syzkaller login: [ 56.744083] sshd (236) used greatest stack depth: 24192 bytes left [ 59.478677] sshd (237) used greatest stack depth: 22960 bytes left Warning: Permanently added '[localhost]:56476' (ECDSA) to the list of known hosts. 2024/10/16 23:41:24 fuzzer started 2024/10/16 23:41:25 dialing manager at localhost:46303 [ 61.770473] cgroup: Unknown subsys name 'net' [ 61.870247] cgroup: Unknown subsys name 'cpuset' [ 61.897654] cgroup: Unknown subsys name 'rlimit' 2024/10/16 23:41:42 syscalls: 2217 2024/10/16 23:41:42 code coverage: enabled 2024/10/16 23:41:42 comparison tracing: enabled 2024/10/16 23:41:42 extra coverage: enabled 2024/10/16 23:41:42 setuid sandbox: enabled 2024/10/16 23:41:42 namespace sandbox: enabled 2024/10/16 23:41:42 Android sandbox: enabled 2024/10/16 23:41:42 fault injection: enabled 2024/10/16 23:41:42 leak checking: enabled 2024/10/16 23:41:42 net packet injection: enabled 2024/10/16 23:41:42 net device setup: enabled 2024/10/16 23:41:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/10/16 23:41:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/10/16 23:41:42 USB emulation: enabled 2024/10/16 23:41:42 hci packet injection: enabled 2024/10/16 23:41:42 wifi device emulation: enabled 2024/10/16 23:41:42 802.15.4 emulation: enabled 2024/10/16 23:41:42 fetching corpus: 0, signal 0/2000 (executing program) 2024/10/16 23:41:42 fetching corpus: 44, signal 25950/28983 (executing program) 2024/10/16 23:41:43 fetching corpus: 94, signal 38817/42662 (executing program) 2024/10/16 23:41:43 fetching corpus: 144, signal 47675/52169 (executing program) 2024/10/16 23:41:43 fetching corpus: 194, signal 53975/59011 (executing program) 2024/10/16 23:41:43 fetching corpus: 244, signal 58210/63819 (executing program) 2024/10/16 23:41:43 fetching corpus: 294, signal 61433/67574 (executing program) 2024/10/16 23:41:43 fetching corpus: 343, signal 66752/72976 (executing program) 2024/10/16 23:41:44 fetching corpus: 393, signal 69542/76079 (executing program) 2024/10/16 23:41:44 fetching corpus: 443, signal 72756/79479 (executing program) 2024/10/16 23:41:44 fetching corpus: 493, signal 76421/83089 (executing program) 2024/10/16 23:41:44 fetching corpus: 543, signal 78628/85403 (executing program) 2024/10/16 23:41:44 fetching corpus: 592, signal 81618/88284 (executing program) 2024/10/16 23:41:44 fetching corpus: 642, signal 83413/90140 (executing program) 2024/10/16 23:41:45 fetching corpus: 692, signal 86247/92684 (executing program) 2024/10/16 23:41:45 fetching corpus: 742, signal 88442/94653 (executing program) 2024/10/16 23:41:45 fetching corpus: 792, signal 90248/96374 (executing program) 2024/10/16 23:41:45 fetching corpus: 842, signal 91539/97635 (executing program) 2024/10/16 23:41:45 fetching corpus: 891, signal 93412/99220 (executing program) 2024/10/16 23:41:45 fetching corpus: 941, signal 94469/100194 (executing program) 2024/10/16 23:41:45 fetching corpus: 991, signal 95829/101326 (executing program) 2024/10/16 23:41:46 fetching corpus: 1041, signal 97728/102751 (executing program) 2024/10/16 23:41:46 fetching corpus: 1091, signal 98943/103683 (executing program) 2024/10/16 23:41:46 fetching corpus: 1141, signal 100713/104886 (executing program) 2024/10/16 23:41:46 fetching corpus: 1190, signal 102077/105784 (executing program) 2024/10/16 23:41:46 fetching corpus: 1240, signal 102830/106313 (executing program) 2024/10/16 23:41:46 fetching corpus: 1290, signal 103725/106903 (executing program) 2024/10/16 23:41:47 fetching corpus: 1340, signal 107420/108857 (executing program) 2024/10/16 23:41:47 fetching corpus: 1390, signal 108767/109576 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109716 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109740 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109760 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109779 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109804 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109837 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109863 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109889 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109911 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109941 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109970 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/109995 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110023 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110049 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110073 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110096 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110113 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110130 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110154 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110180 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110210 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110239 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110257 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110287 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110310 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110333 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110338 (executing program) 2024/10/16 23:41:47 fetching corpus: 1408, signal 108990/110338 (executing program) 2024/10/16 23:41:51 starting 8 fuzzer processes 23:41:51 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/keys\x00', 0x0, 0x0) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) r2 = fcntl$dupfd(r1, 0x0, r0) getdents(r2, 0x0, 0x0) 23:41:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0x1267, &(0x7f0000000000)) 23:41:51 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f00000011c0)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x24000010) 23:41:51 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000006bc0)=0xffffffff, 0x4) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 87.537564] audit: type=1400 audit(1729122111.579:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 23:41:51 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000280)={0x13, 0x43, 0x1, 0x0, 0x0, "", [@nested={0xc, 0x0, 0x0, 0x1, [@typed={0x5, 0x0, 0x0, 0x0, @binary='\x00'}]}]}, 0x1c}], 0x1}, 0x0) 23:41:51 executing program 5: r0 = fsopen(&(0x7f0000000140)='devtmpfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='{*\x00', &(0x7f0000000040)='/&$,\x00', 0x0) 23:41:51 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x0) 23:41:51 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) gettid() capget(0x0, &(0x7f0000000340)) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, &(0x7f0000000240)={'L+'}, 0x16, 0x0) perf_event_open(0x0, 0x0, 0x8, 0xffffffffffffffff, 0x0) [ 88.913931] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 88.918433] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 88.921544] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 88.927071] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 88.931614] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 88.933690] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 89.042889] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 89.047904] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 89.048675] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 89.049913] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 89.050836] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 89.053611] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 89.060903] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 89.063550] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 89.070168] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 89.071149] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 89.074285] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 89.078144] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 89.104665] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 89.106832] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 89.113611] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 89.114825] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 89.116537] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 89.117844] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 89.121815] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 89.124792] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 89.126693] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 89.127717] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 89.147439] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 89.148885] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 89.237674] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 89.244514] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 89.246042] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 89.289484] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 89.303680] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 89.310297] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 89.311199] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 89.317301] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 89.318352] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 89.324553] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 89.337689] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 89.347433] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 89.369459] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 89.370640] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 89.379515] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 89.392919] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 89.410211] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 89.413330] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 91.013442] Bluetooth: hci0: command tx timeout [ 91.140062] Bluetooth: hci2: command tx timeout [ 91.140088] Bluetooth: hci1: command tx timeout [ 91.204173] Bluetooth: hci3: command tx timeout [ 91.205061] Bluetooth: hci4: command tx timeout [ 91.399033] Bluetooth: hci5: command tx timeout [ 91.460152] Bluetooth: hci7: command tx timeout [ 91.525069] Bluetooth: hci6: command tx timeout [ 93.060042] Bluetooth: hci0: command tx timeout [ 93.188038] Bluetooth: hci1: command tx timeout [ 93.189047] Bluetooth: hci2: command tx timeout [ 93.252228] Bluetooth: hci4: command tx timeout [ 93.252254] Bluetooth: hci3: command tx timeout [ 93.444160] Bluetooth: hci5: command tx timeout [ 93.509074] Bluetooth: hci7: command tx timeout [ 93.572101] Bluetooth: hci6: command tx timeout [ 95.109073] Bluetooth: hci0: command tx timeout [ 95.236098] Bluetooth: hci2: command tx timeout [ 95.236140] Bluetooth: hci1: command tx timeout [ 95.300184] Bluetooth: hci4: command tx timeout [ 95.303157] Bluetooth: hci3: command tx timeout [ 95.493381] Bluetooth: hci5: command tx timeout [ 95.559062] Bluetooth: hci7: command tx timeout [ 95.621113] Bluetooth: hci6: command tx timeout [ 97.158036] Bluetooth: hci0: command tx timeout [ 97.284035] Bluetooth: hci1: command tx timeout [ 97.287000] Bluetooth: hci2: command tx timeout [ 97.348132] Bluetooth: hci3: command tx timeout [ 97.348183] Bluetooth: hci4: command tx timeout [ 97.540050] Bluetooth: hci5: command tx timeout [ 97.604652] Bluetooth: hci7: command tx timeout [ 97.668046] Bluetooth: hci6: command tx timeout [ 151.400435] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 151.404375] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 151.407632] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 151.409221] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 