Warning: Permanently added '[localhost]:32995' (ECDSA) to the list of known hosts.
2025/08/29 08:13:32 fuzzer started
2025/08/29 08:13:32 dialing manager at localhost:43077
syzkaller login: [   50.516252] cgroup: Unknown subsys name 'net'
[   50.578870] cgroup: Unknown subsys name 'cpuset'
[   50.597761] cgroup: Unknown subsys name 'rlimit'
2025/08/29 08:13:42 syscalls: 2214
2025/08/29 08:13:42 code coverage: enabled
2025/08/29 08:13:42 comparison tracing: enabled
2025/08/29 08:13:42 extra coverage: enabled
2025/08/29 08:13:42 setuid sandbox: enabled
2025/08/29 08:13:42 namespace sandbox: enabled
2025/08/29 08:13:42 Android sandbox: enabled
2025/08/29 08:13:42 fault injection: enabled
2025/08/29 08:13:42 leak checking: enabled
2025/08/29 08:13:42 net packet injection: enabled
2025/08/29 08:13:42 net device setup: enabled
2025/08/29 08:13:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 08:13:42 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 08:13:42 USB emulation: enabled
2025/08/29 08:13:42 hci packet injection: enabled
2025/08/29 08:13:42 wifi device emulation: enabled
2025/08/29 08:13:42 802.15.4 emulation: enabled
2025/08/29 08:13:42 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 08:13:42 fetching corpus: 46, signal 22901/25786 (executing program)
2025/08/29 08:13:42 fetching corpus: 96, signal 34521/38046 (executing program)
2025/08/29 08:13:42 fetching corpus: 146, signal 41059/45149 (executing program)
2025/08/29 08:13:42 fetching corpus: 196, signal 48891/53149 (executing program)
2025/08/29 08:13:42 fetching corpus: 246, signal 55105/59494 (executing program)
2025/08/29 08:13:43 fetching corpus: 296, signal 60256/64537 (executing program)
2025/08/29 08:13:43 fetching corpus: 346, signal 63608/67886 (executing program)
2025/08/29 08:13:43 fetching corpus: 396, signal 66914/71056 (executing program)
2025/08/29 08:13:43 fetching corpus: 446, signal 69841/73706 (executing program)
2025/08/29 08:13:43 fetching corpus: 493, signal 73033/76500 (executing program)
2025/08/29 08:13:43 fetching corpus: 542, signal 75414/78603 (executing program)
2025/08/29 08:13:43 fetching corpus: 592, signal 77331/80229 (executing program)
2025/08/29 08:13:44 fetching corpus: 642, signal 80760/82847 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/84759 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/84837 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/84908 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85003 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85099 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85189 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85286 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85370 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85450 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85542 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85628 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85727 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85819 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/85920 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86006 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86095 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86178 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86261 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86353 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86443 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86535 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86622 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86712 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86831 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/86928 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/87010 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/87096 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/87172 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/87206 (executing program)
2025/08/29 08:13:44 fetching corpus: 692, signal 83468/87206 (executing program)
2025/08/29 08:13:46 starting 8 fuzzer processes
08:13:46 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{@in6=@local}, 0xa}}, 0xe8)

08:13:46 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='cmdline\x00')
read$rfkill(r0, &(0x7f0000000240), 0x80000)
read$rfkill(r0, &(0x7f0000000200), 0xfffffda9)

08:13:46 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x37})

08:13:46 executing program 7:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000000000004000000000002000020000020000000e0f4655fe0f4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32303330363131363700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000ab7a0e3e026c4410ac9856e86774ba11010040000c00000000000000ddf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000003100000000000000", 0x40, 0x540}, {&(0x7f0000010300)="03000000040000000500000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000ddf4655fddf4655fddf4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fe0f4655fe0f4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x1500}, {&(0x7f0000010e00)="20000000c8946f1dc8946f1d00000000ddf4655f00"/32, 0x20, 0x1580}, {&(0x7f0000010f00)="8081000000300404ddf4655fddf4655fddf4655f00000000000001002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000ddf4655f00"/160, 0xa0, 0x1a00}, {&(0x7f0000011000)="c0410000002c0000ddf4655fddf4655fddf4655f00000000000002002000000000000800000000000af301000400000000000000000000000b00000020000000", 0x40, 0x1e00}, {&(0x7f0000011100)="20000000000000000000000000000000ddf4655f000000000000000000000000000002ea00"/64, 0x40, 0x1e80}, {&(0x7f0000011200)="ed4100003c000000e0f4655fe0f4655fe0f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000004d5f6b7100000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011300)="ed8100001a040000e0f4655fe0f4655fe0f4655f00000000000001002000000000000800010000000af30100040000000000000000000000020000005000000000000000000000000000000000000000000000000000000000000000000000000000000048dad3ce00000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0xa0, 0x2000}, {&(0x7f0000011400)="ffa1000026000000e0f4655fe0f4655fe0f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3230333036313136372f66696c65302f66696c653000000000000000000000000000000000000000000000c7982f7500000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0xa0, 0x2100}, {&(0x7f0000011500)="ed8100000a000000e0f4655fe0f4655fe0f4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b8fa251200000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000000002ea040700000000000000000000000000006461746106015400000000000600000000000000786174747231000006014c000000000006000000000000007861747472320000000000000000000078617474723200007861747472310000ed81000028230000e0f4655fe0f4655fe0f4655f00000000000002002000000000000800010000000af301000400000000000000000000000900000060000000000000000000000000000000000000000000000000000000000000000000000000000000ede1c35b00000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0x1a0, 0x2200}, {&(0x7f0000011700)="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", 0x100, 0x2400}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x4000}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x8000}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x8400}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x8800}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x8c00}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x9000}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x9400}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x9800}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x9c00}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0xa000}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0xa400}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0xa800}, {&(0x7f0000012400)="504d4d00504d4dffe0f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033310075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x10000}, {&(0x7f0000012500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x14000}], 0x0, &(0x7f0000012a00))

08:13:46 executing program 3:
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x1100)
setuid(r0)
syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')

[   64.324160] audit: type=1400 audit(1756455226.560:7): avc:  denied  { execmem } for  pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:13:46 executing program 4:
clone3(&(0x7f0000000400)={0x194081a00, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x35}, 0x0, 0x0, &(0x7f0000000240)=""/253, 0x0}, 0x58)

