Warning: Permanently added '[localhost]:61660' (ECDSA) to the list of known hosts.
2025/08/31 07:45:10 fuzzer started
2025/08/31 07:45:10 dialing manager at localhost:43077
syzkaller login: [   51.382675] cgroup: Unknown subsys name 'net'
[   51.434468] cgroup: Unknown subsys name 'cpuset'
[   51.448922] cgroup: Unknown subsys name 'rlimit'
2025/08/31 07:45:21 syscalls: 2214
2025/08/31 07:45:21 code coverage: enabled
2025/08/31 07:45:21 comparison tracing: enabled
2025/08/31 07:45:21 extra coverage: enabled
2025/08/31 07:45:21 setuid sandbox: enabled
2025/08/31 07:45:21 namespace sandbox: enabled
2025/08/31 07:45:21 Android sandbox: enabled
2025/08/31 07:45:21 fault injection: enabled
2025/08/31 07:45:21 leak checking: enabled
2025/08/31 07:45:21 net packet injection: enabled
2025/08/31 07:45:21 net device setup: enabled
2025/08/31 07:45:21 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/31 07:45:21 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/31 07:45:21 USB emulation: enabled
2025/08/31 07:45:21 hci packet injection: enabled
2025/08/31 07:45:21 wifi device emulation: enabled
2025/08/31 07:45:21 802.15.4 emulation: enabled
2025/08/31 07:45:21 fetching corpus: 50, signal 26179/27961 (executing program)
2025/08/31 07:45:21 fetching corpus: 100, signal 36836/40213 (executing program)
2025/08/31 07:45:21 fetching corpus: 150, signal 42354/47261 (executing program)
2025/08/31 07:45:21 fetching corpus: 200, signal 45121/51534 (executing program)
2025/08/31 07:45:21 fetching corpus: 250, signal 49999/57747 (executing program)
2025/08/31 07:45:21 fetching corpus: 300, signal 53421/62546 (executing program)
2025/08/31 07:45:21 fetching corpus: 350, signal 56987/67419 (executing program)
2025/08/31 07:45:21 fetching corpus: 400, signal 61518/73146 (executing program)
2025/08/31 07:45:21 fetching corpus: 450, signal 68206/80730 (executing program)
2025/08/31 07:45:22 fetching corpus: 500, signal 70622/84320 (executing program)
2025/08/31 07:45:22 fetching corpus: 550, signal 72781/87589 (executing program)
2025/08/31 07:45:22 fetching corpus: 600, signal 75982/91823 (executing program)
2025/08/31 07:45:22 fetching corpus: 650, signal 79442/96177 (executing program)
2025/08/31 07:45:22 fetching corpus: 700, signal 82720/100315 (executing program)
2025/08/31 07:45:22 fetching corpus: 750, signal 85216/103720 (executing program)
2025/08/31 07:45:22 fetching corpus: 800, signal 86704/106235 (executing program)
2025/08/31 07:45:22 fetching corpus: 850, signal 88637/109115 (executing program)
2025/08/31 07:45:22 fetching corpus: 900, signal 90939/112339 (executing program)
2025/08/31 07:45:22 fetching corpus: 950, signal 92100/114485 (executing program)
2025/08/31 07:45:22 fetching corpus: 1000, signal 93745/116995 (executing program)
2025/08/31 07:45:23 fetching corpus: 1050, signal 95629/119659 (executing program)
2025/08/31 07:45:23 fetching corpus: 1100, signal 97210/122096 (executing program)
2025/08/31 07:45:23 fetching corpus: 1150, signal 98277/124087 (executing program)
2025/08/31 07:45:23 fetching corpus: 1200, signal 100417/126901 (executing program)
2025/08/31 07:45:23 fetching corpus: 1250, signal 102373/129560 (executing program)
2025/08/31 07:45:23 fetching corpus: 1300, signal 103791/131725 (executing program)
2025/08/31 07:45:23 fetching corpus: 1350, signal 104715/133474 (executing program)
2025/08/31 07:45:23 fetching corpus: 1400, signal 106000/135456 (executing program)
2025/08/31 07:45:23 fetching corpus: 1450, signal 108038/138015 (executing program)
2025/08/31 07:45:23 fetching corpus: 1500, signal 109267/139983 (executing program)
2025/08/31 07:45:23 fetching corpus: 1550, signal 112091/143053 (executing program)
2025/08/31 07:45:24 fetching corpus: 1600, signal 113594/145111 (executing program)
2025/08/31 07:45:24 fetching corpus: 1650, signal 114601/146777 (executing program)
2025/08/31 07:45:24 fetching corpus: 1700, signal 115583/148411 (executing program)
2025/08/31 07:45:24 fetching corpus: 1750, signal 116543/150034 (executing program)
2025/08/31 07:45:24 fetching corpus: 1800, signal 117366/151533 (executing program)
2025/08/31 07:45:24 fetching corpus: 1850, signal 118507/153239 (executing program)
2025/08/31 07:45:24 fetching corpus: 1900, signal 120635/155536 (executing program)
2025/08/31 07:45:24 fetching corpus: 1950, signal 121817/157209 (executing program)
2025/08/31 07:45:24 fetching corpus: 2000, signal 123756/159383 (executing program)
2025/08/31 07:45:24 fetching corpus: 2050, signal 124675/160797 (executing program)
2025/08/31 07:45:24 fetching corpus: 2100, signal 125481/162173 (executing program)
2025/08/31 07:45:25 fetching corpus: 2150, signal 126504/163766 (executing program)
2025/08/31 07:45:25 fetching corpus: 2200, signal 127203/165104 (executing program)
2025/08/31 07:45:25 fetching corpus: 2250, signal 128004/166439 (executing program)
2025/08/31 07:45:25 fetching corpus: 2300, signal 129066/167874 (executing program)
2025/08/31 07:45:25 fetching corpus: 2350, signal 130198/169395 (executing program)
2025/08/31 07:45:25 fetching corpus: 2400, signal 130915/170616 (executing program)
2025/08/31 07:45:25 fetching corpus: 2450, signal 131581/171821 (executing program)
2025/08/31 07:45:25 fetching corpus: 2500, signal 132242/172971 (executing program)
2025/08/31 07:45:25 fetching corpus: 2550, signal 132707/174031 (executing program)
2025/08/31 07:45:25 fetching corpus: 2600, signal 133592/175322 (executing program)
2025/08/31 07:45:25 fetching corpus: 2650, signal 134288/176499 (executing program)
2025/08/31 07:45:26 fetching corpus: 2700, signal 134985/177676 (executing program)
2025/08/31 07:45:26 fetching corpus: 2750, signal 135624/178810 (executing program)
2025/08/31 07:45:26 fetching corpus: 2800, signal 136389/179977 (executing program)
2025/08/31 07:45:26 fetching corpus: 2850, signal 137021/181089 (executing program)
2025/08/31 07:45:26 fetching corpus: 2900, signal 137905/182340 (executing program)
2025/08/31 07:45:26 fetching corpus: 2950, signal 138544/183430 (executing program)
2025/08/31 07:45:26 fetching corpus: 3000, signal 139290/184568 (executing program)
2025/08/31 07:45:26 fetching corpus: 3050, signal 139910/185619 (executing program)
2025/08/31 07:45:26 fetching corpus: 3100, signal 140379/186536 (executing program)
2025/08/31 07:45:26 fetching corpus: 3150, signal 141049/187548 (executing program)
2025/08/31 07:45:26 fetching corpus: 3200, signal 141653/188494 (executing program)
2025/08/31 07:45:26 fetching corpus: 3250, signal 142013/189411 (executing program)
2025/08/31 07:45:27 fetching corpus: 3300, signal 142580/190383 (executing program)
2025/08/31 07:45:27 fetching corpus: 3350, signal 143504/191473 (executing program)
2025/08/31 07:45:27 fetching corpus: 3400, signal 144358/192537 (executing program)
2025/08/31 07:45:27 fetching corpus: 3450, signal 145005/193510 (executing program)
2025/08/31 07:45:27 fetching corpus: 3500, signal 145648/194448 (executing program)
2025/08/31 07:45:27 fetching corpus: 3550, signal 146430/195510 (executing program)
2025/08/31 07:45:27 fetching corpus: 3600, signal 146906/196413 (executing program)
2025/08/31 07:45:27 fetching corpus: 3650, signal 147555/197329 (executing program)
2025/08/31 07:45:27 fetching corpus: 3700, signal 148112/198224 (executing program)
2025/08/31 07:45:27 fetching corpus: 3750, signal 148739/199119 (executing program)
2025/08/31 07:45:27 fetching corpus: 3800, signal 149297/199966 (executing program)
2025/08/31 07:45:27 fetching corpus: 3850, signal 149911/200844 (executing program)
2025/08/31 07:45:28 fetching corpus: 3900, signal 150595/201696 (executing program)
2025/08/31 07:45:28 fetching corpus: 3950, signal 151102/202470 (executing program)
2025/08/31 07:45:28 fetching corpus: 4000, signal 151860/203315 (executing program)
2025/08/31 07:45:28 fetching corpus: 4050, signal 152570/204126 (executing program)
2025/08/31 07:45:28 fetching corpus: 4100, signal 152941/204897 (executing program)
2025/08/31 07:45:28 fetching corpus: 4150, signal 153483/205662 (executing program)
2025/08/31 07:45:28 fetching corpus: 4200, signal 154241/206480 (executing program)
2025/08/31 07:45:28 fetching corpus: 4250, signal 154575/207191 (executing program)
2025/08/31 07:45:28 fetching corpus: 4300, signal 155185/208000 (executing program)
2025/08/31 07:45:28 fetching corpus: 4350, signal 155590/208720 (executing program)
2025/08/31 07:45:28 fetching corpus: 4400, signal 155991/209408 (executing program)
2025/08/31 07:45:29 fetching corpus: 4450, signal 156520/210128 (executing program)
2025/08/31 07:45:29 fetching corpus: 4500, signal 157083/210875 (executing program)
2025/08/31 07:45:29 fetching corpus: 4550, signal 157488/211625 (executing program)
2025/08/31 07:45:29 fetching corpus: 4600, signal 158041/212340 (executing program)
2025/08/31 07:45:29 fetching corpus: 4650, signal 158681/213008 (executing program)
2025/08/31 07:45:29 fetching corpus: 4700, signal 159362/213718 (executing program)
2025/08/31 07:45:29 fetching corpus: 4750, signal 159698/214298 (executing program)
2025/08/31 07:45:29 fetching corpus: 4800, signal 160195/214927 (executing program)
2025/08/31 07:45:29 fetching corpus: 4850, signal 160519/215481 (executing program)
2025/08/31 07:45:29 fetching corpus: 4900, signal 160892/216136 (executing program)
2025/08/31 07:45:29 fetching corpus: 4950, signal 161367/216782 (executing program)
2025/08/31 07:45:30 fetching corpus: 5000, signal 161718/217385 (executing program)
2025/08/31 07:45:30 fetching corpus: 5050, signal 162080/217980 (executing program)
2025/08/31 07:45:30 fetching corpus: 5100, signal 162609/218574 (executing program)
2025/08/31 07:45:30 fetching corpus: 5150, signal 163009/219167 (executing program)
2025/08/31 07:45:30 fetching corpus: 5200, signal 163656/219746 (executing program)
2025/08/31 07:45:30 fetching corpus: 5250, signal 164026/220301 (executing program)
2025/08/31 07:45:30 fetching corpus: 5300, signal 164568/220875 (executing program)
2025/08/31 07:45:30 fetching corpus: 5350, signal 164815/221414 (executing program)
2025/08/31 07:45:30 fetching corpus: 5400, signal 165131/221957 (executing program)
2025/08/31 07:45:30 fetching corpus: 5450, signal 165430/222515 (executing program)
2025/08/31 07:45:30 fetching corpus: 5500, signal 165769/223062 (executing program)
2025/08/31 07:45:31 fetching corpus: 5550, signal 166431/223155 (executing program)
2025/08/31 07:45:31 fetching corpus: 5600, signal 166709/223160 (executing program)
2025/08/31 07:45:31 fetching corpus: 5650, signal 167128/223164 (executing program)
2025/08/31 07:45:31 fetching corpus: 5700, signal 167555/223177 (executing program)
2025/08/31 07:45:31 fetching corpus: 5750, signal 167877/223184 (executing program)
2025/08/31 07:45:31 fetching corpus: 5800, signal 168198/223290 (executing program)
2025/08/31 07:45:31 fetching corpus: 5850, signal 168686/223290 (executing program)
2025/08/31 07:45:31 fetching corpus: 5900, signal 168912/223294 (executing program)
2025/08/31 07:45:31 fetching corpus: 5950, signal 169340/223300 (executing program)
2025/08/31 07:45:31 fetching corpus: 6000, signal 169598/223307 (executing program)
2025/08/31 07:45:31 fetching corpus: 6050, signal 170295/223395 (executing program)
2025/08/31 07:45:31 fetching corpus: 6100, signal 170606/223401 (executing program)
2025/08/31 07:45:31 fetching corpus: 6150, signal 170883/223403 (executing program)
2025/08/31 07:45:31 fetching corpus: 6200, signal 171259/223413 (executing program)
2025/08/31 07:45:31 fetching corpus: 6250, signal 171636/223421 (executing program)
2025/08/31 07:45:32 fetching corpus: 6300, signal 172038/223441 (executing program)
2025/08/31 07:45:32 fetching corpus: 6350, signal 172470/223442 (executing program)
2025/08/31 07:45:32 fetching corpus: 6400, signal 172845/223446 (executing program)
2025/08/31 07:45:32 fetching corpus: 6450, signal 173149/223458 (executing program)
2025/08/31 07:45:32 fetching corpus: 6500, signal 173510/223475 (executing program)
2025/08/31 07:45:32 fetching corpus: 6550, signal 173750/223503 (executing program)
2025/08/31 07:45:32 fetching corpus: 6600, signal 173950/223505 (executing program)
2025/08/31 07:45:32 fetching corpus: 6650, signal 174213/223509 (executing program)
2025/08/31 07:45:32 fetching corpus: 6700, signal 174432/223509 (executing program)
2025/08/31 07:45:32 fetching corpus: 6750, signal 174825/223509 (executing program)
