Warning: Permanently added '[localhost]:24068' (ECDSA) to the list of known hosts.
2025/09/01 11:16:49 fuzzer started
2025/09/01 11:16:50 dialing manager at localhost:35473
syzkaller login: [   51.577676] cgroup: Unknown subsys name 'net'
[   52.022530] cgroup: Unknown subsys name 'cpuset'
[   52.045449] cgroup: Unknown subsys name 'rlimit'
2025/09/01 11:17:00 syscalls: 2214
2025/09/01 11:17:00 code coverage: enabled
2025/09/01 11:17:00 comparison tracing: enabled
2025/09/01 11:17:00 extra coverage: enabled
2025/09/01 11:17:00 setuid sandbox: enabled
2025/09/01 11:17:00 namespace sandbox: enabled
2025/09/01 11:17:00 Android sandbox: enabled
2025/09/01 11:17:00 fault injection: enabled
2025/09/01 11:17:00 leak checking: enabled
2025/09/01 11:17:00 net packet injection: enabled
2025/09/01 11:17:00 net device setup: enabled
2025/09/01 11:17:00 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 11:17:00 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 11:17:00 USB emulation: enabled
2025/09/01 11:17:00 hci packet injection: enabled
2025/09/01 11:17:00 wifi device emulation: enabled
2025/09/01 11:17:00 802.15.4 emulation: enabled
2025/09/01 11:17:00 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 11:17:00 fetching corpus: 48, signal 20101/23688 (executing program)
2025/09/01 11:17:01 fetching corpus: 98, signal 31878/36889 (executing program)
2025/09/01 11:17:01 fetching corpus: 148, signal 40719/46989 (executing program)
2025/09/01 11:17:01 fetching corpus: 198, signal 48653/56067 (executing program)
2025/09/01 11:17:01 fetching corpus: 248, signal 54370/62879 (executing program)
2025/09/01 11:17:01 fetching corpus: 298, signal 57786/67480 (executing program)
2025/09/01 11:17:01 fetching corpus: 348, signal 61364/72087 (executing program)
2025/09/01 11:17:01 fetching corpus: 398, signal 67467/78948 (executing program)
2025/09/01 11:17:01 fetching corpus: 448, signal 71641/83989 (executing program)
2025/09/01 11:17:01 fetching corpus: 498, signal 73848/87185 (executing program)
2025/09/01 11:17:01 fetching corpus: 548, signal 77882/91921 (executing program)
2025/09/01 11:17:01 fetching corpus: 598, signal 82373/96941 (executing program)
2025/09/01 11:17:02 fetching corpus: 648, signal 84086/99521 (executing program)
2025/09/01 11:17:02 fetching corpus: 698, signal 87571/103565 (executing program)
2025/09/01 11:17:02 fetching corpus: 748, signal 88922/105767 (executing program)
2025/09/01 11:17:02 fetching corpus: 798, signal 90216/107888 (executing program)
2025/09/01 11:17:02 fetching corpus: 848, signal 92056/110382 (executing program)
2025/09/01 11:17:02 fetching corpus: 898, signal 93747/112777 (executing program)
2025/09/01 11:17:02 fetching corpus: 948, signal 95612/115293 (executing program)
2025/09/01 11:17:02 fetching corpus: 998, signal 96562/116983 (executing program)
2025/09/01 11:17:02 fetching corpus: 1048, signal 98809/119658 (executing program)
2025/09/01 11:17:02 fetching corpus: 1098, signal 102009/123087 (executing program)
2025/09/01 11:17:03 fetching corpus: 1148, signal 103484/125094 (executing program)
2025/09/01 11:17:03 fetching corpus: 1198, signal 105443/127400 (executing program)
2025/09/01 11:17:03 fetching corpus: 1248, signal 106690/129182 (executing program)
2025/09/01 11:17:03 fetching corpus: 1298, signal 107947/130991 (executing program)
2025/09/01 11:17:03 fetching corpus: 1347, signal 109143/132676 (executing program)
2025/09/01 11:17:03 fetching corpus: 1397, signal 110525/134501 (executing program)
2025/09/01 11:17:03 fetching corpus: 1447, signal 111845/136217 (executing program)
2025/09/01 11:17:03 fetching corpus: 1497, signal 112790/137689 (executing program)
2025/09/01 11:17:03 fetching corpus: 1547, signal 114045/139357 (executing program)
2025/09/01 11:17:03 fetching corpus: 1597, signal 114980/140756 (executing program)
2025/09/01 11:17:04 fetching corpus: 1647, signal 116146/142229 (executing program)
