Warning: Permanently added '[localhost]:34731' (ECDSA) to the list of known hosts.
2022/09/25 19:59:14 fuzzer started
2022/09/25 19:59:15 dialing manager at localhost:38881
syzkaller login: [   41.465949] cgroup: Unknown subsys name 'net'
[   41.596158] cgroup: Unknown subsys name 'rlimit'
2022/09/25 19:59:29 syscalls: 2215
2022/09/25 19:59:29 code coverage: enabled
2022/09/25 19:59:29 comparison tracing: enabled
2022/09/25 19:59:29 extra coverage: enabled
2022/09/25 19:59:29 setuid sandbox: enabled
2022/09/25 19:59:29 namespace sandbox: enabled
2022/09/25 19:59:29 Android sandbox: enabled
2022/09/25 19:59:29 fault injection: enabled
2022/09/25 19:59:29 leak checking: enabled
2022/09/25 19:59:29 net packet injection: enabled
2022/09/25 19:59:29 net device setup: enabled
2022/09/25 19:59:29 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/25 19:59:29 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/25 19:59:29 USB emulation: enabled
2022/09/25 19:59:29 hci packet injection: enabled
2022/09/25 19:59:29 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923                                          )
2022/09/25 19:59:29 802.15.4 emulation: enabled
2022/09/25 19:59:29 fetching corpus: 50, signal 24082/25894 (executing program)
2022/09/25 19:59:30 fetching corpus: 100, signal 39717/43093 (executing program)
2022/09/25 19:59:30 fetching corpus: 150, signal 48669/53539 (executing program)
2022/09/25 19:59:30 fetching corpus: 200, signal 60727/66876 (executing program)
2022/09/25 19:59:30 fetching corpus: 250, signal 64449/71978 (executing program)
2022/09/25 19:59:30 fetching corpus: 300, signal 69356/78208 (executing program)
2022/09/25 19:59:30 fetching corpus: 350, signal 73780/83863 (executing program)
2022/09/25 19:59:30 fetching corpus: 400, signal 76486/87846 (executing program)
2022/09/25 19:59:30 fetching corpus: 450, signal 78434/91075 (executing program)
2022/09/25 19:59:30 fetching corpus: 500, signal 81118/94959 (executing program)
2022/09/25 19:59:31 fetching corpus: 550, signal 84548/99483 (executing program)
2022/09/25 19:59:31 fetching corpus: 600, signal 85978/102137 (executing program)
2022/09/25 19:59:31 fetching corpus: 650, signal 88414/105662 (executing program)
2022/09/25 19:59:31 fetching corpus: 700, signal 90485/108845 (executing program)
2022/09/25 19:59:31 fetching corpus: 750, signal 92775/112167 (executing program)
2022/09/25 19:59:31 fetching corpus: 800, signal 95525/115832 (executing program)
2022/09/25 19:59:31 fetching corpus: 850, signal 97497/118803 (executing program)
2022/09/25 19:59:31 fetching corpus: 900, signal 99525/121862 (executing program)
2022/09/25 19:59:32 fetching corpus: 950, signal 101650/124904 (executing program)
2022/09/25 19:59:32 fetching corpus: 1000, signal 103167/127385 (executing program)
2022/09/25 19:59:32 fetching corpus: 1050, signal 106248/131207 (executing program)
2022/09/25 19:59:32 fetching corpus: 1100, signal 109198/134857 (executing program)
2022/09/25 19:59:32 fetching corpus: 1150, signal 110810/137370 (executing program)
2022/09/25 19:59:32 fetching corpus: 1200, signal 112923/140179 (executing program)
2022/09/25 19:59:32 fetching corpus: 1250, signal 114589/142652 (executing program)
2022/09/25 19:59:32 fetching corpus: 1300, signal 115721/144677 (executing program)
2022/09/25 19:59:32 fetching corpus: 1350, signal 116643/146521 (executing program)
2022/09/25 19:59:32 fetching corpus: 1400, signal 117953/148644 (executing program)
2022/09/25 19:59:33 fetching corpus: 1450, signal 120208/151484 (executing program)
2022/09/25 19:59:33 fetching corpus: 1500, signal 121172/153291 (executing program)
2022/09/25 19:59:33 fetching corpus: 1550, signal 122320/155297 (executing program)
2022/09/25 19:59:33 fetching corpus: 1600, signal 124018/157605 (executing program)
2022/09/25 19:59:33 fetching corpus: 1650, signal 124954/159351 (executing program)
2022/09/25 19:59:33 fetching corpus: 1700, signal 125985/161090 (executing program)
2022/09/25 19:59:33 fetching corpus: 1750, signal 127692/163403 (executing program)
2022/09/25 19:59:33 fetching corpus: 1800, signal 128879/165300 (executing program)
2022/09/25 19:59:33 fetching corpus: 1850, signal 130353/167390 (executing program)
2022/09/25 19:59:34 fetching corpus: 1900, signal 132022/169551 (executing program)
2022/09/25 19:59:34 fetching corpus: 1950, signal 133678/171685 (executing program)
2022/09/25 19:59:34 fetching corpus: 2000, signal 135251/173834 (executing program)
2022/09/25 19:59:34 fetching corpus: 2050, signal 136463/175595 (executing program)
2022/09/25 19:59:34 fetching corpus: 2100, signal 138211/177762 (executing program)
2022/09/25 19:59:34 fetching corpus: 2150, signal 139441/179565 (executing program)
2022/09/25 19:59:34 fetching corpus: 2200, signal 140752/181397 (executing program)
2022/09/25 19:59:34 fetching corpus: 2250, signal 141586/182890 (executing program)
2022/09/25 19:59:34 fetching corpus: 2300, signal 143927/185321 (executing program)
2022/09/25 19:59:35 fetching corpus: 2350, signal 145218/187018 (executing program)
2022/09/25 19:59:35 fetching corpus: 2400, signal 146024/188445 (executing program)
2022/09/25 19:59:35 fetching corpus: 2450, signal 148784/191041 (executing program)
2022/09/25 19:59:35 fetching corpus: 2500, signal 150162/192778 (executing program)
2022/09/25 19:59:35 fetching corpus: 2550, signal 151688/194532 (executing program)
2022/09/25 19:59:35 fetching corpus: 2600, signal 152364/195784 (executing program)
2022/09/25 19:59:35 fetching corpus: 2650, signal 153219/197129 (executing program)
2022/09/25 19:59:35 fetching corpus: 2700, signal 154163/198531 (executing program)
2022/09/25 19:59:36 fetching corpus: 2750, signal 155094/199890 (executing program)
2022/09/25 19:59:36 fetching corpus: 2800, signal 155787/201095 (executing program)
2022/09/25 19:59:36 fetching corpus: 2850, signal 156741/202443 (executing program)
2022/09/25 19:59:36 fetching corpus: 2900, signal 158016/203929 (executing program)
2022/09/25 19:59:36 fetching corpus: 2950, signal 159015/205298 (executing program)
2022/09/25 19:59:36 fetching corpus: 3000, signal 160939/207121 (executing program)
2022/09/25 19:59:36 fetching corpus: 3050, signal 161638/208263 (executing program)
2022/09/25 19:59:36 fetching corpus: 3100, signal 162358/209397 (executing program)
2022/09/25 19:59:36 fetching corpus: 3150, signal 162852/210426 (executing program)
2022/09/25 19:59:36 fetching corpus: 3200, signal 164173/211868 (executing program)
2022/09/25 19:59:36 fetching corpus: 3250, signal 164777/212906 (executing program)
2022/09/25 19:59:37 fetching corpus: 3300, signal 165735/214157 (executing program)
2022/09/25 19:59:37 fetching corpus: 3350, signal 166508/215319 (executing program)
2022/09/25 19:59:37 fetching corpus: 3400, signal 167073/216344 (executing program)
2022/09/25 19:59:37 fetching corpus: 3450, signal 168027/217540 (executing program)
2022/09/25 19:59:37 fetching corpus: 3500, signal 169239/218774 (executing program)
2022/09/25 19:59:37 fetching corpus: 3550, signal 170036/219845 (executing program)
2022/09/25 19:59:37 fetching corpus: 3600, signal 171230/221020 (executing program)
2022/09/25 19:59:37 fetching corpus: 3650, signal 171711/221909 (executing program)
2022/09/25 19:59:38 fetching corpus: 3700, signal 173895/223507 (executing program)
2022/09/25 19:59:38 fetching corpus: 3750, signal 174633/224520 (executing program)
2022/09/25 19:59:38 fetching corpus: 3800, signal 175470/225551 (executing program)
2022/09/25 19:59:38 fetching corpus: 3850, signal 176137/226487 (executing program)
2022/09/25 19:59:38 fetching corpus: 3900, signal 177250/227595 (executing program)
2022/09/25 19:59:38 fetching corpus: 3950, signal 177734/228384 (executing program)
2022/09/25 19:59:38 fetching corpus: 4000, signal 178658/229377 (executing program)
2022/09/25 19:59:39 fetching corpus: 4050, signal 179290/230224 (executing program)
2022/09/25 19:59:39 fetching corpus: 4100, signal 180173/231151 (executing program)
2022/09/25 19:59:39 fetching corpus: 4150, signal 181109/232068 (executing program)
2022/09/25 19:59:39 fetching corpus: 4200, signal 181965/233046 (executing program)
2022/09/25 19:59:39 fetching corpus: 4250, signal 182401/233827 (executing program)
2022/09/25 19:59:39 fetching corpus: 4300, signal 183382/234764 (executing program)
2022/09/25 19:59:39 fetching corpus: 4350, signal 184031/235593 (executing program)
2022/09/25 19:59:39 fetching corpus: 4400, signal 184682/236443 (executing program)
2022/09/25 19:59:40 fetching corpus: 4450, signal 185263/237194 (executing program)
2022/09/25 19:59:40 fetching corpus: 4500, signal 185754/237955 (executing program)
2022/09/25 19:59:40 fetching corpus: 4550, signal 186297/238708 (executing program)
2022/09/25 19:59:40 fetching corpus: 4600, signal 187004/239463 (executing program)
2022/09/25 19:59:40 fetching corpus: 4650, signal 187909/240261 (executing program)
2022/09/25 19:59:40 fetching corpus: 4700, signal 188422/240985 (executing program)
2022/09/25 19:59:40 fetching corpus: 4750, signal 188912/241697 (executing program)
2022/09/25 19:59:40 fetching corpus: 4800, signal 189559/242463 (executing program)
2022/09/25 19:59:40 fetching corpus: 4850, signal 190152/243203 (executing program)
2022/09/25 19:59:40 fetching corpus: 4900, signal 190795/243866 (executing program)
2022/09/25 19:59:41 fetching corpus: 4950, signal 191482/244619 (executing program)
2022/09/25 19:59:41 fetching corpus: 5000, signal 191977/245250 (executing program)
2022/09/25 19:59:41 fetching corpus: 5050, signal 192661/245897 (executing program)
2022/09/25 19:59:41 fetching corpus: 5100, signal 193063/246509 (executing program)
2022/09/25 19:59:41 fetching corpus: 5150, signal 193733/247177 (executing program)
2022/09/25 19:59:41 fetching corpus: 5200, signal 194296/247808 (executing program)
2022/09/25 19:59:41 fetching corpus: 5250, signal 194789/248410 (executing program)
2022/09/25 19:59:41 fetching corpus: 5300, signal 195171/249009 (executing program)
2022/09/25 19:59:42 fetching corpus: 5350, signal 195840/249627 (executing program)
2022/09/25 19:59:42 fetching corpus: 5400, signal 196206/250171 (executing program)
2022/09/25 19:59:42 fetching corpus: 5450, signal 196911/250791 (executing program)
2022/09/25 19:59:42 fetching corpus: 5500, signal 197273/251340 (executing program)
2022/09/25 19:59:42 fetching corpus: 5550, signal 197933/251923 (executing program)
2022/09/25 19:59:42 fetching corpus: 5600, signal 198560/252491 (executing program)
2022/09/25 19:59:42 fetching corpus: 5650, signal 199265/253040 (executing program)
2022/09/25 19:59:42 fetching corpus: 5700, signal 200143/253607 (executing program)
2022/09/25 19:59:42 fetching corpus: 5750, signal 200760/254146 (executing program)
2022/09/25 19:59:43 fetching corpus: 5800, signal 201480/254672 (executing program)
2022/09/25 19:59:43 fetching corpus: 5850, signal 202451/255190 (executing program)
2022/09/25 19:59:43 fetching corpus: 5900, signal 203038/255691 (executing program)
2022/09/25 19:59:43 fetching corpus: 5950, signal 203717/256159 (executing program)
2022/09/25 19:59:43 fetching corpus: 6000, signal 204408/256652 (executing program)
2022/09/25 19:59:43 fetching corpus: 6050, signal 205015/257133 (executing program)
2022/09/25 19:59:43 fetching corpus: 6100, signal 205398/257569 (executing program)
2022/09/25 19:59:43 fetching corpus: 6150, signal 205818/257982 (executing program)
2022/09/25 19:59:44 fetching corpus: 6200, signal 206140/258451 (executing program)
2022/09/25 19:59:44 fetching corpus: 6250, signal 206841/258901 (executing program)
2022/09/25 19:59:44 fetching corpus: 6300, signal 207386/259355 (executing program)
2022/09/25 19:59:44 fetching corpus: 6350, signal 207862/259773 (executing program)
2022/09/25 19:59:44 fetching corpus: 6400, signal 208579/260261 (executing program)
2022/09/25 19:59:44 fetching corpus: 6450, signal 209993/260520 (executing program)
2022/09/25 19:59:44 fetching corpus: 6500, signal 210471/260520 (executing program)
2022/09/25 19:59:44 fetching corpus: 6550, signal 210836/260553 (executing program)
2022/09/25 19:59:45 fetching corpus: 6600, signal 211868/260634 (executing program)
2022/09/25 19:59:45 fetching corpus: 6650, signal 212439/260635 (executing program)
2022/09/25 19:59:45 fetching corpus: 6700, signal 212794/260642 (executing program)
2022/09/25 19:59:45 fetching corpus: 6750, signal 213262/260663 (executing program)
2022/09/25 19:59:45 fetching corpus: 6800, signal 213713/260724 (executing program)
2022/09/25 19:59:45 fetching corpus: 6850, signal 214197/260746 (executing program)
2022/09/25 19:59:45 fetching corpus: 6900, signal 214500/260746 (executing program)
2022/09/25 19:59:46 fetching corpus: 6950, signal 215224/260746 (executing program)
2022/09/25 19:59:46 fetching corpus: 7000, signal 215519/260750 (executing program)
2022/09/25 19:59:46 fetching corpus: 7050, signal 216301/260750 (executing program)
2022/09/25 19:59:46 fetching corpus: 7059, signal 216365/260750 (executing program)
2022/09/25 19:59:46 fetching corpus: 7059, signal 216365/260750 (executing program)
2022/09/25 19:59:49 starting 8 fuzzer processes
19:59:49 executing program 0:
acct(&(0x7f0000000000)='./file0\x00')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(r0, &(0x7f0000001a00)=[{{&(0x7f0000000040)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000001600)=[{&(0x7f00000000c0)=""/4096, 0x1000}, {&(0x7f00000010c0)=""/208, 0xd0}, {&(0x7f00000011c0)=""/229, 0xe5}, {&(0x7f00000012c0)=""/109, 0x6d}, {&(0x7f0000001340)=""/4, 0x4}, {&(0x7f0000001380)=""/221, 0xdd}, {&(0x7f0000001480)=""/134, 0x86}, {&(0x7f0000001540)=""/132, 0x84}], 0x8, &(0x7f0000001680)=""/127, 0x7f}, 0x87}, {{&(0x7f0000001700)=@l2tp6, 0x80, &(0x7f0000001980)=[{&(0x7f0000001780)=""/216, 0xd8}, {&(0x7f0000001880)=""/239, 0xef}], 0x2, &(0x7f00000019c0)=""/51, 0x33}, 0x3ff}], 0x2, 0x2040, &(0x7f0000001a80))
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000001ac0)=0xa5, 0x4)
umount2(&(0x7f0000001b00)='./file0\x00', 0x0)
execveat(0xffffffffffffffff, &(0x7f0000001b40)='./file0\x00', &(0x7f0000001dc0)=[&(0x7f0000001b80)='^/\x00', &(0x7f0000001bc0)=',(\xfb/+\x00', &(0x7f0000001c00)='\x00', &(0x7f0000001c40)='^b#.*\x86\x89\\\x00', &(0x7f0000001c80)='%\xf5\xc0]^\x00', &(0x7f0000001cc0)='\\!^\'}\x00', &(0x7f0000001d00)='!{*-{:-\x00', &(0x7f0000001d40)='\xcd{\x00', &(0x7f0000001d80)='\\\\\x00'], &(0x7f0000002080)=[&(0x7f0000001e40)='}(\x00', &(0x7f0000001e80)='&[\x00', &(0x7f0000001ec0)='\x00', &(0x7f0000001f00)='++(:{&#d\x00', &(0x7f0000001f40)='[{**\x00', &(0x7f0000001f80)=',)////{^^^-\\\x00', &(0x7f0000001fc0)='}:+-o-,]*\x00', &(0x7f0000002000)='\x00', &(0x7f0000002040)='\x1c&,:([\x00'], 0x100)
lstat(&(0x7f0000002100)='./file0\x00', &(0x7f0000002140))
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f00000022c0)={'ip_vti0\x00', &(0x7f00000021c0)={'syztnl2\x00', 0x0, 0x1, 0x1, 0xe66, 0x9, {{0x31, 0x4, 0x2, 0x31, 0xc4, 0x64, 0x0, 0x22, 0x29, 0x0, @private=0xa010100, @dev={0xac, 0x14, 0x14, 0x15}, {[@lsrr={0x83, 0xf, 0x87, [@broadcast, @remote, @loopback]}, @timestamp_addr={0x44, 0x24, 0x63, 0x1, 0x5, [{@empty, 0x72}, {@private=0xa010100, 0x9}, {@multicast1, 0x4}, {@local, 0x100}]}, @cipso={0x86, 0x10, 0x0, [{0x2, 0x2}, {0x2, 0x3, "14"}, {0x5, 0x5, "2401c3"}]}, @ra={0x94, 0x4}, @timestamp_prespec={0x44, 0xc, 0x2d, 0x3, 0x1, [{@multicast1, 0x8}]}, @ra={0x94, 0x4, 0x1}, @timestamp={0x44, 0x14, 0x60, 0x0, 0x2, [0x400, 0x7, 0x40, 0x7]}, @cipso={0x86, 0x26, 0x3, [{0x6, 0x10, "7cc2cefd232cee91436fcb45acd7"}, {0x6, 0x10, "d03c8646f9f2ae0ffca229f6108a"}]}, @noop, @lsrr={0x83, 0x1b, 0x44, [@local, @remote, @private=0xa010101, @empty, @empty, @dev={0xac, 0x14, 0x14, 0x3f}]}]}}}}})
getpeername$packet(0xffffffffffffffff, &(0x7f0000002300)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000002340)=0x14)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000002440)={'ip_vti0\x00', &(0x7f0000002380)={'gretap0\x00', r2, 0x20, 0x0, 0x5, 0x4, {{0x24, 0x4, 0x0, 0x1, 0x90, 0x66, 0x0, 0x2, 0x14, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@ra={0x94, 0x4}, @cipso={0x86, 0x10, 0x3, [{0x1, 0xa, "b38839cc84fe2d5c"}]}, @rr={0x7, 0x13, 0xe4, [@multicast1, @dev={0xac, 0x14, 0x14, 0x2f}, @multicast1, @loopback]}, @timestamp_addr={0x44, 0x54, 0xd4, 0x1, 0x3, [{@broadcast, 0x8}, {@loopback, 0x7}, {@dev={0xac, 0x14, 0x14, 0x38}, 0x6}, {@private=0xa010100, 0x4}, {@broadcast, 0x961e}, {@loopback, 0x4}, {@dev={0xac, 0x14, 0x14, 0xb}, 0x1}, {@multicast1, 0x7fffffff}, {@private=0xa010102}, {@local, 0xd4}]}, @end]}}}}})
ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000002500)={'ip6_vti0\x00', &(0x7f0000002480)={'syztnl0\x00', <r3=>r2, 0x4, 0xf8, 0x81, 0x401, 0x41, @local, @remote, 0x700, 0x1, 0x0, 0x1}})
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f00000025c0)={'syztnl0\x00', &(0x7f0000002540)={'syztnl0\x00', r3, 0x0, 0x8, 0x7, 0x9, 0x71, @loopback, @mcast1, 0x40, 0x0, 0xae6, 0xc36}})
r4 = openat(0xffffffffffffffff, &(0x7f0000002600)='./file0\x00', 0x121400, 0x66)
r5 = dup2(r4, 0xffffffffffffffff)
sendmsg$sock(r5, &(0x7f0000002980)={&(0x7f0000002640)=@qipcrtr={0x2a, 0x0, 0x7fff}, 0x80, &(0x7f0000002880)=[{&(0x7f00000026c0)="4971302395c057d9cd1ec92f715e7089a2fedc98b4879fb67474e3411ed45614180f469829e4a0ff1910721860f94cde94cf2a79d63aa7a173fd79251aba025ae31efdec757c2d4a42efa7c579623f3422ad538dd8eaa349c2db934ad54b2bf474fbfeb1e880c5575f5ba2f9171089ae91e39bab88dd69686c3a7fabd11b5634e4e5a5fd29a2aade567309c830b9542594aad2", 0x93}, {&(0x7f0000002780)="5c8c4b1b6e1827d130bedb73422d4a9c7f8f7c866971e14f431124328c51bae746a40905f64db978cae7f233280b2c8d4a898fe4d8e5a385f8d42577a272bcd0c7a765b5b6567a42772b039a14160e3082880b87df30669303affd13c19d0ecf1aa8687ec7df9fa811f8ebee2375fcf04f752b884b5d6ca03c2d42f875771b4f7abb49bae4d3672923b37dc03cb36c4438822a44a1ca44d39258acdc2505f62443106004e17a92ce7c60ef4e4ca416c16936722162026edfcfef809f5eeee6bf0fd11f1bdab6ede589cade1272c2e6", 0xcf}], 0x2, &(0x7f00000028c0)=[@txtime={{0x18}}, @timestamping={{0x14, 0x1, 0x25, 0xfd4d}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0xed}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xffff8000}}, @mark={{0x14, 0x1, 0x24, 0x2}}], 0xc0}, 0x4011)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f00000029c0)={{0x1, 0x1, 0x18, <r6=>r0, {0x9}}, './file0\x00'})
recvmsg(r1, &(0x7f0000004240)={&(0x7f0000004180)=@xdp={0x2c, 0x0, <r7=>0x0}, 0x80, &(0x7f0000004200)}, 0xc0000000)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000004300)={'syztnl1\x00', &(0x7f0000004280)={'ip6tnl0\x00', <r8=>r3, 0x29, 0x9, 0x0, 0x7, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8, 0x80, 0x80, 0x10000}})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r6, &(0x7f0000004440)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000004400)={&(0x7f0000004340)={0xa4, 0x0, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x200000c4}, 0x4000001)

