Warning: Permanently added '[localhost]:35576' (ECDSA) to the list of known hosts.
2025/08/29 11:42:46 fuzzer started
2025/08/29 11:42:46 dialing manager at localhost:43077
syzkaller login: [   50.556310] cgroup: Unknown subsys name 'net'
[   50.606858] cgroup: Unknown subsys name 'cpuset'
[   50.625425] cgroup: Unknown subsys name 'rlimit'
2025/08/29 11:42:56 syscalls: 2214
2025/08/29 11:42:56 code coverage: enabled
2025/08/29 11:42:56 comparison tracing: enabled
2025/08/29 11:42:56 extra coverage: enabled
2025/08/29 11:42:56 setuid sandbox: enabled
2025/08/29 11:42:56 namespace sandbox: enabled
2025/08/29 11:42:56 Android sandbox: enabled
2025/08/29 11:42:56 fault injection: enabled
2025/08/29 11:42:56 leak checking: enabled
2025/08/29 11:42:56 net packet injection: enabled
2025/08/29 11:42:56 net device setup: enabled
2025/08/29 11:42:56 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/29 11:42:56 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/29 11:42:56 USB emulation: enabled
2025/08/29 11:42:56 hci packet injection: enabled
2025/08/29 11:42:56 wifi device emulation: enabled
2025/08/29 11:42:56 802.15.4 emulation: enabled
2025/08/29 11:42:56 fetching corpus: 0, signal 0/2000 (executing program)
2025/08/29 11:42:56 fetching corpus: 50, signal 27646/31069 (executing program)
2025/08/29 11:42:56 fetching corpus: 100, signal 39430/44201 (executing program)
2025/08/29 11:42:56 fetching corpus: 150, signal 46470/52548 (executing program)
2025/08/29 11:42:56 fetching corpus: 200, signal 51068/58413 (executing program)
2025/08/29 11:42:56 fetching corpus: 250, signal 54441/63036 (executing program)
2025/08/29 11:42:56 fetching corpus: 300, signal 58382/68152 (executing program)
2025/08/29 11:42:56 fetching corpus: 350, signal 62402/73227 (executing program)
2025/08/29 11:42:56 fetching corpus: 400, signal 66151/77959 (executing program)
2025/08/29 11:42:56 fetching corpus: 450, signal 68458/81366 (executing program)
2025/08/29 11:42:56 fetching corpus: 500, signal 70685/84593 (executing program)
2025/08/29 11:42:57 fetching corpus: 550, signal 74046/88831 (executing program)
2025/08/29 11:42:57 fetching corpus: 600, signal 77775/93307 (executing program)
2025/08/29 11:42:57 fetching corpus: 650, signal 80881/97155 (executing program)
2025/08/29 11:42:57 fetching corpus: 700, signal 82993/100103 (executing program)
2025/08/29 11:42:57 fetching corpus: 750, signal 84293/102327 (executing program)
2025/08/29 11:42:57 fetching corpus: 800, signal 87938/106415 (executing program)
2025/08/29 11:42:57 fetching corpus: 850, signal 90243/109374 (executing program)
2025/08/29 11:42:57 fetching corpus: 900, signal 91873/111789 (executing program)
2025/08/29 11:42:57 fetching corpus: 950, signal 95341/115539 (executing program)
2025/08/29 11:42:58 fetching corpus: 1000, signal 97133/117916 (executing program)
2025/08/29 11:42:58 fetching corpus: 1050, signal 98168/119704 (executing program)
2025/08/29 11:42:58 fetching corpus: 1100, signal 100051/122168 (executing program)
2025/08/29 11:42:58 fetching corpus: 1150, signal 101997/124599 (executing program)
2025/08/29 11:42:58 fetching corpus: 1200, signal 103567/126690 (executing program)
2025/08/29 11:42:58 fetching corpus: 1250, signal 104854/128584 (executing program)
2025/08/29 11:42:58 fetching corpus: 1300, signal 107126/131107 (executing program)
2025/08/29 11:42:58 fetching corpus: 1350, signal 108505/132987 (executing program)
2025/08/29 11:42:58 fetching corpus: 1400, signal 109923/134852 (executing program)
2025/08/29 11:42:59 fetching corpus: 1450, signal 111328/136643 (executing program)
2025/08/29 11:42:59 fetching corpus: 1500, signal 112432/138231 (executing program)
2025/08/29 11:42:59 fetching corpus: 1550, signal 113378/139694 (executing program)
2025/08/29 11:42:59 fetching corpus: 1600, signal 114817/141447 (executing program)
2025/08/29 11:42:59 fetching corpus: 1650, signal 115886/142937 (executing program)
2025/08/29 11:42:59 fetching corpus: 1700, signal 116768/144302 (executing program)
2025/08/29 11:42:59 fetching corpus: 1750, signal 118241/145996 (executing program)
2025/08/29 11:42:59 fetching corpus: 1800, signal 119073/147307 (executing program)
2025/08/29 11:42:59 fetching corpus: 1850, signal 119824/148527 (executing program)
2025/08/29 11:42:59 fetching corpus: 1900, signal 120982/150063 (executing program)
2025/08/29 11:43:00 fetching corpus: 1950, signal 121786/151249 (executing program)
2025/08/29 11:43:00 fetching corpus: 2000, signal 122602/152461 (executing program)
2025/08/29 11:43:00 fetching corpus: 2050, signal 123489/153693 (executing program)
2025/08/29 11:43:00 fetching corpus: 2100, signal 124447/154924 (executing program)
2025/08/29 11:43:00 fetching corpus: 2150, signal 125607/156248 (executing program)
2025/08/29 11:43:00 fetching corpus: 2200, signal 126658/157524 (executing program)
2025/08/29 11:43:00 fetching corpus: 2250, signal 127446/158646 (executing program)
2025/08/29 11:43:00 fetching corpus: 2300, signal 128512/159809 (executing program)
2025/08/29 11:43:00 fetching corpus: 2350, signal 129594/161032 (executing program)
2025/08/29 11:43:00 fetching corpus: 2400, signal 130794/162274 (executing program)
2025/08/29 11:43:01 fetching corpus: 2450, signal 131819/163401 (executing program)
2025/08/29 11:43:01 fetching corpus: 2500, signal 132462/164339 (executing program)
2025/08/29 11:43:01 fetching corpus: 2550, signal 133339/165316 (executing program)
2025/08/29 11:43:01 fetching corpus: 2600, signal 133882/166186 (executing program)
2025/08/29 11:43:01 fetching corpus: 2650, signal 134944/167333 (executing program)
2025/08/29 11:43:01 fetching corpus: 2700, signal 135524/168153 (executing program)
2025/08/29 11:43:01 fetching corpus: 2750, signal 136081/169015 (executing program)
2025/08/29 11:43:01 fetching corpus: 2800, signal 136744/169877 (executing program)
2025/08/29 11:43:01 fetching corpus: 2850, signal 137138/170602 (executing program)
2025/08/29 11:43:01 fetching corpus: 2900, signal 137858/171470 (executing program)
2025/08/29 11:43:02 fetching corpus: 2950, signal 138462/172277 (executing program)
2025/08/29 11:43:02 fetching corpus: 3000, signal 139362/173085 (executing program)
2025/08/29 11:43:02 fetching corpus: 3050, signal 140060/173882 (executing program)
2025/08/29 11:43:02 fetching corpus: 3100, signal 140844/174691 (executing program)
2025/08/29 11:43:02 fetching corpus: 3150, signal 141527/175449 (executing program)
2025/08/29 11:43:02 fetching corpus: 3200, signal 142247/176224 (executing program)
2025/08/29 11:43:02 fetching corpus: 3250, signal 142946/176941 (executing program)
2025/08/29 11:43:02 fetching corpus: 3300, signal 143442/177588 (executing program)
2025/08/29 11:43:02 fetching corpus: 3350, signal 144296/178347 (executing program)
2025/08/29 11:43:02 fetching corpus: 3400, signal 144742/178981 (executing program)
2025/08/29 11:43:02 fetching corpus: 3450, signal 145316/179664 (executing program)
2025/08/29 11:43:02 fetching corpus: 3500, signal 145872/180277 (executing program)
2025/08/29 11:43:03 fetching corpus: 3550, signal 146458/180913 (executing program)
2025/08/29 11:43:03 fetching corpus: 3600, signal 147066/181555 (executing program)
2025/08/29 11:43:03 fetching corpus: 3650, signal 147553/182170 (executing program)
2025/08/29 11:43:03 fetching corpus: 3700, signal 148013/182693 (executing program)
2025/08/29 11:43:03 fetching corpus: 3750, signal 148851/183363 (executing program)
2025/08/29 11:43:03 fetching corpus: 3800, signal 149340/183889 (executing program)
2025/08/29 11:43:03 fetching corpus: 3850, signal 149856/184434 (executing program)
2025/08/29 11:43:03 fetching corpus: 3900, signal 150386/184965 (executing program)
2025/08/29 11:43:03 fetching corpus: 3950, signal 150984/185515 (executing program)
2025/08/29 11:43:03 fetching corpus: 4000, signal 151369/186038 (executing program)
2025/08/29 11:43:03 fetching corpus: 4050, signal 152040/186671 (executing program)
2025/08/29 11:43:04 fetching corpus: 4100, signal 152527/187144 (executing program)
2025/08/29 11:43:04 fetching corpus: 4150, signal 153314/187658 (executing program)
