Warning: Permanently added '[localhost]:15702' (ECDSA) to the list of known hosts. 2025/01/23 00:39:57 fuzzer started 2025/01/23 00:39:57 dialing manager at localhost:38529 syzkaller login: [ 68.699009] cgroup: Unknown subsys name 'net' [ 68.834333] cgroup: Unknown subsys name 'cpuset' [ 68.888634] cgroup: Unknown subsys name 'rlimit' [ 74.775079] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 86.480613] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/23 00:40:15 syscalls: 203 2025/01/23 00:40:15 code coverage: enabled 2025/01/23 00:40:15 comparison tracing: enabled 2025/01/23 00:40:15 extra coverage: enabled 2025/01/23 00:40:15 setuid sandbox: enabled 2025/01/23 00:40:15 namespace sandbox: enabled 2025/01/23 00:40:15 Android sandbox: enabled 2025/01/23 00:40:15 fault injection: enabled 2025/01/23 00:40:15 leak checking: enabled 2025/01/23 00:40:15 net packet injection: enabled 2025/01/23 00:40:15 net device setup: enabled 2025/01/23 00:40:15 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/23 00:40:15 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/23 00:40:15 USB emulation: enabled 2025/01/23 00:40:15 hci packet injection: enabled 2025/01/23 00:40:15 wifi device emulation: enabled 2025/01/23 00:40:15 802.15.4 emulation: enabled 2025/01/23 00:40:15 fetching corpus: 0, signal 0/0 (executing program) 2025/01/23 00:40:18 starting 8 fuzzer processes 00:40:18 executing program 0: r0 = memfd_secret(0x0) ioctl$PTP_EXTTS_REQUEST2(r0, 0x40103d0b, &(0x7f0000000000)={0x10000, 0x9}) ioctl$PTP_EXTTS_REQUEST2(r0, 0x40103d0b, &(0x7f0000000040)={0xffff, 0x8}) write$cgroup_freezer_state(r0, &(0x7f0000000080)='FREEZING\x00', 0x9) sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, 0x0, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x4}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xfff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x80) r1 = fsmount(r0, 0x0, 0x1) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0xdf9a5) ioctl$PTP_EXTTS_REQUEST(r1, 0x40103d02, &(0x7f00000001c0)={0x8, 0xb}) ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000200)) keyctl$unlink(0x9, 0x0, 0xfffffffffffffffb) ioctl$MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000380)={&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f00000002c0)=""/177, 0xb1}) keyctl$invalidate(0x15, 0x0) r2 = socket(0x3, 0x80000, 0x126e) bind$bt_sco(r2, &(0x7f00000003c0), 0x8) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000440), r2) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x60, r4, 0x800, 0x70bd2d, 0x25dfdbff, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_ELP_INTERVAL={0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x10001}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xa4}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x6}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @local}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x800}]}, 0x60}}, 0x20000002) getsockopt$sock_timeval(r2, 0x1, 0x43, &(0x7f0000000580), &(0x7f00000005c0)=0x10) r5 = add_key$keyring(&(0x7f00000006c0), &(0x7f0000000700)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff8) request_key(&(0x7f0000000600)='dns_resolver\x00', &(0x7f0000000640)={'syz', 0x2}, &(0x7f0000000680)='\xaa\xaa\xaa\xaa\xaa', r5) 00:40:18 executing program 3: ioctl$RTC_PIE_OFF(0xffffffffffffffff, 0x7006) ioctl$SNAPSHOT_ATOMIC_RESTORE(0xffffffffffffffff, 0x3304) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(0xffffffffffffffff, 0x80083313, &(0x7f0000000000)) ioctl$RTC_PLL_SET(0xffffffffffffffff, 0x40207012, &(0x7f0000000040)={0x3f, 0x80, 0x18, 0x4, 0x81, 0x1000000, 0x1000}) ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002) r0 = memfd_secret(0x0) write$snapshot(r0, &(0x7f0000000080)="e00029ead8d2896e3bf7eeab65dea02472eb8193f20f3e13db4edfeb9a20beaf1f49a2c4606f382c180ce1406e1e9e6d395c56376d999d5bf751e2bdc36e56b833218eb435a790e3382d514a2b1e81d208a01d867940ce0c985dd865cbe01ede58fe9dba080adf331ff04272c6bfc14812145286f70a0f1fa210f72712ac861307fb2974d820c7a869f46f8c052a9a458063b358d936c82db21d58335b1de1c3ba09769ee258541f429834da8f1eb639ee9ed32e6741", 0xb6) ioctl$SNAPSHOT_S2RAM(r0, 0x330b) ioctl$SNAPSHOT_UNFREEZE(r0, 0x3302) r1 = fsmount(r0, 0x0, 0x88) ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r1, 0x3312, 0x0) r2 = syz_open_dev$rtc(&(0x7f0000000140), 0x9, 0x6180) ioctl$RTC_AIE_OFF(r2, 0x7002) ioctl$SNAPSHOT_UNFREEZE(r1, 0x3302) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000180)='/dev/rtc#\x00', 0x0, r2) ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', 0x0}) sendmsg$BATADV_CMD_TP_METER_CANCEL(r2, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x5dfdb46c4a5eca0c}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x5c, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x8}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x723}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r3}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xaa6}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x401}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xffffffff}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24044005}, 0x40) ioctl$SNAPSHOT_ATOMIC_RESTORE(0xffffffffffffffff, 0x3304) read$snapshot(r1, &(0x7f0000000340)=""/112, 0x70) 00:40:18 executing program 1: sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x8, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x4000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x11}, 0x20000000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r0) sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x30, r1, 0x10, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x2}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @remote}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x50000}, 0x10) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x34, r1, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x40010) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000480), r0) sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r2, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}]}, 0x1c}}, 0x40014) sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000008c0)={&(0x7f00000005c0)={0x2dc, 0x0, 0x300, 