Warning: Permanently added '[localhost]:59867' (ECDSA) to the list of known hosts.
2022/10/01 11:34:14 fuzzer started
2022/10/01 11:34:15 dialing manager at localhost:35095
syzkaller login: [   37.567685] cgroup: Unknown subsys name 'net'
[   37.686748] cgroup: Unknown subsys name 'rlimit'
2022/10/01 11:34:28 syscalls: 2215
2022/10/01 11:34:28 code coverage: enabled
2022/10/01 11:34:28 comparison tracing: enabled
2022/10/01 11:34:28 extra coverage: enabled
2022/10/01 11:34:28 setuid sandbox: enabled
2022/10/01 11:34:28 namespace sandbox: enabled
2022/10/01 11:34:28 Android sandbox: enabled
2022/10/01 11:34:28 fault injection: enabled
2022/10/01 11:34:28 leak checking: enabled
2022/10/01 11:34:28 net packet injection: enabled
2022/10/01 11:34:28 net device setup: enabled
2022/10/01 11:34:28 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/01 11:34:28 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/01 11:34:28 USB emulation: enabled
2022/10/01 11:34:28 hci packet injection: enabled
2022/10/01 11:34:28 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/01 11:34:28 802.15.4 emulation: enabled
2022/10/01 11:34:28 fetching corpus: 50, signal 27952/29699 (executing program)
2022/10/01 11:34:28 fetching corpus: 100, signal 39759/43018 (executing program)
2022/10/01 11:34:28 fetching corpus: 150, signal 46388/51145 (executing program)
2022/10/01 11:34:28 fetching corpus: 200, signal 53289/59368 (executing program)
2022/10/01 11:34:28 fetching corpus: 250, signal 59219/66579 (executing program)
2022/10/01 11:34:29 fetching corpus: 300, signal 64283/72832 (executing program)
2022/10/01 11:34:29 fetching corpus: 350, signal 66401/76239 (executing program)
2022/10/01 11:34:29 fetching corpus: 400, signal 71695/82565 (executing program)
2022/10/01 11:34:29 fetching corpus: 450, signal 76010/87896 (executing program)
2022/10/01 11:34:29 fetching corpus: 500, signal 81072/93854 (executing program)
2022/10/01 11:34:29 fetching corpus: 550, signal 83924/97645 (executing program)
2022/10/01 11:34:29 fetching corpus: 600, signal 86014/100774 (executing program)
2022/10/01 11:34:29 fetching corpus: 650, signal 88604/104343 (executing program)
2022/10/01 11:34:30 fetching corpus: 700, signal 91693/108287 (executing program)
2022/10/01 11:34:30 fetching corpus: 750, signal 93533/111078 (executing program)
2022/10/01 11:34:30 fetching corpus: 800, signal 96074/114472 (executing program)
2022/10/01 11:34:30 fetching corpus: 850, signal 98172/117382 (executing program)
2022/10/01 11:34:30 fetching corpus: 900, signal 100515/120492 (executing program)
2022/10/01 11:34:30 fetching corpus: 950, signal 102902/123623 (executing program)
2022/10/01 11:34:30 fetching corpus: 1000, signal 104168/125712 (executing program)
2022/10/01 11:34:30 fetching corpus: 1050, signal 106496/128714 (executing program)
2022/10/01 11:34:30 fetching corpus: 1100, signal 108115/131122 (executing program)
2022/10/01 11:34:31 fetching corpus: 1150, signal 109488/133268 (executing program)
2022/10/01 11:34:31 fetching corpus: 1200, signal 110939/135437 (executing program)
2022/10/01 11:34:31 fetching corpus: 1250, signal 113884/138716 (executing program)
2022/10/01 11:34:31 fetching corpus: 1300, signal 116720/141887 (executing program)
2022/10/01 11:34:31 fetching corpus: 1350, signal 120041/145430 (executing program)
2022/10/01 11:34:31 fetching corpus: 1400, signal 122616/148327 (executing program)
2022/10/01 11:34:31 fetching corpus: 1450, signal 123438/149854 (executing program)
2022/10/01 11:34:31 fetching corpus: 1500, signal 124684/151659 (executing program)
2022/10/01 11:34:32 fetching corpus: 1550, signal 125862/153427 (executing program)
2022/10/01 11:34:32 fetching corpus: 1600, signal 127449/155402 (executing program)
2022/10/01 11:34:32 fetching corpus: 1650, signal 129820/157950 (executing program)
2022/10/01 11:34:32 fetching corpus: 1700, signal 130690/159420 (executing program)
2022/10/01 11:34:32 fetching corpus: 1750, signal 131836/161094 (executing program)
2022/10/01 11:34:32 fetching corpus: 1800, signal 133666/163226 (executing program)
2022/10/01 11:34:32 fetching corpus: 1850, signal 134587/164650 (executing program)
2022/10/01 11:34:32 fetching corpus: 1900, signal 135406/166005 (executing program)
2022/10/01 11:34:33 fetching corpus: 1950, signal 136409/167421 (executing program)
2022/10/01 11:34:33 fetching corpus: 2000, signal 138372/169493 (executing program)
2022/10/01 11:34:33 fetching corpus: 2050, signal 139790/171182 (executing program)
2022/10/01 11:34:33 fetching corpus: 2100, signal 141536/173048 (executing program)
2022/10/01 11:34:33 fetching corpus: 2150, signal 143676/175151 (executing program)
2022/10/01 11:34:33 fetching corpus: 2200, signal 144914/176627 (executing program)
2022/10/01 11:34:33 fetching corpus: 2250, signal 145950/177998 (executing program)
2022/10/01 11:34:33 fetching corpus: 2300, signal 146439/178997 (executing program)
2022/10/01 11:34:33 fetching corpus: 2350, signal 147213/180143 (executing program)
2022/10/01 11:34:34 fetching corpus: 2400, signal 148407/181560 (executing program)
2022/10/01 11:34:34 fetching corpus: 2450, signal 149670/182962 (executing program)
2022/10/01 11:34:34 fetching corpus: 2500, signal 152675/185305 (executing program)
2022/10/01 11:34:34 fetching corpus: 2550, signal 153689/186548 (executing program)
2022/10/01 11:34:34 fetching corpus: 2600, signal 154530/187660 (executing program)
2022/10/01 11:34:34 fetching corpus: 2650, signal 155991/189131 (executing program)
2022/10/01 11:34:34 fetching corpus: 2700, signal 156768/190184 (executing program)
2022/10/01 11:34:36 fetching corpus: 2750, signal 157802/191324 (executing program)
2022/10/01 11:34:36 fetching corpus: 2800, signal 158278/192166 (executing program)
2022/10/01 11:34:36 fetching corpus: 2850, signal 158951/193101 (executing program)
2022/10/01 11:34:36 fetching corpus: 2900, signal 159865/194276 (executing program)
2022/10/01 11:34:36 fetching corpus: 2950, signal 160546/195237 (executing program)
2022/10/01 11:34:36 fetching corpus: 3000, signal 161608/196452 (executing program)
2022/10/01 11:34:36 fetching corpus: 3050, signal 162360/197371 (executing program)
2022/10/01 11:34:36 fetching corpus: 3100, signal 163336/198393 (executing program)
2022/10/01 11:34:36 fetching corpus: 3150, signal 164328/199421 (executing program)
2022/10/01 11:34:37 fetching corpus: 3200, signal 165188/200400 (executing program)
2022/10/01 11:34:37 fetching corpus: 3250, signal 166477/201511 (executing program)
2022/10/01 11:34:37 fetching corpus: 3300, signal 167221/202322 (executing program)
2022/10/01 11:34:37 fetching corpus: 3350, signal 168470/203344 (executing program)
2022/10/01 11:34:37 fetching corpus: 3400, signal 169655/204343 (executing program)
2022/10/01 11:34:37 fetching corpus: 3450, signal 170328/205112 (executing program)
2022/10/01 11:34:37 fetching corpus: 3500, signal 171492/206036 (executing program)
2022/10/01 11:34:37 fetching corpus: 3550, signal 172428/206876 (executing program)
2022/10/01 11:34:37 fetching corpus: 3600, signal 172874/207538 (executing program)
2022/10/01 11:34:38 fetching corpus: 3650, signal 174844/208644 (executing program)
2022/10/01 11:34:38 fetching corpus: 3700, signal 175522/209361 (executing program)
2022/10/01 11:34:38 fetching corpus: 3750, signal 176371/210099 (executing program)
2022/10/01 11:34:38 fetching corpus: 3800, signal 177194/210830 (executing program)
2022/10/01 11:34:38 fetching corpus: 3850, signal 178554/211674 (executing program)
2022/10/01 11:34:38 fetching corpus: 3900, signal 179703/212500 (executing program)
2022/10/01 11:34:38 fetching corpus: 3950, signal 180437/213158 (executing program)
2022/10/01 11:34:38 fetching corpus: 4000, signal 180998/213740 (executing program)
2022/10/01 11:34:39 fetching corpus: 4050, signal 182106/214568 (executing program)
2022/10/01 11:34:39 fetching corpus: 4100, signal 182991/215230 (executing program)
2022/10/01 11:34:39 fetching corpus: 4150, signal 183742/215833 (executing program)
2022/10/01 11:34:39 fetching corpus: 4200, signal 184362/216376 (executing program)
2022/10/01 11:34:39 fetching corpus: 4250, signal 185543/217031 (executing program)
2022/10/01 11:34:39 fetching corpus: 4300, signal 186021/217541 (executing program)
2022/10/01 11:34:39 fetching corpus: 4350, signal 187001/218140 (executing program)
2022/10/01 11:34:40 fetching corpus: 4400, signal 187609/218643 (executing program)
2022/10/01 11:34:40 fetching corpus: 4450, signal 188264/219137 (executing program)
2022/10/01 11:34:40 fetching corpus: 4500, signal 188810/219596 (executing program)
2022/10/01 11:34:40 fetching corpus: 4550, signal 189552/220107 (executing program)
2022/10/01 11:34:40 fetching corpus: 4600, signal 190384/220589 (executing program)
2022/10/01 11:34:40 fetching corpus: 4650, signal 190926/220996 (executing program)
2022/10/01 11:34:40 fetching corpus: 4700, signal 192008/221494 (executing program)
2022/10/01 11:34:40 fetching corpus: 4750, signal 193408/222019 (executing program)
2022/10/01 11:34:41 fetching corpus: 4800, signal 193772/222362 (executing program)
2022/10/01 11:34:41 fetching corpus: 4850, signal 194528/222771 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/223118 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/223407 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/223698 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/223997 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/224258 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/224572 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/224861 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/225156 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/225451 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/225767 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/226076 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/226382 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/226674 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/226986 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/227198 (executing program)
2022/10/01 11:34:41 fetching corpus: 4870, signal 194679/227198 (executing program)
2022/10/01 11:34:43 starting 8 fuzzer processes
11:34:43 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0xffff, 0x4000)
pwrite64(r0, &(0x7f0000000040)="d7a22a77b0a105718881cc3adf6954c139b69bc7f92aa7d9f2955661da0f42de796c89c4209ab99646d7aa24b6dc87da4d404b1e90f8d2524576b924f926a35ca279bce3be382415d00c40ec61e89b7f4d0634228a44c7e10ad50ef81809697c6d4220e4aa2bd0618e10efd8d648a71d9ce8aa9dc4b9b830ae7c8f179062e9f8e4af98bf31df0997f0bfba5f5654f8a4ed0d9d5ca8ebc9a3c90a", 0x9a, 0x5)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0)
ioctl$BLKREPORTZONE(r1, 0xc0101282, &(0x7f0000000140)={0x4, 0x2, 0x0, [{0x10000, 0x7fff, 0x80000000, 0x1f, 0x40, 0x9}, {0x7f, 0x1, 0x1f, 0x0, 0x1f, 0x4, 0x3}]})
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000200), 0x400800, 0x0)
readahead(r2, 0x6967, 0x8000)
kcmp(0x0, 0xffffffffffffffff, 0x2, r0, r0)
write$binfmt_elf32(r0, &(0x7f0000000240)={{0x7f, 0x45, 0x4c, 0x46, 0x37, 0x7, 0x3, 0x75, 0x6, 0x3, 0x3e, 0x200, 0x1c3, 0x38, 0x72, 0x1000, 0x20, 0x20, 0x2, 0x43, 0x5, 0x40}, [{0x6474e551, 0x3f, 0xffffffff, 0x6, 0x1f, 0x80d1, 0xeeb4, 0x5}], "a3cdb4b2fb62e99911b37434a72a0deb486f12529e1402ee1542d352e27129693172292b9c4d40c4e5a783a5a91744b8cf3149b0449e5973e50dc7cafc618a5d2eb56c6a94e53bda7c422e2db10715221d0db9443a9474de4005423788c311566182273499d6ad3acb33759ab1b42cee3e911f2740796abefd9ed9019cd630ee56b94b261a7915b847862816", ['\x00']}, 0x1e4)
ioctl$BLKGETSIZE64(r0, 0x80081272, &(0x7f0000000440))
r3 = open$dir(&(0x7f0000000480)='./file0\x00', 0x200000, 0x8c)
ioctl$FIOCLEX(r3, 0x5451)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r3, 0xc400941d, &(0x7f00000004c0)={0x0, 0x2bdd, 0x20})
ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0xff)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000008c0)='projid_map\x00')
sendmsg$TIPC_CMD_GET_LINKS(r4, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x24, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x1}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40080e0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, &(0x7f0000000a00)={0x0, @adiantum, 0x0, @desc4})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$F2FS_IOC_GET_FEATURES(r5, 0x8004f50c, &(0x7f0000000a40))
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000ac0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_GET_SURVEY(r1, &(0x7f0000000b80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x28, 0x0, 0x100, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x0, 0x3f}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)