2025/08/31 07:45:32 fetching corpus: 6800, signal 175144/223519 (executing program)
2025/08/31 07:45:32 fetching corpus: 6850, signal 175372/223520 (executing program)
2025/08/31 07:45:32 fetching corpus: 6900, signal 175756/223525 (executing program)
2025/08/31 07:45:33 fetching corpus: 6950, signal 176284/223528 (executing program)
2025/08/31 07:45:33 fetching corpus: 7000, signal 176707/223531 (executing program)
2025/08/31 07:45:33 fetching corpus: 7050, signal 176996/223536 (executing program)
2025/08/31 07:45:33 fetching corpus: 7100, signal 177287/223537 (executing program)
2025/08/31 07:45:33 fetching corpus: 7150, signal 177630/223568 (executing program)
2025/08/31 07:45:33 fetching corpus: 7200, signal 177942/223591 (executing program)
2025/08/31 07:45:33 fetching corpus: 7250, signal 178331/223676 (executing program)
2025/08/31 07:45:33 fetching corpus: 7300, signal 178673/223676 (executing program)
2025/08/31 07:45:33 fetching corpus: 7350, signal 178934/223687 (executing program)
2025/08/31 07:45:33 fetching corpus: 7400, signal 179380/223701 (executing program)
2025/08/31 07:45:33 fetching corpus: 7450, signal 179711/223725 (executing program)
2025/08/31 07:45:33 fetching corpus: 7500, signal 180154/223726 (executing program)
2025/08/31 07:45:33 fetching corpus: 7550, signal 180526/223776 (executing program)
2025/08/31 07:45:33 fetching corpus: 7600, signal 180829/223807 (executing program)
2025/08/31 07:45:33 fetching corpus: 7650, signal 181070/223807 (executing program)
2025/08/31 07:45:34 fetching corpus: 7700, signal 181347/223817 (executing program)
2025/08/31 07:45:34 fetching corpus: 7750, signal 181574/223818 (executing program)
2025/08/31 07:45:34 fetching corpus: 7800, signal 182028/223818 (executing program)
2025/08/31 07:45:34 fetching corpus: 7850, signal 182361/223818 (executing program)
2025/08/31 07:45:34 fetching corpus: 7900, signal 182593/223839 (executing program)
2025/08/31 07:45:34 fetching corpus: 7950, signal 182851/223840 (executing program)
2025/08/31 07:45:34 fetching corpus: 8000, signal 183303/223843 (executing program)
2025/08/31 07:45:34 fetching corpus: 8050, signal 183697/223850 (executing program)
2025/08/31 07:45:34 fetching corpus: 8100, signal 184145/223945 (executing program)
2025/08/31 07:45:34 fetching corpus: 8150, signal 184342/223951 (executing program)
2025/08/31 07:45:34 fetching corpus: 8200, signal 184601/224022 (executing program)
2025/08/31 07:45:34 fetching corpus: 8250, signal 184883/224024 (executing program)
2025/08/31 07:45:34 fetching corpus: 8300, signal 185155/224025 (executing program)
2025/08/31 07:45:35 fetching corpus: 8350, signal 185609/224038 (executing program)
2025/08/31 07:45:35 fetching corpus: 8400, signal 185819/224041 (executing program)
2025/08/31 07:45:35 fetching corpus: 8450, signal 186018/224042 (executing program)
2025/08/31 07:45:35 fetching corpus: 8500, signal 186264/224057 (executing program)
2025/08/31 07:45:35 fetching corpus: 8550, signal 186480/224058 (executing program)
2025/08/31 07:45:35 fetching corpus: 8600, signal 186765/224060 (executing program)
2025/08/31 07:45:35 fetching corpus: 8650, signal 186965/224074 (executing program)
2025/08/31 07:45:35 fetching corpus: 8700, signal 187433/224089 (executing program)
2025/08/31 07:45:35 fetching corpus: 8750, signal 187737/224111 (executing program)
2025/08/31 07:45:35 fetching corpus: 8800, signal 187957/224115 (executing program)
2025/08/31 07:45:35 fetching corpus: 8850, signal 188130/224116 (executing program)
2025/08/31 07:45:35 fetching corpus: 8900, signal 188379/224122 (executing program)
2025/08/31 07:45:36 fetching corpus: 8950, signal 188761/224138 (executing program)
2025/08/31 07:45:36 fetching corpus: 9000, signal 189064/224138 (executing program)
2025/08/31 07:45:36 fetching corpus: 9050, signal 189327/224139 (executing program)
2025/08/31 07:45:36 fetching corpus: 9100, signal 189668/224140 (executing program)
2025/08/31 07:45:36 fetching corpus: 9150, signal 189906/224158 (executing program)
2025/08/31 07:45:36 fetching corpus: 9200, signal 190155/224162 (executing program)
2025/08/31 07:45:36 fetching corpus: 9250, signal 190379/224164 (executing program)
2025/08/31 07:45:36 fetching corpus: 9300, signal 190711/224167 (executing program)
2025/08/31 07:45:36 fetching corpus: 9350, signal 190987/224189 (executing program)
2025/08/31 07:45:36 fetching corpus: 9400, signal 191240/224194 (executing program)
2025/08/31 07:45:36 fetching corpus: 9450, signal 191473/224198 (executing program)
2025/08/31 07:45:36 fetching corpus: 9500, signal 191639/224205 (executing program)
2025/08/31 07:45:36 fetching corpus: 9550, signal 191972/224211 (executing program)
2025/08/31 07:45:36 fetching corpus: 9600, signal 192698/224216 (executing program)
2025/08/31 07:45:37 fetching corpus: 9650, signal 192937/224218 (executing program)
2025/08/31 07:45:37 fetching corpus: 9700, signal 193187/224252 (executing program)
2025/08/31 07:45:37 fetching corpus: 9750, signal 193464/224299 (executing program)
2025/08/31 07:45:37 fetching corpus: 9800, signal 193706/224306 (executing program)
2025/08/31 07:45:37 fetching corpus: 9850, signal 193912/224309 (executing program)
2025/08/31 07:45:37 fetching corpus: 9900, signal 194148/224315 (executing program)
2025/08/31 07:45:37 fetching corpus: 9950, signal 194418/224316 (executing program)
2025/08/31 07:45:37 fetching corpus: 10000, signal 194618/224317 (executing program)
2025/08/31 07:45:37 fetching corpus: 10050, signal 194900/224319 (executing program)
2025/08/31 07:45:37 fetching corpus: 10100, signal 195075/224322 (executing program)
2025/08/31 07:45:37 fetching corpus: 10150, signal 195232/224325 (executing program)
2025/08/31 07:45:37 fetching corpus: 10200, signal 195414/224330 (executing program)
2025/08/31 07:45:37 fetching corpus: 10250, signal 195610/224344 (executing program)
2025/08/31 07:45:38 fetching corpus: 10300, signal 195813/224344 (executing program)
2025/08/31 07:45:38 fetching corpus: 10350, signal 196122/224344 (executing program)
2025/08/31 07:45:38 fetching corpus: 10400, signal 196445/224348 (executing program)
2025/08/31 07:45:38 fetching corpus: 10450, signal 196586/224349 (executing program)
2025/08/31 07:45:38 fetching corpus: 10500, signal 196830/224351 (executing program)
2025/08/31 07:45:38 fetching corpus: 10550, signal 197291/224351 (executing program)
2025/08/31 07:45:38 fetching corpus: 10600, signal 197527/224361 (executing program)
2025/08/31 07:45:38 fetching corpus: 10650, signal 197772/224361 (executing program)
2025/08/31 07:45:38 fetching corpus: 10700, signal 197893/224367 (executing program)
2025/08/31 07:45:38 fetching corpus: 10750, signal 198124/224405 (executing program)
2025/08/31 07:45:38 fetching corpus: 10800, signal 198300/224406 (executing program)
2025/08/31 07:45:38 fetching corpus: 10850, signal 198608/224421 (executing program)
2025/08/31 07:45:39 fetching corpus: 10900, signal 198897/224427 (executing program)
2025/08/31 07:45:39 fetching corpus: 10950, signal 199129/224434 (executing program)
2025/08/31 07:45:39 fetching corpus: 11000, signal 199363/224436 (executing program)
2025/08/31 07:45:39 fetching corpus: 11050, signal 199545/224438 (executing program)
2025/08/31 07:45:39 fetching corpus: 11100, signal 199733/224441 (executing program)
2025/08/31 07:45:39 fetching corpus: 11150, signal 199881/224445 (executing program)
2025/08/31 07:45:39 fetching corpus: 11200, signal 200049/224449 (executing program)
2025/08/31 07:45:39 fetching corpus: 11250, signal 200264/224453 (executing program)
2025/08/31 07:45:39 fetching corpus: 11300, signal 200440/224453 (executing program)
2025/08/31 07:45:39 fetching corpus: 11350, signal 200627/224460 (executing program)
2025/08/31 07:45:39 fetching corpus: 11400, signal 200886/224463 (executing program)
2025/08/31 07:45:39 fetching corpus: 11450, signal 201049/224465 (executing program)
2025/08/31 07:45:40 fetching corpus: 11500, signal 201204/224469 (executing program)
2025/08/31 07:45:40 fetching corpus: 11550, signal 201433/224471 (executing program)
2025/08/31 07:45:40 fetching corpus: 11600, signal 201663/224477 (executing program)
2025/08/31 07:45:40 fetching corpus: 11650, signal 201908/224482 (executing program)
2025/08/31 07:45:40 fetching corpus: 11700, signal 202069/224484 (executing program)
2025/08/31 07:45:40 fetching corpus: 11750, signal 202265/224489 (executing program)
2025/08/31 07:45:40 fetching corpus: 11800, signal 202490/224493 (executing program)
2025/08/31 07:45:40 fetching corpus: 11850, signal 202681/224493 (executing program)
2025/08/31 07:45:40 fetching corpus: 11900, signal 202844/224496 (executing program)
2025/08/31 07:45:40 fetching corpus: 11950, signal 203051/224496 (executing program)
2025/08/31 07:45:40 fetching corpus: 12000, signal 203231/224496 (executing program)
2025/08/31 07:45:40 fetching corpus: 12050, signal 203403/224500 (executing program)
2025/08/31 07:45:41 fetching corpus: 12100, signal 203653/224504 (executing program)
2025/08/31 07:45:41 fetching corpus: 12150, signal 203832/224505 (executing program)
2025/08/31 07:45:41 fetching corpus: 12200, signal 203991/224506 (executing program)
2025/08/31 07:45:41 fetching corpus: 12250, signal 204135/224515 (executing program)
2025/08/31 07:45:41 fetching corpus: 12300, signal 204321/224522 (executing program)
2025/08/31 07:45:41 fetching corpus: 12350, signal 204581/224526 (executing program)
2025/08/31 07:45:41 fetching corpus: 12370, signal 204645/224526 (executing program)
2025/08/31 07:45:41 fetching corpus: 12370, signal 204645/224526 (executing program)
2025/08/31 07:45:43 starting 8 fuzzer processes
07:45:43 executing program 0:
ioctl$TUNSETSNDBUF(0xffffffffffffffff, 0x400454d4, &(0x7f0000000000)=0x7fff)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000040)={'veth0\x00', @multicast})
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
r2 = dup3(r0, r1, 0x80000)
r3 = accept$unix(0xffffffffffffffff, 0x0, &(0x7f00000000c0))
ioctl$AUTOFS_IOC_PROTOVER(r3, 0x80049363, &(0x7f0000000100))
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000140)={'bridge_slave_1\x00'})
pwritev(r3, &(0x7f00000003c0)=[{&(0x7f0000000180)="60d07cbf5d109d17b270392e710a85657b67e6817fdd2cdc7e622c51e1c4c7be1e1d5f0004aee6ffce2f8bbef77afcf279039d546faa12a9142c3e2ba88592f46668d6545592d646d5e3075cab852aed71be72c30c5396132d7a9648", 0x5c}, {&(0x7f0000000200)}, {&(0x7f0000000240)="57b5057a915351586bb7cf2e39f06b19936829825116d4837e3063d9dd988b04593db78b10c9a56101881874c37f005f991947632009fe163ba3276890710c79e3", 0x41}, {&(0x7f00000002c0)="b29a2c0d8303da437d6eff8be2905eb883516eb8d3a076d250af40edbb4cd0c448dee6296986489921e65935427f59cd5c50fc29436241035839da779185c6abd9bb4c5346d6d35d9b992aba65b106", 0x4f}, {&(0x7f0000000340)="327b2d117b3b8a4a77a831242133c8b138e58e6b5ae331bddd9eec9993998ba5a45544af4535c389903e6200f2089a665106d37ba9cba74cc5c0c0d0b89437486bb7863b99e1e40589f687e5186c7b07e1399b9adabaeb963b0dc09dc791000c7039c45bce8aa90e68056c9e", 0x6c}], 0x5, 0xc21, 0x8)
newfstatat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x800)
statx(r2, &(0x7f0000000580)='./file0\x00', 0x400, 0x10, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
statx(0xffffffffffffffff, &(0x7f00000006c0)='./file0/file0\x00', 0x0, 0x100, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000800)={{{@in=@initdev, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, &(0x7f0000000900)=0xe8)
getresgid(&(0x7f0000000940)=<r8=>0x0, &(0x7f0000000980), &(0x7f00000009c0))
lstat(&(0x7f0000000ac0)='./file0/file0\x00', &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
stat(&(0x7f0000000b80)='./file0\x00', &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0})
lstat(&(0x7f0000000c40)='./file0\x00', &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
setxattr$system_posix_acl(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)='system.posix_acl_access\x00', &(0x7f0000000d00)={{}, {0x1, 0x4}, [{0x2, 0x1, 0xee01}, {0x2, 0x4, r4}, {0x2, 0x0, r5}, {0x2, 0x2, r6}, {0x2, 0x1, 0xee00}, {0x2, 0x5}, {0x2, 0x4, 0xee00}, {0x2, 0x7, 0xffffffffffffffff}, {0x2, 0x5, r7}], {}, [{0x8, 0x2, r8}, {0x8, 0x3, 0xffffffffffffffff}, {0x8, 0x0, 0xee00}, {0x8, 0x5, 0xee01}, {0x8, 0x3, 0xee00}, {0x8, 0x0, r9}, {0x8, 0x2, r10}, {0x8, 0x5, 0xee00}, {0x8, 0x2, r11}], {0x10, 0x4}, {0x20, 0x4}}, 0xb4, 0x0)
syz_open_dev$hiddev(&(0x7f0000000dc0), 0x1f, 0x4002c0)
utimensat(r2, &(0x7f0000000e00)='./file0/file0\x00', &(0x7f0000000e80), 0x100)