151.409834] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 151.412390] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 151.425834] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 151.434773] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 151.441894] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 151.445470] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 151.448695] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 151.450639] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 151.488059] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 151.491902] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 151.495266] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 151.502837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 151.507257] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 151.507307] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 151.514761] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 151.519315] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 151.519533] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 151.521283] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 151.536753] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 151.538046] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 151.592131] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 151.594115] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 151.594872] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 151.598619] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 151.599720] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 151.600817] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 151.605859] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 151.619367] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 151.632718] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 151.633613] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 151.640707] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 151.643424] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 151.661581] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 151.664779] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 151.666254] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 151.677226] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 151.698293] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 151.700355] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 151.728037] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 151.765362] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 151.776560] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 151.797258] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 151.810566] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 151.826248] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 153.476204] Bluetooth: hci0: command tx timeout [ 153.541106] Bluetooth: hci1: command tx timeout [ 153.604215] Bluetooth: hci3: command tx timeout [ 153.604431] Bluetooth: hci2: command tx timeout [ 153.669036] Bluetooth: hci5: command tx timeout [ 153.732518] Bluetooth: hci6: command tx timeout [ 153.733634] Bluetooth: hci4: command tx timeout [ 153.860160] Bluetooth: hci7: command tx timeout [ 155.525203] Bluetooth: hci0: command tx timeout [ 155.589793] Bluetooth: hci1: command tx timeout [ 155.652068] Bluetooth: hci2: command tx timeout [ 155.653180] Bluetooth: hci3: command tx timeout [ 155.717229] Bluetooth: hci5: command tx timeout [ 155.782069] Bluetooth: hci6: command tx timeout [ 155.782653] Bluetooth: hci4: command tx timeout [ 155.908105] Bluetooth: hci7: command tx timeout [ 157.573031] Bluetooth: hci0: command tx timeout [ 157.637366] Bluetooth: hci1: command tx timeout [ 157.701389] Bluetooth: hci3: command tx timeout [ 157.701416] Bluetooth: hci2: command tx timeout [ 157.765075] Bluetooth: hci5: command tx timeout [ 157.829255] Bluetooth: hci4: command tx timeout [ 157.830748] Bluetooth: hci6: command tx timeout [ 157.957017] Bluetooth: hci7: command tx timeout [ 159.621977] Bluetooth: hci0: command tx timeout [ 159.684158] Bluetooth: hci1: command tx timeout [ 159.748034] Bluetooth: hci3: command tx timeout [ 159.749046] Bluetooth: hci2: command tx timeout [ 159.812011] Bluetooth: hci5: command tx timeout [ 159.876068] Bluetooth: hci4: command tx timeout [ 159.876443] Bluetooth: hci6: command tx timeout [ 160.004087] Bluetooth: hci7: command tx timeout [ 213.453010] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 213.458904] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 213.460308] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 213.465227] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 213.469701] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 213.472191] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 213.658238] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 213.668638] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 213.669989] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 213.671552] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 213.676753] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 213.679439] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 213.681630] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 213.687290] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 213.688603] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 213.691023] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 213.699253] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 213.700815] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 213.793549] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 213.809218] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 213.815292] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 213.822653] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 213.835228] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 213.842162] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 213.852745] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 213.875784] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 213.877356] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 213.926305] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 213.942382] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 213.942544] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 213.946303] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 213.987087] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 213.991461] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 213.999125] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 214.005096] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 214.007796] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 214.009772] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 214.015126] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 214.110197] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 214.112604] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 214.116083] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 214.116879] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 214.128381] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 214.157691] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 214.207856] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 214.257375] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 214.264498] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 214.280217] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 215.556042] Bluetooth: hci0: command tx timeout [ 215.748119] Bluetooth: hci2: command tx timeout [ 215.748167] Bluetooth: hci1: command tx timeout [ 215.876690] Bluetooth: hci3: command tx timeout [ 216.132173] Bluetooth: hci5: command tx timeout [ 216.196092] Bluetooth: hci6: command tx timeout [ 216.196206] Bluetooth: hci4: command tx timeout [ 216.388271] Bluetooth: hci7: command tx timeout [ 217.605193] Bluetooth: hci0: command tx timeout [ 217.796098] Bluetooth: hci1: command tx timeout [ 217.796482] Bluetooth: hci2: command tx timeout [ 217.924010] Bluetooth: hci3: command tx timeout [ 218.180106] Bluetooth: hci5: command tx timeout [ 218.244045] Bluetooth: hci6: command tx timeout [ 218.244246] Bluetooth: hci4: command tx timeout [ 218.437206] Bluetooth: hci7: command tx timeout [ 219.651982] Bluetooth: hci0: command tx timeout [ 219.845608] Bluetooth: hci2: command tx timeout [ 219.846331] Bluetooth: hci1: command tx timeout [ 219.972971] Bluetooth: hci3: command tx timeout [ 220.227988] Bluetooth: hci5: command tx timeout [ 220.292277] Bluetooth: hci6: command tx timeout [ 220.292648] Bluetooth: hci4: command tx timeout [ 220.485018] Bluetooth: hci7: command tx timeout [ 221.701176] Bluetooth: hci0: command tx timeout [ 221.892065] Bluetooth: hci1: command tx timeout [ 221.893081] Bluetooth: hci2: command tx timeout [ 222.021969] Bluetooth: hci3: command tx timeout [ 222.276008] Bluetooth: hci5: command tx timeout [ 222.339999] Bluetooth: hci6: command tx timeout [ 222.341870] Bluetooth: hci4: command tx timeout [ 222.533017] Bluetooth: hci7: command tx timeout [ 269.247614] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 269.248257] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 269.559997] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 269.560500] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 269.814513] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 269.815486] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.066052] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.066533] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.128360] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.128850] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.314027] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.314527] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.473302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.473771] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.608121] audit: type=1400 audit(1729122294.648:8): avc: denied { open } for pid=10636 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 270.609423] audit: type=1400 audit(1729122294.648:9): avc: denied { kernel } for pid=10636 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 270.686336] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.686882] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 23:44:54 executing program 2: ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000000)={0x3, 0x400}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000001180)='numa_maps\x00') preadv(r1, &(0x7f0000001140)=[{&(0x7f00000011c0)=""/4090, 0xffa}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x6, 0xf9, 0x1f, 0x6, 0x0, 0x1000, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000040), 0x5}, 0x400, 0x4, 0x0, 0x9, 0x6, 0x0, 0x7ff0, 0x0, 0x8, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xa) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x400080, 0xdb) [ 270.831401] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 270.831955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.865672] hrtimer: interrupt took 27301 ns [ 271.180975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.181500] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.316147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.316675] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 23:44:58 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000006bc0)=0xffffffff, 0x4) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) 23:44:58 