Warning: Permanently added '[localhost]:4991' (ECDSA) to the list of known hosts.
2022/07/18 03:37:07 fuzzer started
2022/07/18 03:37:07 dialing manager at localhost:33659
syzkaller login: [   44.282366] cgroup: Unknown subsys name 'net'
[   44.356857] cgroup: Unknown subsys name 'rlimit'
2022/07/18 03:37:21 syscalls: 2217
2022/07/18 03:37:21 code coverage: enabled
2022/07/18 03:37:21 comparison tracing: enabled
2022/07/18 03:37:21 extra coverage: enabled
2022/07/18 03:37:21 setuid sandbox: enabled
2022/07/18 03:37:21 namespace sandbox: enabled
2022/07/18 03:37:21 Android sandbox: enabled
2022/07/18 03:37:21 fault injection: enabled
2022/07/18 03:37:21 leak checking: enabled
2022/07/18 03:37:21 net packet injection: enabled
2022/07/18 03:37:21 net device setup: enabled
2022/07/18 03:37:21 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/07/18 03:37:21 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/07/18 03:37:21 USB emulation: enabled
2022/07/18 03:37:21 hci packet injection: enabled
2022/07/18 03:37:21 wifi device emulation: enabled
2022/07/18 03:37:21 802.15.4 emulation: enabled
2022/07/18 03:37:21 fetching corpus: 50, signal 29024/30895 (executing program)
2022/07/18 03:37:21 fetching corpus: 100, signal 43999/47592 (executing program)
2022/07/18 03:37:21 fetching corpus: 150, signal 55923/61171 (executing program)
2022/07/18 03:37:21 fetching corpus: 200, signal 62524/69410 (executing program)
2022/07/18 03:37:22 fetching corpus: 250, signal 71594/79966 (executing program)
2022/07/18 03:37:22 fetching corpus: 300, signal 78102/87969 (executing program)
2022/07/18 03:37:22 fetching corpus: 350, signal 84450/95743 (executing program)
2022/07/18 03:37:22 fetching corpus: 400, signal 90305/102979 (executing program)
2022/07/18 03:37:22 fetching corpus: 450, signal 95315/109371 (executing program)
2022/07/18 03:37:22 fetching corpus: 500, signal 99070/114485 (executing program)
2022/07/18 03:37:22 fetching corpus: 550, signal 101452/118266 (executing program)
2022/07/18 03:37:22 fetching corpus: 600, signal 105268/123423 (executing program)
2022/07/18 03:37:23 fetching corpus: 650, signal 107556/127089 (executing program)
2022/07/18 03:37:23 fetching corpus: 700, signal 112121/132860 (executing program)
2022/07/18 03:37:23 fetching corpus: 750, signal 117510/139432 (executing program)
2022/07/18 03:37:23 fetching corpus: 800, signal 119933/143129 (executing program)
2022/07/18 03:37:23 fetching corpus: 850, signal 124181/148491 (executing program)
2022/07/18 03:37:23 fetching corpus: 900, signal 129160/154463 (executing program)
2022/07/18 03:37:23 fetching corpus: 950, signal 131511/158001 (executing program)
2022/07/18 03:37:24 fetching corpus: 1000, signal 134298/161921 (executing program)
2022/07/18 03:37:24 fetching corpus: 1050, signal 136931/165659 (executing program)
2022/07/18 03:37:24 fetching corpus: 1100, signal 139822/169684 (executing program)
2022/07/18 03:37:24 fetching corpus: 1150, signal 142663/173611 (executing program)
2022/07/18 03:37:24 fetching corpus: 1200, signal 145193/177207 (executing program)
2022/07/18 03:37:24 fetching corpus: 1250, signal 146730/179887 (executing program)
2022/07/18 03:37:24 fetching corpus: 1300, signal 148169/182478 (executing program)
2022/07/18 03:37:25 fetching corpus: 1350, signal 151980/187110 (executing program)
2022/07/18 03:37:25 fetching corpus: 1400, signal 154403/190525 (executing program)
2022/07/18 03:37:25 fetching corpus: 1450, signal 157184/194189 (executing program)
2022/07/18 03:37:25 fetching corpus: 1500, signal 158502/196596 (executing program)
2022/07/18 03:37:25 fetching corpus: 1550, signal 160828/199843 (executing program)
2022/07/18 03:37:25 fetching corpus: 1600, signal 162282/202344 (executing program)
2022/07/18 03:37:25 fetching corpus: 1650, signal 163893/204951 (executing program)
2022/07/18 03:37:25 fetching corpus: 1700, signal 166503/208396 (executing program)
2022/07/18 03:37:26 fetching corpus: 1750, signal 168839/211596 (executing program)
2022/07/18 03:37:26 fetching corpus: 1800, signal 170589/214263 (executing program)
2022/07/18 03:37:26 fetching corpus: 1850, signal 172057/216719 (executing program)
2022/07/18 03:37:26 fetching corpus: 1900, signal 173710/219255 (executing program)
2022/07/18 03:37:26 fetching corpus: 1950, signal 175179/221658 (executing program)
2022/07/18 03:37:26 fetching corpus: 2000, signal 176276/223759 (executing program)
2022/07/18 03:37:26 fetching corpus: 2050, signal 177956/226311 (executing program)
2022/07/18 03:37:26 fetching corpus: 2100, signal 179829/229011 (executing program)
2022/07/18 03:37:27 fetching corpus: 2150, signal 181267/231324 (executing program)
2022/07/18 03:37:27 fetching corpus: 2200, signal 182872/233768 (executing program)
2022/07/18 03:37:27 fetching corpus: 2250, signal 185162/236751 (executing program)
2022/07/18 03:37:27 fetching corpus: 2300, signal 187255/239601 (executing program)
2022/07/18 03:37:27 fetching corpus: 2350, signal 188670/241853 (executing program)
2022/07/18 03:37:27 fetching corpus: 2400, signal 190258/244267 (executing program)
2022/07/18 03:37:28 fetching corpus: 2450, signal 192431/247064 (executing program)
2022/07/18 03:37:28 fetching corpus: 2500, signal 193850/249245 (executing program)
2022/07/18 03:37:28 fetching corpus: 2550, signal 195330/251486 (executing program)
2022/07/18 03:37:28 fetching corpus: 2600, signal 196216/253260 (executing program)
2022/07/18 03:37:28 fetching corpus: 2650, signal 197316/255256 (executing program)
2022/07/18 03:37:28 fetching corpus: 2700, signal 198428/257224 (executing program)
2022/07/18 03:37:28 fetching corpus: 2750, signal 199784/259302 (executing program)
2022/07/18 03:37:28 fetching corpus: 2800, signal 200886/261210 (executing program)
2022/07/18 03:37:29 fetching corpus: 2850, signal 202639/263582 (executing program)
2022/07/18 03:37:29 fetching corpus: 2900, signal 203496/265307 (executing program)
2022/07/18 03:37:29 fetching corpus: 2950, signal 205362/267729 (executing program)
2022/07/18 03:37:29 fetching corpus: 3000, signal 206770/269827 (executing program)
2022/07/18 03:37:29 fetching corpus: 3050, signal 207976/271749 (executing program)
2022/07/18 03:37:29 fetching corpus: 3100, signal 208870/273413 (executing program)
2022/07/18 03:37:29 fetching corpus: 3150, signal 209745/275055 (executing program)
2022/07/18 03:37:29 fetching corpus: 3200, signal 210607/276684 (executing program)
2022/07/18 03:37:30 fetching corpus: 3250, signal 211974/278637 (executing program)
2022/07/18 03:37:30 fetching corpus: 3300, signal 212902/280321 (executing program)
2022/07/18 03:37:30 fetching corpus: 3350, signal 214376/282381 (executing program)
2022/07/18 03:37:30 fetching corpus: 3400, signal 215187/283923 (executing program)
2022/07/18 03:37:30 fetching corpus: 3450, signal 216215/285638 (executing program)
2022/07/18 03:37:30 fetching corpus: 3500, signal 216904/287084 (executing program)
2022/07/18 03:37:30 fetching corpus: 3550, signal 218250/288971 (executing program)
2022/07/18 03:37:31 fetching corpus: 3600, signal 218986/290470 (executing program)
2022/07/18 03:37:31 fetching corpus: 3650, signal 220086/292196 (executing program)
2022/07/18 03:37:31 fetching corpus: 3700, signal 220783/293681 (executing program)
2022/07/18 03:37:31 fetching corpus: 3750, signal 221648/295239 (executing program)
2022/07/18 03:37:31 fetching corpus: 3800, signal 222946/297067 (executing program)
2022/07/18 03:37:31 fetching corpus: 3850, signal 224159/298831 (executing program)
2022/07/18 03:37:31 fetching corpus: 3900, signal 225274/300515 (executing program)
2022/07/18 03:37:32 fetching corpus: 3950, signal 226036/301940 (executing program)
2022/07/18 03:37:32 fetching corpus: 4000, signal 227140/303581 (executing program)
2022/07/18 03:37:32 fetching corpus: 4050, signal 227912/305021 (executing program)
2022/07/18 03:37:32 fetching corpus: 4100, signal 228615/306383 (executing program)
2022/07/18 03:37:32 fetching corpus: 4150, signal 229897/308165 (executing program)
2022/07/18 03:37:32 fetching corpus: 4200, signal 231059/309763 (executing program)
2022/07/18 03:37:32 fetching corpus: 4250, signal 231647/311044 (executing program)
2022/07/18 03:37:32 fetching corpus: 4300, signal 232315/312429 (executing program)
2022/07/18 03:37:33 fetching corpus: 4350, signal 233125/313867 (executing program)
2022/07/18 03:37:33 fetching corpus: 4400, signal 233838/315229 (executing program)
2022/07/18 03:37:33 fetching corpus: 4450, signal 235308/317025 (executing program)
2022/07/18 03:37:33 fetching corpus: 4500, signal 236536/318663 (executing program)
2022/07/18 03:37:33 fetching corpus: 4550, signal 237114/319905 (executing program)
2022/07/18 03:37:33 fetching corpus: 4600, signal 237880/321280 (executing program)
2022/07/18 03:37:33 fetching corpus: 4650, signal 238477/322541 (executing program)
2022/07/18 03:37:34 fetching corpus: 4700, signal 239694/324193 (executing program)
2022/07/18 03:37:34 fetching corpus: 4750, signal 240873/325723 (executing program)
2022/07/18 03:37:34 fetching corpus: 4800, signal 241543/327007 (executing program)
2022/07/18 03:37:34 fetching corpus: 4850, signal 242358/328376 (executing program)
2022/07/18 03:37:34 fetching corpus: 4900, signal 243334/329806 (executing program)
2022/07/18 03:37:34 fetching corpus: 4950, signal 243831/330988 (executing program)
2022/07/18 03:37:34 fetching corpus: 5000, signal 245137/332546 (executing program)
2022/07/18 03:37:34 fetching corpus: 5050, signal 245529/333689 (executing program)
2022/07/18 03:37:35 fetching corpus: 5100, signal 246351/335021 (executing program)
2022/07/18 03:37:35 fetching corpus: 5150, signal 246954/336227 (executing program)
2022/07/18 03:37:35 fetching corpus: 5200, signal 247902/337544 (executing program)
2022/07/18 03:37:35 fetching corpus: 5250, signal 248837/338904 (executing program)
2022/07/18 03:37:35 fetching corpus: 5300, signal 249784/340277 (executing program)
2022/07/18 03:37:35 fetching corpus: 5350, signal 250848/341745 (executing program)
2022/07/18 03:37:36 fetching corpus: 5400, signal 251648/343047 (executing program)
2022/07/18 03:37:36 fetching corpus: 5450, signal 252878/344513 (executing program)
2022/07/18 03:37:36 fetching corpus: 5500, signal 253441/345605 (executing program)
2022/07/18 03:37:36 fetching corpus: 5550, signal 254084/346727 (executing program)
2022/07/18 03:37:36 fetching corpus: 5600, signal 254769/347947 (executing program)
2022/07/18 03:37:36 fetching corpus: 5650, signal 255161/348914 (executing program)
2022/07/18 03:37:36 fetching corpus: 5700, signal 255952/350107 (executing program)
2022/07/18 03:37:36 fetching corpus: 5750, signal 257503/351682 (executing program)
2022/07/18 03:37:36 fetching corpus: 5800, signal 258141/352796 (executing program)
2022/07/18 03:37:37 fetching corpus: 5850, signal 258958/353899 (executing program)
2022/07/18 03:37:37 fetching corpus: 5900, signal 259431/354922 (executing program)
2022/07/18 03:37:37 fetching corpus: 5950, signal 260159/356012 (executing program)
2022/07/18 03:37:37 fetching corpus: 6000, signal 260901/357161 (executing program)
2022/07/18 03:37:37 fetching corpus: 6050, signal 261610/358222 (executing program)
2022/07/18 03:37:37 fetching corpus: 6100, signal 262613/359507 (executing program)
2022/07/18 03:37:37 fetching corpus: 6150, signal 263195/360534 (executing program)
2022/07/18 03:37:37 fetching corpus: 6200, signal 264264/361750 (executing program)
2022/07/18 03:37:38 fetching corpus: 6250, signal 264788/362713 (executing program)
2022/07/18 03:37:38 fetching corpus: 6300, signal 265401/363751 (executing program)
2022/07/18 03:37:38 fetching corpus: 6350, signal 265967/364733 (executing program)
2022/07/18 03:37:38 fetching corpus: 6400, signal 266568/365754 (executing program)
2022/07/18 03:37:38 fetching corpus: 6450, signal 267329/366833 (executing program)
2022/07/18 03:37:38 fetching corpus: 6500, signal 267810/367815 (executing program)
2022/07/18 03:37:38 fetching corpus: 6550, signal 268335/368799 (executing program)
2022/07/18 03:37:38 fetching corpus: 6600, signal 268730/369721 (executing program)
2022/07/18 03:37:39 fetching corpus: 6650, signal 269592/370807 (executing program)
2022/07/18 03:37:39 fetching corpus: 6700, signal 270104/371787 (executing program)
2022/07/18 03:37:39 fetching corpus: 6750, signal 270619/372720 (executing program)
2022/07/18 03:37:39 fetching corpus: 6800, signal 271068/373610 (executing program)
2022/07/18 03:37:39 fetching corpus: 6850, signal 271571/374579 (executing program)
2022/07/18 03:37:39 fetching corpus: 6900, signal 272068/375516 (executing program)
2022/07/18 03:37:39 fetching corpus: 6950, signal 272707/376492 (executing program)
2022/07/18 03:37:39 fetching corpus: 7000, signal 273300/377436 (executing program)
2022/07/18 03:37:40 fetching corpus: 7050, signal 273630/378281 (executing program)
2022/07/18 03:37:40 fetching corpus: 7100, signal 274283/379154 (executing program)
2022/07/18 03:37:40 fetching corpus: 7150, signal 274892/380050 (executing program)
2022/07/18 03:37:40 fetching corpus: 7200, signal 275464/380981 (executing program)
2022/07/18 03:37:40 fetching corpus: 7250, signal 276038/381871 (executing program)
2022/07/18 03:37:40 fetching corpus: 7300, signal 276539/382737 (executing program)
2022/07/18 03:37:40 fetching corpus: 7350, signal 276824/383554 (executing program)
2022/07/18 03:37:40 fetching corpus: 7400, signal 277165/384396 (executing program)
2022/07/18 03:37:41 fetching corpus: 7450, signal 277575/385253 (executing program)
2022/07/18 03:37:41 fetching corpus: 7500, signal 277843/386026 (executing program)
2022/07/18 03:37:41 fetching corpus: 7550, signal 278183/386821 (executing program)
2022/07/18 03:37:41 fetching corpus: 7600, signal 279017/387828 (executing program)
2022/07/18 03:37:41 fetching corpus: 7650, signal 279685/388750 (executing program)
2022/07/18 03:37:41 fetching corpus: 7700, signal 280155/389621 (executing program)
2022/07/18 03:37:41 fetching corpus: 7750, signal 280761/390511 (executing program)
2022/07/18 03:37:41 fetching corpus: 7800, signal 281233/391295 (executing program)
2022/07/18 03:37:42 fetching corpus: 7850, signal 281704/392166 (executing program)
2022/07/18 03:37:42 fetching corpus: 7900, signal 282262/393018 (executing program)
2022/07/18 03:37:42 fetching corpus: 7950, signal 282827/393866 (executing program)
2022/07/18 03:37:42 fetching corpus: 8000, signal 283412/394755 (executing program)
2022/07/18 03:37:42 fetching corpus: 8050, signal 283954/395650 (executing program)
2022/07/18 03:37:42 fetching corpus: 8100, signal 284378/396474 (executing program)
2022/07/18 03:37:43 fetching corpus: 8150, signal 285300/397435 (executing program)
2022/07/18 03:37:43 fetching corpus: 8200, signal 285752/398230 (executing program)
2022/07/18 03:37:43 fetching corpus: 8250, signal 286231/399061 (executing program)
2022/07/18 03:37:43 fetching corpus: 8300, signal 286893/399908 (executing program)
2022/07/18 03:37:43 fetching corpus: 8350, signal 287424/400698 (executing program)
2022/07/18 03:37:43 fetching corpus: 8400, signal 287807/401518 (executing program)
2022/07/18 03:37:43 fetching corpus: 8450, signal 288253/402293 (executing program)
2022/07/18 03:37:43 fetching corpus: 8500, signal 288786/403014 (executing program)
2022/07/18 03:37:44 fetching corpus: 8550, signal 289273/403776 (executing program)
2022/07/18 03:37:44 fetching corpus: 8600, signal 289648/404531 (executing program)
2022/07/18 03:37:44 fetching corpus: 8650, signal 290486/405355 (executing program)
2022/07/18 03:37:44 fetching corpus: 8700, signal 291014/406093 (executing program)
2022/07/18 03:37:44 fetching corpus: 8750, signal 291544/406863 (executing program)
2022/07/18 03:37:44 fetching corpus: 8800, signal 292030/407589 (executing program)
2022/07/18 03:37:44 fetching corpus: 8850, signal 292312/408319 (executing program)
2022/07/18 03:37:45 fetching corpus: 8900, signal 292715/409021 (executing program)
2022/07/18 03:37:45 fetching corpus: 8950, signal 293091/409742 (executing program)
2022/07/18 03:37:45 fetching corpus: 9000, signal 293611/410440 (executing program)
2022/07/18 03:37:45 fetching corpus: 9050, signal 294128/411183 (executing program)
2022/07/18 03:37:45 fetching corpus: 9100, signal 294592/411936 (executing program)
2022/07/18 03:37:45 fetching corpus: 9150, signal 295050/412639 (executing program)
2022/07/18 03:37:45 fetching corpus: 9200, signal 295479/413330 (executing program)
2022/07/18 03:37:45 fetching corpus: 9250, signal 295827/414026 (executing program)
2022/07/18 03:37:46 fetching corpus: 9300, signal 296237/414721 (executing program)
2022/07/18 03:37:46 fetching corpus: 9350, signal 296769/415431 (executing program)
2022/07/18 03:37:46 fetching corpus: 9400, signal 297051/416100 (executing program)
2022/07/18 03:37:46 fetching corpus: 9450, signal 297567/416824 (executing program)
2022/07/18 03:37:46 fetching corpus: 9500, signal 297918/417493 (executing program)
2022/07/18 03:37:46 fetching corpus: 9550, signal 298540/418241 (executing program)
2022/07/18 03:37:46 fetching corpus: 9600, signal 298994/418914 (executing program)
2022/07/18 03:37:46 fetching corpus: 9650, signal 299315/419547 (executing program)
2022/07/18 03:37:47 fetching corpus: 9700, signal 299751/420222 (executing program)
2022/07/18 03:37:47 fetching corpus: 9750, signal 300018/420851 (executing program)
2022/07/18 03:37:47 fetching corpus: 9800, signal 300420/421478 (executing program)
2022/07/18 03:37:47 fetching corpus: 9850, signal 300729/422107 (executing program)
2022/07/18 03:37:47 fetching corpus: 9900, signal 301208/422771 (executing program)
2022/07/18 03:37:47 fetching corpus: 9950, signal 301779/423436 (executing program)
2022/07/18 03:37:47 fetching corpus: 10000, signal 302280/424100 (executing program)
2022/07/18 03:37:47 fetching corpus: 10050, signal 302634/424710 (executing program)
2022/07/18 03:37:48 fetching corpus: 10100, signal 303046/425325 (executing program)
2022/07/18 03:37:48 fetching corpus: 10150, signal 303447/425922 (executing program)
2022/07/18 03:37:48 fetching corpus: 10200, signal 303998/426530 (executing program)
2022/07/18 03:37:48 fetching corpus: 10250, signal 304490/427108 (executing program)
2022/07/18 03:37:48 fetching corpus: 10300, signal 304769/427746 (executing program)
2022/07/18 03:37:48 fetching corpus: 10350, signal 305143/428357 (executing program)
2022/07/18 03:37:49 fetching corpus: 10400, signal 305539/428941 (executing program)
2022/07/18 03:37:49 fetching corpus: 10450, signal 305915/429576 (executing program)
2022/07/18 03:37:49 fetching corpus: 10500, signal 306581/430162 (executing program)
2022/07/18 03:37:49 fetching corpus: 10550, signal 306906/430742 (executing program)
2022/07/18 03:37:49 fetching corpus: 10600, signal 307188/431318 (executing program)
2022/07/18 03:37:49 fetching corpus: 10650, signal 307775/431927 (executing program)
2022/07/18 03:37:49 fetching corpus: 10700, signal 308167/432542 (executing program)
2022/07/18 03:37:50 fetching corpus: 10750, signal 308647/433110 (executing program)
2022/07/18 03:37:50 fetching corpus: 10800, signal 308912/433687 (executing program)
2022/07/18 03:37:50 fetching corpus: 10850, signal 309317/434060 (executing program)
2022/07/18 03:37:50 fetching corpus: 10900, signal 309625/434060 (executing program)
2022/07/18 03:37:50 fetching corpus: 10950, signal 309949/434060 (executing program)
2022/07/18 03:37:50 fetching corpus: 11000, signal 310393/434060 (executing program)
2022/07/18 03:37:50 fetching corpus: 11050, signal 311007/434060 (executing program)
2022/07/18 03:37:51 fetching corpus: 11100, signal 311328/434060 (executing program)
2022/07/18 03:37:51 fetching corpus: 11150, signal 311761/434060 (executing program)
2022/07/18 03:37:51 fetching corpus: 11200, signal 312096/434060 (executing program)
2022/07/18 03:37:51 fetching corpus: 11250, signal 312536/434060 (executing program)
2022/07/18 03:37:51 fetching corpus: 11300, signal 312857/434060 (executing program)
2022/07/18 03:37:51 fetching corpus: 11350, signal 313093/434061 (executing program)
2022/07/18 03:37:51 fetching corpus: 11400, signal 313353/434061 (executing program)
2022/07/18 03:37:51 fetching corpus: 11450, signal 313822/434063 (executing program)
2022/07/18 03:37:52 fetching corpus: 11500, signal 314292/434063 (executing program)
2022/07/18 03:37:52 fetching corpus: 11550, signal 314700/434067 (executing program)
2022/07/18 03:37:52 fetching corpus: 11600, signal 315235/434067 (executing program)
2022/07/18 03:37:52 fetching corpus: 11650, signal 315685/434067 (executing program)
2022/07/18 03:37:52 fetching corpus: 11700, signal 316283/434067 (executing program)
2022/07/18 03:37:52 fetching corpus: 11750, signal 316807/434067 (executing program)
2022/07/18 03:37:52 fetching corpus: 11800, signal 317124/434108 (executing program)
2022/07/18 03:37:53 fetching corpus: 11850, signal 317601/434108 (executing program)
2022/07/18 03:37:53 fetching corpus: 11900, signal 317920/434108 (executing program)
2022/07/18 03:37:53 fetching corpus: 11950, signal 318289/434108 (executing program)
2022/07/18 03:37:53 fetching corpus: 12000, signal 318644/434109 (executing program)
2022/07/18 03:37:53 fetching corpus: 12050, signal 318997/434113 (executing program)
2022/07/18 03:37:53 fetching corpus: 12100, signal 319315/434113 (executing program)
2022/07/18 03:37:53 fetching corpus: 12150, signal 319639/434113 (executing program)
2022/07/18 03:37:53 fetching corpus: 12200, signal 320068/434113 (executing program)
2022/07/18 03:37:54 fetching corpus: 12250, signal 320502/434113 (executing program)
2022/07/18 03:37:54 fetching corpus: 12300, signal 320722/434113 (executing program)
2022/07/18 03:37:54 fetching corpus: 12350, signal 320986/434113 (executing program)
2022/07/18 03:37:54 fetching corpus: 12400, signal 321355/434113 (executing program)
2022/07/18 03:37:54 fetching corpus: 12450, signal 321685/434113 (executing program)
2022/07/18 03:37:54 fetching corpus: 12500, signal 321882/434113 (executing program)
2022/07/18 03:37:54 fetching corpus: 12550, signal 322199/434113 (executing program)
2022/07/18 03:37:55 fetching corpus: 12600, signal 322469/434113 (executing program)
2022/07/18 03:37:55 fetching corpus: 12650, signal 322811/434113 (executing program)
2022/07/18 03:37:55 fetching corpus: 12700, signal 323135/434113 (executing program)
2022/07/18 03:37:55 fetching corpus: 12750, signal 323561/434113 (executing program)
2022/07/18 03:37:55 fetching corpus: 12800, signal 323976/434113 (executing program)
2022/07/18 03:37:55 fetching corpus: 12850, signal 324251/434113 (executing program)
2022/07/18 03:37:55 fetching corpus: 12900, signal 324693/434113 (executing program)
2022/07/18 03:37:55 fetching corpus: 12950, signal 324909/434116 (executing program)
2022/07/18 03:37:56 fetching corpus: 13000, signal 325145/434116 (executing program)
2022/07/18 03:37:56 fetching corpus: 13050, signal 325631/434120 (executing program)
2022/07/18 03:37:56 fetching corpus: 13100, signal 326058/434120 (executing program)
2022/07/18 03:37:56 fetching corpus: 13150, signal 326393/434120 (executing program)
2022/07/18 03:37:56 fetching corpus: 13200, signal 326736/434120 (executing program)
2022/07/18 03:37:56 fetching corpus: 13250, signal 327119/434120 (executing program)
2022/07/18 03:37:56 fetching corpus: 13300, signal 327478/434120 (executing program)
2022/07/18 03:37:56 fetching corpus: 13350, signal 327701/434132 (executing program)
2022/07/18 03:37:57 fetching corpus: 13400, signal 327993/434132 (executing program)
2022/07/18 03:37:57 fetching corpus: 13450, signal 328292/434132 (executing program)
2022/07/18 03:37:57 fetching corpus: 13500, signal 328571/434132 (executing program)
2022/07/18 03:37:57 fetching corpus: 13550, signal 328842/434132 (executing program)
2022/07/18 03:37:57 fetching corpus: 13600, signal 329107/434132 (executing program)
2022/07/18 03:37:57 fetching corpus: 13650, signal 329462/434132 (executing program)
2022/07/18 03:37:57 fetching corpus: 13700, signal 329673/434132 (executing program)
2022/07/18 03:37:57 fetching corpus: 13750, signal 330018/434132 (executing program)
2022/07/18 03:37:58 fetching corpus: 13800, signal 330233/434135 (executing program)
2022/07/18 03:37:58 fetching corpus: 13850, signal 330536/434135 (executing program)
2022/07/18 03:37:58 fetching corpus: 13900, signal 330857/434138 (executing program)
2022/07/18 03:37:58 fetching corpus: 13950, signal 331179/434138 (executing program)
2022/07/18 03:37:58 fetching corpus: 14000, signal 331491/434138 (executing program)
2022/07/18 03:37:58 fetching corpus: 14050, signal 331898/434139 (executing program)
2022/07/18 03:37:58 fetching corpus: 14100, signal 332267/434139 (executing program)
2022/07/18 03:37:58 fetching corpus: 14150, signal 332496/434139 (executing program)
2022/07/18 03:37:58 fetching corpus: 14200, signal 332791/434139 (executing program)
2022/07/18 03:37:59 fetching corpus: 14250, signal 333053/434139 (executing program)
2022/07/18 03:37:59 fetching corpus: 14300, signal 333526/434139 (executing program)
2022/07/18 03:37:59 fetching corpus: 14350, signal 333884/434139 (executing program)
2022/07/18 03:37:59 fetching corpus: 14400, signal 334124/434139 (executing program)
2022/07/18 03:37:59 fetching corpus: 14450, signal 334433/434139 (executing program)
2022/07/18 03:37:59 fetching corpus: 14500, signal 334823/434141 (executing program)
2022/07/18 03:37:59 fetching corpus: 14550, signal 335059/434143 (executing program)
2022/07/18 03:37:59 fetching corpus: 14600, signal 335346/434144 (executing program)
2022/07/18 03:38:00 fetching corpus: 14650, signal 335599/434144 (executing program)
2022/07/18 03:38:00 fetching corpus: 14700, signal 335888/434144 (executing program)
2022/07/18 03:38:00 fetching corpus: 14750, signal 336158/434144 (executing program)
2022/07/18 03:38:00 fetching corpus: 14800, signal 336705/434144 (executing program)
2022/07/18 03:38:00 fetching corpus: 14850, signal 336974/434144 (executing program)
2022/07/18 03:38:00 fetching corpus: 14900, signal 337380/434144 (executing program)
2022/07/18 03:38:00 fetching corpus: 14910, signal 337470/434144 (executing program)
2022/07/18 03:38:00 fetching corpus: 14910, signal 337470/434144 (executing program)
2022/07/18 03:38:03 starting 8 fuzzer processes
03:38:03 executing program 1:
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000000)={0x0, 0xfff})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000001000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$CDROMPLAYTRKIND(r0, 0x5304, &(0x7f0000001040)={0x6, 0x6, 0x40, 0x3f})
r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', &(0x7f00000010c0)={0x2, 0x20}, 0x18)
ioctl$LOOP_SET_FD(r0, 0x4c00, r1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001100)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$CDROM_CHANGER_NSLOTS(r2, 0x5328)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000001140)=<r3=>0x0)
syz_open_procfs(r3, &(0x7f0000001180)='oom_score_adj\x00')
r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000011c0)='./file0\x00', 0x400080, 0x10)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r4, 0xc0506617, &(0x7f0000001200)={@desc={0x1, 0x0, @desc1}, 0x40, 0x0, '\x00', @a})
mkdirat(0xffffffffffffffff, &(0x7f00000012c0)='./file0\x00', 0x8)
sendto$unix(r0, &(0x7f0000001300)="be784a31abe216f71404ad41900ee6a9d22e53bcf624b8c238986380ea8e61ab88720df799daab8a9a1da1377c6e", 0x2e, 0x40c0, &(0x7f0000001340)=@file={0x1, './file0\x00'}, 0x6e)
pipe(&(0x7f00000013c0)={<r5=>0xffffffffffffffff})
ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001400), 0x440, 0x0)
ioctl$CDROM_SELECT_DISK(r6, 0x5322, 0x6)
r7 = pidfd_getfd(r2, r5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000001440)={'batadv_slave_0\x00'})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000001480)='net/netlink\x00')

