13:16:14 fetching corpus: 1800, signal 118789/148961 (executing program)
2025/08/29 13:16:14 fetching corpus: 1850, signal 120202/150632 (executing program)
2025/08/29 13:16:14 fetching corpus: 1900, signal 121142/152040 (executing program)
2025/08/29 13:16:14 fetching corpus: 1950, signal 122312/153466 (executing program)
2025/08/29 13:16:14 fetching corpus: 2000, signal 123006/154651 (executing program)
2025/08/29 13:16:15 fetching corpus: 2050, signal 123959/155986 (executing program)
2025/08/29 13:16:15 fetching corpus: 2100, signal 125245/157483 (executing program)
2025/08/29 13:16:15 fetching corpus: 2150, signal 126157/158730 (executing program)
2025/08/29 13:16:15 fetching corpus: 2200, signal 127030/159937 (executing program)
2025/08/29 13:16:15 fetching corpus: 2250, signal 127823/161077 (executing program)
2025/08/29 13:16:15 fetching corpus: 2300, signal 128622/162210 (executing program)
2025/08/29 13:16:15 fetching corpus: 2350, signal 129729/163599 (executing program)
2025/08/29 13:16:15 fetching corpus: 2400, signal 130567/164758 (executing program)
2025/08/29 13:16:15 fetching corpus: 2450, signal 131478/165910 (executing program)
2025/08/29 13:16:15 fetching corpus: 2500, signal 132504/167101 (executing program)
2025/08/29 13:16:15 fetching corpus: 2550, signal 133460/168285 (executing program)
2025/08/29 13:16:16 fetching corpus: 2600, signal 133964/169204 (executing program)
2025/08/29 13:16:16 fetching corpus: 2650, signal 134632/170169 (executing program)
2025/08/29 13:16:16 fetching corpus: 2700, signal 135769/171346 (executing program)
2025/08/29 13:16:16 fetching corpus: 2750, signal 136663/172351 (executing program)
2025/08/29 13:16:16 fetching corpus: 2800, signal 137644/173450 (executing program)
2025/08/29 13:16:16 fetching corpus: 2850, signal 138547/174442 (executing program)
2025/08/29 13:16:16 fetching corpus: 2900, signal 139251/175360 (executing program)
2025/08/29 13:16:16 fetching corpus: 2950, signal 139928/176198 (executing program)
2025/08/29 13:16:16 fetching corpus: 3000, signal 140528/176999 (executing program)
2025/08/29 13:16:16 fetching corpus: 3050, signal 141122/177803 (executing program)
2025/08/29 13:16:16 fetching corpus: 3100, signal 142128/178774 (executing program)
2025/08/29 13:16:17 fetching corpus: 3150, signal 142668/179563 (executing program)
2025/08/29 13:16:17 fetching corpus: 3200, signal 143463/180434 (executing program)
2025/08/29 13:16:17 fetching corpus: 3250, signal 144092/181211 (executing program)
2025/08/29 13:16:17 fetching corpus: 3300, signal 144817/182066 (executing program)
2025/08/29 13:16:17 fetching corpus: 3350, signal 145546/182827 (executing program)
2025/08/29 13:16:17 fetching corpus: 3400, signal 146366/183649 (executing program)
2025/08/29 13:16:17 fetching corpus: 3450, signal 146941/184430 (executing program)
2025/08/29 13:16:17 fetching corpus: 3500, signal 147573/185101 (executing program)
2025/08/29 13:16:17 fetching corpus: 3550, signal 148346/185876 (executing program)
2025/08/29 13:16:17 fetching corpus: 3600, signal 148815/186561 (executing program)
2025/08/29 13:16:18 fetching corpus: 3650, signal 149253/187186 (executing program)
2025/08/29 13:16:18 fetching corpus: 3700, signal 149784/187830 (executing program)
2025/08/29 13:16:18 fetching corpus: 3750, signal 150638/188531 (executing program)
2025/08/29 13:16:18 fetching corpus: 3800, signal 151061/189099 (executing program)
2025/08/29 13:16:18 fetching corpus: 3850, signal 151896/189802 (executing program)
2025/08/29 13:16:18 fetching corpus: 3900, signal 152417/190435 (executing program)
2025/08/29 13:16:18 fetching corpus: 3950, signal 153060/191177 (executing program)
2025/08/29 13:16:18 fetching corpus: 4000, signal 153870/191945 (executing program)
2025/08/29 13:16:18 fetching corpus: 4050, signal 154625/192575 (executing program)
2025/08/29 13:16:18 fetching corpus: 4100, signal 155351/193140 (executing program)
2025/08/29 13:16:18 fetching corpus: 4150, signal 155883/193680 (executing program)
2025/08/29 13:16:19 fetching corpus: 4200, signal 156574/194267 (executing program)
2025/08/29 13:16:19 fetching corpus: 4250, signal 157058/194758 (executing program)
2025/08/29 13:16:19 fetching corpus: 4300, signal 157629/195263 (executing program)
2025/08/29 13:16:19 fetching corpus: 4350, signal 158232/195773 (executing program)
2025/08/29 13:16:19 fetching corpus: 4400, signal 158590/196234 (executing program)
2025/08/29 13:16:19 fetching corpus: 4450, signal 159908/196772 (executing program)
2025/08/29 13:16:19 fetching corpus: 4500, signal 160347/197206 (executing program)
2025/08/29 13:16:19 fetching corpus: 4550, signal 160638/197667 (executing program)
2025/08/29 13:16:19 fetching corpus: 4600, signal 161072/198106 (executing program)
2025/08/29 13:16:19 fetching corpus: 4650, signal 161551/198527 (executing program)
2025/08/29 13:16:19 fetching corpus: 4700, signal 161971/198960 (executing program)
2025/08/29 13:16:20 fetching corpus: 4750, signal 162329/199360 (executing program)
2025/08/29 13:16:20 fetching corpus: 4800, signal 162869/199965 (executing program)
2025/08/29 13:16:20 fetching corpus: 4850, signal 163215/200108 (executing program)
2025/08/29 13:16:20 fetching corpus: 4900, signal 163494/200108 (executing program)
2025/08/29 13:16:20 fetching corpus: 4950, signal 163997/200122 (executing program)
2025/08/29 13:16:20 fetching corpus: 5000, signal 164446/200139 (executing program)
