Warning: Permanently added '[localhost]:49631' (ECDSA) to the list of known hosts.
2022/10/03 12:21:34 fuzzer started
2022/10/03 12:21:35 dialing manager at localhost:35095
syzkaller login: [   36.640642] cgroup: Unknown subsys name 'net'
[   36.736041] cgroup: Unknown subsys name 'rlimit'
2022/10/03 12:21:49 syscalls: 2215
2022/10/03 12:21:49 code coverage: enabled
2022/10/03 12:21:49 comparison tracing: enabled
2022/10/03 12:21:49 extra coverage: enabled
2022/10/03 12:21:49 setuid sandbox: enabled
2022/10/03 12:21:49 namespace sandbox: enabled
2022/10/03 12:21:49 Android sandbox: enabled
2022/10/03 12:21:49 fault injection: enabled
2022/10/03 12:21:49 leak checking: enabled
2022/10/03 12:21:49 net packet injection: enabled
2022/10/03 12:21:49 net device setup: enabled
2022/10/03 12:21:49 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/03 12:21:49 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/03 12:21:49 USB emulation: enabled
2022/10/03 12:21:49 hci packet injection: enabled
2022/10/03 12:21:49 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/03 12:21:49 802.15.4 emulation: enabled
2022/10/03 12:21:50 fetching corpus: 50, signal 37750/39489 (executing program)
2022/10/03 12:21:50 fetching corpus: 100, signal 45978/49365 (executing program)
2022/10/03 12:21:50 fetching corpus: 150, signal 53205/58095 (executing program)
2022/10/03 12:21:50 fetching corpus: 200, signal 61535/67832 (executing program)
2022/10/03 12:21:50 fetching corpus: 250, signal 65457/73229 (executing program)
2022/10/03 12:21:50 fetching corpus: 300, signal 71126/80200 (executing program)
2022/10/03 12:21:50 fetching corpus: 350, signal 73635/84116 (executing program)
2022/10/03 12:21:50 fetching corpus: 400, signal 75906/87810 (executing program)
2022/10/03 12:21:50 fetching corpus: 450, signal 79272/92465 (executing program)
2022/10/03 12:21:51 fetching corpus: 500, signal 82095/96584 (executing program)
2022/10/03 12:21:51 fetching corpus: 550, signal 84896/100650 (executing program)
2022/10/03 12:21:51 fetching corpus: 600, signal 87134/104153 (executing program)
2022/10/03 12:21:51 fetching corpus: 650, signal 89679/107885 (executing program)
2022/10/03 12:21:51 fetching corpus: 700, signal 92253/111665 (executing program)
2022/10/03 12:21:51 fetching corpus: 750, signal 94521/115162 (executing program)
2022/10/03 12:21:51 fetching corpus: 800, signal 99131/120623 (executing program)
2022/10/03 12:21:51 fetching corpus: 850, signal 100947/123597 (executing program)
2022/10/03 12:21:52 fetching corpus: 900, signal 103898/127541 (executing program)
2022/10/03 12:21:52 fetching corpus: 950, signal 106471/131122 (executing program)
2022/10/03 12:21:52 fetching corpus: 1000, signal 108796/134467 (executing program)
2022/10/03 12:21:52 fetching corpus: 1050, signal 110681/137369 (executing program)
2022/10/03 12:21:52 fetching corpus: 1100, signal 111859/139641 (executing program)
2022/10/03 12:21:52 fetching corpus: 1150, signal 114263/142913 (executing program)
2022/10/03 12:21:52 fetching corpus: 1200, signal 117901/147274 (executing program)
2022/10/03 12:21:52 fetching corpus: 1250, signal 121074/151176 (executing program)
2022/10/03 12:21:52 fetching corpus: 1300, signal 122307/153399 (executing program)
2022/10/03 12:21:53 fetching corpus: 1350, signal 123852/155859 (executing program)
2022/10/03 12:21:53 fetching corpus: 1400, signal 125270/158172 (executing program)
2022/10/03 12:21:53 fetching corpus: 1450, signal 127431/161109 (executing program)
2022/10/03 12:21:53 fetching corpus: 1500, signal 129467/163901 (executing program)
2022/10/03 12:21:53 fetching corpus: 1550, signal 130824/166092 (executing program)
2022/10/03 12:21:53 fetching corpus: 1600, signal 132216/168328 (executing program)
2022/10/03 12:21:53 fetching corpus: 1650, signal 134027/170924 (executing program)
2022/10/03 12:21:53 fetching corpus: 1700, signal 135832/173405 (executing program)
2022/10/03 12:21:54 fetching corpus: 1750, signal 137297/175661 (executing program)
2022/10/03 12:21:54 fetching corpus: 1800, signal 139282/178278 (executing program)
2022/10/03 12:21:54 fetching corpus: 1850, signal 140570/180348 (executing program)
2022/10/03 12:21:54 fetching corpus: 1900, signal 141289/181946 (executing program)
2022/10/03 12:21:54 fetching corpus: 1950, signal 142827/184169 (executing program)
2022/10/03 12:21:54 fetching corpus: 2000, signal 143890/185985 (executing program)
2022/10/03 12:21:54 fetching corpus: 2050, signal 145150/188036 (executing program)
2022/10/03 12:21:55 fetching corpus: 2100, signal 146033/189708 (executing program)
2022/10/03 12:21:55 fetching corpus: 2150, signal 147305/191690 (executing program)
2022/10/03 12:21:55 fetching corpus: 2200, signal 148528/193617 (executing program)
2022/10/03 12:21:55 fetching corpus: 2250, signal 149341/195207 (executing program)
2022/10/03 12:21:55 fetching corpus: 2300, signal 151668/197856 (executing program)
2022/10/03 12:21:55 fetching corpus: 2350, signal 153815/200380 (executing program)
2022/10/03 12:21:55 fetching corpus: 2400, signal 154583/201845 (executing program)
2022/10/03 12:21:55 fetching corpus: 2450, signal 155583/203470 (executing program)
2022/10/03 12:21:56 fetching corpus: 2500, signal 156400/204967 (executing program)
2022/10/03 12:21:56 fetching corpus: 2550, signal 157137/206428 (executing program)
2022/10/03 12:21:56 fetching corpus: 2600, signal 157976/207941 (executing program)
2022/10/03 12:21:56 fetching corpus: 2650, signal 159113/209715 (executing program)
2022/10/03 12:21:56 fetching corpus: 2700, signal 160273/211362 (executing program)
2022/10/03 12:21:56 fetching corpus: 2750, signal 161682/213182 (executing program)
2022/10/03 12:21:56 fetching corpus: 2800, signal 162187/214460 (executing program)
2022/10/03 12:21:56 fetching corpus: 2850, signal 162788/215737 (executing program)
2022/10/03 12:21:56 fetching corpus: 2900, signal 163454/217089 (executing program)
2022/10/03 12:21:56 fetching corpus: 2950, signal 164724/218756 (executing program)
2022/10/03 12:21:57 fetching corpus: 3000, signal 165801/220378 (executing program)
2022/10/03 12:21:57 fetching corpus: 3050, signal 166672/221799 (executing program)
2022/10/03 12:21:57 fetching corpus: 3100, signal 167299/223094 (executing program)
2022/10/03 12:21:57 fetching corpus: 3150, signal 168449/224666 (executing program)
2022/10/03 12:21:57 fetching corpus: 3200, signal 169233/226002 (executing program)
2022/10/03 12:21:57 fetching corpus: 3250, signal 169954/227316 (executing program)
2022/10/03 12:21:57 fetching corpus: 3300, signal 170739/228592 (executing program)
2022/10/03 12:21:57 fetching corpus: 3350, signal 171696/229951 (executing program)
2022/10/03 12:21:57 fetching corpus: 3400, signal 172331/231155 (executing program)
2022/10/03 12:21:58 fetching corpus: 3450, signal 172953/232324 (executing program)
2022/10/03 12:21:58 fetching corpus: 3500, signal 173374/233425 (executing program)
2022/10/03 12:21:58 fetching corpus: 3550, signal 174630/234994 (executing program)
2022/10/03 12:21:58 fetching corpus: 3600, signal 175150/236149 (executing program)
2022/10/03 12:21:58 fetching corpus: 3650, signal 175687/237323 (executing program)
2022/10/03 12:21:58 fetching corpus: 3700, signal 176285/238500 (executing program)
2022/10/03 12:21:58 fetching corpus: 3750, signal 177067/239703 (executing program)
2022/10/03 12:21:58 fetching corpus: 3800, signal 178423/241196 (executing program)
2022/10/03 12:21:58 fetching corpus: 3850, signal 180156/242836 (executing program)
2022/10/03 12:21:59 fetching corpus: 3900, signal 181362/244202 (executing program)
2022/10/03 12:21:59 fetching corpus: 3950, signal 181771/245236 (executing program)
2022/10/03 12:21:59 fetching corpus: 4000, signal 182333/246294 (executing program)
2022/10/03 12:21:59 fetching corpus: 4050, signal 182722/247317 (executing program)
2022/10/03 12:21:59 fetching corpus: 4100, signal 183246/248369 (executing program)
2022/10/03 12:21:59 fetching corpus: 4150, signal 184204/249562 (executing program)
2022/10/03 12:21:59 fetching corpus: 4200, signal 184767/250594 (executing program)
2022/10/03 12:21:59 fetching corpus: 4250, signal 185178/251539 (executing program)
2022/10/03 12:21:59 fetching corpus: 4300, signal 185976/252663 (executing program)
2022/10/03 12:22:00 fetching corpus: 4350, signal 186572/253754 (executing program)
2022/10/03 12:22:00 fetching corpus: 4400, signal 186990/254628 (executing program)
2022/10/03 12:22:00 fetching corpus: 4450, signal 187532/255638 (executing program)
2022/10/03 12:22:00 fetching corpus: 4500, signal 187989/256583 (executing program)
2022/10/03 12:22:00 fetching corpus: 4550, signal 189284/257835 (executing program)
2022/10/03 12:22:01 fetching corpus: 4600, signal 189857/258811 (executing program)
2022/10/03 12:22:01 fetching corpus: 4650, signal 190820/259923 (executing program)
2022/10/03 12:22:01 fetching corpus: 4700, signal 191402/260888 (executing program)
2022/10/03 12:22:01 fetching corpus: 4750, signal 191932/261840 (executing program)
2022/10/03 12:22:01 fetching corpus: 4800, signal 192412/262766 (executing program)
2022/10/03 12:22:01 fetching corpus: 4850, signal 192831/263663 (executing program)
2022/10/03 12:22:01 fetching corpus: 4900, signal 193340/264578 (executing program)
2022/10/03 12:22:01 fetching corpus: 4950, signal 194179/265547 (executing program)
2022/10/03 12:22:01 fetching corpus: 5000, signal 194783/266480 (executing program)
2022/10/03 12:22:01 fetching corpus: 5000, signal 194783/267189 (executing program)