11:34:43 executing program 1:
r0 = socket$unix(0x1, 0x5, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)={{0xcc, 0x4, 0x26, 0x3b9, 0xfb, 0x3f, 0x2a4, 0x10000}, "a4e0e3ac14fa0dceb96954e4e9f3c3693b712ce20bffcff4748c0ddaf1d2554013862d72f1f5f85487c8036dc55741e01e0fbbac9d48984f6948b0cf0bb3", ['\x00', '\x00', '\x00']}, 0x35e)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000380))
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f00000003c0))
r1 = memfd_secret(0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000400)={0x0, 'bridge_slave_0\x00', {0x2}, 0x5})
close(r0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000440))
getpeername$inet(r1, &(0x7f0000000480)={0x2, 0x0, @local}, &(0x7f00000004c0)=0x10)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x200100, 0x0)
ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f0000000540)={0x200, 0x3})
getsockopt$EBT_SO_GET_ENTRIES(r1, 0x0, 0x81, &(0x7f0000000740)={'nat\x00', 0x0, 0x3, 0xca, [0x8, 0x200, 0x0, 0x7, 0x1, 0x3], 0x9, &(0x7f0000000580)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000640)=""/202}, &(0x7f00000007c0)=0x78)
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f0000000800))
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000840), 0xa226aeb09b3d7c10, 0x0)
bind$inet(r3, &(0x7f0000000880)={0x2, 0x4e20, @local}, 0x10)
r4 = signalfd(r0, &(0x7f00000008c0)={[0x1]}, 0x8)
getsockopt$IP_VS_SO_GET_DAEMON(r4, 0x0, 0x487, &(0x7f0000000900), &(0x7f0000000940)=0x30)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000980)=0x1)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0), 0x400000, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r5, 0x50009418, &(0x7f0000001c00)={{}, 0x0, 0x6, @unused=[0x80000000, 0x5, 0x4, 0x7fff], @devid})

11:34:43 executing program 2:
ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0x8)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000000)={0xfff, 0x8, 0x4, 0x9, 0x4})
ioctl$SIOCGSTAMPNS(0xffffffffffffffff, 0x8907, &(0x7f0000000040))
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x1, 0x0, 0x1, 0x2})
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000100)={0x8, &(0x7f00000000c0)=[{0x20, 0x3f, 0x0, 0x7}, {0x8, 0xff, 0x1f}, {0x9, 0x3f, 0x1, 0xa30}, {0x7fff, 0x0, 0x1}, {0x25, 0x4, 0x2, 0x30}, {0x6, 0x2, 0x5, 0x9268}, {0x0, 0x7, 0x3, 0x6}, {0x0, 0xfa, 0x86, 0xfffffe01}]})
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000140)={<r1=>0x0, "cc855f42628707a8c21d03efe940b865"})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000001140)={<r2=>0x0, 0x6, 0x80ae})
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000001540)={0x13, 0x3, {0x3, @usage=0x5, r1, 0x435296b2, 0x7, 0x40, 0x2, 0x10000, 0x63, @struct={0x2, 0x7}, 0x43478f2, 0x8a, [0x0, 0x9, 0x5, 0x101, 0x1, 0x2]}, {0x3f, @struct={0x1c4, 0xed39}, 0x0, 0x21, 0x4, 0x80000001, 0x6, 0x80, 0x0, @usage=0x7f, 0xfffffffd, 0xf0, [0x52cc2b3c, 0x3, 0x5, 0x1, 0x1, 0x8]}, {0x7c, @usage=0x7, r2, 0xc0000000000000, 0x3f, 0x80000001, 0x5, 0x800, 0x56, @usage=0x3, 0x3, 0x7, [0x100000001, 0x2, 0xffffffffffffffff, 0x6, 0xffff000000000000, 0x8001]}, {0x100, 0x1, 0x5}})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000001980)={0x1, &(0x7f0000001940)=[{0x7, 0xe4, 0xff, 0x651}]})
ioctl$AUTOFS_IOC_PROTOSUBVER(r3, 0x80049367, &(0x7f00000019c0))
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
fcntl$getown(r0, 0x9)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001a40), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001a80)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000001b40)={&(0x7f0000001a00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001b00)={&(0x7f0000001ac0)={0x30, r4, 0x300, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0xa151, 0x31}}}}, [@NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x20040004}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000001b80)={{0x1, 0x1, 0x18, <r6=>r3}, './file0\x00'})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000001bc0))
r7 = openat$full(0xffffffffffffff9c, &(0x7f0000001c40), 0x480800, 0x0)
r8 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000001c80), 0x200, 0x0)
copy_file_range(r7, 0x0, r8, 0x0, 0x8, 0x0)