2025/08/29 13:16:20 fetching corpus: 5050, signal 164777/200149 (executing program)
2025/08/29 13:16:20 fetching corpus: 5100, signal 165077/200152 (executing program)
2025/08/29 13:16:20 fetching corpus: 5150, signal 165367/200158 (executing program)
2025/08/29 13:16:20 fetching corpus: 5200, signal 165969/200174 (executing program)
2025/08/29 13:16:20 fetching corpus: 5250, signal 166401/200175 (executing program)
2025/08/29 13:16:21 fetching corpus: 5300, signal 166937/200181 (executing program)
2025/08/29 13:16:21 fetching corpus: 5350, signal 167290/200181 (executing program)
2025/08/29 13:16:21 fetching corpus: 5400, signal 167747/200196 (executing program)
2025/08/29 13:16:21 fetching corpus: 5450, signal 168202/200210 (executing program)
2025/08/29 13:16:21 fetching corpus: 5500, signal 168814/200211 (executing program)
2025/08/29 13:16:21 fetching corpus: 5550, signal 169096/200219 (executing program)
2025/08/29 13:16:21 fetching corpus: 5600, signal 169583/200222 (executing program)
2025/08/29 13:16:21 fetching corpus: 5650, signal 169843/200226 (executing program)
2025/08/29 13:16:21 fetching corpus: 5700, signal 170297/200259 (executing program)
2025/08/29 13:16:21 fetching corpus: 5750, signal 170636/200268 (executing program)
2025/08/29 13:16:21 fetching corpus: 5800, signal 171041/200270 (executing program)
2025/08/29 13:16:21 fetching corpus: 5850, signal 171382/200280 (executing program)
2025/08/29 13:16:22 fetching corpus: 5900, signal 171683/200296 (executing program)
2025/08/29 13:16:22 fetching corpus: 5950, signal 172075/200299 (executing program)
2025/08/29 13:16:22 fetching corpus: 6000, signal 172396/200299 (executing program)
2025/08/29 13:16:22 fetching corpus: 6050, signal 172674/200311 (executing program)
2025/08/29 13:16:22 fetching corpus: 6100, signal 173040/200359 (executing program)
2025/08/29 13:16:22 fetching corpus: 6150, signal 173282/200359 (executing program)
2025/08/29 13:16:22 fetching corpus: 6200, signal 173674/200361 (executing program)
2025/08/29 13:16:22 fetching corpus: 6250, signal 173982/200490 (executing program)
2025/08/29 13:16:22 fetching corpus: 6300, signal 174228/200494 (executing program)
2025/08/29 13:16:22 fetching corpus: 6350, signal 174677/200501 (executing program)
2025/08/29 13:16:22 fetching corpus: 6400, signal 174906/200511 (executing program)
2025/08/29 13:16:22 fetching corpus: 6450, signal 175262/200514 (executing program)
2025/08/29 13:16:22 fetching corpus: 6500, signal 175599/200524 (executing program)
2025/08/29 13:16:23 fetching corpus: 6550, signal 175894/200528 (executing program)
2025/08/29 13:16:23 fetching corpus: 6600, signal 176369/200530 (executing program)
2025/08/29 13:16:23 fetching corpus: 6650, signal 176709/200536 (executing program)
2025/08/29 13:16:23 fetching corpus: 6700, signal 177094/200553 (executing program)
2025/08/29 13:16:23 fetching corpus: 6750, signal 177491/200559 (executing program)
2025/08/29 13:16:23 fetching corpus: 6800, signal 177788/200562 (executing program)
2025/08/29 13:16:23 fetching corpus: 6850, signal 178382/200567 (executing program)
2025/08/29 13:16:23 fetching corpus: 6900, signal 178627/200576 (executing program)
2025/08/29 13:16:23 fetching corpus: 6950, signal 179012/200578 (executing program)
2025/08/29 13:16:23 fetching corpus: 7000, signal 179328/200582 (executing program)
2025/08/29 13:16:23 fetching corpus: 7050, signal 179589/200607 (executing program)
2025/08/29 13:16:23 fetching corpus: 7100, signal 179811/200616 (executing program)
2025/08/29 13:16:23 fetching corpus: 7150, signal 180147/200636 (executing program)
2025/08/29 13:16:24 fetching corpus: 7200, signal 180458/200655 (executing program)
2025/08/29 13:16:24 fetching corpus: 7250, signal 180843/200665 (executing program)
2025/08/29 13:16:24 fetching corpus: 7300, signal 181132/200689 (executing program)
2025/08/29 13:16:24 fetching corpus: 7350, signal 181473/200697 (executing program)
2025/08/29 13:16:24 fetching corpus: 7400, signal 181686/200700 (executing program)
2025/08/29 13:16:24 fetching corpus: 7450, signal 181851/200710 (executing program)
2025/08/29 13:16:24 fetching corpus: 7500, signal 182074/200729 (executing program)
2025/08/29 13:16:24 fetching corpus: 7550, signal 182848/200815 (executing program)
2025/08/29 13:16:24 fetching corpus: 7600, signal 183134/200818 (executing program)
2025/08/29 13:16:24 fetching corpus: 7650, signal 183321/200821 (executing program)
2025/08/29 13:16:24 fetching corpus: 7700, signal 183530/200825 (executing program)
2025/08/29 13:16:24 fetching corpus: 7750, signal 183975/200841 (executing program)
2025/08/29 13:16:24 fetching corpus: 7800, signal 184316/200846 (executing program)
2025/08/29 13:16:25 fetching corpus: 7850, signal 184563/200848 (executing program)
2025/08/29 13:16:25 fetching corpus: 7900, signal 184980/200880 (executing program)
2025/08/29 13:16:25 fetching corpus: 7950, signal 185267/200897 (executing program)
2025/08/29 13:16:25 fetching corpus: 8000, signal 185606/200900 (executing program)
2025/08/29 13:16:25 fetching corpus: 8050, signal 185891/200901 (executing program)
2025/08/29 13:16:25 fetching corpus: 8100, signal 186182/200906 (executing program)
2025/08/29 13:16:25 fetching corpus: 8150, signal 186427/200908 (executing program)
2025/08/29 13:16:25 fetching corpus: 8200, signal 186674/200932 (executing program)
2025/08/29 13:16:25 fetching corpus: 8250, signal 187169/200940 (executing program)
2025/08/29 13:16:25 fetching corpus: 8300, signal 187466/201029 (executing program)