2022/10/03 12:22:01 fetching corpus: 5000, signal 194783/267959 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/268657 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/269390 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/270088 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/270833 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/271527 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/272279 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/273008 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/273684 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/274407 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/275131 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/275861 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/276635 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/277345 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/278060 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/278774 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/279481 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/280178 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/280912 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/281605 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/282363 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/283090 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/283833 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/284533 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/285256 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/285988 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/286675 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/287430 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/288163 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/288859 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/289575 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/290315 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/291033 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/291757 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/292447 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/293166 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/293861 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/294579 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/295301 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/296035 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/296752 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/297451 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/298178 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/298860 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/299558 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/300260 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/300965 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/301680 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/301977 (executing program)
2022/10/03 12:22:02 fetching corpus: 5000, signal 194783/301977 (executing program)
2022/10/03 12:22:04 starting 8 fuzzer processes
12:22:04 executing program 0:
shutdown(0xffffffffffffffff, 0x1)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000040)=0xc)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_PMKSA(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x48, r0, 0xd29, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0x54}}}}, [@NL80211_ATTR_PMKID={0x14, 0x55, "0fa34699e1fb7cf1968ff89f6c84cfac"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_SSID={0x6, 0x34, @random="5ff3"}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
sendmsg$NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x54, r0, 0x100, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1f}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000080}, 0x10)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_REG(r1, &(0x7f0000000640)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f0000000380)={0x24c, 0x0, 0x200, 0x70bd2d, 0x3def, {}, [@NL80211_ATTR_REG_RULES={0x148, 0x22, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7fffffff}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x85b7}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xf474}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x91c}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x27f}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x3}, @NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x40}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7fff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfffffffd}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7fffffff}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xe5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x100}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x195a}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x80}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x1ff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x2}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xffffffc0}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xff}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffffa}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xfff}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xffffffff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xe092}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xb7f2}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x4}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7fffffff}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x35e79564}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_REG_RULES={0x68, 0x22, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xfffffffc}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x4}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x2}, @NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffffa}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xa9c}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xebd1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffff8}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x6c, 0x22, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xfff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x9}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8000}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x100}]}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x62}]}, 0x24c}, 0x1, 0x0, 0x0, 0x400c001}, 0x24048015)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r1)
sendmsg$NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000700)={0x148, r2, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x52}, @NL80211_ATTR_REG_RULES={0x114, 0x22, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x101}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1f}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x9}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x401}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8001}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xf2e40d3}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x20}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x9}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xcf}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x80}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x83b}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xff}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x1}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1d47}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7fffffff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7ff}]}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x7e}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x5}]}, 0x148}, 0x1, 0x0, 0x0, 0x810}, 0x40080)
sendmsg$FOU_CMD_GET(r1, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x1c, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@FOU_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48040}, 0x4080)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000a00)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff}, './file0\x00'})
sendmsg$unix(r3, &(0x7f0000001040)={&(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000fc0)=[{&(0x7f0000000ac0)="c5a63093b2b71accad9dd87568616f3b289b3c32e43ed3c7b1a042994196c3699febebe5327ce13700e54f141f0d", 0x2e}, {&(0x7f0000000b00)="5bbe7296e2706a79dd0d7482e21d2586a6a5240366a01bd544410ebb6f72d66e70e40bd051c00543a70b1849fb2f9a671ebf42f32fc133f3229b6feb23ce92cba2573fb2eb10eaf7b1751d1445d5ea8d3b5a52be1295d598cc574c276c059e1d74e2773d1649a83651fa94e3332f8d6631e8", 0x72}, {&(0x7f0000000b80)="cf2b63eca6a5210a2701bb7fca425bc5249c4a7484173a3daede3f20839faed96cc1b1084b13ada5cd13b5a4b3fbbd695cd7b8284b16b404bdf7fd20ca5db319895eb725a6f3590309ea0083bfa39f61705e2b90722d5309f611e695f536619da9baaf86361e39bf5c7c57e639d14b8a7856ca910302c8e2c5582925209d115b4ca2f0353619741b66e8f5a5046dd6ca0b7fcb535e98408d1fb81698f96b63589f", 0xa1}, {&(0x7f0000000c40)="3102e0da9ff1363daad56d8d74a143859e66efcce620549d0df9b710f2288d8d7c2e01003b649c4bc97d0e49b07c4661fa4751c98cc41198e1cbf9e622cd2536b1ff5be9f8c6be8c3a312fe86efafb13096e5f0b004b02ed67d1648780e222528b4217df137cef456a88c07e3089bb024e7102fcf23b8dd0828531eb89dd693acbde8dfd82f08a3457c089bf57f8de454c88844faf61b975273376ba41473b73bd006b7593103451dad12b188e68bfe05590cba9543b89eb70c32cc5e6473c27", 0xc0}, {&(0x7f0000000d00)="9c36c54db448ec0a5176eee915a84aaf938c54780a450f4bbc0f8064689e32182b5dba3902663a942e4b64518f545aa00864578da9cd065ec7b60347c50f6961a75249c38758cd91f1f05999e0499284a309659766d15d8c885a223f1cfb06c85e080fbc91d0f1378bd7a4c8d027bdc5c46ada508731fbfaef80b061957519552597fe1fcf0b77ad6a509caa32ab33e2790e7f6c63b03d97cf03433e3c22c4ded2e26fbbe7f93823248dc48a2e6ad53d477a7b9aaf885eb882b124ab57713995d08ebddde50f357042d6818edf57df2462e80f2ce48716d21f", 0xd9}, {&(0x7f0000000e00)="359273f489edccd69ced6549bf6377983607a1339b02fa411d694173fa44f1546586779bf2ab0fba542dcb88516231bbc13f9f96887a75e5d154f6c6771228f6342856ef7ca642f82c050378a794c7a8b07e5337d5225ada045f19531d8d028af882ad5daaf264db4d4d6c67cf26e193b9f3637357b938deb9beb96b3baca0e0d0fe8251e020604bd1381ce705df24b3421ec4e98eb73234dc2ee14d842dc8d9ffe99cd92cad5f8055f508c6066f4c04bf2eb5a674deae97193b6ed04c985b5cdb358c0e82", 0xc5}, {&(0x7f0000000f00)="17391ecb0c7047c8dca31191c5f2370cc9e0b048154d1b51065d6cd679ac16c6642d96a768fef885a69fc30322949f56beb0081b930ffbb840deb3c81c29a69b6615b7fe41199002cea4f27ff5d5f0ba3d6d51edcaa286ca24791f804617f240aca52ac0a484fff4a3d788738e2e38e03cd95fb7122ecc6b86a0cc9d187905aa3d92deb61d6ff06e43bdada59fde60b7205f7cbdbaefcf3b66b0eac9cae557acb4d58b32e2854ce3df894d57b2e57c504c107a324e166309f813cdff", 0xbc}], 0x7, 0x0, 0x0, 0x800}, 0x4)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001080), r1)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000010c0)={{0x1, 0x1, 0x18, <r5=>r1, {0xee00, 0xee01}}, './file1\x00'})