11:34:43 executing program 3:
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r0=>0x0, <r1=>0x0})
lchown(&(0x7f00000000c0)='./file0\x00', r0, r1)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x400202, 0x0)
mkdirat(r2, &(0x7f0000000140)='./file0\x00', 0x40)
fcntl$notify(r2, 0x402, 0x0)
recvmsg$unix(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)=""/214, 0xd6}], 0x1, &(0x7f0000000300)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r3=>0x0, <r4=>0x0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r5=>0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r8=>0x0}}}, @rights={{0x18, 0x1, 0x1, [<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r11=>0x0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r12=>0x0}}}], 0x108}, 0x12000)
lchown(&(0x7f0000000180)='./file0\x00', r0, r4)
r13 = getuid()
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000500)={0x0, <r14=>0x0, <r15=>0x0}, &(0x7f0000000540)=0xc)
getsockopt$inet6_IPV6_XFRM_POLICY(r10, 0x29, 0x23, &(0x7f0000000580)={{{@in=@empty, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r16=>0x0}}, {{@in6=@private2}, 0x0, @in=@empty}}, &(0x7f0000000680)=0xe8)
getresgid(&(0x7f00000006c0), &(0x7f0000000700)=<r17=>0x0, &(0x7f0000000740)=<r18=>0x0)
setxattr$system_posix_acl(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='system.posix_acl_access\x00', &(0x7f0000000780)={{}, {0x1, 0x7}, [{0x2, 0x2, r0}, {0x2, 0x2, r13}, {0x2, 0x1, r5}, {0x2, 0x5, 0xee00}, {0x2, 0x1, r14}, {0x2, 0x0, r16}, {0x2, 0x4, r12}, {0x2, 0x1, r3}], {0x4, 0x4}, [{0x8, 0x1, 0xffffffffffffffff}, {0x8, 0x3, r11}, {0x8, 0x1, r4}, {0x8, 0x1, r18}, {0x8, 0x2, r1}, {0x8, 0x1, r1}, {0x8, 0x2, r4}, {0x8, 0x5, r8}], {0x10, 0x1}, {0x20, 0x2}}, 0xa4, 0x1)
setregid(r8, r17)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc0189379, &(0x7f0000000840)={{0x1, 0x1, 0x18, <r19=>r2}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r19, 0xc018937b, &(0x7f0000000880)={{0x1, 0x1, 0x18, r9, {r13, r15}}, './file0\x00'})
sendmmsg$sock(r9, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000008c0)="ae7eb4dadef54abca7535f21c6c56c5339608f16cef243132a66ea9519aae63e348afa75f0e83615e39f84720caeeb3e5120e80f9ec13e90bb4a5d6af114ac28009fbb46cbeb245cfc067ee1eaaf9d120dc1a30dbaa1b5f9da4bd3ce452a627bcf30e83230e05573be74db720fce00fa7bd1a4dc0ee8742c8b21aab1cceeb86311c0524198df09de8a2c3c43575ea7c9b8c3aa23f8041ec829b2b58b0bce9402de532e02842c1a7f64a5b9fe6076db6bab5f97899620129c8d494a6a1b7c2c389397dc8d0415f07720315c446f99e00d005b397b562542561c936e5ef3b76fff7157", 0xe2}], 0x1, &(0x7f0000000a00)=[@timestamping={{0x14, 0x1, 0x25, 0x9722}}, @mark={{0x14, 0x1, 0x24, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x40}}], 0x60}}, {{&(0x7f0000000a80)=@generic={0x18, "8e6c70414660499d24005fcc706e16f865034f37010e0ec279c126a1b1588090b59252a03711c69ef0e12da97d01a3b9ed1c36ab13d412db20f935f0bf0924f92475ffd474d241b6dc228da7fe64a95975256c53b1d0ce19df8ffdf384564c91f469c3372e0432dba0f2ae39159b9c335b80817041437dd43fbcbc287f99"}, 0x80, &(0x7f0000000b00), 0x0, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x5}}], 0x18}}], 0x2, 0x40014)
r20 = openat$full(0xffffffffffffff9c, &(0x7f0000000c00), 0x103000, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r20, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x58, 0x2, 0x8, 0x401, 0x0, 0x0, {0xc, 0x0, 0x4}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x884c}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0xed9f2c5dfe94308f}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x10}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xaa54}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_HEARTBEAT_SENT={0x8, 0x8, 0x1, 0x0, 0xfff}, @CTA_TIMEOUT_SCTP_HEARTBEAT_ACKED={0x8, 0x9, 0x1, 0x0, 0xbe8}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x8010}, 0x84815)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000d80)='/proc/key-users\x00', 0x0, 0x0)
ioctl$RTC_ALM_SET(r19, 0x40247007, &(0x7f0000000dc0)={0x2, 0x37, 0x14, 0x8, 0x0, 0x81, 0x2, 0xf9, 0xffffffffffffffff})

11:34:43 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r0, 0x8983, &(0x7f0000000000)={0x7, 'tunl0\x00', {0x1}, 0x20})
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000040)=""/202, &(0x7f0000000140)=0xca)
getpeername(r0, &(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, &(0x7f0000000200)=0x80)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x23, &(0x7f0000000240)=0x9, 0x4)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/power/pm_wakeup_irq', 0x2, 0x64)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2040040}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r3=>r1, {0x5}}, './file0\x00'})
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x23, &(0x7f0000000400)=0x400, 0x4)
getsockopt$SO_COOKIE(r1, 0x1, 0x39, &(0x7f0000000440), &(0x7f0000000480)=0x8)
sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x44, 0x0, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x7}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x48081)
getdents64(r2, &(0x7f0000000600)=""/221, 0xdd)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='net/ip_mr_cache\x00')
getdents64(r4, &(0x7f0000000740)=""/4096, 0x1000)
r5 = syz_open_dev$usbmon(&(0x7f0000001740), 0x9, 0x20000)
writev(r5, &(0x7f0000001840)=[{&(0x7f0000001780)="79c04ee20c1b522632103f19f4359897ab321cece7124c4e65a79338448e0c3fd7cd4b6b7661cb7ea2da7a4bb2ed3bbf548f7b60b0c398ce6658b0afe0f15b9755c092d1832e98a1b02bd8d3f716fd334941ac0e1ce2c452020f836f3e465066b2bf027fe160e386a032b2dfe82319d2e43cc659cc843772683da662667a7cf1b65290789fc70dd9c29baf2be06c880acf04f7e51feb91f2513af9350d89b6", 0x9f}], 0x1)
setsockopt$inet6_IPV6_PKTINFO(r3, 0x29, 0x32, &(0x7f0000001880)={@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x14)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x7000001, 0x14bb9e2d1585bdf5, r3, 0xe2083000)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000001980)={'tunl0\x00', &(0x7f0000001900)={'syztnl0\x00', <r6=>0x0, 0x8000, 0x8, 0x1cf, 0x39a9fde9, {{0x14, 0x4, 0x1, 0x5, 0x50, 0x67, 0x0, 0x9, 0x29, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp={0x44, 0x18, 0x30, 0x0, 0x2, [0x6, 0x1, 0x9, 0x81, 0x9]}, @lsrr={0x83, 0x7, 0x7a, [@multicast2]}, @timestamp_prespec={0x44, 0x1c, 0x96, 0x3, 0x1, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x97}, {@empty, 0x80000000}, {@loopback, 0xf20}]}]}}}}})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f0000001bc0)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001b80)={&(0x7f0000001b00)={0x64, 0x0, 0x300, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4044000}, 0x4)

[   66.283743] audit: type=1400 audit(1664624083.945:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:34:43 executing program 5:
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x8, 0x4000)
mq_timedsend(r0, &(0x7f0000000040)="0b36e5178fda3ef126b8ae89734bf59f5d3d87352f4f2e331c7a60eecb7d4d8ecc20651d19adc9f9db1eaad1ab226705389b380d4e942bb7a353b47a0f02ac9de749670056ae9428ce6b4b4866b89c2ce280a7a226ffe2da6d815b3b67e77a4a6c504bc6776569887e42acedb3256b64037b57674f49f038e9f4dc015ad07efaa24d29362b175989d5197f56afbf464f1d89665318a71f84a75084fb91569dc7d904a73ba35a9bdad50b96", 0xab, 0xf3c, &(0x7f0000000100)={0x77359400})
futex(&(0x7f0000000140), 0x0, 0x0, &(0x7f0000000180)={0x77359400}, &(0x7f00000001c0)=0x1, 0x1)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000200)={<r2=>r1, 0x8, 0x1, 0x6})
getsockopt$inet6_mreq(r2, 0x29, 0x15, &(0x7f0000000240)={@dev, <r3=>0x0}, &(0x7f0000000280)=0x14)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r2, 0x89fb, &(0x7f0000000340)={'ip6tnl0\x00', &(0x7f00000002c0)={'syztnl1\x00', <r4=>r3, 0x29, 0x2, 0x0, 0xffff6613, 0x1, @private0, @mcast2, 0x1, 0x40, 0x8, 0xdab}})
ioctl$KDADDIO(r2, 0x4b34, 0x6)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000380)=0x800)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000003c0)={{{@in=@empty, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@local}, 0x0, @in=@multicast1}}, &(0x7f00000004c0)=0xe8)
setsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000500)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x4e20, 0x9, 0x4e23, 0xa2bf, 0xa, 0x80, 0xa0, 0xc, r4, r5}, {0x1ff, 0x7fff, 0x8, 0xfa, 0x8000, 0x4, 0x803, 0xda}, {0x0, 0x100, 0x1, 0x81}, 0x1, 0x6e6bb3, 0x2, 0x1, 0x1, 0x1}, {{@in6=@mcast1, 0x4d6, 0x3c}, 0xa, @in6=@private2, 0x3503, 0x3, 0x3, 0x80, 0x2, 0x100, 0x7}}, 0xe8)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001d80), 0x4100, 0x0)
close_range(r2, r6, 0x2)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001dc0)={{0x108, 0xff, 0x0, 0x238, 0x360, 0x1, 0x2dc, 0x72fd071f}, "1d51cbd416da2f7210c0957db023c622503104056ae289153a48486924ce00b3d6820f66289dafd734d15d2f75dfa1c0d03974e5ff205ce7a13865d30350"}, 0x5e)
r7 = openat$cgroup_int(r0, &(0x7f0000001e40)='cgroup.max.descendants\x00', 0x2, 0x0)
write$binfmt_script(r7, &(0x7f0000001e80)={'#! ', './file0', [{}], 0xa, "b077d9d04b1e73de58482faa1b5a336bf4f1f2eae3e1bd82269795a436d69aa0e3c3906bd59de4df1c1a9bbbf3467a24ac7b305037571ff56de8d64933f507eb565d5feb104bc740562aa25e377e4c3a7a96cb2ffc1f30189831d2ee6c563a22d5de"}, 0x6e)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001f00)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r1, 0x0, 0x0, 0x0, {0x2440}}, 0x80000000)
r8 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000001f40))
ioctl$BTRFS_IOC_SEND(r1, 0x40489426, &(0x7f0000001fc0)={{r8}, 0x1, &(0x7f0000001f80)=[0x0], 0x1f, 0x4, [0x1, 0x6, 0x9, 0x8001]})
sendmmsg$sock(r0, &(0x7f0000002340)=[{{&(0x7f0000002040)=@nfc_llcp={0x27, 0x1, 0x0, 0x5, 0x6, 0x7, "209419bf35484160e9627b9e5c4b1cdb42525b3b4485e3228badcd16300e14e6d40a5b81bb1bdebec7b61ffb1ac00deecb03177445c1c0b20dc74acd0ec169", 0x39}, 0x80, &(0x7f0000002280)=[{&(0x7f00000020c0)="7c0f2fa115b7b748513eb49f8117eba8c472e2d34a62793d2859b4a405d7549b6cfa9a38f37b218b0c15ac2f9e481faa7a2252a8768b9c2d518d3c959a67498d735a8da44f6f03bc5af8c2791d737a2b47f72b6f2bd8478ee2ea499a4750b5273ac734252ef4e8426f3b174f00657ecaab75981158ab32", 0x77}, {&(0x7f0000002140)="4689c20f17a2cd677fda4004ef26ad1b2d7997dc1f5e634a6c903166f7fa1d4db1145f0bcf3d4dfd4b68ce2cc2dad12594069dc7772d3a3ca7311a31ab3c4035b15d", 0x42}, {&(0x7f00000021c0)="32d917c3b89d1853d46b9cce9b70de10c0964dfc8bc0fb7d032295af29", 0x1d}, {&(0x7f0000002200)="734e057c0412647939e435ab95ecc38b10e88500e3c7d37bed859678b5e90715bd3e239d59dfdc1e8e00ac57682ed9c190686ffa1382d239dedfe7e3ea751cb8ce6b55deb7702f419657c314a7ea7ffb00169c4bd19012708e73e35fe024a5337507da0d63f33dcbf357f4ec7414e6a1c4233e8989c480889bee2de62ecf57", 0x7f}], 0x4, &(0x7f00000022c0)=[@mark={{0x14, 0x1, 0x24, 0x81}}, @txtime={{0x18, 0x1, 0x3d, 0x26f}}, @txtime={{0x18, 0x1, 0x3d, 0x9}}, @txtime={{0x18, 0x1, 0x3d, 0xfc}}, @timestamping={{0x14, 0x1, 0x25, 0x2a34}}], 0x78}}], 0x1, 0x84)