2025/08/29 13:16:25 fetching corpus: 8350, signal 187705/201030 (executing program)
2025/08/29 13:16:26 fetching corpus: 8400, signal 187958/201032 (executing program)
2025/08/29 13:16:26 fetching corpus: 8450, signal 188176/201044 (executing program)
2025/08/29 13:16:26 fetching corpus: 8500, signal 188428/201053 (executing program)
2025/08/29 13:16:26 fetching corpus: 8550, signal 188708/201059 (executing program)
2025/08/29 13:16:26 fetching corpus: 8600, signal 189065/201059 (executing program)
2025/08/29 13:16:26 fetching corpus: 8650, signal 189427/201059 (executing program)
2025/08/29 13:16:26 fetching corpus: 8700, signal 189721/201062 (executing program)
2025/08/29 13:16:26 fetching corpus: 8750, signal 189887/201065 (executing program)
2025/08/29 13:16:26 fetching corpus: 8800, signal 190293/201069 (executing program)
2025/08/29 13:16:26 fetching corpus: 8850, signal 190519/201070 (executing program)
2025/08/29 13:16:26 fetching corpus: 8900, signal 190712/201081 (executing program)
2025/08/29 13:16:26 fetching corpus: 8950, signal 190937/201083 (executing program)
2025/08/29 13:16:27 fetching corpus: 9000, signal 191195/201086 (executing program)
2025/08/29 13:16:27 fetching corpus: 9050, signal 191501/201092 (executing program)
2025/08/29 13:16:27 fetching corpus: 9100, signal 191707/201101 (executing program)
2025/08/29 13:16:27 fetching corpus: 9150, signal 191928/201106 (executing program)
2025/08/29 13:16:27 fetching corpus: 9200, signal 192080/201132 (executing program)
2025/08/29 13:16:27 fetching corpus: 9250, signal 192291/201137 (executing program)
2025/08/29 13:16:27 fetching corpus: 9300, signal 192484/201143 (executing program)
2025/08/29 13:16:27 fetching corpus: 9350, signal 192728/201189 (executing program)
2025/08/29 13:16:27 fetching corpus: 9400, signal 193138/201226 (executing program)
2025/08/29 13:16:27 fetching corpus: 9450, signal 193337/201227 (executing program)
2025/08/29 13:16:27 fetching corpus: 9500, signal 193562/201227 (executing program)
2025/08/29 13:16:27 fetching corpus: 9550, signal 193983/201227 (executing program)
2025/08/29 13:16:27 fetching corpus: 9600, signal 194231/201233 (executing program)
2025/08/29 13:16:28 fetching corpus: 9650, signal 194560/201234 (executing program)
2025/08/29 13:16:28 fetching corpus: 9700, signal 194702/201240 (executing program)
2025/08/29 13:16:28 fetching corpus: 9750, signal 194940/201249 (executing program)
2025/08/29 13:16:28 fetching corpus: 9800, signal 195176/201249 (executing program)
2025/08/29 13:16:28 fetching corpus: 9850, signal 195599/201256 (executing program)
2025/08/29 13:16:28 fetching corpus: 9900, signal 195814/201256 (executing program)
2025/08/29 13:16:28 fetching corpus: 9950, signal 196032/201256 (executing program)
2025/08/29 13:16:28 fetching corpus: 10000, signal 196268/201274 (executing program)
2025/08/29 13:16:28 fetching corpus: 10050, signal 196472/201276 (executing program)
2025/08/29 13:16:28 fetching corpus: 10100, signal 196676/201291 (executing program)
2025/08/29 13:16:28 fetching corpus: 10150, signal 196871/201299 (executing program)
2025/08/29 13:16:29 fetching corpus: 10200, signal 197074/201342 (executing program)
2025/08/29 13:16:29 fetching corpus: 10238, signal 197228/201381 (executing program)
2025/08/29 13:16:29 fetching corpus: 10238, signal 197228/201381 (executing program)
2025/08/29 13:16:31 starting 8 fuzzer processes
13:16:31 executing program 0:
getresuid(&(0x7f0000006fc0), &(0x7f0000007000), &(0x7f0000007040))
13:16:31 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = gettid()
rt_sigqueueinfo(r0, 0x0, &(0x7f0000000000))
13:16:31 executing program 5:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCADDRT(r0, 0x890b, 0x0)
13:16:31 executing program 7:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x17, 0x0, 0x0)
13:16:31 executing program 2:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
13:16:31 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0)
epoll_create1(0x0)
13:16:31 executing program 6:
syz_emit_ethernet(0x4e, &(0x7f00000002c0)={@link_local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "2f2802", 0x18, 0x0, 0x0, @local, @local, {[@srh={0x0, 0x2, 0x4, 0xf, 0x0, 0x0, 0x0, [@mcast2]}]}}}}}, 0x0)
13:16:31 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fchdir(r0)
[ 86.178735] audit: type=1400 audit(1756473391.659:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[ 87.419580] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 87.424548] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 87.427381] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 87.432174] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 87.435663] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 87.494425] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 87.498628] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 87.500549] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 87.504559] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 87.506409] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 87.508554] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 87.512282] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 87.516409] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 87.519845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 87.521517] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 87.523531] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 