2025/09/01 11:17:04 fetching corpus: 1697, signal 116990/143547 (executing program)
2025/09/01 11:17:04 fetching corpus: 1747, signal 118750/145417 (executing program)
2025/09/01 11:17:04 fetching corpus: 1797, signal 119916/146845 (executing program)
2025/09/01 11:17:04 fetching corpus: 1847, signal 120822/148159 (executing program)
2025/09/01 11:17:04 fetching corpus: 1897, signal 122323/149798 (executing program)
2025/09/01 11:17:04 fetching corpus: 1947, signal 123422/151108 (executing program)
2025/09/01 11:17:04 fetching corpus: 1997, signal 124270/152270 (executing program)
2025/09/01 11:17:04 fetching corpus: 2047, signal 124881/153279 (executing program)
2025/09/01 11:17:04 fetching corpus: 2097, signal 125627/154379 (executing program)
2025/09/01 11:17:04 fetching corpus: 2147, signal 126519/155556 (executing program)
2025/09/01 11:17:05 fetching corpus: 2197, signal 127262/156646 (executing program)
2025/09/01 11:17:05 fetching corpus: 2247, signal 127989/157691 (executing program)
2025/09/01 11:17:05 fetching corpus: 2297, signal 128613/158718 (executing program)
2025/09/01 11:17:05 fetching corpus: 2347, signal 129226/159665 (executing program)
2025/09/01 11:17:05 fetching corpus: 2397, signal 129935/160625 (executing program)
2025/09/01 11:17:05 fetching corpus: 2447, signal 130948/161705 (executing program)
2025/09/01 11:17:05 fetching corpus: 2497, signal 131753/162672 (executing program)
2025/09/01 11:17:05 fetching corpus: 2547, signal 132465/163625 (executing program)
2025/09/01 11:17:05 fetching corpus: 2597, signal 133359/164662 (executing program)
2025/09/01 11:17:05 fetching corpus: 2646, signal 133859/165489 (executing program)
2025/09/01 11:17:05 fetching corpus: 2696, signal 134789/166448 (executing program)
2025/09/01 11:17:06 fetching corpus: 2746, signal 135569/167349 (executing program)
2025/09/01 11:17:06 fetching corpus: 2796, signal 136226/168178 (executing program)
2025/09/01 11:17:06 fetching corpus: 2846, signal 136793/168949 (executing program)
2025/09/01 11:17:06 fetching corpus: 2896, signal 137538/169784 (executing program)
2025/09/01 11:17:06 fetching corpus: 2946, signal 138048/170515 (executing program)
2025/09/01 11:17:06 fetching corpus: 2996, signal 138995/171455 (executing program)
2025/09/01 11:17:06 fetching corpus: 3046, signal 139651/172225 (executing program)
2025/09/01 11:17:06 fetching corpus: 3096, signal 140054/172906 (executing program)
2025/09/01 11:17:06 fetching corpus: 3146, signal 140662/173604 (executing program)
2025/09/01 11:17:06 fetching corpus: 3196, signal 141471/174400 (executing program)
2025/09/01 11:17:06 fetching corpus: 3246, signal 142008/175044 (executing program)
2025/09/01 11:17:07 fetching corpus: 3296, signal 142988/175837 (executing program)
2025/09/01 11:17:07 fetching corpus: 3346, signal 143470/176509 (executing program)
2025/09/01 11:17:07 fetching corpus: 3396, signal 144453/177262 (executing program)
2025/09/01 11:17:07 fetching corpus: 3446, signal 144999/177878 (executing program)
2025/09/01 11:17:07 fetching corpus: 3496, signal 145609/178522 (executing program)
2025/09/01 11:17:07 fetching corpus: 3546, signal 146776/179286 (executing program)
2025/09/01 11:17:07 fetching corpus: 3596, signal 147313/179872 (executing program)
2025/09/01 11:17:07 fetching corpus: 3646, signal 147775/180451 (executing program)
2025/09/01 11:17:07 fetching corpus: 3696, signal 148690/181067 (executing program)
2025/09/01 11:17:07 fetching corpus: 3746, signal 149188/181627 (executing program)
2025/09/01 11:17:07 fetching corpus: 3796, signal 149779/182160 (executing program)
2025/09/01 11:17:07 fetching corpus: 3846, signal 150757/182704 (executing program)
2025/09/01 11:17:07 fetching corpus: 3896, signal 151099/183195 (executing program)
2025/09/01 11:17:08 fetching corpus: 3946, signal 151467/183701 (executing program)
