Warning: Permanently added '[localhost]:43907' (ECDSA) to the list of known hosts.
2025/09/01 10:07:17 fuzzer started
2025/09/01 10:07:17 dialing manager at localhost:35473
syzkaller login: [ 59.855165] cgroup: Unknown subsys name 'net'
[ 59.925336] cgroup: Unknown subsys name 'cpuset'
[ 59.945503] cgroup: Unknown subsys name 'rlimit'
2025/09/01 10:07:27 syscalls: 2214
2025/09/01 10:07:27 code coverage: enabled
2025/09/01 10:07:27 comparison tracing: enabled
2025/09/01 10:07:27 extra coverage: enabled
2025/09/01 10:07:27 setuid sandbox: enabled
2025/09/01 10:07:27 namespace sandbox: enabled
2025/09/01 10:07:27 Android sandbox: enabled
2025/09/01 10:07:27 fault injection: enabled
2025/09/01 10:07:27 leak checking: enabled
2025/09/01 10:07:27 net packet injection: enabled
2025/09/01 10:07:27 net device setup: enabled
2025/09/01 10:07:27 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 10:07:27 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 10:07:27 USB emulation: enabled
2025/09/01 10:07:27 hci packet injection: enabled
2025/09/01 10:07:27 wifi device emulation: enabled
2025/09/01 10:07:27 802.15.4 emulation: enabled
2025/09/01 10:07:27 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 10:07:27 fetching corpus: 50, signal 16253/19850 (executing program)
2025/09/01 10:07:27 fetching corpus: 100, signal 28726/33687 (executing program)
2025/09/01 10:07:27 fetching corpus: 150, signal 39904/46015 (executing program)
2025/09/01 10:07:27 fetching corpus: 200, signal 48247/55344 (executing program)
2025/09/01 10:07:27 fetching corpus: 250, signal 55889/63895 (executing program)
2025/09/01 10:07:27 fetching corpus: 300, signal 59488/68538 (executing program)
2025/09/01 10:07:28 fetching corpus: 350, signal 63303/73258 (executing program)
2025/09/01 10:07:28 fetching corpus: 400, signal 67104/77898 (executing program)
2025/09/01 10:07:28 fetching corpus: 450, signal 70604/82183 (executing program)
2025/09/01 10:07:28 fetching corpus: 500, signal 72483/84970 (executing program)
2025/09/01 10:07:28 fetching corpus: 550, signal 75654/88822 (executing program)
2025/09/01 10:07:28 fetching corpus: 600, signal 78660/92455 (executing program)
2025/09/01 10:07:28 fetching corpus: 650, signal 81715/96028 (executing program)
2025/09/01 10:07:28 fetching corpus: 700, signal 84040/98962 (executing program)
2025/09/01 10:07:28 fetching corpus: 750, signal 86489/101946 (executing program)
2025/09/01 10:07:28 fetching corpus: 800, signal 88939/104825 (executing program)
2025/09/01 10:07:29 fetching corpus: 850, signal 90449/106921 (executing program)
2025/09/01 10:07:29 fetching corpus: 900, signal 92613/109526 (executing program)
2025/09/01 10:07:29 fetching corpus: 950, signal 94538/111918 (executing program)
2025/09/01 10:07:29 fetching corpus: 1000, signal 96012/113905 (executing program)
2025/09/01 10:07:29 fetching corpus: 1050, signal 97447/115852 (executing program)
2025/09/01 10:07:29 fetching corpus: 1100, signal 98751/117681 (executing program)
2025/09/01 10:07:29 fetching corpus: 1150, signal 99787/119229 (executing program)
2025/09/01 10:07:29 fetching corpus: 1200, signal 100724/120676 (executing program)
2025/09/01 10:07:29 fetching corpus: 1250, signal 101621/122108 (executing program)
2025/09/01 10:07:29 fetching corpus: 1300, signal 103174/123970 (executing program)
2025/09/01 10:07:29 fetching corpus: 1350, signal 104144/125408 (executing program)
2025/09/01 10:07:30 fetching corpus: 1400, signal 105204/126876 (executing program)
2025/09/01 10:07:30 fetching corpus: 1450, signal 106137/128239 (executing program)
2025/09/01 10:07:30 fetching corpus: 1500, signal 107340/129744 (executing program)
2025/09/01 10:07:30 fetching corpus: 1550, signal 108404/131135 (executing program)
2025/09/01 10:07:30 fetching corpus: 1600, signal 109491/132544 (executing program)
2025/09/01 10:07:30 fetching corpus: 1650, signal 110229/133701 (executing program)
2025/09/01 10:07:30 fetching corpus: 1700, signal 112992/136035 (executing program)
2025/09/01 10:07:30 fetching corpus: 1750, signal 114013/137261 (executing program)
2025/09/01 10:07:30 fetching corpus: 1800, signal 115052/138488 (executing program)
2025/09/01 10:07:30 fetching corpus: 1850, signal 115997/139627 (executing program)
2025/09/01 10:07:31 fetching corpus: 1900, signal 117201/140867 (executing program)
2025/09/01 10:07:31 fetching corpus: 1950, signal 118064/141947 (executing program)
2025/09/01 10:07:31 fetching corpus: 2000, signal 118808/142924 (executing program)
2025/09/01 10:07:31 fetching corpus: 2050, signal 119536/143929 (executing program)
2025/09/01 10:07:31 fetching corpus: 2100, signal 120492/144953 (executing program)
2025/09/01 10:07:31 fetching corpus: 2150, signal 122583/146531 (executing program)
2025/09/01 10:07:31 fetching corpus: 2200, signal 123888/147733 (executing program)
2025/09/01 10:07:31 fetching corpus: 2250, signal 125372/148898 (executing program)
2025/09/01 10:07:31 fetching corpus: 2300, signal 126205/149752 (executing program)
2025/09/01 10:07:31 fetching corpus: 2350, signal 127459/150829 (executing program)
2025/09/01 10:07:32 fetching corpus: 2400, signal 128072/151572 (executing program)
2025/09/01 10:07:32 fetching corpus: 2450, signal 128964/152429 (executing program)
2025/09/01 10:07:32 fetching corpus: 2500, signal 129692/153212 (executing program)
2025/09/01 10:07:32 fetching corpus: 2550, signal 132181/154657 (executing program)
2025/09/01 10:07:32 fetching corpus: 2600, signal 133435/155543 (executing program)
2025/09/01 10:07:32 fetching corpus: 2650, signal 134131/156244 (executing program)
2025/09/01 10:07:32 fetching corpus: 2700, signal 134949/156908 (executing program)
2025/09/01 10:07:32 fetching corpus: 2750, signal 135862/157686 (executing program)
2025/09/01 10:07:32 fetching corpus: 2800, signal 136349/158247 (executing program)
2025/09/01 10:07:32 fetching corpus: 2850, signal 137205/158861 (executing program)
2025/09/01 10:07:33 fetching corpus: 2900, signal 137830/159417 (executing program)
2025/09/01 10:07:33 fetching corpus: 2950, signal 139119/160126 (executing program)
2025/09/01 10:07:33 fetching corpus: 3000, signal 139782/160678 (executing program)
2025/09/01 10:07:33 fetching corpus: 3050, signal 140351/161200 (executing program)
2025/09/01 10:07:33 fetching corpus: 3100, signal 141076/161787 (executing program)
