Warning: Permanently added '[localhost]:31452' (ECDSA) to the list of known hosts.
2025/09/01 08:55:02 fuzzer started
2025/09/01 08:55:02 dialing manager at localhost:35473
syzkaller login: [   58.668015] cgroup: Unknown subsys name 'net'
[   58.751974] cgroup: Unknown subsys name 'cpuset'
[   58.771313] cgroup: Unknown subsys name 'rlimit'
2025/09/01 08:55:13 syscalls: 2214
2025/09/01 08:55:13 code coverage: enabled
2025/09/01 08:55:13 comparison tracing: enabled
2025/09/01 08:55:13 extra coverage: enabled
2025/09/01 08:55:13 setuid sandbox: enabled
2025/09/01 08:55:13 namespace sandbox: enabled
2025/09/01 08:55:13 Android sandbox: enabled
2025/09/01 08:55:13 fault injection: enabled
2025/09/01 08:55:13 leak checking: enabled
2025/09/01 08:55:13 net packet injection: enabled
2025/09/01 08:55:13 net device setup: enabled
2025/09/01 08:55:13 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 08:55:13 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 08:55:13 USB emulation: enabled
2025/09/01 08:55:13 hci packet injection: enabled
2025/09/01 08:55:13 wifi device emulation: enabled
2025/09/01 08:55:13 802.15.4 emulation: enabled
2025/09/01 08:55:13 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 08:55:13 fetching corpus: 50, signal 27155/30347 (executing program)
2025/09/01 08:55:13 fetching corpus: 100, signal 34476/38964 (executing program)
2025/09/01 08:55:13 fetching corpus: 150, signal 48478/53628 (executing program)
2025/09/01 08:55:14 fetching corpus: 200, signal 53639/59725 (executing program)
2025/09/01 08:55:14 fetching corpus: 250, signal 58671/65537 (executing program)
2025/09/01 08:55:14 fetching corpus: 300, signal 62426/70044 (executing program)
2025/09/01 08:55:14 fetching corpus: 350, signal 66101/74381 (executing program)
2025/09/01 08:55:14 fetching corpus: 400, signal 68818/77762 (executing program)
2025/09/01 08:55:14 fetching corpus: 450, signal 73344/82572 (executing program)
2025/09/01 08:55:14 fetching corpus: 500, signal 76620/86306 (executing program)
2025/09/01 08:55:14 fetching corpus: 550, signal 79296/89390 (executing program)
2025/09/01 08:55:14 fetching corpus: 600, signal 81388/91911 (executing program)
2025/09/01 08:55:15 fetching corpus: 650, signal 84418/95108 (executing program)
2025/09/01 08:55:15 fetching corpus: 700, signal 86569/97549 (executing program)
2025/09/01 08:55:15 fetching corpus: 750, signal 88375/99692 (executing program)
2025/09/01 08:55:15 fetching corpus: 800, signal 90511/101982 (executing program)
2025/09/01 08:55:15 fetching corpus: 850, signal 91969/103713 (executing program)
2025/09/01 08:55:15 fetching corpus: 900, signal 94000/105866 (executing program)
2025/09/01 08:55:15 fetching corpus: 950, signal 96978/108607 (executing program)
2025/09/01 08:55:15 fetching corpus: 1000, signal 99337/110745 (executing program)
2025/09/01 08:55:15 fetching corpus: 1050, signal 101562/112811 (executing program)
2025/09/01 08:55:16 fetching corpus: 1100, signal 103908/114899 (executing program)
2025/09/01 08:55:16 fetching corpus: 1150, signal 105106/116189 (executing program)
2025/09/01 08:55:16 fetching corpus: 1200, signal 106091/117300 (executing program)
2025/09/01 08:55:16 fetching corpus: 1250, signal 108469/119245 (executing program)
2025/09/01 08:55:16 fetching corpus: 1300, signal 110037/120610 (executing program)
2025/09/01 08:55:16 fetching corpus: 1350, signal 111198/121667 (executing program)
2025/09/01 08:55:16 fetching corpus: 1400, signal 112701/122879 (executing program)
2025/09/01 08:55:16 fetching corpus: 1450, signal 113602/123719 (executing program)
2025/09/01 08:55:16 fetching corpus: 1500, signal 114443/124524 (executing program)
2025/09/01 08:55:17 fetching corpus: 1550, signal 115854/125669 (executing program)
2025/09/01 08:55:17 fetching corpus: 1600, signal 116788/126466 (executing program)
2025/09/01 08:55:17 fetching corpus: 1650, signal 117608/127185 (executing program)
2025/09/01 08:55:17 fetching corpus: 1700, signal 118743/128069 (executing program)
2025/09/01 08:55:17 fetching corpus: 1750, signal 120137/128962 (executing program)
2025/09/01 08:55:17 fetching corpus: 1800, signal 121954/130087 (executing program)
2025/09/01 08:55:17 fetching corpus: 1850, signal 122646/130686 (executing program)
2025/09/01 08:55:17 fetching corpus: 1900, signal 123477/131289 (executing program)
2025/09/01 08:55:17 fetching corpus: 1950, signal 124261/131817 (executing program)
2025/09/01 08:55:18 fetching corpus: 2000, signal 125813/132615 (executing program)
2025/09/01 08:55:18 fetching corpus: 2050, signal 126699/133145 (executing program)
2025/09/01 08:55:18 fetching corpus: 2100, signal 127366/133505 (executing program)
2025/09/01 08:55:18 fetching corpus: 2150, signal 129429/134423 (executing program)
2025/09/01 08:55:18 fetching corpus: 2200, signal 130323/134851 (executing program)
2025/09/01 08:55:18 fetching corpus: 2250, signal 130990/135189 (executing program)
2025/09/01 08:55:18 fetching corpus: 2300, signal 131728/135502 (executing program)
2025/09/01 08:55:18 fetching corpus: 2350, signal 132925/135918 (executing program)
2025/09/01 08:55:19 fetching corpus: 2400, signal 134005/136326 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136574 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136607 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136653 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136694 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136735 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136772 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136810 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136845 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136875 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136914 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136944 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/136973 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/137001 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/137038 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/137074 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/137116 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/137154 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/137197 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/137216 (executing program)
2025/09/01 08:55:19 fetching corpus: 2445, signal 134785/137216 (executing program)
2025/09/01 08:55:21 starting 8 fuzzer processes
08:55:21 executing program 0:
r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r0)

08:55:21 executing program 1:
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, 0x0)
clone3(&(0x7f00000019c0)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

08:55:21 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x17)
mincore(&(0x7f0000873000/0x4000)=nil, 0x4000, &(0x7f0000000000)=""/200)