2025/09/01 11:17:08 fetching corpus: 3996, signal 152195/184211 (executing program)
2025/09/01 11:17:08 fetching corpus: 4046, signal 152614/184715 (executing program)
2025/09/01 11:17:08 fetching corpus: 4096, signal 153155/185210 (executing program)
2025/09/01 11:17:08 fetching corpus: 4146, signal 153802/185655 (executing program)
2025/09/01 11:17:08 fetching corpus: 4196, signal 154195/186094 (executing program)
2025/09/01 11:17:08 fetching corpus: 4246, signal 154738/186527 (executing program)
2025/09/01 11:17:08 fetching corpus: 4296, signal 155448/186982 (executing program)
2025/09/01 11:17:08 fetching corpus: 4346, signal 156110/187417 (executing program)
2025/09/01 11:17:08 fetching corpus: 4396, signal 156494/187765 (executing program)
2025/09/01 11:17:08 fetching corpus: 4446, signal 157284/188155 (executing program)
2025/09/01 11:17:09 fetching corpus: 4496, signal 157784/188538 (executing program)
2025/09/01 11:17:09 fetching corpus: 4546, signal 158265/188931 (executing program)
2025/09/01 11:17:09 fetching corpus: 4596, signal 158776/189257 (executing program)
2025/09/01 11:17:09 fetching corpus: 4646, signal 159387/189437 (executing program)
2025/09/01 11:17:09 fetching corpus: 4696, signal 159850/189442 (executing program)
2025/09/01 11:17:09 fetching corpus: 4746, signal 160169/189484 (executing program)
2025/09/01 11:17:09 fetching corpus: 4796, signal 160618/189513 (executing program)
2025/09/01 11:17:09 fetching corpus: 4846, signal 161095/189527 (executing program)
2025/09/01 11:17:09 fetching corpus: 4896, signal 161419/189530 (executing program)
2025/09/01 11:17:09 fetching corpus: 4946, signal 161741/189532 (executing program)
2025/09/01 11:17:09 fetching corpus: 4996, signal 162303/189539 (executing program)
2025/09/01 11:17:09 fetching corpus: 5046, signal 162906/189554 (executing program)
2025/09/01 11:17:10 fetching corpus: 5096, signal 163474/189556 (executing program)
2025/09/01 11:17:10 fetching corpus: 5146, signal 163945/189572 (executing program)
2025/09/01 11:17:10 fetching corpus: 5196, signal 164457/189580 (executing program)
2025/09/01 11:17:10 fetching corpus: 5246, signal 164916/189600 (executing program)
2025/09/01 11:17:10 fetching corpus: 5296, signal 165275/189612 (executing program)
2025/09/01 11:17:10 fetching corpus: 5346, signal 165627/189612 (executing program)
2025/09/01 11:17:10 fetching corpus: 5396, signal 165952/189620 (executing program)
2025/09/01 11:17:10 fetching corpus: 5446, signal 166255/189643 (executing program)
2025/09/01 11:17:10 fetching corpus: 5496, signal 166562/189646 (executing program)
2025/09/01 11:17:10 fetching corpus: 5546, signal 167237/189650 (executing program)
2025/09/01 11:17:10 fetching corpus: 5596, signal 167529/189651 (executing program)
2025/09/01 11:17:10 fetching corpus: 5646, signal 167818/189661 (executing program)
2025/09/01 11:17:11 fetching corpus: 5696, signal 168250/189665 (executing program)
2025/09/01 11:17:11 fetching corpus: 5746, signal 168648/189669 (executing program)
2025/09/01 11:17:11 fetching corpus: 5796, signal 169088/189680 (executing program)
2025/09/01 11:17:11 fetching corpus: 5846, signal 169348/189684 (executing program)
2025/09/01 11:17:11 fetching corpus: 5896, signal 169770/189686 (executing program)
2025/09/01 11:17:11 fetching corpus: 5946, signal 170137/189693 (executing program)
2025/09/01 11:17:11 fetching corpus: 5996, signal 170438/189695 (executing program)
2025/09/01 11:17:11 fetching corpus: 6046, signal 170805/189704 (executing program)
2025/09/01 11:17:11 fetching corpus: 6096, signal 171214/189705 (executing program)
2025/09/01 11:17:11 fetching corpus: 6146, signal 171481/189705 (executing program)
2025/09/01 11:17:11 fetching corpus: 6196, signal 171804/189709 (executing program)
2025/09/01 11:17:11 fetching corpus: 6246, signal 172066/189720 (executing program)
2025/09/01 11:17:11 fetching corpus: 6296, signal 172391/189720 (executing program)