08:13:46 executing program 6:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:13:46 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0x40605346, &(0x7f0000000080))

[   65.471850] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   65.474201] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   65.477819] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   65.482613] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   65.485143] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   65.553332] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   65.558307] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   65.560155] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   65.564007] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   65.568066] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   65.571225] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   65.594012] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   65.600218] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   65.614353] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   65.616188] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   65.618860] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   65.621098] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   65.622946] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   65.625023] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   65.626288] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   65.627009] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   65.631290] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   65.635631] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   65.638633] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   65.644712] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   65.646320] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   65.653083] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   65.661436] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   65.668177] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   65.688623] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   65.694820] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   65.712247] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   65.719185] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   65.729073] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   65.741859] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   65.743317] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   65.748376] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   65.782798] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   65.786264] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   65.797214] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   67.505815] Bluetooth: hci0: command tx timeout
[   67.632591] Bluetooth: hci1: command tx timeout
[   67.695762] Bluetooth: hci3: command tx timeout
[   67.696770] Bluetooth: hci2: command tx timeout
[   67.759552] Bluetooth: hci5: command tx timeout
[   67.760164] Bluetooth: hci4: command tx timeout
[   67.824551] Bluetooth: hci6: command tx timeout
[   67.887596] Bluetooth: hci7: command tx timeout
[   69.551657] Bluetooth: hci0: command tx timeout
[   69.681605] Bluetooth: hci1: command tx timeout
[   69.743552] Bluetooth: hci2: command tx timeout
[   69.743944] Bluetooth: hci3: command tx timeout
[   69.807561] Bluetooth: hci4: command tx timeout
[   69.807947] Bluetooth: hci5: command tx timeout
[   69.871550] Bluetooth: hci6: command tx timeout
[   69.935695] Bluetooth: hci7: command tx timeout
[   71.599541] Bluetooth: hci0: command tx timeout
[   71.727623] Bluetooth: hci1: command tx timeout
[   71.791539] Bluetooth: hci3: command tx timeout
[   71.791944] Bluetooth: hci2: command tx timeout
[   71.855524] Bluetooth: hci5: command tx timeout
[   71.855919] Bluetooth: hci4: command tx timeout
[   71.919609] Bluetooth: hci6: command tx timeout
[   71.983592] Bluetooth: hci7: command tx timeout
[   73.647538] Bluetooth: hci0: command tx timeout
[   73.775562] Bluetooth: hci1: command tx timeout
[   73.840314] Bluetooth: hci2: command tx timeout
[   73.840771] Bluetooth: hci3: command tx timeout
[   73.904667] Bluetooth: hci4: command tx timeout
[   73.905068] Bluetooth: hci5: command tx timeout
[   73.967633] Bluetooth: hci6: command tx timeout
[   74.031555] Bluetooth: hci7: command tx timeout
[  101.701026] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.701741] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.893685] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.894262] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.277417] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.278959] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.306249] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  102.403411] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.404041] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.488337] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.489727] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.679444] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.681195] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.701741] loop7: detected capacity change from 0 to 1024
[  102.720180] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.752718] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.753268] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.778636] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.841886] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.842442] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.938063] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.938739] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.060849] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.061443] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.078682] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.079327] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.129343] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.129993] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.183410] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.184068] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.222562] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  103.229119] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.229933] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.311574] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.312122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.366562] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.367233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.395611] audit: type=1400 audit(1756455265.631:8): avc:  denied  { open } for  pid=3895 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  103.400679] audit: type=1400 audit(1756455265.631:9): avc:  denied  { kernel } for  pid=3895 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
08:14:25 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{@in6=@local}, 0xa}}, 0xe8)

08:14:25 executing program 7:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000000000004000000000002000020000020000000e0f4655fe0f4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32303330363131363700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000ab7a0e3e026c4410ac9856e86774ba11010040000c00000000000000ddf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000003100000000000000", 0x40, 0x540}, {&(0x7f0000010300)="03000000040000000500000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000ddf4655fddf4655fddf4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fe0f4655fe0f4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x1500}, {&(0x7f0000010e00)="20000000c8946f1dc8946f1d00000000ddf4655f00"/32, 0x20, 0x1580}, {&(0x7f0000010f00)="8081000000300404ddf4655fddf4655fddf4655f00000000000001002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000ddf4655f00"/160, 0xa0, 0x1a00}, {&(0x7f0000011000)="c0410000002c0000ddf4655fddf4655fddf4655f00000000000002002000000000000800000000000af301000400000000000000000000000b00000020000000", 0x40, 0x1e00}, {&(0x7f0000011100)="20000000000000000000000000000000ddf4655f000000000000000000000000000002ea00"/64, 0x40, 0x1e80}, {&(0x7f0000011200)="ed4100003c000000e0f4655fe0f4655fe0f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000004d5f6b7100000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011300)="ed8100001a040000e0f4655fe0f4655fe0f4655f00000000000001002000000000000800010000000af30100040000000000000000000000020000005000000000000000000000000000000000000000000000000000000000000000000000000000000048dad3ce00000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0xa0, 0x2000}, {&(0x7f0000011400)="ffa1000026000000e0f4655fe0f4655fe0f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3230333036313136372f66696c65302f66696c653000000000000000000000000000000000000000000000c7982f7500000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0xa0, 0x2100}, {&(0x7f0000011500)="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", 0x1a0, 0x2200}, {&(0x7f0000011700)="ed81000064000000e0f4655fe0f4655fe0f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c288d50b800000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000000002ea040734000000000028000000000000006461746100000000000000000000000000000000000000000000000000000000000000006c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273", 0x100, 0x2400}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x4000}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x8000}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x8400}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x8800}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x8c00}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x9000}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x9400}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x9800}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x9c00}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0xa000}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0xa400}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0xa800}, {&(0x7f0000012400)="504d4d00504d4dffe0f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033310075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x10000}, {&(0x7f0000012500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x14000}], 0x0, &(0x7f0000012a00))

08:14:25 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x37})

08:14:25 executing program 6:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:14:25 executing program 4:
clone3(&(0x7f0000000400)={0x194081a00, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x35}, 0x0, 0x0, &(0x7f0000000240)=""/253, 0x0}, 0x58)

08:14:25 executing program 3:
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x1100)
setuid(r0)
syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')

08:14:25 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='cmdline\x00')
read$rfkill(r0, &(0x7f0000000240), 0x80000)
read$rfkill(r0, &(0x7f0000000200), 0xfffffda9)