2025/08/29 11:43:04 fetching corpus: 4200, signal 155312/188311 (executing program)
2025/08/29 11:43:04 fetching corpus: 4250, signal 155626/188754 (executing program)
2025/08/29 11:43:04 fetching corpus: 4300, signal 156224/189245 (executing program)
2025/08/29 11:43:04 fetching corpus: 4350, signal 156644/189650 (executing program)
2025/08/29 11:43:04 fetching corpus: 4400, signal 156980/190046 (executing program)
2025/08/29 11:43:04 fetching corpus: 4450, signal 157373/190440 (executing program)
2025/08/29 11:43:04 fetching corpus: 4500, signal 157990/190846 (executing program)
2025/08/29 11:43:04 fetching corpus: 4550, signal 158625/191279 (executing program)
2025/08/29 11:43:04 fetching corpus: 4600, signal 159259/191662 (executing program)
2025/08/29 11:43:04 fetching corpus: 4650, signal 159830/191847 (executing program)
2025/08/29 11:43:05 fetching corpus: 4700, signal 160124/191864 (executing program)
2025/08/29 11:43:05 fetching corpus: 4750, signal 160515/191884 (executing program)
2025/08/29 11:43:05 fetching corpus: 4800, signal 161197/191892 (executing program)
2025/08/29 11:43:05 fetching corpus: 4850, signal 161637/191897 (executing program)
2025/08/29 11:43:05 fetching corpus: 4900, signal 162088/191901 (executing program)
2025/08/29 11:43:05 fetching corpus: 4950, signal 162442/191910 (executing program)
2025/08/29 11:43:05 fetching corpus: 5000, signal 162911/191915 (executing program)
2025/08/29 11:43:05 fetching corpus: 5050, signal 163394/191929 (executing program)
2025/08/29 11:43:05 fetching corpus: 5100, signal 164162/192000 (executing program)
2025/08/29 11:43:05 fetching corpus: 5150, signal 164446/192004 (executing program)
2025/08/29 11:43:05 fetching corpus: 5200, signal 164910/192005 (executing program)
2025/08/29 11:43:05 fetching corpus: 5250, signal 165188/192017 (executing program)
2025/08/29 11:43:06 fetching corpus: 5300, signal 165686/192132 (executing program)
2025/08/29 11:43:06 fetching corpus: 5350, signal 165922/192140 (executing program)
2025/08/29 11:43:06 fetching corpus: 5400, signal 166360/192182 (executing program)
2025/08/29 11:43:06 fetching corpus: 5450, signal 166931/192188 (executing program)
2025/08/29 11:43:06 fetching corpus: 5500, signal 167293/192201 (executing program)
2025/08/29 11:43:06 fetching corpus: 5550, signal 167725/192204 (executing program)
2025/08/29 11:43:06 fetching corpus: 5600, signal 168226/192213 (executing program)
2025/08/29 11:43:06 fetching corpus: 5650, signal 168745/192302 (executing program)
2025/08/29 11:43:06 fetching corpus: 5700, signal 169087/192305 (executing program)
2025/08/29 11:43:06 fetching corpus: 5750, signal 169484/192307 (executing program)
2025/08/29 11:43:06 fetching corpus: 5800, signal 169896/192346 (executing program)
2025/08/29 11:43:07 fetching corpus: 5850, signal 170191/192367 (executing program)
2025/08/29 11:43:07 fetching corpus: 5900, signal 170622/192381 (executing program)
2025/08/29 11:43:07 fetching corpus: 5950, signal 171132/192383 (executing program)
2025/08/29 11:43:07 fetching corpus: 6000, signal 171581/192400 (executing program)
2025/08/29 11:43:07 fetching corpus: 6050, signal 171949/192409 (executing program)
2025/08/29 11:43:07 fetching corpus: 6100, signal 172387/192414 (executing program)
2025/08/29 11:43:07 fetching corpus: 6150, signal 172748/192421 (executing program)
2025/08/29 11:43:07 fetching corpus: 6200, signal 173122/192448 (executing program)
2025/08/29 11:43:07 fetching corpus: 6250, signal 173445/192452 (executing program)
2025/08/29 11:43:07 fetching corpus: 6300, signal 173837/192456 (executing program)
2025/08/29 11:43:07 fetching corpus: 6350, signal 174226/192464 (executing program)
2025/08/29 11:43:07 fetching corpus: 6400, signal 174485/192468 (executing program)
2025/08/29 11:43:07 fetching corpus: 6450, signal 174932/192469 (executing program)
2025/08/29 11:43:08 fetching corpus: 6500, signal 175633/192475 (executing program)
2025/08/29 11:43:08 fetching corpus: 6550, signal 176602/192476 (executing program)
2025/08/29 11:43:08 fetching corpus: 6600, signal 176932/192476 (executing program)
2025/08/29 11:43:08 fetching corpus: 6650, signal 177221/192526 (executing program)
2025/08/29 11:43:08 fetching corpus: 6700, signal 177653/192533 (executing program)
2025/08/29 11:43:08 fetching corpus: 6750, signal 178075/192544 (executing program)
2025/08/29 11:43:08 fetching corpus: 6800, signal 178388/192553 (executing program)
2025/08/29 11:43:08 fetching corpus: 6850, signal 178771/192566 (executing program)
2025/08/29 11:43:08 fetching corpus: 6900, signal 179128/192569 (executing program)
2025/08/29 11:43:08 fetching corpus: 6950, signal 179341/192573 (executing program)
2025/08/29 11:43:08 fetching corpus: 7000, signal 179775/192573 (executing program)
2025/08/29 11:43:08 fetching corpus: 7050, signal 180232/192633 (executing program)
2025/08/29 11:43:08 fetching corpus: 7100, signal 180524/192638 (executing program)
2025/08/29 11:43:09 fetching corpus: 7150, signal 180718/192646 (executing program)
2025/08/29 11:43:09 fetching corpus: 7200, signal 180974/192684 (executing program)
2025/08/29 11:43:09 fetching corpus: 7250, signal 181273/192694 (executing program)
2025/08/29 11:43:09 fetching corpus: 7300, signal 181534/192696 (executing program)
2025/08/29 11:43:09 fetching corpus: 7350, signal 181737/192707 (executing program)
2025/08/29 11:43:09 fetching corpus: 7400, signal 181994/192711 (executing program)
2025/08/29 11:43:09 fetching corpus: 7450, signal 182354/192711 (executing program)
2025/08/29 11:43:09 fetching corpus: 7500, signal 182650/192725 (executing program)
2025/08/29 11:43:09 fetching corpus: 7550, signal 182911/192732 (executing program)
2025/08/29 11:43:09 fetching corpus: 7600, signal 183168/192734 (executing program)
2025/08/29 11:43:09 fetching corpus: 7650, signal 183720/192740 (executing program)
2025/08/29 11:43:09 fetching corpus: 7700, signal 184120/192771 (executing program)
2025/08/29 11:43:09 fetching corpus: 7750, signal 184399/192773 (executing program)
2025/08/29 11:43:10 fetching corpus: 7800, signal 184703/192774 (executing program)
2025/08/29 11:43:10 fetching corpus: 7850, signal 184963/192794 (executing program)
2025/08/29 11:43:10 fetching corpus: 7900, signal 185304/192796 (executing program)
2025/08/29 11:43:10 fetching corpus: 7950, signal 185547/192799 (executing program)
2025/08/29 11:43:10 fetching corpus: 8000, signal 185860/192824 (executing program)
2025/08/29 11:43:10 fetching corpus: 8050, signal 186103/192833 (executing program)
2025/08/29 11:43:10 fetching corpus: 8100, signal 186255/192845 (executing program)
2025/08/29 11:43:10 fetching corpus: 8150, signal 186481/192845 (executing program)
2025/08/29 11:43:10 fetching corpus: 8200, signal 186702/192850 (executing program)
2025/08/29 11:43:10 fetching corpus: 8250, signal 186995/192881 (executing program)
2025/08/29 11:43:10 fetching corpus: 8300, signal 187250/192884 (executing program)
2025/08/29 11:43:10 fetching corpus: 8350, signal 187416/192894 (executing program)
2025/08/29 11:43:11 fetching corpus: 8400, signal 187710/192898 (executing program)
2025/08/29 11:43:11 fetching corpus: 8450, signal 188027/192899 (executing program)
2025/08/29 11:43:11 fetching corpus: 8500, signal 188222/192907 (executing program)
2025/08/29 11:43:11 fetching corpus: 8550, signal 188447/192915 (executing program)
2025/08/29 11:43:11 fetching corpus: 8600, signal 188701/192926 (executing program)
2025/08/29 11:43:11 fetching corpus: 8650, signal 188942/192927 (executing program)
2025/08/29 11:43:11 fetching corpus: 8700, signal 189190/192944 (executing program)
2025/08/29 11:43:11 fetching corpus: 8750, signal 189399/192947 (executing program)
2025/08/29 11:43:11 fetching corpus: 8775, signal 189572/192953 (executing program)
2025/08/29 11:43:11 fetching corpus: 8775, signal 189572/192953 (executing program)
2025/08/29 11:43:14 starting 8 fuzzer processes
11:43:14 executing program 0:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0xc5, 0xffffffffffffffff, {0x5}}, './file0\x00'})