2025/09/01 10:07:33 fetching corpus: 3150, signal 141790/162328 (executing program)
2025/09/01 10:07:33 fetching corpus: 3200, signal 142492/162802 (executing program)
2025/09/01 10:07:33 fetching corpus: 3250, signal 143167/163256 (executing program)
2025/09/01 10:07:33 fetching corpus: 3300, signal 143643/163671 (executing program)
2025/09/01 10:07:33 fetching corpus: 3350, signal 144280/164095 (executing program)
2025/09/01 10:07:33 fetching corpus: 3400, signal 144774/164503 (executing program)
2025/09/01 10:07:33 fetching corpus: 3450, signal 145140/164872 (executing program)
2025/09/01 10:07:33 fetching corpus: 3500, signal 145483/165210 (executing program)
2025/09/01 10:07:34 fetching corpus: 3550, signal 146002/165604 (executing program)
2025/09/01 10:07:34 fetching corpus: 3600, signal 146566/165951 (executing program)
2025/09/01 10:07:34 fetching corpus: 3650, signal 147132/166270 (executing program)
2025/09/01 10:07:34 fetching corpus: 3700, signal 147958/166592 (executing program)
2025/09/01 10:07:34 fetching corpus: 3750, signal 148301/166878 (executing program)
2025/09/01 10:07:34 fetching corpus: 3800, signal 148927/167190 (executing program)
2025/09/01 10:07:34 fetching corpus: 3850, signal 149392/167476 (executing program)
2025/09/01 10:07:34 fetching corpus: 3900, signal 150115/167750 (executing program)
2025/09/01 10:07:34 fetching corpus: 3950, signal 150925/168010 (executing program)
2025/09/01 10:07:34 fetching corpus: 4000, signal 151513/168357 (executing program)
2025/09/01 10:07:35 fetching corpus: 4050, signal 152070/168582 (executing program)
2025/09/01 10:07:35 fetching corpus: 4100, signal 152429/168802 (executing program)
2025/09/01 10:07:35 fetching corpus: 4150, signal 152815/168834 (executing program)
2025/09/01 10:07:35 fetching corpus: 4200, signal 153230/168837 (executing program)
2025/09/01 10:07:35 fetching corpus: 4250, signal 153716/168852 (executing program)
2025/09/01 10:07:35 fetching corpus: 4300, signal 154212/168855 (executing program)
2025/09/01 10:07:35 fetching corpus: 4350, signal 154796/168860 (executing program)
2025/09/01 10:07:35 fetching corpus: 4400, signal 155200/168868 (executing program)
2025/09/01 10:07:35 fetching corpus: 4450, signal 155890/168927 (executing program)
2025/09/01 10:07:35 fetching corpus: 4500, signal 156372/168929 (executing program)
2025/09/01 10:07:35 fetching corpus: 4550, signal 156645/168939 (executing program)
2025/09/01 10:07:36 fetching corpus: 4600, signal 157041/168947 (executing program)
2025/09/01 10:07:36 fetching corpus: 4650, signal 157410/168985 (executing program)
2025/09/01 10:07:36 fetching corpus: 4700, signal 157887/169001 (executing program)
2025/09/01 10:07:36 fetching corpus: 4750, signal 158409/169010 (executing program)
2025/09/01 10:07:36 fetching corpus: 4800, signal 158838/169025 (executing program)
2025/09/01 10:07:36 fetching corpus: 4850, signal 159274/169093 (executing program)
2025/09/01 10:07:36 fetching corpus: 4900, signal 159669/169102 (executing program)
2025/09/01 10:07:36 fetching corpus: 4950, signal 160074/169112 (executing program)
2025/09/01 10:07:36 fetching corpus: 5000, signal 160569/169155 (executing program)
2025/09/01 10:07:36 fetching corpus: 5050, signal 161230/169159 (executing program)
2025/09/01 10:07:37 fetching corpus: 5100, signal 161697/169162 (executing program)
2025/09/01 10:07:37 fetching corpus: 5150, signal 162125/169172 (executing program)
2025/09/01 10:07:37 fetching corpus: 5200, signal 162579/169173 (executing program)
2025/09/01 10:07:37 fetching corpus: 5250, signal 163053/169178 (executing program)
2025/09/01 10:07:37 fetching corpus: 5300, signal 163483/169203 (executing program)
2025/09/01 10:07:37 fetching corpus: 5350, signal 163963/169214 (executing program)
2025/09/01 10:07:37 fetching corpus: 5400, signal 164314/169223 (executing program)
2025/09/01 10:07:37 fetching corpus: 5450, signal 165175/169260 (executing program)
2025/09/01 10:07:37 fetching corpus: 5500, signal 165596/169263 (executing program)
2025/09/01 10:07:37 fetching corpus: 5550, signal 166213/169271 (executing program)
2025/09/01 10:07:38 fetching corpus: 5581, signal 166490/169279 (executing program)
2025/09/01 10:07:38 fetching corpus: 5581, signal 166490/169279 (executing program)
2025/09/01 10:07:39 starting 8 fuzzer processes
10:07:39 executing program 0:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/module/hid_apple', 0x0, 0x0)
ioctl$FIONCLEX(r0, 0x5450)
10:07:39 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000080), 0x8)
10:07:39 executing program 5:
r0 = epoll_create1(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0000008})
epoll_wait(r0, &(0x7f0000000100)=[{}], 0x1, 0x0)
10:07:39 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_int(r0, 0x1, 0xb, 0x0, &(0x7f0000000040))
10:07:39 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000008840)={&(0x7f0000008580), 0xc, &(0x7f0000008800)={&(0x7f0000008780)={0x14}, 0x14}}, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000088c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000008a00)={0x0, 0x0, &(0x7f00000089c0)={&(0x7f0000008900)={0x14, r1, 0x1}, 0x14}}, 0x0)
[ 81.574297] audit: type=1400 audit(1756721259.753:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
10:07:39 executing program 3:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
accept$inet(0xffffffffffffffff, 0x0, 0x0)
10:07:39 executing program 6:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f0000002680)=[{{&(0x7f0000000180)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000200)="a5ebb0440c3943d75022b49464b9", 0xe}], 0x1, &(0x7f0000000640)=[{0x10}, {0x10}], 0x20}}, {{&(0x7f00000008c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x80, 0x0}}], 0x2, 0x0)
10:07:39 executing program 4:
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$vcsu(&(0x7f00000000c0), 0x6, 0x0)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x1f}, 0x0, 0x0, 0x0)