11:34:43 executing program 6:
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0)
close(r0)
r1 = syz_open_dev$mouse(&(0x7f0000000040), 0x2, 0xc2000)
r2 = openat$cgroup(r1, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0)
r3 = dup(r1)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f00000000c0)={0x1000, 0xffffffff, 0x1, 'queue0\x00', 0x9})
ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, &(0x7f0000000180)={{0x3ff, 0xee5}, 0x100, './file0\x00'})
open_by_handle_at(r2, &(0x7f00000002c0)=@orangefs={0x14, 0x1, {"cd3389f4a97a5ac0d60493d75a314f9c", 0x80000001}}, 0x90140)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r4, 0xf502, 0x0)
r5 = syz_open_dev$vcsu(&(0x7f0000000300), 0x3, 0x8201)
ioctl$IOC_PR_REGISTER(r5, 0x401870c8, &(0x7f0000000340)={0x7, 0xd6c, 0x1})
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r2, 0x40047211, &(0x7f0000000380)=0x4)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x61, &(0x7f00000003c0)={'filter\x00', 0x4}, 0x68)
r6 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x80, 0x44, 0xd}, 0x18)
close_range(r6, r4, 0x2)
preadv(r3, &(0x7f0000000580)=[{&(0x7f00000004c0)=""/136, 0x88}], 0x1, 0xb3, 0x3)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f00000005c0)=0xc, 0x4)
bind$netlink(r4, &(0x7f0000000600)={0x10, 0x0, 0x25dfdbfb, 0x200000}, 0xc)
ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000680)={{r6}, "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"})