11:43:14 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x33, &(0x7f0000000000), 0x4)

11:43:14 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0)
pwritev2(r0, &(0x7f00000002c0)=[{&(0x7f0000000000)="b4", 0x4}], 0x1, 0x0, 0x0, 0x0)

11:43:14 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000000), 0x7)

11:43:14 executing program 3:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xe0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f00000003c0)='./cgroup/pids.max\x00', 0x0)
dup2(r0, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./cgroup/pids.max\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

11:43:14 executing program 7:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'})
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x541b, &(0x7f0000000000)={@local})

11:43:14 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)

11:43:14 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x6}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
pipe(&(0x7f00000001c0))
socket$inet_udplite(0x2, 0x2, 0x88)
syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000040), 0x0, &(0x7f0000000080)={0x8b}, &(0x7f00000000c0), 0x0)

[   78.369767] audit: type=1400 audit(1756467794.192:7): avc:  denied  { execmem } for  pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   79.649431] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   79.652518] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   79.654466] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   79.658223] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.661078] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.713506] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   79.728225] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   79.730703] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   79.732429] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   79.733175] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   79.734449] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   79.735379] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   79.735854] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   79.738739] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   79.739654] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   79.740349] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   79.741665] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   79.746271] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   79.746320] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   79.750599] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   79.752348] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   79.754493] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   79.759505] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   79.760824] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   79.764731] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   79.766216] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   79.779577] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   79.781716] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   79.782409] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   79.784438] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   79.784448] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   79.786734] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   79.788054] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   79.792169] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   79.797523] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   79.799171] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   79.801711] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   79.815405] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   79.821171] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   79.834855] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   81.682365] Bluetooth: hci0: command tx timeout
[   81.810348] Bluetooth: hci5: command tx timeout
[   81.874068] Bluetooth: hci7: command tx timeout
[   81.874549] Bluetooth: hci1: command tx timeout
[   81.876133] Bluetooth: hci2: command tx timeout
[   81.877071] Bluetooth: hci3: command tx timeout
[   81.877845] Bluetooth: hci4: command tx timeout
[   81.939025] Bluetooth: hci6: command tx timeout
[   83.730600] Bluetooth: hci0: command tx timeout
[   83.859984] Bluetooth: hci5: command tx timeout
[   83.922515] Bluetooth: hci4: command tx timeout
[   83.923190] Bluetooth: hci3: command tx timeout
[   83.923622] Bluetooth: hci1: command tx timeout
[   83.924072] Bluetooth: hci2: command tx timeout
[   83.924101] Bluetooth: hci7: command tx timeout
[   83.988077] Bluetooth: hci6: command tx timeout
[   85.778175] Bluetooth: hci0: command tx timeout
[   85.906100] Bluetooth: hci5: command tx timeout
[   85.971980] Bluetooth: hci7: command tx timeout
[   85.972502] Bluetooth: hci2: command tx timeout
[   85.972895] Bluetooth: hci3: command tx timeout
[   85.973324] Bluetooth: hci4: command tx timeout
[   85.973720] Bluetooth: hci1: command tx timeout
[   86.035207] Bluetooth: hci6: command tx timeout
[   87.826095] Bluetooth: hci0: command tx timeout
[   87.955660] Bluetooth: hci5: command tx timeout
[   88.018125] Bluetooth: hci1: command tx timeout
[   88.018236] Bluetooth: hci3: command tx timeout
[   88.018553] Bluetooth: hci4: command tx timeout
[   88.019047] Bluetooth: hci2: command tx timeout
[   88.019393] Bluetooth: hci7: command tx timeout
[   88.082070] Bluetooth: hci6: command tx timeout
[  115.928467] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.929818] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.095091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.095723] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.258412] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.259660] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.423157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.423801] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.461238] audit: type=1400 audit(1756467832.282:8): avc:  denied  { open } for  pid=3823 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  116.466122] audit: type=1400 audit(1756467832.282:9): avc:  denied  { kernel } for  pid=3823 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
11:43:52 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x33, &(0x7f0000000000), 0x4)

