Warning: Permanently added '[localhost]:9222' (ECDSA) to the list of known hosts.
2025/08/29 13:30:50 fuzzer started
2025/08/29 13:30:51 dialing manager at localhost:43077
syzkaller login: [ 53.426402] cgroup: Unknown subsys name 'net'
[ 53.577585] cgroup: Unknown subsys name 'cpuset'
[ 53.658361] cgroup: Unknown subsys name 'rlimit'
2025/08/29 13:31:03 syscalls: 2214
2025/08/29 13:31:03 code coverage: enabled
2025/08/29 13:31:03 comparison tracing: enabled
2025/08/29 13:31:03 extra coverage: enabled
2025/08/29 13:31:03 setuid sandbox: enabled
2025/08/29 13:31:03 namespace sandbox: enabled
2025/08/29 13:31:03 Android sandbox: enabled
2025/08/29 13:31:03 fault injection: enabled
2025/08/29 13:31:03 leak checking: enabled
2025/08/29 13:31:03 net packet injection: enabled
2025/08/29 13:31:03 net device setup: enabled
2025/08/29 13:31:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 13:31:03 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 13:31:03 USB emulation: enabled
2025/08/29 13:31:03 hci packet injection: enabled
2025/08/29 13:31:03 wifi device emulation: enabled
2025/08/29 13:31:03 802.15.4 emulation: enabled
2025/08/29 13:31:03 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 13:31:04 fetching corpus: 49, signal 21126/24732 (executing program)
2025/08/29 13:31:04 fetching corpus: 99, signal 31049/36135 (executing program)
2025/08/29 13:31:04 fetching corpus: 149, signal 38053/44560 (executing program)
2025/08/29 13:31:04 fetching corpus: 199, signal 47521/55165 (executing program)
2025/08/29 13:31:04 fetching corpus: 249, signal 53241/62078 (executing program)
2025/08/29 13:31:04 fetching corpus: 299, signal 56353/66493 (executing program)
2025/08/29 13:31:04 fetching corpus: 349, signal 61824/72935 (executing program)
2025/08/29 13:31:04 fetching corpus: 399, signal 64281/76558 (executing program)
2025/08/29 13:31:04 fetching corpus: 449, signal 67160/80518 (executing program)
2025/08/29 13:31:04 fetching corpus: 499, signal 70051/84430 (executing program)
2025/08/29 13:31:04 fetching corpus: 549, signal 72391/87784 (executing program)
2025/08/29 13:31:05 fetching corpus: 599, signal 75616/91844 (executing program)
2025/08/29 13:31:05 fetching corpus: 649, signal 78992/95947 (executing program)
2025/08/29 13:31:05 fetching corpus: 699, signal 81131/98975 (executing program)
2025/08/29 13:31:05 fetching corpus: 749, signal 83065/101802 (executing program)
2025/08/29 13:31:05 fetching corpus: 799, signal 86247/105642 (executing program)
2025/08/29 13:31:05 fetching corpus: 849, signal 87505/107844 (executing program)
2025/08/29 13:31:05 fetching corpus: 899, signal 88541/109852 (executing program)
2025/08/29 13:31:05 fetching corpus: 949, signal 90881/112870 (executing program)
2025/08/29 13:31:05 fetching corpus: 999, signal 92941/115612 (executing program)
2025/08/29 13:31:05 fetching corpus: 1049, signal 95336/118586 (executing program)
2025/08/29 13:31:05 fetching corpus: 1099, signal 97328/121215 (executing program)
2025/08/29 13:31:06 fetching corpus: 1149, signal 98448/123107 (executing program)
2025/08/29 13:31:06 fetching corpus: 1199, signal 100689/125889 (executing program)
2025/08/29 13:31:06 fetching corpus: 1249, signal 101766/127705 (executing program)
2025/08/29 13:31:06 fetching corpus: 1299, signal 103099/129695 (executing program)
2025/08/29 13:31:06 fetching corpus: 1349, signal 104507/131684 (executing program)
2025/08/29 13:31:06 fetching corpus: 1399, signal 106376/133941 (executing program)
2025/08/29 13:31:06 fetching corpus: 1449, signal 107833/135947 (executing program)
2025/08/29 13:31:06 fetching corpus: 1499, signal 109099/137775 (executing program)
2025/08/29 13:31:06 fetching corpus: 1549, signal 110925/140102 (executing program)
2025/08/29 13:31:06 fetching corpus: 1599, signal 112298/141956 (executing program)
2025/08/29 13:31:07 fetching corpus: 1649, signal 113573/143705 (executing program)
2025/08/29 13:31:07 fetching corpus: 1699, signal 114881/145491 (executing program)
2025/08/29 13:31:07 fetching corpus: 1749, signal 115769/146940 (executing program)
2025/08/29 13:31:07 fetching corpus: 1799, signal 116735/148410 (executing program)
2025/08/29 13:31:07 fetching corpus: 1849, signal 118059/150110 (executing program)
2025/08/29 13:31:07 fetching corpus: 1899, signal 119182/151649 (executing program)
2025/08/29 13:31:07 fetching corpus: 1948, signal 119824/152888 (executing program)
2025/08/29 13:31:07 fetching corpus: 1998, signal 121130/154523 (executing program)
2025/08/29 13:31:07 fetching corpus: 2048, signal 121777/155718 (executing program)
2025/08/29 13:31:08 fetching corpus: 2098, signal 122382/156857 (executing program)
2025/08/29 13:31:08 fetching corpus: 2148, signal 123539/158349 (executing program)
2025/08/29 13:31:08 fetching corpus: 2198, signal 124529/159679 (executing program)
2025/08/29 13:31:08 fetching corpus: 2248, signal 125258/160916 (executing program)
2025/08/29 13:31:08 fetching corpus: 2298, signal 126200/162187 (executing program)
2025/08/29 13:31:08 fetching corpus: 2348, signal 127375/163549 (executing program)
2025/08/29 13:31:08 fetching corpus: 2398, signal 128357/164825 (executing program)
2025/08/29 13:31:08 fetching corpus: 2448, signal 128910/165811 (executing program)
2025/08/29 13:31:08 fetching corpus: 2498, signal 129890/167046 (executing program)