19:59:49 executing program 1:
clock_gettime(0x0, &(0x7f0000000000)={<r0=>0x0, <r1=>0x0})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0xa, &(0x7f0000000040)={r0, r1+60000000}, 0x1, 0x1}, 0x9)
ppoll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x300}], 0x1, &(0x7f0000000100)={0x77359400}, &(0x7f0000000140)={[0x380000]}, 0x8)
clock_gettime(0x2, &(0x7f0000000180))
futex(&(0x7f00000001c0)=0x1, 0x4, 0x0, &(0x7f0000000200)={0x0, 0x989680}, &(0x7f0000000240)=0x1, 0x1)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000000, 0x10, 0xffffffffffffffff, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000280)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd, 0x0, 0x0, 0x0, {0x1}, 0x1, {0x0, r3}}, 0x3)
r4 = syz_io_uring_setup(0x5938, &(0x7f00000002c0)={0x0, 0x9988, 0x0, 0x1, 0x3b4}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r5=>0x0)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, 0x184032, r4, 0x8000000)
syz_io_uring_submit(r6, r5, &(0x7f00000003c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x800)
r7 = syz_open_dev$vcsn(&(0x7f0000000400), 0x6, 0x101400)
recvmmsg$unix(r7, &(0x7f0000004dc0)=[{{&(0x7f0000000440)=@abs, 0x6e, &(0x7f0000000600)=[{&(0x7f00000004c0)=""/112, 0x70}, {&(0x7f0000000540)=""/138, 0x8a}], 0x2, &(0x7f0000000640)=[@rights={{0x18, 0x1, 0x1, [<r8=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000000680)=@abs, 0x6e, &(0x7f0000000800)=[{&(0x7f0000000700)=""/177, 0xb1}, {&(0x7f00000007c0)=""/14, 0xe}], 0x2, &(0x7f0000000840)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x120}}, {{&(0x7f0000000980), 0x6e, &(0x7f0000000cc0)=[{&(0x7f0000000a00)=""/171, 0xab}, {&(0x7f0000000ac0)=""/220, 0xdc}, {&(0x7f0000000bc0)=""/193, 0xc1}], 0x3}}, {{&(0x7f0000000d00), 0x6e, &(0x7f0000001e40)=[{&(0x7f0000000d80)=""/59, 0x3b}, {&(0x7f0000000dc0)=""/122, 0x7a}, {&(0x7f0000000e40)=""/4096, 0x1000}], 0x3, &(0x7f0000001e80)}}, {{&(0x7f0000001ec0)=@abs, 0x6e, &(0x7f0000004140)=[{&(0x7f0000001f40)=""/205, 0xcd}, {&(0x7f0000002040)=""/4096, 0x1000}, {&(0x7f0000003040)=""/94, 0x5e}, {&(0x7f00000030c0)=""/27, 0x1b}, {&(0x7f0000003100)=""/33, 0x21}, {&(0x7f0000003140)=""/4096, 0x1000}], 0x6}}, {{0x0, 0x0, &(0x7f0000004240)=[{&(0x7f00000041c0)=""/122, 0x7a}], 0x1, &(0x7f0000004280)=[@cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f0000004340)=@abs, 0x6e, &(0x7f0000004500)=[{&(0x7f00000043c0)=""/82, 0x52}, {&(0x7f0000004440)=""/191, 0xbf}], 0x2, &(0x7f0000004540)=[@rights={{0x24, 0x1, 0x1, [<r10=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r11=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x88}}, {{0x0, 0x0, &(0x7f0000004a80)=[{&(0x7f0000004600)=""/30, 0x1e}, {&(0x7f0000004640)=""/33, 0x21}, {&(0x7f0000004680)=""/174, 0xae}, {&(0x7f0000004740)=""/138, 0x8a}, {&(0x7f0000004800)=""/119, 0x77}, {&(0x7f0000004880)=""/12, 0xc}, {&(0x7f00000048c0)=""/40, 0x28}, {&(0x7f0000004900)=""/209, 0xd1}, {&(0x7f0000004a00)=""/70, 0x46}], 0x9}}, {{&(0x7f0000004b40), 0x6e, &(0x7f0000004d80)=[{&(0x7f0000004bc0)=""/156, 0x9c}, {&(0x7f0000004c80)=""/192, 0xc0}, {&(0x7f0000004d40)=""/57, 0x39}], 0x3}}], 0x9, 0x100, &(0x7f0000005000)={0x0, 0x989680})
dup3(r11, r8, 0x80000)
syz_io_uring_setup(0x5f59, &(0x7f0000005040)={0x0, 0x6c88, 0x20, 0x2, 0x105}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000050c0), &(0x7f0000005100))
r12 = syz_io_uring_setup(0x1249, &(0x7f0000005140)={0x0, 0x3f4a, 0x2, 0x3, 0x38e, 0x0, r10}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f00000051c0), &(0x7f0000005200)=<r13=>0x0)
r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r13, &(0x7f0000005300)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x1, 0x0, 0x6, 0x2, &(0x7f0000005240)="affccb061e685841dab1164330fd230b3f4ca2101714db7550cd9864c696eacbbb7e088a6c1f0d8d360ceba809e06fc166d6dee11a6ea18e8965c557f19eff981cd7122033438c69b354d6dc5599c2fc1e409a34a1cb48b53ba68217206d721e4e571de02f24db082324bbb043d4be943e5ae05c322eb10994e1cebfb604afd4527d8f6af1fa65fc45f78135aefd63e5d88bc541a401c618730bbb03ea0a8464279a3a478579e4c37217b0ff976ae5cca5e0c1cfb0d8874230bb355b", 0x101, 0x0, 0x1, {0x0, r14}}, 0x7)
fcntl$F_SET_FILE_RW_HINT(r12, 0x40e, &(0x7f0000005340)=0x2)
mincore(&(0x7f0000ffd000/0x2000)=nil, 0x2000, &(0x7f0000005380)=""/233)