[  116.581990] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.582629] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:43:52 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x33, &(0x7f0000000000), 0x4)

[  116.736020] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.736648] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:43:52 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x33, &(0x7f0000000000), 0x4)

11:43:52 executing program 5:
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, r0)
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, r0)
keyctl$KEYCTL_MOVE(0x1e, r0, r0, r1, 0x0)

11:43:52 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000002700)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0})
sendmmsg$unix(r0, &(0x7f0000000c80), 0x80000, 0x0)

[  116.937258] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.937845] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:43:52 executing program 5:
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, r0)
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, r0)
keyctl$KEYCTL_MOVE(0x1e, r0, r0, r1, 0x0)

11:43:52 executing program 5:
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, r0)
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, r0)
keyctl$KEYCTL_MOVE(0x1e, r0, r0, r1, 0x0)

[  117.031061] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.031669] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.083932] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.084671] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.110041] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.110655] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.157791] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.158560] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.230431] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.231057] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.401412] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.402017] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.421677] audit: type=1326 audit(1756467833.240:10): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3898 comm="syz-executor.6" exe="/syz-executor.6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d41277b19 code=0x0
[  117.438783] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.439381] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.494894] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.495560] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.505815] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.506520] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.519657] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  118.251207] audit: type=1326 audit(1756467834.073:11): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3898 comm="syz-executor.6" exe="/syz-executor.6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d41277b19 code=0x0
11:43:54 executing program 3:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xe0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f00000003c0)='./cgroup/pids.max\x00', 0x0)
dup2(r0, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./cgroup/pids.max\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

11:43:54 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x6}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
pipe(&(0x7f00000001c0))
socket$inet_udplite(0x2, 0x2, 0x88)
syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000040), 0x0, &(0x7f0000000080)={0x8b}, &(0x7f00000000c0), 0x0)

11:43:54 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0)
pwritev2(r0, &(0x7f00000002c0)=[{&(0x7f0000000000)="b4", 0x4}], 0x1, 0x0, 0x0, 0x0)

11:43:54 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000000), 0x7)

11:43:54 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0)
pwritev2(r0, &(0x7f00000002c0)=[{&(0x7f0000000000)="b4", 0x4}], 0x1, 0x0, 0x0, 0x0)

11:43:54 executing program 7:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'})
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x541b, &(0x7f0000000000)={@local})

11:43:54 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000002700)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0})
sendmmsg$unix(r0, &(0x7f0000000c80), 0x80000, 0x0)

11:43:54 executing program 5:
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, r0)
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, r0)
keyctl$KEYCTL_MOVE(0x1e, r0, r0, r1, 0x0)

[  118.565122] audit: type=1326 audit(1756467834.386:12): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3923 comm="syz-executor.6" exe="/syz-executor.6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d41277b19 code=0x0
11:43:54 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000000), 0x7)

11:43:54 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0)
pwritev2(r0, &(0x7f00000002c0)=[{&(0x7f0000000000)="b4", 0x4}], 0x1, 0x0, 0x0, 0x0)

11:43:54 executing program 5:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xe0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f00000003c0)='./cgroup/pids.max\x00', 0x0)
dup2(r0, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./cgroup/pids.max\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

11:43:54 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0)
pwritev2(r0, &(0x7f00000002c0)=[{&(0x7f0000000000)="b4", 0x4}], 0x1, 0x0, 0x0, 0x0)

[  118.719813] kmemleak: Found object by alias at 0x607f1a63954c
[  118.719836] CPU: 1 UID: 0 PID: 3938 Comm: syz-executor.7 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  118.719855] Tainted: [W]=WARN
[  118.719859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  118.719866] Call Trace:
[  118.719870]  <TASK>
[  118.719874]  dump_stack_lvl+0xca/0x120
[  118.719900]  __lookup_object+0x94/0xb0
[  118.719916]  delete_object_full+0x27/0x70
[  118.719932]  free_percpu+0x30/0x1160
[  118.719953]  ? arch_uprobe_clear_state+0x16/0x140
[  118.719973]  futex_hash_free+0x38/0xc0
[  118.719987]  mmput+0x2d3/0x390
[  118.720006]  do_exit+0x79d/0x2970
[  118.720019]  ? lock_release+0xc8/0x290
[  118.720035]  ? __pfx_do_exit+0x10/0x10
[  118.720049]  ? find_held_lock+0x2b/0x80
[  118.720065]  ? get_signal+0x835/0x2340
[  118.720085]  do_group_exit+0xd3/0x2a0
[  118.720099]  get_signal+0x2315/0x2340
[  118.720120]  ? do_vfs_ioctl+0x125/0x1470
[  118.720141]  ? __pfx_get_signal+0x10/0x10
[  118.720157]  ? do_futex+0x135/0x370
[  118.720170]  ? __pfx_do_futex+0x10/0x10
[  118.720182]  ? file_has_perm+0x187/0x270
[  118.720196]  arch_do_signal_or_restart+0x80/0x790
[  118.720213]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  118.720229]  ? __x64_sys_futex+0x1c9/0x4d0
[  118.720241]  ? __x64_sys_futex+0x1d2/0x4d0
[  118.720255]  ? __pfx___x64_sys_futex+0x10/0x10
[  118.720267]  ? selinux_file_ioctl+0xb9/0x280
[  118.720287]  exit_to_user_mode_loop+0x8b/0x110
[  118.720299]  do_syscall_64+0x2f7/0x360
[  118.720312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.720323] RIP: 0033:0x7f5f7eb02b19
[  118.720332] Code: Unable to access opcode bytes at 0x7f5f7eb02aef.
[  118.720337] RSP: 002b:00007f5f7c078218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  118.720348] RAX: fffffffffffffe00 RBX: 00007f5f7ec15f68 RCX: 00007f5f7eb02b19
[  118.720356] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5f7ec15f68
[  118.720362] RBP: 00007f5f7ec15f60 R08: 0000000000000000 R09: 0000000000000000
[  118.720369] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5f7ec15f6c
[  118.720376] R13: 00007ffd7a67e8bf R14: 00007f5f7c078300 R15: 0000000000022000
[  118.720391]  </TASK>
[  118.720395] kmemleak: Object (percpu) 0x607f1a639548 (size 8):
[  118.720401] kmemleak:   comm "syz-executor.3", pid 3927, jiffies 4294785363
[  118.720408] kmemleak:   min_count = 1
[  118.720412] kmemleak:   count = 0
[  118.720415] kmemleak:   flags = 0x21
[  118.720419] kmemleak:   checksum = 0
[  118.720423] kmemleak:   backtrace:
[  118.720426]  pcpu_alloc_noprof+0x87a/0x1170
[  118.720449]  perf_trace_event_init+0x366/0xa10
[  118.720462]  perf_trace_init+0x1a4/0x2f0
[  118.720473]  perf_tp_event_init+0xa6/0x120
[  118.720488]  perf_try_init_event+0x140/0x9f0
[  118.720501]  perf_event_alloc.part.0+0x118e/0x45f0
[  118.720517]  __do_sys_perf_event_open+0x719/0x2c20
[  118.720529]  do_syscall_64+0xbf/0x360
[  118.720538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:43:54 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000002700)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0})
sendmmsg$unix(r0, &(0x7f0000000c80), 0x80000, 0x0)