2025/08/29 13:31:08 fetching corpus: 2548, signal 131128/168377 (executing program)
2025/08/29 13:31:09 fetching corpus: 2598, signal 131892/169462 (executing program)
2025/08/29 13:31:09 fetching corpus: 2648, signal 132614/170521 (executing program)
2025/08/29 13:31:09 fetching corpus: 2698, signal 133714/171756 (executing program)
2025/08/29 13:31:09 fetching corpus: 2748, signal 134893/172978 (executing program)
2025/08/29 13:31:09 fetching corpus: 2798, signal 135548/173955 (executing program)
2025/08/29 13:31:09 fetching corpus: 2848, signal 136035/174855 (executing program)
2025/08/29 13:31:09 fetching corpus: 2898, signal 136714/175817 (executing program)
2025/08/29 13:31:09 fetching corpus: 2948, signal 137199/176675 (executing program)
2025/08/29 13:31:09 fetching corpus: 2998, signal 137909/177589 (executing program)
2025/08/29 13:31:10 fetching corpus: 3048, signal 138790/178597 (executing program)
2025/08/29 13:31:10 fetching corpus: 3098, signal 139300/179462 (executing program)
2025/08/29 13:31:10 fetching corpus: 3148, signal 139795/180274 (executing program)
2025/08/29 13:31:10 fetching corpus: 3198, signal 140319/181093 (executing program)
2025/08/29 13:31:10 fetching corpus: 3248, signal 141212/182031 (executing program)
2025/08/29 13:31:10 fetching corpus: 3298, signal 141931/182919 (executing program)
2025/08/29 13:31:10 fetching corpus: 3348, signal 142411/183723 (executing program)
2025/08/29 13:31:10 fetching corpus: 3398, signal 142899/184454 (executing program)
2025/08/29 13:31:10 fetching corpus: 3448, signal 143339/185197 (executing program)
2025/08/29 13:31:10 fetching corpus: 3498, signal 144382/186082 (executing program)
2025/08/29 13:31:10 fetching corpus: 3548, signal 145049/186863 (executing program)
2025/08/29 13:31:11 fetching corpus: 3598, signal 146309/187794 (executing program)
2025/08/29 13:31:11 fetching corpus: 3648, signal 146871/188514 (executing program)
2025/08/29 13:31:11 fetching corpus: 3698, signal 147878/189367 (executing program)
2025/08/29 13:31:11 fetching corpus: 3748, signal 148473/190092 (executing program)
2025/08/29 13:31:11 fetching corpus: 3798, signal 148870/190734 (executing program)
2025/08/29 13:31:11 fetching corpus: 3848, signal 149325/191354 (executing program)
2025/08/29 13:31:11 fetching corpus: 3897, signal 149798/192058 (executing program)
2025/08/29 13:31:11 fetching corpus: 3947, signal 150234/192689 (executing program)
2025/08/29 13:31:11 fetching corpus: 3997, signal 150826/193314 (executing program)
2025/08/29 13:31:11 fetching corpus: 4047, signal 151674/193996 (executing program)
2025/08/29 13:31:11 fetching corpus: 4097, signal 152419/194638 (executing program)
2025/08/29 13:31:11 fetching corpus: 4147, signal 153044/195375 (executing program)
2025/08/29 13:31:12 fetching corpus: 4197, signal 153525/195966 (executing program)
2025/08/29 13:31:12 fetching corpus: 4247, signal 154238/196576 (executing program)
2025/08/29 13:31:12 fetching corpus: 4297, signal 154916/197151 (executing program)
2025/08/29 13:31:12 fetching corpus: 4347, signal 155562/197739 (executing program)
2025/08/29 13:31:12 fetching corpus: 4397, signal 155998/198346 (executing program)
2025/08/29 13:31:12 fetching corpus: 4447, signal 156513/198877 (executing program)
2025/08/29 13:31:12 fetching corpus: 4497, signal 157194/199391 (executing program)
2025/08/29 13:31:12 fetching corpus: 4547, signal 157561/199879 (executing program)
2025/08/29 13:31:12 fetching corpus: 4597, signal 157950/200370 (executing program)
2025/08/29 13:31:12 fetching corpus: 4647, signal 158363/200878 (executing program)
2025/08/29 13:31:12 fetching corpus: 4697, signal 158910/201399 (executing program)
2025/08/29 13:31:13 fetching corpus: 4746, signal 159288/201867 (executing program)
2025/08/29 13:31:13 fetching corpus: 4796, signal 159641/202317 (executing program)
2025/08/29 13:31:13 fetching corpus: 4846, signal 160018/202764 (executing program)
2025/08/29 13:31:13 fetching corpus: 4896, signal 160319/203214 (executing program)
2025/08/29 13:31:13 fetching corpus: 4946, signal 160807/203239 (executing program)
2025/08/29 13:31:13 fetching corpus: 4996, signal 162677/203321 (executing program)
2025/08/29 13:31:13 fetching corpus: 5046, signal 163182/203335 (executing program)
2025/08/29 13:31:13 fetching corpus: 5095, signal 163762/203347 (executing program)
2025/08/29 13:31:13 fetching corpus: 5145, signal 164094/203352 (executing program)
2025/08/29 13:31:13 fetching corpus: 5195, signal 164835/203361 (executing program)
2025/08/29 13:31:13 fetching corpus: 5245, signal 165136/203371 (executing program)
2025/08/29 13:31:14 fetching corpus: 5295, signal 165581/203374 (executing program)
2025/08/29 13:31:14 fetching corpus: 5345, signal 165944/203378 (executing program)
2025/08/29 13:31:14 fetching corpus: 5395, signal 166443/203378 (executing program)
2025/08/29 13:31:14 fetching corpus: 5445, signal 166772/203387 (executing program)
2025/08/29 13:31:14 fetching corpus: 5495, signal 167255/203396 (executing program)
2025/08/29 13:31:14 fetching corpus: 5545, signal 167784/203400 (executing program)
2025/08/29 13:31:14 fetching corpus: 5595, signal 168242/203458 (executing program)
2025/08/29 13:31:14 fetching corpus: 5645, signal 168702/203461 (executing program)