11:34:43 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/rt_cache\x00')
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x5)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0xa)
ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000180)={0x2, &(0x7f0000000140)=[{0x1000, 0x2e, &(0x7f00000000c0)="a3b660227aa6ae393ba8510fb28a0e4d06c430ceb18a71f274736cac1e6c14f138d299b181c92452d7df3c293cbe"}, {0x7ff, 0x36, &(0x7f0000000100)="b1cd574bd2f9e95989771ad189fe302e6079d3c2251c3ce339e7b9972935945ce305843be5e43f8cbd6045e63584b0c461fda45e4963", 0x0, 0x1}]})
r2 = open_tree(r0, &(0x7f00000001c0)='./file0\x00', 0x100)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x11)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xd0000, 0x200)
pread64(r3, &(0x7f0000000280)=""/201, 0xc9, 0x7fffffff)
sendmsg$inet(r1, &(0x7f0000001540)={&(0x7f0000000380)={0x2, 0x4e23, @rand_addr=0x64010102}, 0x10, &(0x7f0000001500)=[{&(0x7f00000003c0)="d2c1914a54fe80b2ac223e896eba2c8d0e30637d32197357d9c273c56442aba1d11042a59b82ccf56c468cd27a00cbcd9c4cf54e6db08ddb4dbaa374ade5aa4a2da63793cd1b4165a9365c2acf7c2733b355c38a3940180e12993f041cda14e66efa5dc67344317942d23d38f0083e4178fdfb72349285c4b0e037a71e5c40fb0ddd7c99da38e12d058828845dba03185a9d93382f6fff68dc89086bbd04639670860ff5d2a413df1a891034f92e207c8f24cc05aaab1f70a35b98fe4d00579b82181efcd56408fac4a180d6e44eb38f0f1e218f75cdd4cd25", 0xd9}, {&(0x7f00000004c0)="63a3b7b792f90dec8c88391d70b1670d10a185617d312f84e9d21835d39d1052e8a3bb73bdf228b9fde1edec99d84380456449a94b60270b6432d10f6b162d10fef05d910a245cbbe1b9db8c7305d0575f5a862fe6ae3f57d2d67f7170ab7fc21f5724834df86c7e29231e696c936b9aa8037ccc990637fc8e696a2bfada190058450be4ed9b8cae7c9524d4a7e5cfe1071320df2207cab9d6ecfaf67bfc7f173f0d36e2f8d9207519e2ccc16c01efe9312ca946c03dac2e234b2b56a0713546f172ab3ceaf44e150153c2d74719b3452a080941c5002a96ac276737de03298bb530e0edd4dbf7c6ee0334968b74e5962e7b61d06e453d3b38b89df0b35bcbb66a4031b8144b0305ce018a34120bf4db2d2805b55bf04270d85d31cf3bd4f2aa13bd15bb51aa1187e2bd845546cef014c1fa090c7b5c0d9b9c919b6bf343c03a804506f6f4cf9dcb5ea061e69c1d0fa454b53d0bf6e2c42f1c6ee5823fcacfb007129256546ae1f8bc1f35dd1ab8775a708a3bf7825148e36ef8b646bffa71a2dae0dc4e8e2b518bfb0e1b164e396487bb84d319145118bec7f0ecfe971aab3323b2b4f2ef65ad663ca3e1673d08cefa170adbd32eed288d26a6be1a7c0f769dcfdb77d7edf7d17a4964b1d58dfc9c05c318a55f92ae7e87551a62d571871dcf1f3eef773b22c69edadda1a9091b3c1993f37158ebcf4e2b5974c8e577c21b04f26e776eadebde17731ae6a279dbe028706e588b55a7833275cd6a67be1b77b2df91bf763c6be61515ec3d4b584c09ecd9333aa4e01eb0bb33012d27b1dfcd3d1418958c249a58e2ffa48b600d741aa48834d51614165e1298336d86a5f39a73480c6dcf0403ce50b7558b5534a6d8df528d730f8784eecbcbd455097a2a0a5ffd2bfdf8eaaa0a46c45ce44f1e037ab607238a28afb637b5becc1e872c7b4963771916dd3d710df978a37c600367710a8eaae29aa02fbc803cbc145213bccbed513c8d29cb9a6c51b044102baee7a91ea14ba811de24f45fe3b490acb0a6fdf44acefd92fa1e5dfa1d7aef09ba406824e33f1d117f06dc9d8ad5d41ca589337b27cad669310b45670e263634e767ab4d319cb537ab5a1902639f708714ae22d19b1caa437fa4bd858637a5b2817160a1bbe9d284766701923d7c231c4f82d7be1cb9210e80d7e49fbf6898b89c9675fcb975e904d162d5909b9d953fbcd82a85e5baece961181c2c14236880929acec89b4dc1c8c04774a7aee925c72a2651eb9d6748c5ba990cd0884f2a9bd86a3fcc5a07387954f746a6d860c8d893de3dfbfc0e197ff74c8195561fb2baa43c209e18b4240dc001a029685d26bb2bd318791d20013705812778a072992f0a8a173b778c34107a147ddb49678ad0251f8a84fe7e99373c2fb0ef6efecadee6152eb8791de811e312dc24ea0978862365748cd798320d772d6c19406c3c122474834a85029d04575a996c0ecc40b2445d047a29a874a32f7dd463671474fd84b0b3e6e9407b3cf2fe2b12a0e80c16399e4180dfaa610da73c05db6fde262d388b9b6bb28d110cdece033d14874d0f7bb89a686b30e396f0b07949ab813f0e1b9d019bf33e454291e54b91fa7e8b269c094dae595bc3fe34a75d8a94eb347e1333132b1fd80c29e36a543fd2b677dc7ba5a854e4f0935d13acda464b63c1d54cad83c62fd1242e96555f1ac9c3a658ae3faf68aa868429118e52587ff4b35a6203b26a06913089bbf44cf24df57b135a15e9156775841fbb855b42372eb7a9d3a0d591a789a649ed73e56ebc8c86f75a2f78a5d190fb2683f00c55c8666a7cee94700236b932d23d33ada8d655be4fceef61d587132b699fc4ab4ab01ef7ee9aee7ba6c6d1ba52c724dcb817f8c025a481a5feb4e6d3765a4ff9498d8ff1c757a1c324c0fdbce11384d990b143fbccb76b07c23588f74318243611634abc34762705cb0521688ff10ab2dce91b0953bd3d6e9db89d82c5e64e6ad1c99f300c98fdab08982ce0396535399a07b7088300ebf12fe440e78c01c80a14a76a6f1373f1a161cacdf464bfe93d75e3e1a27eae773369801cba8547b281743d314438f37d084bb66c4e457085360041a4bbdd81b4ef50d14f57ea22c7c5d5427891537e99e1441c9feed916012c33a200074a88109cd1a0c0099d956f093b8e6f472b347bce915af69dbb28231a74b3ee22954f070d8e2237f0385364ac4d1a7084c9dae62bd962bc24a67d1d9ff5b13bee1d0e25727a245f09f68278144ab7e2d6a73ad23a1e1b9df8b7893774e4530516142dcb2d9bbcf20b330e809d1afced551f403bb68dc4d28d4f9eb19044dea4fd01917ba22e7479c4970cc66d1af15d198d04702358dd34da74c412610abad6b66aabd97d8ab3f93987766b11a8792de5400f9b56a4bdf64dc65a05051e9cf57aeacb0e590c91ae64e4153833e8f723efbe1bb01326a7c65f4b6a92447cf2c957e041412c61a7796a82ecce0fcaec7623cf1194df0f28dd783a557707978cb9540cf826eec534affd0285f147789664d554f80bd7cca3c4ef9ff2f589d3ff34c8f56ae3e37817df1fae4a7a7c9968664985990171141f53c0ac2ca057f9429583dedec4fb924fe7dbdf2bd960d62468e5c2bee4b71903caa8f76a67e6d0d63dda31d6b2780baf17c37ba8958d3d4abd8104a99dcd6455efc44866bb287470bb3d240fa2103ea1f03b2c134afb4163d69397f00d2168002ecb8bbbe97e8512b183be0ea96ed83fb1aa35c4bd5bee99ab9d0d0b6ffe3d886fda4d0c50fbc2ec74f99cac175e8b2cb53a66ea911669695829f012d1da5f2efa3d56eec8151c030077adfb894dcbc42a8c4599d5640e1c23d5efddec4ac48d87b3d0b826681782f4f923ba03c4c34f0f6a7a02608bae02fbcdc7fd9a87b8932814bcecc2662b5939e284cb2b7457e85d4937527469c704436cbc73722f9ae565259033807abe3e2444cb3988514363763ee373f2769971d3e80278bf0817323dc0f2e1570c02d72bb36dd35ab657da0d673e6674a374401e680eaca543d3024cd2eb9fc20a402b6d52d10bb72cf09c452718ac120843e4f484170b3a7b72fac596b94ab23fad7d52f3a1bc628745c709254d03cf343567e959bd9148c88a763868336d39a1aff4afc0cad8390aba3093a2e9cda96af8b0429439d762a4235eb904d8187bd6f50d665abb6bb4ff4ed8f2924a1c5ce2067a1d8e7b1d1fe22b009e9f5058fbdf1ee4d28e80c95a77fdbec70e2a3bc9cee144673509bf10a782ba9dd5c57f087e27a47ce699d557a71966f80d29f41faa5e4e49f8fd34df521c1e47a8b4c997f05c905c23aefd9fd4d6144fe8125e434b673461f3555f18977a21dbb1935a7a890253c6e0e12866853cc72f4045e328cfa367ac7fac78aa26591bcaad5a33f047a2a80813d3f2901d5ab321fa1d661c5c73a675f2ebd27dcb4c445cf254b9040c4bd968d363db06cdca5ad6a4c192aa8964166314b285747c8b0f700190b5eaa00b72421a306f095477a23ab311c9fa76ec6c75b46a68a69d5faaf4db09a4f61edab4ed67a3dbe7a0451399e6182214bd39cba0fe4ac88d1cff7da47d4d349ae1f4b8fddb9c258cf821dcabd3630eb4e979c981df99f0c798006c99151a7a378cbb553d03e1201d9bd337f403c0569671e780cd6df96aafb6d513a44efcf1093bae5fc5f6f38782ab1646aa8d42892da50c80664c009b4764625dc720a138c65acd5c2e85ad5824dce7898b55b4f3e5298cfe218edd7bb01f1965dbec2c084a5428dd49314bd7ed020fb66501ffce9cb84ce515c58745222a02c0d9b12e9de1da9b97eb402b7424c02ec3824065462f9e7e1fc26a4c22e31e00081ac885189ead608fcad0e80c3bcb579877af6705585fe129db51c7d5b3dd56c3752653d4d43aa259bf46c021949739a5d20d881cad3902cf380572de575a9b0aa95330ca62c13b8cbf42bbad50d2e409a3f2811d68cf49dd11ba6de5ed176e5945de419daf63dd298a4cb8d2fa82c8940f82e2c4e4303cfde977da44c440f98c3bcd1b3b2c8b7f4eda89d9ad6afe8fc7a5ee6b58d40fb6cced41141369adabb5e5fbe53d694c8adf0ee6155b134522296cf25c6b07a89f34913844bd00a696855f50d5bd720dcd09e5bb643523ca85127205e04cb3a8a272d547662b2a0a20575f19cb97bff848a809c3c3261af93e52a9eb1072e8480ffc8b40a0440c9fe20a74169ae0d032f245ffa393b3a820e5304960acaee842140d0f7649923394e62145d2e2584cfb08ea3cae4357f20d9078be928c703047e1184cab193dede1db969727c68c28f9126aa39be078ac21b471af6ae5da54c6d79ea171c72f29dbe2540a34a76bbe73428cf8412a763a64baa80d56a83b149ccf53ddf4b55e705a2cbd6f1827d8e3bfe42a648d53c2e40a54937253ef2ff96657204c245266c96a7c3345f322053ac8c7b3a88a66a10c8a89568949099a27e2160bbea7d6ddf413b1bb3e876c93f7c3fedd3873586259d3dd8b881fa76b2f5a8d9b76de2614ebf8de29606ff7ea8761086868c9cee8d64150cae5a1a3f93ccc78aef40a5e0a8b7c5606724a24d7cdb6a43e813899c420f4286d60290a800a5d3013d3dd1f44d2c185c11c7568f602111f5d3e5b4e3794434b4b2345a07f1098e01dafc4f46682f5ce6a2aec2f6d4bcbdfcc58771f3efe1ca45dd6fd6df62ba718d4d5efbec497ac2ace3a34838487b456a26f897e03fa81745a04723900ca9f9c1dddbf16dd5491282fce612b7c76b6f58f9a9e1649f5a900fecaf834d512e58f1d2fd66caa1d8015fde6a31e52f135f2176307d1a239ae732026c6118bd583a5d86e156f54b97ae4cf35cae6b9fd040ca058767ad15fbda7c13e214c51c433c0e85413b71da352601958a45bd3f6aea86725508c90127bbf8418cbc7cbfa3e2ef5aa7ddc389582f636c6cbdf0c45c6ab87950a657250ada5c3f8ceb52b7f6ceb3676c6f6996ab67987be35e67c8dd86616ce3712420f58d3f8c6fdc11c9fa583f4a4a5867841b59baa65eedc60785941eae072eb0e5fc14877553a5f18b65ac86b0df8bb2cdde027197371de3e281dec177768a367e47ddd732fe6e36bc79cc26618b81cb298e0a3ba2ce6ca86fbd289d9cc201709ebe509e6c15bd15bc457ce423ab4dc042bd040972591855dce245032b8104f18ccd1f1c468cc7d7218c9d494882a36fb7e1b027d54cd32d0fe180f9d1a988ca9b97323f126de05fb55cd58e9950dd4eb2c8b7a17d965f92f11a85e2576a7d59b27f7e6d36d47d454394ecff48b77b755fa8faf05783bd10293c2f1d680111ee8c31fd87f7fcf6506ef5bd26a2e6ce75a850169e44b6462acef7e4a23a9ce284f6d484202a665a116d61a73ddf5f54bfe3aed813467bde7497da70eecbd738d5db99280804c08e8192df10836f43f7d768bb5c7bac17a122ccf5b994aa4a7bddc20064e88427df1e89b5931bff597ad75286a3ef9e997dde57de6f901c166efb1f5e32cc600cd66db1fdcf0399dc0869afeb94f34d3f1c91c27a42427b959f3da20cf2d17959387b004e7f8252177d4e6c5f6a02cf8eb5105276f6b431d072e307cf37506f08ecdfd709a36ed5d3075e03be1a2f252515a7cb24b5cf288ab57ca952c8a450f0e3b0b15a0c58dfce252f31b3cf4cc768b99c6892c6532fb5d1af0036eafd5cb89c6a786399b5febef65d763a7ef0e4a6689620bfbfb2be0a93e47172dc2a70597b627e0af679e3761eccba2cd619aa7023997c57e81992d81855e79fa71", 0x1000}, {&(0x7f00000014c0)="89e287ac9db8699aab22dfb0c8464b2b152de0d9789d405ab1cd233179c08977a69299ba920f109a4027939a8e0dbe", 0x2f}], 0x3}, 0x1)
ioctl$F2FS_IOC_RESIZE_FS(0xffffffffffffffff, 0x4008f510, &(0x7f0000001580)=0xeaee)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000015c0), 0x12000, 0x0)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001600), 0x88000, 0x0)
close_range(r4, r5, 0x0)
readv(r5, &(0x7f0000001780)=[{&(0x7f0000001640)=""/185, 0xb9}, {&(0x7f0000001700)=""/106, 0x6a}], 0x2)
pipe2$9p(&(0x7f00000017c0), 0x4000)
r6 = eventfd2(0x381, 0x80000)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r6, 0x8010671f, &(0x7f0000002800)={&(0x7f0000001800)=""/4096, 0x1000})
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000002840)={0x0, @private}, &(0x7f0000002880)=0xc)
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000002940)={{0x1, 0x1, 0x18, <r7=>0xffffffffffffffff, {0x80000001}}, './file0\x00'})
mount$9p_fd(0x0, &(0x7f00000028c0)='./file0\x00', &(0x7f0000002900), 0x880060, &(0x7f0000002a00)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {}, 0x2c, {[{@mmap}], [{@subj_role={'subj_role', 0x3d, '\\@,.'}}]}})