0x70bd2a, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}, {0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSCATLST={0x16c, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x51c0d8d9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x38ef268f}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7dfe754f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce4c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5932}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x11da5134}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x769cd6e8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f03}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xf10acbc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3c0d}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6f7884a0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x67441905}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x71e0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x71143a32}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x51167a33}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e53fcb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbf73}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3940e93b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6e467bfe}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x37e72f85}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1ff05ce4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x773c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x37406e53}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x775466ab}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x216c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc6a7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfb35}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x86a1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x21956ca}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7898}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x455e6587}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x58130ca5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b374117}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5fd34acb}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x45b0c0db}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f05}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6cf7}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x339cac47}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x358ef63}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0xc0, 0xc, 0x0, 0x1, [{0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x90fd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6147}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x796}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2388528e}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7d060f81}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbd0e}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x454d7c7c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x51f04cc1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x79ba3b5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6a34}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9bc0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x64ad5cfb}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x23b66cb0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x91fc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x502}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe46a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4e3cd842}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x615c5fae}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd508}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x77337dcf}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2fc1da5e}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x50, 0xc, 0x0, 0x1, [{0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x30d26545}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7eef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcd9d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd4fb}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x797d9a8b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8d9f}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x150e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5f9b}]}]}]}, 0x2dc}, 0x1, 0x0, 0x0, 0x20048440}, 0xd0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000980)={'batadv_slave_1\x00', 0x0}) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x2c, r1, 0x2, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r3}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x80000001}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) r4 = syz_open_dev$usbmon(&(0x7f0000000a80), 0x7f, 0x1a1000) read$usbmon(r4, &(0x7f0000000ac0)=""/90, 0x5a) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000b40)={'batadv_slave_0\x00'}) clock_gettime(0x0, &(0x7f0000000c40)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000b80)={0x0, 0x8, 0x69, 0x5, 0x4, 0x6, 0x7, 0x5}, &(0x7f0000000bc0)={0x100000000, 0x9aa9, 0x0, 0x1, 0x4, 0x7fffffff, 0x6, 0x101}, &(0x7f0000000c00)={0x6, 0x0, 0x8, 0x8, 0x1, 0x8, 0x1, 0x7f}, &(0x7f0000000c80)={r5, r6+60000000}, &(0x7f0000000d00)={&(0x7f0000000cc0)={[0x401]}, 0x8}) r7 = memfd_secret(0x0) ioctl$MON_IOCQ_RING_SIZE(r7, 0x9205) read$usbmon(r4, &(0x7f0000000d40)=""/99, 0x63) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000f00)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x8400200}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e00)={0xb8, 0x0, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_PAUSE_TX={0x5}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}, @ETHTOOL_A_PAUSE_HEADER={0x4}]}, 0xb8}, 0x1, 0x0, 0x0, 0x24040001}, 0x0) 00:40:18 executing program 2: r0 = memfd_secret(0x80000) r1 = syz_open_dev$usbmon(&(0x7f0000000000), 0x5, 0x400000) mmap$usbmon(&(0x7f0000ff1000/0xc000)=nil, 0xc000, 0x1000008, 0x40010, r1, 0xead) r2 = syz_open_dev$usbmon(&(0x7f0000000040), 0x3, 0x101) read$usbmon(r2, &(0x7f0000000080)=""/66, 0x42) getpid() r3 = syz_open_dev$usbmon(&(0x7f0000000100), 0x7, 0x200) ioctl$MON_IOCX_MFETCH(r3, 0xc0109207, &(0x7f0000000180)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], 0x4}) io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0) r4 = fsmount(r0, 0x1, 0x74) ioctl$MON_IOCG_STATS(r4, 0x80089203, &(0x7f00000001c0)) ioctl$MON_IOCG_STATS(r4, 