19:59:49 executing program 2:
ioctl$PTP_PIN_GETFUNC2(0xffffffffffffffff, 0xc0603d0f, &(0x7f0000000000)={'\x00', 0x10a2, 0x0, 0x4})
ioctl$PTP_PIN_GETFUNC2(0xffffffffffffffff, 0xc0603d0f, &(0x7f0000000080)={'\x00', 0x0, 0x1, 0x6})
ioctl$PTP_CLOCK_GETCAPS(0xffffffffffffffff, 0x80503d01, &(0x7f0000000100))
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x101200, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(r0, 0xc0403d08, &(0x7f00000001c0))
r1 = openat$cgroup_pressure(r0, &(0x7f0000000200)='cpu.pressure\x00', 0x2, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628)
ioctl$PTP_PIN_GETFUNC2(r0, 0xc0603d0f, &(0x7f0000000240)={'\x00', 0x4, 0x0, 0x101})
pipe(&(0x7f00000002c0)={<r2=>0xffffffffffffffff})
fsetxattr$trusted_overlay_upper(r2, &(0x7f0000000300), &(0x7f0000000340)={0x0, 0xfb, 0x54, 0x1, 0xf5, "e3692ee02a0d4a13cc171be2e4dfc092", "2bb156c6c148d2280f039de21d7fb933f6b20e71ee586fb6aa969904ce13905896fb90dccb5f8a75ce9c57a70acee5f55029713765962bed81abd55ed12ec8"}, 0x54, 0x1)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000003c0), 0x24402)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000400)={0x0, 0x2, 0x3f, 0xf0a})
r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x101400, 0x0)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r4, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, 0x0, 0x10, 0x70bd29, 0x25dfdbfe, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x20004040)
lseek(r3, 0x80, 0x3)
r5 = fsopen(&(0x7f0000000580)='qnx6\x00', 0x1)
ioctl$FS_IOC_GETVERSION(r5, 0x80087601, &(0x7f00000005c0))
r6 = syz_open_dev$vcsu(&(0x7f0000000600), 0xffff, 0x4000)
ioctl$PTP_PIN_GETFUNC2(r6, 0xc0603d0f, &(0x7f0000000640)={'\x00', 0x1, 0x1, 0xfa6d})
ioctl$PTP_PIN_GETFUNC2(0xffffffffffffffff, 0xc0603d0f, &(0x7f00000006c0)={'\x00', 0x3ff, 0x3, 0x5})

