Warning: Permanently added '[localhost]:58125' (ECDSA) to the list of known hosts. 2025/08/29 13:22:43 fuzzer started 2025/08/29 13:22:43 dialing manager at localhost:43077 syzkaller login: [ 59.368588] cgroup: Unknown subsys name 'net' [ 59.428335] cgroup: Unknown subsys name 'cpuset' [ 59.448376] cgroup: Unknown subsys name 'rlimit' 2025/08/29 13:22:54 syscalls: 2214 2025/08/29 13:22:54 code coverage: enabled 2025/08/29 13:22:54 comparison tracing: enabled 2025/08/29 13:22:54 extra coverage: enabled 2025/08/29 13:22:54 setuid sandbox: enabled 2025/08/29 13:22:54 namespace sandbox: enabled 2025/08/29 13:22:54 Android sandbox: enabled 2025/08/29 13:22:54 fault injection: enabled 2025/08/29 13:22:54 leak checking: enabled 2025/08/29 13:22:54 net packet injection: enabled 2025/08/29 13:22:54 net device setup: enabled 2025/08/29 13:22:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 13:22:54 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 13:22:54 USB emulation: enabled 2025/08/29 13:22:54 hci packet injection: enabled 2025/08/29 13:22:54 wifi device emulation: enabled 2025/08/29 13:22:54 802.15.4 emulation: enabled 2025/08/29 13:22:54 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 13:22:54 fetching corpus: 43, signal 21718/25309 (executing program) 2025/08/29 13:22:54 fetching corpus: 93, signal 29581/34720 (executing program) 2025/08/29 13:22:55 fetching corpus: 143, signal 41244/47661 (executing program) 2025/08/29 13:22:55 fetching corpus: 193, signal 49459/57096 (executing program) 2025/08/29 13:22:55 fetching corpus: 243, signal 55554/64375 (executing program) 2025/08/29 13:22:55 fetching corpus: 293, signal 63372/73051 (executing program) 2025/08/29 13:22:55 fetching corpus: 343, signal 65994/76825 (executing program) 2025/08/29 13:22:55 fetching corpus: 393, signal 69855/81691 (executing program) 2025/08/29 13:22:55 fetching corpus: 443, signal 72151/85085 (executing program) 2025/08/29 13:22:55 fetching corpus: 491, signal 75000/88900 (executing program) 2025/08/29 13:22:55 fetching corpus: 541, signal 77141/92073 (executing program) 2025/08/29 13:22:55 fetching corpus: 591, signal 79312/95186 (executing program) 2025/08/29 13:22:56 fetching corpus: 641, signal 81226/98047 (executing program) 2025/08/29 13:22:56 fetching corpus: 691, signal 85474/102889 (executing program) 2025/08/29 13:22:56 fetching corpus: 741, signal 87534/105780 (executing program) 2025/08/29 13:22:56 fetching corpus: 790, signal 89448/108523 (executing program) 2025/08/29 13:22:56 fetching corpus: 840, signal 90798/110727 (executing program) 2025/08/29 13:22:56 fetching corpus: 890, signal 93355/113860 (executing program) 2025/08/29 13:22:56 fetching corpus: 940, signal 95405/116578 (executing program) 2025/08/29 13:22:56 fetching corpus: 990, signal 96567/118556 (executing program) 2025/08/29 13:22:56 fetching corpus: 1040, signal 97881/120603 (executing program) 2025/08/29 13:22:56 fetching corpus: 1090, signal 99079/122567 (executing program) 2025/08/29 13:22:56 fetching corpus: 1140, signal 100458/124668 (executing program) 2025/08/29 13:22:57 fetching corpus: 1190, signal 102108/126947 (executing program) 2025/08/29 13:22:57 fetching corpus: 1240, signal 103243/128776 (executing program) 2025/08/29 13:22:57 fetching corpus: 1290, signal 104854/130914 (executing program) 2025/08/29 13:22:57 fetching corpus: 1340, signal 106332/132960 (executing program) 2025/08/29 13:22:57 fetching corpus: 1389, signal 107420/134648 (executing program) 2025/08/29 13:22:57 fetching corpus: 1439, signal 108650/136433 (executing program) 2025/08/29 13:22:57 fetching corpus: 1489, signal 109805/138200 (executing program) 2025/08/29 13:22:57 fetching corpus: 1539, signal 111107/140004 (executing program) 2025/08/29 13:22:57 fetching corpus: 1589, signal 112601/141889 (executing program) 2025/08/29 13:22:57 fetching corpus: 1639, signal 114089/143779 (executing program) 2025/08/29 13:22:57 fetching corpus: 1689, signal 115438/145591 (executing program) 2025/08/29 13:22:58 fetching corpus: 1739, signal 116327/146981 (executing program) 2025/08/29 13:22:58 fetching corpus: 1789, signal 117213/148388 (executing program) 2025/08/29 13:22:58 fetching corpus: 1839, signal 118466/149986 (executing program) 2025/08/29 13:22:58 fetching corpus: 1889, signal 119368/151342 (executing program) 2025/08/29 13:22:58 fetching corpus: 1939, signal 120423/152815 (executing program) 2025/08/29 13:22:58 fetching corpus: 1989, signal 121689/154349 (executing program) 2025/08/29 13:22:58 fetching corpus: 2039, signal 122951/155882 (executing program) 2025/08/29 13:22:58 fetching corpus: 2089, signal 124337/157467 (executing program) 2025/08/29 13:22:58 fetching corpus: 2139, signal 125262/158712 (executing program) 2025/08/29 13:22:58 fetching corpus: 2189, signal 126152/159988 (executing program) 2025/08/29 13:22:59 fetching corpus: 2239, signal 127390/161363 (executing program) 2025/08/29 13:22:59 fetching corpus: 2289, signal 128606/162763 (executing program) 2025/08/29 13:22:59 fetching corpus: 2339, signal 129299/163886 (executing program) 2025/08/29 13:22:59 fetching corpus: 2389, signal 130962/165449 (executing program) 2025/08/29 