[   67.611933] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   67.615026] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   67.616424] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   67.617840] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   67.619507] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   67.620991] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   67.622609] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   67.624505] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   67.626578] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   67.627612] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   67.628951] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   67.629918] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   67.633921] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   67.635026] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   67.640526] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   67.642756] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   67.646215] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   67.648634] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   67.648771] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   67.649929] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   67.651837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   67.652527] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   67.653982] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   67.658914] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   67.659373] Bluetooth: hci2: HCI_REQ-0x0c1a
[   67.661403] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   67.663330] Bluetooth: hci0: HCI_REQ-0x0c1a
[   67.664858] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   67.666031] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   67.670528] Bluetooth: hci7: HCI_REQ-0x0c1a
[   67.673144] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   67.675024] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   67.689602] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   67.692728] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   67.694021] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   67.699246] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   67.700269] Bluetooth: hci6: HCI_REQ-0x0c1a
[   67.700711] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   67.709544] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   67.711134] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   67.712915] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   67.717833] Bluetooth: hci4: HCI_REQ-0x0c1a
[   67.724387] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   67.725516] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   67.728343] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   67.729439] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   67.732705] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   67.736302] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   67.738762] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   67.739828] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   67.743574] Bluetooth: hci5: HCI_REQ-0x0c1a
[   67.749221] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   67.752938] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   67.754457] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   67.759318] Bluetooth: hci3: HCI_REQ-0x0c1a
[   67.777597] Bluetooth: hci1: HCI_REQ-0x0c1a
[   69.715517] Bluetooth: hci2: command 0x0409 tx timeout
[   69.716387] Bluetooth: hci0: command 0x0409 tx timeout
[   69.717356] Bluetooth: hci6: command 0x0409 tx timeout
[   69.717950] Bluetooth: hci7: command 0x0409 tx timeout
[   69.779172] Bluetooth: hci3: command 0x0409 tx timeout
[   69.779919] Bluetooth: hci5: command 0x0409 tx timeout
[   69.780558] Bluetooth: hci4: command 0x0409 tx timeout
[   69.843129] Bluetooth: hci1: command 0x0409 tx timeout
[   71.764159] Bluetooth: hci7: command 0x041b tx timeout
[   71.764636] Bluetooth: hci6: command 0x041b tx timeout
[   71.765119] Bluetooth: hci0: command 0x041b tx timeout
[   71.765547] Bluetooth: hci2: command 0x041b tx timeout
[   71.828178] Bluetooth: hci4: command 0x041b tx timeout
[   71.828656] Bluetooth: hci5: command 0x041b tx timeout
[   71.829098] Bluetooth: hci3: command 0x041b tx timeout
[   71.891087] Bluetooth: hci1: command 0x041b tx timeout
[   73.812165] Bluetooth: hci2: command 0x040f tx timeout
[   73.812652] Bluetooth: hci0: command 0x040f tx timeout
[   73.813097] Bluetooth: hci6: command 0x040f tx timeout
[   73.813498] Bluetooth: hci7: command 0x040f tx timeout
[   73.876164] Bluetooth: hci3: command 0x040f tx timeout
[   73.876642] Bluetooth: hci5: command 0x040f tx timeout
[   73.877077] Bluetooth: hci4: command 0x040f tx timeout
[   73.940140] Bluetooth: hci1: command 0x040f tx timeout
[   75.860213] Bluetooth: hci7: command 0x0419 tx timeout
[   75.860681] Bluetooth: hci6: command 0x0419 tx timeout
[   75.861137] Bluetooth: hci0: command 0x0419 tx timeout
[   75.861537] Bluetooth: hci2: command 0x0419 tx timeout
[   75.924160] Bluetooth: hci4: command 0x0419 tx timeout
[   75.924633] Bluetooth: hci5: command 0x0419 tx timeout
[   75.925074] Bluetooth: hci3: command 0x0419 tx timeout
[   75.988103] Bluetooth: hci1: command 0x0419 tx timeout
11:35:37 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000000))
syz_open_dev$tty20(0xc, 0x4, 0x0)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f00000006c0)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r1 = gettid()
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x126)
rt_sigqueueinfo(0x0, 0x3, &(0x7f0000000000)={0x1a, 0x200})
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0xc3, 0x7, 0x6, 0x7f, 0x0, 0xc12, 0x20000, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0xff}, 0x400, 0xffffffffffffffff, 0x4, 0x4, 0x9, 0x3, 0x775d, 0x0, 0x1, 0x0, 0x2}, 0x0, 0xc, r0, 0xc)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000340))
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7})
r3 = getpgrp(r1)
rt_tgsigqueueinfo(r2, r3, 0x20, &(0x7f0000000140)={0x11, 0x0, 0x1ff})
socket$inet_udp(0x2, 0x2, 0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x105401, 0x0)
getsockopt$inet_int(r4, 0x0, 0x1, 0x0, &(0x7f00000001c0))