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000006bc0)=0xffffffff, 0x4) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) 23:44:58 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000006bc0)=0xffffffff, 0x4) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) 23:44:59 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000006bc0)=0xffffffff, 0x4) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) 23:45:00 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000006bc0)=0xffffffff, 0x4) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) 23:45:00 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000006bc0)=0xffffffff, 0x4) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 278.276392] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 278.279269] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 278.280863] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 278.284727] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 278.287420] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 278.289050] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 278.300483] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 278.302640] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 278.304321] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 278.310423] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 278.316607] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 278.321477] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 278.807955] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 278.813496] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 278.816679] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 278.824556] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 278.830336] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 278.836343] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 278.925694] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 279.013289] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 279.030608] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 279.048082] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 279.086179] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 279.096217] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 23:45:03 executing program 3: mknod(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) link(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='./file0\x00') unlink(&(0x7f00000001c0)='./file1\x00') [ 279.616644] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 279.627161] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 279.712032] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 279.717139] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 279.721612] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 279.722544] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 280.324390] Bluetooth: hci0: command tx timeout [ 280.388036] Bluetooth: hci1: command tx timeout [ 280.903025] Bluetooth: hci3: command tx timeout [ 281.156037] Bluetooth: hci2: command tx timeout [ 281.796310] Bluetooth: hci4: command tx timeout [ 282.335807] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 282.342380] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 282.364283] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 282.372092] Bluetooth: hci0: command tx timeout [ 282.375156] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 282.381234] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 282.386875] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 282.436025] Bluetooth: hci1: command tx timeout [ 282.947991] Bluetooth: hci3: command tx timeout [ 283.205985] Bluetooth: hci2: command tx timeout [ 283.843982] Bluetooth: hci4: command tx timeout [ 284.421942] Bluetooth: hci0: command tx timeout [ 284.484015] Bluetooth: hci1: command tx timeout [ 284.484420] Bluetooth: hci5: command tx timeout [ 284.996003] Bluetooth: hci3: command tx timeout [ 285.252094] Bluetooth: hci2: command tx timeout [ 285.893203] Bluetooth: hci4: command tx timeout [ 286.468087] Bluetooth: hci0: command tx timeout [ 286.533181] Bluetooth: hci5: command tx timeout [ 286.533536] Bluetooth: hci1: command tx timeout [ 287.045082] Bluetooth: hci3: command tx timeout [ 287.300977] Bluetooth: hci2: command tx timeout [ 287.941007] Bluetooth: hci4: command tx timeout [ 288.579955] Bluetooth: hci5: command tx timeout [ 290.628165] Bluetooth: hci5: command tx timeout [ 320.192441] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 320.192982] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 320.432346] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 320.432829] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.295094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.295595] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.471276] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.472194] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.847756] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.848825] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.041850] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.042994] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.160469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.161147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.279280] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.280245] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.381640] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.382377] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.481627] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.482770] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.571984] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.572486] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.710645] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.711390] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 23:45:47 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/keys\x00', 0x0, 0x0) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) r2 = fcntl$dupfd(r1, 0x0, r0) getdents(r2, 0x0, 0x0) 23:45:47 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000280)={0x13, 0x43, 0x1, 0x0, 0x0, "", [@nested={0xc, 0x0, 0x0, 0x1, [@typed={0x5, 0x0, 0x0, 0x0, @binary='\x00'}]}]}, 0x1c}], 0x1}, 0x0) 23:45:47 executing program 2: ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000000)={0x3, 0x400}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000001180)='numa_maps\x00') preadv(r1, &(0x7f0000001140)=[{&(0x7f00000011c0)=""/4090, 0xffa}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x6, 0xf9, 0x1f, 0x6, 0x0, 0x1000, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000040), 0x5}, 0x400, 0x4, 0x0, 0x9, 0x6, 0x0, 0x7ff0, 0x0, 0x8, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xa) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x400080, 0xdb) 23:45:47 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) gettid() capget(0x0, &(0x7f0000000340)) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, &(0x7f0000000240)={'L+'}, 0x16, 0x0) perf_event_open(0x0, 0x0, 0x8, 0xffffffffffffffff, 0x0) 23:45:47 executing program 6: mknod(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) link(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='./file0\x00') unlink(&(0x7f00000001c0)='./file1\x00') 23:45:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0x1267, &(0x7f0000000000)) 23:45:47 executing program 3: mknod(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) link(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='./file0\x00') unlink(&(0x7f00000001c0)='./file1\x00') 23:45:47 executing program 5: r0 = fsopen(&(0x7f0000000140)='devtmpfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='{*\x00', &(0x7f0000000040)='/&$,\x00', 0x0) 23:45:47 executing program 5: r0 = fsopen(&(0x7f0000000140)='devtmpfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='{*\x00', &(0x7f0000000040)='/&$,\x00', 0x0) 23:45:47 executing program 5: r0 = fsopen(&(0x7f0000000140)='devtmpfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='{*\x00', &(0x7f0000000040)='/&$,\x00', 0x0) 23:45:47 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/keys\x00', 0x0, 0x0) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) r2 = fcntl$dupfd(r1, 0x0, r0) getdents(r2, 0x0, 0x0) 23:45:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0x1267, &(0x7f0000000000)) 23:45:48 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) gettid() capget(0x0, &(0x7f0000000340)) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, &(0x7f0000000240)={'L+'}, 0x16, 0x0) perf_event_open(0x0, 0x0, 0x8, 0xffffffffffffffff, 0x0) 23:45:48 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000280)={0x13, 0x43, 0x1, 0x0, 0x0, "", [@nested={0xc, 0x0, 0x0, 0x1, [@typed={0x5, 0x0, 0x0, 0x0, @binary='\x00'}]}]}, 0x1c}], 0x1}, 0x0) 23:45:48 executing program 2: ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000000)={0x3, 0x400}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000001180)='numa_maps\x00') preadv(r1, &(0x7f0000001140)=[{&(0x7f00000011c0)=""/4090, 0xffa}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x6, 0xf9, 0x1f, 0x6, 0x0, 0x1000, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000040), 0x5}, 0x400, 0x4, 0x0, 0x9, 0x6, 0x0, 0x7ff0, 0x0, 0x8, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xa) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x400080, 0xdb) 23:45:48 executing program 3: mknod(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) link(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='./file0\x00') unlink(&(0x7f00000001c0)='./file1\x00') 23:45:48 executing program 6: mknod(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) link(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='./file0\x00') unlink(&(0x7f00000001c0)='./file1\x00') 23:45:48 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0x80108906, 0x0) 23:45:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0x1267, &(0x7f0000000000)) 23:45:48 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/keys\x00', 0x0, 0x0) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) r2 = fcntl$dupfd(r1, 0x0, r0) getdents(r2, 0x0, 0x0) [ 324.960289] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list 23:45:49 executing program 3: mknod(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) link(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='./file0\x00') unlink(&(0x7f00000001c0)='./file1\x00') 23:45:49 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000280)={0x13, 0x43, 0x1, 0x0, 0x0, "", [@nested={0xc, 0x0, 0x0, 0x1, [@typed={0x5, 0x0, 0x0, 0x0, @binary='\x00'}]}]}, 0x1c}], 0x1}, 0x0) 23:45:49 executing program 6: mknod(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) link(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='./file0\x00') unlink(&(0x7f00000001c0)='./file1\x00') 23:45:49 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0x80108906, 0x0) 23:45:49 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xa7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1010, 0x0) 23:45:49 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) gettid() capget(0x0, &(0x7f0000000340)) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, &(0x7f0000000240)={'L+'}, 0x16, 0x0) perf_event_open(0x0, 0x0, 0x8, 0xffffffffffffffff, 0x0) 23:45:49 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000140), 0x4) 23:45:49 executing program 3: keyctl$search(0x14, 0x0, &(0x7f00000000c0)='ceph\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0) 23:45:49 executing program 2: ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000000)={0x3, 