08:14:25 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0x40605346, &(0x7f0000000080))

[  103.546287] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  103.567116] loop7: detected capacity change from 0 to 1024
08:14:25 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{@in6=@local}, 0xa}}, 0xe8)

08:14:25 executing program 4:
clone3(&(0x7f0000000400)={0x194081a00, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x35}, 0x0, 0x0, &(0x7f0000000240)=""/253, 0x0}, 0x58)

08:14:25 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0x40605346, &(0x7f0000000080))

08:14:25 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x37})

[  103.607400] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
08:14:25 executing program 6:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:14:25 executing program 3:
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x1100)
setuid(r0)
syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')

08:14:25 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='cmdline\x00')
read$rfkill(r0, &(0x7f0000000240), 0x80000)
read$rfkill(r0, &(0x7f0000000200), 0xfffffda9)

[  103.654494] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
08:14:25 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x37})

[  103.747263] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.768929] kmemleak: Found object by alias at 0x607f1a638f64
[  103.768943] CPU: 0 UID: 0 PID: 281 Comm: syz-executor.7 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  103.768961] Tainted: [W]=WARN
[  103.768965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  103.768972] Call Trace:
[  103.768976]  <TASK>
[  103.768981]  dump_stack_lvl+0xca/0x120
[  103.769010]  __lookup_object+0x94/0xb0
[  103.769028]  delete_object_full+0x27/0x70
[  103.769044]  free_percpu+0x30/0x1160
[  103.769065]  percpu_counter_destroy_many+0x188/0x2b0
[  103.769085]  ext4_percpu_param_destroy+0x1a/0x70
[  103.769102]  ext4_put_super+0x5f7/0xf30
[  103.769118]  ? sync_blockdev+0x54/0x70
[  103.769130]  ? __pfx_ext4_put_super+0x10/0x10
[  103.769145]  generic_shutdown_super+0x15a/0x4a0
[  103.769165]  kill_block_super+0x3b/0x90
[  103.769181]  ext4_kill_sb+0x6c/0xb0
[  103.769194]  deactivate_locked_super+0xbf/0x1a0
[  103.769213]  deactivate_super+0xb1/0xd0
[  103.769231]  cleanup_mnt+0x2df/0x430
[  103.769251]  task_work_run+0x172/0x280
[  103.769267]  ? __pfx_task_work_run+0x10/0x10
[  103.769280]  ? __x64_sys_umount+0x114/0x190
[  103.769292]  ? __pfx___x64_sys_umount+0x10/0x10
[  103.769307]  exit_to_user_mode_loop+0xef/0x110
[  103.769320]  do_syscall_64+0x2f7/0x360
[  103.769333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.769346] RIP: 0033:0x7ff8e3726f87
[  103.769355] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  103.769366] RSP: 002b:00007fff1a18ac08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  103.769377] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 00007ff8e3726f87
[  103.769384] RDX: 00007fff1a18acd9 RSI: 000000000000000a RDI: 00007fff1a18acd0
[  103.769392] RBP: 00007fff1a18acd0 R08: 00000000ffffffff R09: 00007fff1a18aaa0
[  103.769399] R10: 000055556113ac7b R11: 0000000000000246 R12: 00007ff8e377f105
[  103.769406] R13: 00007fff1a18bd90 R14: 000055556113ac20 R15: 00007fff1a18bdd0
[  103.769422]  </TASK>
[  103.769426] kmemleak: Object (percpu) 0x607f1a638f60 (size 8):
[  103.769433] kmemleak:   comm "syz-executor.3", pid 3934, jiffies 4294770649
[  103.769440] kmemleak:   min_count = 1
[  103.769444] kmemleak:   count = 0
[  103.769447] kmemleak:   flags = 0x21
[  103.769451] kmemleak:   checksum = 0
[  103.769455] kmemleak:   backtrace:
[  103.769458]  pcpu_alloc_noprof+0x87a/0x1170
[  103.769478]  perf_trace_event_init+0x366/0xa10
[  103.769492]  perf_trace_init+0x1a4/0x2f0
[  103.769503]  perf_tp_event_init+0xa6/0x120
[  103.769519]  perf_try_init_event+0x140/0x9f0
[  103.769532]  perf_event_alloc.part.0+0x118e/0x45f0
[  103.769548]  __do_sys_perf_event_open+0x719/0x2c20
[  103.769561]  do_syscall_64+0xbf/0x360
[  103.769570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.793678] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  103.813149] kmemleak: Found object by alias at 0x607f1a638f64
[  103.813161] CPU: 0 UID: 0 PID: 3935 Comm: syz-executor.2 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  103.813179] Tainted: [W]=WARN
[  103.813183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  103.813189] Call Trace:
[  103.813192]  <TASK>
[  103.813197]  dump_stack_lvl+0xca/0x120
[  103.813215]  __lookup_object+0x94/0xb0
[  103.813230]  delete_object_full+0x27/0x70
[  103.813246]  free_percpu+0x30/0x1160
[  103.813260]  ? arch_uprobe_clear_state+0x16/0x140
[  103.813280]  futex_hash_free+0x38/0xc0
[  103.813295]  mmput+0x2d3/0x390
[  103.813314]  do_exit+0x79d/0x2970
[  103.813328]  ? signal_wake_up_state+0x85/0x120
[  103.813344]  ? zap_other_threads+0x2b9/0x3a0
[  103.813360]  ? __pfx_do_exit+0x10/0x10
[  103.813373]  ? do_group_exit+0x1c3/0x2a0
[  103.813387]  ? lock_release+0xc8/0x290
[  103.813405]  do_group_exit+0xd3/0x2a0
[  103.813419]  __x64_sys_exit_group+0x3e/0x50
[  103.813433]  x64_sys_call+0x18c5/0x18d0
[  103.813448]  do_syscall_64+0xbf/0x360
[  103.813460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.813475] RIP: 0033:0x7f0550b6ab19
[  103.813484] Code: Unable to access opcode bytes at 0x7f0550b6aaef.
[  103.813489] RSP: 002b:00007fffa35706c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  103.813500] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f0550b6ab19
[  103.813507] RDX: 00007f0550b1d72b RSI: ffffffffffffffbc RDI: 0000000000000000
[  103.813514] RBP: 0000000000000000 R08: 0000001b2d221f18 R09: 0000000000000000
[  103.813521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.813528] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffa35707b0
[  103.813543]  </TASK>
[  103.813547] kmemleak: Object (percpu) 0x607f1a638f60 (size 8):
[  103.813553] kmemleak:   comm "syz-executor.3", pid 3934, jiffies 4294770649
[  103.813560] kmemleak:   min_count = 1
[  103.813564] kmemleak:   count = 0
[  103.813568] kmemleak:   flags = 0x21
[  103.813572] kmemleak:   checksum = 0
[  103.813576] kmemleak:   backtrace:
[  103.813578]  pcpu_alloc_noprof+0x87a/0x1170
[  103.813593]  perf_trace_event_init+0x366/0xa10
[  103.813606]  perf_trace_init+0x1a4/0x2f0
[  103.813617]  perf_tp_event_init+0xa6/0x120
[  103.813632]  perf_try_init_event+0x140/0x9f0
[  103.813644]  perf_event_alloc.part.0+0x118e/0x45f0
[  103.813660]  __do_sys_perf_event_open+0x719/0x2c20
[  103.813673]  do_syscall_64+0xbf/0x360
[  103.813681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
08:14:26 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{@in6=@local}, 0xa}}, 0xe8)