03:38:03 executing program 2:
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x103000, 0x0)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r3, 0x10, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x5010)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x44, r1, 0x4, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x8}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x9}, @NL80211_ATTR_BANDS={0x8, 0xef, 0xa}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x1f}]}, 0x44}, 0x1, 0x0, 0x0, 0x24}, 0x4005)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
sendfile(r4, r5, &(0x7f0000000340), 0x4)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000440)={'sit0\x00', &(0x7f00000003c0)={'ip6gre0\x00', <r6=>0x0, 0x4, 0x0, 0x3, 0x7, 0x10, @ipv4={'\x00', '\xff\xff', @multicast1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x80, 0x7800, 0x30000000, 0x7f}})
getpeername$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000004c0)=0x14)
getsockname$packet(r2, &(0x7f0000000500)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000540)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000600)={'sit0\x00', &(0x7f0000000580)={'syztnl0\x00', <r9=>0x0, 0x29, 0x58, 0x8, 0x1, 0x1, @dev={0xfe, 0x80, '\x00', 0x41}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40, 0x8000, 0x1a, 0x5}})
getsockname$packet(r2, &(0x7f0000000d00)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000d40)=0x14)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000d80)={{{@in6=@private2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000e80)=0xe8)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000002200)={{{@in=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in6=@mcast2}, 0x0, @in6=@remote}}, &(0x7f0000002300)=0xe8)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f00000025c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000002580)={&(0x7f0000002340)={0x22c, r3, 0x20, 0x70bd2d, 0x25dfdbfd, {}, [@HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @HEADER={0x88, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}]}]}, 0x22c}, 0x1, 0x0, 0x0, 0x10}, 0x20048800)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
sendto$packet(r2, &(0x7f0000002600)="838356578c7e753844f54bc81edde3cffbb46845de792128bb22e92486d833120e0bebcc8becd9110d0524e18df73e6031f0c05576c0cad7a242fd94292924c70f4a250a5ddf3a10286297e43cd62ffd1bc574175ff04140913644ee95a7dd8f66d44b0704", 0x65, 0x80, 0x0, 0x0)
sendmsg$TIPC_NL_PEER_REMOVE(r2, &(0x7f0000002980)={&(0x7f0000002680)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000002940)={&(0x7f0000002700)={0x234, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x5c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}]}]}, @TIPC_NLA_NODE={0x88, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x40, 0x4, {'gcm(aes)\x00', 0x18, "1bffb70221a7c374ac4422310ef6a98f72c49a969ad463ef"}}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "f2ac87ffebb53352238a1868872317d1237d1ea7ccbd33c751"}}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8001}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}]}, @TIPC_NLA_LINK={0x60, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x89c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}]}]}, @TIPC_NLA_SOCK={0x20, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xffffffff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10000000}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x331c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0x234}, 0x1, 0x0, 0x0, 0x4008000}, 0x1)