0x400}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000001180)='numa_maps\x00') preadv(r1, &(0x7f0000001140)=[{&(0x7f00000011c0)=""/4090, 0xffa}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x6, 0xf9, 0x1f, 0x6, 0x0, 0x1000, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000040), 0x5}, 0x400, 0x4, 0x0, 0x9, 0x6, 0x0, 0x7ff0, 0x0, 0x8, 0x0, 0x1}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xa) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x400080, 0xdb) 23:45:49 executing program 0: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000040), &(0x7f0000000080)='system_u:object_r:initctl_t:s0\x00', 0x1f, 0x0) 23:45:49 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xa7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1010, 0x0) 23:45:49 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0x80108906, 0x0) 23:45:49 executing program 3: keyctl$search(0x14, 0x0, &(0x7f00000000c0)='ceph\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0) 23:45:49 executing program 7: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) recvmmsg(r0, &(0x7f00000060c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2001, 0x0) 23:45:50 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) fchdir(r0) ioctl$TIOCPKT(0xffffffffffffffff, 0x80045439, &(0x7f0000000000)) lseek(r1, 0x9, 0x0) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x0, 0x300) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r2) ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000040)={0x7, 0x8, 0xb, 0xffffff00, 0x8, "d4a89354cdc0e1d1ad0964940f221679708fb7", 0x9, 0x9}) 23:45:50 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000140), 0x4) 23:45:50 executing program 7: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) recvmmsg(r0, &(0x7f00000060c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2001, 0x0) 23:45:50 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000004b80)={0x1, {{0x2, 0x0, @multicast1}}}, 0x108) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000004b80)={0x1, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @private}}}, 0x108) 23:45:51 executing program 3: keyctl$search(0x14, 0x0, &(0x7f00000000c0)='ceph\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0) 23:45:51 executing program 7: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) recvmmsg(r0, &(0x7f00000060c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2001, 0x0) 23:45:51 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0x80108906, 0x0) 23:45:51 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xa7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1010, 0x0) 23:45:51 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000004b80)={0x1, {{0x2, 0x0, @multicast1}}}, 0x108) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000004b80)={0x1, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @private}}}, 0x108) 23:45:51 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000140), 0x4) 23:45:51 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) fchdir(r0) ioctl$TIOCPKT(0xffffffffffffffff, 0x80045439, &(0x7f0000000000)) lseek(r1, 0x9, 0x0) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x0, 0x300) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r2) ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000040)={0x7, 0x8, 0xb, 0xffffff00, 0x8, "d4a89354cdc0e1d1ad0964940f221679708fb7", 0x9, 0x9}) 23:45:51 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) write$binfmt_aout(r0, &(0x7f0000000140), 0x20) ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000040)) 23:45:51 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xa7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1010, 0x0) 23:45:51 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{0x1}, 'port1\x00'}) 23:45:51 executing program 7: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) recvmmsg(r0, &(0x7f00000060c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2001, 0x0) 23:45:51 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000140), 0x4) 23:45:51 executing program 3: keyctl$search(0x14, 0x0, &(0x7f00000000c0)='ceph\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0) 23:45:51 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) write$binfmt_aout(r0, &(0x7f0000000140), 0x20) ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000040)) 23:45:51 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000004b80)={0x1, {{0x2, 0x0, @multicast1}}}, 0x108) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000004b80)={0x1, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @private}}}, 0x108) 23:45:51 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) fchdir(r0) ioctl$TIOCPKT(0xffffffffffffffff, 0x80045439, &(0x7f0000000000)) lseek(r1, 0x9, 0x0) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x0, 0x300) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r2) ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000040)={0x7, 0x8, 0xb, 0xffffff00, 0x8, "d4a89354cdc0e1d1ad0964940f221679708fb7", 0x9, 0x9}) 23:45:52 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) fchdir(r0) ioctl$TIOCPKT(0xffffffffffffffff, 0x80045439, &(0x7f0000000000)) lseek(r1, 0x9, 0x0) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x0, 0x300) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r2) ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000040)={0x7, 0x8, 0xb, 0xffffff00, 0x8, "d4a89354cdc0e1d1ad0964940f221679708fb7", 0x9, 0x9}) 23:45:52 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{0x1}, 'port1\x00'}) 23:45:52 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) write$binfmt_aout(r0, &(0x7f0000000140), 0x20) ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000040)) 23:45:52 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000004b80)={0x1, {{0x2, 0x0, @multicast1}}}, 0x108) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000004b80)={0x1, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @private}}}, 0x108) 23:45:52 executing program 4: io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x5f2f65f73469c56c, 0x0, 0x0) 23:45:52 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f00000002c0)={0x2, {0x2, 0x0, 0xfffe}}) 23:45:52 executing program 1: r0 = timerfd_create(0x0, 0x0) clock_gettime(0x4, &(0x7f0000000140)={0x0, 0x0}) timerfd_settime(r0, 0x1, &(0x7f00000000c0)={{0x0, r1+10000000}, {0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x3938700}}, 0x0) 23:45:52 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) eventfd2(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0) syz_open_procfs(0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001180)='stat\x00') preadv(r0, &(0x7f0000000040)=[{&(0x7f00000011c0)=""/4078, 0xfee}], 0x1, 0x3, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 23:45:52 executing program 4: io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x5f2f65f73469c56c, 0x0, 0x0) 23:45:52 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) write$binfmt_aout(r0, &(0x7f0000000140), 0x20) ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000040)) 23:45:52 executing program 1: r0 = timerfd_create(0x0, 0x0) clock_gettime(0x4, &(0x7f0000000140)={0x0, 0x0}) timerfd_settime(r0, 0x1, &(0x7f00000000c0)={{0x0, r1+10000000}, {0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x3938700}}, 0x0) 23:45:52 executing program 2: r0 = timerfd_create(0x0, 0x0) clock_gettime(0x4, &(0x7f0000000140)={0x0, 0x0}) timerfd_settime(r0, 0x1, &(0x7f00000000c0)={{0x0, r1+10000000}, {0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x3938700}}, 0x0) 23:45:52 executing program 0: syz_emit_ethernet(0x6e, &(0x7f0000000500)={@random="e59d5193649e", @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "2ddc20", 0x38, 0x3a, 0x0, @dev, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "e860f2", 0x0, 0x3a, 0x0, @remote, @remote, [], "3f6d3aab4ecc6e29"}}}}}}}, 0x0) 23:45:52 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{0x1}, 'port1\x00'}) 23:45:52 executing program 4: io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x5f2f65f73469c56c, 0x0, 0x0) 23:45:52 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f00000002c0)={0x2, {0x2, 0x0, 0xfffe}}) 23:45:52 executing program 1: r0 = timerfd_create(0x0, 0x0) clock_gettime(0x4, &(0x7f0000000140)={0x0, 0x0}) timerfd_settime(r0, 0x1, &(0x7f00000000c0)={{0x0, r1+10000000}, {0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x3938700}}, 0x0) 23:45:52 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{0x1}, 'port1\x00'}) 23:45:52 executing program 4: io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x5f2f65f73469c56c, 0x0, 0x0) 23:45:52 executing program 2: r0 = timerfd_create(0x0, 0x0) clock_gettime(0x4, &(0x7f0000000140)={0x0, 0x0}) timerfd_settime(r0, 0x1, &(0x7f00000000c0)={{0x0, r1+10000000}, {0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x3938700}}, 0x0) 23:45:52 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) eventfd2(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0) syz_open_procfs(0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001180)='stat\x00') preadv(r0, &(0x7f0000000040)=[{&(0x7f00000011c0)=""/4078, 0xfee}], 0x1, 0x3, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 23:45:52 executing program 0: syz_emit_ethernet(0x6e, &(0x7f0000000500)={@random="e59d5193649e", @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "2ddc20", 0x38, 0x3a, 0x0, @dev, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "e860f2", 0x0, 0x3a, 0x0, @remote, @remote, [], "3f6d3aab4ecc6e29"}}}}}}}, 0x0) 23:45:52 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f00000002c0)={0x2, {0x2, 0x0, 0xfffe}}) 23:45:52 executing program 6: r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @random="2037f1375c88"}, 0x14) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) 23:45:52 executing program 0: syz_emit_ethernet(0x6e, &(0x7f0000000500)={@random="e59d5193649e", @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "2ddc20", 0x38, 0x3a, 0x0, @dev, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "e860f2", 0x0, 0x3a, 0x0, @remote, @remote, [], "3f6d3aab4ecc6e29"}}}}}}}, 0x0) 23:45:53 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000400)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000002c0)="4f1b784106afe247dd9a76cf1c66da1b9d19f3311ef23a16c0ea1a0f8cd569ec88", 0x0, 0x0, 0x0, 0x0, 0x0}) 23:45:53 executing program 2: r0 = timerfd_create(0x0, 0x0) clock_gettime(0x4, &(0x7f0000000140)={0x0, 0x0}) timerfd_settime(r0, 0x1, &(0x7f00000000c0)={{0x0, r1+10000000}, {0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x3938700}}, 0x0) 23:45:53 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000400)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000002c0)="4f1b784106afe247dd9a76cf1c66da1b9d19f3311ef23a16c0ea1a0f8cd569ec88", 0x0, 0x0, 0x0, 0x0, 0x0}) 23:45:53 executing program 1: r0 = timerfd_create(0x0, 0x0) clock_gettime(0x4, &(0x7f0000000140)={0x0, 0x0}) timerfd_settime(r0, 0x1, &(0x7f00000000c0)={{0x0, r1+10000000}, {0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000280)={{0x77359400}, {0x0, 0x3938700}}, 0x0) 23:45:53 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20}, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000200)='\x00') openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x426203, 0x82) r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x6) pwritev(r1, &(0x7f0000000600)=[{&(0x7f0000000040)="a5e36269111c4d44b7fe7d3ea4fbfc2478e400110232dbd151f81de183cd0ad0ac76467b0c4102ad53f5c3d1d22a8bf7ab", 