19:59:49 executing program 3:
r0 = getpgid(0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_PID={0x8, 0x1c, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000814}, 0x4)
r1 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x2)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x40, 0x0, 0x400, 0x70bd2d, 0x7, {{}, {@val={0x8}, @val={0xc, 0x99, {0x9, 0x75}}}}, [@NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x15}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x801}, 0x20004014)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x28, 0x0, 0xc, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x8}, @void, @val={0xc, 0x99, {0x0, 0x37}}}}, ["", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x4004)
sendmsg$DEVLINK_CMD_PORT_GET(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x88, 0x0, 0x300, 0x70bd26, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}]}, 0x88}, 0x1, 0x0, 0x0, 0x81}, 0x400c081)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f00000004c0)={<r2=>r1, 0x1000, 0x6, 0x10001})
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r2, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x4c, 0x1, 0x8, 0x301, 0x0, 0x0, {0x2, 0x0, 0x9}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_DATA={0x2c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0xc00b}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8, 0x6, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_SCTP_CLOSED={0x8, 0x1, 0x1, 0x0, 0xfffff801}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x10001}, @CTA_TIMEOUT_SCTP_COOKIE_ECHOED={0x8, 0x3, 0x1, 0x0, 0x401}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8880}, 0x4000014)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0xc0406618, &(0x7f0000000640)={@desc={0x1, 0x0, @desc1}})
sendmsg$SOCK_DESTROY(r1, &(0x7f00000007c0)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)={0xbc, 0x15, 0x10, 0x70bd28, 0x25dfdbfc, {0x1e, 0x20}, [@INET_DIAG_REQ_BYTECODE={0x15, 0x1, "b16e82469fcdc16118c28a8d55ce87416f"}, @INET_DIAG_REQ_BYTECODE={0x8d, 0x1, "5454f97c8bd46cc88cc1abb4def5de67ad5f3e21da70e89391d64cb02fb9fcdc4ca2ced492d521aab11472554d89c3543185bd18cbe57a2e9242a6129de03c4d5a237cab665d3c5e2ffdfccc6c056cd5a01564f66eeee26259851994ee0f5bccdfd836726a9c7ddfe6a2094c257832bc2f42631303978816e934e325f1ab8f85603d708e82c94f03da"}]}, 0xbc}, 0x1, 0x0, 0x0, 0x40000}, 0x200c0c1)
r3 = perf_event_open$cgroup(&(0x7f0000000800)={0x1, 0x80, 0x0, 0x9, 0x8, 0x0, 0x0, 0x1eb7760e, 0x40500, 0xc, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x0, @perf_config_ext={0x371, 0x5}, 0x2, 0x7, 0x7, 0x9, 0x0, 0xf4, 0x6840, 0x0, 0x3, 0x0, 0x3}, r2, 0x7, r2, 0x3)
pwrite64(r3, &(0x7f0000000880)="b85e30a97b84d316742deb5727195a1890bc65bce0f568de441bdc6eecc0f7d904d5ec25be585c0592cb2b0659c7e36dcc5e7bb079578d68f211468b9c1e94cf4de63bd645076c5ab057302b6e703bb39dc43586290e36c8c6872cc14a2383ff71a51e031db1f30531a134da28e4f6ce1e84e02c112b1d2751e74d16d63daf54714618a65b8b97599abddf52c117f2cbf4c05c904e42cc35057a0753cac099dcf2868cf1266b7bf142d26ad126e48ea81a6d82953e0560a771e845ec628e5feef7c59e116a5ccb4f4ef9bf9b1fe9afcc658d2637c6734f39f3fd32f87024dabf34402dd2654e94ff16ccbf90d07fab", 0xef, 0x9)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611)
fsync(r1)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000009c0)={'wlan0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000a00)={'wlan1\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000a40)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f0000000b40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x60, 0x0, 0x800, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void, @void}}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r5}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r7}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x26}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x30}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x12}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x6, 0x2e}}]}, 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x849eeb8564c07bad)
sendmsg$NL80211_CMD_JOIN_IBSS(r2, &(0x7f0000000c80)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000c40)={&(0x7f0000000bc0)={0x44, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x101, 0x6}}}}, [@NL80211_ATTR_IE={0x12, 0x2a, [@channel_switch={0x25, 0x3, {0x0, 0x8c, 0x9}}, @mesh_config={0x71, 0x7, {0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x8, 0x68}}]}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x800}]}, 0x44}}, 0x2400c0c5)

19:59:49 executing program 4:
ioctl$AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, &(0x7f0000000000))
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x78e}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
write$P9_RUNLINKAT(r1, &(0x7f00000000c0)={0x7, 0x4d, 0x2}, 0x7)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000100)=""/112, 0x70}, {&(0x7f0000000180)=""/238, 0xee}, {&(0x7f0000000280)=""/51, 0x33}, {&(0x7f00000002c0)=""/52, 0x34}, {&(0x7f0000000300)=""/81, 0x51}, {&(0x7f0000000380)=""/42, 0x2a}], 0x6)
r2 = syz_mount_image$tmpfs(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x1000, 0x0, &(0x7f00000004c0), 0x2000, &(0x7f0000000500)={[{@nr_blocks={'nr_blocks', 0x3d, [0x31, 0x6b, 0x6d, 0x70, 0x2e]}}], [{@fowner_lt}, {@hash}, {@obj_type={'obj_type', 0x3d, '\\0,*-'}}, {@measure}]})
write$binfmt_aout(r2, &(0x7f0000000580)={{0x10b, 0x20, 0x6, 0x289, 0x1fb, 0x40, 0x15f, 0x7}, "c7e3117d51a8c4d09c412c106c2330e384bbd7856fad0583e8873e", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x83b)
r3 = syz_open_dev$loop(&(0x7f0000000dc0), 0x100, 0x80842)
fcntl$setflags(r3, 0x2, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000e00))
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000001000)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
sendfile(r4, r2, &(0x7f0000001040)=0x19aa, 0x20)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001080)='/proc/schedstat\x00', 0x0, 0x0)
write$P9_RSTATFS(r5, &(0x7f00000010c0)={0x43, 0x9, 0x2, {0x4, 0x1, 0x3, 0x0, 0xa6ec, 0x7, 0xffff, 0x81, 0x6}}, 0x43)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001140), 0xfc, 0x0, &(0x7f0000001180)="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"})
r6 = openat$zero(0xffffffffffffff9c, &(0x7f00000012c0), 0x1a1240, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r6, &(0x7f0000001300)={0x2})
syz_io_uring_complete(0x0)
recvmsg$unix(r0, &(0x7f0000001640)={&(0x7f0000001340)=@abs, 0x6e, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/9, 0x9}, {&(0x7f0000001400)=""/221, 0xdd}, {&(0x7f0000001500)=""/25, 0x19}, {&(0x7f0000001540)=""/12, 0xc}, {&(0x7f0000001580)}], 0x5}, 0x0)
sendmsg$NL80211_CMD_LEAVE_OCB(r4, &(0x7f0000001740)={&(0x7f0000001680)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001700)={&(0x7f00000016c0)={0x28, 0x0, 0x800, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x41000000, 0x10}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x11}, 0x40800)

[   75.439656] audit: type=1400 audit(1664135989.474:6): avc:  denied  { execmem } for  pid=288 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
19:59:49 executing program 5:
clock_gettime(0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
utimensat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={{r0, r1/1000+10000}}, 0x100)
getitimer(0x1, &(0x7f00000000c0))
rt_sigtimedwait(&(0x7f0000000100)={[0x7]}, &(0x7f0000000140), &(0x7f00000001c0)={0x0, 0x989680}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {<r3=>0xffffffffffffffff}}, './file0\x00'})
execveat(r2, &(0x7f0000000240)='./file0\x00', &(0x7f0000000340)=[&(0x7f0000000280)='\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='+\\\x00'], &(0x7f0000000400)=[&(0x7f0000000380)='\'\'\x00', &(0x7f00000003c0)='\x00'], 0x400)
r4 = syz_open_dev$mouse(&(0x7f0000000440), 0xc84, 0x0)
epoll_pwait(r4, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x5, &(0x7f00000004c0)={[0x7ed5]}, 0x8)
fchmodat(r2, &(0x7f0000000500)='./file0\x00', 0x104)
r5 = perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x0, 0x4, 0x9, 0x2, 0x0, 0x800, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xd9, 0x1, @perf_config_ext={0x9, 0x490a}, 0x4040, 0x400, 0x1, 0x2, 0x6, 0x6, 0x3, 0x0, 0x907, 0x0, 0x1ff}, 0x0, 0x2, r4, 0x9)
r6 = openat$cgroup_freezer_state(r2, &(0x7f00000005c0), 0x2, 0x0)
r7 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/attr/sockcreate\x00', 0x2, 0x0)
ppoll(&(0x7f0000000640)=[{r5, 0x29}, {r6, 0x80c3}, {r7, 0x1042}, {r4, 0x5100}, {r3, 0x81}], 0x5, &(0x7f0000000680)={0x77359400}, &(0x7f00000006c0)={[0x7ff]}, 0x8)
clock_gettime(0x0, &(0x7f0000000700)={<r8=>0x0, <r9=>0x0})
setitimer(0x0, &(0x7f0000000740)={{r8, r9/1000+10000}}, &(0x7f0000000780))
recvmmsg(r3, &(0x7f0000002840)=[{{&(0x7f00000007c0)=@nfc, 0x80, &(0x7f0000000880)=[{&(0x7f0000000840)}], 0x1, &(0x7f00000008c0)=""/4096, 0x1000}, 0x3}, {{&(0x7f00000018c0)=@caif=@dbg, 0x80, &(0x7f0000001a40)=[{&(0x7f0000001940)=""/147, 0x93}, {&(0x7f0000001a00)=""/53, 0x35}], 0x2, &(0x7f0000001a80)=""/136, 0x88}, 0x1}, {{&(0x7f0000001b40)=@rc={0x1f, @none}, 0x80, &(0x7f0000002200)=[{&(0x7f0000001bc0)=""/213, 0xd5}, {&(0x7f0000001cc0)=""/227, 0xe3}, {&(0x7f0000001dc0)=""/109, 0x6d}, {&(0x7f0000001e40)=""/147, 0x93}, {&(0x7f0000001f00)=""/90, 0x5a}, {&(0x7f0000001f80)=""/195, 0xc3}, {&(0x7f0000002080)=""/63, 0x3f}, {&(0x7f00000020c0)=""/186, 0xba}, {&(0x7f0000002180)=""/65, 0x41}], 0x9, &(0x7f00000022c0)=""/113, 0x71}, 0x4f545bae}, {{&(0x7f0000002340)=@caif=@rfm, 0x80, &(0x7f00000027c0)=[{&(0x7f00000023c0)=""/61, 0x3d}, {&(0x7f0000002400)=""/229, 0xe5}, {&(0x7f0000002500)=""/37, 0x25}, {&(0x7f0000002540)=""/151, 0x97}, {&(0x7f0000002600)=""/60, 0x3c}, {&(0x7f0000002640)=""/189, 0xbd}, {&(0x7f0000002700)=""/18, 0x12}, {&(0x7f0000002740)=""/88, 0x58}], 0x8}}], 0x4, 0x10041, &(0x7f0000002940)={0x0, 0x3938700})
r10 = eventfd2(0x5, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(r10, 0xd0009412, &(0x7f0000002980)={0x0, 0x101})
r11 = fork()
rt_sigqueueinfo(r11, 0x1, &(0x7f0000003980)={0x12, 0x5, 0x8})