[ 82.748272] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 82.754136] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 82.756260] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 82.758078] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 82.760182] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 82.762450] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 82.767344] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 82.769706] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 82.772470] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 82.774361] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 82.879544] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 82.883150] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 82.884599] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 82.886464] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 82.888503] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 82.890623] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 82.890963] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 82.893357] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 82.893452] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 82.897141] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 82.898434] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 82.900315] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 82.903167] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 82.903715] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 82.906135] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 82.906348] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 82.912336] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 82.913021] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 82.929176] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 82.933036] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 82.941804] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 82.970157] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 82.978039] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 82.980126] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 82.981377] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 82.994260] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 82.995757] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 82.998782] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 83.045226] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 83.047518] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 84.837770] Bluetooth: hci1: command tx timeout
[ 84.838503] Bluetooth: hci0: command tx timeout
[ 84.965050] Bluetooth: hci4: command tx timeout
[ 84.966306] Bluetooth: hci5: command tx timeout
[ 85.028965] Bluetooth: hci2: command tx timeout
[ 85.028985] Bluetooth: hci3: command tx timeout
[ 85.092949] Bluetooth: hci7: command tx timeout
[ 85.095929] Bluetooth: hci6: command tx timeout
[ 86.884979] Bluetooth: hci0: command tx timeout
[ 86.885929] Bluetooth: hci1: command tx timeout
[ 87.014021] Bluetooth: hci5: command tx timeout
[ 87.014073] Bluetooth: hci4: command tx timeout
[ 87.077110] Bluetooth: hci3: command tx timeout
[ 87.077939] Bluetooth: hci2: command tx timeout
[ 87.141019] Bluetooth: hci6: command tx timeout
[ 87.141820] Bluetooth: hci7: command tx timeout
[ 88.934971] Bluetooth: hci1: command tx timeout
[ 88.935451] Bluetooth: hci0: command tx timeout
[ 89.061093] Bluetooth: hci4: command tx timeout
[ 89.061542] Bluetooth: hci5: command tx timeout
[ 89.125012] Bluetooth: hci2: command tx timeout
[ 89.125112] Bluetooth: hci3: command tx timeout
[ 89.188973] Bluetooth: hci7: command tx timeout
[ 89.188994] Bluetooth: hci6: command tx timeout
[ 90.980920] Bluetooth: hci1: command tx timeout
[ 90.982969] Bluetooth: hci0: command tx timeout
[ 91.108945] Bluetooth: hci5: command tx timeout
[ 91.109416] Bluetooth: hci4: command tx timeout
[ 91.172943] Bluetooth: hci3: command tx timeout
[ 91.173102] Bluetooth: hci2: command tx timeout
[ 91.237070] Bluetooth: hci7: command tx timeout
[ 91.237502] Bluetooth: hci6: command tx timeout
[ 121.702482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.703825] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.944210] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.944840] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.196911] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.197517] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:08:20 executing program 6:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f0000002680)=[{{&(0x7f0000000180)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000200)="a5ebb0440c3943d75022b49464b9", 0xe}], 0x1, &(0x7f0000000640)=[{0x10}, {0x10}], 0x20}}, {{&(0x7f00000008c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x80, 0x0}}], 0x2, 0x0)
10:08:20 executing program 6:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f0000002680)=[{{&(0x7f0000000180)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000200)="a5ebb0440c3943d75022b49464b9", 0xe}], 0x1, &(0x7f0000000640)=[{0x10}, {0x10}], 0x20}}, {{&(0x7f00000008c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x80, 0x0}}], 0x2, 0x0)
[ 122.386762] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.387527] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.454763] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.456245] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:08:20 executing program 6:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f0000002680)=[{{&(0x7f0000000180)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000200)="a5ebb0440c3943d75022b49464b9", 0xe}], 0x1, &(0x7f0000000640)=[{0x10}, {0x10}], 0x20}}, {{&(0x7f00000008c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x80, 0x0}}], 0x2, 0x0)
10:08:20 executing program 6:
r0 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x10)
[ 122.621631] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.623035] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:08:20 executing program 6:
r0 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x10)
10:08:20 executing program 6:
r0 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x10)
[ 122.832409] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.833296] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
10:08:21 executing program 6:
r0 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x10)
10:08:21 executing program 4:
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$vcsu(&(0x7f00000000c0), 0x6, 0x0)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x1f}, 0x0, 0x0, 0x0)