0x31}, {&(0x7f0000000300)="9fe3e98556f916c20bf131ff155d17ea912c0428ab76ec5b53a112885d368c6607e791e306ad4ed0a2bdb27e6c6053e7c29d9a6a55f846faa25924a8248c21adcc8600487f273a432d59f35663019206f22c4f2d88505ec1e481e0d3d9454a24dd23fe228e3778e92a5f4c82df703fc1cad07862cd0bc480114e2ba2a75193bf570df1a9bfcc7f57ec45be0f922792e7b01dc3c5ecbd906dad05fe325a26b6a3cdbed93dbd72a6041fb48fe4381d4866fdb26e3f451de94de509ae5ae0b0b32eea4db611edf89fc8f8c747966a1d39df971520621b6ccfbb5d7a679ff4e47fd06558ec6cc1959bb96fb835f152e061864cd1459c740a520225", 0xf9}, {&(0x7f0000000240)="ce4a5f48275493bfa7102038f90c57b8c454b5cc7dab16bd7ad87bf7ad1bffd58c877628c78b6b752c4b65330171863f14a74d99966fafbf187e7ef224132daf9f8a5796bbec95ee02700d4584249ca89fc4611b8118b708", 0x58}, {&(0x7f0000000400)="2803753895291a826afda0f2a02d142905ea22af18bc63f28b20c4fe3bf5416c1b1bf023cf4031b980a87404c1a1ee8adf31378c2c125bc85dabbd849cd3a1a6639ce2b3b235", 0x46}, {&(0x7f0000000480)="bf02e918d3bcfe9a176ed4914d02e974", 0x10}, {&(0x7f00000004c0)="17c68df48ac59a1542c6537e5315cb7f7f3eab5f5120f8764e87ac9ccfd74bd09e2dcc0080a4f308353c97fb24b87c495eded08b8a9d664312278a27587813ea31e90f003a2143709600359e96075d934bae8feb13781e9d155faade48e3eae65362dc585ed006c1", 0x68}], 0x6, 0x0, 0x80) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000140), 0x0) 23:45:53 executing program 0: syz_emit_ethernet(0x6e, &(0x7f0000000500)={@random="e59d5193649e", @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "2ddc20", 0x38, 0x3a, 0x0, @dev, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "e860f2", 0x0, 0x3a, 0x0, @remote, @remote, [], "3f6d3aab4ecc6e29"}}}}}}}, 0x0) 23:45:53 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0) fchown(r0, 0x0, 0x0) [ 339.720842] Bluetooth: hci7: command 0x0406 tx timeout [ 339.721738] Bluetooth: hci6: command 0x0406 tx timeout [ 352.900408] watchdog: BUG: soft lockup - CPU#1 stuck for 22s! [syz-executor.5:13610] [ 352.900957] Modules linked in: [ 352.901183] irq event stamp: 3603309 [ 352.901417] hardirqs last enabled at (3603308): [] irqentry_exit+0x3b/0x90 [ 352.901979] hardirqs last disabled at (3603309): [] sysvec_apic_timer_interrupt+0xf/0x80 [ 352.902568] softirqs last enabled at (3565754): [] handle_softirqs+0x50c/0x770 [ 352.906959] softirqs last disabled at (3565757): [] irq_exit_rcu+0x94/0xc0 [ 352.907489] CPU: 1 UID: 0 PID: 13610 Comm: syz-executor.5 Not tainted 6.12.0-rc3-next-20241016 #1 [ 352.908030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 352.908516] RIP: 0010:unwind_next_frame+0x4a8/0x2490 [ 352.908858] Code: 00 fc ff df 48 8d 41 05 48 89 c6 48 c1 ee 03 0f b6 14 16 48 89 c6 83 e6 07 40 38 f2 7f 08 84 d2 0f 85 16 17 00 00 0f b6 51 05 <83> e2 07 0f 84 51 fe ff ff 80 fa 01 0f 84 70 fe ff ff 4c 8d 41 04 [ 352.909894] RSP: 0018:ffff88806cf08d48 EFLAGS: 00000246 [ 352.910239] RAX: ffffffff868322ef RBX: 0000000000000001 RCX: ffffffff868322ea [ 352.910680] RDX: 0000000000000002 RSI: 0000000000000007 RDI: ffffffff864beb0c [ 352.911113] RBP: ffff88806cf08e10 R08: ffffffff86832296 R09: ffff88806cf08df8 [ 352.911551] R10: 000000000003c001 R11: 0000000000023a71 R12: ffff88806cf08e18 [ 352.911980] R13: ffff88806cf08e00 R14: ffff88806cf08df9 R15: ffff88806cf08db8 [ 352.912412] FS: 00007f2b1fe9d700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 352.912895] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 352.913265] CR2: 00007f2b2297a408 CR3: 0000000039fb0000 CR4: 0000000000350ef0 [ 352.913699] Call Trace: [ 352.913873] [ 352.914032] ? watchdog_timer_fn+0x3ee/0x510 [ 352.914338] ? __pfx_watchdog_timer_fn+0x10/0x10 [ 352.914667] ? __hrtimer_run_queues+0x57c/0xa70 [ 352.915001] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 352.915327] ? ktime_get_update_offsets_now+0x260/0x3c0 [ 352.915710] ? hrtimer_interrupt+0x2f2/0x750 [ 352.916033] ? __sysvec_apic_timer_interrupt+0xc2/0x390 [ 352.916380] ? sysvec_apic_timer_interrupt+0x34/0x80 [ 352.916726] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 352.917111] ? unwind_next_frame+0x4a8/0x2490 [ 352.917413] ? unwind_next_frame+0x2b7/0x2490 [ 352.917717] ? __kasan_slab_alloc+0x49/0x70 [ 352.918004] ? __kasan_slab_alloc+0x49/0x70 [ 352.918283] ? srso_return_thunk+0x5/0x5f [ 352.918584] ? kernel_text_address+0x11/0xc0 [ 352.918889] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 352.919263] arch_stack_walk+0x87/0xf0 [ 352.919565] ? __kasan_slab_alloc+0x49/0x70 [ 352.919858] stack_trace_save+0x8f/0xc0 [ 352.920150] ? __pfx_stack_trace_save+0x10/0x10 [ 352.920479] ? srso_return_thunk+0x5/0x5f [ 352.920783] ? mark_lock+0xac/0x1370 [ 352.921066] ? srso_return_thunk+0x5/0x5f [ 352.921362] ? srso_return_thunk+0x5/0x5f [ 352.921662] ? ktime_get+0x171/0x270 [ 352.921937] kasan_save_stack+0x24/0x50 [ 352.922226] ? kasan_save_stack+0x24/0x50 [ 352.922523] ? kasan_save_track+0x14/0x30 [ 352.922824] ? __kasan_slab_alloc+0x59/0x70 [ 352.923112] ? kmem_cache_alloc_noprof+0x13d/0x3d0 [ 352.923450] ? __alloc_object+0x2f/0x270 [ 352.923720] ? __create_object+0x1d/0x80 [ 352.923992] ? __kmalloc_noprof+0x37e/0x4b0 [ 352.924288] ? ieee802_11_parse_elems_full+0xec/0x15a0 [ 352.924624] ? ieee80211_inform_bss+0xf7/0x10b0 [ 352.924929] ? cfg80211_inform_single_bss_data+0x7fe/0x1c50 [ 352.925307] ? cfg80211_inform_bss_data+0x20f/0x3510 [ 352.925654] ? cfg80211_inform_bss_frame_data+0x250/0x690 [ 352.926026] ? ieee80211_bss_info_update+0x2f6/0xa90 [ 352.926351] ? ieee80211_scan_rx+0x474/0xac0 [ 352.926645] ? ieee80211_rx_list+0x21ec/0x2cf0 [ 352.926943] ? ieee80211_rx_napi+0xdc/0x3b0 [ 352.927227] ? ieee80211_handle_queued_frames+0xd9/0x130 [ 352.927596] ? tasklet_action_common+0x235/0x3b0 [ 352.927907] ? handle_softirqs+0x1b1/0x770 [ 352.928184] ? irq_exit_rcu+0x94/0xc0 [ 352.928444] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 352.928788] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 352.929150] ? ___cache_free+0x54/0xf0 [ 352.929428] ? qlist_free_all+0x50/0x160 [ 352.929722] ? kasan_quarantine_reduce+0x19c/0x230 [ 352.930061] ? __kasan_slab_alloc+0x49/0x70 [ 352.930347] ? srso_return_thunk+0x5/0x5f [ 352.930646] ? mark_held_locks+0x9e/0xe0 [ 352.930944] ? srso_return_thunk+0x5/0x5f [ 352.931243] ? lockdep_hardirqs_on_prepare+0x12b/0x3f0 [ 352.931610] ? srso_return_thunk+0x5/0x5f [ 352.931931] ? memset_orig+0x75/0xb0 [ 352.932195] kasan_save_track+0x14/0x30 [ 352.932483] __kasan_slab_alloc+0x59/0x70 [ 352.932763] kmem_cache_alloc_noprof+0x13d/0x3d0 [ 352.933085] ? clockevents_program_event+0x14f/0x360 [ 352.933437] ? srso_return_thunk+0x5/0x5f [ 352.933737] ? lock_release+0x1e0/0x6f0 [ 352.934036] ? ieee802_11_parse_elems_full+0xec/0x15a0 [ 352.934371] __alloc_object+0x2f/0x270 [ 352.934637] __create_object+0x1d/0x80 [ 352.934907] ? ieee802_11_parse_elems_full+0xec/0x15a0 [ 352.935243] __kmalloc_noprof+0x37e/0x4b0 [ 352.935536] ? srso_return_thunk+0x5/0x5f [ 352.935838] ? ktime_get+0xd1/0x270 [ 352.936108] ? __pfx_mark_lock+0x10/0x10 [ 352.936404] ieee802_11_parse_elems_full+0xec/0x15a0 [ 352.936736] ? srso_return_thunk+0x5/0x5f [ 352.937044] ? srso_return_thunk+0x5/0x5f [ 352.937342] ? hrtimer_interrupt+0x589/0x750 [ 352.937660] ? srso_return_thunk+0x5/0x5f [ 352.937961] ? mark_held_locks+0x9e/0xe0 [ 352.938257] ? __pfx_ieee802_11_parse_elems_full+0x10/0x10 [ 352.938609] ? srso_return_thunk+0x5/0x5f [ 352.938909] ? lockdep_hardirqs_on_prepare+0x12b/0x3f0 [ 352.939267] ? srso_return_thunk+0x5/0x5f [ 352.939591] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 352.939947] ieee80211_inform_bss+0xf7/0x10b0 [ 352.940243] ? srso_return_thunk+0x5/0x5f [ 352.940555] ? __pfx_ieee80211_inform_bss+0x10/0x10 [ 352.940890] ? lock_acquire+0x32/0xc0 [ 352.941171] ? cfg80211_inform_single_bss_data+0x6c8/0x1c50 [ 352.941561] cfg80211_inform_single_bss_data+0x7fe/0x1c50 [ 352.941932] ? __pfx_ieee80211_inform_bss+0x10/0x10 [ 352.942264] ? srso_return_thunk+0x5/0x5f [ 352.942569] ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10 [ 352.943004] ? kcov_remote_stop+0x67/0x490 [ 352.943315] cfg80211_inform_bss_data+0x20f/0x3510 [ 352.943658] ? srso_return_thunk+0x5/0x5f [ 352.943959] ? hlock_class+0x4e/0x130 [ 352.944228] ? mark_lock+0xac/0x1370 [ 352.944513] ? __pfx_mark_lock+0x10/0x10 [ 352.944804] ? srso_return_thunk+0x5/0x5f [ 352.945101] ? hlock_class+0x4e/0x130 [ 352.945367] ? srso_return_thunk+0x5/0x5f [ 352.945664] ? __lock_acquire+0x176a/0x4360 [ 352.945983] ? __pfx_cfg80211_inform_bss_data+0x10/0x10 [ 352.946360] ? srso_return_thunk+0x5/0x5f [ 352.946659] ? hlock_class+0x4e/0x130 [ 352.946926] ? srso_return_thunk+0x5/0x5f [ 352.947224] ? __lock_acquire+0xcb8/0x4360 [ 352.947574] ? srso_return_thunk+0x5/0x5f [ 352.947872] ? find_held_lock+0x2c/0x110 [ 352.948154] ? ieee80211_bss_info_update+0x2b4/0xa90 [ 352.948479] ? srso_return_thunk+0x5/0x5f [ 352.948779] ? lock_release+0x20f/0x6f0 [ 352.949081] cfg80211_inform_bss_frame_data+0x250/0x690 [ 352.949456] ieee80211_bss_info_update+0x2f6/0xa90 [ 352.949783] ? __pfx_ieee80211_bss_info_update+0x10/0x10 [ 352.950152] ? srso_return_thunk+0x5/0x5f [ 352.950453] ? ieee80211_get_channel_khz+0x149/0x1d0 [ 352.950802] ieee80211_scan_rx+0x474/0xac0 [ 352.951084] ? ieee80211_clean_skb+0x18f/0x6f0 [ 352.951432] ieee80211_rx_list+0x21ec/0x2cf0 [ 352.951751] ? __pfx_ieee80211_rx_list+0x10/0x10 [ 352.952060] ? srso_return_thunk+0x5/0x5f [ 352.952360] ? lock_acquire.part.0+0xeb/0x320 [ 352.952681] ? ieee80211_rx_napi+0x97/0x3b0 [ 352.952992] ? srso_return_thunk+0x5/0x5f [ 352.953294] ? lock_acquire+0x32/0xc0 [ 352.953574] ? ieee80211_rx_napi+0x97/0x3b0 [ 352.953870] ieee80211_rx_napi+0xdc/0x3b0 [ 352.954151] ? __pfx_ieee80211_rx_napi+0x10/0x10 [ 352.954466] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 352.954819] ieee80211_handle_queued_frames+0xd9/0x130 [ 352.955185] tasklet_action_common+0x235/0x3b0 [ 352.955500] ? workqueue_softirq_action+0x1a/0x170 [ 352.955850] handle_softirqs+0x1b1/0x770 [ 352.956136] irq_exit_rcu+0x94/0xc0 [ 352.956387] sysvec_apic_timer_interrupt+0x70/0x80 [ 352.956729] [ 352.956884] [ 352.957042] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 352.957395] RIP: 0010:___cache_free+0x54/0xf0 [ 352.957711] Code: 03 48 01 d0 48 c1 e8 0c 48 c1 e0 06 48 03 05 3b e9 f8 03 48 8b 50 08 49 89 c2 f6 c2 01 0f 85 80 00 00 00 66 90 41 80 7a 33 f5 00 00 00 00 4c 0f 45 d0 65 48 8b 05 43 d1 7d 7e 48 03 07 48 8b [ 352.958729] RSP: 0018:ffff88803cee7b78 EFLAGS: 00000246 [ 352.959063] RAX: ffffea0000ad9e40 RBX: ffff88802b679180 RCX: ffffea0000ad9e40 [ 352.959492] RDX: ffff888008ffd3c0 RSI: ffff88802b679180 RDI: ffff888008ffd3c0 [ 352.959914] RBP: ffff88803cee7b80 R08: 0000000000000001 R09: ffffffff818b43cb [ 352.960338] R10: ffffea0000ad9e40 R11: 0000000000000000 R12: 0000000000000000 [ 352.960762] R13: ffff88803cee7bc8 R14: ffff88802b679180 R15: ffff88802b679180 [ 352.961197] ? qlist_free_all+0x4b/0x160 [ 352.961505] qlist_free_all+0x50/0x160 [ 352.961799] kasan_quarantine_reduce+0x19c/0x230 [ 352.962134] __kasan_slab_alloc+0x49/0x70 [ 352.962417] kmem_cache_alloc_noprof+0x13d/0x3d0 [ 352.962738] ? lock_release+0x20f/0x6f0 [ 352.963046] __alloc_object+0x2f/0x270 [ 352.963312] __create_object+0x1d/0x80 [ 352.963587] kmem_cache_alloc_noprof+0x300/0x3d0 [ 352.963928] alloc_empty_file+0x76/0x1e0 [ 352.964227] alloc_file_pseudo+0x139/0x200 [ 352.964533] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 352.964867] ? srso_return_thunk+0x5/0x5f [ 352.965175] ? srso_return_thunk+0x5/0x5f [ 352.965478] ? alloc_fd+0x2c0/0x560 [ 352.965746] sock_alloc_file+0x53/0x1d0 [ 352.966033] __sys_socket+0x1bc/0x260 [ 352.966315] ? __pfx___sys_socket+0x10/0x10 [ 352.966641] __x64_sys_socket+0x73/0xb0 [ 352.966935] do_syscall_64+0xbf/0x1d0 [ 352.967200] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.967555] RIP: 0033:0x7f2b22927b19 [ 352.967803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 