19:59:49 executing program 6:
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x9b86c1eeb9ff2691}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x54, 0x0, 0x800, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x80000000}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x200}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x49f638f8c522408e}, 0x40)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0xc001)
r0 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$IEEE802154_LIST_IFACE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x68, r0, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x404c054}, 0x20000000)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r1, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r0, 0x100, 0x70bd28, 0x25dfdbfc, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x1)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000004c0), 0x103002, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r2, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x30, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb, {{}, {}, {0x14, 0x19, {0x81, 0x0, 0xfffffff7, 0x8}}}, ["", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4011}, 0x4000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000640)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x54, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x91b8}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x8e1}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8004)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_REMOVE(r4, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x38, 0x0, 0x8, 0x70bd28, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @private=0xa010102}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40094}, 0x40800)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000008c0), r4)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r1, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x24, r5, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x945}, 0x0)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000a00), r4)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000ac0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x24, r6, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x45}, 0x800)
fchdir(r2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000b00)={{0x1, 0x1, 0x18, <r7=>0xffffffffffffffff}, './file0\x00'})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r7, &(0x7f0000000c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000c00)={&(0x7f0000000b80)={0x54, 0x0, 0x800, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xbf2, 0x6a}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x46}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x1f}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000000}, 0x50014)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f0000000d00)={'syztnl2\x00', &(0x7f0000000c80)={'sit0\x00', r3, 0x4, 0xfe, 0x81, 0x0, 0x8, @private1={0xfc, 0x1, '\x00', 0x1}, @private2, 0x7800, 0x7, 0x1, 0x5}})