08:55:21 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_KEY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY_DEFAULT_TYPES={0x8, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_DATA_WEP40={0x9}]}, 0x30}}, 0x0)

08:55:21 executing program 7:
socket$inet6(0xa, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000740), 0xffffffffffffffff)

[   78.101103] audit: type=1400 audit(1756716921.913:7): avc:  denied  { execmem } for  pid=275 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:55:21 executing program 3:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001480)=[{&(0x7f0000000200)="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", 0x774}], 0x1)

08:55:21 executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
pkey_alloc(0x0, 0x0)

08:55:21 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000001280)='\x00', 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), 0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)

[   79.276286] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   79.278982] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   79.281233] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   79.284070] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   79.289916] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   79.296976] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.298976] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   79.303010] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.312808] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   79.322529] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   79.459633] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   79.462740] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   79.464484] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   79.470828] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   79.477053] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   79.495807] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   79.510749] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   79.518643] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   79.528788] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   79.532115] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   79.543681] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   79.560887] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   79.568249] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   79.571863] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   79.572061] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   79.575629] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   79.577029] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   79.577171] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   79.579567] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   79.580857] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   79.583967] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   79.585238] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   79.593716] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   79.594891] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   79.599115] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   79.604692] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   79.605830] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   79.612219] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   79.614051] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   79.619580] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   81.359981] Bluetooth: hci0: command tx timeout
[   81.361459] Bluetooth: hci1: command tx timeout
[   81.551393] Bluetooth: hci2: command tx timeout
[   81.615505] Bluetooth: hci3: command tx timeout
[   81.679596] Bluetooth: hci6: command tx timeout
[   81.680534] Bluetooth: hci7: command tx timeout
[   81.681087] Bluetooth: hci5: command tx timeout
[   81.681946] Bluetooth: hci4: command tx timeout
[   83.408488] Bluetooth: hci0: command tx timeout
[   83.408942] Bluetooth: hci1: command tx timeout
[   83.600425] Bluetooth: hci2: command tx timeout
[   83.663555] Bluetooth: hci3: command tx timeout
[   83.727421] Bluetooth: hci5: command tx timeout
[   83.729437] Bluetooth: hci6: command tx timeout
[   83.729840] Bluetooth: hci4: command tx timeout
[   83.730231] Bluetooth: hci7: command tx timeout
[   85.455465] Bluetooth: hci1: command tx timeout
[   85.455927] Bluetooth: hci0: command tx timeout
[   85.647565] Bluetooth: hci2: command tx timeout
[   85.711373] Bluetooth: hci3: command tx timeout
[   85.777244] Bluetooth: hci7: command tx timeout
[   85.777277] Bluetooth: hci4: command tx timeout
[   85.777731] Bluetooth: hci6: command tx timeout
[   85.778111] Bluetooth: hci5: command tx timeout
[   87.504414] Bluetooth: hci1: command tx timeout
[   87.505096] Bluetooth: hci0: command tx timeout
[   87.695398] Bluetooth: hci2: command tx timeout
[   87.759513] Bluetooth: hci3: command tx timeout
[   87.825524] Bluetooth: hci6: command tx timeout
[   87.826069] Bluetooth: hci4: command tx timeout
[   87.827397] Bluetooth: hci7: command tx timeout
[   87.827874] Bluetooth: hci5: command tx timeout
[  115.684582] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.685244] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.829004] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.829612] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:56:00 executing program 1:
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RSTAT(r1, &(0x7f0000001900)=ANY=[], 0xffd3)
fcntl$setstatus(r1, 0x4, 0x42000)
readv(r0, &(0x7f00000014c0)=[{&(0x7f00000004c0)=""/4096, 0xfffffdef}], 0x1)

[  116.323994] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.324617] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:56:00 executing program 1:
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RSTAT(r1, &(0x7f0000001900)=ANY=[], 0xffd3)
fcntl$setstatus(r1, 0x4, 0x42000)
readv(r0, &(0x7f00000014c0)=[{&(0x7f00000004c0)=""/4096, 0xfffffdef}], 0x1)

[  116.455253] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.455889] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:56:00 executing program 1:
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RSTAT(r1, &(0x7f0000001900)=ANY=[], 0xffd3)
fcntl$setstatus(r1, 0x4, 0x42000)
readv(r0, &(0x7f00000014c0)=[{&(0x7f00000004c0)=""/4096, 0xfffffdef}], 0x1)

[  116.632632] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.633239] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:56:00 executing program 1:
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RSTAT(r1, &(0x7f0000001900)=ANY=[], 0xffd3)
fcntl$setstatus(r1, 0x4, 0x42000)
readv(r0, &(0x7f00000014c0)=[{&(0x7f00000004c0)=""/4096, 0xfffffdef}], 0x1)

[  116.798116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.798708] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:56:00 executing program 1:
syz_emit_ethernet(0x2ce, &(0x7f0000000440)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb86dd60c770cc02982c0000000000000000000000000000000000ff0200000000000000000000000000013a0a0001"], 0x0)

[  116.829711] audit: type=1400 audit(1756716960.647:8): avc:  denied  { open } for  pid=3774 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  116.831764] audit: type=1400 audit(1756716960.647:9): avc:  denied  { kernel } for  pid=3774 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
08:56:00 executing program 1:
syz_emit_ethernet(0x2ce, &(0x7f0000000440)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb86dd60c770cc02982c0000000000000000000000000000000000ff0200000000000000000000000000013a0a0001"], 0x0)

08:56:00 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x17)
mincore(&(0x7f0000873000/0x4000)=nil, 0x4000, &(0x7f0000000000)=""/200)

08:56:00 executing program 1:
syz_emit_ethernet(0x2ce, &(0x7f0000000440)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb86dd60c770cc02982c0000000000000000000000000000000000ff0200000000000000000000000000013a0a0001"], 0x0)

[  117.279377] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.279954] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.380504] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.381076] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.024763] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.025419] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.149913] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.150572] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.286736] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.288443] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.411019] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.411869] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.494266] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.494925] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.625218] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.626666] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.367740] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.368875] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.412976] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.414102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:56:03 executing program 2:
io_setup(0x0, 0xffffffffffffffff)

08:56:03 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x31, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

08:56:03 executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
pkey_alloc(0x0, 0x0)

08:56:03 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000001280)='\x00', 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), 0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)

08:56:03 executing program 1:
syz_emit_ethernet(0x2ce, &(0x7f0000000440)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb86dd60c770cc02982c0000000000000000000000000000000000ff0200000000000000000000000000013a0a0001"], 0x0)