0x80089203, &(0x7f0000000200)) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x4, 0x1) r6 = fsmount(r4, 0x1, 0xfa) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[r5, r6, r1, r2]}, 0x4) r7 = syz_io_uring_setup(0x6950, &(0x7f0000000300)={0x0, 0xa21a, 0x10, 0x0, 0x16d, 0x0, r4}, &(0x7f0000ff3000/0x3000)=nil, &(0x7f0000ff3000/0x4000)=nil, &(0x7f0000000380), &(0x7f00000003c0)) syz_io_uring_setup(0x2368, &(0x7f0000000400)={0x0, 0x340a, 0x2, 0x0, 0x2f2, 0x0, r7}, &(0x7f0000ff1000/0x1000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000000480), &(0x7f00000004c0)) ioctl$MON_IOCG_STATS(r1, 0x80089203, &(0x7f0000000500)) ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205) getegid() 00:40:18 executing program 4: waitid$P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000000), 0x20000000, &(0x7f0000000080)) r0 = memfd_secret(0x80000) waitid$P_PIDFD(0x3, r0, &(0x7f0000000140), 0x4, &(0x7f00000001c0)) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) add_key$fscrypt_provisioning(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x1}, &(0x7f0000000300)={0x2, 0x0, @auto=[0x21, 0x33, 0x3e, 0x31, 0x36, 0x21]}, 0xe, 0xfffffffffffffffd) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340), 0x488000) io_uring_enter(r0, 0xf1d, 0xda37, 0x3, &(0x7f0000000380)={[0x5]}, 0x8) socketpair(0x1a, 0x6, 0x9, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, 0x0, 0x4, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x1000}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8010}, 0x0) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x3c, 0x0, 0x20, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x180}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xb312}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x200}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x20004000) keyctl$restrict_keyring(0x1d, 0xfffffffffffffffc, &(0x7f0000000600)='id_resolver\x00', &(0x7f0000000640)='/dev/snd/timer\x00') r3 = socket$inet6(0xa, 0x2, 0x3) getsockopt$sock_timeval(r3, 0x1, 0x15, &(0x7f0000000680), &(0x7f00000006c0)=0x10) getrusage(0xffffffffffffffff, &(0x7f0000000700)) sendmsg$BATADV_CMD_GET_VLAN(r2, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x50, 0x0, 0x0, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x3f}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0) getrusage(0xffffffffffffffff, &(0x7f0000000900)) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000a00)={'batadv_slave_1\x00', 0x0}) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000b00)={&(0x7f00000009c0), 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x5c, 0x0, 0x4, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xfffffd20}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xb2aa}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x6}, @BATADV_ATTR_VLANID={0x6}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000b40), 0x2, 0x0) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x34, 0x0, 0x0, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x401}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x4}, @BATADV_ATTR_MULTICAST_FANOUT={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0xc4}, 0x8004) [ 89.433218] audit: type=1400 audit(1737592818.481:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 00:40:18 executing program 5: r0 = memfd_secret(0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x10000000) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2004010, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@afid={'afid', 0x3d, 0x11}}, {@afid={'afid', 0x3d, 0x5}}, {@cache_none}, {@cachetag={'cachetag', 0x3d, '*}(^,/$'}}, {@mmap}, {@noextend}], [{@smackfsfloor}, {@pcr={'pcr', 0x3d, 0x34}}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@dont_hash}, {@permit_directio}, {@appraise}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@pcr={'pcr', 0x3d, 0x27}}, {@pcr={'pcr', 0x3d, 0xa}}]}}) io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x4c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x31}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x43}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x4000002) socketpair(0x22, 0x800, 0x1ff, &(0x7f0000000340)={0xffffffffffffffff}) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), r0) sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000400)={0x180, r3, 0x300, 0x70bd26, 0x25dfdbff, {}, [@HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}]}, @HEADER={0x4}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}]}, 0x180}, 0x1, 0x0, 0x0, 0x810}, 0x4000) getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000600)=0x8e6, &(0x7f0000000640)=0x2) r4 = fsmount(r0, 0x0, 0x7c) mount_setattr(0xffffffffffffff9c, &(0x7f0000000680)='./file0\x00', 0x8100, &(0x7f00000006c0)={0x10007a, 0x71, 0x180000, {r4}}, 0x20) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f00000007c0)={'ip_vti0\x00', &(0x7f0000000740)={'ip_vti0\x00', 0x0, 0x7800, 0x1, 0xf9, 0x8e66, {{0xb, 0x4, 0x0, 0x9, 0x2c, 0x64, 0x0, 0x4, 0x2f, 0x0, @multicast2, @loopback, {[@noop, @ra={0x94, 0x4}, @lsrr={0x83, 0x13, 0xc5, [@local, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x37}, @dev={0xac, 0x14, 0x14, 0x12}]}]}}}}}) sendmsg$ETHTOOL_MSG_WOL_GET(r4, &(0x7f0000000980)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000940)={&(0x7f0000000800)={0x108, r3, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}]}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x48850}, 0x80) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000000a80)={'erspan0\x00', &(0x7f0000000a00)={'syztnl2\x00', r5, 0x700, 0x8000, 0x10001, 0xffffff01, {{0x9, 0x4, 0x1, 0x3, 0x24, 0x67, 0x0, 0x3, 0xfbb86e83dc9daae1, 0x0, @multicast1, @multicast1, {[@rr={0x7, 0xb, 0x7f, [@multicast1, @remote]}, @noop, @noop, @noop, @noop]}}}}}) sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x2c, 0x0, 0x10, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x101000}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r6}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x4000) ioctl$PTP_PIN_GETFUNC2(r4, 0xc0603d0f, &(0x7f0000000b80)={'\x00', 0xffffff01, 