03:38:03 executing program 0:
r0 = syz_open_procfs$userns(0x0, &(0x7f0000000000))
close_range(r0, 0xffffffffffffffff, 0x2)
read(0xffffffffffffffff, &(0x7f0000000040)=""/2, 0x2)
r1 = getpid()
r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x5, 0x91, 0x1, 0x0, 0x0, 0x8000, 0x60002, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_config_ext={0x1, 0x80000000}, 0x80, 0xed, 0x9, 0x0, 0xbce, 0x8, 0x39, 0x0, 0x0, 0x0, 0x400}, r1, 0x6, 0xffffffffffffffff, 0xb)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)=0x1)
pwrite64(r0, &(0x7f0000000140)="bece3f7326792699ef560de955626f61a6761e9be00a9abbd4c15dd953c6c7d9d06ef5371d0477732e73aae7df76a862d6c556655fbabac92bf566", 0x3b, 0x6)
syz_open_procfs$userns(r1, &(0x7f0000000180))
r3 = perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x9, 0x7, 0x1, 0x4, 0x0, 0x8, 0x40000, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x10001, 0x0, @perf_bp={&(0x7f00000001c0), 0x5}, 0xe4, 0x1, 0x0, 0x0, 0x3, 0x200, 0x3, 0x0, 0x4, 0x0, 0xfffffffffffffff9}, 0x0, 0x0, r2, 0xa)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x5, 0x0, 0xc1, 0x0, 0x0, 0x8, 0x60000, 0x8, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x7, 0x0, @perf_config_ext, 0x0, 0x1fd4, 0xc9a9, 0x7, 0x7, 0x2, 0x400, 0x0, 0x72c, 0x0, 0x4}, r1, 0x2, r2, 0x8)
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000003c0), 0x48002, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x8, 0x7, 0x5, 0x1f, 0x0, 0x6, 0x4400, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000300), 0x1}, 0x10100, 0x6, 0x1, 0x8, 0x5, 0x54, 0x2, 0x0, 0x9, 0x0, 0xfff}, r1, 0xffffffffffffffff, r4, 0x1)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x80000, 0x1c3)
fcntl$getflags(r5, 0x1)
r6 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r6, 0xc038943b, &(0x7f0000000480)={0x2, 0x10, '\x00', 0x1, &(0x7f0000000440)=[0x0, 0x0]})
r7 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
close_range(r3, r7, 0x2)
ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f0000000700)=<r8=>0x0)
clone3(&(0x7f0000000780)={0x8200, &(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000540), {0xc}, &(0x7f0000000580)=""/93, 0x5d, &(0x7f0000000600)=""/251, &(0x7f0000000740)=[r8], 0x1, {r4}}, 0x58)

