Warning: Permanently added '[localhost]:12009' (ECDSA) to the list of known hosts.
2025/08/31 09:59:11 fuzzer started
2025/08/31 09:59:11 dialing manager at localhost:43077
syzkaller login: [   56.588812] cgroup: Unknown subsys name 'net'
[   56.658086] cgroup: Unknown subsys name 'cpuset'
[   56.667333] cgroup: Unknown subsys name 'rlimit'
2025/08/31 09:59:22 syscalls: 2214
2025/08/31 09:59:22 code coverage: enabled
2025/08/31 09:59:22 comparison tracing: enabled
2025/08/31 09:59:22 extra coverage: enabled
2025/08/31 09:59:22 setuid sandbox: enabled
2025/08/31 09:59:22 namespace sandbox: enabled
2025/08/31 09:59:22 Android sandbox: enabled
2025/08/31 09:59:22 fault injection: enabled
2025/08/31 09:59:22 leak checking: enabled
2025/08/31 09:59:22 net packet injection: enabled
2025/08/31 09:59:22 net device setup: enabled
2025/08/31 09:59:22 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/31 09:59:22 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/31 09:59:22 USB emulation: enabled
2025/08/31 09:59:22 hci packet injection: enabled
2025/08/31 09:59:22 wifi device emulation: enabled
2025/08/31 09:59:22 802.15.4 emulation: enabled
2025/08/31 09:59:22 fetching corpus: 50, signal 25584/27339 (executing program)
2025/08/31 09:59:22 fetching corpus: 100, signal 38150/41459 (executing program)
2025/08/31 09:59:22 fetching corpus: 150, signal 42922/47770 (executing program)
2025/08/31 09:59:22 fetching corpus: 200, signal 49550/55822 (executing program)
2025/08/31 09:59:22 fetching corpus: 250, signal 54206/61804 (executing program)
2025/08/31 09:59:22 fetching corpus: 300, signal 58447/67324 (executing program)
2025/08/31 09:59:23 fetching corpus: 350, signal 62027/72168 (executing program)
2025/08/31 09:59:23 fetching corpus: 400, signal 64442/75826 (executing program)
2025/08/31 09:59:23 fetching corpus: 450, signal 67090/79664 (executing program)
2025/08/31 09:59:23 fetching corpus: 500, signal 69558/83277 (executing program)
2025/08/31 09:59:23 fetching corpus: 550, signal 73115/87829 (executing program)
2025/08/31 09:59:23 fetching corpus: 600, signal 76291/92000 (executing program)
2025/08/31 09:59:23 fetching corpus: 650, signal 78215/95038 (executing program)
2025/08/31 09:59:23 fetching corpus: 700, signal 79428/97435 (executing program)
2025/08/31 09:59:23 fetching corpus: 750, signal 80697/99781 (executing program)
2025/08/31 09:59:24 fetching corpus: 800, signal 83227/103264 (executing program)
2025/08/31 09:59:24 fetching corpus: 850, signal 84720/105816 (executing program)
2025/08/31 09:59:24 fetching corpus: 900, signal 87450/109415 (executing program)
2025/08/31 09:59:24 fetching corpus: 950, signal 91134/113697 (executing program)
2025/08/31 09:59:24 fetching corpus: 1000, signal 93396/116792 (executing program)
2025/08/31 09:59:24 fetching corpus: 1050, signal 95094/119302 (executing program)
2025/08/31 09:59:24 fetching corpus: 1100, signal 97379/122346 (executing program)
2025/08/31 09:59:24 fetching corpus: 1150, signal 98570/124414 (executing program)
2025/08/31 09:59:24 fetching corpus: 1200, signal 100112/126730 (executing program)
2025/08/31 09:59:24 fetching corpus: 1250, signal 101458/128881 (executing program)
2025/08/31 09:59:24 fetching corpus: 1300, signal 103725/131730 (executing program)
2025/08/31 09:59:25 fetching corpus: 1350, signal 105493/134078 (executing program)
2025/08/31 09:59:25 fetching corpus: 1400, signal 106366/135819 (executing program)
2025/08/31 09:59:25 fetching corpus: 1450, signal 107963/138061 (executing program)
2025/08/31 09:59:25 fetching corpus: 1500, signal 108955/139873 (executing program)
2025/08/31 09:59:25 fetching corpus: 1550, signal 109917/141604 (executing program)
2025/08/31 09:59:25 fetching corpus: 1600, signal 110602/143107 (executing program)
2025/08/31 09:59:25 fetching corpus: 1650, signal 111380/144689 (executing program)
2025/08/31 09:59:25 fetching corpus: 1700, signal 112670/146673 (executing program)
2025/08/31 09:59:25 fetching corpus: 1750, signal 114277/148739 (executing program)
2025/08/31 09:59:25 fetching corpus: 1800, signal 115126/150316 (executing program)
2025/08/31 09:59:26 fetching corpus: 1850, signal 116558/152263 (executing program)
2025/08/31 09:59:26 fetching corpus: 1900, signal 118442/154434 (executing program)
2025/08/31 09:59:26 fetching corpus: 1950, signal 119374/156005 (executing program)
2025/08/31 09:59:26 fetching corpus: 2000, signal 120321/157538 (executing program)
2025/08/31 09:59:26 fetching corpus: 2050, signal 121287/159095 (executing program)
2025/08/31 09:59:26 fetching corpus: 2100, signal 122769/160896 (executing program)
2025/08/31 09:59:26 fetching corpus: 2150, signal 123563/162322 (executing program)
2025/08/31 09:59:26 fetching corpus: 2200, signal 124458/163774 (executing program)
2025/08/31 09:59:26 fetching corpus: 2250, signal 125183/165110 (executing program)
2025/08/31 09:59:26 fetching corpus: 2300, signal 127098/167156 (executing program)
2025/08/31 09:59:26 fetching corpus: 2350, signal 128158/168683 (executing program)
2025/08/31 09:59:27 fetching corpus: 2400, signal 129032/170048 (executing program)
2025/08/31 09:59:27 fetching corpus: 2450, signal 129869/171395 (executing program)
2025/08/31 09:59:27 fetching corpus: 2500, signal 130967/172889 (executing program)
2025/08/31 09:59:27 fetching corpus: 2550, signal 131705/174122 (executing program)
2025/08/31 09:59:27 fetching corpus: 2600, signal 132757/175466 (executing program)
2025/08/31 09:59:27 fetching corpus: 2650, signal 133499/176650 (executing program)
2025/08/31 09:59:27 fetching corpus: 2700, signal 134554/177990 (executing program)
2025/08/31 09:59:27 fetching corpus: 2750, signal 135164/179086 (executing program)
2025/08/31 09:59:27 fetching corpus: 2800, signal 136076/180329 (executing program)
2025/08/31 09:59:27 fetching corpus: 2850, signal 136833/181501 (executing program)
2025/08/31 09:59:27 fetching corpus: 2900, signal 137291/182540 (executing program)
2025/08/31 09:59:28 fetching corpus: 2950, signal 137968/183601 (executing program)
2025/08/31 09:59:28 fetching corpus: 3000, signal 138560/184665 (executing program)
2025/08/31 09:59:28 fetching corpus: 3050, signal 139005/185667 (executing program)
2025/08/31 09:59:28 fetching corpus: 3100, signal 140120/186881 (executing program)
2025/08/31 09:59:28 fetching corpus: 3150, signal 140658/187834 (executing program)
2025/08/31 09:59:28 fetching corpus: 3200, signal 141156/188807 (executing program)
2025/08/31 09:59:28 fetching corpus: 3250, signal 141873/189856 (executing program)
2025/08/31 09:59:28 fetching corpus: 3300, signal 142749/190983 (executing program)
2025/08/31 09:59:28 fetching corpus: 3350, signal 143512/192041 (executing program)
2025/08/31 09:59:28 fetching corpus: 3400, signal 144213/193030 (executing program)
2025/08/31 09:59:28 fetching corpus: 3450, signal 145224/194097 (executing program)
2025/08/31 09:59:28 fetching corpus: 3500, signal 146625/195367 (executing program)
2025/08/31 09:59:29 fetching corpus: 3550, signal 147040/196233 (executing program)
2025/08/31 09:59:29 fetching corpus: 3600, signal 147583/197187 (executing program)
2025/08/31 09:59:29 fetching corpus: 3650, signal 148006/198044 (executing program)
2025/08/31 09:59:29 fetching corpus: 3700, signal 148622/198977 (executing program)
2025/08/31 09:59:29 fetching corpus: 3750, signal 149166/199843 (executing program)
2025/08/31 09:59:29 fetching corpus: 3800, signal 149636/200711 (executing program)
2025/08/31 09:59:29 fetching corpus: 3850, signal 150440/201608 (executing program)
2025/08/31 09:59:29 fetching corpus: 3900, signal 151116/202506 (executing program)
2025/08/31 09:59:29 fetching corpus: 3950, signal 151548/203273 (executing program)
2025/08/31 09:59:29 fetching corpus: 4000, signal 152158/204109 (executing program)
2025/08/31 09:59:29 fetching corpus: 4050, signal 152958/205014 (executing program)
2025/08/31 09:59:29 fetching corpus: 4100, signal 153544/205867 (executing program)
2025/08/31 09:59:30 fetching corpus: 4150, signal 154070/206699 (executing program)
2025/08/31 09:59:30 fetching corpus: 4200, signal 154414/207421 (executing program)
2025/08/31 09:59:30 fetching corpus: 4250, signal 154807/208154 (executing program)
2025/08/31 09:59:30 fetching corpus: 4300, signal 155141/208892 (executing program)
2025/08/31 09:59:30 fetching corpus: 4350, signal 155668/209621 (executing program)
2025/08/31 09:59:30 fetching corpus: 4400, signal 156402/210405 (executing program)
2025/08/31 09:59:30 fetching corpus: 4450, signal 157116/211175 (executing program)
2025/08/31 09:59:30 fetching corpus: 4500, signal 157732/211959 (executing program)
2025/08/31 09:59:30 fetching corpus: 4550, signal 158275/212656 (executing program)
2025/08/31 09:59:30 fetching corpus: 4600, signal 158728/213342 (executing program)
2025/08/31 09:59:30 fetching corpus: 4650, signal 159287/214020 (executing program)
2025/08/31 09:59:30 fetching corpus: 4700, signal 159876/214722 (executing program)
2025/08/31 09:59:31 fetching corpus: 4750, signal 160314/215465 (executing program)
2025/08/31 09:59:31 fetching corpus: 4800, signal 161092/216148 (executing program)
2025/08/31 09:59:31 fetching corpus: 4850, signal 161474/216789 (executing program)
2025/08/31 09:59:31 fetching corpus: 4900, signal 161843/217400 (executing program)
2025/08/31 09:59:31 fetching corpus: 4950, signal 162319/218004 (executing program)
2025/08/31 09:59:31 fetching corpus: 5000, signal 162813/218634 (executing program)
2025/08/31 09:59:31 fetching corpus: 5050, signal 163094/219232 (executing program)
2025/08/31 09:59:31 fetching corpus: 5100, signal 163500/219867 (executing program)
2025/08/31 09:59:31 fetching corpus: 5150, signal 163973/220448 (executing program)
2025/08/31 09:59:31 fetching corpus: 5200, signal 164264/221056 (executing program)
2025/08/31 09:59:31 fetching corpus: 5250, signal 165062/221631 (executing program)
2025/08/31 09:59:31 fetching corpus: 5300, signal 165486/222160 (executing program)
2025/08/31 09:59:32 fetching corpus: 5350, signal 165810/222730 (executing program)
2025/08/31 09:59:32 fetching corpus: 5400, signal 166198/223262 (executing program)
2025/08/31 09:59:32 fetching corpus: 5450, signal 166511/223795 (executing program)
2025/08/31 09:59:32 fetching corpus: 5500, signal 166816/224295 (executing program)
2025/08/31 09:59:32 fetching corpus: 5550, signal 167467/224684 (executing program)
2025/08/31 09:59:32 fetching corpus: 5600, signal 167910/224686 (executing program)
2025/08/31 09:59:32 fetching corpus: 5650, signal 168273/224699 (executing program)
2025/08/31 09:59:32 fetching corpus: 5700, signal 168551/224704 (executing program)
2025/08/31 09:59:32 fetching corpus: 5750, signal 168923/224717 (executing program)
2025/08/31 09:59:32 fetching corpus: 5800, signal 169205/224726 (executing program)
2025/08/31 09:59:32 fetching corpus: 5850, signal 169579/224736 (executing program)
2025/08/31 09:59:32 fetching corpus: 5900, signal 169985/224739 (executing program)
2025/08/31 09:59:32 fetching corpus: 5950, signal 170462/224756 (executing program)
2025/08/31 09:59:32 fetching corpus: 6000, signal 170761/224763 (executing program)
2025/08/31 09:59:32 fetching corpus: 6050, signal 171058/224812 (executing program)
2025/08/31 09:59:32 fetching corpus: 6100, signal 171594/224813 (executing program)
2025/08/31 09:59:33 fetching corpus: 6150, signal 172130/224830 (executing program)
2025/08/31 09:59:33 fetching corpus: 6200, signal 172459/224841 (executing program)
2025/08/31 09:59:33 fetching corpus: 6250, signal 172786/224842 (executing program)
2025/08/31 09:59:33 fetching corpus: 6300, signal 173113/224849 (executing program)
2025/08/31 09:59:33 fetching corpus: 6350, signal 173613/224849 (executing program)
2025/08/31 09:59:33 fetching corpus: 6400, signal 174021/224850 (executing program)
2025/08/31 09:59:33 fetching corpus: 6450, signal 174430/224870 (executing program)
2025/08/31 09:59:33 fetching corpus: 6500, signal 174842/224870 (executing program)
2025/08/31 09:59:33 fetching corpus: 6550, signal 175168/224872 (executing program)
2025/08/31 09:59:33 fetching corpus: 6600, signal 175434/224873 (executing program)
2025/08/31 09:59:33 fetching corpus: 6650, signal 175624/224879 (executing program)
2025/08/31 09:59:34 fetching corpus: 6700, signal 176097/224880 (executing program)
2025/08/31 09:59:34 fetching corpus: 6750, signal 176449/224890 (executing program)
2025/08/31 09:59:34 fetching corpus: 6800, signal 176779/224891 (executing program)
2025/08/31 09:59:34 fetching corpus: 6850, signal 176959/224895 (executing program)
2025/08/31 09:59:34 fetching corpus: 6900, signal 177331/224897 (executing program)
2025/08/31 09:59:34 fetching corpus: 6950, signal 177538/224905 (executing program)
2025/08/31 09:59:34 fetching corpus: 7000, signal 178044/224916 (executing program)
2025/08/31 09:59:34 fetching corpus: 7050, signal 178428/224917 (executing program)
2025/08/31 09:59:34 fetching corpus: 7100, signal 178662/224919 (executing program)
2025/08/31 09:59:34 fetching corpus: 7150, signal 178931/224924 (executing program)
2025/08/31 09:59:34 fetching corpus: 7200, signal 179331/224931 (executing program)
2025/08/31 09:59:34 fetching corpus: 7250, signal 179603/224978 (executing program)
2025/08/31 09:59:34 fetching corpus: 7300, signal 179929/224993 (executing program)
2025/08/31 09:59:35 fetching corpus: 7350, signal 180220/224996 (executing program)
2025/08/31 09:59:35 fetching corpus: 7400, signal 180682/224997 (executing program)
2025/08/31 09:59:35 fetching corpus: 7450, signal 180951/225001 (executing program)
2025/08/31 09:59:35 fetching corpus: 7500, signal 181204/225005 (executing program)
2025/08/31 09:59:35 fetching corpus: 7550, signal 181433/225007 (executing program)
2025/08/31 09:59:35 fetching corpus: 7600, signal 181728/225017 (executing program)
2025/08/31 09:59:35 fetching corpus: 7650, signal 181959/225027 (executing program)
2025/08/31 09:59:35 fetching corpus: 7700, signal 182162/225028 (executing program)
2025/08/31 09:59:35 fetching corpus: 7750, signal 182375/225029 (executing program)
2025/08/31 09:59:35 fetching corpus: 7800, signal 182697/225042 (executing program)
2025/08/31 09:59:35 fetching corpus: 7850, signal 182959/225044 (executing program)
2025/08/31 09:59:36 fetching corpus: 7900, signal 183151/225044 (executing program)
2025/08/31 09:59:36 fetching corpus: 7950, signal 183382/225047 (executing program)
2025/08/31 09:59:36 fetching corpus: 8000, signal 183610/225060 (executing program)
2025/08/31 09:59:36 fetching corpus: 8050, signal 183907/225069 (executing program)
2025/08/31 09:59:36 fetching corpus: 8100, signal 184136/225080 (executing program)
2025/08/31 09:59:36 fetching corpus: 8150, signal 184323/225086 (executing program)
2025/08/31 09:59:36 fetching corpus: 8200, signal 184568/225087 (executing program)
2025/08/31 09:59:36 fetching corpus: 8250, signal 184877/225112 (executing program)
2025/08/31 09:59:36 fetching corpus: 8300, signal 185215/225183 (executing program)
2025/08/31 09:59:36 fetching corpus: 8350, signal 185457/225201 (executing program)
2025/08/31 09:59:36 fetching corpus: 8400, signal 185658/225207 (executing program)
2025/08/31 09:59:36 fetching corpus: 8450, signal 185861/225231 (executing program)
2025/08/31 09:59:37 fetching corpus: 8500, signal 186080/225245 (executing program)
2025/08/31 09:59:37 fetching corpus: 8550, signal 186314/225245 (executing program)
2025/08/31 09:59:37 fetching corpus: 8600, signal 186698/225296 (executing program)
2025/08/31 09:59:37 fetching corpus: 8650, signal 187001/225302 (executing program)
2025/08/31 09:59:37 fetching corpus: 8700, signal 187283/225305 (executing program)
2025/08/31 09:59:37 fetching corpus: 8750, signal 187551/225307 (executing program)
2025/08/31 09:59:37 fetching corpus: 8800, signal 187930/225307 (executing program)
2025/08/31 09:59:37 fetching corpus: 8850, signal 188201/225310 (executing program)
2025/08/31 09:59:37 fetching corpus: 8900, signal 188489/225324 (executing program)
2025/08/31 09:59:37 fetching corpus: 8950, signal 188676/225330 (executing program)
2025/08/31 09:59:37 fetching corpus: 9000, signal 188880/225333 (executing program)
2025/08/31 09:59:38 fetching corpus: 9050, signal 189113/225333 (executing program)
2025/08/31 09:59:38 fetching corpus: 9100, signal 189301/225339 (executing program)
2025/08/31 09:59:38 fetching corpus: 9150, signal 189599/225341 (executing program)
2025/08/31 09:59:38 fetching corpus: 9200, signal 189819/225344 (executing program)
2025/08/31 09:59:38 fetching corpus: 9250, signal 190119/225350 (executing program)
2025/08/31 09:59:38 fetching corpus: 9300, signal 190354/225351 (executing program)
2025/08/31 09:59:38 fetching corpus: 9350, signal 190584/225359 (executing program)
2025/08/31 09:59:38 fetching corpus: 9400, signal 191197/225361 (executing program)
2025/08/31 09:59:38 fetching corpus: 9450, signal 191422/225369 (executing program)
2025/08/31 09:59:38 fetching corpus: 9500, signal 191589/225372 (executing program)
2025/08/31 09:59:38 fetching corpus: 9550, signal 191807/225388 (executing program)
2025/08/31 09:59:38 fetching corpus: 9600, signal 192014/225389 (executing program)
2025/08/31 09:59:39 fetching corpus: 9650, signal 192179/225394 (executing program)
2025/08/31 09:59:39 fetching corpus: 9700, signal 192452/225410 (executing program)
2025/08/31 09:59:39 fetching corpus: 9750, signal 192755/225421 (executing program)
2025/08/31 09:59:39 fetching corpus: 9800, signal 193024/225427 (executing program)
2025/08/31 09:59:39 fetching corpus: 9850, signal 193194/225429 (executing program)
2025/08/31 09:59:39 fetching corpus: 9900, signal 193426/225456 (executing program)
2025/08/31 09:59:39 fetching corpus: 9950, signal 193728/225470 (executing program)
2025/08/31 09:59:39 fetching corpus: 10000, signal 193945/225471 (executing program)
2025/08/31 09:59:39 fetching corpus: 10050, signal 194147/225474 (executing program)
2025/08/31 09:59:39 fetching corpus: 10100, signal 194399/225474 (executing program)
2025/08/31 09:59:39 fetching corpus: 10150, signal 194660/225474 (executing program)
2025/08/31 09:59:39 fetching corpus: 10200, signal 194849/225478 (executing program)
2025/08/31 09:59:40 fetching corpus: 10250, signal 195026/225481 (executing program)
2025/08/31 09:59:40 fetching corpus: 10300, signal 195197/225481 (executing program)
2025/08/31 09:59:40 fetching corpus: 10350, signal 195442/225483 (executing program)
2025/08/31 09:59:40 fetching corpus: 10400, signal 195681/225486 (executing program)
2025/08/31 09:59:40 fetching corpus: 10450, signal 195985/225487 (executing program)
2025/08/31 09:59:40 fetching corpus: 10500, signal 196188/225527 (executing program)
2025/08/31 09:59:40 fetching corpus: 10550, signal 196402/225536 (executing program)
2025/08/31 09:59:40 fetching corpus: 10600, signal 196621/225536 (executing program)
2025/08/31 09:59:40 fetching corpus: 10650, signal 196790/225539 (executing program)
2025/08/31 09:59:40 fetching corpus: 10700, signal 197061/225541 (executing program)
2025/08/31 09:59:40 fetching corpus: 10750, signal 197298/225542 (executing program)
2025/08/31 09:59:41 fetching corpus: 10800, signal 197542/225547 (executing program)
2025/08/31 09:59:41 fetching corpus: 10850, signal 197781/225548 (executing program)
2025/08/31 09:59:41 fetching corpus: 10900, signal 197934/225557 (executing program)
2025/08/31 09:59:41 fetching corpus: 10950, signal 198231/225557 (executing program)
2025/08/31 09:59:41 fetching corpus: 11000, signal 198435/225559 (executing program)
2025/08/31 09:59:41 fetching corpus: 11050, signal 198667/225562 (executing program)
2025/08/31 09:59:41 fetching corpus: 11100, signal 198834/225566 (executing program)
2025/08/31 09:59:41 fetching corpus: 11150, signal 199017/225569 (executing program)
2025/08/31 09:59:41 fetching corpus: 11200, signal 199170/225587 (executing program)
2025/08/31 09:59:41 fetching corpus: 11250, signal 199345/225602 (executing program)
2025/08/31 09:59:41 fetching corpus: 11300, signal 199529/225602 (executing program)
2025/08/31 09:59:41 fetching corpus: 11350, signal 199686/225605 (executing program)
2025/08/31 09:59:42 fetching corpus: 11400, signal 199928/225605 (executing program)
2025/08/31 09:59:42 fetching corpus: 11450, signal 200323/225605 (executing program)
2025/08/31 09:59:42 fetching corpus: 11500, signal 200543/225613 (executing program)
2025/08/31 09:59:42 fetching corpus: 11550, signal 200762/225621 (executing program)
2025/08/31 09:59:42 fetching corpus: 11600, signal 200928/225621 (executing program)
2025/08/31 09:59:42 fetching corpus: 11650, signal 201152/225621 (executing program)
2025/08/31 09:59:42 fetching corpus: 11700, signal 201347/225625 (executing program)
2025/08/31 09:59:42 fetching corpus: 11750, signal 201551/225633 (executing program)
2025/08/31 09:59:42 fetching corpus: 11800, signal 201719/225633 (executing program)
2025/08/31 09:59:42 fetching corpus: 11850, signal 201917/225633 (executing program)
2025/08/31 09:59:42 fetching corpus: 11900, signal 202136/225638 (executing program)
2025/08/31 09:59:42 fetching corpus: 11950, signal 202288/225645 (executing program)
2025/08/31 09:59:42 fetching corpus: 12000, signal 202651/225658 (executing program)
2025/08/31 09:59:42 fetching corpus: 12050, signal 202905/225696 (executing program)
2025/08/31 09:59:43 fetching corpus: 12100, signal 203071/225699 (executing program)
2025/08/31 09:59:43 fetching corpus: 12150, signal 203213/225706 (executing program)
2025/08/31 09:59:43 fetching corpus: 12200, signal 203435/225743 (executing program)
2025/08/31 09:59:43 fetching corpus: 12250, signal 203650/225744 (executing program)
2025/08/31 09:59:43 fetching corpus: 12300, signal 203855/225745 (executing program)
2025/08/31 09:59:43 fetching corpus: 12350, signal 204534/225745 (executing program)
2025/08/31 09:59:43 fetching corpus: 12400, signal 204712/225748 (executing program)
2025/08/31 09:59:43 fetching corpus: 12442, signal 204846/225748 (executing program)
2025/08/31 09:59:43 fetching corpus: 12442, signal 204846/225748 (executing program)
2025/08/31 09:59:45 starting 8 fuzzer processes
09:59:45 executing program 0:
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(0xffffffffffffffff, 0x80083314, &(0x7f0000000000))
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x6c, 0x0, 0x1, 0x301, 0x0, 0x0, {0x2, 0x0, 0x2}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0xffff}, @CTA_HELP={0xc, 0x5, 0x0, 0x1, {0x8, 0x1, 'RAS\x00'}}, @CTA_PROTOINFO={0x10, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0xc, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x7f}]}}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x2}, @CTA_SEQ_ADJ_ORIG={0x2c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x3ff}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x40}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x28}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x7ff}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x80000001}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
sendmsg$NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x420, 0x70bd2b, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040000}, 0x4000080)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f00000002c0)={0x150, 0x0, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4a}, @TIPC_NLA_BEARER_NAME={0x13, 0x1, @l2={'eth', 0x3a, 'syzkaller0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xa4}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x848b}]}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9efd}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xef7a}]}, @TIPC_NLA_LINK={0xb0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xaf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xad}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}]}]}, 0x150}, 0x1, 0x0, 0x0, 0x40000d0}, 0x4008081)
r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f00000004c0)={0x1f, 0x0, @none}, &(0x7f0000000500)=0xe, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000780), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x24, r1, 0x300, 0x70bd26, 0x25dfdbff, {}, [@FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f00000008c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x24, r2, 0x400, 0x70bd26, 0x25dfdbff, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0xc0)
r3 = syz_open_dev$mouse(&(0x7f00000009c0), 0x0, 0x10000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000a40)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_GET_KEY(r3, &(0x7f0000000b00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x24, 0x0, 0x0, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40090}, 0x20000805)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000b40), r3)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000bc0)={'ip6_vti0\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000000e00)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000c00)={0x1b0, r5, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x8800}, 0x4c080)
r7 = openat$cgroup_ro(r3, &(0x7f0000000e40)='memory.current\x00', 0x0, 0x0)
sendmsg$NL80211_CMD_SET_WDS_PEER(r7, &(0x7f0000000f40)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x40, 0x0, 0x1, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="ed030df73b94"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="e9d52d9e19b7"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="4efa0a555a09"}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004010}, 0x41)
fcntl$F_GET_FILE_RW_HINT(r7, 0x40d, &(0x7f0000000f80))