2025/09/01 11:17:12 fetching corpus: 6346, signal 172982/189724 (executing program)
2025/09/01 11:17:12 fetching corpus: 6396, signal 173722/189754 (executing program)
2025/09/01 11:17:12 fetching corpus: 6446, signal 174068/189792 (executing program)
2025/09/01 11:17:12 fetching corpus: 6496, signal 174371/189799 (executing program)
2025/09/01 11:17:12 fetching corpus: 6546, signal 174556/189808 (executing program)
2025/09/01 11:17:12 fetching corpus: 6596, signal 174783/189814 (executing program)
2025/09/01 11:17:12 fetching corpus: 6646, signal 175111/189824 (executing program)
2025/09/01 11:17:12 fetching corpus: 6696, signal 175425/189831 (executing program)
2025/09/01 11:17:12 fetching corpus: 6746, signal 176115/189832 (executing program)
2025/09/01 11:17:12 fetching corpus: 6796, signal 176571/189835 (executing program)
2025/09/01 11:17:12 fetching corpus: 6846, signal 177100/189888 (executing program)
2025/09/01 11:17:12 fetching corpus: 6896, signal 177491/189896 (executing program)
2025/09/01 11:17:12 fetching corpus: 6946, signal 177846/189902 (executing program)
2025/09/01 11:17:13 fetching corpus: 6996, signal 178256/189907 (executing program)
2025/09/01 11:17:13 fetching corpus: 7046, signal 178755/190033 (executing program)
2025/09/01 11:17:13 fetching corpus: 7096, signal 179146/190035 (executing program)
2025/09/01 11:17:13 fetching corpus: 7146, signal 179411/190042 (executing program)
2025/09/01 11:17:13 fetching corpus: 7196, signal 179882/190071 (executing program)
2025/09/01 11:17:13 fetching corpus: 7246, signal 180178/190076 (executing program)
2025/09/01 11:17:13 fetching corpus: 7296, signal 180491/190076 (executing program)
2025/09/01 11:17:13 fetching corpus: 7346, signal 180931/190093 (executing program)
2025/09/01 11:17:13 fetching corpus: 7396, signal 181220/190098 (executing program)
2025/09/01 11:17:13 fetching corpus: 7446, signal 181703/190112 (executing program)
2025/09/01 11:17:13 fetching corpus: 7496, signal 181938/190119 (executing program)
2025/09/01 11:17:13 fetching corpus: 7546, signal 182161/190139 (executing program)
2025/09/01 11:17:14 fetching corpus: 7596, signal 182398/190145 (executing program)
2025/09/01 11:17:14 fetching corpus: 7646, signal 182799/190147 (executing program)
2025/09/01 11:17:14 fetching corpus: 7696, signal 183143/190183 (executing program)
2025/09/01 11:17:14 fetching corpus: 7746, signal 183505/190185 (executing program)
2025/09/01 11:17:14 fetching corpus: 7796, signal 183753/190190 (executing program)
2025/09/01 11:17:14 fetching corpus: 7846, signal 184457/190198 (executing program)
2025/09/01 11:17:14 fetching corpus: 7896, signal 184672/190199 (executing program)
2025/09/01 11:17:14 fetching corpus: 7946, signal 185045/190203 (executing program)
2025/09/01 11:17:14 fetching corpus: 7996, signal 185368/190209 (executing program)
2025/09/01 11:17:14 fetching corpus: 8046, signal 185575/190213 (executing program)
2025/09/01 11:17:14 fetching corpus: 8096, signal 185794/190213 (executing program)
2025/09/01 11:17:15 fetching corpus: 8146, signal 186050/190215 (executing program)
2025/09/01 11:17:15 fetching corpus: 8196, signal 186312/190216 (executing program)
2025/09/01 11:17:15 fetching corpus: 8246, signal 186521/190236 (executing program)
2025/09/01 11:17:15 fetching corpus: 8296, signal 186733/190243 (executing program)
2025/09/01 11:17:15 fetching corpus: 8346, signal 186973/190257 (executing program)
2025/09/01 11:17:15 fetching corpus: 8396, signal 187373/190263 (executing program)
2025/09/01 11:17:15 fetching corpus: 8433, signal 187572/190266 (executing program)
2025/09/01 11:17:15 fetching corpus: 8433, signal 187572/190266 (executing program)
2025/09/01 11:17:18 starting 8 fuzzer processes
11:17:18 executing program 0:
setresuid(0x0, 0x0, 0xee01)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x24001)