03:38:03 executing program 3:
sendmsg$AUDIT_LIST_RULES(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x3f5, 0x100, 0x70bd29, 0x25dfdbfd, "", ["", "", "", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x80}, 0x4040800)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x10, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xd4}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x3f}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x6}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xd2}, @BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x9}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x20, r0, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x3f, 0x37}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4040041}, 0x2008005)
r1 = creat(&(0x7f0000000380)='./file0\x00', 0xc)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x54, 0x0, 0x8, 0x70bd28, 0x25dfdbfd, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x2}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x121a}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x100}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9}]}, 0x54}, 0x1, 0x0, 0x0, 0x400d0}, 0x20044015)
ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, &(0x7f0000000500))
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r1)
sendmsg$NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000001740)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001700)={&(0x7f00000005c0)={0x111c, r2, 0x310, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x4}, @NL80211_ATTR_FRAME_MATCH={0x1004, 0x5b, "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"}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x7}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0xff}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x4}, @NL80211_ATTR_FRAME_MATCH={0xe3, 0x5b, "43f74ecf394ec81af44767c3b97eccee37ee4101e503a160b52577bdc9bb14b4ff27a2d0fddc1b20142b0ad5987deba85fd37fa0165a6d1a836209910531b88dc227094a4021601c0c75aa769d836bd9139b5e9a2f692e0df2c0a8bc0fa386d37eb48e0248cdc20d452ed2293509efd5ee56d9bef9aabf3e6b8ed919b1bf94f974dc2e2ee9ff8cf647f4fa872118c92bd921f2fb1a4530bd3c3efc98e7b3ddab66a14a7c6420d75338cbd5475c07802b53095fbe0c7145a801d008bc000638a6ebdd6c1efc1b94757849853637b1b621f2827b54846869bb9456c3d00b15f3"}]}, 0x111c}, 0x1, 0x0, 0x0, 0x84}, 0x80)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000017c0), r1)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r1, &(0x7f0000001880)={&(0x7f0000001780)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001840)={&(0x7f0000001800)={0x30, r3, 0x200, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8001, 0x3d}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x880)
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000001980)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001940)={&(0x7f0000001900)={0x30, r3, 0x8, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1, 0x56}}}}, [@NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x1ff}]}, 0x30}, 0x1, 0x0, 0x0, 0x5}, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001a00)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FLUSH_PMKSA(r1, &(0x7f0000001ac0)={&(0x7f00000019c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001a80)={&(0x7f0000001a40)={0x1c, r0, 0x400, 0x70bd27, 0x3, {{}, {@val={0x8, 0x3, r4}, @void}}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x810)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001b40), r1)
sendmsg$NL80211_CMD_LEAVE_IBSS(r1, &(0x7f0000001c00)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001bc0)={&(0x7f0000001b80)={0x14, r5, 0x8, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", "", "", "", "", "", ""]}, 0x14}}, 0x4000000)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001c80), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f0000001dc0)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001d80)={&(0x7f0000001cc0)={0x90, r6, 0x100, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x0, 0x7c}}}}, [@crypto_settings=[@NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0xfac06}, @NL80211_ATTR_CIPHER_SUITES_PAIRWISE={0xc, 0x49, [0xfac05, 0xfac05]}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}, @NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0xfac0d}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}, @NL80211_ATTR_WPA_VERSIONS={0x8, 0x4b, 0x5}, @NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_SAE_PASSWORD={0x7, 0x115, "619608"}], @NL80211_ATTR_PREV_BSSID={0xa, 0x4f, @random="1560be74590a"}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x1000, 0x2, 0x4, 0x0, {0x4, 0x1eb0, 0x0, 0x7b, 0x0, 0x1, 0x0, 0x3}, 0xc00, 0x7, 0x3}}, @NL80211_ATTR_MAC_HINT={0xa, 0xc8, @from_mac=@device_b}]}, 0x90}, 0x1, 0x0, 0x0, 0x4000040}, 0x40000)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001e40), r1)
sendmsg$ETHTOOL_MSG_WOL_SET(r1, &(0x7f0000002140)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000002100)={&(0x7f0000002040)={0xac, r7, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}]}, @ETHTOOL_A_WOL_SOPASS={0x36, 0x3, "c5b9b93d2278c760cee0e65e7f4ecb8b40ce5a02ad56c79ec623d5439c08d323fa0cc7491a567f51d9023adc7cf798b558b5"}]}, 0xac}, 0x1, 0x0, 0x0, 0x40}, 0x0)