08:14:26 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0x40605346, &(0x7f0000000080))

08:14:26 executing program 3:
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x1100)
setuid(r0)
syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')

08:14:26 executing program 4:
clone3(&(0x7f0000000400)={0x194081a00, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x35}, 0x0, 0x0, &(0x7f0000000240)=""/253, 0x0}, 0x58)

08:14:26 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='cmdline\x00')
read$rfkill(r0, &(0x7f0000000240), 0x80000)
read$rfkill(r0, &(0x7f0000000200), 0xfffffda9)

08:14:26 executing program 6:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:14:26 executing program 7:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000000000004000000000002000020000020000000e0f4655fe0f4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32303330363131363700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000ab7a0e3e026c4410ac9856e86774ba11010040000c00000000000000ddf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000003100000000000000", 0x40, 0x540}, {&(0x7f0000010300)="03000000040000000500000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000ddf4655fddf4655fddf4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fe0f4655fe0f4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x1500}, {&(0x7f0000010e00)="20000000c8946f1dc8946f1d00000000ddf4655f00"/32, 0x20, 0x1580}, {&(0x7f0000010f00)="8081000000300404ddf4655fddf4655fddf4655f00000000000001002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000ddf4655f00"/160, 0xa0, 0x1a00}, {&(0x7f0000011000)="c0410000002c0000ddf4655fddf4655fddf4655f00000000000002002000000000000800000000000af301000400000000000000000000000b00000020000000", 0x40, 0x1e00}, {&(0x7f0000011100)="20000000000000000000000000000000ddf4655f000000000000000000000000000002ea00"/64, 0x40, 0x1e80}, {&(0x7f0000011200)="ed4100003c000000e0f4655fe0f4655fe0f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000004d5f6b7100000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011300)="ed8100001a040000e0f4655fe0f4655fe0f4655f00000000000001002000000000000800010000000af30100040000000000000000000000020000005000000000000000000000000000000000000000000000000000000000000000000000000000000048dad3ce00000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0xa0, 0x2000}, {&(0x7f0000011400)="ffa1000026000000e0f4655fe0f4655fe0f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3230333036313136372f66696c65302f66696c653000000000000000000000000000000000000000000000c7982f7500000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0xa0, 0x2100}, {&(0x7f0000011500)="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", 0x1a0, 0x2200}, {&(0x7f0000011700)="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", 0x100, 0x2400}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x4000}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x8000}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x8400}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x8800}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x8c00}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x9000}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x9400}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x9800}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x9c00}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0xa000}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0xa400}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0xa800}, {&(0x7f0000012400)="504d4d00504d4dffe0f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033310075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x10000}, {&(0x7f0000012500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x14000}], 0x0, &(0x7f0000012a00))

08:14:26 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{@in6=@local}, 0xa}}, 0xe8)

[  103.915893] loop7: detected capacity change from 0 to 1024
[  103.940172] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
08:14:26 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='cmdline\x00')
read$rfkill(r0, &(0x7f0000000240), 0x80000)
read$rfkill(r0, &(0x7f0000000200), 0xfffffda9)

08:14:26 executing program 6:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:14:26 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{@in6=@local}, 0xa}}, 0xe8)

[  104.027132] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
08:14:26 executing program 7:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000000000004000000000002000020000020000000e0f4655fe0f4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32303330363131363700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000ab7a0e3e026c4410ac9856e86774ba11010040000c00000000000000ddf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000003100000000000000", 0x40, 0x540}, {&(0x7f0000010300)="03000000040000000500000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000ddf4655fddf4655fddf4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fe0f4655fe0f4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x1500}, {&(0x7f0000010e00)="20000000c8946f1dc8946f1d00000000ddf4655f00"/32, 0x20, 0x1580}, {&(0x7f0000010f00)="8081000000300404ddf4655fddf4655fddf4655f00000000000001002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000ddf4655f00"/160, 0xa0, 0x1a00}, {&(0x7f0000011000)="c0410000002c0000ddf4655fddf4655fddf4655f00000000000002002000000000000800000000000af301000400000000000000000000000b00000020000000", 0x40, 0x1e00}, {&(0x7f0000011100)="20000000000000000000000000000000ddf4655f000000000000000000000000000002ea00"/64, 0x40, 0x1e80}, {&(0x7f0000011200)="ed4100003c000000e0f4655fe0f4655fe0f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000004d5f6b7100000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011300)="ed8100001a040000e0f4655fe0f4655fe0f4655f00000000000001002000000000000800010000000af30100040000000000000000000000020000005000000000000000000000000000000000000000000000000000000000000000000000000000000048dad3ce00000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0xa0, 0x2000}, {&(0x7f0000011400)="ffa1000026000000e0f4655fe0f4655fe0f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3230333036313136372f66696c65302f66696c653000000000000000000000000000000000000000000000c7982f7500000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000", 0xa0, 0x2100}, {&(0x7f0000011500)="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", 0x1a0, 0x2200}, {&(0x7f0000011700)="ed81000064000000e0f4655fe0f4655fe0f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c288d50b800000000000000000000000000000000000000000000000020000000c8946f1dc8946f1dc8946f1de0f4655fc8946f1d0000000000000000000002ea040734000000000028000000000000006461746100000000000000000000000000000000000000000000000000000000000000006c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273", 0x100, 0x2400}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x4000}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x8000}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x8400}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x8800}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x8c00}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x9000}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x9400}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x9800}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x9c00}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0xa000}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0xa400}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0xa800}, {&(0x7f0000012400)="504d4d00504d4dffe0f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033310075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x10000}, {&(0x7f0000012500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x14000}], 0x0, &(0x7f0000012a00))