09:59:45 executing program 1:
setrlimit(0x8, &(0x7f0000000000)={0x10000, 0x6})
setrlimit(0x4, &(0x7f0000000040)={0xfffffffffffffff9, 0x8})
setrlimit(0x0, &(0x7f0000000080)={0x4, 0x1000})
setrlimit(0xe, &(0x7f00000000c0)={0x6b93, 0x9})
setrlimit(0x6, &(0x7f0000000100)={0x7, 0x10000})
setrlimit(0xa, &(0x7f0000000140)={0x5cd, 0xf7f})
setrlimit(0x5, &(0x7f0000000180)={0x100000000, 0x5})
setrlimit(0xc, &(0x7f00000001c0)={0x6, 0x10000})
setrlimit(0x1, &(0x7f0000000200)={0x3, 0x7fff})
setrlimit(0x7, &(0x7f0000000240)={0x2, 0x6})
setrlimit(0x5, &(0x7f0000000280)={0x910, 0x50})
setrlimit(0xe, &(0x7f00000002c0)={0x0, 0x49})
setrlimit(0x4, &(0x7f0000000300)={0x0, 0x1eb0adfa})
setrlimit(0x9, &(0x7f0000000340)={0x2, 0x2})
setrlimit(0xc, &(0x7f0000000380)={0x0, 0x7})
setrlimit(0x7, &(0x7f00000003c0)={0x100000000, 0x8})
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
prlimit64(r0, 0x8da94fb21aeb8163, 0x0, &(0x7f0000000400))
prlimit64(r0, 0xe, &(0x7f0000000440)={0x8, 0x9}, &(0x7f0000000480))
setrlimit(0x8, &(0x7f00000004c0)={0x401, 0x3})