08:56:03 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x17)
mincore(&(0x7f0000873000/0x4000)=nil, 0x4000, &(0x7f0000000000)=""/200)

08:56:03 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000001280)='\x00', 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), 0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)

08:56:03 executing program 3:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001480)=[{&(0x7f0000000200)="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", 0x774}], 0x1)

08:56:03 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x31, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

08:56:03 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000001280)='\x00', 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), 0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)

08:56:03 executing program 1:
prctl$PR_SET_PDEATHSIG(0x1, 0x0)

08:56:03 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000001280)='\x00', 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), 0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)

08:56:03 executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
pkey_alloc(0x0, 0x0)

08:56:03 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x31, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

08:56:03 executing program 3:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001480)=[{&(0x7f0000000200)="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", 0x774}], 0x1)

08:56:03 executing program 1:
prctl$PR_SET_PDEATHSIG(0x1, 0x0)

08:56:03 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x31, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

08:56:03 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000001280)='\x00', 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), 0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)

08:56:03 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000001280)='\x00', 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), 0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)

08:56:03 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x17)
mincore(&(0x7f0000873000/0x4000)=nil, 0x4000, &(0x7f0000000000)=""/200)

08:56:03 executing program 4:
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000001b00))
pkey_alloc(0x0, 0x0)

08:56:03 executing program 3:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001480)=[{&(0x7f0000000200)="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", 0x774}], 0x1)

08:56:03 executing program 2:
io_setup(0x0, 0xffffffffffffffff)

08:56:03 executing program 2:
io_setup(0x0, 0xffffffffffffffff)

[  120.040046] kmemleak: Found object by alias at 0x607f1a63ea9c
[  120.040071] CPU: 0 UID: 0 PID: 3958 Comm: syz-executor.7 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  120.040091] Tainted: [W]=WARN
[  120.040095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  120.040103] Call Trace:
[  120.040107]  <TASK>
[  120.040112]  dump_stack_lvl+0xca/0x120
[  120.040147]  __lookup_object+0x94/0xb0
[  120.040166]  delete_object_full+0x27/0x70
[  120.040183]  free_percpu+0x30/0x1160
[  120.040200]  ? arch_uprobe_clear_state+0x16/0x140
08:56:03 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000100000005000000000004000040000020000000d6f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38303439393233303000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000f4e089668a0d4000840a22d1089d0f04010040000c00000000000000d5f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000004300000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d5f4655fd5f4655fd5f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000d5f4655fd6f4655fd6f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011600)="200000006418e53c6418e53c00000000d5f4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011700)="8081000000601020d5f4655fd5f4655fd5f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d5f4655f00"/160, 0xa0, 0x2600}, {&(0x7f0000011800)="c041000000380000d5f4655fd5f4655fd5f4655f00000000000002004000000000000800000000000af301000400000000000000000000000700000020000000", 0x40, 0x2a00}, {&(0x7f0000011900)="20000000000000000000000000000000d5f4655f000000000000000000000000000002ea00"/64, 0x40, 0x2a80}, {&(0x7f0000011a00)="ed4100003c000000d6f4655fd6f4655fd6f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000be5839ad000000000000000000000000000000000000000000000000200000006418e53c6418e53c14f4f03bd6f4655f14f4f03b0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2b00}, {&(0x7f0000011b00)="ed8100001a040000d6f4655fd6f4655fd6f4655f00000000000001004000000000000800010000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000f3be7438000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011c00)="ffa1000026000000d6f4655fd6f4655fd6f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3830343939323330302f66696c65302f66696c653000000000000000000000000000000000000000000000f583dfd0000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0xa0, 0x2d00}, {&(0x7f0000011d00)="ed8100000a000000d6f4655fd6f4655fd6f4655f000000000000010000000000000000100100000073797a6b616c6c65727300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005d8ee03e000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000000002ea040700000000000000000000000000006461746106015400000000000600000000000000786174747231000006014c000000000006000000000000007861747472320000000000000000000078617474723200007861747472310000ed81000028230000d6f4655fd6f4655fd6f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000060000000000000000000000000000000000000000000000000000000000000000000000000000000bc01bc1f000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0x1a0, 0x2e00}, {&(0x7f0000011f00)="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", 0x100, 0x3000}, {&(0x7f0000012000)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012100)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x10000}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012800)="504d4d00504d4dffd6f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x20000}, {&(0x7f0000012900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x28000}], 0x0, &(0x7f0000012e00))

08:56:03 executing program 7:
r0 = socket$packet(0x11, 0x3, 0x300)
getpeername$packet(r0, 0x0, 0x0)

[  120.040222]  futex_hash_free+0x38/0xc0
[  120.040238]  mmput+0x2d3/0x390
[  120.040257]  do_exit+0x79d/0x2970
[  120.040276]  ? __pfx_do_exit+0x10/0x10
[  120.040290]  ? find_held_lock+0x2b/0x80
[  120.040309]  ? get_signal+0x835/0x2340
[  120.040330]  do_group_exit+0xd3/0x2a0
[  120.040346]  get_signal+0x2315/0x2340
[  120.040364]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  120.040382]  ? __pfx_get_signal+0x10/0x10
[  120.040399]  ? do_futex+0x135/0x370
[  120.040413]  ? __pfx_do_futex+0x10/0x10
[  120.040429]  arch_do_signal_or_restart+0x80/0x790
08:56:03 executing program 2:
io_setup(0x0, 0xffffffffffffffff)

[  120.040448]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  120.040465]  ? __x64_sys_futex+0x1c9/0x4d0
[  120.040477]  ? __x64_sys_futex+0x1d2/0x4d0
[  120.040493]  ? __pfx___x64_sys_futex+0x10/0x10
[  120.040506]  ? __x64_sys_memfd_create+0x1cd/0x280
[  120.040518]  ? xfd_validate_state+0x55/0x180
[  120.040540]  exit_to_user_mode_loop+0x8b/0x110
08:56:03 executing program 6:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0", 0x1d)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x44000)
sendfile(r0, r1, 0x0, 0xfdef)
mknodat$loop(r1, 0x0, 0x0, 0x0)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/sockcreate\x00', 0x2, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
truncate(&(0x7f0000000140)='./file0\x00', 0x0)
sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x2)