mknodat(r5, &(0x7f0000001100)='./file0\x00', 0x1, 0xffff8000)
r6 = pidfd_getfd(r1, r3, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r6, &(0x7f0000001200)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)={0x30, 0x0, 0x10, 0x70bd25, 0x25dfdbfe, {{}, {}, {0x14, 0x19, {0x0, 0x0, 0x4, 0x5}}}, ["", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x8040}, 0x40841)
lseek(r3, 0x6, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001280)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_DEL_PMK(r5, &(0x7f0000001380)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001340)={&(0x7f00000012c0)={0x4c, r4, 0x4, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x6, 0x76}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x4000005)

12:22:04 executing program 1:
sendmsg$NL80211_CMD_UPDATE_FT_IES(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000440)={&(0x7f0000000040)={0x3f4, 0x0, 0x400, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x67}}}}, [@NL80211_ATTR_IE={0x91, 0x2a, [@dsss={0x3, 0x1, 0x68}, @preq={0x82, 0x25, @not_ext={{}, 0x0, 0x1, 0x6b, @device_b, 0x1, "", 0x91, 0x0, 0x1, [{{}, @device_a, 0x8001}]}}, @sec_chan_ofs={0x3e, 0x1}, @ht={0x2d, 0x1a, {0x4000, 0x1, 0x1, 0x0, {0x2e9, 0x497, 0x0, 0xdc, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x8, 0x8, 0x9}}, @mesh_chsw={0x76, 0x6, {0x9, 0x5, 0x38, 0x4}}, @mesh_id={0x72, 0x6}, @peer_mgmt={0x75, 0x16, {0x1, 0x5, @val=0x8, @void, @val="2c7293a8c338192f2b4ca024df076283"}}, @ht={0x2d, 0x1a, {0x20, 0x0, 0x7, 0x0, {0x0, 0x357, 0x0, 0x5, 0x0, 0x0, 0x1, 0x2, 0x1}, 0x6, 0x9, 0x2}}]}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x8}, @NL80211_ATTR_IE={0x132, 0x2a, [@peer_mgmt={0x75, 0x6, {0x1, 0x4, @val=0x7, @void, @void}}, @cf={0x4, 0x6, {0x7, 0x1, 0x5, 0x200}}, @random={0x6, 0xec, "b85124bce113265ff1794505f7b2ec92e2d3f47ab97c6338495b7d70314f96234ce19234da6b8853547a8fad0ede3311322b8de52af49795422ed29ef54f7acd4decd15e5b6195f72ba77775ea07ab0372933f84adbe7c30572530020a2840e31084e1c9b69326b6ed8f800de7c47430d5601fd73a1c497f7f52dd589f1582d2c83e6d3fc2ceb39ab814ff4587f0fdfe2b5ebed48aac0f5a4de0d1f4e13667bd060c63cc5c1d07e45370eb2448d85e2eb34c237631854dc65a00220b7ed12f4498835e6fa14478a25dd462090918010d48576cf1f6f1d5ccbd9cb91936efb49a093f1ca44e4172e5a58dbe24"}, @peer_mgmt={0x75, 0x14, {0x20, 0x5, @void, @void, @val="dcec00977e93ae3364422653b40ead99"}}, @ssid={0x0, 0x18, @random="93625388e73565b863a39e1607841cfb4a5a24a5b6b84291"}]}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x8}, @NL80211_ATTR_IE={0x1f2, 0x2a, [@dsss={0x3, 0x1, 0xba}, @ibss={0x6, 0x2, 0xcac1}, @fast_bss_trans={0x37, 0xf7, {0x7f, 0x6, "1ddfa7475aba348e204241e6ee19457c", "c3fe9cc006922d762c8da0357ecafbf74160de545354e845471815ed4a22719c", "ea065f8d4dcb665c21e32947b287373c75009a07dfbf1572cef04b6eff21adc1", [{0x3, 0x27, "4e7e127af37cb2b38abb426858a9bf58945018aaa79ca43d09f053ab3fed8e67f14c63ee48d6ec"}, {0x1, 0x26, "48caab1c25ab00b59023659461288facbb9c4c5e2f97b97a2c0a915d8712ceb756888aaf4668"}, {0x1, 0x14, "72b1655fe691af154c66608c8bcd417f8b28ecd5"}, {0x3, 0x23, "ff2d33b49b84fb1bcd647a04d0538280af0138f333f3a1f1fb0f747189934d5d8fa3c4"}, {0x4, 0x8, "921ce75b8e11f7dd"}, {0x4, 0xd, "0ba8a395f610ceec9477586bc4"}]}}, @fast_bss_trans={0x37, 0x52, {0x5, 0x0, "2d2b4025b344a7dc0f4195c1975ba487", "46e33b0b4796b346132b51dbc71a4dfae263be72e5cb605d705855c395dd97c5", "1b900f3f12df83986300e54232eaf276586fdd216ca904e0854e16d6065b79c7"}}, @erp={0x2a, 0x1, {0x0, 0x1}}, @peer_mgmt={0x75, 0x4, {0x1, 0x9, @void, @void, @void}}, @gcr_ga={0xbd, 0x6}, @ibss={0x6, 0x2, 0x1}, @random_vendor={0xdd, 0x7d, "75d7c16f8a98f79ed46aff684ace08799461436166ff6926ae54638dd84531198c652b2d89b2b9298152c69015759f7ab3be60627a5f3145a8a56914669fac4082182d95e7279836c845af1e210ae218bde54c3727f551f0d5ca2e010714a8236b78895b520123bdcd63e76ebbfaa1c482891cce3349adeafe26c2109f"}, @chsw_timing={0x68, 0x4, {0x2, 0x9}}]}]}, 0x3f4}, 0x1, 0x0, 0x0, 0x809}, 0x40)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'vxcan0\x00', <r0=>0x0})
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000680)={'ip6gre0\x00', &(0x7f0000000600)={'syztnl0\x00', <r1=>0x0, 0x4, 0x0, 0x0, 0xb549, 0x4a, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, 0x700, 0x40, 0x5, 0x4}})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000001480)={'batadv0\x00', <r2=>0x0})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001500)={<r3=>0x0, @remote, @multicast1}, &(0x7f0000001540)=0xc)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000001600)={'ip6gre0\x00', &(0x7f0000001580)={'sit0\x00', <r4=>0x0, 0x2f, 0x24, 0x81, 0x4, 0x8, @local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x51, 0x20, 0x9, 0x6}})
sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000001840)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001800)={&(0x7f0000001640)={0x1a4, 0x0, 0x200, 0x70bd26, 0x25dfdbff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x4048}, 0x4010)
r5 = socket(0x9, 0x80000, 0xe8bb)
sendmsg$NL80211_CMD_SET_QOS_MAP(r5, &(0x7f00000019c0)={&(0x7f0000001880)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001980)={&(0x7f00000018c0)={0x84, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x1c, 0xc7, {[{0x74, 0x4}, {0xff, 0x1}, {0x2, 0x5}, {0x3, 0x5}, {0x1, 0x7}, {0x3, 0x3}, {0x9, 0x4}, {0x4a, 0x2}], "c5fbc54cd6195518"}}, @NL80211_ATTR_QOS_MAP={0x2a, 0xc7, {[{0x80, 0x4}, {0x4, 0x5}, {0x2, 0x1}, {0x3f, 0x6}, {0x3f, 0x3}, {0x6, 0x5}, {0x6, 0x3}, {0xc3, 0x2}, {0x8, 0x7}, {}, {0x5, 0x4}, {0x9, 0x6}, {0x0, 0x1}, {0x58, 0x3}, {0x31, 0x5}], "3177661c29295df1"}}, @NL80211_ATTR_QOS_MAP={0x28, 0xc7, {[{0x19, 0x2}, {0xc6, 0x2}, {0x6, 0x5}, {0x1, 0x7}, {0x4, 0x5}, {0xfc, 0x5}, {0x1}, {0x8, 0x3}, {0x5, 0x2}, {0x2, 0x4}, {0x92, 0x4}, {0x8, 0x7}, {0x4, 0x1}, {0x9, 0x6}], "fb8956d634ab7829"}}]}, 0x84}}, 0x4800)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r5, 0x89f5, &(0x7f0000001a80)={'syztnl0\x00', &(0x7f0000001a00)={'sit0\x00', <r6=>r1, 0x4, 0x1, 0x20, 0x5, 0x1, @mcast2, @private0, 0x700, 0x20, 0x7ff}})
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r5, 0x89f4, &(0x7f0000001b40)={'ip6tnl0\x00', &(0x7f0000001ac0)={'ip6_vti0\x00', r6, 0x2f, 0x2, 0x3, 0xffffffff, 0x2, @loopback, @mcast1, 0x8, 0x20, 0x9, 0x4}})
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000001c40)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001c00)={&(0x7f0000001bc0)={0x14, 0x0, 0x100, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x40041)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000001d40)={'ip6_vti0\x00', &(0x7f0000001cc0)={'syztnl0\x00', <r7=>r6, 0x2f, 0x0, 0x1, 0x7c14, 0x60, @dev={0xfe, 0x80, '\x00', 0x1b}, @remote, 0x700, 0x1, 0x80000001, 0x80}})
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r5, 0x89fa, &(0x7f00000020c0)={'sit0\x00', &(0x7f0000002040)={'syztnl2\x00', <r8=>r3, 0x29, 0x7, 0xff, 0x90, 0x40, @rand_addr=' \x01\x00', @private0={0xfc, 0x0, '\x00', 0x1}, 0x7800, 0x7800, 0x1000, 0x6}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000002240)={'syztnl2\x00', &(0x7f0000002100)={'syztnl1\x00', <r9=>r4, 0x8, 0x10, 0x7c, 0x7, {{0x3c, 0x4, 0x0, 0x2a, 0xf0, 0x65, 0x0, 0x3, 0x29, 0x0, @empty, @multicast1, {[@ssrr={0x89, 0x7, 0xde, [@dev={0xac, 0x14, 0x14, 0x11}]}, @ssrr={0x89, 0x17, 0xf8, [@dev={0xac, 0x14, 0x14, 0x43}, @broadcast, @multicast1, @empty, @loopback]}, @timestamp_prespec={0x44, 0x54, 0x1b, 0x3, 0xf, [{@broadcast, 0x326}, {@private=0xa010102, 0x4}, {@private=0xa010100, 0x4}, {@multicast2}, {@loopback, 0x3}, {@multicast1, 0x100}, {@empty, 0x8000}, {@empty, 0x4}, {@loopback, 0x3f}, {@empty, 0x3}]}, @timestamp_addr={0x44, 0xc, 0xe0, 0x1, 0x7, [{@private=0xa010102, 0x6}]}, @timestamp_addr={0x44, 0x3c, 0x8f, 0x1, 0x0, [{@private=0xa010101, 0xffffffff}, {@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x22}, 0x401}, {@dev={0xac, 0x14, 0x14, 0x9}, 0x9}, {@broadcast}, {@multicast1, 0x3}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x80000000}]}, @ra={0x94, 0x4}, @timestamp={0x44, 0x1c, 0x56, 0x0, 0x1, [0x80, 0xf6, 0x7, 0x0, 0x5, 0x9]}]}}}}})
sendmsg$ETHTOOL_MSG_RINGS_GET(r5, &(0x7f0000002400)={&(0x7f0000001c80)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000023c0)={&(0x7f0000002280)={0x128, 0x0, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x84, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x128}, 0x1, 0x0, 0x0, 0x4000}, 0x4014)
ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0)
r10 = memfd_secret(0x0)
ioctl$sock_inet6_udp_SIOCINQ(r10, 0x541b, &(0x7f0000002440))
sendmsg$NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f00000025c0)={&(0x7f00000024c0)={0x10, 0x0, 0x0, 0x412a041}, 0xc, &(0x7f0000002580)={&(0x7f0000002540)={0x20, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x0, 0x9}}}}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x20000011}, 0x20044085)

12:22:04 executing program 2:
pipe(&(0x7f00000004c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)={0x94, r2, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xee}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MEDIA={0x40, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x94}, 0x1, 0x0, 0x0, 0xa1}, 0x4000004)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_OCB(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x30, 0x0, 0x24, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x8, 0x4f}}}}, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3f}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), r0)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r1, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x14, r4, 0x200, 0x70bd2c, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x81)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1800005, 0x4010, r1, 0x61bfd000)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r1, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x24, 0x0, 0x400, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xfff}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x44}, 0x800)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000a80), 0xffffffffffffffff)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x40, r5, 0x200, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000040}, 0x485c)
r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000b80), 0x8200, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r6, &(0x7f0000000d00)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x200a400e}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c00)={0x98, 0x0, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x800}, 0x800)
r7 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000d40)='/proc/thread-self/attr/keycreate\x00', 0x2, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r7, 0x40086607, &(0x7f0000000d80)=0x5)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r0, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x28, r4, 0x400, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x100, 0xc}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x40804}, 0x880)
pipe2(&(0x7f0000000ec0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x4000)
sendmsg$NL80211_CMD_STOP_AP(r9, &(0x7f0000000fc0)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000f40)={0x14, r4, 0x200, 0x70bd26, 0x25dfdbfe, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x10)
sendmsg$NL80211_CMD_ADD_TX_TS(r8, &(0x7f0000001100)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000010c0)={&(0x7f0000001040)={0x64, r4, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x3f, 0x43}}}}, [@NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x36ed}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x7}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x7}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x3ff}]}, 0x64}, 0x1, 0x0, 0x0, 0x48000}, 0x80)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001200)={'ip6gre0\x00'})

12:22:04 executing program 3:
r0 = getgid()
setregid(r0, 0xee01)
r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2000000, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@access_uid={'access', 0x3d, 0xffffffffffffffff}}, {@fscache}, {@privport}], [{@fscontext={'fscontext', 0x3d, 'root'}}, {@dont_hash}, {@fowner_eq}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@dont_measure}, {@uid_lt={'uid<', 0xee01}}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@seclabel}]}})
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0, <r3=>0x0})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0, <r5=>0x0}, &(0x7f0000000280)=0xc)
setregid(r3, r5)
mount$9p_tcp(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x4, &(0x7f0000000380)={'trans=tcp,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@fscache}, {@version_L}], [{@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@hash}, {@appraise_type}]}})
getsockopt$IP_SET_OP_GET_BYINDEX(r1, 0x1, 0x53, &(0x7f0000000400)={0x7, 0x7, 0xffffffffffffffff}, &(0x7f0000000440)=0x28)
r6 = ioctl$TUNGETDEVNETNS(r1, 0x54e3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r7=>r1, {<r8=>r4, r3}}, './file0\x00'})
mount$9p_fd(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2040c0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, r8}}, {@posixacl}], [{@obj_role={'obj_role', 0x3d, '-}'}}]}})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r7, 0xc018937b, &(0x7f00000005c0)={{0x1, 0x1, 0x18, <r9=>r6, {r2, <r10=>r0}}, './file0\x00'})
newfstatat(0xffffffffffffff9c, &(0x7f0000000600)='./file0/../file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}, 0x4000)
setresgid(r10, r0, r11)
connect(r9, &(0x7f00000006c0)=@xdp={0x2c, 0x4, 0x0, 0x38}, 0x80)
ioctl$AUTOFS_IOC_EXPIRE(r6, 0x810c9365, &(0x7f0000000740)={{0x3, 0x7fffffff}, 0x100, './file0/../file0\x00'})
r12 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x9, 0x10010, r1, 0x8000000)
r13 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x8, 0x110, r1, 0x10000000)
syz_io_uring_submit(r12, r13, &(0x7f00000008c0)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x5, &(0x7f0000000880)={0x77359400}, 0x1, 0x1, 0x1}, 0x3)

[   66.348120] audit: type=1400 audit(1664799725.000:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
12:22:05 executing program 4:
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000000)={0x0, 0x0, 0x6, 0x0, '\x00', [{0x505, 0x2, 0x8, 0x7fff, 0x9, 0x470d}, {0x8000, 0x6, 0x9, 0x9, 0x1, 0xffff}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
r0 = accept4(0xffffffffffffffff, &(0x7f0000000240)=@nl, &(0x7f00000002c0)=0x80, 0x800)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f0000000300)={{}, 0x0, 0xe, @unused=[0x0, 0x0, 0xffffffffffffffb0, 0x7fff], @devid})
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000001300), 0x400d00, 0x0)
syz_io_uring_setup(0x7b4c, &(0x7f0000001340)={0x0, 0xe2a6, 0x8, 0x3, 0x149, 0x0, r1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000013c0), &(0x7f0000001400))
r2 = accept4$bt_l2cap(r0, &(0x7f0000001440)={0x1f, 0x0, @none}, &(0x7f0000001480)=0xe, 0x80000)
ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f00000014c0)={0x4, 0x1cb7, 0x96, 0xb2a, 0x7, 0xfff})
r3 = eventfd(0x800)
ioctl$BTRFS_IOC_SPACE_INFO(r3, 0xc0109414, &(0x7f0000001500)={0xde6, 0xfffffffffffffffc, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = pidfd_open(0x0, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c89425, &(0x7f00000162c0)={"14bba608fb32d010c324723db551d5cd", 0x0, <r5=>0x0, {0x3, 0x8f}, {0x7, 0x4}, 0xffffffff, [0x6, 0x80000001, 0x1, 0x7, 0x2, 0x21, 0x1f, 0x19, 0x91, 0x8, 0x2, 0x100, 0x0, 0x0, 0x0, 0x6406]})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r4, 0x5000943f, &(0x7f00000163c0)={{r3}, r5, 0x6, @unused=[0x3ff, 0xc5, 0x200, 0x2], @devid})
sendmsg$NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f00000174c0)={&(0x7f00000173c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000017480)={&(0x7f0000017400)={0x64, 0x0, 0x0, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x235}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x8}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xbd57}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xfff7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xffff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x2fee}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xf001}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
fcntl$setstatus(r6, 0x4, 0x4000)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, 0xffffffffffffffff)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000017600)={&(0x7f0000017500)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000175c0)={&(0x7f0000017540)={0x58, 0x1, 0x4, 0xf00, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFULA_CFG_MODE={0xa, 0x2, {0x8a9}}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0xc68}, @NFULA_CFG_QTHRESH={0x8, 0x5, 0x1, 0x0, 0x5}, @NFULA_CFG_MODE={0xa, 0x2, {0x7, 0x1}}, @NFULA_CFG_MODE={0xa, 0x2, {0x0, 0x1}}, @NFULA_CFG_QTHRESH={0x8, 0x5, 0x1, 0x0, 0xd1ca}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x20004040)
ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000017740)={&(0x7f0000017680), 0xc, &(0x7f0000017700)={&(0x7f00000176c0)={0x1c, 0x0, 0x420fd6347ce61207, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_FREQ_HINT={0x8, 0xc9, @random=0x15cc}]}, 0x1c}, 0x1, 0x0, 0x0, 0x14044000}, 0x0)

12:22:05 executing program 6:
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000000))
r0 = getgid()
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {<r2=>0xee00, r0}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r3=>r1, {0x4}}, './file0\x00'})
r4 = geteuid()
newfstatat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x800)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r6=>r1, {r4, r5}}, './file0\x00'})
r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000480), 0x60000, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000004c0)={&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00003fd000/0xc00000)=nil, &(0x7f000068f000/0x4000)=nil, &(0x7f0000000380)="4bb75b9dea5e931751327b894286480dbbd605e1e1a9b010f216d0bb27c9ef038ea3ac9787c3ca7cb88a5afcfb94125c49448a51d1941f5242aa0b7a45997c1226cb8f047ad7f2088ff1b2f816d0140cfc8112a9c583a476661f438259a798e0d035ccfaec637869b972d05f5738fbc8583d1f341b81a1dc13c9798143c09da99c14c479e6cea1fbabf21a62307757989443a03da53458b625583375d269a6b03a7265d8fed33c20af60fa4b6378df18d5213df7706de68412daa1dd44e0ca95a44e195356287f17429cfd4b8efbac95747b6306a73c47fb6478134227bcaad90de00b0eb2fac50d3619f909cbd4339110", 0xf1, r7}, 0x68)
r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000540), 0x2)
flistxattr(r8, &(0x7f0000000580)=""/28, 0x1c)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f00000005c0)={{0x2, 0x1, 0x1000, 0x0, 0x4}})
r9 = openat$incfs(r3, &(0x7f0000000600)='.log\x00', 0x430181, 0x4)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r9, 0x40345410, &(0x7f0000000640)={{0xffffffffffffffff, 0x3, 0x1, 0x2, 0x10001}})