11:43:54 executing program 7:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'})
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x541b, &(0x7f0000000000)={@local})

11:43:54 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000000), 0x7)

11:43:54 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000002700)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0})
sendmmsg$unix(r0, &(0x7f0000000c80), 0x80000, 0x0)

[  118.871579] kmemleak: Found object by alias at 0x607f1a639554
[  118.871597] CPU: 1 UID: 0 PID: 3953 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  118.871615] Tainted: [W]=WARN
[  118.871619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  118.871626] Call Trace:
[  118.871630]  <TASK>
[  118.871635]  dump_stack_lvl+0xca/0x120
[  118.871660]  __lookup_object+0x94/0xb0
[  118.871677]  delete_object_full+0x27/0x70
[  118.871693]  free_percpu+0x30/0x1160
[  118.871710]  ? arch_uprobe_clear_state+0x16/0x140
[  118.871730]  futex_hash_free+0x38/0xc0
[  118.871744]  mmput+0x2d3/0x390
[  118.871762]  do_exit+0x79d/0x2970
[  118.871780]  ? __pfx_do_exit+0x10/0x10
[  118.871793]  ? find_held_lock+0x2b/0x80
[  118.871811]  ? get_signal+0x835/0x2340
[  118.871831]  do_group_exit+0xd3/0x2a0
[  118.871846]  get_signal+0x2315/0x2340
[  118.871863]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  118.871880]  ? __pfx_get_signal+0x10/0x10
[  118.871896]  ? __schedule+0xe91/0x3590
[  118.871915]  arch_do_signal_or_restart+0x80/0x790
[  118.871937]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  118.871953]  ? __x64_sys_futex+0x1c9/0x4d0
[  118.871966]  ? __x64_sys_futex+0x1d2/0x4d0
[  118.871979]  ? fput_close_sync+0x114/0x240
[  118.871995]  ? __pfx___x64_sys_futex+0x10/0x10
[  118.872007]  ? __pfx_fput_close_sync+0x10/0x10
[  118.872022]  ? dnotify_flush+0x79/0x4c0
[  118.872033]  ? xfd_validate_state+0x55/0x180
[  118.872054]  exit_to_user_mode_loop+0x8b/0x110
[  118.872066]  do_syscall_64+0x2f7/0x360
[  118.872078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.872089] RIP: 0033:0x7f75f45e8b19
[  118.872098] Code: Unable to access opcode bytes at 0x7f75f45e8aef.
[  118.872103] RSP: 002b:00007f75f1b5e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  118.872114] RAX: 0000000000000001 RBX: 00007f75f46fbf68 RCX: 00007f75f45e8b19
[  118.872121] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f75f46fbf6c
[  118.872128] RBP: 00007f75f46fbf60 R08: 0000000000000016 R09: 0000000000000000
[  118.872135] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f75f46fbf6c
[  118.872142] R13: 00007ffcf71757ff R14: 00007f75f1b5e300 R15: 0000000000022000
[  118.872157]  </TASK>
[  118.872161] kmemleak: Object (percpu) 0x607f1a639550 (size 8):
[  118.872168] kmemleak:   comm "syz-executor.7", pid 3952, jiffies 4294785647
[  118.872174] kmemleak:   min_count = 1
[  118.872178] kmemleak:   count = 0
[  118.872182] kmemleak:   flags = 0x21
[  118.872185] kmemleak:   checksum = 0
[  118.872189] kmemleak:   backtrace:
[  118.872192]  pcpu_alloc_noprof+0x87a/0x1170
[  118.872207]  perf_trace_event_init+0x366/0xa10
[  118.872220]  perf_trace_init+0x1a4/0x2f0
[  118.872232]  perf_tp_event_init+0xa6/0x120
[  118.872247]  perf_try_init_event+0x140/0x9f0
[  118.872260]  perf_event_alloc.part.0+0x118e/0x45f0
[  118.872276]  __do_sys_perf_event_open+0x719/0x2c20
[  118.872289]  do_syscall_64+0xbf/0x360
[  118.872297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.930564] kmemleak: Found object by alias at 0x607f1a63954c
[  118.930593] CPU: 0 UID: 0 PID: 3950 Comm: syz-executor.7 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  118.930628] Tainted: [W]=WARN
[  118.930635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  118.930647] Call Trace:
[  118.930655]  <TASK>
[  118.930664]  dump_stack_lvl+0xca/0x120
[  118.930706]  __lookup_object+0x94/0xb0
[  118.930736]  delete_object_full+0x27/0x70
[  118.930766]  free_percpu+0x30/0x1160
[  118.930797]  ? arch_uprobe_clear_state+0x16/0x140
[  118.930842]  futex_hash_free+0x38/0xc0
[  118.930868]  mmput+0x2d3/0x390
[  118.930903]  do_exit+0x79d/0x2970
[  118.930929]  ? signal_wake_up_state+0x85/0x120
[  118.930958]  ? zap_other_threads+0x2b9/0x3a0
[  118.930989]  ? __pfx_do_exit+0x10/0x10
[  118.931013]  ? do_group_exit+0x1c3/0x2a0
[  118.931039]  ? lock_release+0xc8/0x290
[  118.931071]  do_group_exit+0xd3/0x2a0
[  118.931100]  __x64_sys_exit_group+0x3e/0x50
[  118.931127]  x64_sys_call+0x18c5/0x18d0
[  118.931155]  do_syscall_64+0xbf/0x360
[  118.931177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.931199] RIP: 0033:0x7f5f7eb02b19
[  118.931216] Code: Unable to access opcode bytes at 0x7f5f7eb02aef.
[  118.931226] RSP: 002b:00007ffd7a67eae8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  118.931247] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f5f7eb02b19
[  118.931261] RDX: 00007f5f7eab572b RSI: ffffffffffffffbc RDI: 0000000000000000
[  118.931275] RBP: 0000000000000000 R08: 0000001b2d024024 R09: 0000000000000000
[  118.931288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.931301] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd7a67ebd0
[  118.931331]  </TASK>
[  118.931339] kmemleak: Object (percpu) 0x607f1a639548 (size 8):
[  118.931351] kmemleak:   comm "syz-executor.3", pid 3927, jiffies 4294785363
[  118.931365] kmemleak:   min_count = 1
[  118.931372] kmemleak:   count = 0
[  118.931379] kmemleak:   flags = 0x21
[  118.931386] kmemleak:   checksum = 0
[  118.931393] kmemleak:   backtrace:
[  118.931399]  pcpu_alloc_noprof+0x87a/0x1170
[  118.931428]  perf_trace_event_init+0x366/0xa10
[  118.931453]  perf_trace_init+0x1a4/0x2f0
[  118.931476]  perf_tp_event_init+0xa6/0x120
[  118.931505]  perf_try_init_event+0x140/0x9f0
[  118.931531]  perf_event_alloc.part.0+0x118e/0x45f0
[  118.931564]  __do_sys_perf_event_open+0x719/0x2c20
[  118.931588]  do_syscall_64+0xbf/0x360
[  118.931605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:43:55 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x6}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
pipe(&(0x7f00000001c0))
socket$inet_udplite(0x2, 0x2, 0x88)
syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000040), 0x0, &(0x7f0000000080)={0x8b}, &(0x7f00000000c0), 0x0)