[  120.040553]  do_syscall_64+0x2f7/0x360
[  120.040567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.040580] RIP: 0033:0x7f5e6e22bb19
[  120.040589] Code: Unable to access opcode bytes at 0x7f5e6e22baef.
[  120.040595] RSP: 002b:00007f5e6b7a1218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.040607] RAX: fffffffffffffe00 RBX: 00007f5e6e33ef68 RCX: 00007f5e6e22bb19
[  120.040615] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5e6e33ef68
[  120.040622] RBP: 00007f5e6e33ef60 R08: 0000000000000000 R09: 0000000000000000
08:56:03 executing program 0:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
shutdown(r0, 0x0)
sendmsg$inet(r1, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x20004880)

[  120.040630] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e6e33ef6c
[  120.040637] R13: 00007ffe7483936f R14: 00007f5e6b7a1300 R15: 0000000000022000
[  120.040653]  </TASK>
[  120.040657] kmemleak: Object (percpu) 0x607f1a63ea98 (size 8):
[  120.040664] kmemleak:   comm "syz-executor.6", pid 3960, jiffies 4294786629
[  120.040671] kmemleak:   min_count = 1
[  120.040675] kmemleak:   count = 0
[  120.040679] kmemleak:   flags = 0x21
08:56:03 executing program 7:
r0 = socket$packet(0x11, 0x3, 0x300)
getpeername$packet(r0, 0x0, 0x0)

08:56:03 executing program 5:
msgrcv(0x0, 0x0, 0x0, 0x0, 0x0)