03:38:03 executing program 5:
ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000000)={0xe78b, 0x92})
r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x1f, 0x4, 0x40, 0x7f, 0x0, 0x6, 0x62e00, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0xfffffeff, 0x4, @perf_config_ext={0x10000, 0xe823}, 0x1812, 0x100000000, 0x3, 0x9, 0x3, 0x7, 0x9, 0x0, 0xacf4, 0x0, 0xa5}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x4)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000140)=0x14)
syncfs(r0)
ioctl$AUTOFS_IOC_PROTOVER(r1, 0x80049363, &(0x7f0000000180))
r2 = dup3(r0, r1, 0x80000)
sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x8, 0x70bd27, 0x25dfdbfb, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x44080}, 0x20000000)
r3 = syz_open_dev$vcsu(&(0x7f00000002c0), 0x8000, 0x80402)
sendto$packet(r3, &(0x7f0000000300)="5c383f972ea29f44bf6dc486f1dda9e2ad33eaa77cd763cfa7d95c1bcb916f591cd87ab364c23a12d8d71b0d0a42f7c8cea34679c90678be2964f6b9f5bdec01adef54be6c2532d99ffab9c2971aa5762f9c912257a476cddaf07433d2742c78a2eb66d8f59d306f0358a821b203436be4ac2259b2a428dcb3f751b5eb32a8fc47afb6bd21", 0x85, 0x94, 0x0, 0x0)
r4 = fork()
perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x81, 0x63, 0x4, 0x3, 0x0, 0x1ff, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaa77, 0x0, @perf_config_ext={0xfffffffffffffbff, 0x1}, 0x10809, 0x9, 0x9, 0x4, 0x2, 0x4, 0xfffd, 0x0, 0x80, 0x0, 0x400}, r4, 0xa, r0, 0x9)
r5 = open(&(0x7f0000000440)='./file0/file0\x00', 0x60000, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000014c0)=[{&(0x7f0000000480)="0a1e36df1f8c23dd89b1af0f1f4301a6f1f52cf3c29dfeab1436fbb00d71e3fb454bcf325f1f9bd8e56bdf7c36aad11b4866d5622dc206e82d42b8b275c586f335252123d369efde64bb3ece755f766d7e6cbc8e47aa5b65eb7e5b4c5a00d487285cc74c8b45dddd5eacce1ba456eea02feb076c2d55c1f31a5ad81d07115921995ce12edb62294d6a024eababd10ab37811c42bf132dc9704830dd6874485ffbd82525a18b15ba5916559a656d382e211588d49b83907cfe6fe2bdad12cdf25eab3377bde7d306eb7ca432be964f4b870c037086eb4bde16b5c94a6be689b81b7e53ceff2e024807811ac96447eb044f854628c238a8aa75b86e1e66c49a753f0300cc5580b7d13f89533899ce9ff292ce4a0f848f0df7749e2ea909854e5aea35f3045d4a2b51f611b1137f4fe31b3c207d27db481c1d657b2dbed55c5e6f342c3f3daf7c485506a77d90bdb0b4727fca3459223cfebdd80709750326a7da6c17c24b6f96516c42d24840edb39a42949585c147a9a95e055988afe3fa5322a8469e4370590a82d94aa091847c106e7141a90065e4b025e9a5bcecb74e464cff32ef49ede7dc14027bf6eb48e36f22f6248d3855f1ef4fb696a12e6c653bcf321780c25e1475ca9b247183b8502717c9af35cc005312e702548d09e05004ce325f73b9c0b16430d1ccdb76089d2bf45de74cc7e473ec968261b2414337a6daf1f9de4bfe1fb1fd2e703b0127ee37d9c68bdb8b85cd0ffc27a158fb1f44bcb64718f642f96303ab8f77f27a12505dfdad937124d85e9616a8602b80d1d419b80d16d5699f8e8d77485b98ad02bc448c85a5f18562e983da3d1ee8252541dfe52463382651e46ad758e307fb69433106e9ced6fe653f8102bfa29d4927fbe34e974198bbc3416727a4b3415c1a910c07a9059cc11f90b78d66f4d5d7eddceb53b0c363d63704e29661ad929432aea52e23bafbd3c483ae3acbf820cc8b563be1b8c2a945ecb3cfc53a83885b73db5f3ebde28e5397aa33b76048a641f4dde240bd87c2237222f7e997374f37c700fb3c4f4e9222dcfe7ae48912aa33ea40fd17dc831cfe52fa2e45acd7fc27be8b55d7f07ade79df9e9cb06d113de813e5e096750a03996368c3fb68dbe407816e8033c25a898d3e35412a6158b26e60ac18697bf1626042ea969d97c3298fc8bce8594d534f97a23839032fb67a0f719d31839f867257162abac363904771e3c54472a36e62ccb56fdbef65779c1170b7ae2b4cecc334488091771460c60c990b171f7f146973f3df5ecca2c27226a878f04033e8333c3d57f5be34d4959388a24f5b2df52c860335b2baad7b12a5bada891135f5f65b7a15fff11d14391e701598c0873e93f0ff8601d51ec3237c45d70df7754c260eaca23d0cf210da2ace153c5382569828083248d19f4413f6861d4dfa6f3e98801aa9127d507ffdf3275963f34c59bb72f03249e4dc4e06689cea4a97ef814d2c8e455927d4de94f6484b0dba35bac603fc764fd64ff5e5d457962cc29346145a3ea27612e74ccebafb9ca07650b8c946e43f71190f5a047cc77f97da431b9f4db7643567836ab791fda967081f7b01f8142616e274bc8b66c6908b9b9ba9b16c3fc91b6b5767f1be61dea54bcebe11ab82de9749d73ff197e0a2c31436448e08f28156a7284b7f74e2fd0575f6257da625c13232dd1d09cad5688773ce561b7e6a7e0d0bada5668bf8fbd162d01cf46b9afb18bf93aa5d511a636430121ffa573256bdb698601f4e0d41dea70d120d459f642fa3f1c7e8c7f7a978fd26e62ccf2cfad8ba7f21d846a53b3b71b56b025d13b8e3de75814c7949633b1cb5f5af9826b007846864a98a43ec18f87a7de4e4d6b1fcc9708b1099c42a8bbb4207de4836e46fe71d9f3dacd552d27c012568e148b986ff259170a8fbf8a47d097db71c3102751df10b81c2f82d57885521857edc44149278c152db87ee4fec0213047550e8118fbe58b41cc556d44de61526ff9170e37cb419c6626a8a48213d212e5486297c3f0d00cfba54c8fc106785ec20412b94765d925af112147094fc687c83c0d08495c3149efd8019eb3ad23112c0ee466d728339b6e73397271e5fa3413cec3c723d2069b6e66c2182e3448b83ee36912360891a86c7b6fd92129f405e4a9d95225488975b717a470496e2437c3ff4efa5762591d793112e4c7167bbc67c6303a9f0f2be9fcc9ed233b25b49f69f2e389526479bd0ef5141e39e44a08c818703befeda5ab5eebf008e1e01da2fe68a8fc5ff2b2185c3ba235d41aaa9a5839a6b36e77f2384a8026febf0c6b4e0a75e8af7516c07741ead42c53719924e13b4357bf9611dc79b1695987596d82700eba0ce6185942d1ba2f21967840a7f65921783cab972d4c1ff0b00a8ea0668029407427b99117d9739eca34f2c06c39394768327e10534589a892c80000e6090a9e7b309425e8b559e0bb576e4939d4299f9a1b4ea74e828c5e8d2e5dc615ed40b8376596d120197893f45c927c284767f8d384bbc089f79b4bc7388380cf6741bdfc7ff71825230d9f1bac2ecfdc1e6ae01eb432b8c1dc09ef2912c9e5c1751778bb34d9b400faa2ff30245d245a128e5ebff2d8666d9de313ff8e0a051e61bf5a6b7b0c6c322ad8827fdb5043e995cd1533a452103782afee59502acacf6c94c7e49ac68bb9cce0b4d8ca1f6665d1767560f5fb60581c7fac64b3fb4fe7724d5b0feec8481a78bc5a240da7d75205de54b87dbf0c331027e756e2a9cfcebc81f2906b95c3a2bd0caa3780a169122a915092543871ad475c48174f860b1759fe7a918fbe933d0bc36ea653ea31473c178cb777152066b50ac7259ab9c0b832eb37d7665dea0d742b30e0a1006fac5e50d87c2736a3cdc5660854fbd4f13f2c592140385ee06f9a19e35517fe0b490b744a0659b14007fd25ab53c9cf40fcea02d0b746e8ce2735157b600e0dfef99038de9b8d3a752367bdbb2d656d15633d7ca194c78381d2e90dbc3428830feac83b1280b305822349cf49cbeeff8706e9e3c76d95fd708a689593b670cbe632969ccf66f3c5b08782ba04f0fe7fbed058b5ffc8c56eb86f4e309de548fe031800e3894afd9373a60569c43b052a4ad5baaddbb4ab2fd7686fb25cbb708c442807623460075dce0d22e30a6944ecef74881340c6a914b0b2981b889c89e8abed539c553a27a09b0cef741cf500c06ca156f72372cfd058f121e42c5d9eda60b71253647482fe8b372c65db3b6f4167f0d59ec40035b84e7c4064303c47bb402a7874c253bf49b125f942abac5618e51454aaf07a9b7f99f561dee003c113091426899dec05ee3751b394a2a9bdd523eb3a497044325f5b8e9cfbb117c0e1955dcb364f254f870c786e34d5f5b7a952762b86379177cb2aa531e9ebf6fabddca571c9027ca04ebf4c9358bea67f568d5c490f580340a7c6ab2a82ea294d23d9d15fb674f2a12cdb555261302cf04e1d65d85a4e055769c59e7f88e8a08b4814e0a2d0e17f07bc675a175e0cace63b5cb0bccf46cf2793179aeed6bcd589ab51c1eafe7335c1096dcc31447f3c97d8d01d3aaeac440270bb14c94a99299dd7137280abb0a032db046818093b0e076ea81c3904e4d00a46a04843d69d5cdcd854918126311838a66695d9887c80c253d39929f30551125387bde867e9ff96875f212be0616790bce54e0028037abc82cc3b005d60034af0fcab7ce47544a92d81813b12c5977ad52c20f5a44facebb121c2b7ec77888330f6a7925189ecf4c3f35eea768c9143b8d328cbdd3cb5c63abac6a8428149656e76f4620eb8cdb47d501d9528aae63eb5cb2d69e5b050966287174d004a3b7622fec5630f9559b0ff38e5a0eadb010ad98d0f6dc953d69f134ffdc46a3d777c7846d0efab147d78cd6df34d8b363994d81a9a55f2c6ba54477ba976eac639a47a78bbfdcf2ac83a9bf1d001c3f9aad87517c17d8d859e54e8accd1f5b5f5bd00a43731b75c5ac9a4c96b07f6e64eb2dd854c32c4e40e148cc4cdca4c2ecda2de958feb1612405696d4026367e2d2df2ad607631055de9c00329b5194f533137e8ae07332c86a2551c39de8f65d2e302d5282911581fe485101d57200012fa50c8526c8526e197682bdc9a37794036d13456efea3efde004d9d74708dbf02810ddae3407ace0fec8cf4fe050452f86389cc02a8904b776a2d7688a66056ddd459a4468291afc71322cc0524e9d259ac3839b6cf938044d020276636bd87b52cd347fbef859bf4e947bb9c0c6c6e7ddc53cc4d928ae5193d4052ab702a58f76e15a83441c3f1b14dd2d18da5febdd676580d0cb1d2dfc1a165701c92b4fc850139e139749652e11e769c94f9d00db671737655bd12722ace7f6fc5380c53d8c7e4573429ae823c98c998d37da18f8aee49bb58a43319ebcde398b7ad4e3c32f9daec129c0cb2ffac0d375a960c9f0850c3b51c7116f3a8d10fe3973e27335dc2aa21d6b00aeb4fcbddaa29f7e51184ba1b75e2bf402a6a3ea3bc5058d3ccb528959f13f56d33d936764fb03286a4280e5f62cae5c0b269c80940a503eb149797734483d0efe4961a42458a49c2b9de7b271bb3a0c78c7e82353ee773ec525a8cbba2b2ebd8325f810f66161d9f86abf0aa05d4a9b350e85894f42610247104c4c3c3026e7e07b05112423c0dfad8cce2cad88ec29cd8fb176644566daaa27548a644533dbb386ad1a4e3da2b30650d22aa0ad81609d3ccd2536668db9db7758df5d075406e6a59b7955ea49dfb6ffd26499dfc83560a3771108430421a0529c285d56b25a6df9d957cf0a8c3ece8d9ba5b56f3eb7466984e36da19505c025c09050af6c3cd61bd5d9a6aeb8e1475f63b57e664aba408ffcc809b647616a2c4634fab5108d19070f112b61fc84bb69be00e9cf2344b4bdfd97911914527b9b796993fe5fdbe2ad7bb8ba739ab510954b4f9f5d59952ee2ce72c27b79a4af26eeb005de4060ed102f13ffed26f07ffbf7dd21aa156cbb6429d1e83d693cca217a9cb9d464f67b33d654d83092a631ce48e90c66b92b9f571ddc7aae89c64c8ad1687115b107263fc2de37b793030045ead726d03e6bdf0089af90b2a97b2f591e07a95fa5da1febd149def62d54a0b93d94a4372f03587a79a0a30cecef6e2ce02de8defc08517481a529e2a3effe08b71cf82874df57881030589836db071fa039b84cb8a4e55851edacbc3f96e0283df8f5ab81945e8203ccd6f92e7e1ed4dea828c10033dd0a1c96564091605a1810e1ea85f9412bd5e6499ca636df48ea076cc21290ee74af7ed10c3b7ade4201a8b5ba5a0fce1670bd7af22d560eebecbfee6d0b5d074a2a9fa91462f9cbbdfbc8a50f30d2430691fb6bd9057b62bcd18550cf6001e9a94fcc8ecdec65d47e4a0671c867316f1d17b46b5f296e43f0ab467c314975b87400fc42351e4bb563343c4324ab212acf0e6215cdaef65828a810a503548ec291d7117f10f18ba2e5ee64be65f3fadbe8a474208b3ff97564ed057ac4cb1e107e5d8b9ec464ec997b3d598eb5d508ca9802ebe6ea8fbc4e1752921b612b03276604a35e6efa4b3c2cda4941e63aac55e1b27d87533a751a0e38089b004ab26739f9fc58b620d8e47df0397888f1f760d6551b24da5b6231b2f6416d389cdf673b042cb55329e4046ce390bddb00c9d758f892eb72a1403a030392f8652696e5eaeb4a6428aa0f9d6e4ea23e54b7c69e9746f3a95f5cc464f7032fc25a1fbdec4b15a326cc", 0x1000}, {&(0x7f0000001480)="cc7ad16f20f2a5b5a6a6e65da7e23ee170f8b3996f2843141c99d06fdefade7fd83bfae6da8bdfa39a4372bebeaec3fbdc51e5412164", 0x36}], 0x2, 0xe)
r6 = getpgrp(r4)
perf_event_open(&(0x7f0000001500)={0x0, 0x80, 0xb2, 0xf8, 0x62, 0x5, 0x0, 0x2, 0x200, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0x80}, 0x1, 0x8, 0x6, 0x4, 0xff, 0x7fffffff, 0x6, 0x0, 0x2, 0x0, 0xff}, r6, 0xffffffffffffffff, r3, 0x0)
ioctl$GIO_SCRNMAP(r5, 0x4b40, &(0x7f0000001580)=""/209)
r7 = open(&(0x7f0000001680)='.\x00', 0x202, 0x1a0)
getsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f00000016c0)={@mcast2, <r8=>0x0}, &(0x7f0000001700)=0x14)
ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000001740)={@mcast1, @local, @private1={0xfc, 0x1, '\x00', 0x1}, 0x100, 0x9, 0xeb, 0x100, 0x3, 0x44020008, r8})