11:43:55 executing program 5:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xe0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f00000003c0)='./cgroup/pids.max\x00', 0x0)
dup2(r0, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./cgroup/pids.max\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

11:43:55 executing program 3:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xe0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f00000003c0)='./cgroup/pids.max\x00', 0x0)
dup2(r0, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./cgroup/pids.max\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

11:43:55 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0)
pwritev2(r0, &(0x7f00000002c0)=[{&(0x7f0000000000)="b4", 0x4}], 0x1, 0x0, 0x0, 0x0)

11:43:55 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x80086603, &(0x7f0000000000))

11:43:55 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_test', 0x8242, 0x0)
pwritev2(r0, &(0x7f00000002c0)=[{&(0x7f0000000000)="b4", 0x4}], 0x1, 0x0, 0x0, 0x0)

11:43:55 executing program 2:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0x0, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0x100003c)
umount2(&(0x7f0000000180)='./file0\x00', 0x0)

11:43:55 executing program 7:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'})
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x541b, &(0x7f0000000000)={@local})

[  119.701161] audit: type=1326 audit(1756467835.523:13): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3965 comm="syz-executor.6" exe="/syz-executor.6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d41277b19 code=0x0
[  119.713163] audit: type=1400 audit(1756467835.533:14): avc:  denied  { watch_reads } for  pid=3957 comm="syz-executor.2" path="/syzkaller-testdir674926401/syzkaller.TLAEwZ/8/file0" dev="hugetlbfs" ino=5779 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:hugetlbfs_t:s0 tclass=dir permissive=1
[  119.726792] kmemleak: Found object by alias at 0x607f1a639554
[  119.726807] CPU: 1 UID: 0 PID: 3958 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  119.726824] Tainted: [W]=WARN
[  119.726828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  119.726834] Call Trace:
[  119.726839]  <TASK>
[  119.726843]  dump_stack_lvl+0xca/0x120
[  119.726868]  __lookup_object+0x94/0xb0
[  119.726885]  delete_object_full+0x27/0x70
[  119.726904]  free_percpu+0x30/0x1160
[  119.726921]  ? arch_uprobe_clear_state+0x16/0x140
[  119.726941]  futex_hash_free+0x38/0xc0
[  119.726956]  mmput+0x2d3/0x390
[  119.726975]  do_exit+0x79d/0x2970
[  119.726988]  ? signal_wake_up_state+0x85/0x120
[  119.727004]  ? zap_other_threads+0x2b9/0x3a0
[  119.727020]  ? __pfx_do_exit+0x10/0x10
[  119.727032]  ? do_group_exit+0x1c3/0x2a0
[  119.727045]  ? lock_release+0xc8/0x290
[  119.727063]  do_group_exit+0xd3/0x2a0
[  119.727078]  __x64_sys_exit_group+0x3e/0x50
[  119.727091]  x64_sys_call+0x18c5/0x18d0
[  119.727106]  do_syscall_64+0xbf/0x360
[  119.727118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.727129] RIP: 0033:0x7f75f45e8b19
[  119.727138] Code: Unable to access opcode bytes at 0x7f75f45e8aef.
[  119.727143] RSP: 002b:00007ffcf7175a28 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  119.727154] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f75f45e8b19
[  119.727161] RDX: 00007f75f459b72b RSI: ffffffffffffffbc RDI: 0000000000000000
[  119.727168] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[  119.727175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.727181] R13: 0000000000000001 R14: 0000000000000001 R15: 00007ffcf7175b10
[  119.727198]  </TASK>
[  119.727201] kmemleak: Object (percpu) 0x607f1a639548 (size 16):
[  119.727208] kmemleak:   comm "syz-executor.4", pid 287, jiffies 4294786435
[  119.727215] kmemleak:   min_count = 1
[  119.727218] kmemleak:   count = 0
[  119.727222] kmemleak:   flags = 0x21
[  119.727226] kmemleak:   checksum = 0
[  119.727229] kmemleak:   backtrace:
[  119.727233]  pcpu_alloc_noprof+0x87a/0x1170
[  119.727247]  mm_init+0x99b/0x1170
[  119.727255]  copy_process+0x3ab7/0x73c0
[  119.727265]  kernel_clone+0xea/0x7f0
[  119.727274]  __do_sys_clone+0xce/0x120
[  119.727284]  do_syscall_64+0xbf/0x360
[  119.727292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.753289] audit: type=1400 audit(1756467835.572:15): avc:  denied  { watch_reads } for  pid=3957 comm="syz-executor.2" path="/syzkaller-testdir674926401/syzkaller.TLAEwZ/8/file0" dev="sda" ino=15991 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1
11:43:55 executing program 7:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvfrom(r0, 0x0, 0x0, 0x40012101, 0x0, 0x0)

11:43:55 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000002c0)={[{@none}, {@name={'name', 0x3d, 'user.incfs.metadata\x00'}}]})