87.529505] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 87.539679] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 87.543538] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 87.544574] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 87.565090] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 87.567998] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 87.569971] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 87.585693] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 87.599096] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 87.604827] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 87.608268] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 87.616605] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 87.639502] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 87.644010] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 87.657518] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 87.659658] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 87.661638] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 87.665239] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 87.667567] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 87.674746] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 87.686428] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 87.690339] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 87.695069] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 87.697525] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 89.455531] Bluetooth: hci0: command tx timeout
[ 89.582566] Bluetooth: hci1: command tx timeout
[ 89.583205] Bluetooth: hci3: command tx timeout
[ 89.646207] Bluetooth: hci4: command tx timeout
[ 89.646899] Bluetooth: hci2: command tx timeout
[ 89.712240] Bluetooth: hci5: command tx timeout
[ 89.774193] Bluetooth: hci6: command tx timeout
[ 89.774859] Bluetooth: hci7: command tx timeout
[ 91.503302] Bluetooth: hci0: command tx timeout
[ 91.630212] Bluetooth: hci1: command tx timeout
[ 91.630670] Bluetooth: hci3: command tx timeout
[ 91.694274] Bluetooth: hci4: command tx timeout
[ 91.694734] Bluetooth: hci2: command tx timeout
[ 91.758310] Bluetooth: hci5: command tx timeout
[ 91.822180] Bluetooth: hci7: command tx timeout
[ 91.822638] Bluetooth: hci6: command tx timeout
[ 93.551308] Bluetooth: hci0: command tx timeout
[ 93.678173] Bluetooth: hci3: command tx timeout
[ 93.678633] Bluetooth: hci1: command tx timeout
[ 93.742272] Bluetooth: hci2: command tx timeout
[ 93.742718] Bluetooth: hci4: command tx timeout
[ 93.806147] Bluetooth: hci5: command tx timeout
[ 93.870958] Bluetooth: hci7: command tx timeout
[ 93.871544] Bluetooth: hci6: command tx timeout
[ 95.598624] Bluetooth: hci0: command tx timeout
[ 95.728154] Bluetooth: hci1: command tx timeout
[ 95.728622] Bluetooth: hci3: command tx timeout
[ 95.790185] Bluetooth: hci4: command tx timeout
[ 95.790642] Bluetooth: hci2: command tx timeout
[ 95.854271] Bluetooth: hci5: command tx timeout
[ 95.920177] Bluetooth: hci6: command tx timeout
[ 95.920644] Bluetooth: hci7: command tx timeout
[ 123.946232] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.946908] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 124.123280] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.123912] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 124.446976] audit: type=1400 audit(1756473429.933:8): avc: denied { open } for pid=3745 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 124.452343] audit: type=1400 audit(1756473429.933:9): avc: denied { kernel } for pid=3745 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
13:17:10 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0)
epoll_create1(0x0)
13:17:10 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0)
epoll_create1(0x0)
[ 124.640938] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.642009] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:17:10 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0)
epoll_create1(0x0)
[ 124.776908] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.777827] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:17:10 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0)
epoll_create1(0x0)
[ 124.917708] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 124.918422] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:17:10 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0)
epoll_create1(0x0)
[ 125.070162] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.070733] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:17:10 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000080), 0x0)
epoll_create1(0x0)
13:17:10 executing program 3:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0xc0f85403, &(0x7f0000000500)={{0x1}})
13:17:11 executing program 3:
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x17)
mbind(&(0x7f0000872000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
munmap(&(0x7f0000874000/0x1000)=nil, 0x1000)
mbind(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x3)