[ 122.906272] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.907016] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.075281] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.075847] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.083383] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.084397] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.136999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.137620] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.184648] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.185896] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.241278] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.241948] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.286203] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.286812] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.322388] audit: type=1400 audit(1756721301.500:8): avc: denied { block_suspend } for pid=3896 comm="syz-executor.5" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[ 123.436352] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.436999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.481464] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.482078] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.579660] audit: type=1400 audit(1756721301.758:9): avc: denied { open } for pid=3905 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[ 123.581338] audit: type=1400 audit(1756721301.758:10): avc: denied { kernel } for pid=3905 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
10:08:21 executing program 0:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/module/hid_apple', 0x0, 0x0)
ioctl$FIONCLEX(r0, 0x5450)
10:08:21 executing program 6:
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$vcsu(&(0x7f00000000c0), 0x6, 0x0)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x1f}, 0x0, 0x0, 0x0)
10:08:21 executing program 4:
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$vcsu(&(0x7f00000000c0), 0x6, 0x0)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x1f}, 0x0, 0x0, 0x0)
10:08:21 executing program 3:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
accept$inet(0xffffffffffffffff, 0x0, 0x0)
10:08:21 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_int(r0, 0x1, 0xb, 0x0, &(0x7f0000000040))
10:08:21 executing program 5:
r0 = epoll_create1(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0000008})
epoll_wait(r0, &(0x7f0000000100)=[{}], 0x1, 0x0)
10:08:21 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000080), 0x8)
10:08:21 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000008840)={&(0x7f0000008580), 0xc, &(0x7f0000008800)={&(0x7f0000008780)={0x14}, 0x14}}, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000088c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000008a00)={0x0, 0x0, &(0x7f00000089c0)={&(0x7f0000008900)={0x14, r1, 0x1}, 0x14}}, 0x0)
10:08:21 executing program 6:
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$vcsu(&(0x7f00000000c0), 0x6, 0x0)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x1f}, 0x0, 0x0, 0x0)
10:08:21 executing program 3:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
accept$inet(0xffffffffffffffff, 0x0, 0x0)
10:08:21 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000008840)={&(0x7f0000008580), 0xc, &(0x7f0000008800)={&(0x7f0000008780)={0x14}, 0x14}}, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000088c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000008a00)={0x0, 0x0, &(0x7f00000089c0)={&(0x7f0000008900)={0x14, r1, 0x1}, 0x14}}, 0x0)
10:08:21 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_int(r0, 0x1, 0xb, 0x0, &(0x7f0000000040))
10:08:21 executing program 5:
r0 = epoll_create1(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0000008})
epoll_wait(r0, &(0x7f0000000100)=[{}], 0x1, 0x0)
10:08:21 executing program 4:
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$vcsu(&(0x7f00000000c0), 0x6, 0x0)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x1f}, 0x0, 0x0, 0x0)
10:08:21 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000080), 0x8)
10:08:22 executing program 0:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/module/hid_apple', 0x0, 0x0)
ioctl$FIONCLEX(r0, 0x5450)
10:08:22 executing program 6:
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$vcsu(&(0x7f00000000c0), 0x6, 0x0)
pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x1f}, 0x0, 0x0, 0x0)
10:08:22 executing program 3:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
accept$inet(0xffffffffffffffff, 0x0, 0x0)
10:08:22 executing program 5:
r0 = epoll_create1(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0000008})
epoll_wait(r0, &(0x7f0000000100)=[{}], 0x1, 0x0)
10:08:22 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000080), 0x8)
10:08:22 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_int(r0, 0x1, 0xb, 0x0, &(0x7f0000000040))
10:08:22 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000008840)={&(0x7f0000008580), 0xc, &(0x7f0000008800)={&(0x7f0000008780)={0x14}, 0x14}}, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000088c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000008a00)={0x0, 0x0, &(0x7f00000089c0)={&(0x7f0000008900)={0x14, r1, 0x1}, 0x14}}, 0x0)
10:08:22 executing program 4:
r0 = epoll_create1(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0000008})
epoll_wait(r0, &(0x7f0000000100)=[{}], 0x1, 0x0)
[ 124.019713] kmemleak: Found object by alias at 0x607f1a63e32c
[ 124.019734] CPU: 0 UID: 0 PID: 3940 Comm: syz-executor.2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.019753] Tainted: [W]=WARN
[ 124.019756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.019764] Call Trace:
[ 124.019768]
[ 124.019773] dump_stack_lvl+0xca/0x120
[ 124.019800] __lookup_object+0x94/0xb0
[ 124.019818] delete_object_full+0x27/0x70
[ 124.019835] free_percpu+0x30/0x1160
[ 124.019853] ? arch_uprobe_clear_state+0x16/0x140
[ 124.019878] futex_hash_free+0x38/0xc0
[ 124.019892] mmput+0x2d3/0x390
[ 124.019912] do_exit+0x79d/0x2970
[ 124.019925] ? signal_wake_up_state+0x85/0x120
[ 124.019942] ? zap_other_threads+0x2b9/0x3a0
[ 124.019958] ? __pfx_do_exit+0x10/0x10
[ 124.019971] ? do_group_exit+0x1c3/0x2a0
[ 124.019985] ? lock_release+0xc8/0x290
[ 124.020002] do_group_exit+0xd3/0x2a0
[ 124.020017] __x64_sys_exit_group+0x3e/0x50
[ 124.020031] x64_sys_call+0x18c5/0x18d0
[ 124.020048] do_syscall_64+0xbf/0x360
[ 124.020061] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.020072] RIP: 0033:0x7f4d5199cb19
[ 124.020081] Code: Unable to access opcode bytes at 0x7f4d5199caef.