19:59:49 executing program 7:
sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x4, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000010)
r0 = syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x4c, r0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}, @GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @initdev={0xac, 0x1e, 0x0, 0x0}}, @GTPA_O_TEI={0x8, 0x9, 0x1}, @GTPA_I_TEI={0x8, 0x8, 0x1}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x4c}}, 0x8000)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, r1, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x28080}, 0x0)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x3c, r1, 0x2, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x8}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x281}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x34, 0x0, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x6}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x3ff}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004011}, 0x40)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f0000000740)={'syztnl2\x00', &(0x7f00000006c0)={'ip6tnl0\x00', <r2=>0x0, 0x29, 0x7, 0x0, 0x8000, 0x32, @local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x700, 0x1ff78, 0x9, 0x9}})
sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000780)={0x108, 0x0, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x8}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}]}, 0x108}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x34, 0x0, 0x8, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x4}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x3}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000080}, 0x8000)
r3 = accept(0xffffffffffffffff, &(0x7f0000000a40)=@l2tp6={0xa, 0x0, 0x0, @private1}, &(0x7f0000000ac0)=0x80)
sendmsg$OSF_MSG_REMOVE(r3, &(0x7f0000001040)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001000)={&(0x7f0000000b40)={0x4bc, 0x1, 0x5, 0x801, 0x0, 0x0, {0xc, 0x0, 0x3}, [{{0x254, 0x1, {{0x0, 0x2}, 0x1, 0x3, 0x6, 0x5040, 0x5, 'syz0\x00', "151881da3b4fcf3e470a392b584c51ba81e055839b6b9c81e5423fde9c666383", "57c0f1507306ffdebe0465eb195c3797e8f019476db66bb8703a7b3f6e78c6b2", [{0x4, 0x8000, {0x2, 0x719f}}, {0x40, 0xfc00, {0x2, 0x80000000}}, {0xf3, 0x8, {0x2, 0x6}}, {0x5, 0x2, {0x1, 0xfffffff7}}, {0x7, 0x9, {0x1, 0x11ba}}, {0xe2, 0x9, {0x5, 0x8000000}}, {0x4, 0x101, {0x3, 0x2}}, {0xe23, 0x9, {0x1, 0x1000}}, {0x7c7c, 0x5, {0x3, 0x7}}, {0x8, 0x100, {0x0, 0x745}}, {0x6, 0x7d2, {0x0, 0xf0e3}}, {0x9, 0x7fff, {0x3, 0x8000}}, {0x401, 0x1000, {0x0, 0x8e}}, {0x3, 0x0, {0x2, 0x100}}, {0xd57c, 0x3f, {0x3, 0x1ff}}, {0x7, 0x0, {0x0, 0x6}}, {0x0, 0x5, {0x1, 0x652585bc}}, {0x0, 0x7, {0x3, 0x5}}, {0x918, 0x4, {0x1, 0x5}}, {0x1f, 0x847, {0x1, 0xfffffffb}}, {0x0, 0x3, {0x3, 0x85f}}, {0x9, 0xe7, {0x3, 0x6}}, {0x0, 0x7f, {0x0, 0x73440048}}, {0xf38, 0x7, {0x3, 0x3}}, {0x9, 0x200, {0x2, 0x7}}, {0x0, 0x1000, {0x1, 0x3}}, {0x4, 0x4, {0x0, 0x80}}, {0x2, 0x7, {0x0, 0x1}}, {0x0, 0x0, {0x2, 0x5}}, {0x66b4, 0x7f, {0x1, 0xde45}}, {0x0, 0x80}, {0x8, 0x8, {0x2, 0x2}}, {0x7, 0x80, {0x2, 0x4fe}}, {0x4, 0x101, {0x1, 0x4}}, {0x2, 0x400, {0x3, 0x7}}, {0x1ff, 0x8, {0x3, 0x1}}, {0xcda9, 0x6, {0x0, 0x3f}}, {0x200, 0x5}, {0x2, 0x0, {0x1, 0x7}}, {0x6, 0x4, {0x0, 0x3}}]}}}, {{0x254, 0x1, {{0x0, 0x3}, 0x1f, 0x1, 0x6, 0x3, 0x21, 'syz0\x00', "422313974f1d553626776f1b5c6cb79af19092a7473b23e182838d7579b9abfd", "3781caed16f6134931f788e684f7cdcf0a6a57f61f658c6b7f9ca76512ab023f", [{0x9, 0x0, {0x0, 0x91}}, {0xffff, 0x5, {0x1, 0x7}}, {0xd92b, 0xf90, {0x2, 0x6}}, {0x4, 0x59, {0x2, 0x5}}, {0x1, 0x2, {0x3, 0xfffffff8}}, {0x1, 0x200, {0x3, 0x8c}}, {0x3, 0xfff, {0x2, 0x1}}, {0x6, 0x7, {0x1, 0x4}}, {0x7, 0x8000, {0x0, 0x7}}, {0xfff, 0x1000, {0x2, 0x8000}}, {0xff05, 0x1, {0x2, 0x6000000}}, {0x0, 0x2, {0x2, 0x3}}, {0x3, 0x2, {0x0, 0x1}}, {0x3, 0x2000, {0x0, 0x9}}, {0x5, 0x5, {0x3, 0xd6d}}, {0x5, 0x800, {0x1, 0x34d0}}, {0x401, 0x1ff, {0x2, 0x10000}}, {0x8, 0xfff, {0x0, 0x40}}, {0x8, 0x0, {0x3, 0x7}}, {0x1, 0x400, {0x2, 0x10000}}, {0x1, 0x9, {0x0, 0x2000}}, {0x110, 0x5, {0x2, 0x87cd}}, {0xffa7, 0x6, {0x1, 0x6}}, {0x8, 0x8, {0x2, 0x8000}}, {0x925, 0xc2a7, {0x3, 0x1}}, {0x800, 0x1ff, {0x2, 0x80}}, {0xf24, 0x2, {0x1, 0x80}}, {0x8, 0x0, {0x1, 0x400}}, {0x0, 0x7, {0x0, 0x45}}, {0x8, 0x9, {0x2, 0x9}}, {0x2, 0x2, {0x2, 0x80000001}}, {0x0, 0xb5, {0x1, 0xcb0e}}, {0x0, 0x6, {0x3, 0x1}}, {0x7ff, 0x7, {0x2}}, {0x9, 0x3, {0x2, 0x7ff}}, {0x728, 0xc08a, {0x2, 0x4}}, {0x81, 0x7, {0x3, 0xfff}}, {0x0, 0xa89d, {0x0, 0x7}}, {0xf1, 0x0, {0x1, 0x6}}, {0x6, 0x8001, {0x3, 0x2}}]}}}]}, 0x4bc}, 0x1, 0x0, 0x0, 0x5080}, 0x1)
r4 = dup3(r3, r3, 0x80000)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r4, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001140)={&(0x7f00000010c0)={0x48, r1, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2c}}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x9e}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000011c0)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x4004, @fd_index, 0x9, 0x8, 0x0, 0x2, 0x0, {0x2}}, 0x9)
fsetxattr$security_selinux(r4, &(0x7f0000001200), &(0x7f0000001240)='system_u:object_r:etc_mail_t:s0\x00', 0x20, 0x1)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000012c0), r4)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f0000001580)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x81003042}, 0xc, &(0x7f0000001540)={&(0x7f0000001300)={0x23c, r5, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x100, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1000}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3f}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x701}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6}}, {0x14, 0x2, @in={0x2, 0x4e21, @multicast2}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @broadcast}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x9, @private2, 0x400}}}}, @TIPC_NLA_BEARER_NAME={0x11, 0x1, @l2={'eth', 0x3a, 'ip6_vti0\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}]}]}, @TIPC_NLA_NODE={0xec, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xd9, 0x3, "4e218410d1fefd098e9fe86f2437ee99d847765d78cff9be146f8d38ed8b47ff2ce2b63f9cc4d0b8a18381e769d50ebcc278495984d9bc404d3d4c03666ea0ceda96da7a98b93bb59296f3142e67141837b657b50675988432380868c7f3af6ba3818d4afd9b5a0eca53d83cf11f52f048f74d81bd512425ec8a4f8975b71f7af737f758839efda2d9de03fa9b224ddff0055a17b10b37e0d1152be17207257b27e8f1c06ba2029704b7a238f2b4605dd19ad78bdf12911e3560f4f160643afd2584129b44ea102e7938e2b584958bfd997073664d"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfffffffb}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xcd6}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1ff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xd74}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xffff}]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x20000020}, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000006b40)=[{{&(0x7f00000015c0), 0x6e, &(0x7f0000001980)=[{&(0x7f0000001640)=""/193, 0xc1}, {&(0x7f0000001740)=""/236, 0xec}, {&(0x7f0000001840)=""/177, 0xb1}, {&(0x7f0000001900)=""/15, 0xf}, {&(0x7f0000001940)=""/25, 0x19}], 0x5, &(0x7f0000001a00)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{&(0x7f0000001a80), 0x6e, &(0x7f0000001b40)=[{&(0x7f0000001b00)=""/53, 0x35}], 0x1, &(0x7f0000001b80)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x78}}, {{&(0x7f0000001c00), 0x6e, &(0x7f0000003e40)=[{&(0x7f0000001c80)=""/4096, 0x1000}, {&(0x7f0000002c80)}, {&(0x7f0000002cc0)=""/4096, 0x1000}, {&(0x7f0000003cc0)=""/97, 0x61}, {&(0x7f0000003d40)=""/206, 0xce}], 0x5, &(0x7f0000003ec0)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000003f00)=@abs, 0x6e, &(0x7f0000005540)=[{&(0x7f0000003f80)=""/4096, 0x1000}, {&(0x7f0000004f80)=""/159, 0x9f}, {&(0x7f0000005040)=""/171, 0xab}, {&(0x7f0000005100)=""/36, 0x24}, {&(0x7f0000005140)=""/224, 0xe0}, {&(0x7f0000005240)}, {&(0x7f0000005280)=""/50, 0x32}, {&(0x7f00000052c0)=""/215, 0xd7}, {&(0x7f00000053c0)=""/192, 0xc0}, {&(0x7f0000005480)=""/154, 0x9a}], 0xa, &(0x7f0000005600)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{&(0x7f0000005680)=@abs, 0x6e, &(0x7f00000057c0)=[{&(0x7f0000005700)=""/10, 0xa}, {&(0x7f0000005740)=""/34, 0x22}, {&(0x7f0000005780)=""/37, 0x25}], 0x3, &(0x7f0000005800)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa0}}, {{&(0x7f00000058c0)=@abs, 0x6e, &(0x7f0000006b00)=[{&(0x7f0000005940)=""/4096, 0x1000}, {&(0x7f0000006940)=""/65, 0x41}, {&(0x7f00000069c0)=""/144, 0x90}, {&(0x7f0000006a80)=""/99, 0x63}], 0x4}}], 0x6, 0x20, &(0x7f0000006cc0)={0x0, 0x3938700})
sendmsg$NL80211_CMD_TESTMODE(r6, &(0x7f00000072c0)={&(0x7f0000006d00), 0xc, &(0x7f0000007280)={&(0x7f0000006d80)={0x4d4, 0x0, 0x101, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TESTDATA={0x5e, 0x45, "087c728a969535063d10f98c621313ce3019c41039f0ee493ff9a09de9b405985615f3287ab408208f5797ad1fe93a4566edb0e4155cf1a7f7eb7b1bae0e14462f5fc31a699fa9b90026f3183fc83a544e1264d0589ee5b2e038"}, @NL80211_ATTR_TESTDATA={0x48, 0x45, "ac07f760060b7270a26eb84b590fba56997984e181d7e526e3833e1c04f711ff4fb06484037b70a8c81e90856895248054a5307c176c7801903d8c1939e69a9611a66021"}, @NL80211_ATTR_TESTDATA={0x9a, 0x45, "a649bcdae588fb16024dac045d86a60d157948ab0a4ebf4f991050e88ab3f7eed888020dcb5dd50915afad5c3e354c7aa2bccd1aa42e6146230e301d6e339629c111e4604074004aad350038eff486274c37c1f5bb2ebe00d37c248caaeb2815e540193659304397e792ee777308118e6eccecf814ec24c90d3b53d4b6c19bcd58df149e574ef2b4c4a3469c0f03791d540254dd54d1"}, @NL80211_ATTR_TESTDATA={0xfa, 0x45, "d8495c2207aa3f3d9daa8f3e621e43a0a12d16a0cad1da760f534335d205fe559674527180f5fb2a0424060f02e4aab9bd3935b2b853651b64d70880845232405fac69109974e8d4c8f8f3705cefbe2e43a910985d2cdc06a4991f55452dde47654727ac54fd9335391eb3b56c1e56031368067a21dc6e38f9c553a1e1479cded3b35dadfad5d4f045b43eabcee148f047e250cdebc92bf51873f2f812b7d4d6b18aa112c4415f15a98d3d5e00abe49d638f22c06ba3c07503d2d85053d8b583e461e7b290073bb69d59bc9771eaf2aca226bc8a9dcb23854bf7a4f0ad3f19818bfcf66dfeb6d543cf7bfda1daf5489279801e72b492"}, @NL80211_ATTR_TESTDATA={0x1b, 0x45, "86835a586db1ba25e2b04e10360729818d5094d406ee22"}, @NL80211_ATTR_TESTDATA={0x9c, 0x45, "a62702c9f9b379a7de3d102c2ce4ed443f6c07450bf6ec9fd66ef20f6aa900c35a3afa387c98b2d94d91cd5fd83d9f61cbc4b8659aae23e75697e42c4782fd1bf857b68ac58f67e743cf03b19df4175bf2ac84269dccc3fa458022d527318579e625ab16722ac974b6d7bec67beb298f933fd882631e8104b6379cc9ffcde5f09565a230d15db9980f00e053545e4f766c18237529234dd8"}, @NL80211_ATTR_TESTDATA={0x2b, 0x45, "faabbb349e80df1f44593326c909277ea5feffe9da9e00dc130a8a6ffd2cd9b346055da956a8c1"}, @NL80211_ATTR_TESTDATA={0x99, 0x45, "13a0d9eee32100b99f5a9c58b6d8769829ccd0797231c221af0b12b7c60fa9e08499f2dbeb04a7bd4d87bc494cf3d8065da4a6093ef408fdfeb2dc3fc02e04089a6b0a5ee6dc3d0e94b7712781b86dacdc1925f9da6809794399e0adae3aa3c6d12308014eb50ffe9d7e19a7b6536ae5d0b4b591710b50e8899190876d43799e8e6b8520a7ab36bad5cd663094fee49ad58b14036a"}, @NL80211_ATTR_TESTDATA={0xf7, 0x45, "63384cb70118d05235a97ff5278fc02be702aa698f112b9750009714c42bb5a37d2d6dc7d010b2d496dde405c192eeffa062a9a85e0c305b03e996c25d5153718895ffee1d2bbf3261185f71a0bcd6e333ad60ae48a57860776b52a0ca223adeb0c6673869d300caf9fa43097738f0b21a5faf67005e3e96f161d519127074314de357eb3ad988e27a07af8fc2cc94a87546e8cf1484440ff6aec355fb95030ba0ab34a6690e995a4363fb8c79e8f05e7f657cb9a1d4bef156558acceb4eae38fc2377266c63b25df475d70ae46e8b2b592dcdac58596d990c5e5ecd9681f7d6865970794d951ec4eb999a8cde381e65967590"}]}, 0x4d4}, 0x1, 0x0, 0x0, 0x4008044}, 0x20040881)