finit_module(r6, &(0x7f0000000680)='()/\x00', 0x1)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r3, {0xc6}}, './file0\x00'})
recvmsg$unix(r9, &(0x7f0000000880)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000700)=""/155, 0x9b}], 0x1, &(0x7f0000000800)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r10=>0x0}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}, 0x2020)
setresuid(r2, r4, r10)
ioctl$FITHAW(0xffffffffffffffff, 0xc0045878)
syncfs(0xffffffffffffffff)

12:22:05 executing program 7:
r0 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000000)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
syncfs(0xffffffffffffffff)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000240)=0xffffffffffffffff, 0x4)
r1 = syz_io_uring_setup(0x7ccf, &(0x7f0000000280)={0x0, 0xef6d, 0x0, 0x3, 0x138}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000340)=<r3=>0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000380)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x100, 0x1, {0x1}}, 0x8c1)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000003, 0x2010, r1, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f00000003c0)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x2000, @fd_index=0x8, 0x9, 0x8, 0x1, 0x1}, 0x20)
syz_io_uring_submit(0x0, r3, &(0x7f0000000400)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd_index=0xa, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x98)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x628180, 0xb0)
r6 = perf_event_open$cgroup(&(0x7f0000000480)={0x2, 0x80, 0x7f, 0xf6, 0xff, 0x0, 0x0, 0x0, 0x14000, 0xf, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x4, @perf_config_ext={0xd9, 0xfffffffffffffffe}, 0x4, 0x9, 0x23dd, 0x4, 0x40, 0xffffffc0, 0x2, 0x0, 0xf70, 0x0, 0xa078}, r5, 0x7, r5, 0x8)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r6, 0x8008f511, &(0x7f0000000500))
syz_io_uring_submit(r4, r3, &(0x7f0000000680)=@IORING_OP_STATX={0x15, 0x0, 0x0, r5, &(0x7f0000000540), &(0x7f0000000640)='./file0\x00', 0x200, 0x1000, 0x1}, 0x2)
r7 = openat(0xffffffffffffffff, &(0x7f00000006c0)='./file0\x00', 0x30000, 0x8)
ioctl$BTRFS_IOC_FS_INFO(r7, 0x8400941f, &(0x7f0000000700))
mknodat(0xffffffffffffffff, &(0x7f0000000b00)='./file0\x00', 0x400, 0xc1)
r8 = open_tree(r7, &(0x7f0000000b40)='./file0\x00', 0x1)
syz_io_uring_setup(0x3c66, &(0x7f0000000b80)={0x0, 0xb7a6, 0x8, 0x1, 0x3c3, 0x0, r8}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000c00), &(0x7f0000000c40))
munlock(&(0x7f0000ff3000/0xd000)=nil, 0xd000)

12:22:05 executing program 5:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r0, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x251}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x1}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x3}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x100}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x3, 0x21)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)={0x11c, r2, 0x100, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x21}, @void, @val={0xc, 0x99, {0x9, 0x1c}}}}, [@NL80211_ATTR_VENDOR_DATA={0xf2, 0xc5, "e8b8255b9159a6bc28fd768c81457759b23f099b0119a54719f23f22934fa83ef5a6fbcb9126c1fb7725768212c18d5b669cad52cf1f85e01e6671de37e4ea4a4504df45e9ee94f748d5ef9dcb84449631e65c2063c6e13da413cb8f4e6e624dbf14a1b981f58db9eb24b89797b99dee59a9cbff93da73e10d155485a04458ae942e93d660cc954bd0fef8c5409bfbe896c67db47670b045b09be0ad1583ec73ca426a7bc89f91c7599ef19f88e1c687417743e11762437636b6c10daa5c3d034b57f464bd472e6caf01f7f0defcc7d507936c89e0926c3ee91fc7163c9825b7730a99c377442ab57ed4bc5be23f"}]}, 0x11c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24048040)
r3 = socket$netlink(0x10, 0x3, 0x4)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r1)
sendmsg$NL80211_CMD_REQ_SET_REG(r3, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x40, r4, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000084)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r1, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x38, 0x0, 0x4, 0x70bd26, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x5a}}}}, [@NL80211_PMSR_ATTR_PEERS={0x14, 0x5, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}]}]}, @NL80211_PMSR_ATTR_PEERS={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c080}, 0x20000004)
sendmsg$netlink(r1, &(0x7f0000000b40)={&(0x7f0000000600)=@proc={0x10, 0x0, 0x25dfdbfd, 0x8000}, 0xc, &(0x7f0000000ac0)=[{&(0x7f0000000640)={0x24, 0x29, 0x1, 0x70bd2d, 0x25dfdbfb, "", [@typed={0x14, 0x15, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}]}, 0x24}, {&(0x7f0000000680)={0x40c, 0x1e, 0x100, 0x70bd28, 0x25dfdbfd, "", [@generic="210a537511d87e259e82adf1946fd1e24ab2da", @typed={0x14, 0x4a, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic="47082f27741d53972152db9f387537664955122d4008382634596ca815f1bdaf3922d3385a0743583cb5f85e40fd215d6aa8e1f00a97de0a2fb42d01b0c3e52660144be4bdeafbb0041d26b76b184683de95cdd81276e6dcf9b6361f6bdc1ac49cfa7d0761410d0f9acd9444a84e5e05fbaf507451d4a2", @nested={0x92, 0x3f, 0x0, 0x1, [@generic, @generic="51dde803a16e6c8c923a0b9c73d141b55cf4ac41dd548a92fec859f9aec3a3d2471c291db47d815c5a5f35a37a8bc08f9645e55e1fd55c5613ec0e39f18b722f13ae28ba276b8ebd768f5d297ff3123e976d", @generic="87fc33fd64d844c726f55891620df4e5b83f33b02f526d61d332076509de221e825312cee12879f05eeaa56d51c0deb62ad69e03", @typed={0x8, 0x38, 0x0, 0x0, @u32=0x7}]}, @typed={0x8, 0x5c, 0x0, 0x0, @fd}, @typed={0x4, 0x4a}, @nested={0x11a, 0x65, 0x0, 0x1, [@typed={0x8, 0x91, 0x0, 0x0, @u32=0x7f650805}, @typed={0x14, 0x3d, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}, @typed={0x8, 0x6d, 0x0, 0x0, @u32=0x9}, @typed={0x8, 0x60, 0x0, 0x0, @ipv4=@empty}, @generic="5a2310b2d69043b5f3cc3dbd47c462696c9b4fd782fc308fc6fe1b44ca0b8e8d04fbb3bde9260fb2c84058bdd88bf4e383db0768f942a06dd66add4eca006619615542ecca76fa7e711f9e722305e357e9e15af400ffb0bdf98a8abc552d2f2862e7004edd1c5b2b5ebae766e9c6b4f91807cdd24072fa40dbf9945776e5695d2b45573efa17c794af1e63d349ce6e20c51d17bbf6eaaf003aa8a11406cd2e6f02edacf3152c8c9e685c4864b61e46e0cf03de13dd21fbe18cb8cb8594bef34072f5fd2b35e67343eb5ad95c2d66060d0e39f565572c3cee66ecc8f32ef0b66896c3c5ac169656341e78"]}, @generic="166534c9001f2416639b2624438ba3ae48e7d2e85b028e6ae3691c1ade9555d6ee774ac71eefd7c794889916cfbdaa3f6323d26e435e17f52cc17c22a60c189e27d190f865378514ad7891cc0fad2d246015116974752cf2bfcc05b0a5bd53b7f74959e35b36028db97cbc114364ba404c952237488a92ae8553833980f9ff76448c04b4cb5e78b68a935d62f2a9564b3efe65eda79cc80d2cea3285e3e9147c0c54007fa988d53e240c48e2c65c0c068d43904c42f31dac6513ec683afb26bfd210e192ab54603dcebacaaa37e826aceaae25fc95", @generic="c2b532bbe47e64609133d3b4550b8577e5496dfcbd5841fd6d18fb8171fc10505f67d18bce28e1cb9664396f8bc36a44ab9fe47a58472457d12c6519a2f2693eac75f163b5eb547af734537c5b28a6e014182265cd53823cf0b49602cca50b6e7d5a7680931120149867247607c7426e30e0b33a8c23e6c8da9190b2fb1d317859e1b08492b2c65fc946c05012b8f882c4f5ecaf0bcba8addb07fc30749fecf559f63a03d5a6ce27dc9b6ca534791a58ada1984e450e860372f849eddbda1140f6e25135ede68cd92646"]}, 0x40c}], 0x2, &(0x7f0000000b00), 0x0, 0x800}, 0x40)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r1, 0x5000940e, &(0x7f0000000b80)={{r1}, "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"})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001bc0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r3, &(0x7f0000001d00)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001cc0)={&(0x7f0000001c00)={0x88, r4, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x5d, 0x39}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x88}, 0x1, 0x0, 0x0, 0x20040080}, 0x40000)
fspick(0xffffffffffffffff, &(0x7f0000001d40)='./file0\x00', 0xa6c36c1b4c5f6209)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001d80), r6)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000001e80)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001e40)={&(0x7f0000001e00)={0x24, r0, 0x8, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x1a}, @val={0x8, 0x3, r5}, @void}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x11)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r3, &(0x7f0000002880)={&(0x7f0000001ec0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000002840)={&(0x7f0000001f00)={0x938, r4, 0x8, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_PMSR_ATTR_PEERS={0x180, 0x5, 0x0, 0x1, [{0x17c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_REQ={0xc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x143c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x140, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x128, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x14}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6e2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1e}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x800}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x19}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x40}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x7a4, 0x5, 0x0, 