09:59:45 executing program 2:
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x2}}, './file0\x00'})
r1 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x7ff, 0x0, &(0x7f00000000c0), 0x20030, &(0x7f0000000100)={[{@numtail}, {@shortname_winnt}, {@fat=@flush}, {@rodir}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@shortname_win95}, {@rodir}, {@nonumtail}, {@utf8no}], [{@defcontext={'defcontext', 0x3d, 'root'}}, {@audit}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@audit}]})
r2 = fspick(r1, &(0x7f00000001c0)='./file0\x00', 0x1)
unlinkat(r0, &(0x7f0000000200)='./file0\x00', 0x200)
ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000340)={0x2, &(0x7f0000000300)=[{0x4, 0x4e, &(0x7f0000000240)="e2330e6209d559f986d4d40ba8e2a5943d77cc5a0031e8688aa67f01237b4dd5f607d4964507cd38c6a7cdc4230c0ee8ca29f4e9ea5ac8c2f1d29f3035560c6afa67ffe40f233ebc646e981ebf07"}, {0x1, 0x3c, &(0x7f00000002c0)="b20201fe7e5c716eccd72c1d585f32d65566aa313e5509b38648667d1382345adb5815532be05e133602d1cc4604a7857c18f2485b8531868a16a2af"}]})
clock_gettime(0x0, &(0x7f00000003c0)={<r3=>0x0, <r4=>0x0})
utimensat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)={{r3, r4/1000+60000}}, 0x100)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000440)={{0x1, 0x1, 0x18, r2, {0x7}}, './file0\x00'})
pipe(&(0x7f0000000480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvfrom(r6, &(0x7f00000004c0)=""/42, 0x2a, 0x0, &(0x7f0000000500)=@l2tp={0x2, 0x0, @empty, 0x1}, 0x80)
r7 = signalfd4(r5, &(0x7f0000000580)={[0x4]}, 0x8, 0x800)
ppoll(&(0x7f00000005c0)=[{r7, 0x2}], 0x1, &(0x7f0000000600)={0x77359400}, &(0x7f0000000640), 0x8)
clock_gettime(0x0, &(0x7f0000000740)={<r8=>0x0, <r9=>0x0})
pselect6(0x40, &(0x7f0000000680)={0x1, 0x1, 0x9, 0x7, 0xfb, 0x7, 0x400, 0x10001}, &(0x7f00000006c0)={0x100000000, 0x1800000000000000, 0x9, 0x1ff, 0x6, 0x83, 0x20, 0x1f}, &(0x7f0000000700)={0x2, 0x6b62, 0x9, 0x1, 0x2, 0x3, 0x2717}, &(0x7f0000000780)={r8, r9+60000000}, &(0x7f0000000800)={&(0x7f00000007c0)={[0x2]}, 0x8})
stat(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880))
r10 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000900)='ns/net\x00')
ioctl$NS_GET_OWNER_UID(r10, 0xb704, &(0x7f0000000940))
ioctl$AUTOFS_DEV_IOCTL_READY(r6, 0xc0189376, &(0x7f0000000980)={{0x1, 0x1, 0x18, <r11=>r5, {0x200}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r11, 0xc0189373, &(0x7f00000009c0)={{0x1, 0x1, 0x18, r7, {0x400}}, '.\x00'})
ppoll(&(0x7f0000000a40)=[{r11, 0x4300}, {r2, 0x9600}, {0xffffffffffffffff, 0x2040}, {r11, 0x4}], 0x4, &(0x7f0000000a80), &(0x7f0000000ac0)={[0x4]}, 0x8)