[  120.040683] kmemleak:   checksum = 0
[  120.040687] kmemleak:   backtrace:
[  120.040691]  pcpu_alloc_noprof+0x87a/0x1170
[  120.040706]  perf_trace_event_init+0x366/0xa10
[  120.040720]  perf_trace_init+0x1a4/0x2f0
[  120.040733]  perf_tp_event_init+0xa6/0x120
[  120.040749]  perf_try_init_event+0x140/0x9f0
[  120.040764]  perf_event_alloc.part.0+0x118e/0x45f0
[  120.040781]  __do_sys_perf_event_open+0x719/0x2c20
[  120.040795]  do_syscall_64+0xbf/0x360
[  120.040804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.166220] loop4: detected capacity change from 0 to 2048
[  120.225817] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.257836] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI
[  120.258741] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  120.259340] CPU: 0 UID: 0 PID: 3970 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  120.260280] Tainted: [W]=WARN
[  120.260530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  120.262444] RIP: 0010:__queue_work+0x202/0x1240
[  120.263366] Code: 48 8b 6d 00 e8 4f ee 79 03 31 ff 41 89 c5 89 c6 e8 c3 02 32 00 45 85 ed 0f 85 e1 05 00 00 e8 85 07 32 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24
[  120.267491] RSP: 0018:ffff8880440cf2a8 EFLAGS: 00010056
[  120.268946] RAX: 0000000000000000 RBX: ffff888043393418 RCX: ffffc9000b055000
[  120.269512] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005
[  120.270086] RBP: 0000000000000000 R08: 0000000000000001 R09: fffffbfff0f128f4
[  120.270659] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  120.271226] R13: 0000000000000001 R14: 0000000000000000 R15: ffff8880440c6800
[  120.271805] FS:  00007f5da040c700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  120.272455] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.272895] CR2: 0000001b2d720000 CR3: 0000000015c90000 CR4: 0000000000350ef0
[  120.273428] Call Trace:
[  120.273624]  <TASK>
[  120.273798]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  120.274156]  queue_work_on+0xd0/0xe0
[  120.274443]  loop_queue_rq+0x5c8/0x1180
[  120.274757]  __blk_mq_issue_directly+0xd5/0x260
[  120.275117]  ? __pfx___blk_mq_issue_directly+0x10/0x10
[  120.275513]  ? bdev_count_inflight_rw.part.0+0x5f/0x380
[  120.275915]  blk_mq_request_issue_directly+0x11c/0x1e0
[  120.276311]  blk_mq_issue_direct+0x192/0x640
[  120.276645]  blk_mq_dispatch_queue_requests+0x4b0/0x7c0
[  120.277043]  blk_mq_flush_plug_list+0x1ec/0x5b0
[  120.277393]  ? read_tsc+0x9/0x20
[  120.277657]  ? ktime_get+0x16d/0x270
[  120.277944]  ? trace_block_plug+0x149/0x1b0
[  120.278271]  ? blk_add_rq_to_plug+0x234/0x550
[  120.278623]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  120.279007]  ? blk_mq_submit_bio+0x4fd/0x2220
[  120.279353]  __blk_flush_plug+0x25c/0x460
[  120.279663]  ? __pfx___blk_flush_plug+0x10/0x10
[  120.280012]  ? mark_held_locks+0x49/0x80
[  120.280318]  __submit_bio+0x480/0x5b0
[  120.280604]  ? __pfx___submit_bio+0x10/0x10
[  120.280933]  ? read_tsc+0x9/0x20
[  120.281208]  ? ktime_get+0x16d/0x270
[  120.281503]  submit_bio_noacct_nocheck+0x68e/0xcb0
[  120.281883]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  120.282306]  submit_bio_noacct+0x359/0x1350
[  120.282654]  __sync_dirty_buffer+0x176/0x380
[  120.283009]  ext4_update_superblocks_fn+0x4f3/0xe00
[  120.283409]  ? __pfx_set_overhead+0x10/0x10
[  120.283746]  ? __pfx_ext4_update_superblocks_fn+0x10/0x10
[  120.284159]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[  120.284545]  ext4_update_overhead+0x21d/0x2b0
[  120.284889]  ext4_fill_super+0x2366/0xba20
[  120.285216]  ? __pfx_ext4_fill_super+0x10/0x10
[  120.285565]  ? find_held_lock+0x2b/0x80
[  120.285870]  ? setup_bdev_super+0x2ed/0x6e0
[  120.286210]  ? set_blocksize+0x1b4/0x470
[  120.286525]  ? lock_release+0xc8/0x290
[  120.286821]  ? sb_set_blocksize+0x177/0x1c0
[  120.287143]  ? setup_bdev_super+0x31f/0x6e0
[  120.287473]  get_tree_bdev_flags+0x38a/0x620
[  120.287807]  ? __pfx_ext4_fill_super+0x10/0x10
[  120.288163]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  120.288529]  ? cap_capable+0xdb/0x3b0
[  120.288824]  ? security_capable+0x2f/0x90
[  120.289144]  vfs_get_tree+0x93/0x340
[  120.289432]  path_mount+0x132d/0x1dd0
[  120.289732]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  120.290142]  ? __pfx_path_mount+0x10/0x10
[  120.290480]  ? kmem_cache_free+0x2a1/0x540
[  120.290809]  ? putname.part.0+0x11b/0x160
[  120.291139]  ? getname_flags.part.0+0x1c6/0x540
[  120.291512]  ? putname.part.0+0x11b/0x160
[  120.291841]  __x64_sys_mount+0x27b/0x300
[  120.292169]  ? __pfx___x64_sys_mount+0x10/0x10
[  120.292520]  do_syscall_64+0xbf/0x360
[  120.292810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.293194] RIP: 0033:0x7f5da2e9804a
[  120.293473] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.294800] RSP: 002b:00007f5da040bfa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  120.295358] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f5da2e9804a
[  120.295883] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f5da040c000
[  120.296406] RBP: 00007f5da040c040 R08: 00007f5da040c040 R09: 0000000020000000
[  120.296931] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[  120.297453] R13: 0000000020000100 R14: 00007f5da040c000 R15: 0000000020012e00
[  120.297978]  </TASK>
[  120.298156] Modules linked in:
[  120.298402] ---[ end trace 0000000000000000 ]---
[  120.298756] RIP: 0010:__queue_work+0x202/0x1240
[  120.299112] Code: 48 8b 6d 00 e8 4f ee 79 03 31 ff 41 89 c5 89 c6 e8 c3 02 32 00 45 85 ed 0f 85 e1 05 00 00 e8 85 07 32 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24
[  120.300492] RSP: 0018:ffff8880440cf2a8 EFLAGS: 00010056
[  120.300899] RAX: 0000000000000000 RBX: ffff888043393418 RCX: ffffc9000b055000
[  120.301443] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005
[  120.301980] RBP: 0000000000000000 R08: 0000000000000001 R09: fffffbfff0f128f4
[  120.302513] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  120.303034] R13: 0000000000000001 R14: 0000000000000000 R15: ffff8880440c6800
[  120.303564] FS:  00007f5da040c700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  120.304177] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.304617] CR2: 0000001b2d720000 CR3: 0000000015c90000 CR4: 0000000000350ef0
[  120.305168] note: syz-executor.4[3970] exited with irqs disabled
[  120.305962] note: syz-executor.4[3970] exited with preempt_count 1
[  120.306566] ------------[ cut here ]------------
[  120.306916] WARNING: kernel/exit.c:898 at do_exit+0x1c36/0x2970, CPU#0: syz-executor.4/3970
[  120.307557] Modules linked in:
[  120.307805] CPU: 0 UID: 0 PID: 3970 Comm: syz-executor.4 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  120.308700] Tainted: [D]=DIE, [W]=WARN
[  120.308987] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  120.309608] RIP: 0010:do_exit+0x1c36/0x2970
[  120.309936] Code: 96 0a 00 00 c7 43 18 00 00 00 00 e9 21 e6 ff ff e8 ef b3 38 00 bf 02 24 00 00 e8 f5 ab 0b 00 e9 41 ff ff ff e8 db b3 38 00 90 <0f> 0b 90 e9 87 e4 ff ff e8 cd b3 38 00 4c 89 e6 bf 05 06 00 00 e8