[   76.778808] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   76.780798] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   76.782727] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   76.785432] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   76.787274] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   76.788589] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   76.792239] Bluetooth: hci0: HCI_REQ-0x0c1a
[   76.883567] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   76.886750] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   76.887602] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   76.890332] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   76.891970] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   76.900700] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   76.904658] Bluetooth: hci1: HCI_REQ-0x0c1a
[   76.986614] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   76.989186] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   76.991002] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   76.993030] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   76.996555] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   76.999355] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   77.000630] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   77.002632] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   77.004344] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   77.005626] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   77.007336] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   77.008387] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   77.009527] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   77.010770] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   77.011932] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   77.015682] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   77.020879] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   77.022138] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   77.022937] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   77.023429] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   77.025219] Bluetooth: hci6: HCI_REQ-0x0c1a
[   77.038228] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   77.044365] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   77.045511] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   77.046661] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   77.046665] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   77.064778] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   77.065870] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   77.067040] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   77.067190] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   77.067599] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   77.069440] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   77.070050] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   77.070859] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   77.071550] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   77.076792] Bluetooth: hci4: HCI_REQ-0x0c1a
[   77.079855] Bluetooth: hci3: HCI_REQ-0x0c1a
[   77.080701] Bluetooth: hci2: HCI_REQ-0x0c1a
[   77.085167] Bluetooth: hci5: HCI_REQ-0x0c1a
[   77.118354] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   77.125223] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   77.131194] Bluetooth: hci7: HCI_REQ-0x0c1a
[   78.853671] Bluetooth: hci0: command 0x0409 tx timeout
[   78.917141] Bluetooth: hci1: command 0x0409 tx timeout
[   79.045251] Bluetooth: hci6: command 0x0409 tx timeout
[   79.109197] Bluetooth: hci3: command 0x0409 tx timeout
[   79.109745] Bluetooth: hci4: command 0x0409 tx timeout
[   79.110317] Bluetooth: hci5: command 0x0409 tx timeout
[   79.110816] Bluetooth: hci2: command 0x0409 tx timeout
[   79.173130] Bluetooth: hci7: command 0x0409 tx timeout
[   80.901199] Bluetooth: hci0: command 0x041b tx timeout
[   80.965112] Bluetooth: hci1: command 0x041b tx timeout
[   81.093184] Bluetooth: hci6: command 0x041b tx timeout
[   81.157152] Bluetooth: hci2: command 0x041b tx timeout
[   81.157586] Bluetooth: hci5: command 0x041b tx timeout
[   81.157992] Bluetooth: hci4: command 0x041b tx timeout
[   81.158434] Bluetooth: hci3: command 0x041b tx timeout
[   81.221275] Bluetooth: hci7: command 0x041b tx timeout
[   82.949180] Bluetooth: hci0: command 0x040f tx timeout
[   83.013116] Bluetooth: hci1: command 0x040f tx timeout
[   83.141578] Bluetooth: hci6: command 0x040f tx timeout
[   83.205163] Bluetooth: hci3: command 0x040f tx timeout
[   83.205608] Bluetooth: hci4: command 0x040f tx timeout
[   83.206024] Bluetooth: hci5: command 0x040f tx timeout
[   83.206458] Bluetooth: hci2: command 0x040f tx timeout
[   83.269150] Bluetooth: hci7: command 0x040f tx timeout
[   84.997115] Bluetooth: hci0: command 0x0419 tx timeout
[   85.061106] Bluetooth: hci1: command 0x0419 tx timeout
[   85.189168] Bluetooth: hci6: command 0x0419 tx timeout
[   85.253203] Bluetooth: hci2: command 0x0419 tx timeout
[   85.253624] Bluetooth: hci5: command 0x0419 tx timeout
[   85.254116] Bluetooth: hci4: command 0x0419 tx timeout
[   85.254525] Bluetooth: hci3: command 0x0419 tx timeout
[   85.317129] Bluetooth: hci7: command 0x0419 tx timeout
20:00:45 executing program 1:
r0 = getpid()
pidfd_open(r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x31780, 0x0)
pidfd_send_signal(r1, 0x17, &(0x7f00000004c0)={0x35, 0x4, 0x8}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000)
r3 = getpid()
r4 = getpid()
kcmp(r3, r4, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x3f, 0x2b, 0x1f, 0x20, 0x0, 0x4, 0x4000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0xff, 0x5}, 0x2, 0x9, 0x8, 0x3, 0x2, 0x56, 0x7fff, 0x0, 0x7fff, 0x0, 0x80000001}, r4, 0xffffffffffffffff, r1, 0xb)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)

[  131.712358] audit: type=1400 audit(1664136045.746:7): avc:  denied  { open } for  pid=3768 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  131.713740] audit: type=1400 audit(1664136045.747:8): avc:  denied  { kernel } for  pid=3768 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  131.755918] ------------[ cut here ]------------
[  131.755940] 
[  131.755942] ======================================================
[  131.755946] WARNING: possible circular locking dependency detected
[  131.755950] 6.0.0-rc6-next-20220923 #1 Not tainted
[  131.755956] ------------------------------------------------------
[  131.755960] syz-executor.1/3769 is trying to acquire lock:
[  131.755966] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  131.756006] 
[  131.756006] but task is already holding lock:
[  131.756009] ffff88801748c420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  131.756037] 
[  131.756037] which lock already depends on the new lock.
[  131.756037] 
[  131.756040] 
[  131.756040] the existing dependency chain (in reverse order) is:
[  131.756044] 
[  131.756044] -> #3 (&ctx->lock){....}-{2:2}:
[  131.756060]        _raw_spin_lock+0x2a/0x40
[  131.756079]        __perf_event_task_sched_out+0x53b/0x18d0
[  131.756091]        __schedule+0xedd/0x2470
[  131.756105]        schedule+0xda/0x1b0
[  131.756118]        exit_to_user_mode_prepare+0x114/0x1a0
[  131.756129]        syscall_exit_to_user_mode+0x19/0x40
[  131.756142]        do_syscall_64+0x48/0x90
[  131.756159]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.756171] 
[  131.756171] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  131.756184]        _raw_spin_lock_nested+0x30/0x40
[  131.756202]        raw_spin_rq_lock_nested+0x1e/0x30
[  131.756216]        task_fork_fair+0x63/0x4d0
[  131.756232]        sched_cgroup_fork+0x3d0/0x540
[  131.756246]        copy_process+0x4183/0x6e20
[  131.756257]        kernel_clone+0xe7/0x890
[  131.756266]        user_mode_thread+0xad/0xf0
[  131.756276]        rest_init+0x24/0x250
[  131.756287]        arch_call_rest_init+0xf/0x14
[  131.756305]        start_kernel+0x4c1/0x4e6
[  131.756320]        secondary_startup_64_no_verify+0xe0/0xeb
[  131.756335] 
[  131.756335] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  131.756348]        _raw_spin_lock_irqsave+0x39/0x60
[  131.756366]        try_to_wake_up+0xab/0x1930
[  131.756379]        up+0x75/0xb0
[  131.756393]        __up_console_sem+0x6e/0x80
[  131.756408]        console_unlock+0x46a/0x590
[  131.756424]        vt_ioctl+0x2822/0x2ca0
[  131.756437]        tty_ioctl+0x7c4/0x1700
[  131.756449]        __x64_sys_ioctl+0x19a/0x210
[  131.756464]        do_syscall_64+0x3b/0x90
[  131.756480]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.756492] 
[  131.756492] -> #0 ((console_sem).lock){....}-{2:2}:
[  131.756505]        __lock_acquire+0x2a02/0x5e70
[  131.756522]        lock_acquire+0x1a2/0x530
[  131.756538]        _raw_spin_lock_irqsave+0x39/0x60
[  131.756556]        down_trylock+0xe/0x70
[  131.756570]        __down_trylock_console_sem+0x3b/0xd0
[  131.756585]        vprintk_emit+0x16b/0x560
[  131.756601]        vprintk+0x84/0xa0
[  131.756617]        _printk+0xba/0xf1
[  131.756628]        report_bug.cold+0x72/0xab
[  131.756644]        handle_bug+0x3c/0x70
[  131.756660]        exc_invalid_op+0x14/0x50
[  131.756676]        asm_exc_invalid_op+0x16/0x20
[  131.756687]        group_sched_out.part.0+0x2c7/0x460
[  131.756698]        ctx_sched_out+0x8f1/0xc10
[  131.756708]        __perf_event_task_sched_out+0x6d0/0x18d0
[  131.756720]        __schedule+0xedd/0x2470
[  131.756733]        schedule+0xda/0x1b0
[  131.756746]        exit_to_user_mode_prepare+0x114/0x1a0
[  131.756756]        syscall_exit_to_user_mode+0x19/0x40
[  131.756768]        do_syscall_64+0x48/0x90
[  131.756784]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.756796] 
[  131.756796] other info that might help us debug this:
[  131.756796] 
[  131.756799] Chain exists of:
[  131.756799]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  131.756799] 
[  131.756814]  Possible unsafe locking scenario:
[  131.756814] 
[  131.756816]        CPU0                    CPU1
[  131.756819]        ----                    ----
[  131.756821]   lock(&ctx->lock);
[  131.756827]                                lock(&rq->__lock);
[  131.756833]                                lock(&ctx->lock);
[  131.756839]   lock((console_sem).lock);
[  131.756845] 
[  131.756845]  *** DEADLOCK ***
[  131.756845] 
[  131.756847] 2 locks held by syz-executor.1/3769:
[  131.756854]  #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  131.756882]  #1: ffff88801748c420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  131.756910] 
[  131.756910] stack backtrace:
[  131.756912] CPU: 0 PID: 3769 Comm: syz-executor.1 Not tainted 6.0.0-rc6-next-20220923 #1
[  131.756925] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  131.756933] Call Trace:
[  131.756937]  <TASK>
[  131.756940]  dump_stack_lvl+0x8b/0xb3
[  131.756958]  check_noncircular+0x263/0x2e0
[  131.756974]  ? format_decode+0x26c/0xb50
[  131.756991]  ? print_circular_bug+0x450/0x450
[  131.757008]  ? enable_ptr_key_workfn+0x20/0x20
[  131.757023]  ? __lockdep_reset_lock+0x180/0x180
[  131.757040]  ? format_decode+0x26c/0xb50
[  131.757056]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  131.757073]  __lock_acquire+0x2a02/0x5e70
[  131.757095]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  131.757117]  lock_acquire+0x1a2/0x530
[  131.757133]  ? down_trylock+0xe/0x70
[  131.757149]  ? lock_release+0x750/0x750
[  131.757166]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  131.757187]  ? vprintk+0x84/0xa0
[  131.757204]  _raw_spin_lock_irqsave+0x39/0x60
[  131.757223]  ? down_trylock+0xe/0x70
[  131.757238]  down_trylock+0xe/0x70
[  131.757253]  ? vprintk+0x84/0xa0
[  131.757270]  __down_trylock_console_sem+0x3b/0xd0
[  131.757287]  vprintk_emit+0x16b/0x560
[  131.757303]  ? lock_downgrade+0x6d0/0x6d0
[  131.757321]  vprintk+0x84/0xa0
[  131.757338]  _printk+0xba/0xf1
[  131.757349]  ? record_print_text.cold+0x16/0x16
[  131.757362]  ? hrtimer_try_to_cancel+0x163/0x2c0
[  131.757376]  ? lock_downgrade+0x6d0/0x6d0
[  131.757393]  ? report_bug.cold+0x66/0xab
[  131.757410]  ? group_sched_out.part.0+0x2c7/0x460
[  131.757422]  report_bug.cold+0x72/0xab
[  131.757440]  handle_bug+0x3c/0x70
[  131.757457]  exc_invalid_op+0x14/0x50
[  131.757474]  asm_exc_invalid_op+0x16/0x20
[  131.757486] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  131.757500] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  131.757512] RSP: 0018:ffff888022037c48 EFLAGS: 00010006
[  131.757521] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  131.757529] RDX: ffff888040679ac0 RSI: ffffffff81564fb7 RDI: 0000000000000005
[  131.757536] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001
[  131.757544] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801748c400
[  131.757551] R13: ffff88806ce3d140 R14: ffffffff8547c9a0 R15: 0000000000000002
[  131.757562]  ? group_sched_out.part.0+0x2c7/0x460
[  131.757575]  ? group_sched_out.part.0+0x2c7/0x460
[  131.757588]  ctx_sched_out+0x8f1/0xc10
[  131.757601]  __perf_event_task_sched_out+0x6d0/0x18d0
[  131.757616]  ? lock_is_held_type+0xd7/0x130
[  131.757630]  ? __perf_cgroup_move+0x160/0x160
[  131.757642]  ? set_next_entity+0x304/0x550
[  131.757659]  ? update_curr+0x267/0x740
[  131.757677]  ? lock_is_held_type+0xd7/0x130
[  131.757690]  __schedule+0xedd/0x2470
[  131.757706]  ? io_schedule_timeout+0x150/0x150
[  131.757722]  ? __x64_sys_futex_time32+0x480/0x480
[  131.757736]  schedule+0xda/0x1b0
[  131.757751]  exit_to_user_mode_prepare+0x114/0x1a0
[  131.757763]  syscall_exit_to_user_mode+0x19/0x40
[  131.757775]  do_syscall_64+0x48/0x90
[  131.757793]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.757805] RIP: 0033:0x7fa4a50aab19
[  131.757813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  131.757824] RSP: 002b:00007fa4a2620218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  131.757835] RAX: 0000000000000001 RBX: 00007fa4a51bdf68 RCX: 00007fa4a50aab19
[  131.757842] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa4a51bdf6c
[  131.757850] RBP: 00007fa4a51bdf60 R08: 000000000000000e R09: 0000000000000000
[  131.757857] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fa4a51bdf6c
[  131.757864] R13: 00007ffcd53b035f R14: 00007fa4a2620300 R15: 0000000000022000
[  131.757877]  </TASK>
[  131.814714] WARNING: CPU: 0 PID: 3769 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  131.815399] Modules linked in:
[  131.815645] CPU: 0 PID: 3769 Comm: syz-executor.1 Not tainted 6.0.0-rc6-next-20220923 #1
[  131.816241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  131.817088] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  131.817503] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  131.818865] RSP: 0018:ffff888022037c48 EFLAGS: 00010006
[  131.819258] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  131.819801] RDX: ffff888040679ac0 RSI: ffffffff81564fb7 RDI: 0000000000000005
[  131.820327] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001
[  131.820860] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801748c400
[  131.821391] R13: ffff88806ce3d140 R14: ffffffff8547c9a0 R15: 0000000000000002
[  131.821943] FS:  00007fa4a2620700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  131.822540] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  131.822982] CR2: 00007f4e545244a1 CR3: 0000000040ebc000 CR4: 0000000000350ef0
[  131.823511] Call Trace:
[  131.823711]  <TASK>
[  131.823883]  ctx_sched_out+0x8f1/0xc10
[  131.824188]  __perf_event_task_sched_out+0x6d0/0x18d0
[  131.824576]  ? lock_is_held_type+0xd7/0x130
[  131.824905]  ? __perf_cgroup_move+0x160/0x160
[  131.825258]  ? set_next_entity+0x304/0x550
[  131.825589]  ? update_curr+0x267/0x740
[  131.825893]  ? lock_is_held_type+0xd7/0x130
[  131.826222]  __schedule+0xedd/0x2470
[  131.826502]  ? io_schedule_timeout+0x150/0x150
[  131.826862]  ? __x64_sys_futex_time32+0x480/0x480
[  131.827228]  schedule+0xda/0x1b0
[  131.827500]  exit_to_user_mode_prepare+0x114/0x1a0
[  131.827879]  syscall_exit_to_user_mode+0x19/0x40
[  131.828248]  do_syscall_64+0x48/0x90
[  131.828539]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.828932] RIP: 0033:0x7fa4a50aab19
[  131.829210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  131.830575] RSP: 002b:00007fa4a2620218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  131.831142] RAX: 0000000000000001 RBX: 00007fa4a51bdf68 RCX: 00007fa4a50aab19
[  131.831680] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa4a51bdf6c
[  131.832219] RBP: 00007fa4a51bdf60 R08: 000000000000000e R09: 0000000000000000
[  131.832754] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fa4a51bdf6c
[  131.833289] R13: 00007ffcd53b035f R14: 00007fa4a2620300 R15: 0000000000022000
[  131.833826]  </TASK>
[  131.834008] irq event stamp: 1386
[  131.834266] hardirqs last  enabled at (1385): [<ffffffff8133e999>] exit_to_user_mode_prepare+0x109/0x1a0
[  131.834966] hardirqs last disabled at (1386): [<ffffffff84259645>] __schedule+0x1225/0x2470
[  131.835598] softirqs last  enabled at (904): [<ffffffff8116fa8b>] __irq_exit_rcu+0x11b/0x180
[  131.836255] softirqs last disabled at (603): [<ffffffff8116fa8b>] __irq_exit_rcu+0x11b/0x180
[  131.836894] ---[ end trace 0000000000000000 ]---
20:00:46 executing program 1:
r0 = getpid()
pidfd_open(r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x31780, 0x0)
pidfd_send_signal(r1, 0x17, &(0x7f00000004c0)={0x35, 0x4, 0x8}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000)
r3 = getpid()
r4 = getpid()
kcmp(r3, r4, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x3f, 0x2b, 0x1f, 0x20, 0x0, 0x4, 0x4000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0xff, 0x5}, 0x2, 0x9, 0x8, 0x3, 0x2, 0x56, 0x7fff, 0x0, 0x7fff, 0x0, 0x80000001}, r4, 0xffffffffffffffff, r1, 0xb)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)