[   99.750489] audit: type=1400 audit(1658115483.284:6): avc:  denied  { execmem } for  pid=288 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
03:38:03 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x3}}, './file0\x00'})
write$P9_RRENAME(r0, 0xfffffffffffffffc, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x400}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0, {0x40000}}, './file0\x00'})
write$P9_RATTACH(r2, &(0x7f00000000c0)={0x14, 0x69, 0x2, {0x40, 0x0, 0x1}}, 0x14)
preadv2(r1, &(0x7f00000012c0)=[{&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/153, 0x99}, {&(0x7f00000011c0)=""/237, 0xed}], 0x3, 0x10001, 0x0, 0x4)
write$P9_RSTAT(r0, &(0x7f0000001300)={0x3e, 0x7d, 0x1, {0x0, 0x37, 0xff, 0x9, {0x0, 0x4}, 0x400d0000, 0x26, 0x7ff, 0x7, 0x2, '^!', 0x0, '', 0x1, '\x8f', 0x1, ']'}}, 0x3e)
pidfd_send_signal(r0, 0x1, &(0x7f0000001340)={0x3f, 0x9325, 0x8}, 0x0)
write$P9_RRENAMEAT(r2, &(0x7f00000013c0)={0x7, 0x4b, 0x2}, 0x7)
close(r1)
r3 = memfd_secret(0x80000)
setsockopt$inet6_udp_int(r3, 0x11, 0xb, &(0x7f0000001400)=0x7ff, 0x4)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r3, 0xc018937d, &(0x7f0000001440)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
write$P9_RXATTRWALK(r4, &(0x7f0000001480)={0xf, 0x1f, 0x1, 0x8}, 0xf)
ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, &(0x7f00000014c0)={0x0, 0x7, 0x1, [0x80000000, 0x200, 0x3, 0x9, 0x53c], [0xec, 0x0, 0x7, 0x800, 0x9c2f, 0x6, 0x6, 0x8, 0x56, 0x8001, 0x7, 0x8001, 0x8, 0x7f, 0x4, 0xffff, 0xdf3, 0x7f, 0x100, 0x10001, 0x6, 0x0, 0x80000001, 0x101, 0x6e, 0x8, 0x9, 0xff, 0x3, 0x3ff, 0x8000, 0x0, 0x8, 0x8000, 0x6, 0xffff, 0x5, 0x3, 0x0, 0x1000, 0x2e0, 0x9, 0x0, 0x8001, 0x20, 0x2, 0xfffffffffffffffb, 0xfffffffffffffffb, 0x67, 0x4, 0x100000000, 0x7fff, 0x6, 0x100000001, 0x81, 0x4, 0x7, 0x76, 0x8, 0x0, 0x3, 0x5, 0x0, 0x3, 0x4, 0x2, 0x1f, 0x8, 0x5, 0x6f04, 0x0, 0x800, 0x4, 0xfffffffffffffffc, 0x6, 0xffffffffffffff2b, 0x60f, 0x401, 0xfffffffffffffffc, 0x631be194, 0x8, 0x100000000, 0x10000, 0x8, 0x3, 0x6, 0x0, 0x1, 0x2, 0x2, 0x1, 0x4, 0x4, 0x101, 0x5, 0x3, 0x0, 0xbc6, 0x3, 0x6, 0x2c, 0x9, 0x7f42, 0x632e, 0x6, 0x8, 0xffff, 0x7, 0x325, 0x0, 0x4, 0x8, 0x3, 0x1f, 0x5, 0x20, 0x1, 0xfffffffffffffff7, 0x7ff000, 0x8, 0x3c3]})
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000001900))
open(&(0x7f0000001940)='./file0\x00', 0x101000, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000001980), 0x402000, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000019c0), 0x0, 0x0)
close_range(0xffffffffffffffff, r3, 0x0)

03:38:03 executing program 6:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x440, 0x0)
ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000040))
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r0)
ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000200)={0x0, @rc={0x1f, @none, 0x1}, @in={0x2, 0x4e20, @remote}, @xdp={0x2c, 0x0, <r2=>0x0, 0x36}, 0xcab4, 0x0, 0x0, 0x0, 0x4, &(0x7f00000001c0)='veth1_to_team\x00', 0x7, 0x7, 0x1})
sendmsg$ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x138, r1, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x138}}, 0x0)
writev(r0, &(0x7f00000005c0)=[{&(0x7f0000000440)="60f5fb9085d3d6cfc025c3ad8f49f892acef7d494f95dc8a01ea17289db38033b6c08278128652f38c45fac27457d1fce9", 0x31}, {&(0x7f0000000480)="5e34cb9f460fb1d404d4a2fa15d09344b1b00abe1961c0d35ab12d3756127232f066aebd856c4fb39d046bc78acb815fdbb780663d0c1f3ce476826d1c2b1ddf2abe78936f28cc67", 0x48}, {&(0x7f0000000500)="13f47d81a208e8231fa74d7ca15ec40b5ccad18bcd7634680c2debb70ff48c375fc1b019b4024e36319511432c690c71b2035aa5365a9ce34bb91ef384c976426880d743f9afae8e525dcea8485f08a00d6d1ed27bc2bf6e05c4c7bba1628bc9c6eeea192c368f5c93da314c85ded9d27143a04b503299521ca626ca9ca23794540f411dcf7810dbe0d280756d11900371", 0x91}], 0x3)
r3 = fsmount(r0, 0x1, 0x8)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r3, &(0x7f00000007c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x80000400}, 0xc, &(0x7f0000000780)={&(0x7f0000000640)={0x110, 0x0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR={0x60, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @empty}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast2}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_ADDR={0x44, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @loopback}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}, @MPTCP_PM_ADDR_ATTR_ID={0x5}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_ADDR={0x30, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}]}]}, 0x110}, 0x1, 0x0, 0x0, 0xc0}, 0x400c845)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000800)={<r4=>r3, 0x80000000, 0x1, 0x1})
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000900)={'sit0\x00', &(0x7f0000000880)={'syztnl0\x00', <r5=>r2, 0x29, 0x3, 0x80, 0x9, 0x42, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}, 0x700, 0x10, 0x40, 0x5}})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r4, &(0x7f0000000a40)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000940)={0x98, r1, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}]}, 0x98}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000a80)=0x2, 0x4)
open(&(0x7f0000000ac0)='./file0\x00', 0x40000, 0x8c)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000b40), r3)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r4, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x14, r6, 0x100, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x2081}, 0x40400c0)
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000d00)={&(0x7f0000000c40), 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x1c, 0x0, 0x0, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
r7 = fsmount(r4, 0x0, 0x80)
ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f0000000d40)={@remote, 0x17, r2})
r8 = open_tree(0xffffffffffffffff, &(0x7f0000000d80)='./file0\x00', 0x9001)
sendmsg$TIPC_CMD_ENABLE_BEARER(r8, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x38, 0x0, 0x200, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x1c, 0x17, {0x6, 0x31, @l2={'ib', 0x3a, 'bond_slave_0\x00'}}}}, ["", "", "", "", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x4000010}, 0x4000001)