[  120.311286] RSP: 0018:ffff8880440cfe40 EFLAGS: 00010246
[  120.311697] RAX: 0000000000040000 RBX: 0000000000000200 RCX: ffffc9000b055000
[  120.312220] RDX: 0000000000040000 RSI: ffffffff813b42d5 RDI: ffff8880157191e8
[  120.312759] RBP: ffff888015718000 R08: 0000000000000001 R09: fffffbfff0f126d8
[  120.313282] R10: 0000000000000200 R11: 0000000000000001 R12: 000000000000000b
[  120.313823] R13: 0000000000002710 R14: dffffc0000000000 R15: 0000000000000000
[  120.314367] FS:  00007f5da040c700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  120.314965] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.315411] CR2: 0000001b2d720000 CR3: 0000000015c90000 CR4: 0000000000350ef0
[  120.315938] Call Trace:
[  120.316134]  <TASK>
[  120.316306]  ? _printk+0xbe/0xf0
[  120.316587]  ? __pfx__printk+0x10/0x10
[  120.316883]  ? __pfx_do_exit+0x10/0x10
[  120.317180]  make_task_dead+0x174/0x3b0
[  120.317499]  ? do_syscall_64+0xbf/0x360
[  120.317800]  rewind_stack_and_make_dead+0x16/0x20
[  120.318168] RIP: 0033:0x7f5da2e9804a
[  120.318469] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.319812] RSP: 002b:00007f5da040bfa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  120.320391] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f5da2e9804a
[  120.320916] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f5da040c000
[  120.321456] RBP: 00007f5da040c040 R08: 00007f5da040c040 R09: 0000000020000000
[  120.321981] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[  120.322549] R13: 0000000020000100 R14: 00007f5da040c000 R15: 0000000020012e00
[  120.323105]  </TASK>
[  120.323293] irq event stamp: 3174
[  120.323583] hardirqs last  enabled at (3173): [<ffffffff816263b7>] ktime_get+0x1c7/0x270
[  120.324198] hardirqs last disabled at (3174): [<ffffffff84be30a2>] _raw_spin_lock_irq+0x42/0x50
[  120.324886] softirqs last  enabled at (3152): [<ffffffff813bafcc>] handle_softirqs+0x50c/0x770
[  120.325549] softirqs last disabled at (3077): [<ffffffff813bb364>] __irq_exit_rcu+0xc4/0x100
[  120.326194] ---[ end trace 0000000000000000 ]---
[  120.326581] BUG: sleeping function called from invalid context at ./include/linux/percpu-rwsem.h:51
[  120.327264] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 3970, name: syz-executor.4
[  120.327926] preempt_count: 0, expected: 0
[  120.328242] RCU nest depth: 2, expected: 0
[  120.328580] INFO: lockdep is turned off.
[  120.328882] CPU: 0 UID: 0 PID: 3970 Comm: syz-executor.4 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  120.328901] Tainted: [D]=DIE, [W]=WARN
[  120.328906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  120.328912] Call Trace:
[  120.328916]  <TASK>
[  120.328921]  dump_stack_lvl+0xfa/0x120
[  120.328947]  __might_resched+0x2f3/0x510
[  120.328962]  exit_signals+0x25/0x940
[  120.328981]  do_exit+0x2db/0x2970
[  120.328994]  ? _printk+0xbe/0xf0
[  120.329007]  ? __pfx__printk+0x10/0x10
[  120.329020]  ? __pfx_do_exit+0x10/0x10
[  120.329035]  make_task_dead+0x174/0x3b0
[  120.329049]  ? do_syscall_64+0xbf/0x360
[  120.329060]  rewind_stack_and_make_dead+0x16/0x20
[  120.329076] RIP: 0033:0x7f5da2e9804a
[  120.329084] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.329095] RSP: 002b:00007f5da040bfa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  120.329106] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f5da2e9804a
[  120.329114] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f5da040c000
[  120.329122] RBP: 00007f5da040c040 R08: 00007f5da040c040 R09: 0000000020000000
[  120.329129] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[  120.329136] R13: 0000000020000100 R14: 00007f5da040c000 R15: 0000000020012e00
[  120.329147]  </TASK>
[  120.348672] kmemleak: Found object by alias at 0x607f1a63ea9c
[  120.348685] CPU: 0 UID: 0 PID: 3982 Comm: syz-executor.7 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  120.348703] Tainted: [D]=DIE, [W]=WARN
[  120.348708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  120.348714] Call Trace:
[  120.348718]  <TASK>
[  120.348722]  dump_stack_lvl+0xca/0x120
[  120.348741]  __lookup_object+0x94/0xb0
[  120.348758]  delete_object_full+0x27/0x70
[  120.348773]  free_percpu+0x30/0x1160
[  120.348790]  ? arch_uprobe_clear_state+0x16/0x140
[  120.348809]  futex_hash_free+0x38/0xc0
[  120.348823]  mmput+0x2d3/0x390
[  120.348841]  do_exit+0x79d/0x2970
[  120.348854]  ? lock_release+0xc8/0x290
[  120.348868]  ? __pfx_do_exit+0x10/0x10
[  120.348881]  ? find_held_lock+0x2b/0x80
[  120.348898]  ? get_signal+0x835/0x2340
[  120.348916]  do_group_exit+0xd3/0x2a0
[  120.348930]  get_signal+0x2315/0x2340
[  120.348949]  ? __pfx_get_signal+0x10/0x10
[  120.348966]  ? do_futex+0x135/0x370
[  120.348979]  ? __pfx_do_futex+0x10/0x10
[  120.348992]  arch_do_signal_or_restart+0x80/0x790
[  120.349010]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  120.349026]  ? __x64_sys_futex+0x1c9/0x4d0
[  120.349039]  ? __x64_sys_futex+0x1d2/0x4d0
[  120.349052]  ? __sys_socket+0x9f/0x260
[  120.349068]  ? __pfx___x64_sys_futex+0x10/0x10
[  120.349082]  ? xfd_validate_state+0x55/0x180
[  120.349100]  exit_to_user_mode_loop+0x8b/0x110
[  120.349114]  do_syscall_64+0x2f7/0x360
[  120.349125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.349137] RIP: 0033:0x7f5e6e22bb19
[  120.349146] Code: Unable to access opcode bytes at 0x7f5e6e22baef.
[  120.349151] RSP: 002b:00007f5e6b7a1218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.349162] RAX: fffffffffffffe00 RBX: 00007f5e6e33ef68 RCX: 00007f5e6e22bb19
[  120.349170] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5e6e33ef68
[  120.349177] RBP: 00007f5e6e33ef60 R08: 0000000000000000 R09: 0000000000000000
[  120.349184] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e6e33ef6c
[  120.349192] R13: 00007ffe7483936f R14: 00007f5e6b7a1300 R15: 0000000000022000
[  120.349202]  </TASK>
[  120.349206] kmemleak: Object (percpu) 0x607f1a63ea98 (size 8):
[  120.349214] kmemleak:   comm "syz-executor.4", pid 3970, jiffies 4294786801
[  120.349221] kmemleak:   min_count = 1
[  120.349225] kmemleak:   count = 0
[  120.349229] kmemleak:   flags = 0x21
[  120.349233] kmemleak:   checksum = 0
[  120.349236] kmemleak:   backtrace:
[  120.349240]  pcpu_alloc_noprof+0x87a/0x1170
[  120.349256]  percpu_ref_init+0x37/0x400
[  120.349267]  blkg_alloc+0xe9/0x7d0
[  120.349280]  blkg_create+0xe08/0x1420
[  120.349293]  bio_associate_blkg_from_css+0xe06/0x1380
[  120.349308]  bio_associate_blkg+0x10e/0x2a0
[  120.349325]  bio_init+0x2dd/0x570
[  120.349338]  bio_alloc_bioset+0x2cf/0x8c0
[  120.349353]  submit_bh_wbc+0x286/0x720
[  120.349369]  ext4_read_bh+0x15a/0x2e0
[  120.349381]  ext4_read_bh_lock+0x7a/0xd0
[  120.349393]  ext4_sb_bread_unmovable+0x172/0x260
[  120.349406]  ext4_fill_super+0x662/0xba20
[  120.349421]  get_tree_bdev_flags+0x38a/0x620
[  120.349432]  vfs_get_tree+0x93/0x340
[  120.349447]  path_mount+0x132d/0x1dd0
08:56:04 executing program 1:
prctl$PR_SET_PDEATHSIG(0x1, 0x0)