352.968822] RSP: 002b:00007f2b1fe9d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 352.969283] RAX: ffffffffffffffda RBX: 00007f2b22a3af60 RCX: 00007f2b22927b19 [ 352.969703] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 352.970126] RBP: 00007f2b22981f6d R08: 0000000000000000 R09: 0000000000000000 [ 352.970547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.970964] R13: 00007ffca66d3fef R14: 00007f2b1fe9d300 R15: 0000000000022000 [ 352.971417] [ 352.971578] Sending NMI from CPU 1 to CPUs 0: [ 352.971884] NMI backtrace for cpu 0 [ 352.971932] CPU: 0 UID: 0 PID: 335 Comm: kworker/u9:6 Not tainted 6.12.0-rc3-next-20241016 #1 [ 352.972027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 352.972075] Workqueue: events_unbound cfg80211_wiphy_work [ 352.972158] RIP: 0010:arch_stack_walk+0x79/0xf0 [ 352.972296] Code: 00 00 4c 89 ea 4c 89 f6 48 8d bd 68 ff ff ff e8 cd 99 07 00 8b 95 68 ff ff ff 85 d2 75 24 eb 36 4c 89 e7 e8 49 51 77 03 84 c0 <74> 2a 48 8d bd 68 ff ff ff e8 09 75 07 00 8b 85 68 ff ff ff 85 c0 [ 352.972373] RSP: 0018:ffff88803909ec58 EFLAGS: 00000202 [ 352.972434] RAX: 0000000000000001 RBX: ffffffff813e8f70 RCX: 0000000000000001 [ 352.972488] RDX: 1ffff11007213dc0 RSI: ffffffff812056c4 RDI: ffff88803909ed2c [ 352.972544] RBP: ffff88803909ecf0 R08: 0000000000000001 R09: ffff88803909ec98 [ 352.972599] R10: 000000000003c001 R11: 0000000000009a2a R12: ffff88803909ed20 [ 352.972653] R13: 0000000000000000 R14: ffff88800eb68000 R15: ffffffff845e995c [ 352.972712] FS: 0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 352.972786] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 352.972845] CR2: 00007f5cb501cbe0 CR3: 000000000f476000 CR4: 0000000000350ef0 [ 352.972900] Call Trace: [ 352.972919] [ 352.972945] ? nmi_cpu_backtrace+0x179/0x260 [ 352.973065] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 352.973198] ? nmi_handle+0x1a1/0x550 [ 352.973328] ? arch_stack_walk+0x79/0xf0 [ 352.973456] ? arch_stack_walk+0x79/0xf0 [ 352.973583] ? default_do_nmi+0x64/0x1c0 [ 352.973687] ? exc_nmi+0x188/0x1c0 [ 352.973786] ? end_repeat_nmi+0xf/0x53 [ 352.973908] ? ieee802_11_parse_elems_full+0xec/0x15a0 [ 352.973998] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 352.974141] ? worker_thread+0x674/0xe70 [ 352.974242] ? arch_stack_walk+0x79/0xf0 [ 352.974372] ? arch_stack_walk+0x79/0xf0 [ 352.974505] ? arch_stack_walk+0x79/0xf0 [ 352.974635] [ 352.974658] [ 352.974696] ? worker_thread+0x674/0xe70 [ 352.974805] stack_trace_save+0x8f/0xc0 [ 352.974931] ? __pfx_stack_trace_save+0x10/0x10 [ 352.975063] ? srso_return_thunk+0x5/0x5f [ 352.975195] ? hlock_class+0x4e/0x130 [ 352.975295] ? srso_return_thunk+0x5/0x5f [ 352.975436] ? __lock_acquire+0x176a/0x4360 [ 352.975572] kasan_save_stack+0x24/0x50 [ 352.975699] ? kasan_save_stack+0x24/0x50 [ 352.975826] ? kasan_save_track+0x14/0x30 [ 352.975953] ? __kasan_kmalloc+0x7f/0x90 [ 352.976077] ? __kmalloc_noprof+0x1f7/0x4b0 [ 352.976185] ? ieee802_11_parse_elems_full+0xec/0x15a0 [ 352.976269] ? ieee80211_inform_bss+0xf7/0x10b0 [ 352.976351] ? cfg80211_inform_single_bss_data+0x7fe/0x1c50 [ 352.976483] ? cfg80211_inform_bss_data+0x20f/0x3510 [ 352.976610] ? cfg80211_inform_bss_frame_data+0x250/0x690 [ 352.976741] ? ieee80211_bss_info_update+0x2f6/0xa90 [ 352.976826] ? ieee80211_ibss_rx_queued_mgmt+0x18ba/0x2f90 [ 352.976913] ? ieee80211_iface_work+0xb5f/0xe40 [ 352.977000] ? cfg80211_wiphy_work+0x38d/0x610 [ 352.977079] ? process_one_work+0x8ee/0x1a00 [ 352.977180] ? worker_thread+0x674/0xe70 [ 352.977279] ? ret_from_fork_asm+0x1a/0x30 [ 352.977387] ? __pfx_mark_lock+0x10/0x10 [ 352.977523] ? srso_return_thunk+0x5/0x5f [ 352.977655] ? find_held_lock+0x2c/0x110 [ 352.977756] ? __create_object+0x59/0x80 [ 352.977834] ? srso_return_thunk+0x5/0x5f [ 352.977966] ? lock_release+0x20f/0x6f0 [ 352.978097] ? __pfx_lock_release+0x10/0x10 [ 352.978235] ? srso_return_thunk+0x5/0x5f [ 352.978367] ? mark_held_locks+0x9e/0xe0 [ 352.978492] ? lock_acquire+0x32/0xc0 [ 352.978624] ? srso_return_thunk+0x5/0x5f [ 352.978756] ? lockdep_hardirqs_on_prepare+0x12b/0x3f0 [ 352.978894] ? srso_return_thunk+0x5/0x5f [ 352.979025] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 352.979142] kasan_save_track+0x14/0x30 [ 352.979270] __kasan_kmalloc+0x7f/0x90 [ 352.979408] __kmalloc_noprof+0x1f7/0x4b0 [ 352.979531] ieee802_11_parse_elems_full+0xec/0x15a0 [ 352.979621] ? srso_return_thunk+0x5/0x5f [ 352.979757] ? hlock_class+0x4e/0x130 [ 352.979855] ? srso_return_thunk+0x5/0x5f [ 352.979987] ? mark_lock+0xac/0x1370 [ 352.980108] ? find_held_lock+0x2c/0x110 [ 352.980210] ? paint_ptr+0x36/0x80 [ 352.980288] ? __pfx_mark_lock+0x10/0x10 [ 352.980418] ? __pfx_lock_release+0x10/0x10 [ 352.980551] ? srso_return_thunk+0x5/0x5f [ 352.980686] ? __pfx_ieee802_11_parse_elems_full+0x10/0x10 [ 352.980774] ? cfg80211_update_known_bss+0x3c9/0x11e0 [ 352.980885] ? srso_return_thunk+0x5/0x5f [ 352.981016] ? lock_release+0x20f/0x6f0 [ 352.981148] ? __pfx_lock_release+0x10/0x10 [ 352.981286] ? srso_return_thunk+0x5/0x5f [ 352.981418] ? mark_held_locks+0x9e/0xe0 [ 352.981559] ieee80211_inform_bss+0xf7/0x10b0 [ 352.981640] ? srso_return_thunk+0x5/0x5f [ 352.981784] ? __pfx_ieee80211_inform_bss+0x10/0x10 [ 352.981883] ? lock_acquire+0x32/0xc0 [ 352.982009] ? cfg80211_inform_single_bss_data+0x6c8/0x1c50 [ 352.982154] cfg80211_inform_single_bss_data+0x7fe/0x1c50 [ 352.982289] ? __pfx_ieee80211_inform_bss+0x10/0x10 [ 352.982386] ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10 [ 352.982522] ? ret_from_fork_asm+0x1a/0x30 [ 352.982664] ? srso_return_thunk+0x5/0x5f [ 352.982799] ? stack_trace_save+0x8f/0xc0 [ 352.982928] ? srso_return_thunk+0x5/0x5f [ 352.983060] ? stack_depot_save_flags+0x2c/0x900 [ 352.983182] cfg80211_inform_bss_data+0x20f/0x3510 [ 352.983312] ? srso_return_thunk+0x5/0x5f [ 352.983452] ? hlock_class+0x4e/0x130 [ 352.983552] ? mark_lock+0xac/0x1370 [ 352.983675] ? __kmalloc_noprof+0x1f7/0x4b0 [ 352.983786] ? ieee802_11_parse_elems_full+0xec/0x15a0 [ 352.983872] ? ieee80211_iface_work+0xb5f/0xe40 [ 352.983962] ? __pfx_mark_lock+0x10/0x10 [ 352.984088] ? srso_return_thunk+0x5/0x5f [ 352.984219] ? hlock_class+0x4e/0x130 [ 352.984318] ? srso_return_thunk+0x5/0x5f [ 352.984450] ? mark_lock+0xac/0x1370 [ 352.984573] ? ret_from_fork_asm+0x1a/0x30 [ 352.984682] ? __pfx_cfg80211_inform_bss_data+0x10/0x10 [ 352.984818] ? srso_return_thunk+0x5/0x5f [ 352.984949] ? cfg80211_defragment_element+0x24e/0x300 [ 352.985064] ? srso_return_thunk+0x5/0x5f [ 352.985201] ? srso_return_thunk+0x5/0x5f [ 352.985333] ? hlock_class+0x4e/0x130 [ 352.985432] ? srso_return_thunk+0x5/0x5f [ 352.985563] ? __lock_acquire+0xcb8/0x4360 [ 352.985733] ? srso_return_thunk+0x5/0x5f [ 352.985874] ? srso_return_thunk+0x5/0x5f [ 352.986006] ? find_held_lock+0x2c/0x110 [ 352.986107] ? ieee80211_bss_info_update+0x2b4/0xa90 [ 352.986195] ? srso_return_thunk+0x5/0x5f [ 352.986326] ? lock_release+0x20f/0x6f0 [ 352.986466] cfg80211_inform_bss_frame_data+0x250/0x690 [ 352.986615] ieee80211_bss_info_update+0x2f6/0xa90 [ 352.986709] ? __pfx_ieee80211_bss_info_update+0x10/0x10 [ 352.986799] ? lock_release+0x1e1/0x6f0 [ 352.986938] ? ieee80211_sta_get_rates+0x476/0x5e0 [ 352.987063] ? srso_return_thunk+0x5/0x5f [ 352.987205] ieee80211_ibss_rx_queued_mgmt+0x18ba/0x2f90 [ 352.987317] ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10 [ 352.987419] ? srso_return_thunk+0x5/0x5f [ 352.987552] ? srso_return_thunk+0x5/0x5f [ 352.987684] ? find_held_lock+0x2c/0x110 [ 352.987785] ? kcov_remote_start+0x2bf/0x5b0 [ 352.987904] ? srso_return_thunk+0x5/0x5f [ 352.988035] ? lock_release+0x20f/0x6f0 [ 352.988178] ? srso_return_thunk+0x5/0x5f [ 352.988310] ? mark_held_locks+0x9e/0xe0 [ 352.988442] ? srso_return_thunk+0x5/0x5f [ 352.988573] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 352.988712] ? srso_return_thunk+0x5/0x5f [ 352.988855] ieee80211_iface_work+0xb5f/0xe40 [ 352.988948] ? remove_waiter+0xa90/0xf90 [ 352.989040] cfg80211_wiphy_work+0x38d/0x610 [ 352.989130] process_one_work+0x8ee/0x1a00 [ 352.989256] ? __pfx_process_one_work+0x10/0x10 [ 352.989359] ? srso_return_thunk+0x5/0x5f [ 352.989491] ? move_linked_works+0x172/0x270 [ 352.989627] ? srso_return_thunk+0x5/0x5f [ 352.989758] ? assign_work+0x196/0x240 [ 352.989864] worker_thread+0x674/0xe70 [ 352.989967] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 352.990117] ? __pfx_worker_thread+0x10/0x10 [ 352.990224] kthread+0x2c2/0x3a0 [ 352.990347] ? srso_return_thunk+0x5/0x5f [ 352.990479] ? __pfx_kthread+0x10/0x10 [ 352.990611] ret_from_fork+0x48/0x80 [ 352.990721] ? __pfx_kthread+0x10/0x10 [ 352.990850] ret_from_fork_asm+0x1a/0x30 [ 352.990981] 23:46:17 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20}, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000200)='\x00') openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x426203, 0x82) r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x6) pwritev(r1, &(0x7f0000000600)=[{&(0x7f0000000040)="a5e36269111c4d44b7fe7d3ea4fbfc2478e400110232dbd151f81de183cd0ad0ac76467b0c4102ad53f5c3d1d22a8bf7ab", 0x31}, {&(0x7f0000000300)="9fe3e98556f916c20bf131ff155d17ea912c0428ab76ec5b53a112885d368c6607e791e306ad4ed0a2bdb27e6c6053e7c29d9a6a55f846faa25924a8248c21adcc8600487f273a432d59f35663019206f22c4f2d88505ec1e481e0d3d9454a24dd23fe228e3778e92a5f4c82df703fc1cad07862cd0bc480114e2ba2a75193bf570df1a9bfcc7f57ec45be0f922792e7b01dc3c5ecbd906dad05fe325a26b6a3cdbed93dbd72a6041fb48fe4381d4866fdb26e3f451de94de509ae5ae0b0b32eea4db611edf89fc8f8c747966a1d39df971520621b6ccfbb5d7a679ff4e47fd06558ec6cc1959bb96fb835f152e061864cd1459c740a520225", 0xf9}, {&(0x7f0000000240)="ce4a5f48275493bfa7102038f90c57b8c454b5cc7dab16bd7ad87bf7ad1bffd58c877628c78b6b752c4b65330171863f14a74d99966fafbf187e7ef224132daf9f8a5796bbec95ee02700d4584249ca89fc4611b8118b708", 0x58}, {&(0x7f0000000400)="2803753895291a826afda0f2a02d142905ea22af18bc63f28b20c4fe3bf5416c1b1bf023cf4031b980a87404c1a1ee8adf31378c2c125bc85dabbd849cd3a1a6639ce2b3b235", 0x46}, {&(0x7f0000000480)="bf02e918d3bcfe9a176ed4914d02e974", 0x10}, {&(0x7f00000004c0)="17c68df48ac59a1542c6537e5315cb7f7f3eab5f5120f8764e87ac9ccfd74bd09e2dcc0080a4f308353c97fb24b87c495eded08b8a9d664312278a27587813ea31e90f003a2143709600359e96075d934bae8feb13781e9d155faade48e3eae65362dc585ed006c1", 0x68}], 0x6, 0x0, 0x80) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000140), 0x0) 23:46:17 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) eventfd2(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0) syz_open_procfs(0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001180)='stat\x00') preadv(r0, &(0x7f0000000040)=[{&(0x7f00000011c0)=""/4078, 0xfee}], 0x1, 0x3, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 23:46:17 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000400)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000002c0)="4f1b784106afe247dd9a76cf1c66da1b9d19f3311ef23a16c0ea1a0f8cd569ec88", 0x0, 0x0, 0x0, 0x0, 0x0}) 23:46:17 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f00000002c0)={0x2, {0x2, 0x0, 0xfffe}}) 23:46:17 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0) fchown(r0, 0x0, 0x0) 23:46:17 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0) fchown(r0, 0x0, 0x0) 23:46:17 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000240)=[{{&(0x7f00000003c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c, 0x0, 0x0, &(0x7f0000001780)=[@dstopts_2292={{0x11}}], 0x18}}], 0x2, 0x0) 23:46:17 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xb5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)) 23:46:17 