07:45:43 executing program 1:
keyctl$set_reqkey_keyring(0xe, 0x7)
keyctl$set_reqkey_keyring(0xe, 0xffffffffffffffff)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x9f4c11f6907e6b2a)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x1)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x1)
keyctl$set_reqkey_keyring(0xe, 0x3)
keyctl$set_reqkey_keyring(0xe, 0xffffffffffffffff)
keyctl$set_reqkey_keyring(0xe, 0xffffffffffffffff)
keyctl$set_reqkey_keyring(0xe, 0x7)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x2)
keyctl$set_reqkey_keyring(0xe, 0x3)
keyctl$set_reqkey_keyring(0xe, 0xffffffffffffffff)
keyctl$set_reqkey_keyring(0xe, 0x1)
keyctl$set_reqkey_keyring(0xe, 0x5)

07:45:43 executing program 3:
r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0xf1, 0x200000)
write$binfmt_misc(r0, &(0x7f0000000040)={'syz0', "75f41ebd9ea4d1b914665d4daca8abab52"}, 0x15)
r1 = syz_open_dev$rtc(&(0x7f0000000080), 0xfffffffffffffeff, 0x80000)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r1, 0x40189429, &(0x7f00000000c0)={0x0, 0x8, 0x1})
getresuid(&(0x7f0000000140), &(0x7f0000000180)=<r2=>0x0, &(0x7f00000001c0))
newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x3000)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@private1, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0, <r5=>0x0}}, {{@in=@dev}, 0x0, @in=@private}}, &(0x7f00000003c0)=0xe8)
r6 = getegid()
fsetxattr$system_posix_acl(r0, &(0x7f0000000100)='system.posix_acl_access\x00', &(0x7f0000000400)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xffffffffffffffff}, {0x2, 0x1, r2}, {0x2, 0x7, 0xee00}, {0x2, 0x4, r3}, {0x2, 0x1, 0xee00}, {0x2, 0x0, r5}], {0x4, 0xe}, [{0x8, 0x0, 0xee00}, {0x8, 0x3, r6}, {0x8, 0x6, 0xee00}, {0x8, 0x2, 0xee01}, {0x8, 0x2, 0xee01}, {0x8, 0x0, 0xee00}], {0x10, 0x2}, {0x20, 0x3}}, 0x84, 0x2)
ioctl$AUTOFS_IOC_PROTOVER(r1, 0x80049363, &(0x7f00000004c0))
r7 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000540)=0x1c, 0x80800)
ftruncate(r7, 0xc303)
r8 = openat2(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)={0x142, 0x100, 0xb}, 0x18)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r7, 0x89f9, &(0x7f0000000680)={'sit0\x00', &(0x7f0000000600)={'ip6_vti0\x00', <r9=>r4, 0x4, 0x8, 0x9, 0x2, 0x22, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x80, 0x0, 0x2}})
ioctl$sock_inet6_SIOCADDRT(r8, 0x890b, &(0x7f00000006c0)={@private2, @local, @private2={0xfc, 0x2, '\x00', 0x1}, 0xc87, 0x1c3c, 0xfa43, 0x0, 0xd0b, 0xc00100, r9})
ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000740)=0x5)
r10 = ioctl$TUNGETDEVNETNS(r8, 0x54e3, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO(r10, 0xc0389424, &(0x7f00000007c0)={0x6, 0x10, '\x00', 0x0, &(0x7f0000000780)=[0x0, 0x0]})
getsockopt$EBT_SO_GET_INIT_INFO(r8, 0x0, 0x82, &(0x7f0000000800)={'nat\x00', 0x0, 0x0, 0x0, [0xd41, 0x0, 0x7f, 0x20, 0x8, 0x3]}, &(0x7f0000000880)=0x78)
getsockopt$inet_IP_XFRM_POLICY(r8, 0x0, 0x11, &(0x7f00000008c0)={{{@in=@remote, @in6=@initdev}}, {{@in6=@dev}, 0x0, @in=@multicast2}}, &(0x7f00000009c0)=0xe8)

07:45:43 executing program 2:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000040)=0x2)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080), 0x6e, &(0x7f0000000240)=[{&(0x7f0000000100)=""/90, 0x5a}, {&(0x7f0000000180)=""/49, 0x31}, {&(0x7f00000001c0)=""/83, 0x53}], 0x3, &(0x7f0000000280)=[@rights={{0x20, 0x1, 0x1, [<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r5=>0x0, <r6=>0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}, 0x10002)
stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
write$P9_RGETATTR(r0, &(0x7f0000000400)={0xa0, 0x19, 0x1, {0x8, {0x4, 0x1, 0x6}, 0x9, r5, r7, 0x80000000, 0xffffffff, 0x0, 0xec, 0x958, 0xffffffff80000000, 0x76a8bc7f, 0xc0, 0x1, 0x5, 0x0, 0x4, 0x1, 0x4, 0xc1b}}, 0xa0)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r1, 0x89f9, &(0x7f0000000540)={'ip6_vti0\x00', &(0x7f00000004c0)={'syztnl1\x00', <r8=>0x0, 0x4, 0x3, 0x9, 0xd62d, 0x75, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast1, 0x8000, 0x20, 0x7078}})
write$P9_RSTAT(r2, &(0x7f0000000580)={0x55, 0x7d, 0x2, {0x0, 0x4e, 0x8e3, 0x3, {0x10, 0x0, 0x8}, 0x2000000, 0x7, 0x800, 0x7, 0x9, 'ip6_vti0\x00', 0x1, '\x00', 0x9, 'ip6_vti0\x00', 0x8, 'syztnl1\x00'}}, 0x55)
recvmsg$unix(r2, &(0x7f0000000c00)={&(0x7f0000000600), 0x6e, &(0x7f0000000ac0)=[{&(0x7f0000000680)=""/198, 0xc6}, {&(0x7f0000000780)=""/171, 0xab}, {&(0x7f0000000840)=""/152, 0x98}, {&(0x7f0000000900)=""/178, 0xb2}, {&(0x7f00000009c0)=""/255, 0xff}], 0x5, &(0x7f0000000b40)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff, <r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [<r12=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r13=>0x0}}}, @cred={{0x1c}}], 0xc0}, 0x20)
write$P9_RGETATTR(r4, &(0x7f0000000c40)={0xa0, 0x19, 0x1, {0x3000, {0x40, 0x1, 0x1}, 0x8, r13, r6, 0x7f, 0x4, 0x100000000, 0x100000000, 0x6, 0xc99599a, 0x4, 0xfffffffffffffffb, 0x5, 0xffff, 0x62a6cc6d, 0xffff, 0x7f, 0x3ff, 0xe3}}, 0xa0)
pipe(&(0x7f0000000d00)={<r14=>0xffffffffffffffff, <r15=>0xffffffffffffffff})
write$P9_RSTAT(r14, &(0x7f0000000d40)={0x4e, 0x7d, 0x2, {0x0, 0x47, 0x1, 0x1c, {0x10, 0x2}, 0x40000, 0x8000, 0x4, 0x2, 0x7, '@\'/[-]Q', 0x3, ',\x7f#', 0x9, 'ip6_vti0\x00', 0x1, '\x00'}}, 0x4e)
ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000dc0)=""/78)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000001080)={{0x1, 0x1, 0x18, <r16=>r11, {0x4}}, './file0\x00'})
r17 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001100), r12)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r10, 0x89f0, &(0x7f00000012c0)={'tunl0\x00', &(0x7f0000001140)={'gretap0\x00', <r18=>r8, 0x40, 0x40, 0x0, 0xa1, {{0x54, 0x4, 0x0, 0x2f, 0x150, 0x66, 0x0, 0x3, 0x4, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x44}, {[@cipso={0x86, 0x40, 0x0, [{0x0, 0xf, "be3648b0e6c083d5504a797ac8"}, {0x5, 0x3, '\''}, {0x0, 0xb, "3d5c4bc42f055010fc"}, {0x0, 0x10, "51a9fac1ccf7d346ff847182bed4"}, {0x7, 0x7, "83bbae10d7"}, {0x0, 0x6, "ddc3cd9d"}]}, @timestamp_prespec={0x44, 0x14, 0xad, 0x3, 0x7, [{@remote, 0xffff}, {@private=0xa010100, 0x3f}]}, @end, @cipso={0x86, 0x1c, 0x3, [{0x0, 0x10, "0f86bab446afed60ab237779159f"}, {0x5, 0x6, "f8fd985b"}]}, @ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0x4c, 0xfb, 0x3, 0x7, [{@local, 0x2}, {@multicast1, 0x8}, {@local, 0x1}, {@multicast2, 0x1}, {@multicast2, 0x20}, {@local, 0x100}, {@dev={0xac, 0x14, 0x14, 0x24}, 0xffff}, {@private=0xa010101, 0x10001}, {@rand_addr=0x64010101, 0x1000}]}, @cipso={0x86, 0x2b, 0x0, [{0x1, 0x5, "da48bc"}, {0x6, 0x4, "e049"}, {0x5, 0x3, "e8"}, {0x5, 0x11, "bcf7c798ef8efc4da1ced87a851223"}, {0x0, 0x5, "36e2af"}, {0x0, 0x3, ','}]}, @timestamp_prespec={0x44, 0x4c, 0x92, 0x3, 0x0, [{@loopback, 0x5}, {@dev={0xac, 0x14, 0x14, 0x23}}, {@broadcast, 0x5}, {@multicast1}, {@dev={0xac, 0x14, 0x14, 0x1d}, 0x7}, {@empty, 0x8}, {@rand_addr=0x64010100, 0x6}, {@rand_addr=0x64010100, 0x7}, {@loopback, 0x80}]}, @end]}}}}})
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r11, 0x89f9, &(0x7f0000001380)={'syztnl1\x00', &(0x7f0000001300)={'ip6gre0\x00', <r19=>r8, 0x4, 0x9, 0xff, 0x36, 0x4, @mcast2, @mcast1, 0x7800, 0x8, 0x8, 0x7ff}})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r16, &(0x7f0000001480)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001440)={&(0x7f00000013c0)={0x6c, r17, 0x300, 0x70bd25, 0x25dfdbfd, {}, [@HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r18}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r19}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20008004}, 0x40000)
creat(&(0x7f00000014c0)='./file0\x00', 0x4)
ioctl$BTRFS_IOC_INO_PATHS(r9, 0xc0389423, &(0x7f0000001540)={0x3f, 0x10, [0x5, 0x8, 0x80000000, 0x8001], &(0x7f0000001500)=[0x0, 0x0]})
sendmsg$NL80211_CMD_DEL_INTERFACE(r15, &(0x7f0000001680)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)={0x20, 0x0, 0x400, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x400, 0x46}}}}, ["", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x20004004)