0x3}) r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000c40), r4) sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000d40)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x44, r7, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x90bb}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x3f}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r5}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x801) setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000d80), 0x2) 00:40:18 executing program 6: ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0x126c92) r0 = fsmount(0xffffffffffffffff, 0x1, 0x1) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, r1) keyctl$instantiate_iov(0x14, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000000)="e975f3298d4ea3b40bc5ab7302c9079c4e7329e03eac8469964a0fd81627ebfc2f3f13929d183dfffd30924edc7ccd4e22766aa846085be1488ee07f5d823380eb0920d0fae22c34d10818ca03f63620c77a2816d15b890315a783421eb31295ae7a157e9a6ecd5907855a4740868cea5d6ebe094f43d793a61308c5a779eb9d68d3c9a2332daef57abe4a30862eb1ce49f11122589fe493a296a54df794b90439ceb244037143dfb588b2ebbfdd302e2f", 0xb1}, {&(0x7f00000000c0)="59a8a61d045b17dcd7f4d2b1165b85a6cae80a731192362d04ae8633ad65181132625c54d814a486f5ca47bbe925d89eff26a87564f9c7f7884886533272cedd357e4081c506ec0fed8d1f942ef288a806296c6297e581877b1cbc4c89259e50c00cd0702883d84b009b4d7345a9537e", 0x70}, {&(0x7f0000000140)="fe7c45273469fa627032b484cba9bf050db5d1ca05e67868b3fedd7b5d8fc96c1ae4ba5ae21dccb1edf33df8aa455ce91ce96588b904cd356a441818799f6f8efaf96f7d6528630dc3ad1b063ccf41ddf9f95e2d54b63e9d9379ce88a3a3d555df6b564eab7a909ff9f9b03063cd3a10043b6f81ee663698881a6d18e9cb4c9444c61f6bbd5ed88f575d9879a122c393cb7a897ca98017e5edcb598d5a6389dd5b0e1ab9bbf76cf811e2c025652f3be7b32214a41fd70ce0f828ba0470e404a26023599076a90c734b", 0xc9}, {&(0x7f0000000240)="985b14dc818ba764a66657905e628feb053be989a540e1939814ed14993ba4e4c44d575608e29080d25d9cbbc103d38ecf3c0a1cdcceadb34fff86cd361f9f542bd3b8810edaf0f0c7f527ac13db29c20795957783a02b90f93a4cdc43e954bb6df64fc3f3b977b907cfe07d9b63e76786f8e810f5e195d98a830c6a84de6ef8562523d925440948948d145f3d02c0ada3550d40da298bad09d1848dbf0ae376ceacfeb79d6e4bd6ab2eae118b0219802b46fa6ee20c543984e49d5760034283e9445450a9eb49628a70716e3dd17317140ff01c9b50d5d1bc300d01425c8962dc9d3b1c836f17df6035", 0xea}, {&(0x7f0000000340)="e5ab635992dd3161726d452a4d89da29ea3add5c0fc89844f6c8a7880a6210ac19b2cdee0a9ff4920a3d9223839686c000c6ff45aee2068e0057bd6a8ce79f2af5c04aafac57cb689b19be8581e4d068261ce5c132995ef5f17233a91a4741b6", 0x60}], 0x5, 0x0) ioctl$MON_IOCG_STATS(r0, 0x80089203, &(0x7f0000000440)) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000000480)={'\x00', 0x6, 0x1, 0x54}) r2 = add_key$fscrypt_v1(&(0x7f0000000600), &(0x7f0000000640)={'fscrypt:', @desc1}, &(0x7f0000000680)={0x0, "69af8aed7e341b58d8b0e756ede916fa7e2a88facea17b10e42c06b1f31b88dabec25af1d4db0310160e3193a3e16dd1f35bab61e512f4970223a8a8a40d5e64", 0x23}, 0x48, 0xfffffffffffffffe) add_key$fscrypt_v1(&(0x7f0000000500), &(0x7f0000000540)={'fscrypt:', @desc3}, &(0x7f0000000580)={0x0, "372892c9583878bae0d926d17faf2e31ecaa64ef22556a6c3db18ef08492f2868b57635b1bf6acf49193823a378b9d8641059818199c57c82df377e09b04c9fb", 0x20}, 0x48, r2) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000d00)={0x11c, 0x0, &(0x7f0000000b80)=[@acquire={0x40046305, 0x1}, @transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000900)={@ptr={0x70742a85, 0x1, &(0x7f0000000700)=""/220, 0xdc, 0x1, 0x2c}, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, &(0x7f0000000800)=""/220, 0xdc, 0x0, 0x2d}}, &(0x7f0000000980)={0x0, 0x28, 0x40}}}, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000a00)={@fda={0x66646185, 0x0, 0x0, 0x2e}, @fda={0x66646185, 0x7, 0x0, 0x10}, @ptr={0x70742a85, 0x1, &(0x7f00000009c0)=""/11, 0xb, 0x2, 0x29}}, &(0x7f0000000a80)={0x0, 0x20, 0x40}}, 0x40}, @clear_death={0x400c630f, 0x3}, @register_looper, @free_buffer, @register_looper, @acquire_done={0x40106309, 0x2}, @transaction_sg={0x40486311, {0x3, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000ac0)={@fda={0x66646185, 0x2, 0x1, 0x35}, @flat=@handle={0x73682a85, 0x1000}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000b40)={0x0, 0x20, 0x38}}, 0xc00}], 0x0, 0x0, &(0x7f0000000cc0)}) r3 = fsmount(r0, 0x1, 0x1) setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000d40)=0x60, 0x2) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000000d80)={'\x00', 0xf0, 0x1, 0x1}) ioctl$MON_IOCT_RING_SIZE(r3, 0x9204, 0x880cc) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000e40), r3) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r3, &(0x7f0000000f00)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x2c, r4, 0x0, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x84}, 0x20044000) keyctl$read(0xb, r2, &(0x7f0000000f40)=""/76, 0x4c) r5 = memfd_secret(0x80000) getsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0x7, &(0x7f0000000fc0)=0x1, &(0x7f0000001000)=0x4) syz_genetlink_get_family_id$batadv(&(0x7f0000001040), r3) 00:40:18 executing program 7: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r0, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x6}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xff}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x40080}, 0x4018881) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, r1, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xfffffffb}]}, 0x24}, 0x1, 0x0, 0x0, 0x20001}, 0x44001) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000002c0)={{{@in6=@mcast2, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@local}}, &(0x7f00000003c0)=0xe8) sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xcc, 0x0, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x1}, 0x40) r3 = socket(0x7a6e9ed80659ee00, 0x3, 0x101) sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x6db24c96ee3d1bd6}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x5c, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x5bb}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1ca}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x3ff}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000050}, 0x4048000) r4 = memfd_secret(0x80000) sendmsg$BATADV_CMD_SET_HARDIF(r4, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x34, r0, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r2}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x3f}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x8708}]}, 0x34}, 0x1, 0x0, 0x0, 0x40040}, 