[ 124.020086] RSP: 002b:00007ffe53cf19f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 124.020098] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f4d5199cb19
[ 124.020106] RDX: 00007f4d5194f72b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 124.020113] RBP: 0000000000000000 R08: 0000001b2d521224 R09: 0000000000000000
[ 124.020120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 124.020127] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffe53cf1ae0
[ 124.020142]
[ 124.020146] kmemleak: Object (percpu) 0x607f1a63e328 (size 16):
[ 124.020153] kmemleak: comm "syz-executor.7", pid 284, jiffies 4294790813
[ 124.020160] kmemleak: min_count = 1
[ 124.020164] kmemleak: count = 0
[ 124.020167] kmemleak: flags = 0x21
[ 124.020171] kmemleak: checksum = 0
[ 124.020175] kmemleak: backtrace:
[ 124.020178] pcpu_alloc_noprof+0x87a/0x1170
[ 124.020194] mm_init+0x99b/0x1170
[ 124.020203] copy_process+0x3ab7/0x73c0
[ 124.020213] kernel_clone+0xea/0x7f0
[ 124.020223] __do_sys_clone+0xce/0x120
[ 124.020233] do_syscall_64+0xbf/0x360
[ 124.020242] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.041192] kmemleak: Found object by alias at 0x607f1a63e330
[ 124.041204] CPU: 0 UID: 0 PID: 3939 Comm: syz-executor.7 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.041221] Tainted: [W]=WARN
[ 124.041225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.041231] Call Trace:
[ 124.041234]
[ 124.041238] dump_stack_lvl+0xca/0x120
[ 124.041257] __lookup_object+0x94/0xb0
[ 124.041272] delete_object_full+0x27/0x70
[ 124.041289] free_percpu+0x30/0x1160
[ 124.041304] ? arch_uprobe_clear_state+0x16/0x140
[ 124.041325] futex_hash_free+0x38/0xc0
[ 124.041340] mmput+0x2d3/0x390
[ 124.041363] do_exit+0x79d/0x2970
[ 124.041376] ? signal_wake_up_state+0x85/0x120
[ 124.041391] ? zap_other_threads+0x2b9/0x3a0
[ 124.041407] ? __pfx_do_exit+0x10/0x10
[ 124.041420] ? do_group_exit+0x1c3/0x2a0
[ 124.041434] ? lock_release+0xc8/0x290
[ 124.041450] do_group_exit+0xd3/0x2a0
[ 124.041465] __x64_sys_exit_group+0x3e/0x50
[ 124.041479] x64_sys_call+0x18c5/0x18d0
[ 124.041494] do_syscall_64+0xbf/0x360
[ 124.041506] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.041517] RIP: 0033:0x7f051ccc2b19
[ 124.041525] Code: Unable to access opcode bytes at 0x7f051ccc2aef.
[ 124.041530] RSP: 002b:00007fff367e25b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 124.041541] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f051ccc2b19
[ 124.041549] RDX: 00007f051cc7572b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 124.041556] RBP: 0000000000000000 R08: 0000001b2d32547c R09: 0000000000000000
[ 124.041563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 124.041570] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fff367e26a0
[ 124.041585]
[ 124.041589] kmemleak: Object (percpu) 0x607f1a63e328 (size 16):
[ 124.041595] kmemleak: comm "syz-executor.7", pid 284, jiffies 4294790813
[ 124.041602] kmemleak: min_count = 1
[ 124.041606] kmemleak: count = 0
[ 124.041609] kmemleak: flags = 0x21
[ 124.041613] kmemleak: checksum = 0
[ 124.041617] kmemleak: backtrace:
[ 124.041620] pcpu_alloc_noprof+0x87a/0x1170
[ 124.041635] mm_init+0x99b/0x1170
[ 124.041643] copy_process+0x3ab7/0x73c0
[ 124.041653] kernel_clone+0xea/0x7f0
[ 124.041663] __do_sys_clone+0xce/0x120
[ 124.041674] do_syscall_64+0xbf/0x360
[ 124.041683] entry_SYSCALL_64_after_hwframe+0x77/0x7f
10:08:22 executing program 0:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/module/hid_apple', 0x0, 0x0)
ioctl$FIONCLEX(r0, 0x5450)
10:08:22 executing program 5:
ioprio_get$pid(0x3, 0x0)
10:08:22 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = eventfd2(0x0, 0x0)
io_setup(0x2, &(0x7f0000000080)=0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
io_submit(r1, 0x2, &(0x7f0000003f40)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f00000003c0)="c41fc8df8e306a88296dc1454c1de06e0156618c150a161b5d391c17c7a06c29bed22099377ea0c7016a4b5107a4add21a22c780d656e5e7fda8236c9690c15a17aec72c33da656f652b75b6203bd78576e3e64acb159f5756db3d303754db1d33c9810378f6e61a8c7cf02f3c3e3101e937457fe6e32d2b6dca962f70fc8eb1536845e613c8f52f0bfbb17b4c879006c9665a87f975d7f87826", 0x9a, 0x0, 0x0, 0x1, r0}, 0x0])
10:08:22 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r1 = dup(r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000100)={0x53, 0x0, 0x6, 0xe5, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000080)="a873d6abd06f", 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0})
10:08:22 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
clone3(&(0x7f00000015c0)={0x20000180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
10:08:22 executing program 4:
r0 = epoll_create1(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0000008})
epoll_wait(r0, &(0x7f0000000100)=[{}], 0x1, 0x0)
10:08:22 executing program 1:
ftruncate(0xffffffffffffffff, 0xfffffffffffffff9)
10:08:22 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x1c, r1, 0x5, 0x0, 0x0, {{0x4b}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0)
10:08:22 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
clone3(&(0x7f00000015c0)={0x20000180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