07:45:43 executing program 7:
ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, &(0x7f0000000000))
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.kill\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg0\x00', <r1=>0x0})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
r3 = openat$cgroup_int(r0, &(0x7f0000000100)='blkio.throttle.write_bps_device\x00', 0x2, 0x0)
r4 = dup3(r2, r3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet6_mreq(r4, 0x29, 0x1c, &(0x7f0000000180)={@local, <r6=>0x0}, &(0x7f00000001c0)=0x14)
getpeername$packet(r2, &(0x7f0000000240)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000280)=0x14)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0xf0, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, [@HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x4040}, 0x90)
r8 = socket$unix(0x1, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f0000000440)={'team0\x00', <r9=>0x0})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000480)='net/tcp\x00')
bind(r5, &(0x7f00000004c0)=@generic={0x3, "c791e86cd57d96a1f23a5d09294a0ccf306d172e4b3ec1a01b248bd7540a98dc96b663319cea45150b3ed93419f82db40937182b85443dc47ec96b5b62a12683fc1d55162d0bc84586fd093d8daf2f9032ee195fbe6fbb0172a6aaeeb25befdf1cbbc22348f0fe15b45cb466e9e2d0a28b871d3f52408d8c4deedb8ae8fe"}, 0x80)
sendmsg$nl_xfrm(r2, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x24009800}, 0xc, &(0x7f0000000680)={&(0x7f0000000580)=@newsa={0xf8, 0x10, 0x400, 0x70bd25, 0x25dfdbfd, {{@in6=@local, @in=@broadcast, 0x4e20, 0x800, 0x4e21, 0x9, 0x2, 0x20, 0x20, 0xc, r9, 0xee00}, {@in6=@mcast1, 0x4d3, 0xff}, @in=@dev={0xac, 0x14, 0x14, 0x42}, {0x7, 0x8, 0x3, 0xfffffffffffffffd, 0x1, 0x0, 0x9, 0x6}, {0x8b, 0x1f, 0x10000, 0x8}, {0x4, 0x0, 0x5}, 0x70bd2c, 0x3505, 0xa, 0x4, 0x0, 0xa1}, [@proto={0x5, 0x19, 0x32}]}, 0xf8}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
r10 = accept4(r0, &(0x7f0000000700)=@l2tp6={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @private}}, &(0x7f0000000780)=0x80, 0x0)
sendto(r4, &(0x7f00000007c0)="dea68f1915d7bd85fe47fae0079b3169fc98ed6a3075a72b468bb5f7dc50b43dd5b6daee1f0005ec211a7489b2225a7ebce29c", 0x33, 0x24000004, &(0x7f0000000800)=@qipcrtr={0x2a, 0x3, 0xfffffffe}, 0x80)
socketpair(0x2, 0x6, 0x1000, &(0x7f0000000880)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = syz_genetlink_get_family_id$batadv(&(0x7f0000000900), r10)
sendmsg$BATADV_CMD_GET_GATEWAYS(r11, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x2c, r12, 0x1, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xdbf}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x2c}}, 0x88c0)

07:45:43 executing program 4:
ioctl$BTRFS_IOC_QGROUP_LIMIT(0xffffffffffffffff, 0x8030942b, &(0x7f0000000000)={0x7, {0x5, 0x3, 0x7, 0x7c8, 0x81}})
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f00000003c0)={{'\x00', 0x3}, {0x4588}, 0xe, 0x0, 0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)="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", 0x1c3, 0x0, &(0x7f00000002c0)={0x2, 0x45, {0xa39d935461c98650, 0xc, 0x20, "e64fdd57bfeb50de3aad60a95dc182a38d4f9ed97d7758e0867fdb7d7b750319", 0x18, "944e8e39babf871862d07453568379bb6c4a1c7165e2a32c"}, 0x99, "483cef779bf1c977c334bae27b860786bf1399b36ec6d61e4a09f2fa7a95cb6c54bf4b3029f37058afae4824e0519641313e95bd264adc6020100a7077d308b318dc1efee1609b64c963d8add07fe107237f5d6f49395f49c5b6a67734b53b4dfae0cf891e7588eaf1b46ab96a4397b0752bb2553ff5e1777d986e8e08039d83fcf68d221611e68be19e4a11685b733798af47d0993d84998e"}, 0xea})
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000440)={0x1, 'team_slave_1\x00', {}, 0xffff})
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000480)=0x8000)
ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f00000004c0)={<r1=>0x0, 0xf23, 0x9})
fsetxattr$security_evm(r0, &(0x7f00000008c0), &(0x7f0000000900)=@v2={0x5, 0x1, 0xe, 0xffff4e69, 0x12, "c9f9f709f25a49e2f0d7cc05e6edecc82ee4"}, 0x1b, 0x0)
r2 = openat$random(0xffffffffffffff9c, &(0x7f0000000940), 0x6080, 0x0)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000980)={<r3=>r1, "e5084080140313b19be6a81f81f4cf33"})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r2, 0x50009418, &(0x7f0000001980)={{r0}, 0x0, 0x8, @unused=[0xf6b, 0x0, 0x4, 0x1], @devid=r3})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000029c0)={&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fed000/0x13000)=nil, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff3000/0xb000)=nil, &(0x7f0000002980)="dfc3205ab46d1efcebb5dc9a64f4ce4d58108e74ed2a43fd6831bd8fb21f3f801d4025ea", 0x24, r0}, 0x68)
ioctl$RNDADDTOENTCNT(r2, 0x40045201, &(0x7f0000002a40)=0x20)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005740)=[{{&(0x7f0000002a80), 0x6e, &(0x7f0000003ec0)=[{&(0x7f0000002b00)=""/85, 0x55}, {&(0x7f0000002b80)=""/41, 0x29}, {&(0x7f0000002bc0)=""/200, 0xc8}, {&(0x7f0000002cc0)=""/184, 0xb8}, {&(0x7f0000002d80)=""/4096, 0x1000}, {&(0x7f0000003d80)=""/15, 0xf}, {&(0x7f0000003dc0)=""/184, 0xb8}, {&(0x7f0000003e80)=""/64, 0x40}], 0x8, &(0x7f0000003f40)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x188}}, {{&(0x7f0000004100)=@abs, 0x6e, &(0x7f00000045c0)=[{&(0x7f0000004180)=""/185, 0xb9}, {&(0x7f0000004240)=""/231, 0xe7}, {&(0x7f0000004340)=""/8, 0x8}, {&(0x7f0000004380)=""/145, 0x91}, {&(0x7f0000004440)=""/93, 0x5d}, {&(0x7f00000044c0)=""/120, 0x78}, {&(0x7f0000004540)=""/110, 0x6e}], 0x7, &(0x7f0000004640)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xa0}}, {{0x0, 0x0, &(0x7f0000004c00)=[{&(0x7f0000004700)=""/95, 0x5f}, {&(0x7f0000004780)=""/115, 0x73}, {&(0x7f0000004800)=""/195, 0xc3}, {&(0x7f0000004900)=""/210, 0xd2}, {&(0x7f0000004a00)=""/153, 0x99}, {&(0x7f0000004ac0)=""/33, 0x21}, {&(0x7f0000004b00)=""/118, 0x76}, {&(0x7f0000004b80)=""/128, 0x80}], 0x8, &(0x7f0000004c80)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff]}}], 0x30}}, {{&(0x7f0000004cc0), 0x6e, &(0x7f0000004f80)=[{&(0x7f0000004d40)=""/175, 0xaf}, {&(0x7f0000004e00)}, {&(0x7f0000004e40)=""/183, 0xb7}, {&(0x7f0000004f00)=""/113, 0x71}], 0x4, &(0x7f0000004fc0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [<r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}}, {{&(0x7f00000050c0), 0x6e, &(0x7f0000005680)=[{&(0x7f0000005140)=""/206, 0xce}, {&(0x7f0000005240)=""/190, 0xbe}, {&(0x7f0000005300)=""/16, 0x10}, {&(0x7f0000005340)=""/134, 0x86}, {&(0x7f0000005400)=""/19, 0x13}, {&(0x7f0000005440)=""/23, 0x17}, {&(0x7f0000005480)=""/183, 0xb7}, {&(0x7f0000005540)=""/37, 0x25}, {&(0x7f0000005580)=""/219, 0xdb}], 0x9}}], 0x5, 0x2000, &(0x7f0000005880)={0x77359400})
openat$cgroup_netprio_ifpriomap(r7, &(0x7f00000058c0), 0x2, 0x0)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, &(0x7f0000005900)={0x1, 0x800, 0x401})
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f0000005940), 0x20000, 0x0)
ioctl$RNDGETENTCNT(r8, 0x80045200, &(0x7f0000005980))
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f00000059c0), 0x3f3001, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r9, 0xc0189376, &(0x7f0000005a00)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
ioctl$FIDEDUPERANGE(r5, 0xc0189436, &(0x7f0000005a40)={0x40, 0xfffffffffffffff8, 0x3, 0x0, 0x0, [{}, {{r6}, 0x9}, {{}, 0x2}]})

[   84.007147] audit: type=1400 audit(1756626343.711:7): avc:  denied  { execmem } for  pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
07:45:43 executing program 5:
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x4, 0x0)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x10a, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000140)={"d6a7dd59e32196f66e87e7c2c6dac99e", <r1=>0x0, 0x0, {0x80000000, 0x7fffffff}, {0x200, 0x20000000}, 0xb664, [0x5, 0x100000001, 0xfff, 0x0, 0x2, 0x4, 0x1, 0x81, 0x0, 0x7ff, 0x8, 0x0, 0x3b, 0x101, 0x6, 0x7]})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000000240)={{r0}, r1, 0x8, @unused=[0x3f, 0x7d, 0x0, 0x5], @subvolid=0x8})
r2 = fcntl$getown(0xffffffffffffffff, 0x9)
kcmp(0xffffffffffffffff, r2, 0x5, r0, r0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001240), 0x1301, 0x0)
fgetxattr(r3, &(0x7f0000001280)=@known='trusted.syz\x00', &(0x7f00000012c0)=""/4096, 0x1000)
write$cgroup_pid(r0, &(0x7f00000022c0)=r2, 0x12)
r4 = syz_open_dev$vcsu(&(0x7f0000002300), 0x1000, 0x707000)
ioctl$RTC_AIE_OFF(r4, 0x7002)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000002400)={&(0x7f0000002340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000023c0)={&(0x7f0000002380)={0x38, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x69}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x14}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)
r5 = fsmount(0xffffffffffffffff, 0x0, 0x80)
fcntl$setstatus(r5, 0x4, 0x0)
ioctl$HIDIOCGREPORT(r4, 0x400c4807, &(0x7f0000002440)={0x2, 0x100, 0x6})
r6 = syz_open_dev$mouse(&(0x7f0000002480), 0x5, 0x121081)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f00000024c0)={0x0, ""/256, <r7=>0x0})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r6, 0xc0709411, &(0x7f00000026c0)={{r7, 0x0, 0x10000, 0x2, 0x9, 0x10000, 0xffffffffffffffff, 0x8, 0x9, 0x8, 0x5, 0x400, 0x80000001, 0x800, 0xfffffffffffffffc}, 0x8, [0x0]})
r8 = openat$sr(0xffffffffffffff9c, &(0x7f0000002780), 0x204240, 0x0)
mount_setattr(r6, &(0x7f0000002740)='./file0\x00', 0x8000, &(0x7f00000027c0)={0x12, 0x75, 0x40000, {r8}}, 0x20)