[ 125.558583] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.559633] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 125.740983] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.742232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.294324] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.295569] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.482231] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.483665] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.617461] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.618135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.725370] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.726013] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.887242] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.887891] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.934590] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.935258] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.236664] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.238045] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.274395] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.275898] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:17:12 executing program 0:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
13:17:12 executing program 5:
fork()
ioprio_get$pid(0x2, 0x0)
13:17:12 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
13:17:12 executing program 4:
syz_io_uring_setup(0x3f13, &(0x7f00000001c0)={0x0, 0x0, 0x20}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff9000/0x6000)=nil, &(0x7f0000000240), &(0x7f0000000280))
13:17:12 executing program 3:
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x17)
mbind(&(0x7f0000872000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
munmap(&(0x7f0000874000/0x1000)=nil, 0x1000)
mbind(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x3)
13:17:12 executing program 2:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
13:17:12 executing program 7:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
chown(&(0x7f0000000040)='./file0\x00', 0xee01, 0xee01)
13:17:12 executing program 6:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
[ 127.541935] audit: type=1400 audit(1756473433.026:10): avc: denied { watch_reads } for pid=3924 comm="syz-executor.7" path="/syzkaller-testdir803216715/syzkaller.AEkCch/1" dev="sda" ino=15974 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1
13:17:13 executing program 4:
syz_emit_ethernet(0x76, &(0x7f00000005c0)={@multicast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x40, 0x3a, 0x0, @empty, @mcast2, {[], @time_exceed={0x3, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "ec3ba1", 0x0, 0x0, 0x0, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', [@dstopts={0x11, 0x0, '\x00', [@generic]}]}}}}}}}, 0x0)
13:17:13 executing program 2:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
13:17:13 executing program 3:
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x17)
mbind(&(0x7f0000872000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
munmap(&(0x7f0000874000/0x1000)=nil, 0x1000)
mbind(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x3)
13:17:13 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x13, r2, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0, 0x0)
mbind(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x2, &(0x7f0000000000)=0x1, 0x8, 0x1)
13:17:13 executing program 7:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
chown(&(0x7f0000000040)='./file0\x00', 0xee01, 0xee01)
13:17:13 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$cgroup(0x0, &(0x7f0000000080)='./mnt\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@name={'name', 0x3d, 'batadv_slave_0\x00'}}]})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2, 0x10, 0xffffffffffffffff, 0x0)
13:17:13 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x13, r2, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0, 0x0)
mbind(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x2, &(0x7f0000000000)=0x1, 0x8, 0x1)
[ 127.752509] cgroup: No subsys list or none specified
13:17:13 executing program 2:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
[ 127.777400] cgroup: No subsys list or none specified
13:17:13 executing program 0:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
13:17:13 executing program 4:
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x44000)
io_submit(0x0, 0x1, &(0x7f0000000040)=[0x0])
ioctl$FIOCLEX(0xffffffffffffffff, 0x5451)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x240, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
13:17:13 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
13:17:13 executing program 7:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0xd4000a8b)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
chown(&(0x7f0000000040)='./file0\x00', 0xee01, 0xee01)
13:17:13 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x13, r2, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0, 0x0)
mbind(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x2, &(0x7f0000000000)=0x1, 0x8, 0x1)
13:17:13 executing program 6:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fallocate(r2, 0x0, 0x0, 0x1)
fallocate(r2, 0x20, 0x0, 0x100000000)
write(r2, &(0x7f00000001c0)='p', 0x1)
dup2(r0, r1)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
13:17:13 executing program 3:
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x17)
mbind(&(0x7f0000872000/0x1000)=nil, 0x1000, 0x1, 0x0, 0x0, 0x0)
munmap(&(0x7f0000874000/0x1000)=nil, 0x1000)
mbind(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x3)
[ 127.925760] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[ 127.926701] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 127.927390] CPU: 1 UID: 0 PID: 3955 Comm: syz-executor.6 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 127.928340] Tainted: [W]=WARN