[  119.994864] audit: type=1400 audit(1664624137.656:7): avc:  denied  { open } for  pid=3756 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  119.997571] audit: type=1400 audit(1664624137.656:8): avc:  denied  { kernel } for  pid=3756 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  120.013701] ------------[ cut here ]------------
[  120.013724] 
[  120.013728] ======================================================
[  120.013731] WARNING: possible circular locking dependency detected
[  120.013736] 6.0.0-rc7-next-20220930 #1 Not tainted
[  120.013742] ------------------------------------------------------
[  120.013746] syz-executor.2/3757 is trying to acquire lock:
[  120.013752] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  120.013793] 
[  120.013793] but task is already holding lock:
[  120.013796] ffff888019c86820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  120.013823] 
[  120.013823] which lock already depends on the new lock.
[  120.013823] 
[  120.013826] 
[  120.013826] the existing dependency chain (in reverse order) is:
[  120.013830] 
[  120.013830] -> #3 (&ctx->lock){....}-{2:2}:
[  120.013844]        _raw_spin_lock+0x2a/0x40
[  120.013855]        __perf_event_task_sched_out+0x53b/0x18d0
[  120.013866]        __schedule+0xedd/0x2470
[  120.013880]        schedule+0xda/0x1b0
[  120.013893]        exit_to_user_mode_prepare+0x114/0x1a0
[  120.013906]        syscall_exit_to_user_mode+0x19/0x40
[  120.013919]        do_syscall_64+0x48/0x90
[  120.013936]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.013949] 
[  120.013949] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  120.013962]        _raw_spin_lock_nested+0x30/0x40
[  120.013973]        raw_spin_rq_lock_nested+0x1e/0x30
[  120.013986]        task_fork_fair+0x63/0x4d0
[  120.014003]        sched_cgroup_fork+0x3d0/0x540
[  120.014017]        copy_process+0x4183/0x6e20
[  120.014028]        kernel_clone+0xe7/0x890
[  120.014040]        user_mode_thread+0xad/0xf0
[  120.014050]        rest_init+0x24/0x250
[  120.014062]        arch_call_rest_init+0xf/0x14
[  120.014080]        start_kernel+0x4c6/0x4eb
[  120.014095]        secondary_startup_64_no_verify+0xe0/0xeb
[  120.014109] 
[  120.014109] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  120.014123]        _raw_spin_lock_irqsave+0x39/0x60
[  120.014133]        try_to_wake_up+0xab/0x1930
[  120.014146]        up+0x75/0xb0
[  120.014160]        __up_console_sem+0x6e/0x80
[  120.014176]        console_unlock+0x46a/0x590
[  120.014192]        do_con_write+0xc05/0x1d50
[  120.014204]        con_write+0x21/0x40
[  120.014212]        n_tty_write+0x4d4/0xfe0
[  120.014224]        file_tty_write.constprop.0+0x455/0x8a0
[  120.014236]        vfs_write+0x9c3/0xd90
[  120.014253]        ksys_write+0x127/0x250
[  120.014268]        do_syscall_64+0x3b/0x90
[  120.014284]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.014297] 
[  120.014297] -> #0 ((console_sem).lock){....}-{2:2}:
[  120.014310]        __lock_acquire+0x2a02/0x5e70
[  120.014327]        lock_acquire+0x1a2/0x530
[  120.014343]        _raw_spin_lock_irqsave+0x39/0x60
[  120.014353]        down_trylock+0xe/0x70
[  120.014368]        __down_trylock_console_sem+0x3b/0xd0
[  120.014384]        vprintk_emit+0x16b/0x560
[  120.014400]        vprintk+0x84/0xa0
[  120.014415]        _printk+0xba/0xf1
[  120.014427]        report_bug.cold+0x72/0xab
[  120.014443]        handle_bug+0x3c/0x70
[  120.014459]        exc_invalid_op+0x14/0x50
[  120.014475]        asm_exc_invalid_op+0x16/0x20
[  120.014488]        group_sched_out.part.0+0x2c7/0x460
[  120.014506]        ctx_sched_out+0x8f1/0xc10
[  120.014522]        __perf_event_task_sched_out+0x6d0/0x18d0
[  120.014533]        __schedule+0xedd/0x2470
[  120.014547]        schedule+0xda/0x1b0
[  120.014559]        exit_to_user_mode_prepare+0x114/0x1a0
[  120.014570]        syscall_exit_to_user_mode+0x19/0x40
[  120.014582]        do_syscall_64+0x48/0x90
[  120.014599]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.014611] 
[  120.014611] other info that might help us debug this:
[  120.014611] 
[  120.014614] Chain exists of:
[  120.014614]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  120.014614] 
[  120.014628]  Possible unsafe locking scenario:
[  120.014628] 
[  120.014631]        CPU0                    CPU1
[  120.014633]        ----                    ----
[  120.014636]   lock(&ctx->lock);
[  120.014641]                                lock(&rq->__lock);
[  120.014648]                                lock(&ctx->lock);
[  120.014654]   lock((console_sem).lock);
[  120.014659] 
[  120.014659]  *** DEADLOCK ***
[  120.014659] 
[  120.014661] 2 locks held by syz-executor.2/3757:
[  120.014668]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  120.014697]  #1: ffff888019c86820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  120.014723] 
[  120.014723] stack backtrace:
[  120.014726] CPU: 0 PID: 3757 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1
[  120.014738] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  120.014746] Call Trace:
[  120.014749]  <TASK>
[  120.014754]  dump_stack_lvl+0x8b/0xb3
[  120.014772]  check_noncircular+0x263/0x2e0
[  120.014796]  ? format_decode+0x26c/0xb50
[  120.014813]  ? print_circular_bug+0x450/0x450
[  120.014830]  ? simple_strtoul+0x30/0x30
[  120.014845]  ? format_decode+0x26c/0xb50
[  120.014862]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  120.014879]  __lock_acquire+0x2a02/0x5e70
[  120.014901]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  120.014923]  lock_acquire+0x1a2/0x530
[  120.014939]  ? down_trylock+0xe/0x70
[  120.014956]  ? lock_release+0x750/0x750
[  120.014976]  ? vprintk+0x84/0xa0
[  120.014994]  _raw_spin_lock_irqsave+0x39/0x60
[  120.015005]  ? down_trylock+0xe/0x70
[  120.015021]  down_trylock+0xe/0x70
[  120.015036]  ? vprintk+0x84/0xa0
[  120.015053]  __down_trylock_console_sem+0x3b/0xd0
[  120.015070]  vprintk_emit+0x16b/0x560
[  120.015088]  vprintk+0x84/0xa0
[  120.015105]  _printk+0xba/0xf1
[  120.015117]  ? record_print_text.cold+0x16/0x16
[  120.015132]  ? report_bug.cold+0x66/0xab
[  120.015150]  ? group_sched_out.part.0+0x2c7/0x460
[  120.015168]  report_bug.cold+0x72/0xab
[  120.015187]  handle_bug+0x3c/0x70
[  120.015204]  exc_invalid_op+0x14/0x50
[  120.015221]  asm_exc_invalid_op+0x16/0x20
[  120.015234] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  120.015254] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  120.015266] RSP: 0018:ffff888017e3fc48 EFLAGS: 00010006
[  120.015275] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  120.015282] RDX: ffff88803fd55040 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  120.015290] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  120.015297] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff888019c86800
[  120.015305] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  120.015316]  ? group_sched_out.part.0+0x2c7/0x460
[  120.015336]  ? group_sched_out.part.0+0x2c7/0x460
[  120.015355]  ctx_sched_out+0x8f1/0xc10
[  120.015374]  __perf_event_task_sched_out+0x6d0/0x18d0
[  120.015388]  ? lock_is_held_type+0xd7/0x130
[  120.015402]  ? __perf_cgroup_move+0x160/0x160
[  120.015412]  ? set_next_entity+0x304/0x550
[  120.015430]  ? update_curr+0x267/0x740
[  120.015448]  ? lock_is_held_type+0xd7/0x130
[  120.015462]  __schedule+0xedd/0x2470
[  120.015479]  ? io_schedule_timeout+0x150/0x150
[  120.015498]  ? rcu_read_lock_sched_held+0x3e/0x80
[  120.015520]  schedule+0xda/0x1b0
[  120.015535]  exit_to_user_mode_prepare+0x114/0x1a0
[  120.015547]  syscall_exit_to_user_mode+0x19/0x40
[  120.015560]  do_syscall_64+0x48/0x90
[  120.015578]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.015591] RIP: 0033:0x7f873c622b19
[  120.015599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.015610] RSP: 002b:00007f8739b98218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.015620] RAX: 0000000000000001 RBX: 00007f873c735f68 RCX: 00007f873c622b19
[  120.015628] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f873c735f6c
[  120.015635] RBP: 00007f873c735f60 R08: 000000000000000e R09: 0000000000000000
[  120.015642] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f873c735f6c
[  120.015649] R13: 00007ffd5fef768f R14: 00007f8739b98300 R15: 0000000000022000
[  120.015661]  </TASK>
[  120.071228] WARNING: CPU: 0 PID: 3757 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  120.071917] Modules linked in:
[  120.072153] CPU: 0 PID: 3757 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1
[  120.072737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  120.073550] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  120.073955] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  120.075275] RSP: 0018:ffff888017e3fc48 EFLAGS: 00010006
[  120.075664] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  120.076180] RDX: ffff88803fd55040 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  120.076699] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  120.077216] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff888019c86800
[  120.077740] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  120.078269] FS:  00007f8739b98700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  120.078884] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.079323] CR2: 00007f0ac3983710 CR3: 0000000018b6c000 CR4: 0000000000350ef0
[  120.079855] Call Trace:
[  120.080056]  <TASK>
[  120.080237]  ctx_sched_out+0x8f1/0xc10
[  120.080542]  __perf_event_task_sched_out+0x6d0/0x18d0
[  120.080928]  ? lock_is_held_type+0xd7/0x130
[  120.081254]  ? __perf_cgroup_move+0x160/0x160
[  120.081601]  ? set_next_entity+0x304/0x550
[  120.081923]  ? update_curr+0x267/0x740
[  120.082228]  ? lock_is_held_type+0xd7/0x130
[  120.082554]  __schedule+0xedd/0x2470
[  120.082871]  ? io_schedule_timeout+0x150/0x150
[  120.083225]  ? rcu_read_lock_sched_held+0x3e/0x80
[  120.083603]  schedule+0xda/0x1b0
[  120.083866]  exit_to_user_mode_prepare+0x114/0x1a0
[  120.084233]  syscall_exit_to_user_mode+0x19/0x40
[  120.084594]  do_syscall_64+0x48/0x90
[  120.084880]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.085263] RIP: 0033:0x7f873c622b19
[  120.085545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.086892] RSP: 002b:00007f8739b98218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.087458] RAX: 0000000000000001 RBX: 00007f873c735f68 RCX: 00007f873c622b19
[  120.087987] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f873c735f6c
[  120.088507] RBP: 00007f873c735f60 R08: 000000000000000e R09: 0000000000000000
[  120.089040] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f873c735f6c
[  120.089569] R13: 00007ffd5fef768f R14: 00007f8739b98300 R15: 0000000000022000
[  120.090107]  </TASK>
[  120.090284] irq event stamp: 1048
[  120.090540] hardirqs last  enabled at (1047): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  120.091236] hardirqs last disabled at (1048): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  120.091855] softirqs last  enabled at (796): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  120.092482] softirqs last disabled at (679): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  120.093108] ---[ end trace 0000000000000000 ]---
11:35:38 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000000))
syz_open_dev$tty20(0xc, 0x4, 0x0)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f00000006c0)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r1 = gettid()
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x126)
rt_sigqueueinfo(0x0, 0x3, &(0x7f0000000000)={0x1a, 0x200})
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0xc3, 0x7, 0x6, 0x7f, 0x0, 0xc12, 0x20000, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0xff}, 0x400, 0xffffffffffffffff, 0x4, 0x4, 0x9, 0x3, 0x775d, 0x0, 0x1, 0x0, 0x2}, 0x0, 0xc, r0, 0xc)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000340))
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7})
r3 = getpgrp(r1)
rt_tgsigqueueinfo(r2, r3, 0x20, &(0x7f0000000140)={0x11, 0x0, 0x1ff})
socket$inet_udp(0x2, 0x2, 0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x105401, 0x0)
getsockopt$inet_int(r4, 0x0, 0x1, 0x0, &(0x7f00000001c0))