0x4000) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000800), r4) sendmsg$BATADV_CMD_TP_METER_CANCEL(r5, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x2c, r6, 0x800, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$BATADV_CMD_GET_DAT_CACHE(r3, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x24, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x20044001}, 0x800) sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a40)={0xb8, 0x0, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x38, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1b7b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5972}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66f4aeb8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5934}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6e7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x815d}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x6c, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x28051cb1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2818dbee}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcc21}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2556}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7a73}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8f3e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe35c}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbbad}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7290bf03}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1e06aff6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x62ff}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x29896963}]}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x400c4}, 0x4000000) io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x6, &(0x7f0000000bc0)={0xff, 0x0, &(0x7f0000000b80)=[r4]}, 0x1) getsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f0000000c00)=0xfff, &(0x7f0000000c40)=0x2) getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, &(0x7f0000000c80)=0xfc, &(0x7f0000000cc0)=0x4) r7 = memfd_secret(0x80000) sendmsg$BATADV_CMD_GET_MESH(r7, &(0x7f0000000dc0)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x1c, r1, 0x4, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x1c}}, 0x840) [ 90.955489] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 90.958197] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 90.961241] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 90.966469] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 90.969719] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 90.971926] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.137867] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 91.142789] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 91.143427] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 91.147709] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 91.152125] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 91.156320] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 91.163716] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 91.165354] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 91.166134] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.197498] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.203737] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 91.207531] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.208407] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.219443] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.238601] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.265739] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.267232] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 91.268909] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 91.269715] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.271519] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 91.289534] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 91.290707] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 91.293992] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 91.294687] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 91.302963] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 91.318778] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 91.324468] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 91.324809] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 91.329352] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 91.345677] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 91.352920] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 91.358987] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 91.360133] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 91.363444] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 91.363938] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 91.365436] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 91.368804] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 91.369720] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 91.378422] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 91.386418] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 91.391369] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 91.394444] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 93.034534] Bluetooth: hci0: command tx timeout [ 93.226176] Bluetooth: hci1: command tx timeout [ 93.291223] Bluetooth: hci2: command tx timeout [ 93.354114] Bluetooth: hci3: command tx timeout [ 93.418183] Bluetooth: hci4: command tx timeout [ 93.418667] Bluetooth: hci5: command tx timeout [ 93.484086] Bluetooth: hci7: command tx timeout [ 93.484139] Bluetooth: hci6: command tx timeout [ 95.082843] Bluetooth: hci0: command tx timeout [ 95.275370] Bluetooth: hci1: command tx timeout [ 95.339247] Bluetooth: hci2: command tx timeout [ 95.403123] Bluetooth: hci3: command tx timeout [ 95.466306] Bluetooth: hci5: command tx timeout [ 95.468162] Bluetooth: hci4: command tx timeout [ 95.531122] Bluetooth: hci7: command tx timeout [ 95.531285] Bluetooth: hci6: command tx timeout [ 97.130238] Bluetooth: hci0: command tx timeout [ 97.322119] Bluetooth: hci1: command tx timeout [ 97.386179] Bluetooth: hci2: command tx timeout [ 97.450090] Bluetooth: hci3: command tx timeout [ 97.514188] Bluetooth: hci4: command tx timeout [ 97.514270] Bluetooth: hci5: command tx timeout [ 