09:59:45 executing program 4:
sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10040000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x0, 0x300, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa, 0x6, @random="d64cf5c52312"}]}, 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x40800)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x0, 0x20, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x800, 0x2a}}}}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x40004)
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r0, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10001}]}, 0x1c}, 0x1, 0x0, 0x0, 0xa85062bbad31c932}, 0x8000)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan3\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r1, &(0x7f0000000480)={&(0x7f0000000340), 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x58, 0x0, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x81}]}, 0x58}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000680)={&(0x7f0000000500)={0x170, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x170}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_PROTOCOLS(r4, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, 0x0, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20048041}, 0x40014)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000800)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {0x3f}}, './file0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000880)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_STOP_NAN(r5, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x28, 0x0, 0x2, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x7, 0x4d}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x884}, 0x40080)
sendmsg$NLBL_MGMT_C_ADDDEF(r4, &(0x7f0000000a80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000a40)={&(0x7f00000009c0)={0x44, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast1}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @ipv4={'\x00', '\xff\xff', @multicast2}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004010}, 0x0)
sendmsg$IEEE802154_ADD_IFACE(r3, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x40, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}]}, 0x40}}, 0x44)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000c00), r4)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000c40)={'wpan1\x00', <r8=>0x0})
sendmsg$NL802154_CMD_GET_SEC_KEY(r4, &(0x7f0000000d40)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x5c, r7, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x5c}, 0x1, 0x0, 0x0, 0x41}, 0x44000)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r5, &(0x7f0000000e80)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x3c, 0x0, 0x10, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xffffffff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x15}, 0x20008051)

09:59:46 executing program 3:
mlock(&(0x7f0000ffc000/0x1000)=nil, 0x1000)
mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x8000, &(0x7f0000000000)=0x7, 0x9, 0x1)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xb)
mlock(&(0x7f0000ffc000/0x1000)=nil, 0x1000)
munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000ff1000/0xf000)=nil, 0xf000)
munmap(&(0x7f0000ff6000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x13)
mbind(&(0x7f0000ff6000/0x4000)=nil, 0x4000, 0x4000, &(0x7f0000000040)=0x9, 0x7, 0x2)
mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000, 0x4, &(0x7f0000ff8000/0x2000)=nil)
mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000ffa000/0x1000)=nil)
mbind(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x0, &(0x7f0000000080)=0x3e8, 0x100000000, 0x5)
madvise(&(0x7f0000ff5000/0x1000)=nil, 0x1000, 0xb)
munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000)
shmget(0x3, 0x1000, 0x2, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000ff2000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3, &(0x7f00000000c0)=0x80, 0x5, 0x1)
munlock(&(0x7f0000ff1000/0x4000)=nil, 0x4000)
mlock(&(0x7f0000ff4000/0x3000)=nil, 0x3000)

09:59:46 executing program 5:
clock_gettime(0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
utimensat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={{0x0, 0xea60}, {r0, r1/1000+60000}}, 0x100)
clock_gettime(0x5, &(0x7f00000000c0))
r2 = syz_io_uring_complete(0x0)
ppoll(&(0x7f0000000100)=[{0xffffffffffffffff, 0x80}, {0xffffffffffffffff, 0x28}, {0xffffffffffffffff, 0x6}, {0xffffffffffffffff, 0x2413}, {}, {0xffffffffffffffff, 0x8400}, {0xffffffffffffffff, 0x20}, {r2, 0x80}], 0x8, &(0x7f0000000140), &(0x7f0000000180)={[0x43e9]}, 0x8)
r3 = dup2(r2, r2)
r4 = open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x88000)
readlinkat(r4, &(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240)=""/190, 0xbe)
syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r2)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r5=>r3}, './file0/file0\x00'})
clock_gettime(0x0, &(0x7f000000a300)={<r6=>0x0, <r7=>0x0})
recvmmsg(r5, &(0x7f000000a080)=[{{&(0x7f0000000380)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f00000015c0)=[{&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/130, 0x82}, {&(0x7f00000014c0)=""/206, 0xce}], 0x3, &(0x7f0000001600)=""/4096, 0x1000}, 0x3d}, {{&(0x7f0000002600)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002780)=[{&(0x7f0000002680)=""/23, 0x17}, {&(0x7f00000026c0)=""/143, 0x8f}], 0x2, &(0x7f00000027c0)=""/160, 0xa0}}, {{&(0x7f0000002880)=@vsock, 0x80, &(0x7f0000003b80)=[{&(0x7f0000002900)=""/129, 0x81}, {&(0x7f00000029c0)}, {&(0x7f0000002a00)=""/4096, 0x1000}, {&(0x7f0000003a00)=""/255, 0xff}, {&(0x7f0000003b00)=""/34, 0x22}, {&(0x7f0000003b40)=""/45, 0x2d}], 0x6, &(0x7f0000003c00)=""/70, 0x46}, 0x20}, {{&(0x7f0000003c80)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @loopback}}, 0x80, &(0x7f0000004f00)=[{&(0x7f0000003d00)=""/4096, 0x1000}, {&(0x7f0000004d00)=""/55, 0x37}, {&(0x7f0000004d40)}, {&(0x7f0000004d80)=""/155, 0x9b}, {&(0x7f0000004e40)=""/11, 0xb}, {&(0x7f0000004e80)=""/39, 0x27}, {&(0x7f0000004ec0)=""/25, 0x19}], 0x7, &(0x7f0000004f80)=""/196, 0xc4}, 0xfffffff8}, {{0x0, 0x0, &(0x7f0000005400)=[{&(0x7f0000005080)=""/101, 0x65}, {&(0x7f0000005100)=""/67, 0x43}, {&(0x7f0000005180)=""/247, 0xf7}, {&(0x7f0000005280)=""/120, 0x78}, {&(0x7f0000005300)=""/195, 0xc3}], 0x5, &(0x7f0000005480)=""/3, 0x3}, 0x3f}, {{0x0, 0x0, &(0x7f0000007500)=[{&(0x7f00000054c0)=""/33, 0x21}, {&(0x7f0000005500)=""/4096, 0x1000}, {&(0x7f0000006500)=""/4096, 0x1000}], 0x3, &(0x7f0000007540)=""/42, 0x2a}, 0x5}, {{&(0x7f0000007580)=@vsock={0x28, 0x0, 0x0, @local}, 0x80, &(0x7f0000008900)=[{&(0x7f0000007600)=""/40, 0x28}, {&(0x7f0000007640)=""/4096, 0x1000}, {&(0x7f0000008640)=""/62, 0x3e}, {&(0x7f0000008680)=""/233, 0xe9}, {&(0x7f0000008780)=""/185, 0xb9}, {&(0x7f0000008840)=""/131, 0x83}], 0x6, &(0x7f0000008980)=""/9, 0x9}, 0xa7}, {{&(0x7f00000089c0), 0x80, &(0x7f0000009a40)=[{&(0x7f0000008a40)=""/4096, 0x1000}], 0x1, &(0x7f0000009a80)=""/76, 0x4c}, 0x5}, {{&(0x7f0000009b00)=@sco={0x1f, @fixed}, 0x80, &(0x7f0000009e40)=[{&(0x7f0000009b80)=""/200, 0xc8}, {&(0x7f0000009c80)=""/205, 0xcd}, {&(0x7f0000009d80)=""/192, 0xc0}], 0x3, &(0x7f0000009e80)=""/180, 0xb4}, 0x800}, {{&(0x7f0000009f40)=@un=@abs, 0x80, &(0x7f000000a040)=[{&(0x7f0000009fc0)=""/69, 0x45}], 0x1}, 0x8}], 0xa, 0x40010000, &(0x7f000000a340)={r6, r7+10000000})
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2, 0x110, r3, 0x0)
pipe2(&(0x7f000000a380)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
syz_io_uring_submit(r8, 0x0, &(0x7f000000a440)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r9, &(0x7f000000a3c0)={0x90000, 0xe5, 0x1}, &(0x7f000000a400)='./file0/file0\x00', 0x18, 0x0, 0x23456}, 0x800)
r10 = openat$nvram(0xffffffffffffff9c, &(0x7f000000a480), 0x2000, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r10, 0x80049367, &(0x7f000000a4c0))
syz_mount_image$ext4(&(0x7f000000a500)='ext3\x00', &(0x7f000000a540)='./file0\x00', 0x8001, 0x1, &(0x7f000000a600)=[{&(0x7f000000a580)="e55ee157069fbd758bdd8c68e4e920b370311d70f677afd903a611a0ab7fe359ac5f0b6a97fb92f70c9d917dde7e9005a8158038258b646668cd19bcafffda0d1a60736e5130e8e74089e430b77253c7c26a53bf796a591b1d7b3f8e1ae9aadc745853", 0x63, 0xfffffffffffffff8}], 0xcf045, &(0x7f000000a640)={[{@noinit_itable}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@subj_role}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x55, 0x62, 0x66, 0x31, 0x5d, 0x32, 0x37], 0x2d, [0x35, 0x35, 0x32, 0x35], 0x2d, [0x62, 0x38, 0x61, 0x61], 0x2d, [0x38, 0x30, 0x30, 0x39], 0x2d, [0x66, 0x31, 0x62, 0x39, 0x33, 0x64, 0x36, 0x66]}}}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x39, 0x66, 0x66, 0x66, 0x32, 0x32, 0x30], 0x2d, [0x37, 0x61, 0x65, 0x61], 0x2d, [0x53, 0x33, 0x0, 0x34], 0x2d, [0x36, 0x30, 0x39, 0x61], 0x2d, [0x63, 0x37, 0x62, 0x30, 0x30, 0x30, 0x33, 0x31]}}}, {@context={'context', 0x3d, 'staff_u'}}]})
ioctl$BTRFS_IOC_QUOTA_RESCAN(r3, 0x4040942c, &(0x7f000000a700)={0x0, 0xfa3, [0xffff, 0x1f, 0x1, 0x1, 0x3963ab42, 0xfff]})
syz_memcpy_off$IO_URING_METADATA_FLAGS(r8, 0x118, &(0x7f000000a740)=0x1, 0x0, 0x4)