11:35:38 executing program 1:
r0 = socket$unix(0x1, 0x5, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)={{0xcc, 0x4, 0x26, 0x3b9, 0xfb, 0x3f, 0x2a4, 0x10000}, "a4e0e3ac14fa0dceb96954e4e9f3c3693b712ce20bffcff4748c0ddaf1d2554013862d72f1f5f85487c8036dc55741e01e0fbbac9d48984f6948b0cf0bb3", ['\x00', '\x00', '\x00']}, 0x35e)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000380))
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f00000003c0))
r1 = memfd_secret(0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000400)={0x0, 'bridge_slave_0\x00', {0x2}, 0x5})
close(r0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000440))
getpeername$inet(r1, &(0x7f0000000480)={0x2, 0x0, @local}, &(0x7f00000004c0)=0x10)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x200100, 0x0)
ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f0000000540)={0x200, 0x3})
getsockopt$EBT_SO_GET_ENTRIES(r1, 0x0, 0x81, &(0x7f0000000740)={'nat\x00', 0x0, 0x3, 0xca, [0x8, 0x200, 0x0, 0x7, 0x1, 0x3], 0x9, &(0x7f0000000580)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000640)=""/202}, &(0x7f00000007c0)=0x78)
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f0000000800))
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000840), 0xa226aeb09b3d7c10, 0x0)
bind$inet(r3, &(0x7f0000000880)={0x2, 0x4e20, @local}, 0x10)
r4 = signalfd(r0, &(0x7f00000008c0)={[0x1]}, 0x8)
getsockopt$IP_VS_SO_GET_DAEMON(r4, 0x0, 0x487, &(0x7f0000000900), &(0x7f0000000940)=0x30)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000980)=0x1)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0), 0x400000, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r5, 0x50009418, &(0x7f0000001c00)={{}, 0x0, 0x6, @unused=[0x80000000, 0x5, 0x4, 0x7fff], @devid})

11:35:38 executing program 1:
r0 = socket$unix(0x1, 0x5, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)={{0xcc, 0x4, 0x26, 0x3b9, 0xfb, 0x3f, 0x2a4, 0x10000}, "a4e0e3ac14fa0dceb96954e4e9f3c3693b712ce20bffcff4748c0ddaf1d2554013862d72f1f5f85487c8036dc55741e01e0fbbac9d48984f6948b0cf0bb3", ['\x00', '\x00', '\x00']}, 0x35e)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000380))
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f00000003c0))
r1 = memfd_secret(0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000400)={0x0, 'bridge_slave_0\x00', {0x2}, 0x5})
close(r0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000440))
getpeername$inet(r1, &(0x7f0000000480)={0x2, 0x0, @local}, &(0x7f00000004c0)=0x10)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x200100, 0x0)
ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f0000000540)={0x200, 0x3})
getsockopt$EBT_SO_GET_ENTRIES(r1, 0x0, 0x81, &(0x7f0000000740)={'nat\x00', 0x0, 0x3, 0xca, [0x8, 0x200, 0x0, 0x7, 0x1, 0x3], 0x9, &(0x7f0000000580)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000640)=""/202}, &(0x7f00000007c0)=0x78)
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f0000000800))
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000840), 0xa226aeb09b3d7c10, 0x0)
bind$inet(r3, &(0x7f0000000880)={0x2, 0x4e20, @local}, 0x10)
r4 = signalfd(r0, &(0x7f00000008c0)={[0x1]}, 0x8)
getsockopt$IP_VS_SO_GET_DAEMON(r4, 0x0, 0x487, &(0x7f0000000900), &(0x7f0000000940)=0x30)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000980)=0x1)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0), 0x400000, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r5, 0x50009418, &(0x7f0000001c00)={{}, 0x0, 0x6, @unused=[0x80000000, 0x5, 0x4, 0x7fff], @devid})

11:35:38 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000000))
syz_open_dev$tty20(0xc, 0x4, 0x0)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f00000006c0)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r1 = gettid()
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x126)
rt_sigqueueinfo(0x0, 0x3, &(0x7f0000000000)={0x1a, 0x200})
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0xc3, 0x7, 0x6, 0x7f, 0x0, 0xc12, 0x20000, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0xff}, 0x400, 0xffffffffffffffff, 0x4, 0x4, 0x9, 0x3, 0x775d, 0x0, 0x1, 0x0, 0x2}, 0x0, 0xc, r0, 0xc)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000340))
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7})
r3 = getpgrp(r1)
rt_tgsigqueueinfo(r2, r3, 0x20, &(0x7f0000000140)={0x11, 0x0, 0x1ff})
socket$inet_udp(0x2, 0x2, 0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x105401, 0x0)
getsockopt$inet_int(r4, 0x0, 0x1, 0x0, &(0x7f00000001c0))

11:35:38 executing program 1:
r0 = socket$unix(0x1, 0x5, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)={{0xcc, 0x4, 0x26, 0x3b9, 0xfb, 0x3f, 0x2a4, 0x10000}, "a4e0e3ac14fa0dceb96954e4e9f3c3693b712ce20bffcff4748c0ddaf1d2554013862d72f1f5f85487c8036dc55741e01e0fbbac9d48984f6948b0cf0bb3", ['\x00', '\x00', '\x00']}, 0x35e)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000380))
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f00000003c0))
r1 = memfd_secret(0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000400)={0x0, 'bridge_slave_0\x00', {0x2}, 0x5})
close(r0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000440))
getpeername$inet(r1, &(0x7f0000000480)={0x2, 0x0, @local}, &(0x7f00000004c0)=0x10)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x200100, 0x0)
ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f0000000540)={0x200, 0x3})
getsockopt$EBT_SO_GET_ENTRIES(r1, 0x0, 0x81, &(0x7f0000000740)={'nat\x00', 0x0, 0x3, 0xca, [0x8, 0x200, 0x0, 0x7, 0x1, 0x3], 0x9, &(0x7f0000000580)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000640)=""/202}, &(0x7f00000007c0)=0x78)
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f0000000800))
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000840), 0xa226aeb09b3d7c10, 0x0)
bind$inet(r3, &(0x7f0000000880)={0x2, 0x4e20, @local}, 0x10)
r4 = signalfd(r0, &(0x7f00000008c0)={[0x1]}, 0x8)
getsockopt$IP_VS_SO_GET_DAEMON(r4, 0x0, 0x487, &(0x7f0000000900), &(0x7f0000000940)=0x30)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000980)=0x1)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0), 0x400000, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r5, 0x50009418, &(0x7f0000001c00)={{}, 0x0, 0x6, @unused=[0x80000000, 0x5, 0x4, 0x7fff], @devid})

11:35:38 executing program 1:
r0 = socket$unix(0x1, 0x5, 0x0)
write$binfmt_aout(r0, &(0x7f0000000000)={{0xcc, 0x4, 0x26, 0x3b9, 0xfb, 0x3f, 0x2a4, 0x10000}, "a4e0e3ac14fa0dceb96954e4e9f3c3693b712ce20bffcff4748c0ddaf1d2554013862d72f1f5f85487c8036dc55741e01e0fbbac9d48984f6948b0cf0bb3", ['\x00', '\x00', '\x00']}, 0x35e)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000380))
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f00000003c0))
r1 = memfd_secret(0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000400)={0x0, 'bridge_slave_0\x00', {0x2}, 0x5})
close(r0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000440))
getpeername$inet(r1, &(0x7f0000000480)={0x2, 0x0, @local}, &(0x7f00000004c0)=0x10)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x200100, 0x0)
ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f0000000540)={0x200, 0x3})
getsockopt$EBT_SO_GET_ENTRIES(r1, 0x0, 0x81, &(0x7f0000000740)={'nat\x00', 0x0, 0x3, 0xca, [0x8, 0x200, 0x0, 0x7, 0x1, 0x3], 0x9, &(0x7f0000000580)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000640)=""/202}, &(0x7f00000007c0)=0x78)
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f0000000800))
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000840), 0xa226aeb09b3d7c10, 0x0)
bind$inet(r3, &(0x7f0000000880)={0x2, 0x4e20, @local}, 0x10)
r4 = signalfd(r0, &(0x7f00000008c0)={[0x1]}, 0x8)
getsockopt$IP_VS_SO_GET_DAEMON(r4, 0x0, 0x487, &(0x7f0000000900), &(0x7f0000000940)=0x30)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000980)=0x1)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0), 0x400000, 0x0)

11:35:38 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000000))
syz_open_dev$tty20(0xc, 0x4, 0x0)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f00000006c0)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r1 = gettid()
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x126)
rt_sigqueueinfo(0x0, 0x3, &(0x7f0000000000)={0x1a, 0x200})
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0xc3, 0x7, 0x6, 0x7f, 0x0, 0xc12, 0x20000, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x9, 0xff}, 0x400, 0xffffffffffffffff, 0x4, 0x4, 0x9, 0x3, 0x775d, 0x0, 0x1, 0x0, 0x2}, 0x0, 0xc, r0, 0xc)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000340))
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7})
r3 = getpgrp(r1)
rt_tgsigqueueinfo(r2, r3, 0x20, &(0x7f0000000140)={0x11, 0x0, 0x1ff})
socket$inet_udp(0x2, 0x2, 0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x105401, 0x0)
getsockopt$inet_int(r4, 0x0, 0x1, 0x0, &(0x7f00000001c0))

[  121.692604] =======================================================
[  121.692604] WARNING: The mand mount option has been deprecated and
[  121.692604]          and is ignored by this kernel. Remove the mand
[  121.692604]          option from the mount to silence this warning.
[  121.692604] =======================================================

VM DIAGNOSIS:
11:35:37  Registers:
info registers vcpu 0
RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff888017e3f690
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000033 R11=0000000000000001
R12=0000000000000033 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f8739b98700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f0ac3983710 CR3=0000000018b6c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f873c7097c0 00007f873c7097c8
YMM02=0000000000000000 0000000000000000 00007f873c7097e0 00007f873c7097c0
YMM03=0000000000000000 0000000000000000 00007f873c7097c8 00007f873c7097c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff8880092bfaa0 RCX=0000000000000000 RDX=1ffff11001257f55
RSI=ffffffff816bf8c0 RDI=ffff8880092bfaa8 RBP=0000000000000005 RSP=ffff8880092bf9b8
R8 =ffffffff85ec4f22 R9 =ffffffff85ec4f26 R10=ffffed1001257f48 R11=ffff8880092bfa18
R12=ffff8880092bfaa0 R13=0000000000000000 R14=ffff888008ec0000 R15=ffff88801bfda6c0
RIP=ffffffff81359c8a RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd9b70318e0 CR3=0000000040b0a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff
YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000