08:56:04 executing program 2:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]})
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0)

08:56:04 executing program 5:
msgrcv(0x0, 0x0, 0x0, 0x0, 0x0)

08:56:04 executing program 6:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0", 0x1d)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x44000)
sendfile(r0, r1, 0x0, 0xfdef)
mknodat$loop(r1, 0x0, 0x0, 0x0)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/sockcreate\x00', 0x2, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
truncate(&(0x7f0000000140)='./file0\x00', 0x0)
sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x2)

08:56:04 executing program 0:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
shutdown(r0, 0x0)
sendmsg$inet(r1, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x20004880)

08:56:04 executing program 3:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0", 0x1d)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x44000)
sendfile(r0, r1, 0x0, 0xfdef)
mknodat$loop(r1, 0x0, 0x0, 0x0)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/sockcreate\x00', 0x2, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
truncate(&(0x7f0000000140)='./file0\x00', 0x0)
sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x2)

08:56:04 executing program 7:
r0 = socket$packet(0x11, 0x3, 0x300)
getpeername$packet(r0, 0x0, 0x0)

08:56:04 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000100000005000000000004000040000020000000d6f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38303439393233303000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000f4e089668a0d4000840a22d1089d0f04010040000c00000000000000d5f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000004300000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d5f4655fd5f4655fd5f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000d5f4655fd6f4655fd6f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011600)="200000006418e53c6418e53c00000000d5f4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011700)="8081000000601020d5f4655fd5f4655fd5f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d5f4655f00"/160, 0xa0, 0x2600}, {&(0x7f0000011800)="c041000000380000d5f4655fd5f4655fd5f4655f00000000000002004000000000000800000000000af301000400000000000000000000000700000020000000", 0x40, 0x2a00}, {&(0x7f0000011900)="20000000000000000000000000000000d5f4655f000000000000000000000000000002ea00"/64, 0x40, 0x2a80}, {&(0x7f0000011a00)="ed4100003c000000d6f4655fd6f4655fd6f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000be5839ad000000000000000000000000000000000000000000000000200000006418e53c6418e53c14f4f03bd6f4655f14f4f03b0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2b00}, {&(0x7f0000011b00)="ed8100001a040000d6f4655fd6f4655fd6f4655f00000000000001004000000000000800010000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000f3be7438000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011c00)="ffa1000026000000d6f4655fd6f4655fd6f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3830343939323330302f66696c65302f66696c653000000000000000000000000000000000000000000000f583dfd0000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0xa0, 0x2d00}, {&(0x7f0000011d00)="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", 0x1a0, 0x2e00}, {&(0x7f0000011f00)="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", 0x100, 0x3000}, {&(0x7f0000012000)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012100)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x10000}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012800)="504d4d00504d4dffd6f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x20000}, {&(0x7f0000012900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x28000}], 0x0, &(0x7f0000012e00))

[  121.036133] audit: type=1326 audit(1756716964.848:10): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3993 comm="syz-executor.2" exe="/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0b627b7b19 code=0x0
[  121.056019] kmemleak: Found object by alias at 0x607f1a63ea9c
[  121.056036] CPU: 0 UID: 0 PID: 3996 Comm: syz-executor.7 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  121.056056] Tainted: [D]=DIE, [W]=WARN
[  121.056061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  121.056069] Call Trace:
[  121.056073]  <TASK>
[  121.056077]  dump_stack_lvl+0xca/0x120
[  121.056110]  __lookup_object+0x94/0xb0
[  121.056129]  delete_object_full+0x27/0x70
[  121.056145]  free_percpu+0x30/0x1160
[  121.056163]  ? arch_uprobe_clear_state+0x16/0x140
[  121.056182]  futex_hash_free+0x38/0xc0
[  121.056197]  mmput+0x2d3/0x390
[  121.056216]  do_exit+0x79d/0x2970
[  121.056229]  ? signal_wake_up_state+0x85/0x120
[  121.056245]  ? zap_other_threads+0x2b9/0x3a0
[  121.056261]  ? __pfx_do_exit+0x10/0x10
[  121.056274]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  121.056292]  ? lock_release+0x1c7/0x290
[  121.056307]  do_group_exit+0xd3/0x2a0
[  121.056325]  __x64_sys_exit_group+0x3e/0x50
[  121.056339]  x64_sys_call+0x18c5/0x18d0
[  121.056356]  do_syscall_64+0xbf/0x360
[  121.056369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.056381] RIP: 0033:0x7f5e6e22bb19
[  121.056390] Code: Unable to access opcode bytes at 0x7f5e6e22baef.
[  121.056396] RSP: 002b:00007ffe74839598 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  121.056408] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f5e6e22bb19
[  121.056416] RDX: 00007f5e6e1de72b RSI: ffffffffffffffbc RDI: 0000000000000000
[  121.056424] RBP: 0000000000000000 R08: 0000001b2d521560 R09: 0000000000000000
[  121.056431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.056439] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffe74839680
[  121.056449]  </TASK>
[  121.056454] kmemleak: Object (percpu) 0x607f1a63ea98 (size 8):
[  121.056461] kmemleak:   comm "syz-executor.2", pid 4000, jiffies 4294787633
[  121.056468] kmemleak:   min_count = 1
[  121.056473] kmemleak:   count = 0
[  121.056476] kmemleak:   flags = 0x21
[  121.056480] kmemleak:   checksum = 0
[  121.056484] kmemleak:   backtrace:
[  121.056488]  pcpu_alloc_noprof+0x87a/0x1170
[  121.056504]  perf_trace_event_init+0x366/0xa10
[  121.056519]  perf_trace_init+0x1a4/0x2f0
[  121.056531]  perf_tp_event_init+0xa6/0x120
[  121.056548]  perf_try_init_event+0x140/0x9f0
[  121.056562]  perf_event_alloc.part.0+0x118e/0x45f0
[  121.056579]  __do_sys_perf_event_open+0x719/0x2c20
[  121.056593]  do_syscall_64+0xbf/0x360
[  121.056603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.093606] audit: type=1400 audit(1756716964.903:11): avc:  denied  { write } for  pid=3993 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
08:56:04 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000100000005000000000004000040000020000000d6f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38303439393233303000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000f4e089668a0d4000840a22d1089d0f04010040000c00000000000000d5f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000004300000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d5f4655fd5f4655fd5f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000d5f4655fd6f4655fd6f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011600)="200000006418e53c6418e53c00000000d5f4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011700)="8081000000601020d5f4655fd5f4655fd5f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d5f4655f00"/160, 0xa0, 0x2600}, {&(0x7f0000011800)="c041000000380000d5f4655fd5f4655fd5f4655f00000000000002004000000000000800000000000af301000400000000000000000000000700000020000000", 0x40, 0x2a00}, {&(0x7f0000011900)="20000000000000000000000000000000d5f4655f000000000000000000000000000002ea00"/64, 0x40, 0x2a80}, {&(0x7f0000011a00)="ed4100003c000000d6f4655fd6f4655fd6f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000be5839ad000000000000000000000000000000000000000000000000200000006418e53c6418e53c14f4f03bd6f4655f14f4f03b0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2b00}, {&(0x7f0000011b00)="ed8100001a040000d6f4655fd6f4655fd6f4655f00000000000001004000000000000800010000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000f3be7438000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011c00)="ffa1000026000000d6f4655fd6f4655fd6f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3830343939323330302f66696c65302f66696c653000000000000000000000000000000000000000000000f583dfd0000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0xa0, 0x2d00}, {&(0x7f0000011d00)="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", 0x1a0, 0x2e00}, {&(0x7f0000011f00)="ed81000064000000d6f4655fd6f4655fd6f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c82b8fdd5000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000000002ea040734000000000028000000000000006461746100000000000000000000000000000000000000000000000000000000000000006c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273", 0x100, 0x3000}, {&(0x7f0000012000)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012100)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x10000}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012800)="504d4d00504d4dffd6f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x20000}, {&(0x7f0000012900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x28000}], 0x0, &(0x7f0000012e00))

08:56:04 executing program 7:
r0 = socket$packet(0x11, 0x3, 0x300)
getpeername$packet(r0, 0x0, 0x0)

08:56:04 executing program 5:
msgrcv(0x0, 0x0, 0x0, 0x0, 0x0)