2025/08/29 13:31:14 fetching corpus: 5695, signal 169030/203469 (executing program)
2025/08/29 13:31:14 fetching corpus: 5745, signal 169376/203475 (executing program)
2025/08/29 13:31:14 fetching corpus: 5795, signal 169775/203502 (executing program)
2025/08/29 13:31:15 fetching corpus: 5845, signal 170085/203517 (executing program)
2025/08/29 13:31:15 fetching corpus: 5895, signal 170416/203520 (executing program)
2025/08/29 13:31:15 fetching corpus: 5945, signal 170648/203522 (executing program)
2025/08/29 13:31:15 fetching corpus: 5995, signal 171040/203529 (executing program)
2025/08/29 13:31:15 fetching corpus: 6045, signal 171476/203532 (executing program)
2025/08/29 13:31:15 fetching corpus: 6095, signal 171911/203587 (executing program)
2025/08/29 13:31:15 fetching corpus: 6145, signal 172236/203605 (executing program)
2025/08/29 13:31:15 fetching corpus: 6194, signal 172615/203609 (executing program)
2025/08/29 13:31:15 fetching corpus: 6244, signal 172883/203610 (executing program)
2025/08/29 13:31:15 fetching corpus: 6294, signal 173363/203612 (executing program)
2025/08/29 13:31:15 fetching corpus: 6344, signal 173611/203630 (executing program)
2025/08/29 13:31:15 fetching corpus: 6394, signal 174039/203633 (executing program)
2025/08/29 13:31:15 fetching corpus: 6444, signal 174381/203654 (executing program)
2025/08/29 13:31:16 fetching corpus: 6494, signal 174906/203667 (executing program)
2025/08/29 13:31:16 fetching corpus: 6544, signal 175340/203685 (executing program)
2025/08/29 13:31:16 fetching corpus: 6594, signal 175659/203689 (executing program)
2025/08/29 13:31:16 fetching corpus: 6644, signal 175958/203702 (executing program)
2025/08/29 13:31:16 fetching corpus: 6694, signal 176501/203702 (executing program)
2025/08/29 13:31:16 fetching corpus: 6744, signal 176844/203752 (executing program)
2025/08/29 13:31:16 fetching corpus: 6794, signal 177143/203796 (executing program)
2025/08/29 13:31:16 fetching corpus: 6844, signal 177451/203798 (executing program)
2025/08/29 13:31:16 fetching corpus: 6894, signal 177749/203809 (executing program)
2025/08/29 13:31:16 fetching corpus: 6944, signal 178117/203816 (executing program)
2025/08/29 13:31:16 fetching corpus: 6994, signal 178465/203825 (executing program)
2025/08/29 13:31:16 fetching corpus: 7044, signal 178803/203833 (executing program)
2025/08/29 13:31:17 fetching corpus: 7094, signal 179046/203839 (executing program)
2025/08/29 13:31:17 fetching corpus: 7144, signal 179346/203868 (executing program)
2025/08/29 13:31:17 fetching corpus: 7194, signal 179646/203876 (executing program)
2025/08/29 13:31:17 fetching corpus: 7244, signal 179994/203885 (executing program)
2025/08/29 13:31:17 fetching corpus: 7294, signal 180329/203897 (executing program)
2025/08/29 13:31:17 fetching corpus: 7344, signal 180568/203903 (executing program)
2025/08/29 13:31:17 fetching corpus: 7394, signal 181086/203911 (executing program)
2025/08/29 13:31:17 fetching corpus: 7444, signal 181573/203912 (executing program)
2025/08/29 13:31:17 fetching corpus: 7494, signal 181939/203916 (executing program)
2025/08/29 13:31:17 fetching corpus: 7544, signal 182224/203925 (executing program)
2025/08/29 13:31:17 fetching corpus: 7594, signal 182516/203932 (executing program)
2025/08/29 13:31:17 fetching corpus: 7644, signal 183110/203944 (executing program)
2025/08/29 13:31:17 fetching corpus: 7694, signal 183382/203952 (executing program)
2025/08/29 13:31:18 fetching corpus: 7744, signal 183634/203961 (executing program)
2025/08/29 13:31:18 fetching corpus: 7794, signal 183968/203962 (executing program)
2025/08/29 13:31:18 fetching corpus: 7844, signal 184125/203980 (executing program)
2025/08/29 13:31:18 fetching corpus: 7894, signal 184342/203985 (executing program)
2025/08/29 13:31:18 fetching corpus: 7944, signal 184591/204000 (executing program)
2025/08/29 13:31:18 fetching corpus: 7993, signal 185064/204012 (executing program)
2025/08/29 13:31:18 fetching corpus: 8043, signal 185436/204013 (executing program)
2025/08/29 13:31:18 fetching corpus: 8093, signal 185707/204015 (executing program)
2025/08/29 13:31:18 fetching corpus: 8143, signal 186581/204020 (executing program)
2025/08/29 13:31:18 fetching corpus: 8193, signal 186913/204023 (executing program)
2025/08/29 13:31:18 fetching corpus: 8243, signal 187144/204029 (executing program)
2025/08/29 13:31:18 fetching corpus: 8293, signal 187343/204040 (executing program)
2025/08/29 13:31:19 fetching corpus: 8343, signal 187642/204076 (executing program)
2025/08/29 13:31:19 fetching corpus: 8393, signal 187895/204087 (executing program)
2025/08/29 13:31:19 fetching corpus: 8443, signal 188161/204090 (executing program)
2025/08/29 13:31:19 fetching corpus: 8493, signal 188359/204095 (executing program)
2025/08/29 13:31:19 fetching corpus: 8542, signal 188743/204111 (executing program)
2025/08/29 13:31:19 fetching corpus: 8592, signal 189147/204114 (executing program)
2025/08/29 13:31:19 fetching corpus: 8642, signal 189413/204117 (executing program)
2025/08/29 13:31:19 fetching corpus: 8692, signal 189760/204132 (executing program)
2025/08/29 13:31:19 fetching corpus: 8742, signal 190046/204139 (executing program)
2025/08/29 13:31:19 fetching corpus: 8792, signal 190306/204152 (executing program)
2025/08/29 13:31:19 fetching corpus: 8842, signal 190463/204154 (executing program)