97.578081] Bluetooth: hci6: command tx timeout [ 97.579123] Bluetooth: hci7: command tx timeout [ 99.178246] Bluetooth: hci0: command tx timeout [ 99.370450] Bluetooth: hci1: command tx timeout [ 99.435075] Bluetooth: hci2: command tx timeout [ 99.499164] Bluetooth: hci3: command tx timeout [ 99.562920] Bluetooth: hci5: command tx timeout [ 99.563717] Bluetooth: hci4: command tx timeout [ 99.627182] Bluetooth: hci7: command tx timeout [ 99.627254] Bluetooth: hci6: command tx timeout [ 149.593963] modprobe (3267) used greatest stack depth: 23280 bytes left [ 153.143136] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 153.145970] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 153.150266] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 153.161683] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 153.167313] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 153.169460] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 153.273683] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 153.276509] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 153.279376] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 153.283205] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 153.287243] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 153.290221] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 153.330530] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 153.333957] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 153.338787] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 153.347903] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 153.351144] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 153.353166] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 153.401728] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 153.404460] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 153.408513] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 153.408700] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 153.412252] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 153.422645] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 153.425359] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 153.426166] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 153.426541] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 153.432309] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 153.439497] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 153.447356] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 153.575306] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 153.577475] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 153.579161] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 153.579543] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 153.581627] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 153.584285] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 153.590182] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 153.590903] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 153.596107] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 153.622645] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 153.626379] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 153.626906] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 153.627541] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 153.630919] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 153.637510] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 153.648971] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 153.673660] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 153.677552] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 155.243184] Bluetooth: hci0: command tx timeout [ 155.370150] Bluetooth: hci2: command tx timeout [ 155.370458] Bluetooth: hci1: command tx timeout [ 155.498427] Bluetooth: hci3: command tx timeout [ 155.498784] Bluetooth: hci4: command tx timeout [ 155.690151] Bluetooth: hci5: command tx timeout [ 155.690205] Bluetooth: hci7: command tx timeout [ 155.819142] Bluetooth: hci6: command tx timeout [ 157.290152] Bluetooth: hci0: command tx timeout [ 157.418438] Bluetooth: hci1: command tx timeout [ 157.418460] Bluetooth: hci2: command tx timeout [ 157.546179] Bluetooth: hci4: command tx timeout [ 157.546215] Bluetooth: hci3: command tx timeout [ 157.738135] Bluetooth: hci5: command tx timeout [ 157.738162] Bluetooth: hci7: command tx timeout [ 157.866068] Bluetooth: hci6: command tx timeout [ 159.338581] Bluetooth: hci0: command tx timeout [ 159.466247] Bluetooth: hci2: command tx timeout [ 159.466340] Bluetooth: hci1: command tx timeout [ 159.594107] Bluetooth: hci3: command tx timeout [ 159.594213] Bluetooth: hci4: command tx timeout [ 159.786559] Bluetooth: hci7: command tx timeout [ 159.786578] Bluetooth: hci5: command tx timeout [ 159.914115] Bluetooth: hci6: command tx timeout [ 161.386161] Bluetooth: hci0: command tx timeout [ 161.514157] Bluetooth: hci1: command tx timeout [ 161.515234] Bluetooth: hci2: command tx timeout [ 161.644059] Bluetooth: hci4: command tx timeout [ 161.644104] Bluetooth: hci3: command tx timeout [ 161.835072] Bluetooth: hci5: command tx timeout [ 161.835200] Bluetooth: hci7: command tx timeout [ 161.963059] Bluetooth: hci6: command tx timeout [ 211.775222] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 211.775336] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 212.383885] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 212.384105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 213.827777] [ 213.828042] ====================================================== [ 213.828618] WARNING: possible circular locking dependency detected [ 213.829199] 6.13.0-next-20250122 #1 Not tainted [ 213.829680] ------------------------------------------------------ [ 213.830734] kworker/u8:0/11 is trying to acquire lock: [ 213.832074] ffffffff8621ece8 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.834397] [ 213.834397] but task is already holding lock: [ 213.836231] ffff8880263a8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 213.838488] [ 213.838488] which lock already depends on the new lock. [ 213.838488] [ 213.839642] [ 213.839642] the existing dependency chain (in reverse order) is: [ 213.840341] [ 213.840341] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 