13:22:59 fetching corpus: 2439, signal 131802/166607 (executing program) 2025/08/29 13:22:59 fetching corpus: 2489, signal 132418/167623 (executing program) 2025/08/29 13:22:59 fetching corpus: 2539, signal 133052/168684 (executing program) 2025/08/29 13:22:59 fetching corpus: 2589, signal 133743/169712 (executing program) 2025/08/29 13:22:59 fetching corpus: 2639, signal 134432/170796 (executing program) 2025/08/29 13:22:59 fetching corpus: 2689, signal 135083/171747 (executing program) 2025/08/29 13:22:59 fetching corpus: 2739, signal 135615/172655 (executing program) 2025/08/29 13:23:00 fetching corpus: 2788, signal 136187/173588 (executing program) 2025/08/29 13:23:00 fetching corpus: 2838, signal 137048/174633 (executing program) 2025/08/29 13:23:00 fetching corpus: 2888, signal 137648/175563 (executing program) 2025/08/29 13:23:00 fetching corpus: 2938, signal 138517/176546 (executing program) 2025/08/29 13:23:00 fetching corpus: 2988, signal 139221/177443 (executing program) 2025/08/29 13:23:00 fetching corpus: 3038, signal 139814/178323 (executing program) 2025/08/29 13:23:00 fetching corpus: 3087, signal 140452/179195 (executing program) 2025/08/29 13:23:00 fetching corpus: 3137, signal 140948/179996 (executing program) 2025/08/29 13:23:00 fetching corpus: 3186, signal 141889/180918 (executing program) 2025/08/29 13:23:00 fetching corpus: 3236, signal 142594/181771 (executing program) 2025/08/29 13:23:00 fetching corpus: 3286, signal 143556/182658 (executing program) 2025/08/29 13:23:01 fetching corpus: 3336, signal 144452/183513 (executing program) 2025/08/29 13:23:01 fetching corpus: 3386, signal 145398/184429 (executing program) 2025/08/29 13:23:01 fetching corpus: 3436, signal 146096/185202 (executing program) 2025/08/29 13:23:01 fetching corpus: 3486, signal 146449/185870 (executing program) 2025/08/29 13:23:01 fetching corpus: 3536, signal 146964/186621 (executing program) 2025/08/29 13:23:01 fetching corpus: 3586, signal 147462/187304 (executing program) 2025/08/29 13:23:01 fetching corpus: 3636, signal 148231/188019 (executing program) 2025/08/29 13:23:01 fetching corpus: 3685, signal 148878/188709 (executing program) 2025/08/29 13:23:01 fetching corpus: 3735, signal 149409/189367 (executing program) 2025/08/29 13:23:01 fetching corpus: 3785, signal 150156/190069 (executing program) 2025/08/29 13:23:01 fetching corpus: 3834, signal 150947/190829 (executing program) 2025/08/29 13:23:01 fetching corpus: 3884, signal 151454/191525 (executing program) 2025/08/29 13:23:02 fetching corpus: 3933, signal 152050/192148 (executing program) 2025/08/29 13:23:02 fetching corpus: 3983, signal 152564/192795 (executing program) 2025/08/29 13:23:02 fetching corpus: 4033, signal 153233/193423 (executing program) 2025/08/29 13:23:02 fetching corpus: 4082, signal 153763/194017 (executing program) 2025/08/29 13:23:02 fetching corpus: 4130, signal 154491/194646 (executing program) 2025/08/29 13:23:02 fetching corpus: 4180, signal 154869/195205 (executing program) 2025/08/29 13:23:02 fetching corpus: 4230, signal 155638/195835 (executing program) 2025/08/29 13:23:02 fetching corpus: 4279, signal 156430/196408 (executing program) 2025/08/29 13:23:02 fetching corpus: 4329, signal 156927/196930 (executing program) 2025/08/29 13:23:02 fetching corpus: 4379, signal 157505/197447 (executing program) 2025/08/29 13:23:02 fetching corpus: 4429, signal 157880/197923 (executing program) 2025/08/29 13:23:02 fetching corpus: 4479, signal 158300/198410 (executing program) 2025/08/29 13:23:03 fetching corpus: 4529, signal 158687/198897 (executing program) 2025/08/29 13:23:03 fetching corpus: 4579, signal 159853/199383 (executing program) 2025/08/29 13:23:03 fetching corpus: 4629, signal 160280/199841 (executing program) 2025/08/29 13:23:03 fetching corpus: 4679, signal 160753/200316 (executing program) 2025/08/29 13:23:03 fetching corpus: 4729, signal 161179/200756 (executing program) 2025/08/29 13:23:03 fetching corpus: 4779, signal 161827/201205 (executing program) 2025/08/29 13:23:03 fetching corpus: 4829, signal 162468/201629 (executing program) 2025/08/29 13:23:03 fetching corpus: 4879, signal 162694/201737 (executing program) 2025/08/29 13:23:03 fetching corpus: 4929, signal 163194/201740 (executing program) 2025/08/29 13:23:03 fetching corpus: 4979, signal 163559/201744 (executing program) 2025/08/29 13:23:03 fetching corpus: 5028, signal 163877/201761 (executing program) 2025/08/29 13:23:04 fetching corpus: 5078, signal 164210/201764 (executing program) 2025/08/29 13:23:04 fetching corpus: 5128, signal 164595/201800 (executing program) 2025/08/29 13:23:04 fetching corpus: 5178, signal 164838/201808 (executing program) 2025/08/29 13:23:04 fetching corpus: 5228, signal 165237/201827 (executing program) 2025/08/29 13:23:04 fetching corpus: 5278, signal 165885/201854 (executing program) 2025/08/29 13:23:04 fetching corpus: 5328, signal 166313/201909 (executing program) 2025/08/29 13:23:04 fetching corpus: 5378, signal 166960/201971 (executing program) 2025/08/29 13:23:04 fetching corpus: 5428, signal 167288/201990 (executing program) 2025/08/29 13:23:04 fetching corpus: 5478, signal 167815/201996 (executing