[  104.076682] loop7: detected capacity change from 0 to 1024
[  104.099451] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
08:14:26 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='cmdline\x00')
read$rfkill(r0, &(0x7f0000000240), 0x80000)
read$rfkill(r0, &(0x7f0000000200), 0xfffffda9)

08:14:26 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{@in6=@local}, 0xa}}, 0xe8)

08:14:26 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0xc7083663, 0x0, &(0x7f0000001480), 0x0, &(0x7f0000001540))

08:14:26 executing program 5:
setgroups(0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x3b, 0x0, &(0x7f0000000140))

08:14:26 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x18, 0x2, 0x2, 0x5, 0x0, 0x0, {}, [@CTA_EXPECT_TUPLE={0x4, 0xb}]}, 0x18}}, 0x0)

08:14:26 executing program 6:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:14:26 executing program 3:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

[  104.166185] loop1: detected capacity change from 0 to 264192
[  104.171827] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
08:14:26 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='cmdline\x00')
read$rfkill(r0, &(0x7f0000000240), 0x80000)
read$rfkill(r0, &(0x7f0000000200), 0xfffffda9)

[  104.291832] ISOFS: Unable to identify CD-ROM format.
08:14:26 executing program 3:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:14:26 executing program 6:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:14:26 executing program 5:
setgroups(0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x3b, 0x0, &(0x7f0000000140))

08:14:26 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x8, 0x0, 0x46)

08:14:26 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x18, 0x2, 0x2, 0x5, 0x0, 0x0, {}, [@CTA_EXPECT_TUPLE={0x4, 0xb}]}, 0x18}}, 0x0)

[  104.321527] loop1: detected capacity change from 0 to 264192
[  104.361336] ISOFS: Unable to identify CD-ROM format.
08:14:26 executing program 5:
setgroups(0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x3b, 0x0, &(0x7f0000000140))

08:14:26 executing program 3:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xfffe)
splice(r2, 0x0, r0, 0x0, 0x801, 0x0)

08:14:26 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x8, 0x0, 0x46)

08:14:26 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x18, 0x2, 0x2, 0x5, 0x0, 0x0, {}, [@CTA_EXPECT_TUPLE={0x4, 0xb}]}, 0x18}}, 0x0)

08:14:26 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0xc7083663, 0x0, &(0x7f0000001480), 0x0, &(0x7f0000001540))

08:14:26 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x8, 0x0, 0x46)

08:14:26 executing program 5:
setgroups(0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x3b, 0x0, &(0x7f0000000140))

08:14:26 executing program 4:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000000000)={0x3}, 0x8, 0x0)
msgsnd(r0, &(0x7f0000000180)={0x1}, 0x8, 0x0)
msgrcv(r0, &(0x7f00000003c0)={0x0, ""/4096}, 0x1008, 0x8efa9372ac31c0b7, 0x0)
msgsnd(r0, &(0x7f0000002440)={0x2, "948418c17b247919f8cc556e3cbae6947659e4c2854ae76d6c8b457be21fef1cf478731fa3f77b6c61103d9904a9b2540e00c8809bbd95da17dbdd1fe9c80abe6b5fbf87f4dfbefb19b85b7e416711fa278b6ffde479317d96157f2707c2fee27ef21145976015c92b56adf88c2c580be761332ca666d91d93f005c4bfa8154bc796ccb32e2b61e4162a4994b982a508d0914ca3c4736f90166d08c4c1f83b87ec1d48faa109e78467d62f350c38690c8c241c5463bf7be1d3e1dcac46fe685ec57738f8d5e8279abd4ab21254d20a5bb27c0188275dfc877756b54dbdfc3adb2b6c2dcbc08a9f779f191682bde881addd193b88115de128ffd5dd4514c78be581c4277ced94ff9bc97f266318e099cb35b60e499067667992b555b1c2f0763e6b02d3e52949246b29e4c676a892ec207fe997fab21e2f87ec5b03a68ca7c3e4a9e1eca4f266dee68ec71f412f4d25cdf96e28a2c29005ed80602d0db6086565bc9a8f4b2f7e21821397bb5baf636a988f15c174ec3a36fc0a6bf866e05bf4f37120ca913af31fd2451c57e818e0eb617f37aed8ddaf7e14b45e48fb242eb70e26395754bdd9bf9e378a712a4b1076abbece8e4d161f2bd8ba9aad02416ea3a16cbeb2db00d14c7788ebf1d80967aafa5c978d6f7f16b2bad826b44a40c3c9bfc6e577177454901162d9e2d0809ce25b39526aedb94c8ff298ce1424e1192018cf0a55f97474739f9b89f5dca2fe3ca66912f36e52051ecc5fd8b3de895dccda72a4489cd0cd9ed8a06ba152add0afa4d37118aadbaed9a44c6e15b012522c027f61750b5ddef05ea8ded7b5b2bdba7c31ec1732f4d11b61ec5e9761e1be8cb9521230a4c73ba9febad6cf6ac89c9cdcbfa15d159516eb8d0e59139e7a9e805f110335646b67a7970d4805fc1092b003f339a1654fcfcd36ae223b40b0229f57c13ebea2b89cab98cc0fdc8a623629df9996373bceef5756b4b7b278ed49f2f59ecf1426ae2be9572f68933a2e9a798b02a0eb5841d9eee0688dafb0811fb37191294abc9ae0fbc8e421bb6dcde5cc9a5013893b8ae4e4a77e6a9da4c9bb23cf79824d0cf6a1d0f7c9c803215c4a25ad3ceb5fb8b8f055478077363bdb0a5d021ea20ac9577a9fdb1611ea07b093b87f57742d70facc55162e55b85e4ee8abdb10013cd8347a2578be62f0d39894000a1cbbea87693f07ef338624eb7d3da23b41586904c7f36ce5e113c1b0427b89c170615bc00c2eb43cb30f88915b3eda07de9386875eba811472d5cfbc3167beff48a8fde8839bee94f310ef91a4d3775ae4dfde93cb2db55bfecd636a8dd6f098c5e9e18133be8a2cf8fa1d9292c89be57a28e166b9ef726bed701261dc57e1820a5f440061e428f4c228ce7396238deaabcd32264c61ab33fcbf76c8916d8132a84002286b18f4af27"}, 0x401, 0x0)
msgrcv(r0, &(0x7f00000002c0)=ANY=[], 0x3a, 0x0, 0x0)