0x1, [{0x54, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_CHAN={0x24, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x27}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3f}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x10001}]}]}, {0x554, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x24, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x21}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x78, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x74, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xf9e5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1c4, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xe8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x945d}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x40}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x20c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x108, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x17}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xd5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x80}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xf8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x36}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1970}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x40}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xa1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x15}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xb2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_REQ={0x28, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x94, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x84, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x15}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1c}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x60}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x1f8, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x1d8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xc4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x17}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x16}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3f}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8001}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x14}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x19}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xa56}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8000}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}]}]}]}]}, 0x938}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f00000029c0)={&(0x7f00000028c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000002980)={&(0x7f0000002900)={0x68, r2, 0x100, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0xffffffe1, 0x26}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x180}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x401}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1520}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x8000}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1000}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}]}, 0x68}, 0x1, 0x0, 0x0, 0x41}, 0x1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000002a00), r3)

[   67.599179] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   67.601922] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   67.603380] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   67.609360] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   67.615226] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   67.616456] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   67.621304] Bluetooth: hci0: HCI_REQ-0x0c1a
[   67.706827] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   67.718160] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   67.739553] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   67.741735] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   67.743234] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   67.745094] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   67.746378] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   67.747371] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   67.750059] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   67.752008] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   67.752640] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   67.753101] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   67.756457] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   67.757873] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   67.759636] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   67.789795] Bluetooth: hci2: HCI_REQ-0x0c1a
[   67.811999] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   67.812286] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   67.813008] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   67.824384] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   67.831327] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   67.832965] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   67.836180] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   67.838486] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   67.848542] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   67.856087] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   67.858396] Bluetooth: hci3: HCI_REQ-0x0c1a
[   67.871615] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   67.872759] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   67.873855] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   67.875493] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   67.876975] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   67.878914] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   67.879410] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   67.888397] Bluetooth: hci1: HCI_REQ-0x0c1a
[   67.889574] Bluetooth: hci4: HCI_REQ-0x0c1a
[   67.893388] Bluetooth: hci5: HCI_REQ-0x0c1a
[   67.932051] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   67.939985] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   67.945044] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   67.946739] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   67.948583] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   67.949988] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   67.954264] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   67.955311] Bluetooth: hci7: HCI_REQ-0x0c1a
[   67.967928] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   67.974768] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   67.981715] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   67.988386] Bluetooth: hci6: HCI_REQ-0x0c1a
[   69.683075] Bluetooth: hci0: command 0x0409 tx timeout
[   69.810714] Bluetooth: hci2: command 0x0409 tx timeout
[   69.874898] Bluetooth: hci3: command 0x0409 tx timeout
[   69.939717] Bluetooth: hci5: command 0x0409 tx timeout
[   69.939747] Bluetooth: hci1: command 0x0409 tx timeout
[   69.940345] Bluetooth: hci4: command 0x0409 tx timeout
[   70.003136] Bluetooth: hci7: command 0x0409 tx timeout
[   70.003163] Bluetooth: hci6: command 0x0409 tx timeout
[   71.730708] Bluetooth: hci0: command 0x041b tx timeout
[   71.858722] Bluetooth: hci2: command 0x041b tx timeout
[   71.922729] Bluetooth: hci3: command 0x041b tx timeout
[   71.986701] Bluetooth: hci4: command 0x041b tx timeout
[   71.988238] Bluetooth: hci1: command 0x041b tx timeout
[   71.988673] Bluetooth: hci5: command 0x041b tx timeout
[   72.050729] Bluetooth: hci7: command 0x041b tx timeout
[   72.051971] Bluetooth: hci6: command 0x041b tx timeout
[   73.779742] Bluetooth: hci0: command 0x040f tx timeout
[   73.908077] Bluetooth: hci2: command 0x040f tx timeout
[   73.971693] Bluetooth: hci3: command 0x040f tx timeout
[   74.034738] Bluetooth: hci5: command 0x040f tx timeout
[   74.035172] Bluetooth: hci1: command 0x040f tx timeout
[   74.035557] Bluetooth: hci4: command 0x040f tx timeout
[   74.099787] Bluetooth: hci6: command 0x040f tx timeout
[   74.100209] Bluetooth: hci7: command 0x040f tx timeout
[   75.827703] Bluetooth: hci0: command 0x0419 tx timeout
[   75.955725] Bluetooth: hci2: command 0x0419 tx timeout
[   76.018750] Bluetooth: hci3: command 0x0419 tx timeout
[   76.082708] Bluetooth: hci4: command 0x0419 tx timeout
[   76.083144] Bluetooth: hci1: command 0x0419 tx timeout
[   76.083558] Bluetooth: hci5: command 0x0419 tx timeout
[   76.147748] Bluetooth: hci7: command 0x0419 tx timeout
[   76.148214] Bluetooth: hci6: command 0x0419 tx timeout
12:22:58 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)='*', 0x1}], 0x1}}], 0x1, 0x4000001)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000), 0x4)
ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, &(0x7f0000000480)={0x1, 0x8c5})
pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r0, 0x0, 0x100000)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2)
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
getsockname$packet(r2, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000200)=0x14)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x4, 0xfe, 0x40, 0x5, 0x32, @ipv4={'\x00', '\xff\xff', @local}, @initdev={0xfe, 0x88, '\x00', 0x2, 0x0}, 0x7, 0x7800, 0x10001, 0x1}})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$inet6_IPV6_PKTINFO(r3, 0x29, 0x1b, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0xfd}}, 0x14)
perf_event_open(&(0x7f0000000400)={0x3, 0x80, 0x6, 0x5, 0x1, 0x3f, 0x0, 0x3ff, 0x50000, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3b, 0x1, @perf_config_ext={0x1, 0x7fff}, 0xa8, 0x1, 0x20, 0x0, 0x0, 0x7fffffff, 0x9, 0x0, 0x4, 0x0, 0xdeb}, 0x0, 0x3, 0xffffffffffffffff, 0x3)

[  120.232922] audit: type=1400 audit(1664799778.885:7): avc:  denied  { open } for  pid=3796 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  120.234907] audit: type=1400 audit(1664799778.886:8): avc:  denied  { kernel } for  pid=3796 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  120.260502] ------------[ cut here ]------------
[  120.260523] 
[  120.260526] ======================================================
[  120.260529] WARNING: possible circular locking dependency detected
[  120.260534] 6.0.0-rc7-next-20220930 #1 Not tainted
[  120.260540] ------------------------------------------------------
[  120.260543] syz-executor.1/3797 is trying to acquire lock:
[  120.260549] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  120.260590] 
[  120.260590] but task is already holding lock:
[  120.260593] ffff88800d7a2c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  120.260620] 
[  120.260620] which lock already depends on the new lock.