11:17:18 executing program 2:
r0 = io_uring_setup(0x3e96, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_PROBE(r0, 0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, '\x00', [{}, {}]}, 0x2)

11:17:18 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x80, 0x8})

11:17:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r1, 0x1, 0x0, 0x0, {0x22}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0)

11:17:18 executing program 7:
lstat(&(0x7f0000000180)='./cgroup/cgroup.procs\x00', &(0x7f00000001c0))

11:17:18 executing program 4:
r0 = io_uring_setup(0x6aff, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0x9, 0x0, 0x2)

[   79.177550] audit: type=1400 audit(1756725438.267:7): avc:  denied  { execmem } for  pid=275 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:17:18 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x22, 0x0, 0x0)

11:17:18 executing program 6:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
writev(r1, &(0x7f00000018c0)=[{&(0x7f00000004c0)="ad", 0x1}], 0x1)
fcntl$setstatus(r1, 0x4, 0x2000)
vmsplice(r0, &(0x7f0000002e80)=[{&(0x7f0000000000)='/', 0x1}], 0x1, 0x0)

[   80.290382] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   80.292565] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   80.294808] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   80.302509] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   80.305426] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   80.485418] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   80.491912] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   80.493674] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   80.496736] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   80.498983] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   80.510623] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   80.518736] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   80.522087] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   80.523619] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   80.529079] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   80.532323] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   80.536355] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   80.537760] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   80.538449] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   80.540702] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   80.543502] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   80.547974] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   80.549517] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   80.551203] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   80.554834] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   80.557807] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   80.561843] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   80.564802] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   80.598728] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   80.600563] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   80.603552] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   80.604838] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   80.609628] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   80.634587] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   80.665390] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   80.667616] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   80.669602] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   80.670744] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   80.713855] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   80.735513] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   82.322691] Bluetooth: hci0: command tx timeout
[   82.513108] Bluetooth: hci2: command tx timeout
[   82.577164] Bluetooth: hci1: command tx timeout
[   82.643172] Bluetooth: hci5: command tx timeout
[   82.643253] Bluetooth: hci3: command tx timeout
[   82.707080] Bluetooth: hci6: command tx timeout
[   82.707853] Bluetooth: hci4: command tx timeout
[   82.834358] Bluetooth: hci7: command tx timeout
[   84.369131] Bluetooth: hci0: command tx timeout
[   84.562065] Bluetooth: hci2: command tx timeout
[   84.625148] Bluetooth: hci1: command tx timeout
[   84.689092] Bluetooth: hci5: command tx timeout
[   84.689107] Bluetooth: hci3: command tx timeout
[   84.753094] Bluetooth: hci6: command tx timeout
[   84.753499] Bluetooth: hci4: command tx timeout
[   84.881106] Bluetooth: hci7: command tx timeout
[   86.417809] Bluetooth: hci0: command tx timeout
[   86.609101] Bluetooth: hci2: command tx timeout
[   86.673112] Bluetooth: hci1: command tx timeout
[   86.737144] Bluetooth: hci5: command tx timeout
[   86.738180] Bluetooth: hci3: command tx timeout
[   86.802269] Bluetooth: hci4: command tx timeout
[   86.802298] Bluetooth: hci6: command tx timeout
[   86.929206] Bluetooth: hci7: command tx timeout
[   88.465096] Bluetooth: hci0: command tx timeout
[   88.657365] Bluetooth: hci2: command tx timeout
[   88.721064] Bluetooth: hci1: command tx timeout
[   88.785087] Bluetooth: hci3: command tx timeout
[   88.785230] Bluetooth: hci5: command tx timeout
[   88.849715] Bluetooth: hci4: command tx timeout
[   88.850193] Bluetooth: hci6: command tx timeout
[   88.978032] Bluetooth: hci7: command tx timeout
[  117.324239] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.324911] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.513066] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.513700] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.656381] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.657052] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.913344] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.913938] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.953372] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.954289] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.959169] audit: type=1400 audit(1756725477.047:8): avc:  denied  { open } for  pid=3823 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  117.966201] audit: type=1400 audit(1756725477.047:9): avc:  denied  { kernel } for  pid=3823 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  118.042846] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.043505] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:17:57 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x3e, 0x0, &(0x7f00000018c0))

11:17:57 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@multicast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "000010", 0x8, 0x3a, 0x0, @remote, @local, {[], @mlv2_report}}}}}, 0x0)

11:17:57 executing program 1:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r1 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x400005})
pwritev2(r0, &(0x7f0000000040)=[{&(0x7f00000008c0)='!', 0x1}], 0x1, 0x8001, 0x0, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendfile(r2, r3, 0x0, 0xa0103)

[  118.199041] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.199688] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.245838] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
11:17:57 executing program 5:
r0 = memfd_secret(0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000100), &(0x7f00000001c0)={0x0, 0xfb, 0x15, 0x0, 0x0, "71bbb78e83117277133c16cb81fa76c1"}, 0x15, 0x0)

11:17:57 executing program 1:
r0 = epoll_create1(0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$sock_SIOCBRADDBR(0xffffffffffffffff, 0x89a0, &(0x7f0000000040)='bond_slave_1\x00')
r1 = epoll_create1(0x80000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth1_to_bond\x00'})
r2 = perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x9, 0xec, 0x2, 0x0, 0x0, 0x10000, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3f, 0x5, @perf_config_ext={0x6}, 0x8, 0x7, 0x7, 0x4, 0xce, 0x76a, 0xbad, 0x0, 0xb2, 0x0, 0x8}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x2)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
ioctl$NS_GET_PARENT(r2, 0xb702, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan0\x00'})
syz_io_uring_setup(0x41d0, &(0x7f0000000300)={0x0, 0xed54, 0x0, 0x0, 0x159}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000380)=<r3=>0x0, &(0x7f00000003c0))
syz_io_uring_submit(r3, 0x0, &(0x7f0000000400)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd_index=0x5, 0x2, {0x0, r0}, 0x2, 0x0, 0x1, {0x0, 0x0, r1}}, 0x3)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000000440)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
openat$zero(0xffffffffffffff9c, &(0x7f0000000900), 0x0, 0x0)

11:17:57 executing program 5:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000003e80), 0x0, 0x0)
pread64(r0, 0x0, 0x0, 0x0)