08:14:26 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x8, 0x0, 0x46)

08:14:26 executing program 6:
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, 0x0, 0x0)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

08:14:26 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x31, &(0x7f0000000100)={0x0, {{0x2, 0x0, @broadcast}}}, 0x90)

[  104.526128] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[  104.527026] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  104.527594] CPU: 0 UID: 0 PID: 4012 Comm: syz-executor.7 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  104.528476] Tainted: [W]=WARN
[  104.528709] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  104.532286] kmemleak: Found object by alias at 0x607f1a638f64
[  104.532311] CPU: 1 UID: 0 PID: 4002 Comm: syz-executor.2 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  104.532336] Tainted: [W]=WARN
[  104.532341] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  104.532351] Call Trace:
[  104.532356]  <TASK>
[  104.532363]  dump_stack_lvl+0xca/0x120
[  104.532394]  __lookup_object+0x94/0xb0
[  104.532416]  delete_object_full+0x27/0x70
[  104.532584]  free_percpu+0x30/0x1160
[  104.532607]  ? arch_uprobe_clear_state+0x16/0x140
[  104.532631]  futex_hash_free+0x38/0xc0
[  104.532651]  mmput+0x2d3/0x390
[  104.532675]  do_exit+0x79d/0x2970
[  104.532696]  ? __pfx_do_exit+0x10/0x10
[  104.532711]  ? find_held_lock+0x2b/0x80
[  104.532728]  ? get_signal+0x835/0x2340
[  104.532747]  do_group_exit+0xd3/0x2a0
[  104.532760]  get_signal+0x2315/0x2340
[  104.532777]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  104.532791]  ? __pfx_get_signal+0x10/0x10
[  104.532806]  ? __schedule+0xe91/0x3590
[  104.532823]  arch_do_signal_or_restart+0x80/0x790
[  104.532840]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  104.532868]  ? __x64_sys_futex+0x1c9/0x4d0
[  104.532881]  ? __x64_sys_futex+0x1d2/0x4d0
[  104.532895]  ? __pfx___x64_sys_futex+0x10/0x10
[  104.532910]  exit_to_user_mode_loop+0x8b/0x110
[  104.532922]  do_syscall_64+0x2f7/0x360
[  104.532933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.532946] RIP: 0033:0x7f0550b6ab19
[  104.532954] Code: Unable to access opcode bytes at 0x7f0550b6aaef.
[  104.532960] RSP: 002b:00007f054e0e0218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  104.532971] RAX: 0000000000000001 RBX: 00007f0550c7df68 RCX: 00007f0550b6ab19
[  104.532979] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0550c7df6c
[  104.532986] RBP: 00007f0550c7df60 R08: 000000000000000e R09: 0000000000000000
[  104.532993] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0550c7df6c
[  104.533000] R13: 00007fffa357049f R14: 00007f054e0e0300 R15: 0000000000022000
[  104.533011]  </TASK>
[  104.533015] kmemleak: Object (percpu) 0x607f1a638f60 (size 8):
[  104.533022] kmemleak:   comm "syz-executor.1", pid 4011, jiffies 4294771421
[  104.533029] kmemleak:   min_count = 1
[  104.533033] kmemleak:   count = 0
[  104.533037] kmemleak:   flags = 0x21
[  104.533041] kmemleak:   checksum = 0
[  104.533045] kmemleak:   backtrace:
[  104.533048]  pcpu_alloc_noprof+0x87a/0x1170
[  104.533063]  perf_trace_event_init+0x366/0xa10
[  104.533076]  perf_trace_init+0x1a4/0x2f0
[  104.533088]  perf_tp_event_init+0xa6/0x120
[  104.533103]  perf_try_init_event+0x140/0x9f0
[  104.533116]  perf_event_alloc.part.0+0x118e/0x45f0
[  104.533132]  __do_sys_perf_event_open+0x719/0x2c20
[  104.533145]  do_syscall_64+0xbf/0x360
[  104.533153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.552038] RIP: 0010:perf_tp_event+0x175/0xe70
[  104.552402] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  104.553745] RSP: 0018:ffff88804413f780 EFLAGS: 00010012
[  104.554141] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000361c000
[  104.554665] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  104.555188] RBP: ffff88804413f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc15f60
[  104.555715] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  104.556247] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[  104.556775] FS:  00007ff8e0c9b700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  104.557377] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  104.557808] CR2: 00007ff8e3839018 CR3: 000000000dcc2000 CR4: 0000000000350ef0
[  104.558334] Call Trace:
[  104.558531]  <TASK>
[  104.558703]  ? lock_release+0xc8/0x290
[  104.559004]  ? __pfx_perf_tp_event+0x10/0x10
[  104.559341]  ? unwind_get_return_address+0x59/0xa0
[  104.559720]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  104.560128]  ? arch_stack_walk+0x9c/0xf0
[  104.560438]  ? __lock_acquire+0x694/0x1b70
[  104.560759]  ? __lock_acquire+0x694/0x1b70
[  104.561091]  ? lock_acquire+0x15e/0x2f0
[  104.561393]  ? __is_insn_slot_addr+0x2e/0x290
[  104.561739]  ? find_held_lock+0x2b/0x80
[  104.562046]  ? __is_insn_slot_addr+0x136/0x290
[  104.562396]  ? perf_trace_run_bpf_submit+0xef/0x180
[  104.562773]  ? __is_insn_slot_addr+0x140/0x290
[  104.563121]  perf_trace_run_bpf_submit+0xef/0x180
[  104.563488]  perf_trace_preemptirq_template+0x259/0x430
[  104.563894]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  104.564338]  ? _raw_spin_lock_irqsave+0x53/0x60
[  104.564694]  trace_irq_disable.constprop.0+0xa6/0x100
[  104.565089]  _raw_spin_lock_irqsave+0x53/0x60
[  104.565431]  try_to_wake_up+0xa0/0x11d0
[  104.565739]  ? __pfx_try_to_wake_up+0x10/0x10
[  104.566088]  ? plist_del+0x122/0x270
[  104.566375]  ? find_held_lock+0x2b/0x80
[  104.566684]  ? futex_wake+0x474/0x540
[  104.566978]  wake_up_q+0xa1/0x130
[  104.567248]  futex_wake+0x47e/0x540
[  104.567530]  ? __pfx_futex_wake+0x10/0x10
[  104.567847]  ? __lock_acquire+0x694/0x1b70
[  104.568166]  ? file_init_path+0x506/0x770
[  104.568484]  do_futex+0x26d/0x370