07:45:43 executing program 6:
ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2)
ioctl$FIOCLEX(0xffffffffffffffff, 0x5451)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x1}}, './file0\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x48, 0x0, 0x400, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x9, 0x39}}}}, [@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x152}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x9}]}, 0x48}}, 0x4040804)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STATUS64(r0, 0x80605414, &(0x7f0000000180))
getxattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@random={'osx.', '\x03\x03\x03\x03\x03\x03'}, &(0x7f0000000280)=""/5, 0x5)
r1 = openat$cgroup_ro(r0, &(0x7f00000002c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0)
sendmsg$TIPC_NL_NET_GET(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x5c, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "a46236a5de19f3ae6c1db1b644f2613e5c91ac67"}}]}, @TIPC_NLA_MEDIA={0x4}]}, 0x5c}}, 0x80)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r1)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x40, r2, 0x1, 0x70bd25, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x3, 0x23}}}}, [@NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x58d}, @NL80211_ATTR_CRIT_PROT_ID={0x6}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x2f4}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x40881)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000580), 0x10180)
r3 = openat$full(0xffffffffffffff9c, &(0x7f00000005c0), 0x444802, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3)
r4 = accept$unix(r0, 0x0, &(0x7f0000000600))
ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f0000000640)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f00000006c0)={0x3, 0x1, 0xa67, 0x0, 0x7})

[   85.152889] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.154926] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.160358] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.164086] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.167887] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   85.229769] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   85.232815] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   85.234822] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   85.238639] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   85.244384] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   85.246066] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   85.250615] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   85.252766] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   85.254332] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   85.256684] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   85.288695] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   85.300026] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   85.309149] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   85.316530] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   85.319969] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   85.322558] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   85.327085] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   85.328543] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   85.335457] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   85.343695] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   85.352414] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   85.355885] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   85.357429] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   85.358837] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   85.366031] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   85.368590] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   85.375967] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   85.379019] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   85.382371] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   85.392456] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   85.395396] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   85.407496] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   85.424526] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   85.432317] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   85.441333] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   87.185662] Bluetooth: hci0: command tx timeout
[   87.313177] Bluetooth: hci2: command tx timeout
[   87.314322] Bluetooth: hci1: command tx timeout
[   87.441216] Bluetooth: hci4: command tx timeout
[   87.442457] Bluetooth: hci3: command tx timeout
[   87.444069] Bluetooth: hci6: command tx timeout
[   87.444958] Bluetooth: hci5: command tx timeout
[   87.505221] Bluetooth: hci7: command tx timeout
[   89.233164] Bluetooth: hci0: command tx timeout
[   89.361196] Bluetooth: hci1: command tx timeout
[   89.361699] Bluetooth: hci2: command tx timeout
[   89.489301] Bluetooth: hci3: command tx timeout
[   89.489754] Bluetooth: hci4: command tx timeout
[   89.490273] Bluetooth: hci6: command tx timeout
[   89.490683] Bluetooth: hci5: command tx timeout
[   89.553191] Bluetooth: hci7: command tx timeout
[   91.281143] Bluetooth: hci0: command tx timeout
[   91.409235] Bluetooth: hci2: command tx timeout
[   91.409705] Bluetooth: hci1: command tx timeout
[   91.537883] Bluetooth: hci3: command tx timeout
[   91.538467] Bluetooth: hci5: command tx timeout
[   91.538850] Bluetooth: hci6: command tx timeout
[   91.539366] Bluetooth: hci4: command tx timeout
[   91.601565] Bluetooth: hci7: command tx timeout
[   93.329225] Bluetooth: hci0: command tx timeout
[   93.457275] Bluetooth: hci2: command tx timeout
[   93.457712] Bluetooth: hci1: command tx timeout
[   93.585477] Bluetooth: hci3: command tx timeout
[   93.585907] Bluetooth: hci6: command tx timeout
[   93.586714] Bluetooth: hci4: command tx timeout
[   93.587125] Bluetooth: hci5: command tx timeout
[   93.649218] Bluetooth: hci7: command tx timeout
[  120.973052] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.973763] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.121274] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.121897] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.290139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.290751] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.347064] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.347692] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.411169] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.411789] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
07:46:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x8, 0x4, &(0x7f00000002c0)=[{0x0}, {&(0x7f0000000780)="73797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c6572736c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a64616c6c657273797a6b616c6c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cc6ad6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b61", 0x336, 0x7fffffff}, {&(0x7f0000000240)="73797a6b616c6c65727300000000000007000000000000003561a1c48b000000", 0x20, 0x1}, {&(0x7f0000000040)="73797a6b616c6c657273797a6b616c6c657273797a6b616c6c6572c2e87a6b616c6c657273797a6b616c6c657273797a6b616c6c6572735e7a6b616c6c65727a6b616c6c657273797a6b616c6c6572be731b1b616c6c6572730000000000001800000000000000000000000000004fe133a5fb7cf6ed44378f66eb8b0741a0f1ae06be85267c2cca34d67d846770545f314e1054717b", 0x96, 0x141ffd}], 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="66736d616769633d3078303030303030303030303030303030382c00e266fdd93ec5bfca24087916399fa3d2765d3d3ea2639bd0f9dc36756f04c33f61901ff1c53d05eaef14128b3f150019d666593ec30ba0210b973d5ddabe129a456e5af6c1fafe19340627420a124ba0984db1a805a61ecffdfe3d08f1947de0"])
futimesat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', &(0x7f0000000180)={{}, {0x0, 0x2710}})

[  121.562146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.562728] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.603418] loop1: detected capacity change from 0 to 264192
[  121.609139] vfat: Unknown parameter 'fsmagic'
[  121.629601] loop1: detected capacity change from 0 to 264192
[  121.635680] vfat: Unknown parameter 'fsmagic'
07:46:21 executing program 1:
syz_mount_image$iso9660(&(0x7f0000001480), &(0x7f0000000400)='./file0\x00', 0x0, 0x5, &(0x7f0000000380)=[{&(0x7f0000000000)="e6286461a1768fa501a7347db0c0eb33f24f3ebc1dbfeec88371c375a20a8ab558cfdc82327aa3be5d763a81e2a7a5c642b3eb01c67410642f7735ed026889054e14ef8755b8dc0a81ea728e05424acb6c77f30de1f6aec46cfdca277fdcd668c453a6388632d41b7aed2e66bc91ec2eefd623b932291ad30d64e83fc86f977fd0e1e453b2c02d4d8d00afb2e82737a01f9c7f48d1ba9dfec8d5c4cdab95722af57d8228d2536a06c58ec2127ea2074d302b37355c2e4389c20eafba1f33e9", 0xbf, 0x5}, {&(0x7f00000000c0)="363c10b128fa2dd7bbc9fdfcd1afa6bce3118c7fb0e40b451834477f774c35a4badbb485549783e7ba32fff6bf44fdb1ad1a5e83b0eddd2e3858ad7a89622161b1", 0x41, 0xb}, {&(0x7f0000000140)="1714d2c533571aea6eaed13083257bbc698cb85c76d2642b4dba0f571a44e48cca6a599df67d1edd4739e33213a206e21ce6ce65ad9fa8860d227bd1ac3cdd2063fb3ddd6cd0c543d9fb52663674aab84d971a3145d54086f22abb5a4202b6e5c8627006f497e78df05a42f719f99b930f71955f2b82ea80396f44893980f1e34f554faa1bc8cde35ee3c52fdfb7641f489c19da5d7de0940ccc9841d09608f6fcbb8e1778145eb4c5e2c50e1f0ef5e49fe08bf5eb015964a85ac2ed0a81317c7027c194c67bc2c378acac1474675bbef6ad8e3b01bc9fbbce", 0xd9, 0x6}, {&(0x7f0000000240)="9e56f7521f9858cde118b57397eedcf241b0f3faf4d87904d9ef2471cf50852ae0e05d539859601f9ebacc7d9b928c55f90aebf36b02dccfd0153fb3f304be7b5f551a5f557c057e661dbfd23f5df43ba82f443867b18ffef305536980ccc4f266dd737d7002a5694ae5ab505d1ab295e04a", 0x72, 0xc3}, {&(0x7f00000002c0)="87e4e73496ec3fe758ed62942f4f759c7ecfe40c419b21314d8927128a4b4ed17d78fba1405952248061f1f6fbe469e679763be87be99e6a3e327180a9ede0ce37bee4f9afebb4140de73e748e5978ca62695073de5fc10f3450ff4633cf40cff375dca0e2138fb7afae1d2b7438b5beab2cd2f0c8fc4009a5e7793bef1105ac5bc75d8f925e154a0d83d3763cb99645156f2b5f2d9c94d47a7af1ecc2d4a7a67785", 0xa2, 0x4}], 0x800, &(0x7f0000000440)={[{@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}, {@cruft}], [{@appraise_type}]})

[  121.679136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.679721] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.705327] iso9660: Unknown parameter 'appraise_type'
[  121.713287] iso9660: Unknown parameter 'appraise_type'
07:46:21 executing program 1:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x1)
fallocate(r1, 0x20, 0x0, 0x100000000)
write(r1, &(0x7f00000000c0)='g', 0x1)
fallocate(r0, 0x20, 0x0, 0x100000000)
r2 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r3 = dup(r2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r3, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)

[  121.800736] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.801536] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
07:46:21 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup(r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r2, 0x0)
r3 = dup(r0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r3, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r4, 0x107, 0xd, &(0x7f0000000280)=@req3={0x1000, 0x1, 0x400, 0x4}, 0x1c)
sendmsg(r4, &(0x7f00000002c0)={&(0x7f0000000000)=@tipc=@name={0x1e, 0x2, 0x0, {{0x2}}}, 0x80, 0x0}, 0x0)
ioctl$DVD_READ_STRUCT(r3, 0x5390, &(0x7f0000000400)=@manufact={0x4, 0x2, 0x800, "6de886a10f89c58ac412cd352b73b805d0a3f26352b946ce110d82e4dd6d52f021f262ba2be010d492d114d99752ce88bdb209c26ab012c566dbf5a5f8791f9034cdebbf7b3936c172fd96716324a36493bee3368197aa3a0d415f5cafddffc378bf8dcf4587cc5dd2155f9e3f51e43371272b6352be0482f2c364fa0a7b4edc14f608f11811b5204103df3d8b1b2a290401b9796cf9b16ba7d9f893f354034eadd4282b5799ea65e4e9c1f52dc879fe4957ea9c1d22421bd09fccf2c3ee40a5f54fb6b6ec31656c3094639f3584611fd0e9f990aff22ae05de009928b3687ee761706807473a4f2f9ee26e109db422c52b539052041319451e1cb35da9c5cc7343bcb16046b047c9d49afcc668d690eac673de04003459833278f4a7cfe023418658de229b400a91f774458986c2d7c6952ad99e70504ff5483e89716c8e16726a61358914d022f28f12bc222b0ebb4dd40805bf06786ebac19d04a6584fbadad7ded95b817fd63f845fe33af40c347891ca4054e4e8df8f659a00f18f862b91aaeed004cdc83ec6dd400b19a9089eb3d827ff6e1fe9573cb04c5efa518df95dd4965f62094761317586b98843233e1eded3f2ff4553573948dc4d44e7759f286c6bcc2a58614b64ee588dfc622ccac2d9b9974c5435d161b09da2059eaeff9ea6cedee7202ebc28641693dfd9d8d1d557a40dbca3f61f3c67ff7fd87500937c87b95bfdd8b4866c5238259bb02ea166b49cbbe70dbdfe28b843ca6ecdb60f0943ea0608913a9feba1f76b299aef032aaff6d6a3296ba6ae7423f3c95c2d664d6c2f4226c1bf0d960d918931e9377aa78eb380711182c7995bdba88ff0eba599d64e28fe5b5f14afd794ffbbe1d89cb51a0e03f4effe60e707a2adca10230e539ecd6d0e55e2220ca0a333862e7811f6b237158b15ea1eac86279f92ab921bdb92942fa3017c0087061762914487c7254c17fe68ecacf835576b51b7584f5aca17bbd84b6c0b20789f32c032632aaca1ab1290e81a9080779b3e0935a14fee0a2368db2867b649e19fa47663b8314f3fba3e559e7246e939b7ed55c9101ec3bf17da59774b5a446dd887425c6014f538fb317b2e11fa7180591164547fca8e06521ffb7f0d6470f76ee23722b4efa31d98dce4f52b4f306dec3b201e9219c6649b180e2ddd688b4580d234917d7ee281a0fc714639db041ba2c0ff2307a5aabe544013c731594c9c2458a2115681c67c0db4422932a4e24718dc4cbf9c052a230de830af44fa80685b4d3c348ce7e9a38e785bed5ea5e77a4b2a14900434ea7c57f7c02a6b38ec9dcf3259caa166efefe39853261b6036c2141acdcad0ff629f0415637fd8b2dc7c854a9655b39cc7fc946800bd243b9a960290344fc88ebc47907b275eb049676dc7a647a24e4003c63212c6eb01cee2fa3dfeaec7e1b19f23d609a05ee5e3885eb0716598fc5e2da2931ac9aeda92939d3a15dc29d1ff4d5194b75bd39f6d5f6fe8d70dd6814a8d57cff96c5fb4dec6219510f7c5c1a47e49dc77c41523d767a484701af9f763ef1e0898d4b213eca4f33500bab99210fb7a4afcea5a0ac0375653c85caf51a90c5f5b102721752f81f4effec76fc7659b1a5613bce353d290844e8405d7aeaf2fca29e49b5a0aeb98f48c5f168851f32555c2c0af2dac5c3bf50bc46c0dc78edc793fe878d1ad22c2486977b24aa656f0c63e0c96ae8530001e6703c6af936db47cad180a537e4999e42f3304a678c1f056ba016656af56483b39462652b7da757e8eb6063d48cef5ed855738f3445a1b965a61c5c8670245f911a08fe35fa8e6db3bc4628d0bde18efba1228cde85718455e6b5635aa0b1b22cffa483f547ea0e86425af66641fe4fa9de21cbf167f54a0b09b11c4060ec065d60b74b00710e438882216466c0d011f81da493b18cb22f6f86210100c584a8d8a776d1ade8749e6abc62b0c447c409077c82cdc69dfaf5e7f468f2495f616f0e717117c4f7a7333f74b08e82284407ccf6ea297e17503cae2280268c2963119d6c0e094074484c6424416d8f8a077eeb5faf763a3724d30b953bfaa3ae9cef6a11b8918dc7cc2fe7a7025c953677728eaa3c362b4cd90b264ddb74f4dfea1f5216b67819e62657edf15eec50c86c083655dd63a87a256dd764ed06176356cb51fef21da5a344a0f2ead97e1289dd45a03ef6b60e2b247fae0af444b3fe85aae2a5067ec6aa043acad5f188a6134911dc2f43a10ce10c641639b846fbfdb7daca0e5845aff2a3596c387861382f8f8fe5484d356719634ba3228810c29f45bc190f7733589466db601c200fab29fe5849356a13f0a1bd8eeae0799ba69a3ec3977759ebe26f7376f47dba644036c27bc01deece320cdc45fabbb602ccf9a28c4ecda68aa0bc0830c63b6ea26557799662a917a72a4f2bedfc33c9e11993006dba712aa491cbfd19840e07534c9bceeaee5687b408e679729122753799be3fbb5acf08b6201d497baa6f037c23ad6f32e4447f3b984b3b8384f7e339b21387bdc47c15badb9541b86b5ef107d84488dd62cd239d8314afa780bc54c1d1138ac3b6dda8f0ede973ee502faf2b284d9cc89d12f06e0be5b070dae13b5c7e0a97fca63e956f1eb339f44f769d8dd2ea5c90303e9d8c8a51ac09ff8995ffd25c8e21a9ed478330f5871707ea4a59cda42d415d3c9c56b8c918bcc1167f7aaf5ddc2b57eeb9605adbb044d045d6e0dca4eae7a1b8434b52d7b97f80a699fbc42c3c20dc7769ee3f414f65c81b201cc39d0a9baaf261571652ec78b6e83d6e67eaff513ed87ac5909eee96a95ee38d29de9d07e93d3ef0428cc1e40eec0151b2ae0bdc5c606d4cacb019b8e641b1f860ddc50cb245f887ce705af7"})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x8001)
r7 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
r8 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/exec\x00', 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000100))
creat(&(0x7f00000003c0)='./file0\x00', 0x0)