213.840990] __mutex_lock+0x13d/0xb50 [ 213.841444] wiphy_register+0x1b2e/0x25d0 [ 213.841939] ieee80211_register_hw+0x23a4/0x3d60 [ 213.842467] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 213.843025] init_mac80211_hwsim+0x389/0x870 [ 213.843532] do_one_initcall+0xf9/0x640 [ 213.844008] kernel_init_freeable+0x53d/0x7a0 [ 213.844530] kernel_init+0x1e/0x2d0 [ 213.844951] ret_from_fork+0x48/0x80 [ 213.845392] ret_from_fork_asm+0x1a/0x30 [ 213.845884] [ 213.845884] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 213.846499] __lock_acquire+0x29fd/0x4580 [ 213.846970] lock_acquire+0x19b/0x520 [ 213.847412] __mutex_lock+0x13d/0xb50 [ 213.847868] unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.848484] unregister_netdevice_queue+0x224/0x2e0 [ 213.849035] _cfg80211_unregister_wdev+0x57b/0x700 [ 213.849590] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 213.850150] ieee80211_unregister_hw+0x55/0x3a0 [ 213.850688] hwsim_exit_net+0x3a0/0x730 [ 213.851154] ops_exit_list+0xb3/0x180 [ 213.851596] cleanup_net+0x546/0xad0 [ 213.852037] process_one_work+0x8ee/0x1a10 [ 213.852538] worker_thread+0x674/0xe70 [ 213.853007] kthread+0x3ab/0x720 [ 213.853428] ret_from_fork+0x48/0x80 [ 213.853872] ret_from_fork_asm+0x1a/0x30 [ 213.854355] [ 213.854355] other info that might help us debug this: [ 213.854355] [ 213.855102] Possible unsafe locking scenario: [ 213.855102] [ 213.855664] CPU0 CPU1 [ 213.856111] ---- ---- [ 213.856556] lock(&rdev->wiphy.mtx); [ 213.856956] lock(rtnl_mutex); [ 213.857531] lock(&rdev->wiphy.mtx); [ 213.858166] lock(rtnl_mutex); [ 213.858522] [ 213.858522] *** DEADLOCK *** [ 213.858522] [ 213.859096] 4 locks held by kworker/u8:0/11: [ 213.859533] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 213.860548] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 213.861530] #2: ffffffff86212d10 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 213.862451] #3: ffff8880263a8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 213.863469] [ 213.863469] stack backtrace: [ 213.863903] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-next-20250122 #1 [ 213.864668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 213.865456] Workqueue: netns cleanup_net [ 213.865894] Call Trace: [ 213.866148] [ 213.866376] dump_stack_lvl+0xca/0x120 [ 213.866792] print_circular_bug+0x47b/0x750 [ 213.867230] check_noncircular+0x2e9/0x3c0 [ 213.867654] ? lock_repin_lock+0x207/0x320 [ 213.868103] ? __pfx_check_noncircular+0x10/0x10 [ 213.868573] ? hlock_class+0x4e/0x130 [ 213.868954] ? mark_lock+0xac/0xed0 [ 213.869327] ? __pfx_lock_repin_lock+0x10/0x10 [ 213.869810] ? lockdep_lock+0xba/0x1b0 [ 213.870226] ? __pfx_lockdep_lock+0x10/0x10 [ 213.870679] __lock_acquire+0x29fd/0x4580 [ 213.871109] ? __pfx___lock_acquire+0x10/0x10 [ 213.871558] ? lock_release+0x20f/0x6f0 [ 213.871966] ? __pfx_lock_release+0x10/0x10 [ 213.872407] lock_acquire+0x19b/0x520 [ 213.872802] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.873378] ? __pfx_lock_acquire+0x10/0x10 [ 213.873826] ? srso_return_thunk+0x5/0x5f [ 213.874262] ? lock_release+0x20f/0x6f0 [ 213.874670] ? srso_return_thunk+0x5/0x5f [ 213.875112] ? lock_is_held_type+0x9e/0x120 [ 213.875563] ? srso_return_thunk+0x5/0x5f [ 213.876002] __mutex_lock+0x13d/0xb50 [ 213.876410] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.876990] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.877572] ? srso_return_thunk+0x5/0x5f [ 213.878013] ? synchronize_rcu_expedited+0x38a/0x420 [ 213.878519] ? __pfx___mutex_lock+0x10/0x10 [ 213.878967] ? __pfx_autoremove_wake_function+0x10/0x10 [ 213.879510] ? srso_return_thunk+0x5/0x5f [ 213.879945] ? kasan_quarantine_put+0x84/0x1e0 [ 213.880434] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 213.880889] ? srso_return_thunk+0x5/0x5f [ 213.881330] unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.881907] ? __virt_addr_valid+0x2e8/0x5d0 [ 213.882361] ? __pfx_lock_release+0x10/0x10 [ 213.882803] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 213.883395] ? find_held_lock+0x2c/0x110 [ 213.883823] ? srso_return_thunk+0x5/0x5f [ 213.884259] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 213.884769] ? srso_return_thunk+0x5/0x5f [ 213.885199] ? lock_release+0x20f/0x6f0 [ 213.885606] ? __pfx_lock_release+0x10/0x10 [ 213.886060] ? srso_return_thunk+0x5/0x5f [ 213.886492] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 213.887012] ? srso_return_thunk+0x5/0x5f [ 213.887453] unregister_netdevice_queue+0x224/0x2e0 [ 213.887950] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 213.888491] ? up_write+0x195/0x520 [ 213.888878] _cfg80211_unregister_wdev+0x57b/0x700 [ 213.889377] ? srso_return_thunk+0x5/0x5f [ 213.889827] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 213.890330] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 213.890860] ? srso_return_thunk+0x5/0x5f [ 213.891295] ? srso_return_thunk+0x5/0x5f [ 213.891722] ? synchronize_rcu+0x1ff/0x260 [ 213.892142] ieee80211_unregister_hw+0x55/0x3a0 [ 213.892605] hwsim_exit_net+0x3a0/0x730 [ 213.893007] ? __pfx_hwsim_exit_net+0x10/0x10 [ 213.893455] ? srso_return_thunk+0x5/0x5f [ 213.893889] ? netdev_run_todo+0x788/0x1040 [ 213.894333] ? srso_return_thunk+0x5/0x5f [ 213.894768] ? __pfx_hwsim_exit_net+0x10/0x10 [ 213.895225] ops_exit_list+0xb3/0x180 [ 213.895622] cleanup_net+0x546/0xad0 [ 213.896014] ? __pfx_cleanup_net+0x10/0x10 [ 213.896450] process_one_work+0x8ee/0x1a10 [ 213.896899] ? __pfx_lock_acquire+0x10/0x10 [ 213.897336] ? __pfx_process_one_work+0x10/0x10 [ 213.897836] ? srso_return_thunk+0x5/0x5f [ 213.898274] ? move_linked_works+0x172/0x270 [ 213.898731] ? srso_return_thunk+0x5/0x5f [ 213.899165] ? assign_work+0x196/0x240 [ 213.899575] worker_thread+0x674/0xe70 [ 213.899999] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 213.900527] ? __pfx_worker_thread+0x10/0x10 [ 213.900988] kthread+0x3ab/0x720 [ 213.901353] ? __pfx_kthread+0x10/0x10 [ 213.901765] ? srso_return_thunk+0x5/0x5f [ 213.902199] ? finish_task_switch.isra.0+0x206/0x840 [ 213.902706] ? __pfx_kthread+0x10/0x10 [ 213.903109] ret_from_fork+0x48/0x80 [ 213.903472] ? __pfx_kthread+0x10/0x10 [ 213.903875] ret_from_fork_asm+0x1a/0x30 [ 213.904314] [ 215.295757] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 215.297937] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 