[  119.806646] kmemleak: Found object by alias at 0x607f1a639554
[  119.806667] CPU: 1 UID: 0 PID: 3975 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  119.806684] Tainted: [W]=WARN
[  119.806688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  119.806695] Call Trace:
[  119.806699]  <TASK>
[  119.806704]  dump_stack_lvl+0xca/0x120
[  119.806728]  __lookup_object+0x94/0xb0
[  119.806745]  delete_object_full+0x27/0x70
[  119.806760]  free_percpu+0x30/0x1160
[  119.806776]  ? arch_uprobe_clear_state+0x16/0x140
[  119.806800]  futex_hash_free+0x38/0xc0
[  119.806814]  mmput+0x2d3/0x390
[  119.806832]  do_exit+0x79d/0x2970
[  119.806845]  ? signal_wake_up_state+0x9f/0x120
[  119.806861]  ? zap_other_threads+0x2b9/0x3a0
[  119.806877]  ? __pfx_do_exit+0x10/0x10
[  119.806889]  ? do_group_exit+0x1c3/0x2a0
[  119.806902]  ? lock_release+0xc8/0x290
[  119.806919]  do_group_exit+0xd3/0x2a0
[  119.806933]  __x64_sys_exit_group+0x3e/0x50
[  119.806947]  x64_sys_call+0x18c5/0x18d0
[  119.806961]  do_syscall_64+0xbf/0x360
[  119.806973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.806984] RIP: 0033:0x7f75f45e8b19
[  119.806993] Code: Unable to access opcode bytes at 0x7f75f45e8aef.
[  119.806998] RSP: 002b:00007ffcf7175a28 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  119.807009] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f75f45e8b19
[  119.807016] RDX: 00007f75f459b72b RSI: ffffffffffffffbc RDI: 0000000000000000
[  119.807023] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[  119.807029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.807036] R13: 0000000000000001 R14: 0000000000000001 R15: 00007ffcf7175b10
[  119.807051]  </TASK>
[  119.807055] kmemleak: Object (percpu) 0x607f1a639550 (size 8):
[  119.807061] kmemleak:   comm "syz-executor.2", pid 3959, jiffies 4294786547
[  119.807068] kmemleak:   min_count = 1
[  119.807072] kmemleak:   count = 0
[  119.807075] kmemleak:   flags = 0x21
[  119.807079] kmemleak:   checksum = 0
[  119.807083] kmemleak:   backtrace:
[  119.807086]  pcpu_alloc_noprof+0x87a/0x1170
[  119.807101]  alloc_vfsmnt+0x135/0x6e0
[  119.807114]  vfs_create_mount.part.0+0x40/0x440
[  119.807128]  path_mount+0x1637/0x1dd0
[  119.807138]  __x64_sys_mount+0x27b/0x300
[  119.807149]  do_syscall_64+0xbf/0x360
[  119.807157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:43:55 executing program 1:
syz_emit_ethernet(0x52, &(0x7f0000000000)={@link_local, @dev, @void, {@ipv4={0x800, @dccp={{0xd, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x21, 0x0, @local, @private=0xa010101, {[@rr={0x44, 0x1f, 0x1e, [@broadcast, @broadcast, @broadcast, @empty, @dev, @local, @private]}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00\x00W', 0x0, "944856"}}}}}}, 0x0)

11:43:55 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000002c0)={[{@none}, {@name={'name', 0x3d, 'user.incfs.metadata\x00'}}]})

[  119.859555] kmemleak: Found object by alias at 0x607f1a639314
[  119.859584] CPU: 0 UID: 0 PID: 3969 Comm: syz-executor.0 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  119.859618] Tainted: [W]=WARN
[  119.859625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  119.859638] Call Trace:
[  119.859645]  <TASK>
[  119.859653]  dump_stack_lvl+0xca/0x120
[  119.859694]  __lookup_object+0x94/0xb0
[  119.859725]  delete_object_full+0x27/0x70
[  119.859756]  free_percpu+0x30/0x1160
[  119.859785]  ? arch_uprobe_clear_state+0x16/0x140
[  119.859823]  futex_hash_free+0x38/0xc0
[  119.859848]  mmput+0x2d3/0x390
[  119.859884]  do_exit+0x79d/0x2970
[  119.859909]  ? signal_wake_up_state+0x85/0x120
[  119.859939]  ? zap_other_threads+0x2b9/0x3a0
[  119.859978]  ? __pfx_do_exit+0x10/0x10
[  119.860002]  ? do_group_exit+0x1c3/0x2a0
[  119.860028]  ? lock_release+0xc8/0x290
[  119.860060]  do_group_exit+0xd3/0x2a0
[  119.860089]  __x64_sys_exit_group+0x3e/0x50
[  119.860116]  x64_sys_call+0x18c5/0x18d0
[  119.860144]  do_syscall_64+0xbf/0x360
[  119.860166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.860188] RIP: 0033:0x7f81c7e14b19
[  119.860204] Code: Unable to access opcode bytes at 0x7f81c7e14aef.
[  119.860214] RSP: 002b:00007ffe36aa9248 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  119.860235] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f81c7e14b19
[  119.860250] RDX: 00007f81c7dc772b RSI: ffffffffffffffbc RDI: 0000000000000000
[  119.860264] RBP: 0000000000000000 R08: 0000001b2ce23ab0 R09: 0000000000000000
[  119.860277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.860290] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffe36aa9330
[  119.860320]  </TASK>
[  119.860327] kmemleak: Object (percpu) 0x607f1a639310 (size 8):
[  119.860340] kmemleak:   comm "syz-executor.5", pid 3962, jiffies 4294786483
[  119.860353] kmemleak:   min_count = 1
[  119.860361] kmemleak:   count = 0
[  119.860368] kmemleak:   flags = 0x21
[  119.860375] kmemleak:   checksum = 0
[  119.860382] kmemleak:   backtrace:
[  119.860388]  pcpu_alloc_noprof+0x87a/0x1170
[  119.860417]  perf_trace_event_init+0x366/0xa10
[  119.860442]  perf_trace_init+0x1a4/0x2f0
[  119.860476]  perf_tp_event_init+0xa6/0x120
[  119.860505]  perf_try_init_event+0x140/0x9f0
[  119.860529]  perf_event_alloc.part.0+0x118e/0x45f0
[  119.860561]  __do_sys_perf_event_open+0x719/0x2c20
[  119.860585]  do_syscall_64+0xbf/0x360
[  119.860602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.873928] kmemleak: Found object by alias at 0x607f1a639554
[  119.873939] CPU: 1 UID: 0 PID: 3980 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  119.873960] Tainted: [W]=WARN
[  119.873964] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  119.873970] Call Trace:
[  119.873973]  <TASK>
[  119.873977]  dump_stack_lvl+0xca/0x120
[  119.873995]  __lookup_object+0x94/0xb0
[  119.874009]  delete_object_full+0x27/0x70
[  119.874025]  free_percpu+0x30/0x1160
[  119.874039]  ? arch_uprobe_clear_state+0x16/0x140
[  119.874057]  futex_hash_free+0x38/0xc0
[  119.874069]  mmput+0x2d3/0x390
[  119.874086]  do_exit+0x79d/0x2970
[  119.874103]  ? __pfx_do_exit+0x10/0x10
[  119.874116]  ? find_held_lock+0x2b/0x80
[  119.874133]  ? get_signal+0x835/0x2340
[  119.874152]  do_group_exit+0xd3/0x2a0
[  119.874167]  get_signal+0x2315/0x2340
[  119.874183]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  119.874199]  ? __pfx_get_signal+0x10/0x10
[  119.874215]  ? __schedule+0xe91/0x3590
[  119.874234]  arch_do_signal_or_restart+0x80/0x790
[  119.874251]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  119.874267]  ? __x64_sys_futex+0x1c9/0x4d0
[  119.874279]  ? __x64_sys_futex+0x1d2/0x4d0
[  119.874293]  ? __pfx___x64_sys_futex+0x10/0x10
[  119.874306]  ? xfd_validate_state+0x55/0x180
[  119.874326]  exit_to_user_mode_loop+0x8b/0x110
[  119.874339]  do_syscall_64+0x2f7/0x360
[  119.874350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:43:55 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000002c0)={[{@none}, {@name={'name', 0x3d, 'user.incfs.metadata\x00'}}]})