[  120.260620] 
[  120.260623] 
[  120.260623] the existing dependency chain (in reverse order) is:
[  120.260627] 
[  120.260627] -> #3 (&ctx->lock){....}-{2:2}:
[  120.260643]        _raw_spin_lock+0x2a/0x40
[  120.260655]        __perf_event_task_sched_out+0x53b/0x18d0
[  120.260666]        __schedule+0xedd/0x2470
[  120.260680]        schedule+0xda/0x1b0
[  120.260693]        exit_to_user_mode_prepare+0x114/0x1a0
[  120.260706]        syscall_exit_to_user_mode+0x19/0x40
[  120.260719]        do_syscall_64+0x48/0x90
[  120.260736]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.260749] 
[  120.260749] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  120.260762]        _raw_spin_lock_nested+0x30/0x40
[  120.260773]        raw_spin_rq_lock_nested+0x1e/0x30
[  120.260786]        task_fork_fair+0x63/0x4d0
[  120.260802]        sched_cgroup_fork+0x3d0/0x540
[  120.260816]        copy_process+0x4183/0x6e20
[  120.260827]        kernel_clone+0xe7/0x890
[  120.260836]        user_mode_thread+0xad/0xf0
[  120.260846]        rest_init+0x24/0x250
[  120.260858]        arch_call_rest_init+0xf/0x14
[  120.260876]        start_kernel+0x4c6/0x4eb
[  120.260891]        secondary_startup_64_no_verify+0xe0/0xeb
[  120.260905] 
[  120.260905] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  120.260918]        _raw_spin_lock_irqsave+0x39/0x60
[  120.260929]        try_to_wake_up+0xab/0x1930
[  120.260941]        up+0x75/0xb0
[  120.260955]        __up_console_sem+0x6e/0x80
[  120.260971]        console_unlock+0x46a/0x590
[  120.260987]        vprintk_emit+0x1bd/0x560
[  120.261003]        vprintk+0x84/0xa0
[  120.261019]        _printk+0xba/0xf1
[  120.261030]        kauditd_hold_skb.cold+0x3f/0x4e
[  120.261047]        kauditd_send_queue+0x233/0x290
[  120.261062]        kauditd_thread+0x5f9/0x9c0
[  120.261076]        kthread+0x2ed/0x3a0
[  120.261090]        ret_from_fork+0x22/0x30
[  120.261102] 
[  120.261102] -> #0 ((console_sem).lock){....}-{2:2}:
[  120.261115]        __lock_acquire+0x2a02/0x5e70
[  120.261132]        lock_acquire+0x1a2/0x530
[  120.261148]        _raw_spin_lock_irqsave+0x39/0x60
[  120.261158]        down_trylock+0xe/0x70
[  120.261173]        __down_trylock_console_sem+0x3b/0xd0
[  120.261189]        vprintk_emit+0x16b/0x560
[  120.261204]        vprintk+0x84/0xa0
[  120.261220]        _printk+0xba/0xf1
[  120.261230]        report_bug.cold+0x72/0xab
[  120.261246]        handle_bug+0x3c/0x70
[  120.261262]        exc_invalid_op+0x14/0x50
[  120.261279]        asm_exc_invalid_op+0x16/0x20
[  120.261291]        group_sched_out.part.0+0x2c7/0x460
[  120.261308]        ctx_sched_out+0x8f1/0xc10
[  120.261325]        __perf_event_task_sched_out+0x6d0/0x18d0
[  120.261335]        __schedule+0xedd/0x2470
[  120.261349]        schedule+0xda/0x1b0
[  120.261362]        exit_to_user_mode_prepare+0x114/0x1a0
[  120.261372]        syscall_exit_to_user_mode+0x19/0x40
[  120.261385]        do_syscall_64+0x48/0x90
[  120.261401]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.261413] 
[  120.261413] other info that might help us debug this:
[  120.261413] 
[  120.261416] Chain exists of:
[  120.261416]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  120.261416] 
[  120.261430]  Possible unsafe locking scenario:
[  120.261430] 
[  120.261433]        CPU0                    CPU1
[  120.261435]        ----                    ----
[  120.261437]   lock(&ctx->lock);
[  120.261443]                                lock(&rq->__lock);
[  120.261449]                                lock(&ctx->lock);
[  120.261455]   lock((console_sem).lock);
[  120.261461] 
[  120.261461]  *** DEADLOCK ***
[  120.261461] 
[  120.261463] 2 locks held by syz-executor.1/3797:
[  120.261469]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  120.261498]  #1: ffff88800d7a2c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  120.261524] 
[  120.261524] stack backtrace:
[  120.261527] CPU: 0 PID: 3797 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1
[  120.261539] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  120.261547] Call Trace:
[  120.261551]  <TASK>
[  120.261555]  dump_stack_lvl+0x8b/0xb3
[  120.261573]  check_noncircular+0x263/0x2e0
[  120.261589]  ? format_decode+0x26c/0xb50
[  120.261605]  ? print_circular_bug+0x450/0x450
[  120.261622]  ? simple_strtoul+0x30/0x30
[  120.261638]  ? format_decode+0x26c/0xb50
[  120.261655]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  120.261672]  __lock_acquire+0x2a02/0x5e70
[  120.261694]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  120.261716]  lock_acquire+0x1a2/0x530
[  120.261733]  ? down_trylock+0xe/0x70
[  120.261750]  ? lock_release+0x750/0x750
[  120.261770]  ? vprintk+0x84/0xa0
[  120.261787]  _raw_spin_lock_irqsave+0x39/0x60
[  120.261798]  ? down_trylock+0xe/0x70
[  120.261814]  down_trylock+0xe/0x70
[  120.261830]  ? vprintk+0x84/0xa0
[  120.261846]  __down_trylock_console_sem+0x3b/0xd0
[  120.261864]  vprintk_emit+0x16b/0x560
[  120.261882]  vprintk+0x84/0xa0
[  120.261899]  _printk+0xba/0xf1
[  120.261911]  ? record_print_text.cold+0x16/0x16
[  120.261926]  ? report_bug.cold+0x66/0xab
[  120.261944]  ? group_sched_out.part.0+0x2c7/0x460
[  120.261962]  report_bug.cold+0x72/0xab
[  120.261981]  handle_bug+0x3c/0x70
[  120.261998]  exc_invalid_op+0x14/0x50
[  120.262016]  asm_exc_invalid_op+0x16/0x20
[  120.262028] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  120.262049] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  120.262060] RSP: 0018:ffff88801da77c48 EFLAGS: 00010006
[  120.262069] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  120.262076] RDX: ffff88803e0d9ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  120.262084] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  120.262091] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800d7a2c00
[  120.262099] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  120.262109]  ? group_sched_out.part.0+0x2c7/0x460
[  120.262129]  ? group_sched_out.part.0+0x2c7/0x460
[  120.262149]  ctx_sched_out+0x8f1/0xc10
[  120.262168]  __perf_event_task_sched_out+0x6d0/0x18d0
[  120.262182]  ? lock_is_held_type+0xd7/0x130
[  120.262196]  ? __perf_cgroup_move+0x160/0x160
[  120.262207]  ? set_next_entity+0x304/0x550
[  120.262224]  ? update_curr+0x267/0x740
[  120.262243]  ? lock_is_held_type+0xd7/0x130
[  120.262257]  __schedule+0xedd/0x2470
[  120.262273]  ? io_schedule_timeout+0x150/0x150
[  120.262290]  ? rcu_read_lock_sched_held+0x3e/0x80
[  120.262311]  schedule+0xda/0x1b0
[  120.262325]  exit_to_user_mode_prepare+0x114/0x1a0
[  120.262338]  syscall_exit_to_user_mode+0x19/0x40
[  120.262351]  do_syscall_64+0x48/0x90
[  120.262368]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.262382] RIP: 0033:0x7f6cfccc7b19
[  120.262390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.262400] RSP: 002b:00007f6cfa23d218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.262411] RAX: 0000000000000001 RBX: 00007f6cfcddaf68 RCX: 00007f6cfccc7b19
[  120.262418] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6cfcddaf6c
[  120.262425] RBP: 00007f6cfcddaf60 R08: 000000000000000e R09: 0000000000000000
[  120.262433] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f6cfcddaf6c
[  120.262440] R13: 00007ffd9519aeaf R14: 00007f6cfa23d300 R15: 0000000000022000
[  120.262452]  </TASK>
[  120.320800] WARNING: CPU: 0 PID: 3797 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  120.321733] Modules linked in:
[  120.322056] CPU: 0 PID: 3797 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1