[   90.986032] audit: type=1400 audit(1756634386.043:7): avc:  denied  { execmem } for  pid=271 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
09:59:46 executing program 7:
setsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000000)=0x1, 0x4)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
write$binfmt_elf64(r0, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x99, 0x7, 0xff, 0x4, 0x3, 0x3e, 0x80, 0x3cb, 0x40, 0x161, 0x8001, 0x8000, 0x38, 0x1, 0x9, 0x6, 0x3f}, [{0x70000000, 0x0, 0x8000, 0x6, 0x5d2, 0x3, 0x2, 0x9}, {0x1, 0xb30, 0x7, 0x9, 0x100000001, 0xb52, 0x9, 0x5}], "d7ae13e446d26e2803c2dc9f45f56c3f8192dc24b60873f4c209626ff6d0c406fa0301fceec12bb08f2aa268db5366e7fe91794d263738bbf4c5ffd3d6efb4c41add554df06a6ebd9a7d0b6a0cabd0f6d5f0974dd6584c781e49fa6faca9ce7bb04d33340a23179341cb9087abb0d75d43c8221f7558ccd3d373350acd2cca9e493a599f850b97ed768415d4a0f441460f3238f34f3ee92a315ae8123a10cc7d0fcd0f8fd1fdcf71182aa3dae724de142bb9b975804c4c536715f14584c260", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x76f)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
fsetxattr$security_selinux(r1, &(0x7f00000007c0), &(0x7f0000000800)='/usr/sbin/cups-browsed\x00', 0x17, 0x1)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000840)='./file0\x00', 0x480100, 0x30)
getsockopt$WPAN_SECURITY(r3, 0x0, 0x1, &(0x7f0000000880), &(0x7f00000008c0)=0x4)
bind$bt_sco(r0, &(0x7f0000000900)={0x1f, @none}, 0x8)
bind$802154_dgram(r3, &(0x7f0000000940)={0x24, @short={0x2, 0xffff, 0xaaa0}}, 0x14)
execveat(r3, &(0x7f0000000980)='./file0\x00', &(0x7f0000000a00)=[&(0x7f00000009c0)=':\x00'], &(0x7f0000000b80)=[&(0x7f0000000a40)='-))\xca+/%+\x00', &(0x7f0000000a80)='\xff\xff\xff\xff\xff\xff', &(0x7f0000000ac0)='\x00', &(0x7f0000000b00)='\xff\xff\xff\xff\xff\xff', &(0x7f0000000b40)='/usr/sbin/cups-browsed\x00'], 0x400)
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x0, &(0x7f0000000bc0), &(0x7f0000000c00)=0x4)
r4 = accept(r2, 0x0, &(0x7f0000000c40))
sendmsg$AUDIT_USER(r4, &(0x7f0000000e00)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000cc0)={0x100, 0x3ed, 0x20, 0x70bd25, 0x25dfdbfb, "68b88690bc445d58820e961c60bfef23a5406be1cb13e6b5a53b60bd43387c3ebd4da2874d5af74b5aa5b31bff3e147ae38786009621a99dc30ce8cfe127c7694419bc6af7bf3c6dd9c24d7549cf1d1cbc38489d2ca63fd19da09b838a5a3407bdf1cedf2b2230c3b77581ea39cf8c931e079b8fcd44a4e24d5a5b4102906d44df20c08b548534d8ae3d02bae63fb991b921ddb0d39a3d660c229868e1bc6173393a516dc8926d3c44ca45348427fe94aa270e94fdcd16f4ca72f4d1b03ef0ebc60c8c39c8d1946da11c8e2917fcf0ff54ba6f3245a6c1cd275d8a017840ab405557695905d594c2aae0ce3a5d", [""]}, 0x100}, 0x1, 0x0, 0x0, 0x400}, 0x20004001)
sendmsg$AUDIT_USER(r1, &(0x7f0000000fc0)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000e80)={0xc8, 0x3ed, 0x8, 0x70bd26, 0x25dfdbfc, "245f5ed3ef36cf6aed06f7ef0b80d69270718a8c25353ac7b01572bdacaaa675eeed7c703741f39c0ef266b27e735bf0035629e45ed821153e10632bee713bec6a8f6a03f889aebe9a27b2168b015db029f2a1dbe1195bd15daea1bed7c110101a91f749634ba1c6c4f02fdeaa0aaab9c5e95d73e16fbf9fb766437e97224b33114aa2500f73f22afb18c4fc64f3183683b1e68426422841b59b3964624b02a9c1642f767242e5d18674c1427dcbff8dfdb3f02534bf02cb", [""]}, 0xc8}, 0x1, 0x0, 0x0, 0x4000800}, 0x20060010)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r5, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x80000004}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)={0x3c, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x2}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0xa}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa0}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x1}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x13}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24040004}, 0x40)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f0000001100), 0x242002, 0x0)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001180), r3)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r6, &(0x7f00000014c0)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001480)={&(0x7f0000001380)={0xf0, r7, 0x0, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1f}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}, @MPTCP_PM_ATTR_ADDR={0x60, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x43}}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private2}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x44010}, 0x8040)

09:59:46 executing program 6:
r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x6, 0x7, 0x7, 0x80, 0x0, 0x7, 0x440, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x864, 0x1, @perf_bp, 0x10480, 0x9d, 0x91, 0x2, 0x1862, 0x7110, 0x8, 0x0, 0x1ff, 0x0, 0x10000}, 0x0, 0xb, 0xffffffffffffffff, 0x8)
ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r0)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f00000000c0)={0x1, 0x1, 0xe})
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000200)=<r2=>0x0)
r3 = perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x2, 0x4, 0x86, 0x2, 0x0, 0x3, 0x40000, 0x19, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000140), 0xc}, 0x4a04, 0x7, 0x6, 0x9, 0x1, 0x5, 0x3, 0x0, 0x8}, r2, 0x7, r0, 0x8)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$BTRFS_IOC_FS_INFO(r4, 0x8400941f, &(0x7f0000000240))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000640)={{0x1, 0x1, 0x18, <r5=>r3, {0x9}}, './file0\x00'})
r6 = openat2(r5, &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x200080, 0x102, 0x14}, 0x18)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r6)
bind$inet(r4, &(0x7f0000000700)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x2f}}, 0x10)
lseek(r4, 0x800, 0x3)
r7 = accept4(r4, &(0x7f0000000740)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @remote}}, &(0x7f00000007c0)=0x80, 0x0)
r8 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000800), 0x40800, 0x0)
ppoll(&(0x7f0000000840)=[{r7, 0x201}, {r8, 0x400}, {r3, 0x4005}, {r6, 0x34}], 0x4, &(0x7f0000000880)={0x0, 0x989680}, &(0x7f00000008c0)={[0x668e]}, 0x8)
r9 = openat$zero(0xffffffffffffff9c, &(0x7f0000000900), 0x153340, 0x0)
ioctl$DVD_WRITE_STRUCT(r9, 0x5390, &(0x7f0000000940)=@physical={0x0, 0x3, [{0x2, 0xd, 0xa, 0x3, 0x4, 0x0, 0x2, 0xb, 0x9, 0x1, 0x29, 0x6, 0x2}, {0x6, 0x9, 0x3, 0x8, 0x6, 0x1, 0x3, 0x3, 0xd, 0x0, 0x415, 0x7, 0x10001}, {0x5, 0x0, 0xa, 0x9, 0x7, 0x1, 0x2, 0xa, 0x4, 0x1, 0x4, 0x0, 0xfffffff8}, {0x1, 0x7, 0x0, 0x5, 0x3, 0x1, 0x1, 0x3, 0xe, 0x0, 0x7b, 0x9, 0x7bd}]})
mkdirat(r6, &(0x7f0000001180)='./file0\x00', 0x12)
connect(r1, &(0x7f00000011c0)=@l2tp={0x2, 0x0, @loopback, 0x3}, 0x80)

[   92.131385] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   92.133689] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   92.135159] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   92.138884] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   92.141977] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   92.250973] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   92.252763] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   92.254189] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   92.258152] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   92.260338] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   92.395518] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   92.398747] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   92.405944] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   92.407864] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   92.411681] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   92.422198] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   92.423333] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   92.428403] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   92.434937] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   92.439906] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   92.443284] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   92.444941] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   92.447086] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   92.448849] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   92.454082] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   92.456334] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   92.473089] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   92.479529] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   92.481200] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   92.483736] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   92.488986] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   92.497242] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   92.507143] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   92.512996] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   92.514806] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   92.517804] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   92.527189] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   92.538823] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   92.540923] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   92.558012] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   94.160041] Bluetooth: hci0: command tx timeout
[   94.288723] Bluetooth: hci1: command tx timeout
[   94.479645] Bluetooth: hci6: command tx timeout
[   94.545672] Bluetooth: hci4: command tx timeout
[   94.607671] Bluetooth: hci5: command tx timeout
[   94.608314] Bluetooth: hci2: command tx timeout
[   94.608780] Bluetooth: hci7: command tx timeout
[   94.671653] Bluetooth: hci3: command tx timeout
[   96.208176] Bluetooth: hci0: command tx timeout
[   96.335667] Bluetooth: hci1: command tx timeout
[   96.527601] Bluetooth: hci6: command tx timeout
[   96.592624] Bluetooth: hci4: command tx timeout
[   96.655668] Bluetooth: hci7: command tx timeout
[   96.655792] Bluetooth: hci2: command tx timeout
[   96.656178] Bluetooth: hci5: command tx timeout
[   96.719635] Bluetooth: hci3: command tx timeout
[   98.255728] Bluetooth: hci0: command tx timeout
[   98.383751] Bluetooth: hci1: command tx timeout
[   98.575984] Bluetooth: hci6: command tx timeout
[   98.640016] Bluetooth: hci4: command tx timeout
[   98.703695] Bluetooth: hci2: command tx timeout
[   98.704483] Bluetooth: hci7: command tx timeout
[   98.705369] Bluetooth: hci5: command tx timeout
[   98.767695] Bluetooth: hci3: command tx timeout
[  100.303639] Bluetooth: hci0: command tx timeout
[  100.432779] Bluetooth: hci1: command tx timeout
[  100.624617] Bluetooth: hci6: command tx timeout
[  100.687652] Bluetooth: hci4: command tx timeout
[  100.751680] Bluetooth: hci2: command tx timeout
[  100.752234] Bluetooth: hci7: command tx timeout
[  100.753182] Bluetooth: hci5: command tx timeout
[  100.815733] Bluetooth: hci3: command tx timeout
[  128.965044] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.965692] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.110733] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.111356] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.256401] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.257069] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.468366] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.469013] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.745217] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.745868] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.815193] SELinux:  Context /usr/sbin/cups-browsed is not valid (left unmapped).
[  129.816957] audit: type=1400 audit(1756634424.874:8): avc:  denied  { relabelto } for  pid=3795 comm="syz-executor.7" name="NETLINK" dev="sockfs" ino=5308 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=netlink_audit_socket permissive=1 trawcon="/usr/sbin/cups-browsed"
[  129.859313] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.859923] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.879652] loop5: detected capacity change from 0 to 16383
[  129.887455] =======================================================
[  129.887455] WARNING: The mand mount option has been deprecated and
[  129.887455]          and is ignored by this kernel. Remove the mand
[  129.887455]          option from the mount to silence this warning.
[  129.887455] =======================================================
[  129.992648] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.993291] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.132621] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.133262] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.152981] loop5: detected capacity change from 0 to 16383
10:00:25 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
write$evdev(0xffffffffffffffff, &(0x7f0000000100)=[{{0x77359400}, 0x2, 0x7, 0x1}, {{0x0, 0x2710}, 0x1f, 0x0, 0x3f}, {{r1, r2/1000+10000}, 0x11, 0xfff, 0x1}], 0x48)
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f00000000c0)={0x0, 0xfd, 0x0, 0x0, "05f5724e42fc11ab19d53d257da87935d68d9a0efdab28929f337626c1db7e9c"})
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000000000)=0x4d19)
ioctl(r0, 0x752, &(0x7f0000000180)="17d8e43c00adfa20c39240660bad9b08ecf01fd42acfc43415a2e62d10564044623e501ac598e94ba1f2031562bb9bab20de8d7b3fde0fe79b4f05da41920a99e0f72689405609e8509056cbc32c356fa46070bc894f60ea72a17ef0cc548004e30c89c03c6ae114c419e0a1ffde92623bd2063d9f32f7ee7f18920474549565e27b85e4ca1b7c106508b073c3969c4412292540cbe87bf3b4df9327e146c8f898dee05df00be871b450e95e11a660b752e88bcb8c363fe5bc1e8c00472635ea17b3307a080f75ca25")