[  118.340874] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.341806] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:17:57 executing program 1:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00')
ioctl$NS_GET_USERNS(r0, 0xb701, 0x0)

11:17:57 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f0000000000)={@local})

[  118.431481] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.432102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.546062] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.546678] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.593261] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.593898] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.669552] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.670335] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.877373] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.877947] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.912574] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.913546] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.009844] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.010504] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.034886] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.035511] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
11:17:58 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = socket$inet(0x2, 0x3, 0x26)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
read(r0, 0x0, 0x0)

11:17:58 executing program 0:
setresuid(0x0, 0x0, 0xee01)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x24001)

11:17:58 executing program 4:
r0 = io_uring_setup(0x6aff, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0x9, 0x0, 0x2)

11:17:58 executing program 2:
r0 = io_uring_setup(0x3e96, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_PROBE(r0, 0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, '\x00', [{}, {}]}, 0x2)

11:17:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r1, 0x1, 0x0, 0x0, {0x22}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0)

11:17:58 executing program 7:
r0 = epoll_create(0x25)
ioctl$int_out(r0, 0x2, &(0x7f0000000cc0))

11:17:58 executing program 1:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0x40045402, &(0x7f0000000240)=0x1)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40345410, &(0x7f0000000040)={{0x1}})
ioctl$int_in(r0, 0x5452, &(0x7f0000000200)=0x6)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x5})
r1 = dup(r0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x5420, 0x0)

11:17:58 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f0000000000)={@local})

11:17:58 executing program 4:
r0 = io_uring_setup(0x6aff, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0x9, 0x0, 0x2)

11:17:58 executing program 7:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
readv(r0, &(0x7f0000000540)=[{&(0x7f00000005c0)=""/138, 0x8a}, {&(0x7f0000000700)=""/122, 0x7a}], 0x2)

11:17:58 executing program 2:
r0 = io_uring_setup(0x3e96, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_PROBE(r0, 0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, '\x00', [{}, {}]}, 0x2)

11:17:58 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = socket$inet(0x2, 0x3, 0x26)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
read(r0, 0x0, 0x0)

11:17:58 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000001800)=@req={0x8000, 0x9}, 0x10)

11:17:58 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f0000000000)={@local})

11:17:58 executing program 0:
setresuid(0x0, 0x0, 0xee01)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x24001)

11:17:58 executing program 4:
r0 = io_uring_setup(0x6aff, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0x9, 0x0, 0x2)

11:17:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r1, 0x1, 0x0, 0x0, {0x22}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0)

11:17:58 executing program 2:
r0 = io_uring_setup(0x3e96, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_PROBE(r0, 0x8, &(0x7f0000000080)={0x0, 0x0, 0x0, '\x00', [{}, {}]}, 0x2)

11:17:58 executing program 7:
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @icmp={{0x9, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local, {[@lsrr={0x83, 0x7, 0x0, [@local]}, @timestamp_prespec={0x44, 0x4}, @timestamp={0x44, 0x4}]}}}}}}, 0x0)

11:17:58 executing program 7:
socket$inet6(0xa, 0x3, 0x5)

11:17:58 executing program 0:
setresuid(0x0, 0x0, 0xee01)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x24001)

11:17:58 executing program 4:
semop(0x0, &(0x7f0000002f80)=[{0x0, 0x0, 0x1800}], 0x1)

11:17:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r1, 0x1, 0x0, 0x0, {0x22}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0)

11:17:58 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000001800)=@req={0x8000, 0x9}, 0x10)

11:17:58 executing program 2:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCCONS(r0, 0x541d)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

11:17:58 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f0000000000)={@local})

11:17:58 executing program 0:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xb1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
lsetxattr$security_selinux(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180)='system_u:object_r:usbtty_device_t:s0\x00', 0x21, 0x0)

11:17:58 executing program 4:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r1, 0x4004662b, &(0x7f0000000000))
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, r0, 0xa, 0xffffffffffffffff, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

11:17:58 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = socket$inet(0x2, 0x3, 0x26)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
read(r0, 0x0, 0x0)

11:17:58 executing program 7:
socketpair(0x0, 0x1192c5a4079e8706, 0x0, 0x0)