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000400)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000002c0)="4f1b784106afe247dd9a76cf1c66da1b9d19f3311ef23a16c0ea1a0f8cd569ec88", 0x0, 0x0, 0x0, 0x0, 0x0}) 23:46:17 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) eventfd2(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0) syz_open_procfs(0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001180)='stat\x00') preadv(r0, &(0x7f0000000040)=[{&(0x7f00000011c0)=""/4078, 0xfee}], 0x1, 0x3, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 23:46:17 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0) fchown(r0, 0x0, 0x0) 23:46:17 executing program 3: io_setup(0x373, &(0x7f00000001c0)=0x0) r1 = getpid() r2 = pidfd_open(r1, 0x0) io_submit(r0, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) 23:46:17 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0) fchown(r0, 0x0, 0x0) 23:46:17 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000240)=[{{&(0x7f00000003c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c, 0x0, 0x0, &(0x7f0000001780)=[@dstopts_2292={{0x11}}], 0x18}}], 0x2, 0x0) 23:46:17 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xb5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)) 23:46:17 executing program 4: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x20, r1, 0x5, 0x0, 0x0, {{0x2}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 23:46:19 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0) fchown(r0, 0x0, 0x0) 23:46:19 executing program 3: io_setup(0x373, &(0x7f00000001c0)=0x0) r1 = getpid() r2 = pidfd_open(r1, 0x0) io_submit(r0, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) 23:46:19 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000240)=[{{&(0x7f00000003c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c, 0x0, 0x0, &(0x7f0000001780)=[@dstopts_2292={{0x11}}], 0x18}}], 0x2, 0x0) 23:46:19 executing program 4: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x20, r1, 0x5, 0x0, 0x0, {{0x2}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 23:46:19 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20}, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000200)='\x00') openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x426203, 0x82) r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x6) pwritev(r1, &(0x7f0000000600)=[{&(0x7f0000000040)="a5e36269111c4d44b7fe7d3ea4fbfc2478e400110232dbd151f81de183cd0ad0ac76467b0c4102ad53f5c3d1d22a8bf7ab", 0x31}, {&(0x7f0000000300)="9fe3e98556f916c20bf131ff155d17ea912c0428ab76ec5b53a112885d368c6607e791e306ad4ed0a2bdb27e6c6053e7c29d9a6a55f846faa25924a8248c21adcc8600487f273a432d59f35663019206f22c4f2d88505ec1e481e0d3d9454a24dd23fe228e3778e92a5f4c82df703fc1cad07862cd0bc480114e2ba2a75193bf570df1a9bfcc7f57ec45be0f922792e7b01dc3c5ecbd906dad05fe325a26b6a3cdbed93dbd72a6041fb48fe4381d4866fdb26e3f451de94de509ae5ae0b0b32eea4db611edf89fc8f8c747966a1d39df971520621b6ccfbb5d7a679ff4e47fd06558ec6cc1959bb96fb835f152e061864cd1459c740a520225", 0xf9}, {&(0x7f0000000240)="ce4a5f48275493bfa7102038f90c57b8c454b5cc7dab16bd7ad87bf7ad1bffd58c877628c78b6b752c4b65330171863f14a74d99966fafbf187e7ef224132daf9f8a5796bbec95ee02700d4584249ca89fc4611b8118b708", 0x58}, {&(0x7f0000000400)="2803753895291a826afda0f2a02d142905ea22af18bc63f28b20c4fe3bf5416c1b1bf023cf4031b980a87404c1a1ee8adf31378c2c125bc85dabbd849cd3a1a6639ce2b3b235", 0x46}, {&(0x7f0000000480)="bf02e918d3bcfe9a176ed4914d02e974", 0x10}, {&(0x7f00000004c0)="17c68df48ac59a1542c6537e5315cb7f7f3eab5f5120f8764e87ac9ccfd74bd09e2dcc0080a4f308353c97fb24b87c495eded08b8a9d664312278a27587813ea31e90f003a2143709600359e96075d934bae8feb13781e9d155faade48e3eae65362dc585ed006c1", 0x68}], 0x6, 0x0, 0x80) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000140), 0x0) 23:46:19 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0) fchown(r0, 0x0, 0x0) 23:46:19 executing program 7: r0 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x28, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x1}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x13, 0x0, 0x0, @uid=0xffffffffffffffff}]}]}, 0x28}], 0x1}, 0x0) 23:46:19 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xb5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)) 23:46:19 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xb5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)) 23:46:19 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)={@rand_addr, @broadcast}, 0x10) 23:46:19 executing program 4: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x20, r1, 0x5, 0x0, 0x0, {{0x2}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 23:46:19 executing program 3: io_setup(0x373, &(0x7f00000001c0)=0x0) r1 = getpid() r2 = pidfd_open(r1, 0x0) io_submit(r0, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) 23:46:20 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000240)=[{{&(0x7f00000003c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c, 0x0, 0x0, &(0x7f0000001780)=[@dstopts_2292={{0x11}}], 0x18}}], 0x2, 0x0) 23:46:20 executing program 7: r0 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x28, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x1}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x13, 0x0, 0x0, @uid=0xffffffffffffffff}]}]}, 0x28}], 0x1}, 0x0) 23:46:20 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20}, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000200)='\x00') openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x426203, 0x82) r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x6) pwritev(r1, &(0x7f0000000600)=[{&(0x7f0000000040)="a5e36269111c4d44b7fe7d3ea4fbfc2478e400110232dbd151f81de183cd0ad0ac76467b0c4102ad53f5c3d1d22a8bf7ab", 0x31}, {&(0x7f0000000300)="9fe3e98556f916c20bf131ff155d17ea912c0428ab76ec5b53a112885d368c6607e791e306ad4ed0a2bdb27e6c6053e7c29d9a6a55f846faa25924a8248c21adcc8600487f273a432d59f35663019206f22c4f2d88505ec1e481e0d3d9454a24dd23fe228e3778e92a5f4c82df703fc1cad07862cd0bc480114e2ba2a75193bf570df1a9bfcc7f57ec45be0f922792e7b01dc3c5ecbd906dad05fe325a26b6a3cdbed93dbd72a6041fb48fe4381d4866fdb26e3f451de94de509ae5ae0b0b32eea4db611edf89fc8f8c747966a1d39df971520621b6ccfbb5d7a679ff4e47fd06558ec6cc1959bb96fb835f152e061864cd1459c740a520225", 0xf9}, {&(0x7f0000000240)="ce4a5f48275493bfa7102038f90c57b8c454b5cc7dab16bd7ad87bf7ad1bffd58c877628c78b6b752c4b65330171863f14a74d99966fafbf187e7ef224132daf9f8a5796bbec95ee02700d4584249ca89fc4611b8118b708", 0x58}, {&(0x7f0000000400)="2803753895291a826afda0f2a02d142905ea22af18bc63f28b20c4fe3bf5416c1b1bf023cf4031b980a87404c1a1ee8adf31378c2c125bc85dabbd849cd3a1a6639ce2b3b235", 0x46}, {&(0x7f0000000480)="bf02e918d3bcfe9a176ed4914d02e974", 0x10}, {&(0x7f00000004c0)="17c68df48ac59a1542c6537e5315cb7f7f3eab5f5120f8764e87ac9ccfd74bd09e2dcc0080a4f308353c97fb24b87c495eded08b8a9d664312278a27587813ea31e90f003a2143709600359e96075d934bae8feb13781e9d155faade48e3eae65362dc585ed006c1", 0x68}], 0x6, 0x0, 0x80) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000140), 0x0) 23:46:20 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)={@rand_addr, @broadcast}, 0x10) 23:46:20 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)={@rand_addr, @broadcast}, 0x10) 23:46:20 executing program 4: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x20, r1, 0x5, 0x0, 0x0, {{0x2}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 23:46:20 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)={@rand_addr, @broadcast}, 0x10) 23:46:20 executing program 2: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLY\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x17\xa2\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\x92#}g\xd3`\xf7\xcez\xcb\xb3\x1a\xbb\xc48e\x8e\xb1&\xd1\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\xc7e\x06L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x84\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\xd00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xfe\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\xd6\xcf\xf6\xb5\x82\xb7\x9dA\b$\xa2x\x8a@\xfaj~\xef\x93\xb1/L\x01\xe2\xba|\xf0\x01)PP\xcdl\x06\xfc\x15;qZ\xb1u\xc9\xd0\xd16~JEGm\xe4\x1e@\x9dG\xe4@\xdf\xba\'\x8b\x1cD\xc7\xec\xd1@}tR\xd9P\xf4N\xe3\xd8x\xa0\x91\x17\xc2}\x13\b\xca\t(Z\xa3_\xa1\x90\x15T\x93\xe7%\x98\xa7\xfb\x8bp/eq\x93\xbf\x1f =|\xf3\xb1\xfcR\xd8\nM,\xcb%@\'\x15\x88\xd8\xad\f\x91|\x95\x8fq+\x98\x81W\xba\x9f\xe0elOt\xbd\by\r\x87\x1c\xba\xbd\x8e+S>\xb8\xe29\x91h^x\xfb`\x00\xdd/\xa6\xb1\x16=\xa1bw\xc5I\xb1\x00'/549, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f00000012c0)) 23:46:20 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)={@rand_addr, @broadcast}, 0x10) 23:46:20 executing program 7: r0 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x28, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x1}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x13, 0x0, 0x0, @uid=0xffffffffffffffff}]}]}, 0x28}], 0x1}, 0x0) 23:46:20 executing program 3: io_setup(0x373, &(0x7f00000001c0)=0x0) r1 = getpid() r2 = pidfd_open(r1, 0x0) io_submit(r0, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) 23:46:20 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) fsetxattr$security_selinux(r0, &(0x7f0000000140), &(0x7f0000000180)='system_u:object_r:hald_var_run_t:s0\x00', 0x24, 0x0) 23:46:20 executing program 6: r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) ioctl$CDROM_SEND_PACKET(r0, 0x2275, &(0x7f00000002c0)={"1fa127240334631ab25cf952", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 356.482051] SELinux: Context system_u:object_r:hald_var_run_t:s0 is not valid (left unmapped). [ 356.485314] audit: type=1400 audit(1729122380.525:10): avc: denied { relabelto } for pid=13707 comm="syz-executor.5" name="NETLINK" dev="sockfs" ino=12670 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=netlink_generic_socket permissive=1 trawcon="system_u:object_r:hald_var_run_t:s0" 23:46:20 executing program 1: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)={@rand_addr, @broadcast}, 0x10) 23:46:20 executing program 2: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLY\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x17\xa2\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\x92#}g\xd3`\xf7\xcez\xcb\xb3\x1a\xbb\xc48e\x8e\xb1&\xd1\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\xc7e\x06L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x84\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\xd00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xfe\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\xd6\xcf\xf6\xb5\x82\xb7\x9dA\b$\xa2x\x8a@\xfaj~\xef\x93\xb1/L\x01\xe2\xba|\xf0\x01)PP\xcdl\x06\xfc\x15;qZ\xb1u\xc9\xd0\xd16~JEGm\xe4\x1e@\x9dG\xe4@\xdf\xba\'\x8b\x1cD\xc7\xec\xd1@}tR\xd9P\xf4N\xe3\xd8x\xa0\x91\x17\xc2}\x13\b\xca\t(Z\xa3_\xa1\x90\x15T\x93\xe7%\x98\xa7\xfb\x8bp/eq\x93\xbf\x1f =|\xf3\xb1\xfcR\xd8\nM,\xcb%@\'\x15\x88\xd8\xad\f\x91|\x95\x8fq+\x98\x81W\xba\x9f\xe0elOt\xbd\by\r\x87\x1c\xba\xbd\x8e+S>\xb8\xe29\x91h^x\xfb`\x00\xdd/\xa6\xb1\x16=\xa1bw\xc5I\xb1\x00'/549, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f00000012c0)) 23:46:20 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)={@rand_addr, @broadcast}, 0x10) 23:46:20 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) fsetxattr$security_selinux(r0, &(0x7f0000000140), &(0x7f0000000180)='system_u:object_r:hald_var_run_t:s0\x00', 0x24, 0x0) 23:46:20 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 23:46:20 executing program 7: r0 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x28, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x1}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x13, 0x0, 0x0, @uid=0xffffffffffffffff}]}]}, 0x28}], 0x1}, 0x0) 23:46:20 executing program 