[  104.568752]  ? __pfx_do_futex+0x10/0x10
[  104.569074]  ? lock_release+0xc8/0x290
[  104.569371]  __x64_sys_futex+0x1c9/0x4d0
[  104.569679]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  104.570121]  ? __pfx___x64_sys_futex+0x10/0x10
[  104.570469]  do_syscall_64+0xbf/0x360
[  104.570758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.571142] RIP: 0033:0x7ff8e3725b19
[  104.571420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  104.572751] RSP: 002b:00007ff8e0c9b218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  104.573320] RAX: ffffffffffffffda RBX: 00007ff8e3838f68 RCX: 00007ff8e3725b19
[  104.573845] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff8e3838f6c
[  104.574371] RBP: 00007ff8e3838f60 R08: 000000000000000e R09: 0000000000000000
[  104.574901] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ff8e3838f6c
[  104.575432] R13: 00007fff1a18babf R14: 00007ff8e0c9b300 R15: 0000000000022000
[  104.575961]  </TASK>
[  104.576068] loop1: detected capacity change from 0 to 264192
[  104.576138] Modules linked in:
[  104.576887] ---[ end trace 0000000000000000 ]---
[  104.577236] RIP: 0010:perf_tp_event+0x175/0xe70
[  104.577589] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  104.578454] kmemleak: Cannot insert 0x607f1a638f64 into the object search tree (overlaps existing)
[  104.578476] CPU: 1 UID: 0 PID: 4015 Comm: syz-executor.1 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  104.578497] Tainted: [D]=DIE, [W]=WARN
[  104.578501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  104.578509] Call Trace:
[  104.578513]  <TASK>
[  104.578517]  dump_stack_lvl+0xca/0x120
[  104.578543]  __link_object+0x190/0x210
[  104.578561]  __create_object+0x48/0x80
[  104.578577]  pcpu_alloc_noprof+0x87a/0x1170
[  104.578598]  __percpu_init_rwsem+0x2d/0x160
[  104.578615]  ? security_sb_alloc+0x75/0x140
[  104.578631]  alloc_super+0x29e/0xb80
[  104.578644]  ? __pfx_super_s_dev_test+0x10/0x10
[  104.578661]  sget_fc+0xfe/0xb80
[  104.578671]  ? __pfx_super_s_dev_set+0x10/0x10
[  104.578688]  get_tree_bdev_flags+0x1b8/0x620
[  104.578699]  ? __pfx_isofs_fill_super+0x10/0x10
[  104.578716]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  104.578727]  ? cap_capable+0xdb/0x3b0
[  104.578743]  ? security_capable+0x2f/0x90
[  104.578756]  vfs_get_tree+0x93/0x340
[  104.578773]  path_mount+0x132d/0x1dd0
[  104.578787]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  104.578801]  ? __pfx_path_mount+0x10/0x10
[  104.578813]  ? kmem_cache_free+0x2a1/0x540
[  104.578824]  ? putname.part.0+0x11b/0x160
[  104.578840]  ? getname_flags.part.0+0x1c6/0x540
[  104.578856]  ? putname.part.0+0x11b/0x160
[  104.578872]  __x64_sys_mount+0x27b/0x300
[  104.578885]  ? __pfx___x64_sys_mount+0x10/0x10
[  104.578900]  do_syscall_64+0xbf/0x360
[  104.578911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.578925] RIP: 0033:0x7fb26220004a
[  104.578934] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  104.578946] RSP: 002b:00007fb25f752fa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[  104.578957] RAX: ffffffffffffffda RBX: 0000000020001480 RCX: 00007fb26220004a
[  104.578965] RDX: 00000000200000c0 RSI: 0000000020000140 RDI: 00007fb25f753000
[  104.578973] RBP: 00007fb25f753040 R08: 00007fb25f753040 R09: 00000000200000c0
[  104.578981] R10: 0000000000000001 R11: 0000000000000202 R12: 00000000200000c0
[  104.578988] R13: 0000000020000140 R14: 00007fb25f753000 R15: 0000000020001540
[  104.578999]  </TASK>
[  104.579010] kmemleak: Kernel memory leak detector disabled
[  104.579013] kmemleak: Object (percpu) 0x607f1a638f60 (size 8):
[  104.579021] kmemleak:   comm "syz-executor.1", pid 4011, jiffies 4294771421
[  104.579028] kmemleak:   min_count = 1
[  104.579032] kmemleak:   count = 0
[  104.579036] kmemleak:   flags = 0x21
[  104.579039] kmemleak:   checksum = 0
[  104.579044] kmemleak:   backtrace:
[  104.579047]  pcpu_alloc_noprof+0x87a/0x1170
[  104.579063]  perf_trace_event_init+0x366/0xa10
[  104.579077]  perf_trace_init+0x1a4/0x2f0
[  104.579089]  perf_tp_event_init+0xa6/0x120
[  104.579105]  perf_try_init_event+0x140/0x9f0
[  104.579118]  perf_event_alloc.part.0+0x118e/0x45f0
[  104.579136]  __do_sys_perf_event_open+0x719/0x2c20
[  104.579149]  do_syscall_64+0xbf/0x360
[  104.579158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.586938] ISOFS: Unable to identify CD-ROM format.
[  104.587088] RSP: 0018:ffff88804413f780 EFLAGS: 00010012
[  104.601014] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000361c000
[  104.601534] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  104.602054] RBP: ffff88804413f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc15f60
[  104.602575] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  104.603095] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[  104.603615] FS:  00007ff8e0c9b700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  104.604206] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  104.604633] CR2: 00007ff8e3839018 CR3: 000000000dcc2000 CR4: 0000000000350ef0
[  104.605164] note: syz-executor.7[4012] exited with irqs disabled
[  104.605699] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[  104.606510] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  104.607074] CPU: 0 UID: 0 PID: 4012 Comm: syz-executor.7 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  104.607945] Tainted: [D]=DIE, [W]=WARN
[  104.608228] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  104.608828] RIP: 0010:perf_tp_event+0x175/0xe70
[  104.609195] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  104.610523] RSP: 0018:ffff88806ce08b40 EFLAGS: 00010012
[  104.610919] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[  104.611438] RDX: ffff888044130000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  104.611957] RBP: ffff88806ce08db0 R08: ffff88806ce313e8 R09: ffffe8ffffc15f60