program) 2025/08/29 13:23:04 fetching corpus: 5528, signal 168195/202014 (executing program) 2025/08/29 13:23:04 fetching corpus: 5578, signal 168511/202042 (executing program) 2025/08/29 13:23:05 fetching corpus: 5628, signal 169336/202086 (executing program) 2025/08/29 13:23:05 fetching corpus: 5678, signal 169823/202087 (executing program) 2025/08/29 13:23:05 fetching corpus: 5728, signal 170377/202097 (executing program) 2025/08/29 13:23:05 fetching corpus: 5778, signal 170755/202115 (executing program) 2025/08/29 13:23:05 fetching corpus: 5828, signal 171129/202133 (executing program) 2025/08/29 13:23:05 fetching corpus: 5878, signal 171556/202165 (executing program) 2025/08/29 13:23:05 fetching corpus: 5928, signal 171852/202169 (executing program) 2025/08/29 13:23:05 fetching corpus: 5977, signal 172311/202187 (executing program) 2025/08/29 13:23:05 fetching corpus: 6026, signal 172671/202203 (executing program) 2025/08/29 13:23:05 fetching corpus: 6075, signal 173077/202212 (executing program) 2025/08/29 13:23:05 fetching corpus: 6124, signal 173314/202222 (executing program) 2025/08/29 13:23:05 fetching corpus: 6174, signal 173644/202231 (executing program) 2025/08/29 13:23:05 fetching corpus: 6224, signal 174328/202232 (executing program) 2025/08/29 13:23:05 fetching corpus: 6274, signal 174697/202235 (executing program) 2025/08/29 13:23:06 fetching corpus: 6324, signal 175245/202252 (executing program) 2025/08/29 13:23:06 fetching corpus: 6374, signal 175557/202256 (executing program) 2025/08/29 13:23:06 fetching corpus: 6424, signal 175875/202257 (executing program) 2025/08/29 13:23:06 fetching corpus: 6474, signal 176197/202262 (executing program) 2025/08/29 13:23:06 fetching corpus: 6524, signal 176580/202272 (executing program) 2025/08/29 13:23:06 fetching corpus: 6574, signal 176911/202278 (executing program) 2025/08/29 13:23:06 fetching corpus: 6623, signal 177357/202341 (executing program) 2025/08/29 13:23:06 fetching corpus: 6673, signal 177630/202356 (executing program) 2025/08/29 13:23:06 fetching corpus: 6722, signal 178087/202356 (executing program) 2025/08/29 13:23:06 fetching corpus: 6772, signal 178520/202356 (executing program) 2025/08/29 13:23:07 fetching corpus: 6822, signal 178935/202423 (executing program) 2025/08/29 13:23:07 fetching corpus: 6872, signal 179255/202423 (executing program) 2025/08/29 13:23:07 fetching corpus: 6922, signal 179623/202424 (executing program) 2025/08/29 13:23:07 fetching corpus: 6972, signal 180000/202433 (executing program) 2025/08/29 13:23:07 fetching corpus: 7022, signal 180311/202435 (executing program) 2025/08/29 13:23:07 fetching corpus: 7071, signal 180627/202437 (executing program) 2025/08/29 13:23:07 fetching corpus: 7121, signal 180998/202446 (executing program) 2025/08/29 13:23:07 fetching corpus: 7171, signal 181289/202451 (executing program) 2025/08/29 13:23:07 fetching corpus: 7221, signal 181655/202458 (executing program) 2025/08/29 13:23:07 fetching corpus: 7271, signal 182004/202471 (executing program) 2025/08/29 13:23:07 fetching corpus: 7321, signal 182271/202475 (executing program) 2025/08/29 13:23:07 fetching corpus: 7371, signal 182496/202493 (executing program) 2025/08/29 13:23:08 fetching corpus: 7421, signal 182750/202505 (executing program) 2025/08/29 13:23:08 fetching corpus: 7471, signal 183026/202505 (executing program) 2025/08/29 13:23:08 fetching corpus: 7521, signal 183255/202517 (executing program) 2025/08/29 13:23:08 fetching corpus: 7571, signal 183513/202535 (executing program) 2025/08/29 13:23:08 fetching corpus: 7621, signal 183765/202554 (executing program) 2025/08/29 13:23:08 fetching corpus: 7671, signal 184022/202558 (executing program) 2025/08/29 13:23:08 fetching corpus: 7720, signal 184369/202569 (executing program) 2025/08/29 13:23:08 fetching corpus: 7770, signal 184839/202569 (executing program) 2025/08/29 13:23:08 fetching corpus: 7820, signal 185013/202570 (executing program) 2025/08/29 13:23:08 fetching corpus: 7870, signal 185294/202578 (executing program) 2025/08/29 13:23:08 fetching corpus: 7919, signal 185528/202589 (executing program) 2025/08/29 13:23:08 fetching corpus: 7969, signal 185812/202596 (executing program) 2025/08/29 13:23:08 fetching corpus: 8019, signal 186023/202619 (executing program) 2025/08/29 13:23:09 fetching corpus: 8069, signal 186402/202619 (executing program) 2025/08/29 13:23:09 fetching corpus: 8119, signal 186708/202625 (executing program) 2025/08/29 13:23:09 fetching corpus: 8168, signal 187042/202626 (executing program) 2025/08/29 13:23:09 fetching corpus: 8218, signal 187264/202639 (executing program) 2025/08/29 13:23:09 fetching corpus: 8268, signal 187526/202639 (executing program) 2025/08/29 13:23:09 fetching corpus: 8318, signal 187772/202640 (executing program) 2025/08/29 13:23:09 fetching corpus: 8368, signal 188035/202644 (executing program) 2025/08/29 13:23:09 fetching corpus: 8418, signal 188356/202653 (executing program) 2025/08/29 13:23:09 fetching corpus: 8466, signal 188561/202663 (executing program) 2025/08/29 13:23:09 fetching corpus: 8516, signal 188774/202675 (executing program) 2025/08/29 13:23:09 fetching corpus: 8566, signal 189098/202696 (executing program) 2025/08/29 13:23:10 fetching corpus: 8616, signal 189428/202716 (executing program) 2025/08/29 13:23:10 fetching corpus: 8666, signal 189685/202716 (executing program) 2025/08/29 13:23:10 fetching corpus: 8716, signal 190027/202725 (executing program) 2025/08/29 13:23:10 fetching corpus: 8766, signal 190291/202727 (executing program) 2025/08/29 13:23:10 fetching corpus: 8816, signal 190693/202727 (executing program) 2025/08/29 13:23:10 fetching corpus: 8866, signal 190861/202739 (executing program) 2025/08/29 13:23:10 fetching corpus: 8916, signal 191095/202739 (executing program) 2025/08/29 13:23:10 fetching corpus: 8965, signal 191285/202741 (executing program) 2025/08/29 13:23:10 fetching corpus: 9015, signal 191494/202750 (executing program) 2025/08/29 13:23:10 fetching corpus: 9065, signal 191700/202751 (executing program) 2025/08/29 13:23:10 fetching corpus: 9115, signal 191923/202755 (executing program) 2025/08/29 13:23:11 fetching corpus: 9165, signal 192282/202769 (executing program) 2025/08/29 13:23:11 fetching corpus: 9213, signal 192627/202779 (executing program) 2025/08/29 13:23:11 fetching corpus: 9263, signal 192889/202784 (executing program) 2025/08/29 13:23:11 fetching corpus: 9313, signal 193126/202785 (executing program) 2025/08/29 13:23:11 fetching corpus: 9363, signal 193302/202794 (executing program) 2025/08/29 13:23:11 fetching corpus: 9413, signal 193622/202797 (executing program) 2025/08/29 13:23:11 fetching corpus: 9463, signal 193852/202807 (executing program) 2025/08/29 13:23:11 fetching corpus: 9513, signal 194102/202825 (executing program) 2025/08/29 13:23:11 fetching corpus: 9562, signal 194287/202826 (executing program) 2025/08/29 13:23:11 fetching corpus: 9612, signal 194578/202831 (executing program) 2025/08/29 13:23:11 fetching corpus: 9662, signal 194837/202849 (executing program) 2025/08/29 13:23:11 fetching corpus: 9712, signal 195079/202851 (executing program) 2025/08/29 13:23:12 fetching corpus: 9762, signal 195291/202858 (executing program) 2025/08/29 13:23:12 fetching corpus: 9812, signal 195499/202864 (executing program) 2025/08/29 13:23:12 fetching corpus: 9862, signal 195745/202871 (executing program) 2025/08/29 13:23:12 fetching corpus: 9911, signal 195975/202873 (executing program) 2025/08/29 13:23:12 fetching corpus: 9961, signal 196234/202877 (executing program) 2025/08/29 13:23:12 fetching corpus: 10011, signal 196501/202886 (executing program) 2025/08/29 13:23:12 fetching corpus: 10061, signal 196754/202891 (executing program) 2025/08/29 13:23:12 fetching corpus: 10111, signal 196975/202898 (executing program) 2025/08/29 13:23:12 fetching corpus: 10161, signal 197149/202907 (executing program) 2025/08/29 13:23:12 fetching corpus: 10211, signal 197405/202967 (executing program) 2025/08/29 13:23:12 fetching corpus: 10261, signal 197597/202980 (executing program) 2025/08/29 13:23:13 fetching corpus: 10311, signal 197788/202983 (executing program) 2025/08/29 13:23:13 fetching corpus: 10361, signal 197967/202988 (executing program) 2025/08/29 13:23:13 fetching corpus: 10411, signal 198181/202996 (executing program) 2025/08/29 13:23:13 fetching corpus: 10461, signal 198426/203031 (executing program) 2025/08/29 13:23:13 fetching corpus: 10511, signal 198596/203042 (executing program) 2025/08/29 13:23:13 fetching corpus: 10561, signal 198877/203058 (executing program) 2025/08/29 13:23:13 fetching corpus: 10602, signal 198978/203058 (executing program) 2025/08/29 13:23:13 fetching corpus: 10602, signal 198978/203058 (executing program) 2025/08/29 13:23:15 starting 8 fuzzer processes 13:23:15 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_int(r0, 0x6, 0x24, 0x0, &(0x7f0000000040)) 13:23:15 executing program 3: creat(&(0x7f0000000080)='./file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x3100e, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)={0x22040, 0x0, 0x1}, 0x18) 13:23:15 executing program 1: syz_open_dev$vcsa(&(0x7f00000003c0), 0x8d, 0x0) 13:23:15 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x5460, &(0x7f0000000000)) 13:23:15 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/109, 0x6d}], 0x1) 13:23:15 executing program 7: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e) getsockname$unix(r0, 0x0, &(0x7f0000000300)) 13:23:15 executing program 6: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) pread64(r0, &(0x7f00000000c0)=""/224, 0xe0, 0xe00000000000) 13:23:15 executing program 5: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) r0 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) lseek(r0, 0x0, 0x0) [ 91.278814] audit: type=1400 audit(1756473795.677:7): avc: denied { execmem } for pid=273 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 92.530197] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.534378] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.535457] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.536530] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.537857] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.539408] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.542545] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.543347] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.545033] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.547178] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.586032] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.587228] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.593477] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.593575] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 