2025/08/29 13:31:19 fetching corpus: 8892, signal 190908/204163 (executing program)
2025/08/29 13:31:20 fetching corpus: 8942, signal 191109/204175 (executing program)
2025/08/29 13:31:20 fetching corpus: 8992, signal 191384/204177 (executing program)
2025/08/29 13:31:20 fetching corpus: 9042, signal 191617/204184 (executing program)
2025/08/29 13:31:20 fetching corpus: 9091, signal 191870/204186 (executing program)
2025/08/29 13:31:20 fetching corpus: 9141, signal 192151/204188 (executing program)
2025/08/29 13:31:20 fetching corpus: 9191, signal 192377/204190 (executing program)
2025/08/29 13:31:20 fetching corpus: 9241, signal 192583/204191 (executing program)
2025/08/29 13:31:20 fetching corpus: 9291, signal 192880/204193 (executing program)
2025/08/29 13:31:20 fetching corpus: 9341, signal 193244/204201 (executing program)
2025/08/29 13:31:20 fetching corpus: 9391, signal 193498/204264 (executing program)
2025/08/29 13:31:20 fetching corpus: 9441, signal 193816/204272 (executing program)
2025/08/29 13:31:21 fetching corpus: 9491, signal 194030/204275 (executing program)
2025/08/29 13:31:21 fetching corpus: 9541, signal 194316/204276 (executing program)
2025/08/29 13:31:21 fetching corpus: 9591, signal 194613/204287 (executing program)
2025/08/29 13:31:21 fetching corpus: 9641, signal 194787/204291 (executing program)
2025/08/29 13:31:21 fetching corpus: 9691, signal 195013/204305 (executing program)
2025/08/29 13:31:21 fetching corpus: 9741, signal 195213/204311 (executing program)
2025/08/29 13:31:21 fetching corpus: 9791, signal 195417/204311 (executing program)
2025/08/29 13:31:21 fetching corpus: 9841, signal 195798/204312 (executing program)
2025/08/29 13:31:21 fetching corpus: 9890, signal 196039/204322 (executing program)
2025/08/29 13:31:21 fetching corpus: 9940, signal 196289/204323 (executing program)
2025/08/29 13:31:21 fetching corpus: 9988, signal 196506/204338 (executing program)
2025/08/29 13:31:21 fetching corpus: 10038, signal 196681/204349 (executing program)
2025/08/29 13:31:22 fetching corpus: 10088, signal 196945/204349 (executing program)
2025/08/29 13:31:22 fetching corpus: 10137, signal 197213/204355 (executing program)
2025/08/29 13:31:22 fetching corpus: 10187, signal 197395/204358 (executing program)
2025/08/29 13:31:22 fetching corpus: 10237, signal 197599/204371 (executing program)
2025/08/29 13:31:22 fetching corpus: 10287, signal 197933/204384 (executing program)
2025/08/29 13:31:22 fetching corpus: 10337, signal 198138/204395 (executing program)
2025/08/29 13:31:22 fetching corpus: 10386, signal 198390/204397 (executing program)
2025/08/29 13:31:22 fetching corpus: 10436, signal 198624/204404 (executing program)
2025/08/29 13:31:22 fetching corpus: 10486, signal 198873/204409 (executing program)
2025/08/29 13:31:22 fetching corpus: 10536, signal 199035/204421 (executing program)
2025/08/29 13:31:22 fetching corpus: 10586, signal 199255/204433 (executing program)
2025/08/29 13:31:23 fetching corpus: 10636, signal 199502/204446 (executing program)
2025/08/29 13:31:23 fetching corpus: 10686, signal 199675/204446 (executing program)
2025/08/29 13:31:23 fetching corpus: 10736, signal 199870/204456 (executing program)
2025/08/29 13:31:23 fetching corpus: 10786, signal 200110/204459 (executing program)
2025/08/29 13:31:23 fetching corpus: 10836, signal 200248/204476 (executing program)
2025/08/29 13:31:23 fetching corpus: 10856, signal 200314/204476 (executing program)
2025/08/29 13:31:23 fetching corpus: 10856, signal 200314/204476 (executing program)
2025/08/29 13:31:26 starting 8 fuzzer processes
13:31:26 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getpid()
setpriority(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='comm\x00')
write$P9_ROPEN(r0, &(0x7f0000000200)={0x18}, 0x18)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
13:31:26 executing program 4:
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_pkt_type_change={{0x1d, 0x5}}}, 0x8)
13:31:26 executing program 1:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000140)=@md0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000880)='securityfs\x00', 0x0, 0x0)
13:31:26 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f00000015c0)=""/209)
13:31:26 executing program 2:
syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={[{@mpol={'mpol', 0x3d, {'default', '=relative', @val={0x3a, [0x34, 0x2d, 0x4e]}}}}]})
13:31:26 executing program 5:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x801)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000200)={0x33})
13:31:26 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r0, 0x0, 0x0)
13:31:26 executing program 6:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0)
pwritev(r0, &(0x7f0000000300)=[{&(0x7f0000000440)="85", 0x80000}], 0x1, 0x1000, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x96d4})