[  104.612476] R10: 0000000000000000 R11: ffff88801f61d898 R12: dffffc0000000000
[  104.613002] R13: 0000000000000014 R14: ffff88806ce313e8 R15: dffffc0000000000
[  104.613524] FS:  00007ff8e0c9b700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  104.614109] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  104.614536] CR2: 00007ff8e3839018 CR3: 000000000dcc2000 CR4: 0000000000350ef0
[  104.615057] Call Trace:
[  104.615251]  <IRQ>
[  104.615419]  ? __pfx_perf_tp_event+0x10/0x10
[  104.615756]  ? __pfx_call_function_single_prep_ipi+0x10/0x10
[  104.616191]  ? trace_ipi_send_cpu.constprop.0+0x158/0x1c0
[  104.616606]  ? __smp_call_single_queue+0x15b/0x2f0
[  104.616984]  ? __pfx___smp_call_single_queue+0x10/0x10
[  104.617379]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  104.617732]  ? __pfx_select_task_rq_fair+0x10/0x10
[  104.618099]  ? lock_release+0x1c7/0x290
[  104.618399]  ? do_raw_spin_unlock+0x53/0x220
[  104.618735]  ? _raw_spin_unlock_irqrestore+0x22/0x50
[  104.619115]  ? try_to_wake_up+0x8ae/0x11d0
[  104.619437]  ? perf_trace_run_bpf_submit+0xef/0x180
[  104.619812]  ? lock_release+0x1c7/0x290
[  104.620112]  perf_trace_run_bpf_submit+0xef/0x180
[  104.620477]  perf_trace_preemptirq_template+0x259/0x430
[  104.620887]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  104.621326]  ? read_tsc+0x9/0x20
[  104.621592]  ? ktime_get+0x16d/0x270
[  104.621882]  ? __pfx_lapic_next_deadline+0x10/0x10
[  104.622249]  ? clockevents_program_event+0x135/0x360
[  104.622632]  ? _raw_spin_lock_irq+0x42/0x50
[  104.622955]  trace_irq_disable.constprop.0+0xa6/0x100
[  104.623339]  _raw_spin_lock_irq+0x42/0x50
[  104.623651]  run_timer_softirq+0x10f/0x210
[  104.623974]  handle_softirqs+0x1b1/0x770
[  104.624290]  __irq_exit_rcu+0xc4/0x100
[  104.624589]  irq_exit_rcu+0x9/0x20
[  104.624863]  sysvec_apic_timer_interrupt+0x70/0x80
[  104.625236]  </IRQ>
[  104.625408]  <TASK>
[  104.625580]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  104.625976] RIP: 0010:make_task_dead+0xa2/0x3b0
[  104.626327] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 <e8> b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de
[  104.627646] RSP: 0018:ffff88804413ff28 EFLAGS: 00000246
[  104.628038] RAX: 0000000000000001 RBX: ffff888044130000 RCX: ffffffff817c2b86
[  104.628562] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[  104.629094] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[  104.629618] R10: ffffffff8643ac57 R11: 0000000000000001 R12: ffff888044130000
[  104.630143] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[  104.630671]  ? trace_irq_enable.constprop.0+0x26/0x100
[  104.631061]  ? make_task_dead+0x214/0x3b0
[  104.631377]  ? make_task_dead+0x214/0x3b0
[  104.631690]  ? do_syscall_64+0xbf/0x360
[  104.631988]  rewind_stack_and_make_dead+0x16/0x20
[  104.632353] RIP: 0033:0x7ff8e3725b19
[  104.632631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  104.633967] RSP: 002b:00007ff8e0c9b218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  104.634524] RAX: ffffffffffffffda RBX: 00007ff8e3838f68 RCX: 00007ff8e3725b19
[  104.635060] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff8e3838f6c
[  104.635583] RBP: 00007ff8e3838f60 R08: 000000000000000e R09: 0000000000000000
[  104.636104] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ff8e3838f6c
[  104.636633] R13: 00007fff1a18babf R14: 00007ff8e0c9b300 R15: 0000000000022000
[  104.637169]  </TASK>
[  104.637347] Modules linked in:
[  104.637591] ---[ end trace 0000000000000000 ]---
[  104.637943] RIP: 0010:perf_tp_event+0x175/0xe70
[  104.638296] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  104.639622] RSP: 0018:ffff88804413f780 EFLAGS: 00010012
[  104.640017] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc9000361c000
[  104.640540] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  104.641069] RBP: ffff88804413f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc15f60
[  104.641590] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  104.642110] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[  104.642632] FS:  00007ff8e0c9b700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  104.643220] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  104.643649] CR2: 00007ff8e3839018 CR3: 000000000dcc2000 CR4: 0000000000350ef0
[  104.644172] Kernel panic - not syncing: Fatal exception in interrupt
[  104.644832] Kernel Offset: disabled
[  104.645114] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
08:14:26  Registers:
info registers vcpu 0
RAX=0000000000000069 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88804413f118
R8 =0000000000000000 R9 =ffffed1001485046 R10=0000000000000069 R11=6572617764726148
R12=0000000000000069 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007ff8e0c9b700 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe2300000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff8e3839018 CR3=000000000dcc2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007ff8e380c7c000007ff8e380c7c8
XMM02=00007ff8e380c7e000007ff8e380c7c0 XMM03=00007ff8e380c7c800007ff8e380c7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffffffff81b34616 RCX=ffffffff8168d959 RDX=ffff888041ae8000
RSI=ffffffff8168d8de RDI=0000000000000007 RBP=00000000000332ee RSP=ffff88804249ef60
R8 =ffff88804249f040 R9 =ffff88804249f160 R10=00000000000332ee R11=0000000000025b8a
R12=0000000000000000 R13=00000000000332ee R14=ffffffff81000000 R15=ffff88804249f060
RIP=ffffffff8173e788 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe5100000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffcab315c78 CR3=0000000038ffa000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000