03:38:03 executing program 7:
ioctl$CDROM_TIMED_MEDIA_CHANGE(0xffffffffffffffff, 0x5396, &(0x7f0000000000)={0x6, 0x1})
ioctl$AUTOFS_IOC_READY(0xffffffffffffffff, 0x9360, 0xfd)
ioctl$CDROM_DEBUG(0xffffffffffffffff, 0x5330, 0x0)
ioctl$CDROM_DISC_STATUS(0xffffffffffffffff, 0x5327)
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x3, 0xe, 0x9, 0x7, 0x0, 0x9d, 0x102, 0x4, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x1008, 0xfd3, 0xff, 0x3, 0x0, 0x3, 0x81, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x6)
ioctl$CDROM_DEBUG(0xffffffffffffffff, 0x5330, 0x0)
r1 = dup(r0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100), 0x521000, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)={'#! ', './file0', [{}, {0x20, '&(:'}, {0x20, '#'}, {}, {0x20, '{-\x05\\'}, {0x20, '\x81'}, {0x20, '@'}, {0x20, '!#\'+$\xd4&-'}, {0x20, '\x11.\\'}, {}], 0xa, "2fedf5a0621a91fb23d518b756236417621239cf78eff1be978302495289be4ed49d57fb8bd18a80da34985a6de94cb991e1a41c54bcb3dbd0d72d700dc1906c2579ea630d07a05530623e06be90e14f617d101ade80c1237a5b"}, 0x84)
r3 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x1, 0x9, 0x3f, 0xf6, 0x0, 0x100000001, 0x0, 0xc, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x1, @perf_config_ext={0x3, 0x9}, 0x18, 0x6, 0x6, 0x0, 0x573, 0x9, 0x8, 0x0, 0x20, 0x0, 0xfff}, 0x0, 0x5, r1, 0x1)
ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000280))
ioctl$CDROM_DEBUG(r1, 0x5330, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000500)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_DELCHAIN={0x28, 0x5, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_DELRULE={0x1c, 0x8, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}]}, @NFT_MSG_DELSET={0x54, 0xb, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x7}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x8}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x3}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x3}, @NFTA_SET_ID={0x8}]}, @NFT_MSG_DELFLOWTABLE={0x138, 0x18, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x110, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'macsec0\x00'}, {0x14, 0x1, 'batadv_slave_0\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0xa4, 0x3, 0x0, 0x1, [{0x14, 0x1, 'ip_vti0\x00'}, {0x14, 0x1, 'virt_wifi0\x00'}, {0x14, 0x1, 'veth0_macvtap\x00'}, {0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'batadv0\x00'}, {0x14, 0x1, 'geneve1\x00'}, {0x14, 0x1, 'bridge_slave_0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'wg1\x00'}, {0x14, 0x1, 'macvlan0\x00'}]}]}, @NFTA_FLOWTABLE_FLAGS={0x8}]}], {0x14}}, 0x1f8}, 0x1, 0x0, 0x0, 0x4001}, 0x20000001)
ioctl$BLKGETSIZE(r1, 0x1260, &(0x7f0000000580))
r5 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/self/attr/sockcreate\x00', 0x2, 0x0)
r6 = dup(r5)
ioctl$CDROMGETSPINDOWN(r6, 0x531d, &(0x7f0000000600))
dup(r5)
write$selinux_attr(r1, &(0x7f0000000640)='system_u:object_r:cpu_online_t:s0\x00', 0x22)

[  100.914341] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.916240] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  100.917968] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  100.920740] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  100.923691] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  100.925343] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  101.107538] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  101.111106] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  101.112834] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  101.116340] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  101.120408] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  101.121773] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  101.159632] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  101.163285] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  101.164536] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  101.167728] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  101.169881] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  101.171742] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  101.190982] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  101.194354] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  101.207145] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  101.210380] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  101.211849] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  101.214236] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  101.215668] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  101.217828] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  101.222537] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  101.224078] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  101.231404] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  101.233139] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  101.235302] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  101.238503] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  101.239826] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  101.241781] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  101.244170] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  101.245327] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  101.256455] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  101.263431] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  101.264635] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  101.267819] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  101.269906] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  101.271677] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  103.000394] Bluetooth: hci0: command 0x0409 tx timeout
[  103.128035] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  103.192068] Bluetooth: hci2: command 0x0409 tx timeout
[  103.255049] Bluetooth: hci7: command 0x0409 tx timeout
[  103.255535] Bluetooth: hci3: command 0x0409 tx timeout
[  103.319037] Bluetooth: hci5: command 0x0409 tx timeout
[  103.319509] Bluetooth: hci6: command 0x0409 tx timeout
[  103.319897] Bluetooth: hci4: command 0x0409 tx timeout
[  105.047069] Bluetooth: hci0: command 0x041b tx timeout
[  105.240053] Bluetooth: hci2: command 0x041b tx timeout
[  105.304102] Bluetooth: hci3: command 0x041b tx timeout
[  105.304583] Bluetooth: hci7: command 0x041b tx timeout
[  105.368050] Bluetooth: hci4: command 0x041b tx timeout
[  105.368571] Bluetooth: hci6: command 0x041b tx timeout
[  105.369245] Bluetooth: hci5: command 0x041b tx timeout
[  107.096023] Bluetooth: hci0: command 0x040f tx timeout
[  107.288080] Bluetooth: hci2: command 0x040f tx timeout
[  107.352031] Bluetooth: hci7: command 0x040f tx timeout
[  107.352447] Bluetooth: hci3: command 0x040f tx timeout
[  107.415101] Bluetooth: hci5: command 0x040f tx timeout
[  107.415491] Bluetooth: hci6: command 0x040f tx timeout
[  107.415859] Bluetooth: hci4: command 0x040f tx timeout
[  108.567098] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  109.143420] Bluetooth: hci0: command 0x0419 tx timeout
[  109.335166] Bluetooth: hci2: command 0x0419 tx timeout
[  109.399067] Bluetooth: hci3: command 0x0419 tx timeout
[  109.399787] Bluetooth: hci7: command 0x0419 tx timeout
[  109.463100] Bluetooth: hci4: command 0x0419 tx timeout
[  109.463781] Bluetooth: hci6: command 0x0419 tx timeout
[  109.464461] Bluetooth: hci5: command 0x0419 tx timeout
[  111.601510] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  111.618130] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  111.618908] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  111.620519] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  111.621772] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  111.624162] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  113.688040] Bluetooth: hci1: command 0x0409 tx timeout
[  115.736037] Bluetooth: hci1: command 0x041b tx timeout
[  117.784067] Bluetooth: hci1: command 0x040f tx timeout
[  119.832030] Bluetooth: hci1: command 0x0419 tx timeout
[  150.125378] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  150.126012] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  150.127145] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  150.298174] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  150.298769] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  150.300063] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
03:38:54 executing program 4:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r1, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000080)={0x0, 0x0, 0x0, 'queue0\x00'})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040), 0x149)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/seq/timer\x00', 0x0, 0x0)
write$binfmt_script(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="2321202e2f66696c6531202c240a0e52ada92082fe299a7606e413c7307e5cba93ee6850ed75821e80f334a6544a5581ba9c891fb14ad093878f45238285a8bf1c3a10e02b01ef519ea2e99ccf35d667e2e42540a0be52835a991260bc575ad5af7666f3a448b32f3cc0f18697e059015d1d5a72579e95fcdf6fc15d1c1c7f73e6a2c82c314b58ceef14601270e9915a9b4c36a9205921902c722e5c4fc25052f0d68037315c0a87f36ec1893b3a801484e1f7dfce73dc782d90"], 0xb4)
syz_emit_ethernet(0x92, &(0x7f0000000300)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x84, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @source_quench={0x3, 0x5, 0x0, 0x0, {0x1a, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, 0x0, @loopback, @broadcast, {[@ssrr={0x89, 0xf, 0x0, [@broadcast, @broadcast, @private]}, @rr={0x7, 0x3}, @lsrr={0x83, 0xb, 0x0, [@multicast1, @rand_addr]}, @lsrr={0x83, 0x7, 0x0, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @ssrr={0x89, 0xf, 0x0, [@broadcast, @dev, @loopback]}, @ssrr={0x89, 0x1f, 0xcd, [@multicast2, @private=0xa010102, @remote, @loopback, @broadcast, @local, @private=0xa010102]}]}}}}}}}, 0x0)
preadv(r3, &(0x7f0000000280)=[{0x0}], 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

[  151.395127] audit: type=1400 audit(1658115534.928:7): avc:  denied  { open } for  pid=3674 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  151.397083] audit: type=1400 audit(1658115534.929:8): avc:  denied  { kernel } for  pid=3674 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
03:38:55 executing program 4:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r1, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000080)={0x0, 0x0, 0x0, 'queue0\x00'})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040), 0x149)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/seq/timer\x00', 0x0, 0x0)
write$binfmt_script(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="2321202e2f66696c6531202c240a0e52ada92082fe299a7606e413c7307e5cba93ee6850ed75821e80f334a6544a5581ba9c891fb14ad093878f45238285a8bf1c3a10e02b01ef519ea2e99ccf35d667e2e42540a0be52835a991260bc575ad5af7666f3a448b32f3cc0f18697e059015d1d5a72579e95fcdf6fc15d1c1c7f73e6a2c82c314b58ceef14601270e9915a9b4c36a9205921902c722e5c4fc25052f0d68037315c0a87f36ec1893b3a801484e1f7dfce73dc782d90"], 0xb4)
syz_emit_ethernet(0x92, &(0x7f0000000300)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x84, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @source_quench={0x3, 0x5, 0x0, 0x0, {0x1a, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, 0x0, @loopback, @broadcast, {[@ssrr={0x89, 0xf, 0x0, [@broadcast, @broadcast, @private]}, @rr={0x7, 0x3}, @lsrr={0x83, 0xb, 0x0, [@multicast1, @rand_addr]}, @lsrr={0x83, 0x7, 0x0, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @ssrr={0x89, 0xf, 0x0, [@broadcast, @dev, @loopback]}, @ssrr={0x89, 0x1f, 0xcd, [@multicast2, @private=0xa010102, @remote, @loopback, @broadcast, @local, @private=0xa010102]}]}}}}}}}, 0x0)
preadv(r3, &(0x7f0000000280)=[{0x0}], 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