[  121.873377] audit: type=1400 audit(1756626381.579:8): avc:  denied  { open } for  pid=3872 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  121.877319] audit: type=1400 audit(1756626381.580:9): avc:  denied  { kernel } for  pid=3872 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  121.959880] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.960659] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
07:46:21 executing program 5:
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000059c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001740)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast2}}}], 0x28}}], 0x2, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x34)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
truncate(&(0x7f0000000140)='./file0\x00', 0x9)
r2 = dup(r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r2, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r4 = dup(r3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r4, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
getsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x23, &(0x7f0000000040)="b79b9b7685cdbbfb10a313cc0ce36f3f2962a5366f865e36d0c691bfeeedf6a2f16a661a2e7fdd3193d65e9d2d1cd7bd05ca9fef5d8d7ad4a9e4e96e8b93599e9097f0ab47bb14c01eb610d8b9024ead1b07ff8ba9c792dafe3953866db2a2", 0x5f)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
clone3(&(0x7f0000000240)={0x61020100, &(0x7f00000056c0), 0x0, 0x0, {}, &(0x7f00000001c0)=""/96, 0x54, 0x0, &(0x7f0000000000), 0x3}, 0x58)

[  122.012913] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.013620] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.019549] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
07:46:21 executing program 6:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fork()
ptrace(0x10, r1)
ptrace(0x8, r1)
r2 = fork()
fork()
r3 = getpid()
pidfd_open(r3, 0x0)
sched_getaffinity(r3, 0x8, &(0x7f0000000000))
move_pages(r1, 0x4, &(0x7f0000000040)=[&(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil], &(0x7f0000000080)=[0x0, 0x390, 0x3, 0x80, 0x8, 0xa89, 0x7fffffff, 0xed6, 0x3], &(0x7f00000000c0)=[0x0, 0x0], 0x6)
ptrace(0x10, r2)
ptrace$setsig(0x4203, r2, 0xf738, &(0x7f0000000100)={0x1d, 0x100, 0x1})
ptrace$pokeuser(0x6, r2, 0x90, 0x2)
wait4(r1, &(0x7f0000000240), 0x8, &(0x7f0000000180))
r4 = fork()
fcntl$setown(r0, 0x8, r4)
getpid()

[  122.133741] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.134645] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
07:46:21 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="757466382c696f636861727365743d69736f383835392d31342c04"])

[  122.204295] iso9660: Unknown parameter ''
[  122.208427] iso9660: Unknown parameter ''
07:46:21 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x2000000)
write$cgroup_netprio_ifpriomap(r0, 0x0, 0xd)
close(r0)

[  122.288439] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.289065] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.325271] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.325898] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.431260] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.431880] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.474549] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.475291] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.522319] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.522952] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
07:46:35 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x2, 0x4081)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000000)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="5510de80e75b", 0x0, 0x0, 0x0, 0x0, 0x0})

07:46:35 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000))
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x40, 0x1aa)
pwrite64(r0, &(0x7f0000000140)=' ', 0x1, 0xa00000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
close(r0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)=0x4000)

07:46:35 executing program 4:
prctl$PR_GET_KEEPCAPS(0x7)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x5, 0x1, &(0x7f0000000100)=[{&(0x7f0000000280)="5d27e63f2d5b6da2c07a26354d0a09942a7a7d4ecbea105e1de78aa76728329c2e0b8c00fa440f7133676c23cf04d01efd9c57c90dffffff7f00000000815825d7a33c14426fd192cc7962b6fb9750d28d67ffd6ba13c8818104abe62954ec0d092fe3fa6ecf00d00d888d22340571098200000000000000e288d937852c9c953d7a12876ca2a0e934ea730600000000000000f5704f481076d29e1e27acdc84b279f97e4bed50521f0162492f7002c5b300000000000000000000000000000000000000000081f3b0796a2e860a7f2aba419ef4b69a763ced7c61d455b344c1dad3f7f991ece620c5e848981d492cadae683fecf305d8fb128d80f2f7537870cad25c6705501fb106e0bab25cdf09218a67fada57241404bb01c8af68db71e85c9dda148579db093d451fac8df082b76717b6896f8fc16127472f3d35bdfd06d216ddc80ae232f84aff5bd4eddf5a98fad9ec635292b498eaafae9f1e10c30fd3991fdcd9874633fdcd612166306de822ed67b3022b61ee7a", 0x179, 0xba5e}], 0x0, &(0x7f0000000140)=ANY=[@ANYRES64])
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00')

07:46:35 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f00000005c0)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002\x00'/32, @ANYRES32=0x0, @ANYRES32=r0], 0x28}}], 0x1, 0x0)

[  136.019316] loop4: detected capacity change from 0 to 186
[  136.024334] vfat: Unknown parameter 'ÿÿÿÿÿÿÿÿ'
07:46:35 executing program 1:
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0x100, 0x0, 0x400, 0x70bd29, 0x25dfdbfb, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x8000}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0xff}, {0x8, 0xb, 0x8}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x3}, {0x6, 0x16, 0x100}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0x6}, {0x8, 0xb, 0x10001}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x53}, {0x6, 0x16, 0xfffa}, {0x5}, {0x6, 0x11, 0x6bc7}, {0x8, 0xb, 0x5}}]}, 0x100}, 0x1, 0x0, 0x0, 0x400}, 0x24008000)
memfd_create(&(0x7f0000000000)='(\x8b\x0e\xf0rEr\x15\xaba\v\x19C;\x86\xd6\xf5\x16\x98\x9c\xcb9G\x91k\xd6\x94\x83\xa2\x05\xdc\x9fl\xb1]\xbe\x17\xd7\xa7\x9c\"\xf6\x8f\x19\xb5r\xfe\xa2z\x8c\xea\x17\xb1\x8d\xec8r\xc9\xbf\x99?[\xa7\xb6\xbb\xf1\xfd\xf9Q\xd5\xdf\xb51\xfdG\xf1\xc9\xfa\xf7\xa6\x85\v\xeb\x03*C\xe9!\xf9b~r\xf6m\xe3\x9b\xf5\x93\xe6\xdb\xf5\x940\xdd\xaa\xc5\xb4\xd4\x16_\tK\xd1\xce\r\xfe~\a\xcd\x132\x16W\x85\x91q\xb5\xad\xd9N#<ky\x8aJ\xa7\xa2\x99\f\xc6\xb2\xfew6\xcas^\xa5\xbc\x94\xbbh\xae\x18\xf8r3\xa72\x18\xc4kL\x01jO\x94u+\xf8 j\xb8\xde\x9b\xb2\xb4\x91\xb9\xb9\xdb\xca\x0f[(\x05\x17\x8a\\\xed\xca)\xc8\xd6L\xd7\f\x98\x18r\\D%nY\x024S\x10\xf0y\x01RM\xdb\xbf\xb0\xee\xa9\xb6\x0e4\x9b\xea\xe7/mt\x85\xb1_*\x12\xca\xdb2\x81O\xaa\x19\xd3T\x97\x12\xa0\xf6\x1f\r\xe9+\xdd\x82\xad> \x9fev\xf4V\x17\x1e{\x05\xfc\xf0\f\xf74i\xb8yV\xff\xd2\x13\xef\b\xde \x14\x1c=y\x95\xc1h\xa1\xa8\x01\xd7\xe5u\xb4\x89\xa6\xb2\x03\xfc\xae\x00\xa4\x1b\xed-24I3\x8a\xc9\xebQ\x10\x8c\x04\x19Z\x8e\x15\xc33\xe4\xdd\xc3\xea\xa8D~\xf3\x88\x1e\xc1\x8al|\x02\x8b\xa4/\xc4\xdb\xbd\xa8q\x1b\xf1\x9d\xb9\x9d\xe1I%B\xa4Z\\\xf8:xg\xe9\xb9\x86\xf4\xa5T\x87\x7f2\x12\rtH\xe1\xe0\xf7\x04\x85\x8e\x86\x1c\x04\"\xf6t\a\xa6\xff0\xcej4r\xde\\\xba\xb8\xb8\xcaS\x86\xd9\xde\xf6\x05`\xf6<C\xdf\xec?Ct\xffQ\xe8QY\xdd\xe5\v\xe6F\x98\x81\xb9\xd2\x9a\x91\t\xc0Q\xc6h\xb6qi\x98\x9b2\xb6}g\x87\xd2\xdbO\x15\xe1\xa5?\xa5\x93\xd5\xdb\xa9\x97X:L\x16|t\xf1\xa9m)f\'\xa4\x05\x03X\x9b\x19\x00\x00\x00\x00\x00\x00', 0x0)

07:46:35 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000180)={0x0, <r0=>0x0})
r1 = perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0xff, 0x20, 0x80, 0x0, 0x0, 0x7, 0x20060, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffff, 0x2, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x1f, 0xfffffff9, 0x8, 0x80000000, 0x800, 0x3, 0x0, 0x3, 0x0, 0x8e4}, r0, 0x7, 0xffffffffffffffff, 0x1d)
pwritev2(r1, &(0x7f00000004c0)=[{&(0x7f0000000200)="d923b226a94d1f6f2801097dceea152798e205fea847b1460f6dd91449a647c7bfe1eddc82304fa9ec4731c72b6d618625a5e53eabf6885b245c3a416d4dabc1176b53858441be0a41184f9e4b83edec0efde69b24da3895312b2bdbd3f0c4017b81fc009bba263cd522e4ed296cd81c3246", 0x72}, {&(0x7f0000000280)="0ee5233e0ed5924986abb61643187c40cc58afa620505e24baf31a11aed3145bb1dabd", 0x23}, {&(0x7f00000002c0)="1170d969cb7a5748e4ce4e3ff72d0ec57370f3064944cd479e1c24c85579667dfe676d", 0x23}, {&(0x7f0000000300)="1e3d697365cc736fb85d5d3f85ea3aa684f026c1692dac95533fdc950ea997274358935d0a0609352752fbf1ccbaaa", 0x2f}, {&(0x7f0000000340)="8a30867ca38f473b28ad388273fa4aeaed7e", 0x12}, {&(0x7f0000000380)="7dd57c346c7e304fd5f815c5801098cda41b8551148aad060c0ac8bd8249b047099d2704c371d76adc4c5fe2738565cf09283efe07cf92c44d81eeb6818599e876826aabc56cd6bdaa2f83dd54029664b5667cdd74a78413f680ca5da5355838e565251a8597478b270cae67dc6ba25a513ccee112be75f75de216c6baa3e10e7afb2324a0b69ae184e6f2270a3ec0a07f6362f01b71e3c17f4daeb891aa6ded54cd88bcedb6c34ef10bac10ee82515623d7429ab92f385fd56f4d4e1b486a482460b06c46caddac44a05e8dbf0342e88b636b0613b14d406faec3d598d581c41be20a3b52", 0xe5}, {&(0x7f0000000480)="96c89e", 0x3}], 0x7, 0x9, 0x7, 0x0)
socket$netlink(0x10, 0x3, 0x1)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000540)={{0x1, 0x1, 0x18, <r3=>r1}, './file0\x00'})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000580)='/dev/sr0\x00')