[  119.506720] Oops: general protection fault, probably for non-canonical address 0xdffffc0040000001: 0000 [#1] SMP KASAN NOPTI
[  119.507650] KASAN: probably user-memory-access in range [0x0000000200000008-0x000000020000000f]
[  119.508359] CPU: 0 UID: 0 PID: 3961 Comm: syz-executor.5 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  119.510085] Tainted: [W]=WARN
[  119.510901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  119.512565] RIP: 0010:perf_trace_add+0x21b/0x340
[  119.513940] Code: 00 0f 85 3a 01 00 00 4c 89 75 00 4d 85 ed 74 2a e8 da b2 f5 ff 49 8d 7d 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 df 00 00 00 4d 89 75 08 eb 03 45 31 e4 e8 ad b2
[  119.517565] RSP: 0018:ffff888017be7748 EFLAGS: 00010012
[  119.517991] RAX: dffffc0000000000 RBX: ffff888009649f40 RCX: ffffc900072c3000
[  119.518556] RDX: 0000000040000001 RSI: ffffffff817e43d6 RDI: 0000000200000008
[  119.519120] RBP: ffffe8ffffc166d0 R08: ffffffff85ca4140 R09: ffffed1002f7cf3f
[  119.519686] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  119.520251] R13: 0000000200000000 R14: ffff888009649fa0 R15: ffff888009649fd8
[  119.520814] FS:  00007f6a7a2d7700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  119.521445] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  119.521911] CR2: 00007f05c8f12000 CR3: 000000001ead1000 CR4: 0000000000350ef0
[  119.522479] Call Trace:
[  119.522687]  <TASK>
[  119.522870]  event_sched_in+0x446/0xb60
[  119.523199]  merge_sched_in+0xb4d/0x1810
[  119.523536]  visit_groups_merge.constprop.0.isra.0+0x8d1/0x1150
[  119.524020]  ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10
[  119.524530]  ? lock_is_held_type+0x9e/0x120
[  119.524886]  ctx_sched_in+0x579/0x9b0
[  119.525193]  ? __pfx_ctx_sched_in+0x10/0x10
[  119.525535]  ? arch_stack_walk+0x9c/0xf0
[  119.525867]  perf_event_sched_in+0x5d/0x90
[  119.526207]  ctx_resched+0x398/0x840
[  119.526511]  __perf_install_in_context+0x436/0xb90
[  119.526908]  ? __pfx___perf_install_in_context+0x10/0x10
[  119.527336]  remote_function+0x129/0x1b0
[  119.527683]  ? __pfx_remote_function+0x10/0x10
[  119.528055]  generic_exec_single+0x1ca/0x2c0
[  119.528417]  smp_call_function_single+0x327/0x420
[  119.528808]  ? __pfx_remote_function+0x10/0x10
[  119.529183]  ? __pfx_smp_call_function_single+0x10/0x10
[  119.529612]  ? __pfx_remote_function+0x10/0x10
[  119.529983]  ? trace_kmem_cache_alloc+0x1f/0xb0
[  119.530358]  ? kmem_cache_alloc_noprof+0x264/0x690
[  119.530758]  ? percpu_counter_add_batch+0x126/0x240
[  119.531161]  ? __pfx___perf_install_in_context+0x10/0x10
[  119.531601]  task_function_call+0xe4/0x170
[  119.531942]  ? __pfx_task_function_call+0x10/0x10
[  119.532332]  ? __pfx___perf_install_in_context+0x10/0x10
[  119.532761]  ? exclusive_event_installable+0x25a/0x330
[  119.533182]  ? lock_is_held_type+0x9e/0x120
[  119.533529]  perf_install_in_context+0x2ca/0x570
[  119.533912]  ? __pfx_perf_install_in_context+0x10/0x10
[  119.534330]  ? lock_is_held_type+0x9e/0x120
[  119.534679]  ? __perf_event_read_size+0xbe/0xd0
[  119.535056]  __do_sys_perf_event_open+0x1992/0x2c20
[  119.535115] kmemleak: Found object by alias at 0x607f1a63e6d4
[  119.535139] CPU: 1 UID: 0 PID: 3959 Comm: syz-executor.7 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  119.535159] Tainted: [W]=WARN
[  119.535162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  119.535170] Call Trace:
[  119.535174]  <TASK>
[  119.535179]  dump_stack_lvl+0xca/0x120
[  119.535205]  __lookup_object+0x94/0xb0
[  119.535222]  delete_object_full+0x27/0x70
[  119.535237]  free_percpu+0x30/0x1160
[  119.535255]  ? arch_uprobe_clear_state+0x16/0x140
[  119.535273]  futex_hash_free+0x38/0xc0
[  119.535288]  mmput+0x2d3/0x390
[  119.535306]  do_exit+0x79d/0x2970
[  119.535320]  ? signal_wake_up_state+0x85/0x120
[  119.535335]  ? zap_other_threads+0x2b9/0x3a0
[  119.535362]  ? __pfx_do_exit+0x10/0x10
[  119.535375]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  119.535392]  ? lock_release+0x1c7/0x290
[  119.535406]  do_group_exit+0xd3/0x2a0
[  119.535420]  __x64_sys_exit_group+0x3e/0x50
[  119.535434]  x64_sys_call+0x18c5/0x18d0
[  119.535450]  do_syscall_64+0xbf/0x360
[  119.535462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.535474] RIP: 0033:0x7fd702568b19
[  119.535483] Code: Unable to access opcode bytes at 0x7fd702568aef.
[  119.535488] RSP: 002b:00007ffc4a8b4fd8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  119.535500] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fd702568b19