20:00:46 executing program 1:
r0 = getpid()
pidfd_open(r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x31780, 0x0)
pidfd_send_signal(r1, 0x17, &(0x7f00000004c0)={0x35, 0x4, 0x8}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000)
r3 = getpid()
r4 = getpid()
kcmp(r3, r4, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x3f, 0x2b, 0x1f, 0x20, 0x0, 0x4, 0x4000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0xff, 0x5}, 0x2, 0x9, 0x8, 0x3, 0x2, 0x56, 0x7fff, 0x0, 0x7fff, 0x0, 0x80000001}, r4, 0xffffffffffffffff, r1, 0xb)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)

20:00:46 executing program 6:
r0 = getpid()
pidfd_open(r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x31780, 0x0)
pidfd_send_signal(r1, 0x17, &(0x7f00000004c0)={0x35, 0x4, 0x8}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000)
r3 = getpid()
r4 = getpid()
kcmp(r3, r4, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x3f, 0x2b, 0x1f, 0x20, 0x0, 0x4, 0x4000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0xff, 0x5}, 0x2, 0x9, 0x8, 0x3, 0x2, 0x56, 0x7fff, 0x0, 0x7fff, 0x0, 0x80000001}, r4, 0xffffffffffffffff, r1, 0xb)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)

20:00:46 executing program 1:
r0 = getpid()
pidfd_open(r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x31780, 0x0)
pidfd_send_signal(r1, 0x17, &(0x7f00000004c0)={0x35, 0x4, 0x8}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000)
r3 = getpid()
r4 = getpid()
kcmp(r3, r4, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x3f, 0x2b, 0x1f, 0x20, 0x0, 0x4, 0x4000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0xff, 0x5}, 0x2, 0x9, 0x8, 0x3, 0x2, 0x56, 0x7fff, 0x0, 0x7fff, 0x0, 0x80000001}, r4, 0xffffffffffffffff, r1, 0xb)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)

20:00:46 executing program 6:
r0 = getpid()
pidfd_open(r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x31780, 0x0)
pidfd_send_signal(r1, 0x17, &(0x7f00000004c0)={0x35, 0x4, 0x8}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000)
r3 = getpid()
r4 = getpid()
kcmp(r3, r4, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x3f, 0x2b, 0x1f, 0x20, 0x0, 0x4, 0x4000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0xff, 0x5}, 0x2, 0x9, 0x8, 0x3, 0x2, 0x56, 0x7fff, 0x0, 0x7fff, 0x0, 0x80000001}, r4, 0xffffffffffffffff, r1, 0xb)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)

20:00:46 executing program 1:
r0 = getpid()
pidfd_open(r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x31780, 0x0)
pidfd_send_signal(r1, 0x17, &(0x7f00000004c0)={0x35, 0x4, 0x8}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000)
r3 = getpid()
r4 = getpid()
kcmp(r3, r4, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x3f, 0x2b, 0x1f, 0x20, 0x0, 0x4, 0x4000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0xff, 0x5}, 0x2, 0x9, 0x8, 0x3, 0x2, 0x56, 0x7fff, 0x0, 0x7fff, 0x0, 0x80000001}, r4, 0xffffffffffffffff, r1, 0xb)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)

20:00:46 executing program 6:
r0 = getpid()
pidfd_open(r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x31780, 0x0)
pidfd_send_signal(r1, 0x17, &(0x7f00000004c0)={0x35, 0x4, 0x8}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000)
r3 = getpid()
r4 = getpid()
kcmp(r3, r4, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x3f, 0x2b, 0x1f, 0x20, 0x0, 0x4, 0x4000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0xff, 0x5}, 0x2, 0x9, 0x8, 0x3, 0x2, 0x56, 0x7fff, 0x0, 0x7fff, 0x0, 0x80000001}, r4, 0xffffffffffffffff, r1, 0xb)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00'])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)

[  132.932868] loop4: detected capacity change from 0 to 8
[  132.946786] loop4: detected capacity change from 0 to 8

VM DIAGNOSIS:
20:00:46  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff888022037698
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0
RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fa4a2620700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f4e545244a1 CR3=0000000040ebc000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007fa4a51917c0 00007fa4a51917c8
YMM02=0000000000000000 0000000000000000 00007fa4a51917e0 00007fa4a51917c0
YMM03=0000000000000000 0000000000000000 00007fa4a51917c8 00007fa4a51917c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000080000001 RBX=0000000000000001 RCX=1ffffffff0e0b8e0 RDX=0000000000000000
RSI=ffffffff816d0e60 RDI=0000000000000001 RBP=ffff888041297850 RSP=ffff888041297760
R8 =ffffffff85ece0c6 R9 =ffffffff85ece0ca R10=ffffed1008252f0c R11=ffff888041297838
R12=ffff8880412978c0 R13=0000000000000000 R14=ffff8880412977f8 R15=ffff88800d41bcb0
RIP=ffffffff8120524a RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f32b6753540 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f32b6c2d000 CR3=000000004137a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 00ff000000000000 00000000000000ff
YMM01=0000000000000000 0000000000000000 ff00ffffffffffff ffffffffffffff00
YMM02=0000000000000000 0000000000000000 4f0063305f315f31 5f4c53534e45504f
YMM03=0000000000000000 0000000000000000 000000000000314e 5341006c756f7472
YMM04=0000000000000000 0000000000000000 65675f454c424154 5f474e495254535f
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000