[ 86.134411] audit: type=1400 audit(1756474286.214:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[ 87.355881] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 87.358846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 87.364229] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 87.372320] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 87.376035] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 87.418638] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 87.421113] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 87.422774] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 87.426797] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 87.433470] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 87.437717] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 87.439265] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 87.440735] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 87.448726] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 87.450311] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 87.453581] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 87.457810] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 87.461248] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 87.461345] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 87.476253] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 87.483952] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 87.491633] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 87.496922] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 87.496967] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 87.499816] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 87.500866] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 87.505900] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 87.507858] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 87.509950] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 87.513018] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 87.520949] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 87.523340] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 87.524978] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 87.530762] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 87.538705] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 87.540710] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 87.542351] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 87.560708] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 87.576872] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 87.595761] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 89.446164] Bluetooth: hci0: command tx timeout
[ 89.511471] Bluetooth: hci1: command tx timeout
[ 89.512068] Bluetooth: hci2: command tx timeout
[ 89.573537] Bluetooth: hci5: command tx timeout
[ 89.574161] Bluetooth: hci4: command tx timeout
[ 89.574500] Bluetooth: hci3: command tx timeout
[ 89.637567] Bluetooth: hci6: command tx timeout
[ 89.638366] Bluetooth: hci7: command tx timeout
[ 91.494555] Bluetooth: hci0: command tx timeout
[ 91.557522] Bluetooth: hci2: command tx timeout
[ 91.557987] Bluetooth: hci1: command tx timeout
[ 91.621518] Bluetooth: hci3: command tx timeout
[ 91.622652] Bluetooth: hci4: command tx timeout
[ 91.623031] Bluetooth: hci5: command tx timeout
[ 91.685950] Bluetooth: hci7: command tx timeout
[ 91.686330] Bluetooth: hci6: command tx timeout
[ 93.542456] Bluetooth: hci0: command tx timeout
[ 93.605519] Bluetooth: hci1: command tx timeout
[ 93.605898] Bluetooth: hci2: command tx timeout
[ 93.669486] Bluetooth: hci4: command tx timeout
[ 93.669867] Bluetooth: hci5: command tx timeout
[ 93.669914] Bluetooth: hci3: command tx timeout
[ 93.735465] Bluetooth: hci7: command tx timeout
[ 93.735523] Bluetooth: hci6: command tx timeout
[ 95.589478] Bluetooth: hci0: command tx timeout
[ 95.653594] Bluetooth: hci1: command tx timeout
[ 95.653986] Bluetooth: hci2: command tx timeout
[ 95.719473] Bluetooth: hci4: command tx timeout
[ 95.719507] Bluetooth: hci5: command tx timeout
[ 95.719931] Bluetooth: hci3: command tx timeout
[ 95.781656] Bluetooth: hci7: command tx timeout
[ 95.782053] Bluetooth: hci6: command tx timeout
[ 127.441567] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.442247] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.584081] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.585749] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.789683] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.790257] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 128.002019] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.002998] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 128.158163] audit: type=1400 audit(1756474328.238:8): avc: denied { open } for pid=3819 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 128.162531] audit: type=1400 audit(1756474328.238:9): avc: denied { kernel } for pid=3819 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
13:32:08 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)
[ 128.349089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.350388] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 128.359981] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 128.369709] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.370337] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:32:08 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)
13:32:08 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)
13:32:08 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)
[ 128.691622] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.692274] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:32:08 executing program 3:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000000)={0x0, 0x7, 0x2, 0x0, 0x1, [{}]})