[  120.322781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  120.323529] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  120.323898] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  120.325075] RSP: 0018:ffff88801da77c48 EFLAGS: 00010006
[  120.325427] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  120.325896] RDX: ffff88803e0d9ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  120.326363] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  120.326833] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800d7a2c00
[  120.327304] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  120.327777] FS:  00007f6cfa23d700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  120.328361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.328773] CR2: 00007fdb9bca2370 CR3: 000000003c984000 CR4: 0000000000350ef0
[  120.329299] Call Trace:
[  120.329492]  <TASK>
[  120.329665]  ctx_sched_out+0x8f1/0xc10
[  120.329972]  __perf_event_task_sched_out+0x6d0/0x18d0
[  120.330364]  ? lock_is_held_type+0xd7/0x130
[  120.330699]  ? __perf_cgroup_move+0x160/0x160
[  120.331048]  ? set_next_entity+0x304/0x550
[  120.331371]  ? update_curr+0x267/0x740
[  120.331663]  ? lock_is_held_type+0xd7/0x130
[  120.331995]  __schedule+0xedd/0x2470
[  120.332285]  ? io_schedule_timeout+0x150/0x150
[  120.332634]  ? rcu_read_lock_sched_held+0x3e/0x80
[  120.333003]  schedule+0xda/0x1b0
[  120.333263]  exit_to_user_mode_prepare+0x114/0x1a0
[  120.333634]  syscall_exit_to_user_mode+0x19/0x40
[  120.333987]  do_syscall_64+0x48/0x90
[  120.334276]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.334665] RIP: 0033:0x7f6cfccc7b19
[  120.334948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.336226] RSP: 002b:00007f6cfa23d218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.336763] RAX: 0000000000000001 RBX: 00007f6cfcddaf68 RCX: 00007f6cfccc7b19
[  120.337257] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6cfcddaf6c
[  120.337750] RBP: 00007f6cfcddaf60 R08: 000000000000000e R09: 0000000000000000
[  120.338258] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f6cfcddaf6c
[  120.338756] R13: 00007ffd9519aeaf R14: 00007f6cfa23d300 R15: 0000000000022000
[  120.339274]  </TASK>
[  120.339442] irq event stamp: 1242
[  120.339691] hardirqs last  enabled at (1241): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  120.340351] hardirqs last disabled at (1242): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  120.340940] softirqs last  enabled at (1106): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  120.341544] softirqs last disabled at (957): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  120.342138] ---[ end trace 0000000000000000 ]---
[  120.426673] hrtimer: interrupt took 33352 ns
12:22:59 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)='*', 0x1}], 0x1}}], 0x1, 0x4000001)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000), 0x4)
ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, &(0x7f0000000480)={0x1, 0x8c5})
pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r0, 0x0, 0x100000)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2)
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
getsockname$packet(r2, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000200)=0x14)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x4, 0xfe, 0x40, 0x5, 0x32, @ipv4={'\x00', '\xff\xff', @local}, @initdev={0xfe, 0x88, '\x00', 0x2, 0x0}, 0x7, 0x7800, 0x10001, 0x1}})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$inet6_IPV6_PKTINFO(r3, 0x29, 0x1b, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0xfd}}, 0x14)
perf_event_open(&(0x7f0000000400)={0x3, 0x80, 0x6, 0x5, 0x1, 0x3f, 0x0, 0x3ff, 0x50000, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3b, 0x1, @perf_config_ext={0x1, 0x7fff}, 0xa8, 0x1, 0x20, 0x0, 0x0, 0x7fffffff, 0x9, 0x0, 0x4, 0x0, 0xdeb}, 0x0, 0x3, 0xffffffffffffffff, 0x3)

12:22:59 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)='*', 0x1}], 0x1}}], 0x1, 0x4000001)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000), 0x4)
ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, &(0x7f0000000480)={0x1, 0x8c5})
pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r0, 0x0, 0x100000)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2)
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
getsockname$packet(r2, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000200)=0x14)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x4, 0xfe, 0x40, 0x5, 0x32, @ipv4={'\x00', '\xff\xff', @local}, @initdev={0xfe, 0x88, '\x00', 0x2, 0x0}, 0x7, 0x7800, 0x10001, 0x1}})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$inet6_IPV6_PKTINFO(r3, 0x29, 0x1b, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0xfd}}, 0x14)
perf_event_open(&(0x7f0000000400)={0x3, 0x80, 0x6, 0x5, 0x1, 0x3f, 0x0, 0x3ff, 0x50000, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3b, 0x1, @perf_config_ext={0x1, 0x7fff}, 0xa8, 0x1, 0x20, 0x0, 0x0, 0x7fffffff, 0x9, 0x0, 0x4, 0x0, 0xdeb}, 0x0, 0x3, 0xffffffffffffffff, 0x3)

[  122.797707] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=28 sclass=netlink_tcpdiag_socket pid=3939 comm=syz-executor.5
[  122.804992] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=28 sclass=netlink_tcpdiag_socket pid=3939 comm=syz-executor.5
[  122.812889] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=28 sclass=netlink_tcpdiag_socket pid=3939 comm=syz-executor.5
[  122.817697] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=3939 comm=syz-executor.5
[  122.826462] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=28 sclass=netlink_tcpdiag_socket pid=3942 comm=syz-executor.5
[  122.828063] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=28 sclass=netlink_tcpdiag_socket pid=3943 comm=syz-executor.5
[  122.834163] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=28 sclass=netlink_tcpdiag_socket pid=3942 comm=syz-executor.5
[  122.983228] audit: type=1400 audit(1664799781.635:9): avc:  denied  { map } for  pid=3956 comm="syz-executor.2" path="pipe:[14758]" dev="pipefs" ino=14758 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1
[  122.986724] audit: type=1400 audit(1664799781.635:10): avc:  denied  { execute } for  pid=3956 comm="syz-executor.2" path="pipe:[14758]" dev="pipefs" ino=14758 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1

VM DIAGNOSIS:
12:22:59  Registers:
info registers vcpu 0
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801da77690
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000065 R11=0000000000000001
R12=0000000000000065 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f6cfa23d700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fdb9bca2370 CR3=000000003c984000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f6cfcdae7c0 00007f6cfcdae7c8
YMM02=0000000000000000 0000000000000000 00007f6cfcdae7e0 00007f6cfcdae7c0
YMM03=0000000000000000 0000000000000000 00007f6cfcdae7c8 00007f6cfcdae7c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000000 RDX=ffff888019f25040
RSI=ffffffff815b9f23 RDI=0000000000000007 RBP=ffffea00001e6d80 RSP=ffff88801048fbb8
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88800c962940 R13=00007fa07dc31000 R14=000000000000022c R15=dffffc0000000000
RIP=ffffffff81460c67 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fa07d81a540 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa07dc33ec0 CR3=0000000015a34000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ff00000000000000 0000000000000000
YMM02=0000000000000000 0000000000000000 00ff000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff
YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000