[  136.031472] loop4: detected capacity change from 0 to 186
07:46:35 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2e, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa000000000000080045000020000000000011907864010100ac141400fd869f80000c90f801000000"], 0x0)

07:46:35 executing program 6:
syz_mount_image$nfs4(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x2, &(0x7f0000000000)=0x1)
syz_emit_vhci(&(0x7f0000000200)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x2, 0x1057}, @l2cap_cid_signaling={{0x1053}, [@l2cap_create_chan_req={{0xc, 0x0, 0x5}, {0x1000, 0x20, 0xf2}}, @l2cap_disconn_req={{0x6, 0x8, 0x4}, {0x4, 0xfff7}}, @l2cap_info_rsp={{0xb, 0x1, 0x1004}, {0x40, 0x2, "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"}}, @l2cap_conn_rsp={{0x3, 0x9, 0x8}, {0x800, 0x7, 0x9, 0x1}}, @l2cap_conn_rsp={{0x3, 0x4, 0x8}, {0xffc0, 0x2, 0x5d, 0x3f}}, @l2cap_info_req={{0xa, 0x5, 0x2}, {0x8}}, @l2cap_create_chan_req={{0xc, 0x98, 0x5}, {0x4, 0x200}}, @l2cap_move_chan_req={{0xe, 0x1, 0x3}, {0x3, 0xfe}}, @l2cap_create_chan_rsp={{0xd, 0x1, 0x8}, {0x3, 0x20, 0x0, 0x60f0}}]}}, 0x105c)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x9, 0x0, &(0x7f0000000080)=0x1)
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x9, 0x80, &(0x7f00000000c0)=0x1)
listxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=""/117, 0x75)

[  136.061455] kmemleak: Found object by alias at 0x607f1a639bd4
[  136.061472] CPU: 1 UID: 0 PID: 3955 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  136.061491] Tainted: [W]=WARN
[  136.061494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  136.061502] Call Trace:
[  136.061506]  <TASK>
[  136.061511]  dump_stack_lvl+0xca/0x120
[  136.061537]  __lookup_object+0x94/0xb0
[  136.061554]  delete_object_full+0x27/0x70
[  136.061570]  free_percpu+0x30/0x1160
[  136.061587]  ? arch_uprobe_clear_state+0x16/0x140
[  136.061607]  futex_hash_free+0x38/0xc0
[  136.061621]  mmput+0x2d3/0x390
[  136.061640]  do_exit+0x79d/0x2970
[  136.061657]  ? __pfx_do_exit+0x10/0x10
[  136.061671]  ? find_held_lock+0x2b/0x80
[  136.061689]  ? get_signal+0x835/0x2340
[  136.061709]  do_group_exit+0xd3/0x2a0
[  136.061724]  get_signal+0x2315/0x2340
[  136.061741]  ? __virt_addr_valid+0x100/0x5d0
[  136.061763]  ? __pfx_get_signal+0x10/0x10
[  136.061780]  ? kmem_cache_free+0x2a1/0x540
[  136.061791]  ? putname.part.0+0x11b/0x160
[  136.061809]  arch_do_signal_or_restart+0x80/0x790
[  136.061826]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  136.061846]  ? do_mkdirat+0x259/0x3d0
[  136.061860]  ? __pfx_do_mkdirat+0x10/0x10
[  136.061877]  exit_to_user_mode_loop+0x8b/0x110
[  136.061890]  do_syscall_64+0x2f7/0x360
[  136.061902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.061914] RIP: 0033:0x7f915f56fc27
[  136.061923] Code: Unable to access opcode bytes at 0x7f915f56fbfd.
[  136.061928] RSP: 002b:00007f915cae5fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053
[  136.061939] RAX: ffffffffffffffef RBX: 0000000020000100 RCX: 00007f915f56fc27
[  136.061947] RDX: 0000000000000003 RSI: 00000000000001ff RDI: 00000000200000c0
[  136.061954] RBP: 00007f915cae6040 R08: 0000000000000000 R09: 0000000000000000
[  136.061961] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000
[  136.061968] R13: 00000000200000c0 R14: 00007f915cae6000 R15: 0000000020000140
[  136.061984]  </TASK>
[  136.061987] kmemleak: Object (percpu) 0x607f1a639bd0 (size 8):
[  136.061994] kmemleak:   comm "syz-executor.3", pid 285, jiffies 4294789198
[  136.062001] kmemleak:   min_count = 1
[  136.062005] kmemleak:   count = 1
[  136.062008] kmemleak:   flags = 0x21
[  136.062019] kmemleak:   checksum = 0
[  136.062022] kmemleak:   backtrace:
[  136.062026]  pcpu_alloc_noprof+0x87a/0x1170
[  136.062041]  percpu_ref_init+0x37/0x400
[  136.062058]  cgroup_mkdir+0x28a/0x1110
[  136.062071]  kernfs_iop_mkdir+0x111/0x190
[  136.062086]  vfs_mkdir+0x59a/0x8d0
[  136.062100]  do_mkdirat+0x19f/0x3d0
[  136.062111]  __x64_sys_mkdir+0xf3/0x140
[  136.062121]  do_syscall_64+0xbf/0x360
[  136.062129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
07:46:35 executing program 7:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
dup(r1)
ioctl$FIBMAP(r1, 0x1, &(0x7f0000000100)=0x1000)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x20, 0x3, 0x3, 0x201, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0x2, 0x3}}]}, 0x20}, 0x1, 0x0, 0x0, 0x2000}, 0x8040)
ioctl$CDROMREADMODE2(r0, 0x5322, 0x0)

07:46:35 executing program 6:
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x50, 0x0, 0x4, 0x70bd28, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14, 0x1, @mcast2}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x100}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x3}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xf8}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xffffffff}]}, 0x50}, 0x1, 0x0, 0x0, 0x84}, 0x44011)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$bind(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000100)='./cgroup/cgroup.procs\x00', &(0x7f0000000140), 0x800, 0x0)

[  136.180529] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  136.266174] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  136.307725] syz-executor.0 (3970) used greatest stack depth: 24432 bytes left
07:46:44 executing program 5:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
pwritev2(r1, &(0x7f00000019c0)=[{&(0x7f0000000600)='a', 0xfdef}, {0x0, 0xfffffe8a}, {&(0x7f0000000180)}], 0x3, 0x0, 0x0, 0x17)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x3, 0x0, 0xff, 0x1f, 0x0, 0xffff, 0x1, 0x8, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xe00000, 0x0, @perf_config_ext={0x400, 0x1}, 0x100, 0x81, 0xe6e, 0xa, 0x3, 0x7, 0x20, 0x0, 0xdc, 0x0, 0x3}, 0x0, 0x2, r0, 0x2)

07:46:44 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2118, 0x0, 0xb4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000080)="82", 0x80000}])
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000000c0))

07:46:44 executing program 4:
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000500)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f00000002c0)="401c6d6b616ff3668fed23982c20ef350400004000f8", 0x16}], 0x0, &(0x7f0000000680)=ANY=[])
futimesat(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={{0x0, 0x2710}, {0x77359400}})
mknodat$loop(r0, &(0x7f00000000c0)='./file0\x00', 0x2, 0x1)

07:46:44 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8923, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="1f5948d4448ab12366c6bbe5eea0"]})
io_setup(0x7, &(0x7f0000000100))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000a5fd3080891979077c5bc3937ff023c2aacfe9e2706cbe2a96225e066a058160c30d788e14ab7841087a1742d4352ad683acf682234bec3a31b3c1bba316689f8926602a805717b01d606647", @ANYRES16=r2, @ANYBLOB="0177b3bec90000000000001a00"/27], 0x14}}, 0x0)
sendmsg$TIPC_CMD_SHOW_PORTS(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000000}, 0x40000)
r3 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
pwritev2(r3, &(0x7f0000000500)=[{&(0x7f00000000c0)="9f", 0xfffffdef}], 0x16, 0x1008, 0x0, 0x0)
r4 = dup(0xffffffffffffffff)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r5=>r3, {0x1000}}, './file0\x00'})
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x8000, 0x4)
r7 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r8 = dup(r7)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r8, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x13, r8, 0x0)
io_submit(0x0, 0x6, &(0x7f0000000a40)=[&(0x7f0000000440)={0x0, 0x0, 0x0, 0x5, 0x2, r3, &(0x7f00000003c0)="810a87a6ae636f", 0x7, 0x6, 0x0, 0x1}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x2, 0x9, 0xffffffffffffffff, &(0x7f0000000480)="b006894a867ed5c8c0fdab1eb388e4dbb7af9ab7baeebbda915f3530f5ec73c560882a85a2020931", 0x28, 0x4, 0x0, 0x1, r5}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x3, 0x0, r6, &(0x7f00000005c0)="b3cfeabd0b93ead404b54bbee3a7ba124179d11d87537bad577d66e235c62286cfc29e73ebd3e569989a8c52e3ccac72f92ca1023ecc11ed3080f8971101e448daebfd26ca84f92308266ad72c7461d9308c56cfcbd6b887237fc0872018ae9cf7dfccb9829c665060944288be7279522642d89dc86c1d86f086241b46ed7286171fe6cca25a27829d211459e654ea505c2b23d2679d566d39025f19edb10cb043b8665a6c55ecd5a6e9dd2b5d0a71", 0xaf, 0x1cf8, 0x0, 0x0, r3}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, r8, &(0x7f00000006c0)="3801d5b7fc4983fb90a201bbc9845500bf4d031111f21cf4479f2915db299a8e8d35cc93e78d6fbc0e1083b1e22be743f8e828577ce11609e52f5c1cbf5ca01d10a8664ba0ca78a7e04c5faa480a4bdd9dd5866f00b93e52bc48597ec9fc420872702d31ecc4e68601f9fe7e48945a37ccdc4e8cd550149c208c18bcb7906c4db8639523c47b89b084c3712447842f1df439da4af296ca5e633ee8ae75639b2c2ea1b3a9d526dda7460dc5dbfa62e4e7517720a234e6b525906ab8838f80872a02093798", 0xc4, 0x5, 0x0, 0x3, r3}, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x6, 0x30d, r4, &(0x7f0000000800)="3c6a753ba9f6654b0114b88a2d7085ceaa08b2d96b2df33c164c8069a80bcff23ef07ee0a85b5c36000cd7938e2d82f66fa44dae6b02ff23279491fe5ecb73e7f17e51e7d8c2a0ac989566da4334920099f80ad8e60810618d849d570320636819edec94ea8e7ae5767e892dbf02f4249122fdb6d73bb7045c78af8f5b2f1d4fb1631ff735fffc8b98c4e2180c5f41b6cd04da5ae816aacc303038e5", 0x9c, 0x7, 0x0, 0x1, r4}, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x1, 0x9, r3, &(0x7f0000000900)="9d3452f8bd9f948f9af217a114e815ebe4cfcc4f1c29cd02d75d4213da264f1ffa33d5bc24499a97aea201fbf177609997c0e8f418bc50b49fea819b67ab4e50f1565a1bdd207ecc32c76654154c3536b61d51f6d81e5049a45083fdbec249ce64ad4e721b81229e604530617ab93607f5b3cdb285a8e7e7d3a6984bcd72eb1578e27999b24a69f37f7aad152f36580506009d1e0ae51989cd205294c26424e3724295aadb7df68770a52106a21d396c4c97446471839744051e4b693fa101938e063b2ee725e314a5f822f18e9ed28c617b77", 0xd3, 0x1, 0x0, 0x2, r3}])

07:46:44 executing program 7:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0002}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x100)