10:00:25 executing program 7:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x2)
ioctl$CDROM_GET_MCN(r0, 0x5311, &(0x7f0000000040))
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x208000, 0x0)

10:00:25 executing program 5:
r0 = epoll_create1(0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
epoll_pwait(r0, &(0x7f0000000100)=[{}], 0x1, 0x401, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x40000005})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
signalfd4(r2, &(0x7f0000000080)={[0x3ff]}, 0x8, 0x80800)
readahead(r2, 0x0, 0xfffffffffffffffc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="20155a17340000c24d01026242cb53dccf058ef5be0fbb897479f32562c2c4d6fce465688434428a26ae8d4a", @ANYRES32, @ANYRES64, @ANYRES64=r3], 0x28}], 0x1}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000080)={0x4})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000040)={0xa000001e})

[  130.420434] audit: type=1400 audit(1756634425.477:9): avc:  denied  { block_suspend } for  pid=3853 comm="syz-executor.5" capability=36  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
10:00:25 executing program 7:
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x400000, 0x6, &(0x7f00000014c0)=[{&(0x7f0000000200)="a70d4075345db5a141e8678bff25cbdd5d7eb7526ebd3a4a92621bc30bcdbdebcb7a0e57ab2047756b38b8a062f113b790451640f6fc194f743b17f3d5d72f5336ec084e156a31db32d4dd8b3a145f54a4cbfd9d11a791d7203ac91167d2aff047b8ef47ecd21c29c5d73d007b51eb23312a", 0x72}, {&(0x7f0000000280)="ae1334fc0e1a9a1b5833813626221675fc1bf194c753aaf665542e4386165bc7e284b29cac94e4f39dbb8cd1eeab2b76f98d80dd215731569c8372b99f0604dd8dd6c8f867b14e85c33c5bf44b28b25b281f861c735e278ea5dd3cf60c354a1c0fba92adeb7ff9a7468db1a7b683d465c02f3f8745184b", 0x77, 0x8000}, {&(0x7f0000000300)="18e79eeb690bca2226eb3e2d1bc4969a4b5908e28ced527f5ec80d98fbbb3fd1641375f8e5215c584bc303255698910b5a5a5d6d8e7adbbdb0a54049e91f8b3d11af1e9e7aa68e863c0616790c0f33125fd269546e2ec2f067b07aa86a2fc8bb5d25d264f296a9eb3c4c880f6bb9644c251c65cee1216039d6b4b7f8246b68931f19f9eba79b0a6a3566924178bba6fe66c4cb4c2e4d243671ce7db2016bf5d347b4536a079f8456fb03e9a6b8ef2831911c4e3f417eeaf160e41ea069b17267439d987eeb7c103f5413182ba82a07552d1cc69a4ee522f3a9519a73833d5f09b7315194ad6174464949b00abf2a196a886ff1d594edce21673bfa968a791fa68b4080af5ee3b3798ecd3a97840f2945711cfe078270842ff37ca5a91aa1247808e073aff5d9744b37ba6e45ef6ff550eb02adcb1de3b5c688f721453a2fd00f4cf377f70f7834110684c06dddbf73ba96e9cefa115bde117c60c09eb6c14c5965a1bd2403e1d6cf30dde5d75d0b71b123e825f830cff428a28eba4549b64bc767e827338bcceddb472d5fd74099d7a14cc07ceafe5f2c5081765c8f5ac72fe1165999a37c8284113ebfe3e8e4dc9dc9b1d3ee68ca5b434f5499159038900f63fba38320ee32c6a2e1a8d0f1bd927749a54419e96a0ead3ac95df01c8d94a2b6686119d5b4e9007b262a87c0969ab25c25a8c518e75758da9b788d37201bf2fcef3a0b9e6978e06cddf40ce942b5ef19330b1da1068f394ffd0186da9d88ecb71b3a1566b9d0f6476c4f70f0d1cdfd4c978efce70e1d671a2973b07a7a398b040b7eb0994b168afb543a9fd7c80f95913e8b7bbc105a82e455974b221279648ca235d43705dc7d05fcba8ddb624c5c97b36d844a11556034983e75e1939cddd5c598e10b198d2840eba5b411dddbc1a621c556b5ad668a9d80877749f6cbd7e8506a5ef6918ce6685697f0689e8eda8fb47fad08d23f72ecc2b8674d18ac97fbef8338e0ff7446809cdca8804a9cdc347f617165424f6b9c5698a0f45c252697639f2fc1857579e2a15b9e69d73493087a34ae4822d91f724aa4dd882b8b6dfa107813cdb76bae53dd851e4526484d83183d7a4d1c546a4150fb95769bb41d33b7cc8a091d16cf8e63152d2e04a5dd19d4e2d5644cdcc4a09906c2f42e31d7b47ee922aa488364b063da7e70a594a41374fc5344861938f2364ed02951e8b520d2be3ad99fc3d410b2902ed0313cbfd6a9a03c57a78a0b7081a263a87c86c46478261d7a2386a198ee0684645088edc9d77264feeece54b0370ceaef40aeea0d9a98bc652ee278902241f555096a866dd11e6570526f9e62c91635a62aeae73f3171a4b1e9a90ea3c9a790c559895ebae4147b69b0f39ce80f5621f2379564441da794fc322f2ab3cab670e18e34c67257df892d20b2c5fa59fdeaf9310715a96213d72bcaa7ea5e312d8cc164c9541ecdfee0dd29fbbb02ecf21656d536ac48269c5e697fe2f74ce921ed520812fdc377d1b6f517cb5198ec5331bbc3a75b467bedb7894e4c57ebca20c6598ee08dfc5c44010901a15dff29f1119e8c9790934e809bbdbd668615e6433713df4001e82cf0604168d913d112396acb581ef4da11be07f6279ed278c0f29335767ad35cf3750d2b978ba0cb0b9f81ff9edc8df847880baf1579caa8ebd7e4b3fed54028991555cdc0b0c7cd286e6308cf6df628a3a6556b4ccf759b1c57f298f386829bacb6bcb60649dda6e23f892362375e2353c62094f6d933878ec467ffcdf93c850a745d4263bccdab3a42ff66ac651c17ddb6d51aba061b1c92496588870b97ca29101caa6a3d94ac16997ba46efcc444a105dfe0516f7c57de957360f3b26a2ba99701a0b8eb7f4ee58a164a782faa6162a7923b6a91adf2f48abd09ef56b0d67a2a35da626ebfa18fa8a9f1e4fcda9e757011b975b0f53a85473638e7d91aa9d0c8cdb71227a8d6117bb9d2c7fc74b9b5b7f97e57376876e63f676f713638c8bde62253d2ec3e6b7e83e6c1674d2e5145161f56aefc3c04a68a10269342ef01f59bcd91c94d6b01f7bc00359bb3f612e7d4eef49094c1795d563e95448e449fc9dffdfdf55840f63d80ff6f1eb7ebfbc1ca30df3ca7e1ccad67a4d9ab4f003695b7c50e634b896b9479b3a8aeb707d61ec7d98b24db4defec309708d133d3ee354226288a5869e433c8ef8f736f4ac83bcdc1055379e05e54a75fd52ecdb7a8581d6f90d3ed588bae0087aaf657f788d33e9333d0e39e4904556ba47e3fa10140ebd4b3ed2f8b07efde84ef10050013e9525600824dccf1cf1c6a0eba391aa89c554d3bb431b2e22c9b9e0c6e942241452f324d9a097491f7fecec2e5c5bfec8a6bac1149a9cf54ca18fa2b16cd7db4b5747071a02ad7098c44dc75a1f4498b96472021f70cfb65f5b7299cbd24d53e8190598af84f6252442fcfdf769d9c2303471556cea465d3b2c82297b33869555ed0d6259bc7d001e8d0b676e9f114de71cff6c86adc73ed6c2e6642b5394847bea067da872df37542792cb17eeee0a0eb73949a3ceca9765d50386776c75b76958bad73f7fff3863b2560e316f60bf77ef883c84f3120c39dddcac10c8cf00a6e78b265690775e74f160054a332dd01fc3080f7f09d8ed98b04bc17099b567fb816068fb9094b1e5155670cfaa7cf292306fcc13d16f9e38a4bc1d90a7f7dbcae7c369fab318891779ffc92bfd9bfccd847d0eb381957591b0d4846f18f2622931ca716a2f79bc4de8721e982c7a3f7dfeb4fd3df5fcc67b23536c0717c92befba80095d1ec4681ad2bf01076d8cda6074f476bb2a02673cefe0296dceb5751dafcc56d8e361a4c121a3794cdeb01263c8124a812da334f84cf921dc318435af49125a5c4a7e019777d54fa85a53b3de38b323028f32eeb3143afc8657501c775da68252ffd6607cc9ce57cf5bb6725569388a2cc38f631063b957f9b01f2ccc2afd7bf6f30fecd2a42b776110cc286c2338715b0f3730a6003bfae0cab08fbc8d6bba5d23e8d7b09230d8d4bdc8a8bc2df3e91e823ed7ee740e5db7c45700bf6e50b503a1d744e8aea21efa6c227d6da1d0d098d03bc3792fe4af2eab662920a6c7ba0ced6625cae87b2c7859391660d68cf95462efe8ba2637631ef82da8d4935ecd120ab509b841c43f1fa8b242f1449e3b5c684ce731d4b385ea4981913d6399ce17526321e729cc1e75c9cd8e1bd870e0e175e8ae4640c464d614aa0b79bacf2c4d2e9e3bf93604434120da3d9a115b21db1c00cd5d1a119121e5be4bccd3c162b808b46731a002326660198040e8b3136c994d118cfef3399b55f10c5f62cb8246a9d39df02bdb27f71afe0639cb877429be21e6afb90846cb0595480262a0e0f43a468b6838db53d9cec4cf46f5c70f8927cb4ebcb418a8454a6531f1670533590dca929a44724fbd2873dee037aad5a815be1122b55ac2d7b97cd964f8c82761102eb0c4d9252ee24c7b85ec28b646c3e5cafee606a9fbc62db134a7c14f7899e924d4fe10a6f71d9beabfd9346f629e81a8fdbe745f64e707748d2ac4ae88ee64f16461219def7386464f25ba624d5facc7f4e2cbbe2b27782be6cfe659db105b222696c85f6c81504427fa2ea7fd1239e5195f5ca20b5b0a4cb9f82a2aa840af741b901c1b190eaec01eb0c15a8c9cca7ff14721c97ff11bd537301d4f9bf6de4e0e33306830184b6854d471ad4cafe9decbdae94da7597b50ad5f4c15d3cea7cfb96e8508a0a12eb97370c595b370371909af932561ab39eb3c1ced7819ff6f8848187b0be7f3fbccca9b29f13206e870db06539c7bffdc454ff9edb3a1d8b7f290b54e2ccbe3a3e1d8fcad6a23369850c4c0f0c405e992dc380347e3137aacbd8b9116ef7ea99ec67d52abaa5dfad8c113490c6e6ecb749caa2e39e9631475c6819c509359d11984e22efb9547592a386a8445d0cc8ae9af76f5fd647f3ac5d292ed5de82674609e9ccd4cefbe4df043ec5cce3b7e54aef918bb48ebc9f7d743ad5b239bb1b41d5d4e0e865577109d96a5e053920562804ffd825a9f71deffec571b13304f39cea9f11fa0fe3101df7c845f07954e44c256d21f939dea7b4e25d801df2c8ec833a8eaceaa7df0ffcf651cd370162a965f6a865742284dbc249e5aa9a1c59bd1c4ba2c24dff0e4b34c7115370ba4a73de5082c2d56bc37dbda7660f6d17b8386ede28f0b8151ed6ffaaea259cd94f7c188fbf44bad9e6e5d8d23b90d9c44add4be52132dda577c3b35fb6a3fa9bf24c90ec0c7e457df036bc56b5b57cb4c2b873f438cd1c90f9178d286f936f7236b134de2f9daf723066787dafd33a974b308f66f8bafac44385505b4b8998749ae543595466e0cc5899762c531fcf3c5590a4f5ed24d1abb8a4b90c4f221ba8872c928aa7802bd1f33ec01f1f7d78e43158bb8df75b7e4a7ef2ea6f4df12c94e57c765b569d7797c0e9c33f6135cae74169e88ea4100c790b02460578524b3ea779914eda114e952be9073eb0538ee9924d9567e1b47a1cec5082c15e57c7321c6a7b70bfa39746bf7c2f15ab445af4bbcf2a649dc9dda936c21baa6514a4488c50ed79b31cb116520852fb41d27526e36167afc7cb9d1510e957696c35c230defd7bffa7f00a5f456dbb37e03d54b81b31095d95be1d589d5ebdc9061aef4373c07dc7f4d6a957ad8597b633c3763b3071ef516ef97451a69aeb84c9bee07af6e55e53e72d392bfbed5128155cf8905e33d1aa2f7e2086ac05268860e4e6b6280cda6e98d0c367ddff012226152b504698c4e1ad973a7f4786e146c764da84ace0f3b2fc5732c53d2a4f139e22cfaffc2c865f272a6c727ca0ed01052d1982cd8c597a1a589fc818897681db2b8b0659e94e652fc276a60635c3729db68cae40bb52953f075d7239db4f4833108acc25b9541a82b9b37a56dc73f85a9bbeafd907f498859702bc51eaa5782b82076c340f8b7c259dc391254fffa3c879d4d8cf48580f143bee22f0d2333c1307521bedfb491dc1f5f019aa7935cc8b51f89e2cf9828b1f6a29e1d65b0623d97331a87ce29ea5b7adecc72dad3082dbd09cc5b74800af9628d35a367f6c2615a3822b5841ca7f85c4d3b0efaf4c08cb0ff8eaddef1fde2874fc11bc685bdb3ddc98a96e9c01133cb561bd7f6a2770b6958762027a77f37e5c0a6ae5bf03911a01fb26b53c46eb6df71b754b8d869b9d37976a943f85dac508f7c40cf3cc4121d46a6f127182469eec04576dd295c6a3f6d41332ec73f6e65a946ae4c654e2ef169abe07fb4849f0bd51dc64234b9c3960a470489c14abb8f95173631a1cd42d25820018c29598a992100ebe97f01eca76c1afe5c65e658d7432ef7b2c8eaff65762662665b039c48f57da7273949194db396f86696b08c1593baf95d98fe011e645b36d575e1f54fd1460a4f1056b387dbbbef86a5b51c269c33fd07fa9715451f680271ff7c77a333de3448ee8d95cd8d46129d340726f9023191eaae72d4620c8131ce74cb59c46cd9970793161f62d200c6aec63f6eae50c0e4216205b332cd1b7d3f2cce5edf3aeb004d144cd4ffb7cf20b138f2e19a62316629cb59bf895c8f69e66eab458e68ea3c9327b2d25088b937bede01a166153e1566ef5bcdbcf471aabf7cd208d20dadbf0c60d1c47ca9a469ffaae45a122838f07b436e9bf090fa09ccefc3cd6256bcd14511c210247a7508c713caff1485b29973518cc49557c1b98342b8e28041a39243e9e2b668306a32278faef4122", 0x1000, 0x7}, {&(0x7f0000001300)="1fa75f28db83edc174d3928c09d1e97ccf951fba61efe4b757b9654a496930ee40e9f0ce83e781ef86fae88ecf2372ea292ac6c97f2e0c0369562eb677cafce0aef4c15c73f102675fa9cd935477727e3ebef50d9e726c1fc627a3f5769d0ad528d59cee08911ba3d7ad39bc7399fc2bd0f28800d4a1620dc04ee42f71f85a71d226d533d69315f2ed5712c6afa481abf07fa5e6be44122955f84a0c250eb909beb2", 0xa2, 0x8}, {&(0x7f00000013c0)="1ed34b7edeab516331499423eb4c7d988bc09bf457281d42f15083e6e61b3dbc98ce1c8e50d3205674a4e022a9c144cde978c0e0923df66cb6bac10eb8da9bf5a0c8fc2dfcbcc21e69af080c2a12e9bc6effff79218e4200420d9e6bc2ebad92fe66b4025ef5294690f0fc3c863ce613e837aca8ddff0e", 0x77, 0xb5a}, {&(0x7f0000001440)="78fd3b6834a6b0efcfb62de975f5227576151c7e19c94d90502b79b9f29c5a44c8a14b095fd71a1e7a2ac87bb25ba30f3fa722348858c4f12c4c6bbec6693326cc94fae2d68891e7ce064a5a538466167db865e5ed4e22511aa8f79c1b964ba49272174a54", 0x65, 0xdb}], 0x800, &(0x7f0000001580)={[{@fat=@sys_immutable}], [{@seclabel}, {@appraise}, {@obj_role={'obj_role', 0x3d, '/.(}(/\'\xd8'}}, {@subj_user={'subj_user', 0x3d, '-'}}, {@dont_hash}]})
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
write$binfmt_aout(r0, &(0x7f0000000000)={{0x108}}, 0x20)
sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xa000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x68, 0x8, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x24000005)