92.595755] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 92.596725] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 92.599390] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 92.600706] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.602950] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 92.602954] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.604216] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 92.611398] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 92.617127] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 92.623914] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 92.626009] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 92.630705] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.633552] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 92.649369] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 92.666637] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 92.671567] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 92.673495] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 92.675216] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 92.680263] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 92.686634] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 92.690447] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 92.692724] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 92.701533] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 92.705383] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 92.738991] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 92.741521] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 94.628563] Bluetooth: hci2: command tx timeout [ 94.629255] Bluetooth: hci0: command tx timeout [ 94.629262] Bluetooth: hci1: command tx timeout [ 94.692614] Bluetooth: hci5: command tx timeout [ 94.693500] Bluetooth: hci3: command tx timeout [ 94.756154] Bluetooth: hci4: command tx timeout [ 94.820414] Bluetooth: hci6: command tx timeout [ 94.821262] Bluetooth: hci7: command tx timeout [ 96.676138] Bluetooth: hci1: command tx timeout [ 96.676645] Bluetooth: hci2: command tx timeout [ 96.677649] Bluetooth: hci0: command tx timeout [ 96.743138] Bluetooth: hci5: command tx timeout [ 96.743614] Bluetooth: hci3: command tx timeout [ 96.804227] Bluetooth: hci4: command tx timeout [ 96.868273] Bluetooth: hci6: command tx timeout [ 96.868703] Bluetooth: hci7: command tx timeout [ 98.726117] Bluetooth: hci0: command tx timeout [ 98.726576] Bluetooth: hci2: command tx timeout [ 98.726953] Bluetooth: hci1: command tx timeout [ 98.788138] Bluetooth: hci3: command tx timeout [ 98.788569] Bluetooth: hci5: command tx timeout [ 98.852206] Bluetooth: hci4: command tx timeout [ 98.917248] Bluetooth: hci7: command tx timeout [ 98.917676] Bluetooth: hci6: command tx timeout [ 100.773200] Bluetooth: hci1: command tx timeout [ 100.773654] Bluetooth: hci2: command tx timeout [ 100.774043] Bluetooth: hci0: command tx timeout [ 100.836195] Bluetooth: hci5: command tx timeout [ 100.836214] Bluetooth: hci3: command tx timeout [ 100.900125] Bluetooth: hci4: command tx timeout [ 100.964142] Bluetooth: hci6: command tx timeout [ 100.964164] Bluetooth: hci7: command tx timeout [ 132.204442] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.205254] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 132.393764] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 132.394399] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 13:23:57 executing program 7: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e) getsockname$unix(r0, 0x0, &(0x7f0000000300)) 13:23:57 executing program 7: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e) getsockname$unix(r0, 0x0, &(0x7f0000000300)) 13:23:57 executing program 7: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e) getsockname$unix(r0, 0x0, &(0x7f0000000300)) [ 133.508170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 133.509230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 13:23:57 executing program 7: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0x0, 0x0, "1e", "74408d", 0x0, "a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f1fd6c2cf47288f8895dca6e8681f1f7d4666d7035828c4690bca329e"}}}, 0x51) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)) [ 133.746870] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 133.748025] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 13:23:58 executing program 7: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0x0, 0x0, "1e", "74408d", 0x0, "a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f1fd6c2cf47288f8895dca6e8681f1f7d4666d7035828c4690bca329e"}}}, 0x51) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)) 13:23:58 executing program 