[ 128.818474] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.819127] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:32:08 executing program 3:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
[ 128.942559] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.943226] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:32:09 executing program 3:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
[ 129.039593] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.040269] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:32:09 executing program 3:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
[ 129.173531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.175281] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.224226] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.225400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.273152] tmpfs: Bad value for 'mpol'
[ 129.274714] tmpfs: Bad value for 'mpol'
[ 129.304826] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.305495] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.348017] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.348698] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.415401] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.417177] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.455679] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.456836] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
13:32:09 executing program 0:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0)
pwritev(r0, &(0x7f0000000300)=[{&(0x7f0000000440)="85", 0x80000}], 0x1, 0x1000, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x96d4})
13:32:09 executing program 4:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000bc0)={'team_slave_0\x00', &(0x7f0000000b80)=@ethtool_perm_addr})
13:32:09 executing program 5:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x801)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000200)={0x33})
13:32:09 executing program 1:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000140)=@md0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000880)='securityfs\x00', 0x0, 0x0)
13:32:09 executing program 6:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0)
pwritev(r0, &(0x7f0000000300)=[{&(0x7f0000000440)="85", 0x80000}], 0x1, 0x1000, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x96d4})
13:32:09 executing program 7:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000080))
ioctl$NS_GET_OWNER_UID(r0, 0xc0189436, &(0x7f0000003c40))
13:32:09 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pipe2(&(0x7f0000000000), 0x0)
13:32:09 executing program 3:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
13:32:09 executing program 5:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x801)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000200)={0x33})
13:32:09 executing program 1:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000140)=@md0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000880)='securityfs\x00', 0x0, 0x0)
13:32:09 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pipe2(&(0x7f0000000000), 0x0)
13:32:09 executing program 4:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000bc0)={'team_slave_0\x00', &(0x7f0000000b80)=@ethtool_perm_addr})
13:32:09 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x5423, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x0, 0x0, "f2f3e2a9286b6a770ff8c2b978657df3480824"})
read(r0, 0x0, 0x40004)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
13:32:10 executing program 5:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x801)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000200)={0x33})
13:32:10 executing program 4:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000bc0)={'team_slave_0\x00', &(0x7f0000000b80)=@ethtool_perm_addr})
13:32:10 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pipe2(&(0x7f0000000000), 0x0)
[ 129.987219] serio: Serial port ptm0
[ 130.007942] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[ 130.008948] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 130.009829] CPU: 0 UID: 0 PID: 3935 Comm: syz-executor.4 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 130.011694] Tainted: [W]=WARN
[ 130.012176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 130.013431] RIP: 0010:perf_tp_event+0x175/0xe70
[ 130.014167] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 130.016699] RSP: 0018:ffff88801693f800 EFLAGS: 00010212
[ 130.017434] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 130.018431] RDX: ffff888007135280 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 130.019852] RBP: ffff88801693fa70 R08: ffff88806ce31340 R09: ffffe8ffffc11228
[ 130.020896] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 130.021907] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 130.022975] FS: 000055555be52400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 130.024140] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 130.024994] CR2: 000055555be53c18 CR3: 000000001df0a000 CR4: 0000000000350ef0
[ 130.026110] Call Trace:
[ 130.026345]
[ 130.026538] ? arch_scale_cpu_capacity+0x17/0xa0
[ 130.026930] ? __pfx_perf_tp_event+0x10/0x10
[ 130.027289] ? __asan_memset+0x24/0x50