[ 127.929128] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 127.930952] RIP: 0010:perf_tp_event+0x175/0xe70
[ 127.931957] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 127.935802] RSP: 0018:ffff888013f2f780 EFLAGS: 00010012
[ 127.935814] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc9000741f000
[ 127.935823] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 127.935831] RBP: ffff888013f2f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15f28
[ 127.935840] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 127.935847] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 127.935858] FS: 00007f1298d6f700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 127.935870] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 127.935878] CR2: 0000001b2d425000 CR3: 000000000e5e4000 CR4: 0000000000350ef0
[ 127.935886] Call Trace:
[ 127.935891]
[ 127.935897] ? __pfx_perf_tp_event+0x10/0x10
[ 127.935914] ? __lock_acquire+0x694/0x1b70
[ 127.935932] ? lock_acquire+0x15e/0x2f0
[ 127.935945] ? __is_insn_slot_addr+0x2e/0x290
[ 127.935965] ? find_held_lock+0x2b/0x80
[ 127.935983] ? __is_insn_slot_addr+0x136/0x290
[ 127.936000] ? lock_release+0xc8/0x290
[ 127.936014] ? __is_insn_slot_addr+0x140/0x290
[ 127.936032] ? kernel_text_address+0x5b/0xc0
[ 127.936048] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 127.936064] ? __kernel_text_address+0xd/0x40
[ 127.936078] ? unwind_get_return_address+0x59/0xa0
[ 127.936099] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 127.936113] ? arch_stack_walk+0x9c/0xf0
[ 127.936127] ? perf_trace_run_bpf_submit+0xef/0x180
[ 127.936143] ? trace_sched_set_need_resched_tp+0xd4/0x110
[ 127.936268] perf_trace_run_bpf_submit+0xef/0x180
[ 127.936287] perf_trace_preemptirq_template+0x259/0x430
[ 127.936310] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 127.936329] ? __pfx___resched_curr+0x10/0x10
[ 127.936347] ? find_held_lock+0x2b/0x80
[ 127.936364] ? try_to_wake_up+0x8ae/0x11d0
[ 127.936381] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 127.936399] trace_irq_enable.constprop.0+0xa6/0x100
[ 127.936411] trace_hardirqs_on+0x26/0x40
[ 127.936421] _raw_spin_unlock_irqrestore+0x2c/0x50
[ 127.936437] try_to_wake_up+0x8ae/0x11d0
[ 127.936454] ? __pfx_try_to_wake_up+0x10/0x10
[ 127.936470] ? plist_del+0x122/0x270
[ 127.936485] ? find_held_lock+0x2b/0x80
[ 127.936502] ? futex_wake+0x474/0x540
[ 127.936519] wake_up_q+0xa1/0x130
[ 127.936535] futex_wake+0x47e/0x540
[ 127.936551] ? __pfx_futex_wake+0x10/0x10
[ 127.936566] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 127.936578] ? kasan_quarantine_put+0x84/0x1e0
[ 127.936593] ? kmem_cache_free+0x2a1/0x540
[ 127.936605] ? putname.part.0+0x11b/0x160
[ 127.936623] do_futex+0x26d/0x370
[ 127.936637] ? __pfx_do_futex+0x10/0x10
[ 127.936650] ? __pfx_do_sys_openat2+0x10/0x10
[ 127.936669] __x64_sys_futex+0x1c9/0x4d0
[ 127.936683] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 127.936702] ? __pfx___x64_sys_futex+0x10/0x10
[ 127.936716] ? xfd_validate_state+0x55/0x180
[ 127.936736] do_syscall_64+0xbf/0x360
[ 127.936747] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 127.936760] RIP: 0033:0x7f129b7f9b19
[ 127.936769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 127.936780] RSP: 002b:00007f1298d6f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 127.936792] RAX: ffffffffffffffda RBX: 00007f129b90cf68 RCX: 00007f129b7f9b19
[ 127.936800] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f129b90cf6c
[ 127.936807] RBP: 00007f129b90cf60 R08: 000000000000000e R09: 0000000000000000
[ 127.936814] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f129b90cf6c
[ 127.936822] R13: 00007fffdc09420f R14: 00007f1298d6f300 R15: 0000000000022000
[ 127.936833]
[ 127.936837] Modules linked in:
[ 127.936845] ---[ end trace 0000000000000000 ]---
[ 127.936849] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[ 127.936851] RIP: 0010:perf_tp_event+0x175/0xe70
[ 127.936869] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 127.936874] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 127.936882] RSP: 0018:ffff888013f2f780 EFLAGS: 00010012
[ 127.936893] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc9000741f000
[ 127.936894] CPU: 0 UID: 0 PID: 3962 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 127.936902] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 127.936911] RBP: ffff888013f2f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15f28
[ 127.936921] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 127.936923] Tainted: [D]=DIE, [W]=WARN
[ 127.936929] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 127.936931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 127.936942] FS: 00007f1298d6f700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 127.936954] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 127.936942] RIP: 0010:perf_tp_event+0x175/0xe70
[ 127.936963] CR2: 0000001b2d425000 CR3: 000000000e5e4000 CR4: 0000000000350ef0
[ 127.936975] note: syz-executor.6[3955] exited with irqs disabled
[ 127.936973] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 127.936990] RSP: 0018:ffff88804827f780 EFLAGS: 00010012
[ 127.937006] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc900021f6000
[ 127.937017] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[ 127.937028] RBP: ffff88804827f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc15f28