08:56:04 executing program 0:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
shutdown(r0, 0x0)
sendmsg$inet(r1, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x20004880)

08:56:04 executing program 1:
prctl$PR_SET_PDEATHSIG(0x1, 0x0)

08:56:05 executing program 7:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0", 0x1d)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x44000)
sendfile(r0, r1, 0x0, 0xfdef)
mknodat$loop(r1, 0x0, 0x0, 0x0)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/sockcreate\x00', 0x2, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
truncate(&(0x7f0000000140)='./file0\x00', 0x0)
sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x2)

08:56:05 executing program 5:
msgrcv(0x0, 0x0, 0x0, 0x0, 0x0)

08:56:05 executing program 0:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
shutdown(r0, 0x0)
sendmsg$inet(r1, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x20004880)

08:56:05 executing program 6:
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
write(r0, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0", 0x1d)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x44000)
sendfile(r0, r1, 0x0, 0xfdef)
mknodat$loop(r1, 0x0, 0x0, 0x0)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/sockcreate\x00', 0x2, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
truncate(&(0x7f0000000140)='./file0\x00', 0x0)
sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x2)

[  121.390306] kmemleak: Found object by alias at 0x607f1a63ea9c
[  121.390335] CPU: 1 UID: 0 PID: 4027 Comm: syz-executor.7 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  121.390362] Tainted: [D]=DIE, [W]=WARN
[  121.390367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  121.390376] Call Trace:
[  121.390381]  <TASK>
[  121.390387]  dump_stack_lvl+0xca/0x120
[  121.390417]  __lookup_object+0x94/0xb0
[  121.390439]  delete_object_full+0x27/0x70
[  121.390460]  free_percpu+0x30/0x1160
[  121.390491]  ? arch_uprobe_clear_state+0x16/0x140
[  121.390515]  futex_hash_free+0x38/0xc0
[  121.390534]  mmput+0x2d3/0x390
[  121.390558]  do_exit+0x79d/0x2970
[  121.390575]  ? lock_release+0x1c7/0x290
[  121.390594]  ? __pfx_do_exit+0x10/0x10
[  121.390612]  ? do_raw_spin_lock+0x123/0x260
[  121.390633]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  121.390654]  do_group_exit+0xd3/0x2a0
[  121.390673]  get_signal+0x2315/0x2340
[  121.390697]  ? lock_release+0x1c7/0x290
[  121.390715]  ? __pfx_get_signal+0x10/0x10
[  121.390737]  ? do_futex+0x135/0x370
[  121.390754]  ? __pfx_do_futex+0x10/0x10
[  121.390772]  arch_do_signal_or_restart+0x80/0x790
[  121.390795]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  121.390817]  ? __x64_sys_futex+0x1c9/0x4d0
[  121.390833]  ? __x64_sys_futex+0x1d2/0x4d0
[  121.390851]  ? do_sys_truncate.part.0+0xb0/0x140
[  121.390869]  ? __pfx___x64_sys_futex+0x10/0x10
[  121.390887]  ? xfd_validate_state+0x55/0x180
[  121.390911]  exit_to_user_mode_loop+0x8b/0x110
[  121.390927]  do_syscall_64+0x2f7/0x360
[  121.390942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.390958] RIP: 0033:0x7f5e6e22bb19
[  121.390970] Code: Unable to access opcode bytes at 0x7f5e6e22baef.
[  121.390977] RSP: 002b:00007f5e6b780218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.390992] RAX: fffffffffffffe00 RBX: 00007f5e6e33f028 RCX: 00007f5e6e22bb19
[  121.391002] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5e6e33f028
[  121.391012] RBP: 00007f5e6e33f020 R08: 0000000000000000 R09: 0000000000000000
[  121.391021] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e6e33f02c
[  121.391030] R13: 00007ffe7483936f R14: 00007f5e6b780300 R15: 0000000000022000
[  121.391045]  </TASK>
[  121.391050] kmemleak: Object (percpu) 0x607f1a63ea98 (size 8):
[  121.391059] kmemleak:   comm "syz-executor.7", pid 4024, jiffies 4294787876
[  121.391068] kmemleak:   min_count = 1
[  121.391073] kmemleak:   count = 0
[  121.391078] kmemleak:   flags = 0x21
[  121.391083] kmemleak:   checksum = 0
[  121.391088] kmemleak:   backtrace:
[  121.391092]  pcpu_alloc_noprof+0x87a/0x1170
[  121.391113]  percpu_ref_init+0x37/0x400
[  121.391127]  blkg_alloc+0xe9/0x7d0
[  121.391143]  blkg_create+0xe08/0x1420
[  121.391160]  bio_associate_blkg_from_css+0xe06/0x1380
[  121.391179]  bio_associate_blkg+0x10e/0x2a0
[  121.391197]  bio_init+0x2dd/0x570
[  121.391214]  bio_alloc_bioset+0x4c5/0x8c0
[  121.391234]  ext4_bio_write_folio+0x8d6/0x13c0
[  121.391257]  mpage_map_and_submit_buffers+0x545/0x9d0
[  121.391281]  ext4_do_writepages+0x2125/0x38b0
[  121.391298]  ext4_writepages+0x369/0x7a0
[  121.391314]  do_writepages+0x244/0x5c0
[  121.391332]  filemap_fdatawrite_wbc+0x10b/0x150
[  121.391351]  __filemap_fdatawrite_range+0xb9/0x100
[  121.391374]  filemap_write_and_wait_range.part.0+0x89/0x110

VM DIAGNOSIS:
08:56:04  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff8880440ceb90
R8 =0000000000000000 R9 =ffffed10016c1046 R10=0000000000000020 R11=0000000065646f43
R12=0000000000000020 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f5da040c700 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe6d00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d720000 CR3=0000000015c90000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f3e77e8c7c000007f3e77e8c7c8
XMM02=00007f3e77e8c7e000007f3e77e8c7c0 XMM03=00007f3e77e8c7c800007f3e77e8c7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffed1001cdf700 RBX=ffffed1001cdf701 RCX=ffffffff8143cbea RDX=ffffed1001cdf701
RSI=0000000000000008 RDI=ffff88800e6fb800 RBP=ffffed1001cdf700 RSP=ffff88800f677d98
R8 =0000000000000000 R9 =ffffed1001cdf700 R10=ffff88800e6fb807 R11=1ffff1100d9e6f7b
R12=ffff88806f93fff9 R13=ffffffff886ef010 R14=ffff888009a4d280 R15=0000000000000086
RIP=ffffffff81b00961 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe4000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d021000 CR3=00000000333af000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000