10:08:22 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r1 = dup(r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000100)={0x53, 0x0, 0x6, 0xe5, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000080)="a873d6abd06f", 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0})
10:08:22 executing program 0:
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
10:08:22 executing program 1:
ftruncate(0xffffffffffffffff, 0xfffffffffffffff9)
10:08:22 executing program 4:
r0 = epoll_create1(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xb0000008})
epoll_wait(r0, &(0x7f0000000100)=[{}], 0x1, 0x0)
10:08:22 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xed, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000240))
10:08:22 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
clone3(&(0x7f00000015c0)={0x20000180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
10:08:22 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000ddf4655fddf4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000014100))
[ 124.433376] kmemleak: Found object by alias at 0x607f1a63e330
[ 124.433393] CPU: 0 UID: 0 PID: 3975 Comm: syz-executor.7 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.433411] Tainted: [W]=WARN
[ 124.433415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.433422] Call Trace:
[ 124.433426]
[ 124.433431] dump_stack_lvl+0xca/0x120
[ 124.433458] __lookup_object+0x94/0xb0
[ 124.433476] delete_object_full+0x27/0x70
[ 124.433492] free_percpu+0x30/0x1160
[ 124.433509] ? arch_uprobe_clear_state+0x16/0x140
[ 124.433530] futex_hash_free+0x38/0xc0
[ 124.433544] mmput+0x2d3/0x390
[ 124.433564] do_exit+0x79d/0x2970
[ 124.433578] ? lock_release+0xc8/0x290
[ 124.433595] ? __pfx_do_exit+0x10/0x10
[ 124.433609] ? find_held_lock+0x2b/0x80
[ 124.433626] ? get_signal+0x835/0x2340
[ 124.433647] do_group_exit+0xd3/0x2a0
[ 124.433662] get_signal+0x2315/0x2340
[ 124.433679] ? sg_new_read+0x397/0x5f0
[ 124.433698] ? 0xffffffff81000000
[ 124.433710] ? __pfx_get_signal+0x10/0x10
[ 124.433727] ? do_futex+0x135/0x370
[ 124.433740] ? __pfx_do_futex+0x10/0x10
[ 124.433756] arch_do_signal_or_restart+0x80/0x790
[ 124.433774] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 124.433791] ? __x64_sys_futex+0x1c9/0x4d0
[ 124.433803] ? __x64_sys_futex+0x1d2/0x4d0
[ 124.433818] ? __pfx___x64_sys_futex+0x10/0x10
[ 124.433831] ? selinux_file_ioctl+0xb9/0x280
[ 124.433853] exit_to_user_mode_loop+0x8b/0x110
[ 124.433870] do_syscall_64+0x2f7/0x360
[ 124.433883] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.433895] RIP: 0033:0x7f051ccc2b19
[ 124.433903] Code: Unable to access opcode bytes at 0x7f051ccc2aef.
[ 124.433909] RSP: 002b:00007f051a238218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 124.433920] RAX: fffffffffffffe00 RBX: 00007f051cdd5f68 RCX: 00007f051ccc2b19
[ 124.433928] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f051cdd5f68
[ 124.433935] RBP: 00007f051cdd5f60 R08: 0000000000000000 R09: 0000000000000000
[ 124.433942] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f051cdd5f6c
[ 124.433949] R13: 00007fff367e238f R14: 00007f051a238300 R15: 0000000000022000
[ 124.433965]
[ 124.433969] kmemleak: Object (percpu) 0x607f1a63e328 (size 16):
[ 124.433976] kmemleak: comm "syz-executor.4", pid 289, jiffies 4294791269
[ 124.433983] kmemleak: min_count = 1
[ 124.433986] kmemleak: count = 0
[ 124.433990] kmemleak: flags = 0x21
[ 124.433994] kmemleak: checksum = 0
[ 124.433997] kmemleak: backtrace:
[ 124.434001] pcpu_alloc_noprof+0x87a/0x1170
[ 124.434017] mm_init+0x99b/0x1170
[ 124.434025] copy_process+0x3ab7/0x73c0
[ 124.434035] kernel_clone+0xea/0x7f0
[ 124.434045] __do_sys_clone+0xce/0x120
[ 124.434055] do_syscall_64+0xbf/0x360
[ 124.434065] entry_SYSCALL_64_after_hwframe+0x77/0x7f
10:08:22 executing program 1:
ftruncate(0xffffffffffffffff, 0xfffffffffffffff9)
[ 124.483381] kmemleak: Cannot insert 0x607f1a63e330 into the object search tree (overlaps existing)
[ 124.483411] CPU: 1 UID: 0 PID: 3986 Comm: syz-executor.5 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.483447] Tainted: [W]=WARN
[ 124.483454] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.483467] Call Trace:
[ 124.483475]
[ 124.483485] dump_stack_lvl+0xca/0x120
[ 124.483528] __link_object+0x190/0x210
[ 124.483563] __create_object+0x48/0x80
[ 124.483599] pcpu_alloc_noprof+0x87a/0x1170
[ 124.483647] perf_trace_event_init+0x366/0xa10
[ 124.483676] ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 124.483714] perf_trace_init+0x1a4/0x2f0
[ 124.483745] perf_tp_event_init+0xa6/0x120
[ 124.483780] perf_try_init_event+0x140/0x9f0
[ 124.483815] perf_event_alloc.part.0+0x118e/0x45f0
[ 124.483852] ? perf_event_alloc.part.0+0x1074/0x45f0
[ 124.483903] ? __fget_files+0x203/0x3b0
[ 124.483934] ? __pfx_perf_event_alloc.part.0+0x10/0x10
[ 124.483971] ? find_held_lock+0x2b/0x80
[ 124.484007] ? __do_sys_perf_event_open+0x11df/0x2c20
[ 124.484042] __do_sys_perf_event_open+0x719/0x2c20
[ 124.484081] ? __pfx___do_sys_perf_event_open+0x10/0x10
[ 124.484109] ? find_held_lock+0x2b/0x80
10:08:22 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