[ 127.937039] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 127.937049] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[ 127.937062] FS: 00007fd5ad9f8700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 127.937077] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 127.937088] CR2: 00007fd5b0596018 CR3: 0000000046333000 CR4: 0000000000350ef0
[ 127.937099] Call Trace:
[ 127.937104]
[ 127.937111] ? lock_acquire+0x18c/0x2f0
[ 127.937134] ? __pfx_perf_tp_event+0x10/0x10
[ 127.937154] ? __pfx_lru_add+0x10/0x10
[ 127.937177] ? lock_release+0x1c7/0x290
[ 127.937195] ? do_raw_spin_lock+0x123/0x260
[ 127.937215] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 127.937239] ? __pte_offset_map_lock+0x190/0x330
[ 127.937258] ? css_rstat_updated+0x1b8/0x4d0
[ 127.937282] ? __pfx_css_rstat_updated+0x10/0x10
[ 127.937303] ? __pfx_css_rstat_updated+0x10/0x10
[ 127.937325] ? __pfx_css_rstat_updated+0x10/0x10
[ 127.937346] ? lock_release+0x1c7/0x290
[ 127.937365] ? folios_put_refs+0x3ad/0x480
[ 127.937389] ? perf_trace_run_bpf_submit+0xef/0x180
[ 127.937410] perf_trace_run_bpf_submit+0xef/0x180
[ 127.937434] perf_trace_preemptirq_template+0x259/0x430
[ 127.937461] ? trace_sched_set_need_resched_tp+0xd4/0x110
[ 127.937487] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 127.937513] ? __pfx___resched_curr+0x10/0x10
[ 127.937537] ? check_preempt_wakeup_fair+0x406/0x950
[ 127.937557] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 127.937579] trace_irq_enable.constprop.0+0xa6/0x100
[ 127.937594] trace_hardirqs_on+0x26/0x40
[ 127.937608] _raw_spin_unlock_irqrestore+0x2c/0x50
[ 127.937628] try_to_wake_up+0x8ae/0x11d0
[ 127.937651] ? __pfx_try_to_wake_up+0x10/0x10
[ 127.937673] ? plist_del+0x122/0x270
[ 127.937693] ? __futex_unqueue+0xda/0x1c0
[ 127.937711] wake_up_q+0xa1/0x130
[ 127.937733] futex_wake+0x47e/0x540
[ 127.937754] ? __pfx_futex_wake+0x10/0x10
[ 127.937776] ? madvise_unlock+0x7c/0x220
[ 127.937796] do_futex+0x26d/0x370
[ 127.937813] ? __pfx_do_futex+0x10/0x10
[ 127.937831] ? count_memcg_events+0x32b/0x420
[ 127.937855] __x64_sys_futex+0x1c9/0x4d0
[ 127.937873] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 127.937899] ? __pfx___x64_sys_futex+0x10/0x10
[ 127.937921] do_syscall_64+0xbf/0x360
[ 127.937935] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 127.937952] RIP: 0033:0x7fd5b0482b19
[ 127.937963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 127.937978] RSP: 002b:00007fd5ad9f8218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 127.937993] RAX: ffffffffffffffda RBX: 00007fd5b0595f68 RCX: 00007fd5b0482b19
[ 127.938003] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd5b0595f6c
[ 127.938013] RBP: 00007fd5b0595f60 R08: 000000000000000e R09: 0000000000000000
[ 127.938023] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5b0595f6c
[ 127.938033] R13: 00007ffe90352b0f R14: 00007fd5ad9f8300 R15: 0000000000022000
[ 127.938048]
[ 127.938053] Modules linked in:
[ 127.938078] ---[ end trace 0000000000000000 ]---
[ 127.938079] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#3] SMP KASAN NOPTI
[ 127.938085] RIP: 0010:perf_tp_event+0x175/0xe70
[ 127.938094] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 127.938108] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 127.938109] CPU: 1 UID: 0 PID: 3955 Comm: syz-executor.6 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 127.938123] RSP: 0018:ffff888013f2f780 EFLAGS: 00010012
[ 127.938131] Tainted: [D]=DIE, [W]=WARN
[ 127.938133]
[ 127.938138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 127.938139] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc9000741f000
[ 127.938151] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 127.938147] RIP: 0010:perf_tp_event+0x175/0xe70
[ 127.938163] RBP: ffff888013f2f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15f28
[ 127.938167] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 127.938176] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 127.938181] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[ 127.938188] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 127.938193] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 127.938203] RDX: ffff888017443700 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 127.938202] FS: 00007fd5ad9f8700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 127.938213] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd15f28
[ 127.938218] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 127.938222] R10: 0000000000000000 R11: ffff88801c377c98 R12: dffffc0000000000
[ 127.938232] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[ 127.938231] CR2: 00007fd5b0596018 CR3: 0000000046333000 CR4: 0000000000350ef0
[ 127.938243] FS: 00007f1298d6f700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 127.938244] note: syz-executor.3[3962] exited with irqs disabled
[ 127.938257] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 127.938266] CR2: 0000001b2d425000 CR3: 000000000e5e4000 CR4: 0000000000350ef0
[ 127.938274] Call Trace:
[ 127.938278]
[ 127.938286] ? __pfx_perf_tp_event+0x10/0x10
[ 127.938292] note: syz-executor.3[3962] exited with preempt_count 3
[ 127.938304] ? enqueue_task_fair+0xded/0x1e00
[ 127.938321] ? check_preempt_wakeup_fair+0x6e/0x950
[ 127.938336] ? wakeup_preempt+0x140/0x2a0
[ 127.938349] ? lock_release+0x1c7/0x290
[ 127.938362] ? lock_release+0x1c7/0x290
[ 127.938376] ? do_raw_spin_unlock+0x53/0x220
[ 127.938392] ? _raw_spin_unlock_irqrestore+0x22/0x50
[ 127.938408] ? try_to_wake_up+0x8ae/0x11d0
[ 127.938425] ? do_raw_spin_lock+0x123/0x260