07:46:44 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r1 = dup(r0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000400)={0x0, 0x1, 0x3, 0xa, 0x126, &(0x7f0000000000)="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"})
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, 0x0, 0x0)
syz_read_part_table(0x3ff, 0x0, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000480), r1)
sendmsg$TIPC_NL_LINK_SET(r1, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB="74000000c2ecb60a3347461cf13b7cffcad79fc76cd8e35b568a84ad47b7f9cfcac8be3f67d1", @ANYRES16=r2, @ANYBLOB="00032cbd7000fedbdf25090000001800078008000100070000000c00030002000000000000003400038008000100ff0f000008000300ff0000000800030006000000080003009d070000080002000400000008000300010000801400038008000200050000000800020009000000"], 0x74}, 0x1, 0x0, 0x0, 0x400d0}, 0x20000000)

07:46:44 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYRES16, @ANYRES32=0x0, @ANYBLOB="0c00062005"], 0x30}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000ac0), r0)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x2}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x5}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x119716e58dddb2b2}, 0x804)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RSTAT(r2, &(0x7f0000000000)={0x47, 0x7d, 0x2, {0x0, 0x40, 0x9, 0x1, {0x4, 0x4, 0x8}, 0x20000000, 0x5124f6d8, 0x101, 0x101, 0x3, '+.&', 0x1, 't', 0x1, '%', 0x8, '\xf1@^${^:('}}, 0x47)
io_setup(0x5, &(0x7f000000a0c0))

07:46:44 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000001600)={0x2, {0x2, 0x2, 0x0, 0x3, 0x2f7, 0x10}})

[  144.623709] loop6: detected capacity change from 0 to 1
[  144.635768] loop2: detected capacity change from 0 to 1024
[  144.649329] loop6: detected capacity change from 0 to 1
[  144.663903] FAT-fs (loop4): bogus logical sector size 11416
[  144.663931] FAT-fs (loop4): Can't find a valid FAT filesystem
[  144.669140] €: renamed from syz_tun (while UP)
[  144.689033] FAT-fs (loop4): bogus logical sector size 11416
[  144.689049] FAT-fs (loop4): Can't find a valid FAT filesystem
[  144.691463] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[  144.693839] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  144.694426] CPU: 1 UID: 0 PID: 4010 Comm: syz-executor.1 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  144.695342] Tainted: [W]=WARN
[  144.695580] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  144.697194] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.698401] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.703012] RSP: 0018:ffff88801ff47900 EFLAGS: 00010012
[  144.703024] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[  144.703033] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  144.703041] RBP: ffff88801ff47b70 R08: ffff88806cf31340 R09: ffffe8ffffd16bd0
[  144.703050] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  144.703057] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  144.703068] FS:  00007fe97e7b2700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  144.703081] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.703089] CR2: 00007f915cae7000 CR3: 000000000e2f0000 CR4: 0000000000350ef0
[  144.703097] Call Trace:
[  144.703102]  <TASK>
[  144.703106]  ? arch_stack_walk+0x9c/0xf0
[  144.703124]  ? __pfx_perf_tp_event+0x10/0x10
[  144.703142]  ? lock_acquire+0x15e/0x2f0
[  144.703157]  ? __is_insn_slot_addr+0x2e/0x290
[  144.703176]  ? find_held_lock+0x2b/0x80
[  144.703194]  ? __is_insn_slot_addr+0x136/0x290
[  144.703211]  ? lock_release+0xc8/0x290
[  144.703226]  ? __is_insn_slot_addr+0x140/0x290
[  144.703243]  ? kernel_text_address+0x5b/0xc0
[  144.703259]  ? __kernel_text_address+0xd/0x40
[  144.703272]  ? unwind_get_return_address+0x59/0xa0
[  144.703291]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  144.703309]  ? perf_trace_run_bpf_submit+0xef/0x180
[  144.703325]  perf_trace_run_bpf_submit+0xef/0x180
[  144.703343]  perf_trace_preemptirq_template+0x259/0x430
[  144.703365]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  144.703386]  ? __kmalloc_noprof+0x45c/0x6e0
[  144.703403]  ? __x64_sys_io_setup+0xc8/0x1f0
[  144.703418]  ? do_syscall_64+0xbf/0x360
[  144.703430]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.703442]  ? lockdep_init_map_type+0x4b/0x240
[  144.703457]  ? _raw_spin_lock_irqsave+0x53/0x60
[  144.703473]  trace_irq_disable.constprop.0+0xa6/0x100
[  144.703485]  _raw_spin_lock_irqsave+0x53/0x60
[  144.703500]  __create_object+0x31/0x80
[  144.703517]  __kmalloc_noprof+0x45c/0x6e0
[  144.703533]  ? find_held_lock+0x2b/0x80
[  144.703550]  ? ioctx_alloc+0x1001/0x1e10
[  144.703563]  ? ioctx_alloc+0x100e/0x1e10
[  144.703577]  ? ioctx_alloc+0x100e/0x1e10
[  144.703590]  ioctx_alloc+0x100e/0x1e10
[  144.703605]  ? __pfx_ioctx_alloc+0x10/0x10
[  144.703619]  ? __might_fault+0xe0/0x190
[  144.703634]  __x64_sys_io_setup+0xc8/0x1f0
[  144.703649]  do_syscall_64+0xbf/0x360
[  144.703659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.703671] RIP: 0033:0x7fe98123cb19
[  144.703681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  144.703692] RSP: 002b:00007fe97e7b2188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  144.703703] RAX: ffffffffffffffda RBX: 00007fe98134ff60 RCX: 00007fe98123cb19
[  144.703711] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000007
[  144.703719] RBP: 00007fe981296f6d R08: 0000000000000000 R09: 0000000000000000
[  144.703726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  144.703734] R13: 00007ffc9d608e0f R14: 00007fe97e7b2300 R15: 0000000000022000
[  144.703745]  </TASK>
[  144.703749] Modules linked in:
[  144.703757] ---[ end trace 0000000000000000 ]---
[  144.703762] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.703778] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.703789] RSP: 0018:ffff88801ff47900 EFLAGS: 00010012
[  144.703799] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[  144.703807] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  144.703814] RBP: ffff88801ff47b70 R08: ffff88806cf31340 R09: ffffe8ffffd16bd0
[  144.703822] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  144.703830] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  144.703840] FS:  00007fe97e7b2700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  144.703851] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.703859] CR2: 00007f915cae7000 CR3: 000000000e2f0000 CR4: 0000000000350ef0
[  144.703868] note: syz-executor.1[4010] exited with irqs disabled
[  144.703942] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[  144.703957] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  144.703969] CPU: 1 UID: 0 PID: 4010 Comm: syz-executor.1 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  144.703989] Tainted: [D]=DIE, [W]=WARN
[  144.703994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  144.704001] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.704019] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.704032] RSP: 0018:ffff88806cf08b40 EFLAGS: 00010012
[  144.704042] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[  144.704050] RDX: ffff888046321b80 RSI: ffffffff818995b7 RDI: 0000000000000191
[  144.704059] RBP: ffff88806cf08db0 R08: ffff88806cf313e8 R09: ffffe8ffffd16bd0
[  144.704067] R10: 0000000000000000 R11: 00000000000245d5 R12: dffffc0000000000
[  144.704074] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[  144.704088] FS:  00007fe97e7b2700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  144.704196] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.704204] CR2: 00007f915cae7000 CR3: 000000000e2f0000 CR4: 0000000000350ef0
[  144.704212] Call Trace:
[  144.704216]  <IRQ>
[  144.704221]  ? lock_acquire+0x18c/0x2f0
[  144.704236]  ? __pfx_perf_tp_event+0x10/0x10
[  144.704253]  ? __pfx_css_rstat_updated+0x10/0x10
[  144.704272]  ? trace_pelt_se_tp+0xdf/0x130
[  144.704286]  ? __cgroup_account_cputime+0x31/0xc0
[  144.704305]  ? lock_acquire+0x18c/0x2f0
[  144.704319]  ? update_cfs_group+0x11d/0x260
[  144.704333]  ? lock_release+0x1c7/0x290
[  144.704347]  ? run_posix_cpu_timers+0x160/0x7d0
[  144.704360]  ? __pfx_run_posix_cpu_timers+0x10/0x10
[  144.704373]  ? sched_balance_trigger+0x1ac/0xcb0
[  144.704390]  ? sched_tick+0x27c/0x6c0
[  144.704410]  ? perf_trace_run_bpf_submit+0xef/0x180
[  144.704426]  ? timerqueue_add+0x1c2/0x330
[  144.704440]  perf_trace_run_bpf_submit+0xef/0x180
[  144.704458]  perf_trace_preemptirq_template+0x259/0x430
[  144.704479]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  144.704499]  ? read_tsc+0x9/0x20
[  144.704514]  ? ktime_get+0x16d/0x270
[  144.704527]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  144.704548]  ? __pfx_lapic_next_deadline+0x10/0x10
[  144.704564]  ? clockevents_program_event+0x135/0x360
[  144.704581]  ? _raw_spin_lock_irq+0x42/0x50
[  144.704594]  trace_irq_disable.constprop.0+0xa6/0x100
[  144.704607]  _raw_spin_lock_irq+0x42/0x50
[  144.704621]  run_timer_softirq+0x10f/0x210
[  144.704637]  handle_softirqs+0x1b1/0x770
[  144.704659]  __irq_exit_rcu+0xc4/0x100
[  144.704677]  irq_exit_rcu+0x9/0x20
[  144.704687]  sysvec_apic_timer_interrupt+0x70/0x80
[  144.704704]  </IRQ>
[  144.704708]  <TASK>
[  144.704712]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  144.704725] RIP: 0010:make_task_dead+0xa2/0x3b0
[  144.704741] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 <e8> b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de
[  144.704753] RSP: 0018:ffff88801ff47f28 EFLAGS: 00000246
[  144.704762] RAX: 0000000000000001 RBX: ffff888046321b80 RCX: ffffffff817c2b86
[  144.704771] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[  144.704778] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[  144.704785] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888046321b80
[  144.704793] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[  144.704803]  ? trace_irq_enable.constprop.0+0x26/0x100
[  144.704815]  ? make_task_dead+0x214/0x3b0
[  144.704830]  ? make_task_dead+0x214/0x3b0
[  144.704844]  ? do_syscall_64+0xbf/0x360
[  144.704855]  rewind_stack_and_make_dead+0x16/0x20
[  144.704871] RIP: 0033:0x7fe98123cb19
[  144.704880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  144.704891] RSP: 002b:00007fe97e7b2188 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  144.704902] RAX: ffffffffffffffda RBX: 00007fe98134ff60 RCX: 00007fe98123cb19
[  144.704910] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000007
[  144.704918] RBP: 00007fe981296f6d R08: 0000000000000000 R09: 0000000000000000
[  144.704925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  144.704933] R13: 00007ffc9d608e0f R14: 00007fe97e7b2300 R15: 0000000000022000
[  144.704944]  </TASK>
[  144.704948] Modules linked in:
[  144.704956] ---[ end trace 0000000000000000 ]---
[  144.704961] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.704977] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.704988] RSP: 0018:ffff88801ff47900 EFLAGS: 00010012
[  144.704998] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000088e000
[  144.705006] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  144.705013] RBP: ffff88801ff47b70 R08: ffff88806cf31340 R09: ffffe8ffffd16bd0
[  144.705021] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  144.705029] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  144.705039] FS:  00007fe97e7b2700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  144.705051] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.705059] CR2: 00007f915cae7000 CR3: 000000000e2f0000 CR4: 0000000000350ef0
[  144.705068] Kernel panic - not syncing: Fatal exception in interrupt
[  144.705330] Kernel Offset: disabled
[  144.774272] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
07:46:44  Registers:
info registers vcpu 0
RAX=000000000000f150 RBX=ffff88800baa0000 RCX=ffffc900086cd000 RDX=00000000000101f7
RSI=ffffffff82549154 RDI=0000000000000007 RBP=00000000000003e7 RSP=ffff88802045ec30
R8 =0000000000000000 R9 =0000000000006d2c R10=00000000000101f7 R11=0000000000000000
R12=00000000000101f7 R13=ffffed1001754001 R14=ffffffff860d0540 R15=dffffc0000000000
RIP=ffffffff82549158 RFL=00000012 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f19bed46700 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe7c00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2ce22000 CR3=000000001e07c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000a60ce07b00000000cec3662e XMM01=00000000000000002e1f7366337e0143
XMM02=00000000000000000ea3467be9f7d5c3 XMM03=00000000000000006c6175747269762f
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=0000000700000008000055f944e6aa10
XMM06=00000000000000000000000500000000 XMM07=00000000000000000000000000000000
XMM08=6e753c007325732575253a5d73255b00 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000030 RCX=00000004ffff1030 RDX=0000000000000001
RSI=ffffffff84b7d3e9 RDI=ffff88806cf08471 RBP=ffff88806cf08610 RSP=ffff88806cf08400
R8 =0000000000000003 R9 =ffffed100d9e10eb R10=0000000000000000 R11=0000000080050033
R12=ffff88806cf0876e R13=0000000000000401 R14=ffff88806cf08760 R15=ffff88806cf0876e
RIP=ffffffff84b7d43b RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fe97e7b2700 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe7400000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f915cae7000 CR3=000000000e2f0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000