[  130.526900] loop7: detected capacity change from 0 to 8192
10:00:25 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0xd3, 0x0, &(0x7f0000000580)=0x54)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00'})
getsockopt$inet6_buf(r1, 0x29, 0x6, &(0x7f0000000000)=""/5, &(0x7f0000000040)=0x5)
dup(r0)

[  130.551861] msdos: Unknown parameter 'appraise'
10:00:25 executing program 5:
r0 = syz_open_dev$vcsa(&(0x7f0000000080), 0x1, 0x4000)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r0, 0x3304)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, 0x0, 0x490)

[  130.586182] loop7: detected capacity change from 0 to 8192
[  130.587220] msdos: Unknown parameter 'appraise'
[  130.623167] audit: type=1400 audit(1756634425.679:10): avc:  denied  { open } for  pid=3885 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  130.628116] audit: type=1400 audit(1756634425.679:11): avc:  denied  { kernel } for  pid=3885 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
10:00:25 executing program 3:
syz_emit_ethernet(0x8a, &(0x7f0000000280)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x1a, 0x0, 0x1ff, 0x0, 0x0, {[@sack={0x5, 0x2a, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @mss={0x2, 0x4, 0x94b}, @sack={0x5, 0xa, [0x0, 0x0]}, @eol, @exp_fastopen={0xfe, 0x14, 0xf989, "693eac2f92176761115a9413fec6e056"}, @mss={0x2, 0x4}]}}}}}}}, 0x0)
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$tun(r0, &(0x7f0000000000)={@void, @val={0x3, 0x0, 0x6, 0x7, 0x7, 0x1}, @ipv4=@dccp={{0x1b, 0x4, 0x3, 0x14, 0x11b, 0x68, 0x0, 0x0, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, {[@ra={0x94, 0x4}, @ra={0x94, 0x4, 0x1}, @rr={0x7, 0x17, 0x28, [@private=0xa010102, @multicast2, @broadcast, @dev={0xac, 0x14, 0x14, 0x29}, @local]}, @generic={0x83, 0x2}, @end, @timestamp_addr={0x44, 0x34, 0xc3, 0x1, 0xf, [{@loopback, 0x8}, {@broadcast, 0xc0c}, {@empty, 0x2}, {@multicast2, 0x24}, {@loopback, 0x5}, {@private=0xa010102, 0x81}]}]}}, {{0x4e20, 0x4e21, 0x4, 0x1, 0x8, 0x0, 0x0, 0x2, 0x4, "ef406d", 0x60, "84ec79"}, "4a39a95fe8ff631f68aaff96b77df9577bf87736f56deb5fd073176480ead6b1640f2b73e62107d4218739464183c109069539dfafef691a7623516fbf8ca14c37fd3ff03304537beb47d267fd878925ca62abc2f7c79db66ae0702baafbf29c55af973231b8e5c0c9f8341fa3edc9dc3e35547d1caceeeefeaad5e61b0114c792023f6c118fa609104186b0ec81076ecf7f1b9c5e4e47df0044e238e73aff"}}}, 0x125)
syz_emit_ethernet(0x55, &(0x7f0000000140)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@x25={0x805, {0x3, 0x1, 0xff, "4a0222bf3900aeda3216e0e8d55de41245971ead24d545c5440f60c10a5ad66d4ac7652682e48e892d806d4abba946917eb2d7c2df369206e5e2f433cc7e7548f1c63768"}}}}, &(0x7f00000001c0)={0x0, 0x4, [0x24c, 0x5ac, 0xe90, 0xb00]})