clone3(&(0x7f00000015c0)={0x20000180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
[ 124.484164] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 124.484194] do_syscall_64+0xbf/0x360
[ 124.484219] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.484243] RIP: 0033:0x7f77d6a88b19
[ 124.484260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 124.484282] RSP: 002b:00007f77d3ffe188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 124.484304] RAX: ffffffffffffffda RBX: 00007f77d6b9bf60 RCX: 00007f77d6a88b19
[ 124.484320] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[ 124.484334] RBP: 00007f77d6ae2f6d R08: 0000000000000000 R09: 0000000000000000
[ 124.484347] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 124.484362] R13: 00007fffdd4268af R14: 00007f77d3ffe300 R15: 0000000000022000
[ 124.484393]
[ 124.485117] kmemleak: Kernel memory leak detector disabled
[ 124.485124] kmemleak: Object (percpu) 0x607f1a63e328 (size 16):
[ 124.485139] kmemleak: comm "syz-executor.4", pid 289, jiffies 4294791269
[ 124.485152] kmemleak: min_count = 1
[ 124.485160] kmemleak: count = 0
[ 124.485167] kmemleak: flags = 0x21
[ 124.485175] kmemleak: checksum = 0
[ 124.485182] kmemleak: backtrace:
[ 124.485188] pcpu_alloc_noprof+0x87a/0x1170
[ 124.485220] mm_init+0x99b/0x1170
[ 124.485237] copy_process+0x3ab7/0x73c0
[ 124.485258] kernel_clone+0xea/0x7f0
[ 124.485278] __do_sys_clone+0xce/0x120
[ 124.485298] do_syscall_64+0xbf/0x360
[ 124.485317] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.545757] loop0: detected capacity change from 0 to 4
[ 124.549276] EXT4-fs (loop0): fragment/cluster size (32768) != block size (2048)
[ 124.558577] kmemleak: Found object by alias at 0x607f1a63e32c
[ 124.558603] CPU: 1 UID: 0 PID: 3959 Comm: syz-executor.2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.558639] Tainted: [W]=WARN
[ 124.558647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.558660] Call Trace:
[ 124.558667]
[ 124.558676] dump_stack_lvl+0xca/0x120
[ 124.558721] __lookup_object+0x94/0xb0
[ 124.558753] delete_object_full+0x27/0x70
[ 124.558786] free_percpu+0x30/0x1160
[ 124.558819] ? arch_uprobe_clear_state+0x16/0x140
[ 124.558865] futex_hash_free+0x38/0xc0
[ 124.558893] mmput+0x2d3/0x390
[ 124.558929] do_exit+0x79d/0x2970
[ 124.558956] ? signal_wake_up_state+0x85/0x120
[ 124.558987] ? zap_other_threads+0x2b9/0x3a0
[ 124.559019] ? __pfx_do_exit+0x10/0x10
[ 124.559045] ? do_group_exit+0x1c3/0x2a0
[ 124.559073] ? lock_release+0xc8/0x290
[ 124.559106] do_group_exit+0xd3/0x2a0
[ 124.559136] __x64_sys_exit_group+0x3e/0x50
[ 124.559164] x64_sys_call+0x18c5/0x18d0
[ 124.559195] do_syscall_64+0xbf/0x360
[ 124.559220] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.559242] RIP: 0033:0x7f4d5199cb19
[ 124.559260] Code: Unable to access opcode bytes at 0x7f4d5199caef.
[ 124.559270] RSP: 002b:00007ffe53cf19f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 124.559292] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f4d5199cb19
[ 124.559307] RDX: 00007f4d5194f72b RSI: ffffffffffffffbc RDI: 0000000000000000
[ 124.559322] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[ 124.559335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 124.559349] R13: 0000000000000001 R14: 0000000000000001 R15: 00007ffe53cf1ae0
[ 124.559379]
[ 124.559386] kmemleak: Object (percpu) 0x607f1a63e328 (size 16):
[ 124.559400] kmemleak: comm "syz-executor.4", pid 289, jiffies 4294791269
[ 124.559413] kmemleak: min_count = 1
[ 124.559421] kmemleak: count = 0
[ 124.559428] kmemleak: flags = 0x21
[ 124.559436] kmemleak: checksum = 0
[ 124.559443] kmemleak: backtrace:
[ 124.559450] pcpu_alloc_noprof+0x87a/0x1170
[ 124.559481] mm_init+0x99b/0x1170
[ 124.559497] copy_process+0x3ab7/0x73c0
[ 124.559518] kernel_clone+0xea/0x7f0
[ 124.559538] __do_sys_clone+0xce/0x120
[ 124.559558] do_syscall_64+0xbf/0x360
[ 124.559577] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.602212] loop0: detected capacity change from 0 to 4
[ 124.608694] EXT4-fs (loop0): fragment/cluster size (32768) != block size (2048)
[ 124.617101] kmemleak: Found object by alias at 0x607f1a63e32c
[ 124.617134] CPU: 1 UID: 0 PID: 63 Comm: kworker/1:2 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.617169] Tainted: [W]=WARN
[ 124.617177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.617192] Workqueue: events destroy_super_work
[ 124.617234] Call Trace:
[ 124.617242]
[ 124.617250] dump_stack_lvl+0xca/0x120
[ 124.617291] __lookup_object+0x94/0xb0
[ 124.617322] delete_object_full+0x27/0x70
[ 124.617355] free_percpu+0x30/0x1160
[ 124.617396] percpu_free_rwsem+0x53/0xa0
[ 124.617430] destroy_super_work+0xe3/0x150
[ 124.617468] process_one_work+0x8e1/0x19c0
[ 124.617510] ? __pfx_process_one_work+0x10/0x10
[ 124.617538] ? move_linked_works+0x172/0x270
[ 124.617578] ? assign_work+0x196/0x240
[ 124.617609] worker_thread+0x67e/0xe90
[ 124.617638] ? trace_irq_enable.constprop.0+0xc2/0x100
[ 124.617671] ? __pfx_worker_thread+0x10/0x10
[ 124.617701] kthread+0x3c8/0x740
[ 124.617727] ? __pfx_kthread+0x10/0x10
[ 124.617751] ? ret_from_fork+0x23/0x430
[ 124.617788] ? lock_release+0xc8/0x290