[  151.678996] hrtimer: interrupt took 18164 ns
03:38:55 executing program 4:
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r1, &(0x7f0000000240)=[{&(0x7f0000000140)="cf", 0x1}], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000080)={0x0, 0x0, 0x0, 'queue0\x00'})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040), 0x149)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/seq/timer\x00', 0x0, 0x0)
write$binfmt_script(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="2321202e2f66696c6531202c240a0e52ada92082fe299a7606e413c7307e5cba93ee6850ed75821e80f334a6544a5581ba9c891fb14ad093878f45238285a8bf1c3a10e02b01ef519ea2e99ccf35d667e2e42540a0be52835a991260bc575ad5af7666f3a448b32f3cc0f18697e059015d1d5a72579e95fcdf6fc15d1c1c7f73e6a2c82c314b58ceef14601270e9915a9b4c36a9205921902c722e5c4fc25052f0d68037315c0a87f36ec1893b3a801484e1f7dfce73dc782d90"], 0xb4)
syz_emit_ethernet(0x92, &(0x7f0000000300)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x84, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @source_quench={0x3, 0x5, 0x0, 0x0, {0x1a, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, 0x0, @loopback, @broadcast, {[@ssrr={0x89, 0xf, 0x0, [@broadcast, @broadcast, @private]}, @rr={0x7, 0x3}, @lsrr={0x83, 0xb, 0x0, [@multicast1, @rand_addr]}, @lsrr={0x83, 0x7, 0x0, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @ssrr={0x89, 0xf, 0x0, [@broadcast, @dev, @loopback]}, @ssrr={0x89, 0x1f, 0xcd, [@multicast2, @private=0xa010102, @remote, @loopback, @broadcast, @local, @private=0xa010102]}]}}}}}}}, 0x0)
preadv(r3, &(0x7f0000000280)=[{0x0}], 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

[  152.064735] syz-executor.4 (3716) used greatest stack depth: 24632 bytes left
03:38:55 executing program 4:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
r1 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x1)
openat(r2, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
ioctl$EVIOCREVOKE(r2, 0x40044591, &(0x7f0000000000)=0x3)
r3 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x1)
openat(r4, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r5, {0x4}}, './file1\x00'})
ioctl$SG_IO(r0, 0x2285, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$P9_RREADDIR(r0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0xb)

03:38:55 executing program 4:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
r1 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x1)
openat(r2, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
ioctl$EVIOCREVOKE(r2, 0x40044591, &(0x7f0000000000)=0x3)
r3 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x1)
openat(r4, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r5, {0x4}}, './file1\x00'})
ioctl$SG_IO(r0, 0x2285, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$P9_RREADDIR(r0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0xb)

03:38:56 executing program 4:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
r1 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x1)
openat(r2, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
ioctl$EVIOCREVOKE(r2, 0x40044591, &(0x7f0000000000)=0x3)
r3 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x1)
openat(r4, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r5, {0x4}}, './file1\x00'})
ioctl$SG_IO(r0, 0x2285, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$P9_RREADDIR(r0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0xb)

03:38:56 executing program 4:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
r1 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x1)
openat(r2, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
ioctl$EVIOCREVOKE(r2, 0x40044591, &(0x7f0000000000)=0x3)
r3 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x1)
openat(r4, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r5, {0x4}}, './file1\x00'})
ioctl$SG_IO(r0, 0x2285, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$P9_RREADDIR(r0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0xb)

03:38:57 executing program 4:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
r1 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x1)
openat(r2, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
ioctl$EVIOCREVOKE(r2, 0x40044591, &(0x7f0000000000)=0x3)
r3 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x1)
openat(r4, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r5, {0x4}}, './file1\x00'})
ioctl$SG_IO(r0, 0x2285, 0x0)
write$P9_RREADDIR(r0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0xb)

[  153.519310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.519916] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.521517] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  153.524486] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.525078] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.526409] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  153.603882] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.604676] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.606055] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  153.681297] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.682004] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.683429] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  153.756635] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.757757] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.759118] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  153.762123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.762716] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.764652] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  153.984182] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.984845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.986257] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  154.041761] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.042617] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.044360] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  154.648759] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.649479] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.651096] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  154.800812] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.801558] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.802931] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  154.808556] ==================================================================
[  154.809128] BUG: KASAN: stack-out-of-bounds in _copy_to_iter+0x493/0x1420
[  154.809680] Read of size 4092 at addr ffff8880455ef914 by task syz-executor.2/3919
[  154.810267] 
[  154.810407] CPU: 1 PID: 3919 Comm: syz-executor.2 Not tainted 5.19.0-rc6-next-20220715 #1
[  154.811059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  154.812132] Call Trace:
[  154.812645]  <TASK>
[  154.812827]  dump_stack_lvl+0x8b/0xb3
[  154.813150]  print_report.cold+0x5e/0x5e5
[  154.813719]  ? _copy_to_iter+0x493/0x1420
[  154.814058]  kasan_report+0xb1/0x1c0
[  154.814369]  ? _copy_to_iter+0x493/0x1420
[  154.814713]  kasan_check_range+0x35/0x1c0
[  154.815050]  memcpy+0x20/0x60
[  154.815324]  _copy_to_iter+0x493/0x1420
[  154.815673]  ? lock_release+0x3b2/0x750
[  154.816007]  ? crng_make_state+0x2c5/0x730
[  154.816344]  ? csum_and_copy_to_iter+0x17b0/0x17b0
[  154.816745]  ? crng_make_state+0x2fa/0x730
[  154.817081]  ? crng_make_state+0x2fa/0x730
[  154.817407]  ? lockdep_hardirqs_on+0x79/0x100
[  154.817763]  ? crng_make_state+0x2fa/0x730
[  154.818081]  get_random_bytes_user+0x345/0x3b0
[  154.818426]  ? __stack_depot_save+0x242/0x450
[  154.818772]  ? get_random_u32+0x6e0/0x6e0
[  154.819090]  ? do_splice_direct+0x1b8/0x290
[  154.819423]  ? do_sendfile+0xb1d/0x1280
[  154.819741]  ? __x64_sys_sendfile64+0x149/0x210
[  154.820093]  ? do_syscall_64+0x3b/0x90
[  154.820390]  ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  154.820798]  ? __fsnotify_parent+0x498/0xa60
[  154.821136]  ? iov_iter_pipe+0xf4/0x2b0
[  154.821447]  generic_file_splice_read+0x187/0x4d0
[  154.821809]  ? lock_is_held_type+0xd7/0x130
[  154.822137]  ? add_to_pipe+0x3c0/0x3c0
[  154.822435]  ? security_file_permission+0xb1/0xe0
[  154.822814]  ? add_to_pipe+0x3c0/0x3c0
[  154.823109]  do_splice_to+0x1bc/0x240
[  154.823406]  ? inode_has_perm+0x1d0/0x1d0
[  154.823729]  splice_direct_to_actor+0x2ac/0x8c0
[  154.824088]  ? pipe_to_sendpage+0x380/0x380
[  154.824424]  ? pipe_to_user+0x170/0x170
[  154.824739]  ? security_file_permission+0xb1/0xe0
[  154.825126]  do_splice_direct+0x1b8/0x290
[  154.825440]  ? splice_direct_to_actor+0x8c0/0x8c0
[  154.825824]  ? security_file_permission+0xb1/0xe0
[  154.826214]  do_sendfile+0xb1d/0x1280
[  154.826521]  ? __ia32_compat_sys_preadv64+0x2e0/0x2e0
[  154.826941]  __x64_sys_sendfile64+0x149/0x210
[  154.827300]  ? __ia32_compat_sys_sendfile64+0x210/0x210
[  154.827733]  ? syscall_enter_from_user_mode+0x1d/0x50
[  154.828138]  ? syscall_enter_from_user_mode+0x1d/0x50
[  154.828526]  do_syscall_64+0x3b/0x90
[  154.828807]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  154.829189] RIP: 0033:0x7f36ea14eb19
[  154.829470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  154.830804] RSP: 002b:00007f36e76c4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  154.831391] RAX: ffffffffffffffda RBX: 00007f36ea261f60 RCX: 00007f36ea14eb19
[  154.831936] RDX: 0000000020000340 RSI: 0000000000000005 RDI: 0000000000000004
[  154.832475] RBP: 00007f36ea1a8f6d R08: 0000000000000000 R09: 0000000000000000
[  154.833019] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  154.833554] R13: 00007ffe0ee5eaaf R14: 00007f36e76c4300 R15: 0000000000022000
[  154.834100]  </TASK>
[  154.834288] 
[  154.834430] The buggy address belongs to stack of task syz-executor.2/3919
[  154.834965]  and is located at offset 52 in frame:
[  154.835367]  get_random_bytes_user+0x0/0x3b0
[  154.835728] 
[  154.835864] This frame has 2 objects:
[  154.836169]  [32, 96) 'chacha_state'
[  154.836179]  [128, 192) 'block'
[  154.836477] 
[  154.836868] The buggy address belongs to the physical page:
[  154.837312] page:00000000b43909d0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x455ef
[  154.838041] flags: 0x100000000000000(node=0|zone=1)
[  154.838451] raw: 0100000000000000 0000000000000000 ffffea0001157bc8 0000000000000000
[  154.839053] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  154.839666] page dumped because: kasan: bad access detected
[  154.840103] 
[  154.840247] Memory state around the buggy address:
[  154.840633]  ffff8880455ef800: f2 00 00 00 00 00 00 00 f3 f3 f3 f3 f3 00 00 00
[  154.841191]  ffff8880455ef880: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1
[  154.841751] >ffff8880455ef900: 00 00 00 00 00 00 00 00 f2 f2 f2 f2 00 00 00 00
[  154.842304]                                            ^
[  154.842723]  ffff8880455ef980: 00 00 00 00 f3 f3 f3 f3 00 00 00 00 00 00 00 00
[  154.843276]  ffff8880455efa00: 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00
[  154.843840] ==================================================================
[  154.844438] Disabling lock debugging due to kernel taint
[  154.849810] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.850471] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.851151] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  154.875247] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.875779] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.876435] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  155.974902] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.975953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.977442] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  155.990242] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.991441] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.993733] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready

VM DIAGNOSIS:
03:38:58  Registers:
info registers vcpu 0
RAX=dffffc0000000000 RBX=ffff8880452af9b0 RCX=ffff8880452af938 RDX=ffff8880452af918
RSI=ffff88801d0b1ac0 RDI=ffff8880452af8c8 RBP=ffff88801d0b1ac0 RSP=ffff8880452af8b8
R8 =0000000000000001 R9 =ffff8880452af918 R10=ffffed1008a55f30 R11=0000000000000001
R12=ffff8880452af938 R13=ffff8880452af940 R14=ffff8880452af960 R15=ffff8880452af918
RIP=ffffffff81081ae2 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f451a74e540 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f451ac2ff88 CR3=0000000016dbc000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ff00000000000000 0000000000000000
YMM02=0000000000000000 0000000000000000 00ff000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff
YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff8243136c RDI=ffffffff8741b720 RBP=ffffffff8741b6e0 RSP=ffff8880455ef0b8
R8 =0000000000000001 R9 =ffff8880455ef043 R10=ffffed1008abde08 R11=0000000000000001
R12=000000000000002d R13=ffffffff8741b6e0 R14=ffffffff8741b970 R15=ffffffff8741b730
RIP=ffffffff824313c1 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f36e76c4700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2dd22000 CR3=00000000185ea000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 ffffffffffffffff ff00000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000