[ 130.027622] ? perf_trace_lock+0xb5/0x5d0
[ 130.027959] ? kvm_sched_clock_read+0x16/0x30
[ 130.028325] ? sched_clock+0x37/0x60
[ 130.028646] ? sched_clock_cpu+0x6c/0x4e0
[ 130.028992] ? lock_is_held_type+0x9e/0x120
[ 130.029345] ? perf_trace_run_bpf_submit+0xef/0x180
[ 130.029751] perf_trace_run_bpf_submit+0xef/0x180
[ 130.030152] perf_trace_lock+0x337/0x5d0
[ 130.030485] ? __pfx_perf_trace_lock+0x10/0x10
[ 130.030858] ? lock_acquire+0x15e/0x2f0
[ 130.031181] ? futex_ref_get+0x48/0x300
[ 130.031502] ? futex_ref_get+0x114/0x300
[ 130.031828] ? futex_hash+0x15c/0x390
[ 130.032137] lock_release+0x1ab/0x290
[ 130.032459] ? futex_hash+0x15c/0x390
[ 130.032768] futex_ref_get+0x119/0x300
[ 130.033083] ? futex_hash+0x15c/0x390
[ 130.033390] futex_hash+0x70/0x390
[ 130.033685] futex_wake+0x143/0x540
[ 130.033986] ? put_pid+0x1f/0x30
[ 130.034263] ? kernel_clone+0x204/0x7f0
[ 130.034587] ? __pfx_futex_wake+0x10/0x10
[ 130.034923] ? __pfx_kernel_clone+0x10/0x10
[ 130.035270] ? perf_trace_lock+0xb5/0x5d0
[ 130.035610] do_futex+0x26d/0x370
[ 130.035898] ? __pfx_do_futex+0x10/0x10
[ 130.036221] ? __pfx___do_sys_clone+0x10/0x10
[ 130.036594] ? find_held_lock+0x2b/0x80
[ 130.036925] __x64_sys_futex+0x1c9/0x4d0
[ 130.037258] ? __pfx___x64_sys_futex+0x10/0x10
[ 130.037630] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 130.038048] do_syscall_64+0xbf/0x360
[ 130.038358] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 130.038769] RIP: 0033:0x7f0d12557b19
[ 130.039071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 130.040493] RSP: 002b:00007ffd2474a208 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 130.041091] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0d12557b19
[ 130.041651] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0d1266af68
[ 130.042213] RBP: 00007f0d1266af60 R08: 00007f0d0facd700 R09: 0000000000000000
[ 130.042773] R10: 00007f0d0facd700 R11: 0000000000000246 R12: 00007f0d1266f060
[ 130.043334] R13: 00007ffd2474a310 R14: 00007f0d1266af60 R15: 000000000001fb10
[ 130.043905]
[ 130.044097] Modules linked in:
[ 130.044386] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[ 130.045268] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[ 130.045944] CPU: 0 UID: 0 PID: 3935 Comm: syz-executor.4 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary)
[ 130.046875] Tainted: [D]=DIE, [W]=WARN
[ 130.047182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 130.047826] RIP: 0010:perf_tp_event+0x175/0xe70
[ 130.048210] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 130.049644] RSP: 0018:ffff88806ce08a80 EFLAGS: 00010012
[ 130.050065] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 130.050626] RDX: ffff888007135280 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 130.051190] RBP: ffff88806ce08cf0 R08: ffff88806ce31490 R09: ffffe8ffffc11228
[ 130.051748] R10: 0000000000000000 R11: 746e756f63716573 R12: dffffc0000000000
[ 130.052304] R13: 000000000000002c R14: ffff88806ce31490 R15: dffffc0000000000
[ 130.052885] FS: 000055555be52400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 130.053520] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 130.053978] CR2: 000055555be53c18 CR3: 000000001df0a000 CR4: 0000000000350ef0
[ 130.054542] Call Trace:
[ 130.054754]
[ 130.054933] ? __pfx_blk_mq_complete_request_remote+0x10/0x10
[ 130.055411] ? __pfx_perf_tp_event+0x10/0x10
[ 130.055767] ? __pfx_css_rstat_updated+0x10/0x10
[ 130.056150] ? lock_is_held_type+0x9e/0x120
[ 130.056525] ? trace_pelt_se_tp+0xdf/0x130
[ 130.056869] ? __update_load_avg_se+0x428/0xa40
[ 130.057305] ? lock_is_held_type+0x9e/0x120
[ 130.057704] ? perf_trace_lock+0xb5/0x5d0
[ 130.058083] ? perf_trace_lock+0xb5/0x5d0
[ 130.058466] ? __resched_curr+0x2a2/0x330
[ 130.058855] ? __pfx_perf_trace_lock+0x10/0x10
[ 130.059275] ? __pfx_perf_trace_lock+0x10/0x10
[ 130.059699] ? lock_is_held_type+0x9e/0x120
[ 130.060110] ? perf_trace_run_bpf_submit+0xef/0x180
[ 130.060580] perf_trace_run_bpf_submit+0xef/0x180
[ 130.061029] perf_trace_lock+0x337/0x5d0
[ 130.061403] ? __pfx_perf_trace_lock+0x10/0x10
[ 130.061823] ? find_held_lock+0x2b/0x80
[ 130.062193] ? hrtimer_interrupt+0x114/0x830
[ 130.062594] lock_release+0x1ab/0x290
[ 130.062944] ktime_get_update_offsets_now+0xab/0x3c0
[ 130.063406] ? hrtimer_interrupt+0x114/0x830
[ 130.063808] ? __pfx_lapic_next_deadline+0x10/0x10
[ 130.064265] hrtimer_interrupt+0x114/0x830
[ 130.064661] __sysvec_apic_timer_interrupt+0xbb/0x330
[ 130.065129] sysvec_apic_timer_interrupt+0x6b/0x80
[ 130.065579]
[ 130.065787]
[ 130.065995] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 130.066469] RIP: 0010:oops_exit+0x0/0x50
[ 130.066841] Code: f1 39 00 be ff ff ff ff 48 c7 c7 50 ac 43 86 e8 c6 0f f9 ff 5b e9 20 f1 39 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <66> 0f 1f 00 53 e8 06 f1 39 00 8b 1d c0 ed 4e 06 31 ff 89 de e8 27
[ 130.068449] RSP: 0018:ffff88801693f690 EFLAGS: 00000202
[ 130.068928] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff8139f06f
[ 130.069563] RDX: ffff888007135280 RSI: ffffffff812a3dca RDI: 0000000000000007
[ 130.070201] RBP: 000000000000000b R08: 0000000000000001 R09: fffffbfff0f11c90
[ 130.070834] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801693f758
[ 130.071471] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[ 130.072111] ? add_taint+0x5f/0xd0