[  130.653299] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#1] SMP KASAN NOPTI
[  130.654204] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  130.654900] CPU: 1 UID: 0 PID: 3885 Comm: syz-executor.5 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  130.656260] Tainted: [W]=WARN
[  130.656880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  130.658543] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.659483] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.663456] RSP: 0018:ffff888047ab7780 EFLAGS: 00010012
[  130.664247] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  130.664819] RDX: ffff8880172a9b80 RSI: ffffffff818995b7 RDI: 0000000100000190
[  130.665377] RBP: ffff888047ab79f0 R08: ffff88806cf31340 R09: ffffe8ffffd15b18
[  130.665945] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  130.666509] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  130.667072] FS:  0000555589fc7400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  130.667705] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.668168] CR2: 00007f34c625d368 CR3: 000000000d3c7000 CR4: 0000000000350ef0
[  130.668732] Call Trace:
[  130.668939]  <TASK>
[  130.669122]  ? lock_is_held_type+0x9e/0x120
[  130.669481]  ? __pfx_perf_tp_event+0x10/0x10
[  130.669839]  ? __lock_acquire+0xc65/0x1b70
[  130.670187]  ? lock_acquire+0x15e/0x2f0
[  130.670508]  ? find_held_lock+0x2b/0x80
[  130.670837]  ? finish_task_switch.isra.0+0x201/0x840
[  130.671257]  ? __lock_acquire+0x694/0x1b70
[  130.671604]  ? perf_trace_run_bpf_submit+0xef/0x180
[  130.672009]  perf_trace_run_bpf_submit+0xef/0x180
[  130.672405]  perf_trace_preemptirq_template+0x259/0x430
[  130.672842]  ? __pick_eevdf+0x326/0x570
[  130.673165]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  130.673642]  ? update_curr+0x39e/0x500
[  130.673966]  ? find_held_lock+0x2b/0x80
[  130.674291]  ? try_to_wake_up+0x8ae/0x11d0
[  130.674639]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[  130.675052]  trace_irq_enable.constprop.0+0xa6/0x100
[  130.675461]  trace_hardirqs_on+0x26/0x40
[  130.675790]  _raw_spin_unlock_irqrestore+0x2c/0x50
[  130.676189]  try_to_wake_up+0x8ae/0x11d0
[  130.676528]  ? __pfx_try_to_wake_up+0x10/0x10
[  130.676896]  ? plist_del+0x122/0x270
[  130.677205]  ? find_held_lock+0x2b/0x80
[  130.677531]  ? futex_wake+0x474/0x540
[  130.677848]  wake_up_q+0xa1/0x130
[  130.678142]  futex_wake+0x47e/0x540
[  130.678443]  ? __pfx_futex_wake+0x10/0x10
[  130.678780]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  130.679149]  ? lock_release+0xc8/0x290
[  130.679469]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  130.679946]  do_futex+0x26d/0x370
[  130.680232]  ? __pfx_do_futex+0x10/0x10
[  130.680555]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  130.680974]  ? read_tsc+0x9/0x20
[  130.681258]  __x64_sys_futex+0x1c9/0x4d0
[  130.681590]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  130.682070]  ? __pfx___x64_sys_futex+0x10/0x10
[  130.682443]  ? lock_release+0xc8/0x290
[  130.682760]  ? xfd_validate_state+0x55/0x180
[  130.683128]  do_syscall_64+0xbf/0x360
[  130.683442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.683858] RIP: 0033:0x7f3b4cf5cb19
[  130.684158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.685598] RSP: 002b:00007ffd374eea38 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.686204] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3b4cf5cb19
[  130.686781] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3b4d06ff68
[  130.687346] RBP: 00007f3b4d06ff60 R08: 00007f3b4d074b60 R09: 0000000000000000
[  130.687912] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3b4d074bb8
[  130.688480] R13: 00007ffd374eeb40 R14: 00007f3b4d06ff60 R15: 000000000001fdc1
[  130.689050]  </TASK>
[  130.689240] Modules linked in:
[  130.689505] ---[ end trace 0000000000000000 ]---
[  130.689881] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.690264] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.691706] RSP: 0018:ffff888047ab7780 EFLAGS: 00010012
[  130.692131] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  130.692700] RDX: ffff8880172a9b80 RSI: ffffffff818995b7 RDI: 0000000100000190
[  130.693266] RBP: ffff888047ab79f0 R08: ffff88806cf31340 R09: ffffe8ffffd15b18
[  130.693835] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  130.694403] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  130.694974] FS:  0000555589fc7400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  130.695615] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.696079] CR2: 00007f34c625d368 CR3: 000000000d3c7000 CR4: 0000000000350ef0
[  130.696649] note: syz-executor.5[3885] exited with irqs disabled
[  130.697196] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[  130.698092] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  130.698785] CPU: 1 UID: 0 PID: 3885 Comm: syz-executor.5 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  130.699739] Tainted: [D]=DIE, [W]=WARN
[  130.700049] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  130.700706] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.701089] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.702537] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[  130.702961] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  130.703529] RDX: ffff8880172a9b80 RSI: ffffffff818995b7 RDI: 0000000100000190
[  130.704099] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd15b18
[  130.704669] R10: 0000000000000000 R11: ffff88800a56cc98 R12: dffffc0000000000
[  130.705239] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[  130.705809] FS:  0000555589fc7400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  130.706453] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.706921] CR2: 00007f34c625d368 CR3: 000000000d3c7000 CR4: 0000000000350ef0
[  130.707493] Call Trace:
[  130.707704]  <IRQ>
[  130.707885]  ? __pfx_perf_tp_event+0x10/0x10
[  130.708249]  ? enqueue_task_fair+0xded/0x1e00
[  130.708622]  ? check_preempt_wakeup_fair+0x6e/0x950
[  130.709027]  ? wakeup_preempt+0x140/0x2a0
[  130.709364]  ? lock_release+0x1c7/0x290
[  130.709688]  ? lock_release+0x1c7/0x290
[  130.710018]  ? do_raw_spin_unlock+0x53/0x220
[  130.710381]  ? _raw_spin_unlock_irqrestore+0x22/0x50
[  130.710799]  ? try_to_wake_up+0x8ae/0x11d0
[  130.711147]  ? do_raw_spin_lock+0x123/0x260
[  130.711506]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  130.711890]  ? perf_trace_run_bpf_submit+0xef/0x180
[  130.712298]  perf_trace_run_bpf_submit+0xef/0x180
[  130.712695]  perf_trace_preemptirq_template+0x259/0x430
[  130.713132]  ? read_tsc+0x9/0x20
[  130.713414]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  130.713892]  ? clockevents_program_event+0x135/0x360
[  130.714314]  ? tick_program_event+0xac/0x140
[  130.714678]  ? handle_softirqs+0x16e/0x770
[  130.715028]  trace_irq_enable.constprop.0+0xa6/0x100
[  130.715440]  trace_hardirqs_on+0x26/0x40
[  130.715769]  handle_softirqs+0x16e/0x770
[  130.716107]  __irq_exit_rcu+0xc4/0x100
[  130.716430]  irq_exit_rcu+0x9/0x20
[  130.716720]  sysvec_apic_timer_interrupt+0x70/0x80
[  130.717123]  </IRQ>
[  130.717308]  <TASK>
[  130.717492]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  130.717916] RIP: 0010:make_task_dead+0xa2/0x3b0
[  130.718299] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 <e8> b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de
[  130.719734] RSP: 0018:ffff888047ab7f28 EFLAGS: 00000246
[  130.720159] RAX: 0000000000000001 RBX: ffff8880172a9b80 RCX: ffffffff817c2b86
[  130.720728] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[  130.721295] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[  130.721868] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff8880172a9b80
[  130.722439] R13: 0000000000000000 R14: dffffc0020000032 R15: 0000000000000000
[  130.723010]  ? trace_irq_enable.constprop.0+0x26/0x100
[  130.723432]  ? make_task_dead+0x214/0x3b0
[  130.723770]  ? make_task_dead+0x214/0x3b0
[  130.724107]  ? do_syscall_64+0xbf/0x360
[  130.724427]  rewind_stack_and_make_dead+0x16/0x20
[  130.724821] RIP: 0033:0x7f3b4cf5cb19
[  130.725123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.726566] RSP: 002b:00007ffd374eea38 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.727171] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3b4cf5cb19
[  130.727738] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3b4d06ff68
[  130.728309] RBP: 00007f3b4d06ff60 R08: 00007f3b4d074b60 R09: 0000000000000000
[  130.728878] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3b4d074bb8
[  130.729445] R13: 00007ffd374eeb40 R14: 00007f3b4d06ff60 R15: 000000000001fdc1
[  130.730022]  </TASK>
[  130.730212] Modules linked in:
[  130.730473] ---[ end trace 0000000000000000 ]---
[  130.730474] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI
[  130.730849] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.731746] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  130.732108] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.732712] CPU: 0 UID: 0 PID: 3895 Comm: syz-executor.3 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  130.734148] RSP: 0018:ffff888047ab7780 EFLAGS: 00010012
[  130.735103] Tainted: [D]=DIE, [W]=WARN
[  130.735516] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  130.735823] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  130.736384] RDX: ffff8880172a9b80 RSI: ffffffff818995b7 RDI: 0000000100000190
[  130.737045] RIP: 0010:perf_tp_event+0x175/0xe70
[  130.737603] RBP: ffff888047ab79f0 R08: ffff88806cf31340 R09: ffffe8ffffd15b18
[  130.737977] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  130.738536] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  130.739985] RSP: 0018:ffff888019e37780 EFLAGS: 00010012
[  130.740546] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  130.740970] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90007821000
[  130.741528] FS:  0000555589fc7400(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  130.742091] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  130.742715] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.743259] RBP: ffff888019e379f0 R08: ffff88806ce31340 R09: ffffe8ffffc15b18
[  130.743700] CR2: 00007f34c625d368 CR3: 000000000d3c7000 CR4: 0000000000350ef0
[  130.744247] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  130.744793] Kernel panic - not syncing: Fatal exception in interrupt
[  130.746071] Kernel Offset: disabled
[  130.746354] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
10:00:25  Registers:
info registers vcpu 0
RAX=00000000ffffffff RBX=0000000069dbeeac RCX=00007f846a9ec1bb RDX=0000000000000000
RSI=f834008b11516320 RDI=00007f846a9ec1af RBP=00007ffc77554ad0 RSP=00007ffc775548f0
R8 =00007f846a7d6030 R9 =0000000000000001 R10=00007f846ab74d70 R11=00007f846ace1510
R12=00007f846a9ec1af R13=00007ffc77554a58 R14=00007f846a9de080 R15=00007f846ace1510
RIP=00007f846acf9c44 RFL=00000206 [-----P-] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f846a7d7540 00000000 00000000
GS =0000 0000000000000000 00000000 00000000
LDT=0000 fffffe6300000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f846acb0000 CR3=000000001e472000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00ff00000000000000000000000000ff XMM01=ff00ffffffffffffffffffffffffff00
XMM02=ff00ffffffffffffffffffffff000000 XMM03=00000000000000000000004200746163
XMM04=725f646c756f68735f6b636f735f4f49 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff828e3230 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888047ab70f8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=313030203a505352
R12=000000000000003b R13=ffffffff88724190 R14=ffffffff88724140 R15=ffffffff88724400
RIP=ffffffff828e3285 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555589fc7400 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe2300000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f34c625d368 CR3=000000000d3c7000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff000000000000000000000000000000 XMM01=010000000000000000000000000000ff
XMM02=7463656a6e695f31313230385f7a7973 XMM03=000000000000006a6e695f3131323038
XMM04=253d7367726100656d6172665f746365 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000