7: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0x0, 0x0, "1e", "74408d", 0x0, "a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f1fd6c2cf47288f8895dca6e8681f1f7d4666d7035828c4690bca329e"}}}, 0x51) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)) [ 133.894032] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 133.894921] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 13:23:58 executing program 7: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0x0, 0x0, "1e", "74408d", 0x0, "a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f1fd6c2cf47288f8895dca6e8681f1f7d4666d7035828c4690bca329e"}}}, 0x51) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)) [ 133.984980] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 133.985927] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.032856] audit: type=1400 audit(1756473838.430:8): avc: denied { open } for pid=3877 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 134.036410] audit: type=1400 audit(1756473838.431:9): avc: denied { kernel } for pid=3877 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 134.055298] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.055876] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.156917] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.158106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.158781] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.159702] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 13:23:58 executing program 7: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0x0, 0x0, "1e", "74408d", 0x0, "a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f1fd6c2cf47288f8895dca6e8681f1f7d4666d7035828c4690bca329e"}}}, 0x51) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)) [ 134.264506] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.265724] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.310774] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.312041] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.368592] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.369197] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.477161] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.477763] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.522170] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.522759] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.663315] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.663928] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 134.686329] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 134.686897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 13:23:59 executing program 0: futex(0x0, 0x2, 0x0, 0x0, 0x0, 0x0) 13:23:59 executing program 7: write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0x0, 0x0, "1e", "74408d", 0x0, "a6e834b50f474f6edaeb1ff964b113cf65f0be4ab146aa7a9636645f0ae3094e59e50bfee32de576970308a41f1fd6c2cf47288f8895dca6e8681f1f7d4666d7035828c4690bca329e"}}}, 0x51) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)) 13:23:59 executing program 3: creat(&(0x7f0000000080)='./file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x3100e, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)={0x22040, 0x0, 0x1}, 0x18) 13:23:59 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x20901, 0x0) pwritev2(r0, &(0x7f0000000080)=[{&(0x7f0000000040)="c4", 0x7ffffff9}], 0x1, 0x0, 0x0, 0x0) 13:23:59 executing program 2: get_robust_list(0xffffffffffffffff, 0x0, 0x0) 13:23:59 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0x41009432, &(0x7f0000000000)) 13:23:59 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f00000003c0)=@ethtool_dump={0x3f}}) 13:23:59 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x33, &(0x7f0000000000)="a94a128f", 0x4) [ 135.066784] Oops: general protection fault, probably for non-canonical address 0xe01ffc00000000b0: 0000 [#1] SMP KASAN NOPTI [ 135.067699] KASAN: maybe wild-memory-access in range [0x0100000000000580-0x0100000000000587] [ 135.068375] CPU: 1 UID: 0 PID: 3920 Comm: syz-executor.1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 135.069322] Tainted: [W]=WARN [ 135.069924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 135.071565] RIP: 0010:perf_tp_event+0x26b/0xe70 [ 135.072471] Code: 3c 20 00 0f 85 3d 0b 00 00 4c 8b ab 00 03 00 00 4d 85 ed 4c 0f 44 eb e8 d3 50 ea ff 49 8d bd 80 05 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 fd 0a 00 00 4d 8b ad 80 05 00 00 4d 85 ed 0f [ 135.076473] RSP: 0018:ffff888048047780 EFLAGS: 00010012 [ 135.077434] RAX: 00200000000000b0 RBX: ffff8880170912c1 RCX: ffffc90002a9f000 [ 135.078578] RDX: 0000000000040000 RSI: ffffffff818996ad RDI: 0100000000000580 [ 135.079142] RBP: ffff8880480479f0 R08: ffff88806cf31340 R09: ffffe8ffffd15ff8 [ 135.079700] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 135.080276] R13: 0100000000000000 R14: ffff88806cf31340 R15: dffffc0000000000 [ 135.080837] FS: 00007f467d414700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 135.081471] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 135.081933] CR2: 00000000200000c0 CR3: 0000000007179000 CR4: 0000000000350ef0 [ 135.082495] Call Trace: [ 135.082703] [ 135.082889] ? __pfx_perf_tp_event+0x10/0x10 [ 135.083246] ? __asan_memcpy+0x3d/0x60 [ 135.083562] ? visit_groups_merge.constprop.0.isra.0+0x6e7/0x1150 [ 135.084052] ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10 [ 135.084569] ? lock_is_held_type+0x9e/0x120 [ 135.084926] ? ctx_sched_in+0x134/0x9b0 [ 135.085244] ? css_rstat_updated+0x1b8/0x4d0 [ 135.085604] ? __pfx_css_rstat_updated+0x10/0x10 [ 135.085989] ? lock_is_held_type+0x9e/0x120 [ 135.086337] ? trace_pelt_se_tp+0xdf/0x130 [ 135.086678] ? perf_trace_run_bpf_submit+0xef/0x180 [ 135.087080] ? lock_is_held_type+0x9e/0x120 [ 135.087430] perf_trace_run_bpf_submit+0xef/0x180 [ 135.087820] perf_trace_preemptirq_template+0x259/0x430 [ 135.088258] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 135.088727] ? lock_is_held_type+0x9e/0x120 [ 135.089074] ? find_held_lock+0x2b/0x80 [ 135.089398] ? try_to_wake_up+0x8ae/0x11d0 [ 135.089739] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 135.090143] trace_irq_enable.constprop.0+0xa6/0x100 [ 135.090548] trace_hardirqs_on+0x26/0x40 [ 135.090872] _raw_spin_unlock_irqrestore+0x2c/0x50 [ 135.091267] try_to_wake_up+0x8ae/0x11d0 [ 135.091595] ? __pfx_try_to_wake_up+0x10/0x10 [ 135.091957] ? plist_del+0x122/0x270 [ 135.092265] ? find_held_lock+0x2b/0x80 [ 135.092585] ? futex_wake+0x474/0x540 [ 135.092897] wake_up_q+0xa1/0x130 [ 135.093182] futex_wake+0x47e/0x540 [ 135.093479] ? __pfx_futex_wake+0x10/0x10 [ 135.093812] ? __do_sys_perf_event_open+0x44d/0x2c20 [ 135.094215] ? lock_release+0xc8/0x290 [ 135.094527] do_futex+0x26d/0x370 [ 135.094808] ? __pfx_do_futex+0x10/0x10 [ 135.095128] __x64_sys_futex+0x1c9/0x4d0 [ 135.095453] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 135.095923] ? __pfx___x64_sys_futex+0x10/0x10 [ 135.096295] ? xfd_validate_state+0x55/0x180 [ 135.096655] do_syscall_64+0xbf/0x360 [ 135.096959] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.097366] RIP: 0033:0x7f467fe9eb19 [ 135.097662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 135.099082] RSP: 002b:00007f467d414218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 135.099678] RAX: ffffffffffffffda RBX: 00007f467ffb1f68 RCX: 00007f467fe9eb19 [ 135.100241] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f467ffb1f6c [ 135.100809] RBP: 00007f467ffb1f60 R08: 000000000000000e R09: 0000000000000000 [ 135.101368] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f467ffb1f6c [ 135.101929] R13: 00007ffdb604356f R14: 00007f467d414300 R15: 0000000000022000 [ 135.102502] [ 135.102688] Modules linked in: [ 135.102949] ---[ end trace 0000000000000000 ]--- [ 135.103322] RIP: 0010:perf_tp_event+0x26b/0xe70 [ 135.103695] Code: 3c 20 00 0f 85 3d 0b 00 00 4c 8b ab 00 03 00 00 4d 85 ed 4c 0f 44 eb e8 d3 50 ea ff 49 8d bd 80 05 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 fd 0a 00 00 4d 8b ad 80 05 00 00 4d 85 ed 0f [ 135.105128] RSP: 0018:ffff888048047780 EFLAGS: 00010012 [ 135.105549] RAX: 00200000000000b0 RBX: ffff8880170912c1 RCX: ffffc90002a9f000 [ 135.106112] RDX: 0000000000040000 RSI: ffffffff818996ad RDI: 0100000000000580 [ 135.106670] RBP: ffff8880480479f0 R08: ffff88806cf31340 R09: ffffe8ffffd15ff8 [ 135.107229] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 135.107791] R13: 0100000000000000 R14: ffff88806cf31340 R15: dffffc0000000000 [ 135.108361] FS: 00007f467d414700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 135.108992] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 135.109450] CR2: 00000000200000c0 CR3: 0000000007179000 CR4: 0000000000350ef0 [ 135.110015] note: syz-executor.1[3920] exited with irqs disabled [ 135.110539] Oops: general protection fault, probably for non-canonical address 0xe01ffc00000000b0: 0000 [#2] SMP KASAN NOPTI [ 135.111416] KASAN: maybe wild-memory-access in range [0x0100000000000580-0x0100000000000587] [ 135.112083] CPU: 1 UID: 0 PID: 3920 Comm: syz-executor.1 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 135.113032] Tainted: [D]=DIE, [W]=WARN [ 135.113335] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 135.113980] RIP: 0010:perf_tp_event+0x26b/0xe70 [ 135.114356] Code: 3c 20 00 0f 85 3d 0b 00 00 4c 8b ab 00 03 00 00 4d 85 ed 4c 0f 44 eb e8 d3 50 ea ff 49 8d bd 80 05 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 fd 0a 00 00 4d 8b ad 80 05 00 00 4d 85 ed 0f [ 135.115776] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012 [ 135.116197] RAX: 00200000000000b0 RBX: ffff8880170912c1 RCX: ffffffff8189962c [ 135.116765] RDX: ffff8880167dd280 RSI: ffffffff818996ad RDI: 0100000000000580 [ 135.117325] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd15ff8 [ 135.117893] R10: 0000000000000000 R11: ffff88801661b498 R12: dffffc0000000000 [ 135.118450] R13: 0100000000000000 R14: ffff88806cf313e8 R15: dffffc0000000000 [ 135.119010] FS: 00007f467d414700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 135.119642] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 135.120102] CR2: 00000000200000c0 CR3: 0000000007179000 CR4: 0000000000350ef0 [ 135.120663] Call Trace: [ 135.120870] [ 135.121050] ? __pfx_perf_tp_event+0x10/0x10 [ 135.121409] ? enqueue_task_fair+0xded/0x1e00 [ 135.121772] ? check_preempt_wakeup_fair+0x6e/0x950 [ 135.122170] ? wakeup_preempt+0x140/0x2a0 [ 135.122499] ? lock_release+0x1c7/0x290 [ 135.122822] ? lock_release+0x1c7/0x290 [ 135.123141] ? do_raw_spin_unlock+0x53/0x220 [ 135.123498] ? _raw_spin_unlock_irqrestore+0x22/0x50 [ 135.123908] ? try_to_wake_up+0x8ae/0x11d0 [ 135.124260] ? do_raw_spin_lock+0x123/0x260 [ 135.124606] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 135.124988] ? perf_trace_run_bpf_submit+0xef/0x180 [ 135.125393] perf_trace_run_bpf_submit+0xef/0x180 [ 135.125782] perf_trace_preemptirq_template+0x259/0x430 [ 135.126212] ? read_tsc+0x9/0x20 [ 135.126495] ? __pfx_perf_trace_preemptirq_template+0x10/0x10 [ 135.126966] ? clockevents_program_event+0x135/0x360 [ 135.127373] ? tick_program_event+0xac/0x140 [ 135.127728] ? handle_softirqs+0x16e/0x770 [ 135.128082] trace_irq_enable.constprop.0+0xa6/0x100 [ 135.128494] trace_hardirqs_on+0x26/0x40 [ 135.128817] handle_softirqs+0x16e/0x770 [ 135.129148] __irq_exit_rcu+0xc4/0x100 [ 135.129470] irq_exit_rcu+0x9/0x20 [ 135.129758] sysvec_apic_timer_interrupt+0x70/0x80 [ 135.130162] [ 135.130346] [ 135.130530] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 135.130949] RIP: 0010:make_task_dead+0xa2/0x3b0 [ 135.131328] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de [ 135.132759] RSP: 0018:ffff888048047f28 EFLAGS: 00000246 [ 135.133176] RAX: 0000000000000001 RBX: ffff8880167dd280 RCX: ffffffff817c2b86 [ 135.133734] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234 [ 135.134302] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 135.134864] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff8880167dd280 [ 135.135425] R13: 0000000000000000 R14: e01ffc00000000b0 R15: 0000000000000000 [ 135.135985] ? trace_irq_enable.constprop.0+0x26/0x100 [ 135.136407] ? make_task_dead+0x214/0x3b0 [ 135.136742] ? make_task_dead+0x214/0x3b0 [ 135.137073] ? do_syscall_64+0xbf/0x360 [ 135.137394] rewind_stack_and_make_dead+0x16/0x20 [ 135.137787] RIP: 0033:0x7f467fe9eb19 [ 135.138083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 135.139507] RSP: 002b:00007f467d414218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 135.140108] RAX: ffffffffffffffda RBX: 00007f467ffb1f68 RCX: 00007f467fe9eb19 [ 135.140671] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f467ffb1f6c [ 135.141234] RBP: 00007f467ffb1f60 R08: 000000000000000e R09: 0000000000000000 [ 135.141793] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f467ffb1f6c [ 135.142350] R13: 00007ffdb604356f R14: 00007f467d414300 R15: 0000000000022000 [ 135.142916] [ 135.143107] Modules linked in: [ 135.143370] ---[ end trace 0000000000000000 ]--- [ 135.143738] RIP: 0010:perf_tp_event+0x26b/0xe70 [ 135.144113] Code: 3c 20 00 0f 85 3d 0b 00 00 4c 8b ab 00 03 00 00 4d 85 ed 4c 0f 44 eb e8 d3 50 ea ff 49 8d bd 80 05 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 fd 0a 00 00 4d 8b ad 80 05 00 00 4d 85 ed 0f [ 135.145542] RSP: 0018:ffff888048047780 EFLAGS: 00010012 [ 135.145961] RAX: 00200000000000b0 RBX: ffff8880170912c1 RCX: ffffc90002a9f000 [ 135.146521] RDX: 0000000000040000 RSI: ffffffff818996ad RDI: 0100000000000580 [ 135.147081] RBP: ffff8880480479f0 R08: ffff88806cf31340 R09: ffffe8ffffd15ff8 [ 135.147642] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 135.148203] R13: 0100000000000000 R14: ffff88806cf31340 R15: dffffc0000000000 [ 135.148770] FS: 00007f467d414700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000 [ 135.149404] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 135.149865] CR2: 00000000200000c0 CR3: 0000000007179000 CR4: 0000000000350ef0 [ 135.150424] Kernel panic - not syncing: Fatal exception in interrupt [ 135.151035] Kernel Offset: disabled [ 135.151324] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- VM DIAGNOSIS: 13:23:59 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=ffff88806cf3c300 RCX=ffffffff816880fc RDX=0000000000000001 RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88804808f5a0 R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000001 R11=1ffff1100d9c6bb1 R12=ffffed100d9e7861 R13=ffff88806cf3c308 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff8173e0e0 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f5a97cce700 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe3300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f56b9981000 CR3=00000000430f4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f56b99587c000007f56b99587c8 XMM02=00007f56b99587e000007f56b99587c0 XMM03=00007f56b99587c800007f56b99587c0 XMM04=9e32ca0b69c4285803d766467d1f1f68 XMM05=e8a6dc95888f2847cfc2d61f1fa40803 XMM06=9776e52de3fe0be5594e09e30a5f6436 XMM07=967aaa46b14abef065cf13b164f91feb XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff8880480470f0 R8 =0000000000000000 R9 =ffffed100145e046 R10=0000000000000020 R11=3838666666662052 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f467d414700 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe0e00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000200000c0 CR3=0000000007179000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f467ff857c000007f467ff857c8 XMM02=00007f467ff857e000007f467ff857c0 XMM03=00007f467ff857c800007f467ff857c0 XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000