[  119.535508] RDX: 00007fd70251b72b RSI: ffffffffffffffbc RDI: 0000000000000000
[  119.535515] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[  119.535522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.535528] R13: 0000000000000001 R14: 0000000000000001 R15: 00007ffc4a8b50c0
[  119.535539]  </TASK>
[  119.535542] kmemleak: Object (percpu) 0x607f1a63e6d0 (size 8):
[  119.535549] kmemleak:   comm "syz-executor.5", pid 3961, jiffies 4294786236
[  119.535557] kmemleak:   min_count = 1
[  119.535560] kmemleak:   count = 0
[  119.535564] kmemleak:   flags = 0x21
[  119.535568] kmemleak:   checksum = 0
[  119.535572] kmemleak:   backtrace:
[  119.535575]  pcpu_alloc_noprof+0x87a/0x1170
[  119.535595]  perf_trace_event_init+0x366/0xa10
[  119.535610]  perf_trace_init+0x1a4/0x2f0
[  119.535622]  perf_tp_event_init+0xa6/0x120
[  119.535639]  perf_try_init_event+0x140/0x9f0
[  119.535653]  perf_event_alloc.part.0+0x118e/0x45f0
[  119.535670]  __do_sys_perf_event_open+0x719/0x2c20
[  119.535684]  do_syscall_64+0xbf/0x360
[  119.535693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.553630]  ? __pfx___do_sys_perf_event_open+0x10/0x10
[  119.554059]  ? find_held_lock+0x2b/0x80
[  119.554392]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  119.554815]  do_syscall_64+0xbf/0x360
[  119.555129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.555550] RIP: 0033:0x7f6a7cd61b19
[  119.555846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  119.557278] RSP: 002b:00007f6a7a2d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  119.557877] RAX: ffffffffffffffda RBX: 00007f6a7ce74f60 RCX: 00007f6a7cd61b19
[  119.558435] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000340
[  119.559003] RBP: 00007f6a7cdbbf6d R08: 0000000000000000 R09: 0000000000000000
[  119.559575] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  119.560139] R13: 00007fff8befefef R14: 00007f6a7a2d7300 R15: 0000000000022000
[  119.560709]  </TASK>
[  119.560898] Modules linked in:
[  119.561160] ---[ end trace 0000000000000000 ]---
[  119.561535] RIP: 0010:perf_trace_add+0x21b/0x340
[  119.561916] Code: 00 0f 85 3a 01 00 00 4c 89 75 00 4d 85 ed 74 2a e8 da b2 f5 ff 49 8d 7d 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 df 00 00 00 4d 89 75 08 eb 03 45 31 e4 e8 ad b2
[  119.563356] RSP: 0018:ffff888017be7748 EFLAGS: 00010012
[  119.563779] RAX: dffffc0000000000 RBX: ffff888009649f40 RCX: ffffc900072c3000
[  119.564344] RDX: 0000000040000001 RSI: ffffffff817e43d6 RDI: 0000000200000008
[  119.564904] RBP: ffffe8ffffc166d0 R08: ffffffff85ca4140 R09: ffffed1002f7cf3f
[  119.565465] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  119.566031] R13: 0000000200000000 R14: ffff888009649fa0 R15: ffff888009649fd8
[  119.566598] FS:  00007f6a7a2d7700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  119.567229] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  119.567695] CR2: 00007f05c8f12000 CR3: 000000001ead1000 CR4: 0000000000350ef0
[  119.568262] note: syz-executor.5[3961] exited with irqs disabled
[  119.569495] note: syz-executor.5[3961] exited with preempt_count 3

VM DIAGNOSIS:
11:17:58  Registers:
info registers vcpu 0
RAX=0000000000000078 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff888017be7098
R8 =0000000000000000 R9 =ffffed10016d1046 R10=0000000000000078 R11=000000003a504952
R12=0000000000000078 R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f6a7a2d7700 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe2f00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f05c8f12000 CR3=000000001ead1000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=00007f7b98f85648 RBX=00007f7b98f854e0 RCX=ffffffff83c241d0 RDX=ffffffff83c1644c
RSI=00007f7b98f854e8 RDI=ffffffff83c37a69 RBP=00007f7b98f854b0 RSP=00007ffc1b488570
R8 =00007f7b98f856d8 R9 =0000001b2d5210bc R10=0000000000001a85 R11=00000000343b9a89
R12=00007f7b98f854a8 R13=00007f7b98f854e0 R14=00007f7b98f854a0 R15=000000000000000b
RIP=00007f7b991b29cd RFL=00000293 [--S-A-C] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055557d9bf400 00000000 00000000
GS =0000 0000000000000000 00000000 00000000
LDT=0000 fffffe1600000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d522000 CR3=0000000045d28000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000ffff000000000000ffffffff
XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007f7b992eb7c800007f7b992eb7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000