215.299522] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 215.303065] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 215.306835] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 215.308266] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 215.347587] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 215.349319] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 215.352342] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 215.356915] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 215.359598] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 215.362682] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 215.488124] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 215.501303] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 215.503261] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 215.511888] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 215.519308] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 215.529604] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 215.542100] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 215.556625] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 215.558462] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 215.570265] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 215.571899] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 215.574182] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 215.656576] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 215.670315] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 215.688837] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 215.691910] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 215.697505] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 215.698747] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 215.736441] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 215.737196] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 215.737758] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 215.739711] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 215.740929] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 215.741516] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 215.750797] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 215.755247] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 215.757670] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 215.764668] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 215.768237] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 215.768811] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 215.844359] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 215.867334] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 215.878321] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 215.924756] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 215.928328] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 215.931628] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 217.386258] Bluetooth: hci1: command tx timeout [ 217.386337] Bluetooth: hci0: command tx timeout [ 217.578097] Bluetooth: hci2: command tx timeout [ 217.642165] Bluetooth: hci3: command tx timeout [ 217.770215] Bluetooth: hci5: command tx timeout [ 217.770455] Bluetooth: hci4: command tx timeout [ 217.834165] Bluetooth: hci6: command tx timeout [ 218.026065] Bluetooth: hci7: command tx timeout [ 219.435443] Bluetooth: hci0: command tx timeout [ 219.435929] Bluetooth: hci1: command tx timeout [ 219.627077] Bluetooth: hci2: command tx timeout [ 219.690264] Bluetooth: hci3: command tx timeout [ 219.818245] Bluetooth: hci5: command tx timeout [ 219.818389] Bluetooth: hci4: command tx timeout [ 219.883176] Bluetooth: hci6: command tx timeout [ 220.074185] Bluetooth: hci7: command tx timeout [ 221.482112] Bluetooth: hci0: command tx timeout [ 221.482244] Bluetooth: hci1: command tx timeout [ 221.674087] Bluetooth: hci2: command tx timeout [ 221.738090] Bluetooth: hci3: command tx timeout [ 221.867402] Bluetooth: hci5: command tx timeout [ 221.867538] Bluetooth: hci4: command tx timeout [ 221.930242] Bluetooth: hci6: command tx timeout [ 222.124046] Bluetooth: hci7: command tx timeout [ 223.530282] Bluetooth: hci1: command tx timeout [ 223.530395] Bluetooth: hci0: command tx timeout [ 223.722076] Bluetooth: hci2: command tx timeout [ 223.786199] Bluetooth: hci3: command tx timeout VM DIAGNOSIS: 00:42:23 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=ffff88800f10b400 RCX=ffffffff81429a4a RDX=1ffff11001e21680 RSI=0000000000000008 RDI=ffff88800f10b400 RBP=0000000000200000 RSP=ffff88800f5afdb8 R8 =0000000000000000 R9 =ffffed1001e21680 R10=ffff88800f10b407 R11=ffff88800a47a078 R12=ffffffff878c4ff9 R13=ffff888008c504a0 R14=ffff88800a479bc0 R15=0000000000000086 RIP=ffffffff81429a5f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb8cc5e9690 CR3=000000000c64c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=b3d56b91b0ed9bbc07433adc7d659000 XMM02=00000000000fc0785d82995fcda31112 XMM03=000000000012fd10ee7587d5db12e8e3 XMM04=d31fa7c818e55a3c00000000000ae988 XMM05=3cc027b654ebc5060000000000141778 XMM06=9f165a4fe6c971ad0000000000138a00 XMM07=711fbe8126c5d34400000000001388f8 XMM08=ee7587d5db12e8e300000000000fc0d0 XMM09=00000000000000000000000000000000 XMM10=00000000000000000020000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff8283e7d0 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff8880095debc0 R8 =0000000000000001 R9 =ffffed10012bbd67 R10=0000000000000001 R11=6f6c206863696877 R12=ffffffff886990b0 R13=ffff8880095deeb8 R14=ffffffff88699320 R15=0000000000000000 RIP=ffffffff8283e825 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe6100000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055cb8d413490 CR3=000000000ea88000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=000000c0000a9a20000000c0000a6390 XMM04=000000c0000a64b0000000c0000a6480 XMM05=000000c0000a6510000000c0000a64e0 XMM06=000000c00005a540000000c0000a6540 XMM07=000000c0000ac840000000c0000a6570 XMM08=000000c0000a6720000000c0000a66f0 XMM09=000000c00005a570000000c00005a210 XMM10=000000c0000a6780000000c0000a6750 XMM11=000000c0000a67e0000000c0000a67b0 XMM12=000000c0000a6840000000c0000a6810 XMM13=000000c0000a68a0000000c0000a6870 XMM14=000000c0000a6900000000c0000a68d0 XMM15=000000c0000ae2c0000000c00005a5a0