[ 130.072452] ? oops_end+0x4a/0xe0
[ 130.072780] oops_end+0x65/0xe0
[ 130.073092] exc_general_protection+0x1a2/0x330
[ 130.073523] asm_exc_general_protection+0x26/0x30
[ 130.073954] RIP: 0010:perf_tp_event+0x175/0xe70
[ 130.074379] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 130.075988] RSP: 0018:ffff88801693f800 EFLAGS: 00010212
[ 130.076476] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 130.077107] RDX: ffff888007135280 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 130.077736] RBP: ffff88801693fa70 R08: ffff88806ce31340 R09: ffffe8ffffc11228
[ 130.078369] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 130.079004] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 130.079644] ? perf_tp_event+0x167/0xe70
[ 130.080020] ? arch_scale_cpu_capacity+0x17/0xa0
[ 130.080465] ? __pfx_perf_tp_event+0x10/0x10
[ 130.080865] ? __asan_memset+0x24/0x50
[ 130.081232] ? perf_trace_lock+0xb5/0x5d0
[ 130.081611] ? kvm_sched_clock_read+0x16/0x30
[ 130.082021] ? sched_clock+0x37/0x60
[ 130.082365] ? sched_clock_cpu+0x6c/0x4e0
[ 130.082742] ? lock_is_held_type+0x9e/0x120
[ 130.083144] ? perf_trace_run_bpf_submit+0xef/0x180
[ 130.083596] perf_trace_run_bpf_submit+0xef/0x180
[ 130.084034] perf_trace_lock+0x337/0x5d0
[ 130.084405] ? __pfx_perf_trace_lock+0x10/0x10
[ 130.084837] ? lock_acquire+0x15e/0x2f0
[ 130.085201] ? futex_ref_get+0x48/0x300
[ 130.085564] ? futex_ref_get+0x114/0x300
[ 130.085931] ? futex_hash+0x15c/0x390
[ 130.086280] lock_release+0x1ab/0x290
[ 130.086627] ? futex_hash+0x15c/0x390
[ 130.086977] futex_ref_get+0x119/0x300
[ 130.087331] ? futex_hash+0x15c/0x390
[ 130.087675] futex_hash+0x70/0x390
[ 130.088000] futex_wake+0x143/0x540
[ 130.088343] ? put_pid+0x1f/0x30
[ 130.088667] ? kernel_clone+0x204/0x7f0
[ 130.089026] ? __pfx_futex_wake+0x10/0x10
[ 130.089406] ? __pfx_kernel_clone+0x10/0x10
[ 130.089799] ? perf_trace_lock+0xb5/0x5d0
[ 130.090176] do_futex+0x26d/0x370
[ 130.090497] ? __pfx_do_futex+0x10/0x10
[ 130.090858] ? __pfx___do_sys_clone+0x10/0x10
[ 130.091266] ? find_held_lock+0x2b/0x80
[ 130.091632] __x64_sys_futex+0x1c9/0x4d0
[ 130.092001] ? __pfx___x64_sys_futex+0x10/0x10
[ 130.092423] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 130.092909] do_syscall_64+0xbf/0x360
[ 130.093258] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 130.093720] RIP: 0033:0x7f0d12557b19
[ 130.094054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 130.095656] RSP: 002b:00007ffd2474a208 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 130.096332] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0d12557b19
[ 130.096978] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0d1266af68
[ 130.097613] RBP: 00007f0d1266af60 R08: 00007f0d0facd700 R09: 0000000000000000
[ 130.098255] R10: 00007f0d0facd700 R11: 0000000000000246 R12: 00007f0d1266f060
[ 130.098883] R13: 00007ffd2474a310 R14: 00007f0d1266af60 R15: 000000000001fb10
[ 130.099528]
[ 130.099744] Modules linked in:
[ 130.100041] ---[ end trace 0000000000000000 ]---
[ 130.100470] RIP: 0010:perf_tp_event+0x175/0xe70
[ 130.100895] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[ 130.102511] RSP: 0018:ffff88801693f800 EFLAGS: 00010212
[ 130.102988] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[ 130.103620] RDX: ffff888007135280 RSI: ffffffff818995b7 RDI: 0000000100000190
[ 130.104261] RBP: ffff88801693fa70 R08: ffff88806ce31340 R09: ffffe8ffffc11228
[ 130.104899] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[ 130.105473] R13: 000000000000002c R14: ffff88806ce31340 R15: dffffc0000000000
[ 130.106070] FS: 000055555be52400(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[ 130.106779] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 130.107302] CR2: 000055555be53c18 CR3: 000000001df0a000 CR4: 0000000000350ef0
[ 130.107942] Kernel panic - not syncing: Fatal exception in interrupt
[ 130.108600] Kernel Offset: disabled
[ 130.108923] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
VM DIAGNOSIS:
13:32:10 Registers:
info registers vcpu 0
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88801693f170
R8 =0000000000000000 R9 =ffffed1001536046 R10=0000000000000066 R11=6666666666662052
R12=0000000000000066 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555be52400 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe6d00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000055555be53c18 CR3=000000001df0a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f0d1263e7c000007f0d1263e7c8
XMM02=00007f0d1263e7e000007f0d1263e7c0 XMM03=00007f0d1263e7c800007f0d1263e7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000001 RBX=ffff88800a441b80 RCX=ffffffff8143cbea RDX=1ffff11001df5400
RSI=ffffffff8143cb73 RDI=ffff88800efaa000 RBP=0000000000000000 RSP=ffff88800eb1fdb0
R8 =0000000000000000 R9 =ffffed1001df5400 R10=ffff88800efaa007 R11=1ffff1100d9e6f7b
R12=ffff888078350ff9 R13=ffffffff886edd98 R14=ffff88800a441b80 R15=0000000000000086
RIP=ffffffff8173e788 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe1900000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000000002006e000 CR3=000000000dfd9000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f70b5f427c000007f70b5f427c8
XMM02=00007f70b5f427e000007f70b5f427c0 XMM03=00007f70b5f427c800007f70b5f427c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000