[ 124.617815] ? __pfx_kthread+0x10/0x10
[ 124.617842] ret_from_fork+0x34b/0x430
[ 124.617876] ? __pfx_kthread+0x10/0x10
[ 124.617901] ret_from_fork_asm+0x1a/0x30
[ 124.617948]
[ 124.617956] kmemleak: Object (percpu) 0x607f1a63e328 (size 16):
[ 124.617969] kmemleak: comm "syz-executor.4", pid 289, jiffies 4294791269
[ 124.617983] kmemleak: min_count = 1
[ 124.617991] kmemleak: count = 0
[ 124.617998] kmemleak: flags = 0x21
[ 124.618006] kmemleak: checksum = 0
[ 124.618013] kmemleak: backtrace:
[ 124.618019] pcpu_alloc_noprof+0x87a/0x1170
[ 124.618050] mm_init+0x99b/0x1170
[ 124.618068] copy_process+0x3ab7/0x73c0
[ 124.618088] kernel_clone+0xea/0x7f0
[ 124.618108] __do_sys_clone+0xce/0x120
[ 124.618128] do_syscall_64+0xbf/0x360
[ 124.618148] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.619623] kmemleak: Found object by alias at 0x607f1a63e334
[ 124.619635] CPU: 0 UID: 0 PID: 3992 Comm: syz-executor.4 Tainted: G W 6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary)
[ 124.619652] Tainted: [W]=WARN
[ 124.619656] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 124.619662] Call Trace:
[ 124.619666]
[ 124.619670] dump_stack_lvl+0xca/0x120
[ 124.619689] __lookup_object+0x94/0xb0
[ 124.619705] delete_object_full+0x27/0x70
[ 124.619721] free_percpu+0x30/0x1160
[ 124.619736] ? arch_uprobe_clear_state+0x16/0x140
[ 124.619756] futex_hash_free+0x38/0xc0
[ 124.619770] mmput+0x2d3/0x390
[ 124.619788] do_exit+0x79d/0x2970
[ 124.619802] ? lock_release+0xc8/0x290
[ 124.619817] ? __pfx_do_exit+0x10/0x10
[ 124.619831] ? find_held_lock+0x2b/0x80
[ 124.619848] ? get_signal+0x835/0x2340
[ 124.619872] do_group_exit+0xd3/0x2a0
[ 124.619887] get_signal+0x2315/0x2340
[ 124.619905] ? fput+0x6a/0x100
[ 124.619923] ? __pfx_get_signal+0x10/0x10
[ 124.619939] ? do_futex+0x135/0x370
[ 124.619953] ? __pfx_do_futex+0x10/0x10
[ 124.619968] arch_do_signal_or_restart+0x80/0x790
[ 124.619986] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 124.620003] ? __x64_sys_futex+0x1c9/0x4d0
[ 124.620015] ? __x64_sys_futex+0x1d2/0x4d0
[ 124.620030] ? __pfx___x64_sys_futex+0x10/0x10
[ 124.620044] ? xfd_validate_state+0x55/0x180
[ 124.620060] ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[ 124.620080] exit_to_user_mode_loop+0x8b/0x110
[ 124.620093] do_syscall_64+0x2f7/0x360
[ 124.620105] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.620117] RIP: 0033:0x7f5e4d5a0b19
[ 124.620125] Code: Unable to access opcode bytes at 0x7f5e4d5a0aef.
[ 124.620131] RSP: 002b:00007f5e4ab16218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 124.620142] RAX: fffffffffffffe00 RBX: 00007f5e4d6b3f68 RCX: 00007f5e4d5a0b19
[ 124.620150] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5e4d6b3f68
[ 124.620157] RBP: 00007f5e4d6b3f60 R08: 0000000000000000 R09: 0000000000000000
[ 124.620164] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e4d6b3f6c
[ 124.620171] R13: 00007ffece786acf R14: 00007f5e4ab16300 R15: 0000000000022000
[ 124.620187]
[ 124.620190] kmemleak: Object (percpu) 0x607f1a63e328 (size 16):
[ 124.620197] kmemleak: comm "syz-executor.4", pid 289, jiffies 4294791269
[ 124.620204] kmemleak: min_count = 1
[ 124.620208] kmemleak: count = 0
[ 124.620211] kmemleak: flags = 0x21
[ 124.620215] kmemleak: checksum = 0
[ 124.620219] kmemleak: backtrace:
[ 124.620221] pcpu_alloc_noprof+0x87a/0x1170
[ 124.620237] mm_init+0x99b/0x1170
[ 124.620245] copy_process+0x3ab7/0x73c0
[ 124.620255] kernel_clone+0xea/0x7f0
[ 124.620265] __do_sys_clone+0xce/0x120
[ 124.620276] do_syscall_64+0xbf/0x360
[ 124.620285] entry_SYSCALL_64_after_hwframe+0x77/0x7f
VM DIAGNOSIS:
10:13:26 Registers:
info registers vcpu 0
RAX=0000000000000001 RBX=0000000000000001 RCX=ffffffff84be3c0e RDX=ffffed100d9e6dd9
RSI=0000000000000004 RDI=ffff88806cf36ec0 RBP=ffff88806cf36ec0 RSP=ffff88806ce08b28
R8 =0000000000000000 R9 =ffffed100d9e6dd8 R10=ffff88806cf36ec3 R11=0000000000000001
R12=1ffff1100d9c1166 R13=0000000000000003 R14=ffffed100d9e6dd8 R15=ffff88806ce08b60
RIP=ffffffff84be3da0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe7c00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3d56764f78 CR3=0000000009cea000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000b576d7bfaa4d02ebed2574d3 XMM01=00000000dbc57bb0cbef90ec9c24dec0
XMM02=ffff888012de05500000000000040000 XMM03=ffffffffffffffff0f0e0d0c0b0a0908
XMM04=ffff888012de05500000000000040000 XMM05=ffff888033339b99b7d6b3123a6c5c91
XMM06=00000000000000000000000000000000 XMM07=00000001db710640b4e5b025f7011641
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000002 RBX=0000000000000002 RCX=dffffc0000000000 RDX=0000000000000002
RSI=0000000000000008 RDI=ffff888018c6be50 RBP=ffffed100318d6ab RSP=ffff888016dff978
R8 =0000000000000001 R9 =ffffed100318d7ca R10=ffff888018c6be57 R11=1ffff1100d9e6f7b
R12=ffff888018c6be50 R13=ffff888018c6b480 R14=ffffed100318d7ca R15=ffff888018c6b544
RIP=ffffffff81467503 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555587ffc400 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe6a00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff6e598e000 CR3=0000000009cea000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000