6: r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) ioctl$CDROM_SEND_PACKET(r0, 0x2275, &(0x7f00000002c0)={"1fa127240334631ab25cf952", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 23:46:20 executing program 4: sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000c80)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="000040000000000000002e00f9ff04"], 0x18}}, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x40, &(0x7f0000000c40), 0x4) 23:46:20 executing program 1: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getuid() sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) fsetxattr$trusted_overlay_origin(0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000240), 0x2, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, 0x0, 0x0) dup(r3) ptrace(0x10, 0x0) r4 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0), 0x604003, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0xc7, 0xe1, 0x7, 0x1, 0x0, 0x5, 0xc0040, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x4, @perf_config_ext={0x2, 0x100000000000}, 0x10480, 0x5, 0x4, 0x9, 0x0, 0x9ee1, 0x40, 0x0, 0x7fffffff, 0x0, 0x20}, 0x0, 0x8, r4, 0xa) sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @remote, @broadcast}}}], 0x20}, 0x0) 23:46:21 executing program 2: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLY\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x17\xa2\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\x92#}g\xd3`\xf7\xcez\xcb\xb3\x1a\xbb\xc48e\x8e\xb1&\xd1\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\xc7e\x06L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x84\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\xd00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xfe\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\xd6\xcf\xf6\xb5\x82\xb7\x9dA\b$\xa2x\x8a@\xfaj~\xef\x93\xb1/L\x01\xe2\xba|\xf0\x01)PP\xcdl\x06\xfc\x15;qZ\xb1u\xc9\xd0\xd16~JEGm\xe4\x1e@\x9dG\xe4@\xdf\xba\'\x8b\x1cD\xc7\xec\xd1@}tR\xd9P\xf4N\xe3\xd8x\xa0\x91\x17\xc2}\x13\b\xca\t(Z\xa3_\xa1\x90\x15T\x93\xe7%\x98\xa7\xfb\x8bp/eq\x93\xbf\x1f =|\xf3\xb1\xfcR\xd8\nM,\xcb%@\'\x15\x88\xd8\xad\f\x91|\x95\x8fq+\x98\x81W\xba\x9f\xe0elOt\xbd\by\r\x87\x1c\xba\xbd\x8e+S>\xb8\xe29\x91h^x\xfb`\x00\xdd/\xa6\xb1\x16=\xa1bw\xc5I\xb1\x00'/549, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f00000012c0)) 23:46:21 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 23:46:21 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) fsetxattr$security_selinux(r0, &(0x7f0000000140), &(0x7f0000000180)='system_u:object_r:hald_var_run_t:s0\x00', 0x24, 0x0) 23:46:21 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 23:46:21 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:21 executing program 6: r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) ioctl$CDROM_SEND_PACKET(r0, 0x2275, &(0x7f00000002c0)={"1fa127240334631ab25cf952", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 23:46:21 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) munlockall() 23:46:21 executing program 7: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000040), 0x4) 23:46:21 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 23:46:22 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) munlockall() 23:46:22 executing program 2: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLY\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x17\xa2\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\x92#}g\xd3`\xf7\xcez\xcb\xb3\x1a\xbb\xc48e\x8e\xb1&\xd1\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\xc7e\x06L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x84\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\xd00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xfe\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\xd6\xcf\xf6\xb5\x82\xb7\x9dA\b$\xa2x\x8a@\xfaj~\xef\x93\xb1/L\x01\xe2\xba|\xf0\x01)PP\xcdl\x06\xfc\x15;qZ\xb1u\xc9\xd0\xd16~JEGm\xe4\x1e@\x9dG\xe4@\xdf\xba\'\x8b\x1cD\xc7\xec\xd1@}tR\xd9P\xf4N\xe3\xd8x\xa0\x91\x17\xc2}\x13\b\xca\t(Z\xa3_\xa1\x90\x15T\x93\xe7%\x98\xa7\xfb\x8bp/eq\x93\xbf\x1f =|\xf3\xb1\xfcR\xd8\nM,\xcb%@\'\x15\x88\xd8\xad\f\x91|\x95\x8fq+\x98\x81W\xba\x9f\xe0elOt\xbd\by\r\x87\x1c\xba\xbd\x8e+S>\xb8\xe29\x91h^x\xfb`\x00\xdd/\xa6\xb1\x16=\xa1bw\xc5I\xb1\x00'/549, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f00000012c0)) 23:46:22 executing program 7: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000040), 0x4) 23:46:22 executing program 6: r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x840, 0x0) ioctl$CDROM_SEND_PACKET(r0, 0x2275, &(0x7f00000002c0)={"1fa127240334631ab25cf952", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 23:46:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) fsetxattr$security_selinux(r0, &(0x7f0000000140), &(0x7f0000000180)='system_u:object_r:hald_var_run_t:s0\x00', 0x24, 0x0) 23:46:22 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:22 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 23:46:22 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) munlockall() 23:46:22 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 23:46:22 executing program 7: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000040), 0x4) 23:46:22 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) munlockall() 23:46:22 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:22 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:22 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 23:46:22 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:22 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x1a) 23:46:22 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000540)={'trans=unix,', {[], [{@seclabel, 0x22}]}}) 23:46:22 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:22 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:22 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:22 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000540)={'trans=unix,', {[], [{@seclabel, 0x22}]}}) 23:46:22 executing program 7: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000040), 0x4) 23:46:22 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000540)={'trans=unix,', {[], [{@seclabel, 0x22}]}}) 23:46:22 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000002740)={0x2, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90) 23:46:22 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x1a) 23:46:22 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000002740)={0x2, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90) 23:46:22 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:23 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000100)=""/11) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, 0x0, 0x3) 23:46:23 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000540)={'trans=unix,', {[], [{@seclabel, 0x22}]}}) 23:46:23 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040), 0x4) 23:46:23 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x18, &(0x7f0000000040), 0x4) 23:46:23 executing program 7: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/kexec_crash_size', 0x0, 0x0) pread64(r0, &(0x7f0000000340)=""/247, 0xf7, 0x0) 23:46:23 executing program 3: syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) utimes(&(0x7f0000000080)='./file0\x00', 0x0) 23:46:23 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000002740)={0x2, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90) 23:46:23 executing program 7: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/kexec_crash_size', 0x0, 0x0) pread64(r0, &(0x7f0000000340)=""/247, 0xf7, 0x0) 23:46:23 executing program 2: perf_event_open(&(0x7f0000000100)={0xa, 0x80, 0x0, 0x0, 0x0, 0x0, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 23:46:23 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x18, &(0x7f0000000040), 0x4) 23:46:23 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind(r1, &(0x7f0000000140)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(aes)\x00'}, 0x80) write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0xb) openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f00000001c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r3, 0x0, 0x0, 0x87ffffc) r4 = inotify_init1(0x80000) write(r4, &(0x7f0000000400)="0629798b82ec81e48600", 0xa) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x117001, 0x0) 23:46:23 executing program 5: syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_advertising_info={{}, {0x1, [{}]}}}}, 0xf) syz_emit_vhci(&(0x7f0000000180)=@HCI_SCODATA_PKT, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_pkt_type_change={{0x1d, 0x5}}}, 0x8) 23:46:23 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000002740)={0x2, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90) 23:46:23 executing program 3: syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) utimes(&(0x7f0000000080)='./file0\x00', 0x0) 23:46:23 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x1a) [ 359.365800] Bluetooth: hci1: SCO packet for unknown connection handle 0 23:46:23 executing program 2: perf_event_open(&(0x7f0000000100)={0xa, 0x80, 0x0, 0x0, 0x0, 0x0, 0x600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 23:46:23 executing program 3: syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) utimes(&(0x7f0000000080)='./file0\x00', 0x0) 23:46:23 executing program 5: syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_advertising_info={{}, {0x1, [{}]}}}}, 0xf) syz_emit_vhci(&(0x7f0000000180)=@HCI_SCODATA_PKT, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_pkt_type_change={{0x1d, 0x5}}}, 0x8) 23:46:23 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x18, &(0x7f0000000040), 0x4) 23:46:23 executing program 7: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/kexec_crash_size', 0x0, 0x0) pread64(r0, &(0x7f0000000340)=""/247, 0xf7, 0x0) 23:46:23 executing program 5: syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_advertising_info={{}, {0x1, [{}]}}}}, 0xf) syz_emit_vhci(&(0x7f0000000180)=@HCI_SCODATA_PKT, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_pkt_type_change={{0x1d, 0x5}}}, 0x8) 23:46:23 executing program 7: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/kexec_crash_size', 0x0, 0x0) pread64(r0, &(0x7f0000000340)=""/247, 0xf7, 0x0) [ 359.368025] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 359.764715] Bluetooth: hci1: SCO packet for unknown connection handle 0 VM DIAGNOSIS: 23:46:17 Registers: info registers vcpu 0 RAX=fffffbfff0b87a8c RBX=fffffbfff0b87a8d RCX=ffffffff81402fcd RDX=fffffbfff0b87a8d RSI=0000000000000038 RDI=ffffffff85c3d430 RBP=fffffbfff0b87a86 RSP=ffff88806ce09c80 R8 =0000000000000000 R9 =fffffbfff0b87a8c R10=ffffffff85c3d467 R11=000000e6d24e918c R12=0000000000000038 R13=ffffffff85c3d468 R14=17ff13a3c2a8d000 R15=ffffffff88274208 RIP=ffffffff818b31e1 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f5cb501cbe0 CR3=000000000f476000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000412a569000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8262d465 RDI=ffffffff886610c0 RBP=ffffffff88661080 RSP=ffff88806cf08590 R8 =0000000000000000 R9 =ffffed1001ce2046 R10=000000000000006c R11=7371726974666f73 R12=000000000000006c R13=ffffffff88661080 R14=0000000000000010 R15=ffffffff8262d450 RIP=ffffffff8262d4bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f2b1fe9d700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f2b2297a408 CR3=0000000039fb0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f2b22a0e7c000007f2b22a0e7c8 XMM02=00007f2b22a0e7e000007f2b22a0e7c0 XMM03=00007f2b22a0e7c800007f2b22a0e7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000