[  119.874360] RIP: 0033:0x7f75f45e8b19
[  119.874368] Code: Unable to access opcode bytes at 0x7f75f45e8aef.
[  119.874373] RSP: 002b:00007f75f1b5e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  119.874384] RAX: 0000000000000001 RBX: 00007f75f46fbf68 RCX: 00007f75f45e8b19
[  119.874391] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f75f46fbf6c
[  119.874398] RBP: 00007f75f46fbf60 R08: 0000000000000001 R09: 0000000000000000
[  119.874404] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f75f46fbf6c
[  119.874411] R13: 00007ffcf71757ff R14: 00007f75f1b5e300 R15: 0000000000022000
[  119.874427]  </TASK>
[  119.874430] kmemleak: Object (percpu) 0x607f1a639550 (size 8):
[  119.874437] kmemleak:   comm "syz-executor.2", pid 3959, jiffies 4294786547
[  119.874443] kmemleak:   min_count = 1
[  119.874447] kmemleak:   count = 0
[  119.874451] kmemleak:   flags = 0x21
[  119.874454] kmemleak:   checksum = 0
[  119.874458] kmemleak:   backtrace:
[  119.874461]  pcpu_alloc_noprof+0x87a/0x1170
[  119.874475]  alloc_vfsmnt+0x135/0x6e0
[  119.874488]  vfs_create_mount.part.0+0x40/0x440
[  119.874503]  path_mount+0x1637/0x1dd0
[  119.874513]  __x64_sys_mount+0x27b/0x300
[  119.874524]  do_syscall_64+0xbf/0x360
[  119.874532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
11:43:55 executing program 2:
madvise(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x11)

[  119.954914] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] SMP KASAN NOPTI
[  119.956845] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[  119.958579] CPU: 0 UID: 0 PID: 3982 Comm: syz-executor.7 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  119.962676] Tainted: [W]=WARN
[  119.964300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  119.966756] RIP: 0010:perf_trace_add+0x21b/0x340
[  119.968350] Code: 00 0f 85 3a 01 00 00 4c 89 75 00 4d 85 ed 74 2a e8 da b2 f5 ff 49 8d 7d 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 df 00 00 00 4d 89 75 08 eb 03 45 31 e4 e8 ad b2
[  119.971573] RSP: 0018:ffff8880483979c8 EFLAGS: 00010012
[  119.972423] RAX: dffffc0000000000 RBX: ffff88800964c4c0 RCX: ffffffff817e33ce
[  119.973553] RDX: 0000000000000001 RSI: ffffffff817e34a6 RDI: 0000000000000009
[  119.974676] RBP: ffffe8ffffc16550 R08: ffffffff85ca3e40 R09: ffffed1009072f80
[  119.975799] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  119.976925] R13: 0000000000000001 R14: ffff88800964c520 R15: ffff88800964c558
[  119.978050] FS:  00007f5f7c078700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  119.979312] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  119.980229] CR2: 00007fffb15bafe8 CR3: 000000001faa0000 CR4: 0000000000350ef0
[  119.981361] Call Trace:
[  119.981777]  <TASK>
[  119.982143]  event_sched_in+0x446/0xb60
[  119.982795]  merge_sched_in+0xb4d/0x1810
[  119.983446]  visit_groups_merge.constprop.0.isra.0+0x8d1/0x1150
[  119.984401]  ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10
[  119.985427]  ? lock_is_held_type+0x9e/0x120
[  119.986124]  ctx_sched_in+0x579/0x9b0
[  119.986734]  ? __pfx_ctx_sched_in+0x10/0x10
[  119.987420]  perf_event_sched_in+0x5d/0x90
[  119.988091]  __perf_event_task_sched_in+0x2ec/0x5e0
[  119.988892]  ? __pfx___perf_event_task_sched_in+0x10/0x10
[  119.989761]  ? lock_is_held_type+0x9e/0x120
[  119.990458]  ? xfd_validate_state+0x55/0x180
[  119.991180]  finish_task_switch.isra.0+0x410/0x840
[  119.991977]  __schedule+0xe86/0x3590
[  119.992596]  ? __pfx___schedule+0x10/0x10
[  119.993264]  ? __x64_sys_futex+0x1c9/0x4d0
[  119.993941]  ? __x64_sys_futex+0x1d2/0x4d0
[  119.994620]  ? __pfx___x64_sys_futex+0x10/0x10
[  119.995355]  schedule+0xdb/0x390
[  119.995911]  exit_to_user_mode_loop+0x69/0x110
[  119.996681]  do_syscall_64+0x2f7/0x360
[  119.997306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.998126] RIP: 0033:0x7f5f7eb02b19
[  119.998720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.001585] RSP: 002b:00007f5f7c078218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.002786] RAX: 0000000000000001 RBX: 00007f5f7ec15f68 RCX: 00007f5f7eb02b19
[  120.003907] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5f7ec15f6c
[  120.005041] RBP: 00007f5f7ec15f60 R08: 000000000000000e R09: 0000000000000000
[  120.006161] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f5f7ec15f6c
[  120.007278] R13: 00007ffd7a67e8bf R14: 00007f5f7c078300 R15: 0000000000022000
[  120.008407]  </TASK>
[  120.008792] Modules linked in:
[  120.009312] ---[ end trace 0000000000000000 ]---
[  120.010056] RIP: 0010:perf_trace_add+0x21b/0x340
[  120.010819] Code: 00 0f 85 3a 01 00 00 4c 89 75 00 4d 85 ed 74 2a e8 da b2 f5 ff 49 8d 7d 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 df 00 00 00 4d 89 75 08 eb 03 45 31 e4 e8 ad b2
[  120.013680] RSP: 0018:ffff8880483979c8 EFLAGS: 00010012
[  120.014521] RAX: dffffc0000000000 RBX: ffff88800964c4c0 RCX: ffffffff817e33ce
[  120.015645] RDX: 0000000000000001 RSI: ffffffff817e34a6 RDI: 0000000000000009
[  120.016770] RBP: ffffe8ffffc16550 R08: ffffffff85ca3e40 R09: ffffed1009072f80
[  120.017895] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  120.019020] R13: 0000000000000001 R14: ffff88800964c520 R15: ffff88800964c558
[  120.020142] FS:  00007f5f7c078700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  120.021414] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.022337] CR2: 00007fffb15bafe8 CR3: 000000001faa0000 CR4: 0000000000350ef0
[  120.023465] note: syz-executor.7[3982] exited with irqs disabled

VM DIAGNOSIS:
11:43:55  Registers:
info registers vcpu 0
RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888048397358
R8 =0000000000000000 R9 =ffffed10016d1046 R10=0000000000000000 R11=3a6465746e696154
R12=000000000000000d R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f5f7c078700 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe3b00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fffb15bafe8 CR3=000000001faa0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000ff000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000000 RBX=ffffffff84bb26df RCX=0000000000000001 RDX=1ffff11002e27f52
RSI=ffffffff81358702 RDI=ffffffff84bb26df RBP=ffffffff84bb26df RSP=ffff88801713f9e8
R8 =0000000000000001 R9 =ffff88801713fa78 R10=000000000003be53 R11=0000000000026393
R12=0000000000000001 R13=0000000000000000 R14=ffff88800f5f1b80 R15=ffffea0000272900
RIP=ffffffff81434d82 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f2826ed58c0 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe5100000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555594eb9c98 CR3=000000000b7da000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f
XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=696e656420737365636341002f737973
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000
XMM06=0000563fb2161a9000000000ffffffff XMM07=00000000000000000000000000000000
XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000
XMM10=00000000002020000000000000200000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000