[ 127.938442] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 127.938459] ? perf_trace_run_bpf_submit+0xef/0x180
[ 127.938475] perf_trace_run_bpf_submit+0xef/0x180
[ 127.938493] perf_trace_preemptirq_template+0x259/0x430
[ 127.938513] ? read_tsc+0x9/0x20
[ 127.938529] ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 127.938550] ? clockevents_program_event+0x135/0x360
[ 127.938567] ? tick_program_event+0xac/0x140
[ 127.938580] ? handle_softirqs+0x16e/0x770
[ 127.938599] trace_irq_enable.constprop.0+0xa6/0x100
[ 127.938611] trace_hardirqs_on+0x26/0x40
[ 127.938622] handle_softirqs+0x16e/0x770
[ 127.938642] __irq_exit_rcu+0xc4/0x100
[ 127.938660] irq_exit_rcu+0x9/0x20
[ 127.938671] sysvec_apic_timer_interrupt+0x70/0x80
[ 127.938687]
[ 127.938691]
[ 127.938695] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 127.938709] RIP: 0010:make_task_dead+0xa2/0x3b0
[ 127.938724] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de
[ 127.938736] RSP: 0018:ffff888013f2ff28 EFLAGS: 00000246
[ 127.938745] RAX: 0000000000000001 RBX: ffff888017443700 RCX: ffffffff817c2b86
[ 127.938754] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[ 127.938761] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[ 127.938769] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888017443700
[ 127.938777] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[ 127.938786] ? trace_irq_enable.constprop.0+0x26/0x100
[ 127.938799] ? make_task_dead+0x214/0x3b0
[ 127.938814] ? make_task_dead+0x214/0x3b0
[ 127.938828] ? do_syscall_64+0xbf/0x360
[ 127.938839] rewind_stack_and_make_dead+0x16/0x20
[ 127.938856] RIP: 0033:0x7f129b7f9b19
[ 127.938864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 127.938875] RSP: 002b:00007f1298d6f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 127.938887] RAX: ffffffffffffffda RBX: 00007f129b90cf68 RCX: 00007f129b7f9b19
[ 127.938895] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f129b90cf6c
[ 127.938903] RBP: 00007f129b90cf60 R08: 000000000000000e R09: 0000000000000000
[ 127.938910] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f129b90cf6c
[ 127.938918] R13: 00007fffdc09420f R14: 00007f1298d6f300 R15: 0000000000022000
[ 127.938929]
[ 127.938933] Modules linked in:
[ 127.938941] ---[ end trace 0000000000000000 ]---
[ 127.938943] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#4] SMP KASAN NOPTI
[ 127.938947] RIP: 0010:perf_tp_event+0x175/0xe70
[ 127.938959] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[ 127.938966] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 127.938979] RSP: 0018:ffff888013f2f780 EFLAGS: 00010012
[ 127.938976] CPU: 0 UID: 0 PID: 289 Comm: syz-executor.7 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 127.938987]
[ 127.938990] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc9000741f000
[ 127.938999] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 127.939002] Tainted: [D]=DIE, [W]=WARN
[ 127.939009] RBP: ffff888013f2f9f0 R08: ffff88806cf31340 R09: ffffe8ffffd15f28
[ 127.939011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 127.939019] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 127.939028] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[ 127.939021] RIP: 0010:perf_tp_event+0x175/0xe70
[ 127.939039] FS: 00007f1298d6f700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[ 127.939044] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 127.939051] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 127.939060] RSP: 0018:ffff8880169c76c0 EFLAGS: 00010012
[ 127.939061] CR2: 0000001b2d425000 CR3: 000000000e5e4000 CR4: 0000000000350ef0
[ 127.939073] Kernel panic - not syncing: Fatal exception in interrupt
[ 127.939371] Kernel Offset: disabled
[ 128.057329] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
13:17:13 Registers:
info registers vcpu 0
RAX=00000054737148b0 RBX=0000000000000000 RCX=00000000000006e0 RDX=0000000000000054
RSI=ffff88806ce238c0 RDI=000000000002e750 RBP=ffff88806ce238c0 RSP=ffff88806ce08ed8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000084fc0 R11=ffff88806ce08ff8
R12=000000000002e750 R13=0000000000000000 R14=0000000000000000 R15=ffff88806ce28080
RIP=ffffffff81327f55 RFL=00000012 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f86995c28c0 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe0600000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000055557cceac18 CR3=000000000c464000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffff0000000000000000
XMM02=0000000000000000737265646c6f682f XMM03=7269762f736563697665642f7379732f
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00005596a659125000005596a6591080
XMM06=00005596a656ec5000000003ffffffff XMM07=00000000000000000000000000000000
XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000011457 RBX=0000000000000400 RCX=ffffc9000741f000 RDX=0000000000040000
RSI=ffffffff84b91323 RDI=0000000000000001 RBP=ffff888013f2f180 RSP=ffff888013f2f090
R8 =0000000000000001 R9 =fffffbfff10623ea R10=0000000000000000 R11=0000000000000001
R12=ffffffff88311f56 R13=0000000000000400 R14=0000000000000000 R15=ffffffff85744ecb
RIP=ffffffff8173e7e0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f1298d6f700 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe4c00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d425000 CR3=000000000e5e4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f129b8e07c000007f129b8e07c8
XMM02=00007f129b8e07e000007f129b8e07c0 XMM03=00007f129b8e07c800007f129b8e07c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000